last executing test programs:

20.129651397s ago: executing program 4 (id=1003):
socket$kcm(0x2, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x0, 0xff, 0x0, 0x1}, 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000340)={0x8, <r1=>0x0}, 0x8)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=r1, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(r5, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x9}, {0x0, 0x0, 0x0, 0x2}, 0x0, 0x6e6bb9, 0x1}, {{@in6=@empty, 0x4d5, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x0, 0xb7}}, 0xe8)
sendmmsg(r4, &(0x7f0000000180), 0x400000000000077, 0x0)

18.884416075s ago: executing program 4 (id=1006):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000080))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20040, 0x0)
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
r3 = syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000180)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a240100", @ANYRES32, @ANYBLOB="05"], 0x0)
syz_usb_control_io$uac1(r3, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000200)=ANY=[@ANYRESHEX=r1, @ANYRES16=r2, @ANYRES16=r1, @ANYRES8=r1]}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad433ec50000000f00008095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r5}, 0x10)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a00050a000000000000000002000000fc0000004b"], 0x1c}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8932, &(0x7f0000000900)={'wlan1\x00', @random='\x00\x00\x00 \x00'})

15.903031905s ago: executing program 4 (id=1012):
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
r1 = syz_io_uring_setup(0x0, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x24, &(0x7f00000000c0)=0x5, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1}, 0x48)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0xff39)

14.527470619s ago: executing program 2 (id=1016):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xe)
socket$unix(0x1, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$packet(0x11, 0x0, 0x300)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="147f", @ANYRES16=0x0, @ANYBLOB="02000000000000008000250000000600060002"], 0x1c}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
ioctl(0xffffffffffffffff, 0x8b32, &(0x7f0000000040))
r5 = dup(r4)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4000000020042, 0x0)
r7 = dup(r6)
sendfile(r7, r5, 0x0, 0x89ffc)

11.781352566s ago: executing program 4 (id=1023):
syz_emit_ethernet(0x86, &(0x7f0000000200)=ANY=[], 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
rt_sigqueueinfo(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000001b80)={0x0, 0x0, 0x4, {0x2, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000380)=@nat={'nat\x00', 0x19, 0x1000000, 0x90, [], 0x0, 0x0, &(0x7f00000002c0)=[{}, {}, {}]}, 0x108)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f00000002c0))
write$cgroup_int(r5, &(0x7f00000015c0)=0x80, 0x12)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000040)=ANY=[@ANYRESHEX=r6, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa205000000000007020000f8ffffffb703000008000000b704000000000000850000006c0000009500000000000000"], &(0x7f0000000280)='GPL\x00'}, 0x90)

11.34539752s ago: executing program 0 (id=1026):
socket$kcm(0x2, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x0, 0xff, 0x0, 0x1}, 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000340)={0x8, <r1=>0x0}, 0x8)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=r1, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(r5, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x9}, {0x0, 0x0, 0x0, 0x2}, 0x0, 0x6e6bb9, 0x1}, {{@in6=@empty, 0x4d5, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x0, 0xb7}}, 0xe8)
sendmmsg(r4, &(0x7f0000000180), 0x400000000000077, 0x0)

11.158297608s ago: executing program 3 (id=1027):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$smackfs_netlabel(0xffffffffffffff9c, &(0x7f0000001640), 0x2, 0x0)
write$smackfs_netlabel(r0, &(0x7f0000000ac0)=ANY=[@ANYBLOB='-'], 0x6f)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_io_uring_setup(0x24fd, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast1}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000480)="10ab119b497ad23a1c1142ce24b27ffa12477294d5f95fbf8890c08a1c7a02944cf58f9e6725ddafac32a98ed3ec927d19a01a193c99058915996d97a79d6e364c97cd620d3e639b4374dae2de1c616415fbc228c3f6bbaacf237291ea1c763bc9f9405da6d699a83194b49c8848fe72407cbcd06881dbc687e9a9967c4031632fbbb883db18c6b0c40a546715fa886040c2", 0x92}], 0x1}, 0x0, 0x0, 0x1})
io_uring_enter(r1, 0x1d2d, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)='/', 0x1}], 0x1}, 0x2000c015)
recvmsg$unix(r4, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
connect$pppoe(r6, &(0x7f00000000c0)={0x18, 0x0, {0x1, @broadcast, 'geneve1\x00'}}, 0x1e)
ioctl$PPPIOCSMRU(r6, 0x40047452, &(0x7f0000000140))
r10 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
close(r6)
ioctl$UI_SET_SWBIT(r10, 0x4004556d, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELCHAIN={0x30, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_HOOK={0x4}]}], {0x14}}, 0xb8}}, 0x0)

9.311417972s ago: executing program 3 (id=1029):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000bf080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x59, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x4, 0x3, 0x8}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000003e0000fe2bbd703b0000000000000000891b7b39f925011f35455b4969a43bdc07faa882998123c4d167682eb1c7334147541f7949227aff70aa5e01370c"], 0x14}, 0x1, 0x0, 0x0, 0x20004080}, 0x800)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x380000, @dev}, 0x1c)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000400)=[{0x20000000, 0xff00, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x110}], 0x1, 0x0)

8.742603486s ago: executing program 0 (id=1030):
r0 = syz_io_uring_setup(0x19d3, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x24, &(0x7f00000000c0)=0x5, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
getrlimit(0xc, &(0x7f0000000380))
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000480)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000500)="b50dafbd7933378d35cc11b7b4d0dbef20f043730469797600d562cbb9582f9bddf1c2b512297b36bd3f47b4f405ed2adff20b2d7b92b9bf7de95e3cfe2d685b36c8da0c0a32a21f59220e21a1c1de06f49bff2b9db8101792e7a1d2cf810f5c7d29f5b2377cc1a9548132af5dc57ecbc1ce7a53ae3f8ab3f2166f378744a284938a7d1ea6a410c9674c4ffbb0a2ec753fa551f97c7d2edcf59eade42674fb7f47bd98b0bab9aea2ce8bc9e01ebf884d1d9b91f13397e404eee53988b4237d9b21cf073b1f2f7feee6f7dacd132862f1ddb118c1c1af7b3466f0c1957bbd67ece50eba180f7466", 0xe7}, {&(0x7f0000000600)="40dc127c49fd73cc483c40ebd9758e73e830de64f11dc44579c6127aa6039561e4c5b484ae6930591ed1b748e006cc554c67df87c6e033ef27e4d1ee8290dbbf8eddfa17030794e3a5c575efd4c9fcc15a1e7594d5e00e7d933a9928e8db5145f24dc904d0be43eea3d83a", 0x6b}, {&(0x7f0000000780)="2b67f727cf2605ee888cd5d97092a78bc9393622388ea75d35a0487a55bebbd833537837b6045b1c36c96440a9deec84a8a28bd9bd8d31aa59b2ee6e262d4701861b4acb217b793e76e8a5d5beaf46d8f3fc662e8ff599287dd508ec97021bd7667872316221eb522e2271dbf7341a3676da97acd77b26a01f8de06f503e1f0d13e97bd95737816cb142fd95bce38a533c41eba5c9bfa1d0dbae7aaf872908f41a116754316e81018763c14cf8edc5cefc1ca2ab1b6ef2c3c0f3d83db2", 0xbd}, {&(0x7f0000000700)="8a9f1da88658803403348a6cf97eddf228758202", 0x14}, {&(0x7f0000000840)="19b9846f751af79c229dbf5d952ab9c52cff6d24c2571cccf0f1047f08680ffc33072db3e64cbd06792cf296fff598ec86cbf3ab1d0c723f528a3d1facf7aa", 0x3f}, {&(0x7f0000000880)="cb00da43e909a8602c05f07a6829854ef7555ba4d1f579187b076c3da32f3a0e41f7e0d3629d6a6e07de8a0726e8677333bef9a0c94ca123953deb8d00816dd97613438dcec6d9bf94ce36b09f51175173873f6859ab6f599928cff7e0ecac21a875201b82e70d4ce5121ff07affb92b9dab86146108875962e42c7b44adc111023c7913eabf7ff2ea26121ac53ee98d735e356836cbd67fe4f28613babb9f9c1954f5e4dcf2b3b335a557cf99091492c72ff76c31dd1b0b646d30d1e8495ee61bf64c1c75b243e3ea0afdc0fd162527749d7ee980500f8edd9c6f1174b7", 0xde}, {&(0x7f0000000980)="a964ae30915b63d9355d6d592cc17980f3c661f2c19bda10b84b83a3011cdfeac46265ec790ca7d6a4fe33be8a491406b0d2c8c579e468ef09ff077d70bd69f4bdca4a789bf23b73", 0x48}, {&(0x7f0000000a00)="13", 0x1}], 0x8, &(0x7f0000000b00)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r7]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38, 0x4}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7}, 0x38)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x1, {0x0, r3}})
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
io_uring_enter(r0, 0xa3d, 0x0, 0x0, 0x0, 0xff39)

8.639095908s ago: executing program 2 (id=1031):
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$sock_int(r0, 0x1, 0x22, 0x0, &(0x7f0000000000))
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages(r2, 0x1, &(0x7f0000000000)=[&(0x7f0000ffa000/0x3000)=nil], 0x0, &(0x7f0000000000), 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='nr_inodes=t'])
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="2b00000013dd2ce7cee1df29fa3a4c0c475ce22fd51467c3884ab0890329256ec128d074ece0f240eb22007e5a8350a42003d624f81c1ecd3f188e47b3ee92e1db957e6692412343ea3ba841e5b702f83fbd3057c2ec60a4c24c1bc4cca384c111825265f10d184ba7b7dd3186101e76aa2199181eb0", @ANYRES16=r3, @ANYBLOB="150000000000000000000100000004000180"], 0x18}}, 0x0)
read$FUSE(r1, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_TIMEOUT)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_SHUTDOWN={0x22, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x1})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

8.397985852s ago: executing program 3 (id=1033):
keyctl$restrict_keyring(0xa, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x65318b5e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$setsig(0x4203, r0, 0x9, &(0x7f0000000480)={0x1b})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
geteuid()
r3 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000002c0), 0x1c)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540), &(0x7f0000000580)={'U-', 0xfffffffffffffff8}, 0x16, 0x1)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0xe803)
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002c00), 0x2, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001000000008000800000000001800018014000200776c616e3000000000020000000000000800070000ff"], 0x3c}}, 0x0)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x80040001, 0x200000, 0x0, 0x0, 0x4, 0xfffffffe})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(des)\x00'}, 0x58)
r5 = accept$alg(r4, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="e64f2be8d3e7a2aa", 0x8)
sendmmsg$alg(r5, &(0x7f0000002500)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000002180)="3c6e79ed3a013eed91f1e40b33f7c5b9463d27992b9828b590", 0x19}, {&(0x7f0000000300)="392ee03e7ee4dac0433a56df730489493a2b842d1e40d3029a3ecac6445f6b2f722a30d2b7992d142ee9495f946d51d69c537b38f9d96cbeecd0b480f518ad8bdfe625a8ac6f03d867e6580150d7a69475f4d17611c4d2320e512d1b7194f87554683e49582c0101b1a3bcc277f6b3640971678709", 0x75}, {&(0x7f0000000380)="0747ac85e7ab39f9c26e01f9cb3c2d39f75305980fad09ac761d64aad03bbbb7883d4b22b85c7fca9dc55aa88065b87b2c78bb249aabaa458648558db47bd147071b55eb1fa77bd78b8f64a092b1951d171b353efb91e9ec388b55052525390b773bc61541f36e557a504e27d12c688c16c2f7939ee88372d0f739de55cfaaa3416009cc0c3984d604e6d189ec74c1189c4558429d385358539b4591404e63", 0x9f}, {&(0x7f00000001c0)}, {&(0x7f00000005c0)="35d0c2c73f83b66c31906ccff6fe0bc1a3ab07ef08f5e52fa459b973878902d77c5d19369010ec3c086dc59057db06adb7400cb521a411f4639c7413356b1b10b9f427bb37918f1ee8ea833ff18418bf7bd1f14c0f63c579266e08c921b433585a7dbf5b8b74f55cd2a05eee8f5607aeb5dcd18cdffedbb8f11027b15d4de9982a1428983dc037e8717a16954c04fca4eaae61837ee1620cdd93fb3f848a5672f2c6afc2ba8853994a623151be583e05914a0575", 0xb4}], 0x5}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x5, &(0x7f00000040c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3}, 0x48)

6.772047604s ago: executing program 3 (id=1034):
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
r1 = syz_io_uring_setup(0x0, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x24, &(0x7f00000000c0)=0x5, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1}, 0x48)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0xff39)

5.737817857s ago: executing program 1 (id=1035):
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
poll(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240), 0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)

5.590352753s ago: executing program 4 (id=1036):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000018105e0494993cfc0000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
r1 = socket$kcm(0x2a, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x890c, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040))
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
read$rfkill(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r3, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
poll(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r3, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0x40045010, &(0x7f0000000300)=0x3)
ioctl$SNDCTL_DSP_RESET(r3, 0x5000, 0x0)
r4 = openat$drirender128(0xffffff9c, &(0x7f0000000140), 0x4001, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r4, 0xc010640c, &(0x7f0000000180)={0x14})
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000000000000008cd32876e9d5e4180000340000000e0001006e65746465767643f2137e5446c0a65ee0ba7464487673696d3000000800730000000000e4c0f4ad525ac5db2111c4771ea9d84999a02701490b9fe938e9b941b6acae24f03f4c0f8138dcdd744b2d6ebfea9272280de8b538ab0d51dcdc583a30cd5dde0f80686e0dc1d57673e83da552ca9d22f72d693e8eff63cb711c9df3216fc567fdb0bc6bc2"], 0x3c}}, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r8 = accept4(r5, 0x0, 0x0, 0x0)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
ioctl$UI_GET_SYSNAME(0xffffffffffffffff, 0x4008556c, 0x0)
read$alg(r8, &(0x7f0000000080)=""/16, 0x10)

5.499272726s ago: executing program 2 (id=1037):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
eventfd(0x0)
syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000380)=<r0=>0x0, &(0x7f0000001340)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)

5.25187134s ago: executing program 0 (id=1038):
socket$kcm(0x2, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0x0, 0x0, 0x1}, 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000340)={0x8, <r1=>0x0}, 0x8)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=r1, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(r5, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x9}, {0x0, 0x0, 0x0, 0x2}, 0x0, 0x6e6bb9, 0x1}, {{@in6=@empty, 0x4d5, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x0, 0xb7}}, 0xe8)
sendmmsg(r4, &(0x7f0000000180), 0x400000000000077, 0x0)

5.111404427s ago: executing program 2 (id=1039):
r0 = socket$kcm(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x4f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000c40)=[{}, {}, {0x0, 0x0, 0x0, 0x4}]}, 0x90)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000002680)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f00000003c0)="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", 0x8a7}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e03002a000b05d25a806c8c6f94f90424fc601100077a0a000312050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0)
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010102, @local, {[@generic={0x7, 0x2}, @timestamp_addr={0x44, 0x4, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc01090589"], 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r2, &(0x7f0000000a00)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000500)=[{&(0x7f0000000280)="c109000000000000001d1e010271261c", 0x10}], 0x1}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x4}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}]}, 0x38}}, 0x0)
r4 = fanotify_init(0x200, 0x0)
r5 = memfd_create(&(0x7f0000001440)='-\x88\x8cG\xf3\xbd\xbd\xe2\xd0@\x1e\x8b\xf4\x87\xe5I\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdbQ\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x1e\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf8\xdah\x94:\x9cc\x10d\xee\xa7\x8b\x066\xb8G\xd1c\xe1$\xe8\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xf5\xcc\x82n=\x7f=\xcdJxR\xa5~\xb80a\xa9\xb2\x04K\x98\x93=\xabw\x05\x1d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00_\x99=\x12\xb3\x15\x1b?\xd7\x95\xc4\x85y\xef\xef\xff\xff\xff\xff\xff\xff\xff\xff\xb3\x02\x03\x00\x00\x00\x00\x00\x00\x00\xf6\xed\xc7\x80\xa5Pj\xa4\x06', 0x0)
r6 = dup(r5)
fanotify_mark(r4, 0x1, 0x4000007b, r6, 0x0)
write$cgroup_pid(r6, &(0x7f0000000040), 0x12)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x8, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0x4, 0xb3, 0x1, 0xa}, @lsrr={0x83, 0x3, 0x84}, @ra={0x94, 0x4, 0x1}]}}}}})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010600000000000000000900000024000480130001"], 0x38}}, 0x0)
syz_usb_connect$uac1(0x6, 0x9f, &(0x7f0000000dc0)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8d, 0x3, 0x1, 0x1, 0x10, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9, 0x2}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x6, 0x3, 0x4, 0xd4, "a087"}, @as_header={0x7, 0x24, 0x1, 0x6, 0x6, 0x1001}, @format_type_i_continuous={0x9, 0x24, 0x2, 0x1, 0x43, 0x2, 0x93, 0x8f, "", "8c"}, @as_header={0x7, 0x24, 0x1, 0x3e, 0x5, 0x1002}, @format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x3, 0x2, 0x40, "43515be2"}]}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x7, 0x5, 0x83, {0x7, 0x25, 0x1, 0x83, 0x9, 0x280}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x5, 0x81, 0x6, {0x7, 0x25, 0x1, 0x80, 0x7, 0x6}}}}}}}]}}, &(0x7f0000001000)={0xa, &(0x7f0000000c80)={0xa, 0x6, 0x141, 0xf, 0x6, 0x2, 0x40, 0x4}, 0x52, &(0x7f0000000e80)={0x5, 0xf, 0x52, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0x8, 0x8, 0x10, 0xc6}, @ssp_cap={0x18, 0x10, 0xa, 0x10, 0x3, 0x7, 0x1e, 0x6, [0xff00cf, 0xc000, 0xff3f30]}, @ssp_cap={0x20, 0x10, 0xa, 0xd, 0x5, 0xd, 0xf00, 0x1, [0xffc0, 0xff3ff0, 0x3fc0, 0xff0000, 0xc000]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0xb, 0x8, 0x2}]}, 0x3, [{0x6d, &(0x7f0000000f00)=@string={0x6d, 0x3, "ba58df4a1c436ae728e83a05c256a0e7184e1cb2ae88c967038635dcbf826c31523b883f8949d3963aabdf7b7ceeff7bd44e141f23e5e1f16528cffe116ed733d4529cfabfdee80cb2c384d2ef007946e21b921971a4db1237692b8fa59b7f4999ca4c7a99052a981b39a0"}}, {0x4, &(0x7f0000000cc0)=@lang_id={0x4, 0x3, 0x814}}, {0x5f, &(0x7f0000000f80)=@string={0x5f, 0x3, "99678d2b50f504fee4171e569ada23e08676528782d8dd0f6b372798de3291c50ffd921bc3cfcc656d34ddfaf27fc61a94a2229e568c374b6aced2d60485be25ef6c8a84775aaa4e5938cc6708ba3d1106187fe239fed0004f0edca15d"}}]})
syz_usb_control_io$hid(r1, 0x0, 0x0)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000181401000000000000000000080003000000000008000180"], 0x20}}, 0x0)
connect(r2, &(0x7f0000000340)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80)
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0)
syz_usb_control_io(r1, &(0x7f00000000c0)={0x2c, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000001040)=0x40001)

5.110866022s ago: executing program 1 (id=1040):
r0 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mremap(&(0x7f0000a4c000/0xf000)=nil, 0xf000, 0x4000, 0x3, &(0x7f00008dd000/0x4000)=nil)
munmap(&(0x7f0000ba0000/0x2000)=nil, 0x2000)
mremap(&(0x7f0000a14000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil)
munmap(&(0x7f0000b05000/0x2000)=nil, 0x2000)
sendmmsg$inet(r0, &(0x7f0000005780)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x80000000}}], 0x18}}], 0x2, 0x0)

3.920159675s ago: executing program 0 (id=1041):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x10, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001fc0)={0x2020}, 0x2020)

3.746592009s ago: executing program 1 (id=1042):
iopl(0x3)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x18, 0x0, 0x0)

3.316670825s ago: executing program 1 (id=1043):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000bf080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x59, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x4, 0x3, 0x8}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000003e0000fe2bbd703b0000000000000000891b7b39f925011f35455b4969a43bdc07faa882998123c4d167682eb1c7334147541f7949227aff70aa5e01370c"], 0x14}, 0x1, 0x0, 0x0, 0x20004080}, 0x800)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x380000, @dev}, 0x1c)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000400)=[{0x20000000, 0xff00, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x110}], 0x1, 0x0)

3.306340514s ago: executing program 0 (id=1044):
keyctl$restrict_keyring(0xa, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x65318b5e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$setsig(0x4203, r0, 0x9, &(0x7f0000000480)={0x1b})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
geteuid()
r3 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000002c0), 0x1c)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540), &(0x7f0000000580)={'U-', 0xfffffffffffffff8}, 0x16, 0x1)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0xe803)
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002c00), 0x2, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001000000008000800000000001800018014000200776c616e3000000000020000000000000800070000ff"], 0x3c}}, 0x0)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x80040001, 0x200000, 0x0, 0x0, 0x4, 0xfffffffe})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(des)\x00'}, 0x58)
r5 = accept$alg(r4, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
sendmmsg$alg(r5, &(0x7f0000002500)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000002180)="3c6e79ed3a013eed91f1e40b33f7c5b9463d27992b9828b590", 0x19}, {&(0x7f0000000300)="392ee03e7ee4dac0433a56df730489493a2b842d1e40d3029a3ecac6445f6b2f722a30d2b7992d142ee9495f946d51d69c537b38f9d96cbeecd0b480f518ad8bdfe625a8ac6f03d867e6580150d7a69475f4d17611c4d2320e512d1b7194f87554683e49582c0101b1a3bcc277f6b3640971678709", 0x75}, {&(0x7f0000000380)="0747ac85e7ab39f9c26e01f9cb3c2d39f75305980fad09ac761d64aad03bbbb7883d4b22b85c7fca9dc55aa88065b87b2c78bb249aabaa458648558db47bd147071b55eb1fa77bd78b8f64a092b1951d171b353efb91e9ec388b55052525390b773bc61541f36e557a504e27d12c688c16c2f7939ee88372d0f739de55cfaaa3416009cc0c3984d604e6d189ec74c1189c4558429d385358539b4591404e63", 0x9f}, {&(0x7f00000001c0)}, {&(0x7f00000005c0)="35d0c2c73f83b66c31906ccff6fe0bc1a3ab07ef08f5e52fa459b973878902d77c5d19369010ec3c086dc59057db06adb7400cb521a411f4639c7413356b1b10b9f427bb37918f1ee8ea833ff18418bf7bd1f14c0f63c579266e08c921b433585a7dbf5b8b74f55cd2a05eee8f5607aeb5dcd18cdffedbb8f11027b15d4de9982a1428983dc037e8717a16954c04fca4eaae61837ee1620cdd93fb3f848a5672f2c6afc2ba8853994a623151be583e05914a0575", 0xb4}], 0x5}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x5, &(0x7f00000040c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3}, 0x48)

2.878287491s ago: executing program 1 (id=1045):
r0 = socket(0x848000000015, 0x805, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
syz_open_dev$swradio(&(0x7f0000000080), 0x1, 0x2)
unshare(0xa000600)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {}, 0x8000}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b80000001900674c0000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e2ffffffffffffff000000000000000000000000000000000000000000000300000000000000000040"], 0xb8}}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0x23)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x801)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000480), 0xb)
syz_io_uring_submit(r5, 0x0, 0x0)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r6, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
epoll_create1(0x0)
socket$unix(0x1, 0x1, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r7, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r7, 0x6, 0x14, &(0x7f0000000180)=0x1, 0x87c5)
write$binfmt_script(r7, &(0x7f0000000340)={'#! ', './file0', [], 0xa, "c54a"}, 0xd)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "0600b94e", "d4e9e1c90d89691c"}, 0x38)
getsockopt$inet_dccp_int(0xffffffffffffffff, 0x21, 0x5, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

2.095156988s ago: executing program 1 (id=1046):
syz_emit_ethernet(0x86, &(0x7f0000000200)=ANY=[], 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
rt_sigqueueinfo(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000001b80)={0x0, 0x0, 0x4, {0x2, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000380)=@nat={'nat\x00', 0x19, 0x1000000, 0x90, [], 0x0, 0x0, &(0x7f00000002c0)=[{}, {}, {}]}, 0x108)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f00000002c0))
write$cgroup_int(r5, &(0x7f00000015c0)=0x80, 0x12)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000040)=ANY=[@ANYRESHEX=r6, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa205000000000007020000f8ffffffb703000008000000b704000000000000850000006c0000009500000000000000"], &(0x7f0000000280)='GPL\x00'}, 0x90)

1.972952872s ago: executing program 0 (id=1047):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x80080400)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x4e20, @local}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0x0, &(0x7f0000000000), &(0x7f0000000080)=0x4)

1.851256611s ago: executing program 4 (id=1048):
r0 = syz_io_uring_setup(0x19d3, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x24, &(0x7f00000000c0)=0x5, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
getrlimit(0xc, &(0x7f0000000380))
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000480)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000500)="b50dafbd7933378d35cc11b7b4d0dbef20f043730469797600d562cbb9582f9bddf1c2b512297b36bd3f47b4f405ed2adff20b2d7b92b9bf7de95e3cfe2d685b36c8da0c0a32a21f59220e21a1c1de06f49bff2b9db8101792e7a1d2cf810f5c7d29f5b2377cc1a9548132af5dc57ecbc1ce7a53ae3f8ab3f2166f378744a284938a7d1ea6a410c9674c4ffbb0a2ec753fa551f97c7d2edcf59eade42674fb7f47bd98b0bab9aea2ce8bc9e01ebf884d1d9b91f13397e404eee53988b4237d9b21cf073b1f2f7feee6f7dacd132862f1ddb118c1c1af7b3466f0c1957bbd67ece50eba180f7466", 0xe7}, {&(0x7f0000000600)="40dc127c49fd73cc483c40ebd9758e73e830de64f11dc44579c6127aa6039561e4c5b484ae6930591ed1b748e006cc554c67df87c6e033ef27e4d1ee8290dbbf8eddfa17030794e3a5c575efd4c9fcc15a1e7594d5e00e7d933a9928e8db5145f24dc904d0be43eea3d83a", 0x6b}, {&(0x7f0000000780)="2b67f727cf2605ee888cd5d97092a78bc9393622388ea75d35a0487a55bebbd833537837b6045b1c36c96440a9deec84a8a28bd9bd8d31aa59b2ee6e262d4701861b4acb217b793e76e8a5d5beaf46d8f3fc662e8ff599287dd508ec97021bd7667872316221eb522e2271dbf7341a3676da97acd77b26a01f8de06f503e1f0d13e97bd95737816cb142fd95bce38a533c41eba5c9bfa1d0dbae7aaf872908f41a116754316e81018763c14cf8edc5cefc1ca2ab1b6ef2c3c0f3d83db2", 0xbd}, {&(0x7f0000000700)="8a9f1da88658803403348a6cf97eddf228758202", 0x14}, {&(0x7f0000000840)="19b9846f751af79c229dbf5d952ab9c52cff6d24c2571cccf0f1047f08680ffc33072db3e64cbd06792cf296fff598ec86cbf3ab1d0c723f528a3d1facf7aa", 0x3f}, {&(0x7f0000000880)="cb00da43e909a8602c05f07a6829854ef7555ba4d1f579187b076c3da32f3a0e41f7e0d3629d6a6e07de8a0726e8677333bef9a0c94ca123953deb8d00816dd97613438dcec6d9bf94ce36b09f51175173873f6859ab6f599928cff7e0ecac21a875201b82e70d4ce5121ff07affb92b9dab86146108875962e42c7b44adc111023c7913eabf7ff2ea26121ac53ee98d735e356836cbd67fe4f28613babb9f9c1954f5e4dcf2b3b335a557cf99091492c72ff76c31dd1b0b646d30d1e8495ee61bf64c1c75b243e3ea0afdc0fd162527749d7ee980500f8edd9c6f1174b7", 0xde}, {&(0x7f0000000980)="a964ae30915b63d9355d6d592cc17980f3c661f2c19bda10b84b83a3011cdfeac46265ec790ca7d6a4fe33be8a491406b0d2c8c579e468ef09ff077d70bd69f4bdca4a789bf23b73", 0x48}, {&(0x7f0000000a00)="13", 0x1}], 0x8, &(0x7f0000000b00)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r7]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38, 0x4}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7}, 0x38)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x1, {0x0, r3}})
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
io_uring_enter(r0, 0xa3d, 0x0, 0x0, 0x0, 0xff39)

1.270458979s ago: executing program 3 (id=1049):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
eventfd(0x0)
syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000380)=<r0=>0x0, &(0x7f0000001340)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)

1.130212033s ago: executing program 3 (id=1050):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f0000000140)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x5, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b0a2a7cf704005cd"}}, 0x48}}, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r5=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r3, r5, 0x25, 0x2}, 0x40)
unshare(0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r6, &(0x7f0000000000)={0x1f, @none}, 0x8)
listen(0xffffffffffffffff, 0x0)
ppoll(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaa87aaaaaaaaaaaa86dd60ff00f500140600fe8000000000000000000000000000aafe8000000000040000000000000000aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="050000000508"], 0x80}}, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x6, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "6f8f1b7e3e806009"}}, 0x48}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c000000070000000000000002000006040000000100000000000000feffffff030000000061"], 0x0, 0x3b}, 0x20)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x33, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040)}, 0x38)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r8)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000080)=0x1, 0x0)

1.124159374s ago: executing program 2 (id=1051):
arch_prctl$ARCH_SHSTK_LOCK(0x5003, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x12, r1, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet(0x2, 0x3, 0xa)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000f82818110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
keyctl$describe(0x1e, 0x0, 0x0, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getegid()
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x11}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000000c0)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

0s ago: executing program 2 (id=1052):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000b40)={'wpan4\x00', <r0=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000140), 0xc, &(0x7f0000000bc0)={&(0x7f0000000c40)={0x50, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r0}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0xe3}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x7}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x9}]}, 0x50}, 0x1, 0x0, 0x0, 0x24004004}, 0x4805)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f000000c380)='/proc/crypto\x00', 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$FUSE(r2, &(0x7f0000002240)={0x2020, 0x0, <r3=>0x0}, 0x2020)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000380)={0x2, &(0x7f0000000300)=[{0x5, 0xc8, 0xff, 0x81}, {0x1, 0x1, 0xff}]})
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYRESHEX=r3, @ANYRES32=r3, @ANYBLOB="a2b20100000000000000467b"], 0x120}, 0x1, 0x0, 0x0, 0x40104}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x2}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x21, 0x3, 0x580, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x4b0, 0xffffffff, 0xffffffff, 0x4b0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private2, @private2, [], [], 'veth0\x00', 'syzkaller1\x00'}, 0x0, 0x220, 0x248, 0x0, {}, [@common=@inet=@hashlimit2={{0x150}, {'sit0\x00', {0x0, 0x9, 0x0, 0x0, 0x0, 0x8, 0x5}}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@ipv6={@empty, @mcast1, [], [], 'batadv0\x00', 'veth1\x00'}, 0x0, 0x200, 0x268, 0x0, {}, [@common=@inet=@policy={{0x158}, {[{@ipv6=@private1, [], @ipv4=@remote}, {@ipv6=@dev, [], @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {@ipv4=@multicast2, [], @ipv6=@loopback}, {@ipv6=@rand_addr=' \x01\x00', [], @ipv4=@local}]}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5e0)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
fsopen(&(0x7f0000000040)='cgroup\x00', 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
mount$9p_tcp(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', &(0x7f0000000580), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="7472616e733d97300d24bb78003f3d307830303030303c303030303030303030302c70726976706f72742c00"])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x8, &(0x7f0000000100)=[{0x0, 0x0, 0x1f, 0x3}, {0x3, 0x24, 0x0, 0x6}, {0x81, 0x9, 0x81}, {0x9c0b, 0x2, 0x0, 0x2}, {0x8, 0x1, 0x3, 0x9}, {0x0, 0x9e, 0xa3, 0x3}, {0x5, 0x7, 0x80, 0x9641}, {0x5, 0x93, 0x80, 0x7}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x3, &(0x7f0000000040)=[{0x35, 0x0, 0x1}, {}, {0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

kernel console output (not intermixed with test programs):

0x183/0x2e0
[  301.803127][ T8016]  ? __pfx_lock_release+0x10/0x10
[  301.808212][ T8016]  should_fail_ex+0x3b0/0x4e0
[  301.813129][ T8016]  _copy_from_user+0x2f/0xe0
[  301.817778][ T8016]  ethtool_set_coalesce+0x1dd/0x9d0
[  301.823041][ T8016]  ? __pfx_ethtool_set_coalesce+0x10/0x10
[  301.828830][ T8016]  ? bpf_lsm_capable+0x9/0x10
[  301.833637][ T8016]  ? security_capable+0x90/0xb0
[  301.838562][ T8016]  dev_ethtool+0x84e/0x1bc0
[  301.843214][ T8016]  ? __pfx_dev_ethtool+0x10/0x10
[  301.848205][ T8016]  ? dev_load+0x21/0x1f0
[  301.852488][ T8016]  dev_ioctl+0x785/0x1340
[  301.856842][ T8016]  sock_do_ioctl+0x240/0x460
[  301.861459][ T8016]  ? __pfx_sock_do_ioctl+0x10/0x10
[  301.866602][ T8016]  ? __asan_memset+0x23/0x50
[  301.871211][ T8016]  ? smack_file_ioctl+0x2a1/0x3a0
[  301.876272][ T8016]  sock_ioctl+0x629/0x8e0
[  301.880638][ T8016]  ? __pfx_sock_ioctl+0x10/0x10
[  301.885522][ T8016]  ? __fget_files+0x3f6/0x470
[  301.890234][ T8016]  ? __fget_files+0x29/0x470
[  301.894864][ T8016]  ? bpf_lsm_file_ioctl+0x9/0x10
[  301.899860][ T8016]  ? security_file_ioctl+0x87/0xb0
[  301.904991][ T8016]  ? __pfx_sock_ioctl+0x10/0x10
[  301.909868][ T8016]  __se_sys_ioctl+0xfc/0x170
[  301.914522][ T8016]  do_syscall_64+0xf3/0x230
[  301.919071][ T8016]  ? clear_bhb_loop+0x35/0x90
[  301.923774][ T8016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.929691][ T8016] RIP: 0033:0x7fa09c577299
[  301.934119][ T8016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.953880][ T8016] RSP: 002b:00007fa09bfff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  301.962321][ T8016] RAX: ffffffffffffffda RBX: 00007fa09c705f80 RCX: 00007fa09c577299
[  301.970392][ T8016] RDX: 00000000200000c0 RSI: 0000000000008946 RDI: 0000000000000003
[  301.978454][ T8016] RBP: 00007fa09bfff0a0 R08: 0000000000000000 R09: 0000000000000000
[  301.986443][ T8016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  301.994425][ T8016] R13: 000000000000000b R14: 00007fa09c705f80 R15: 00007fff4f21fca8
[  302.002437][ T8016]  </TASK>
[  303.095039][    T9] usb 1-1: Firmware: major: 0, minor: 0, hardware type: ATUSB (0)
[  303.102936][    T9] usb 1-1: Firmware version (0.0) predates our first public release.
[  303.170222][    T9] usb 1-1: Please update to version 0.2 or newer
[  303.417774][    T9] usb 1-1: USB disconnect, device number 14
[  303.567898][ T8041] Driver unsupported XDP return value 0 on prog  (id 128) dev N/A, expect packet loss!
[  305.790521][ T8057] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  307.320777][ T5311] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  307.713260][ T8080] netlink: 'syz.4.491': attribute type 12 has an invalid length.
[  307.740359][ T8080] netlink: 'syz.4.491': attribute type 11 has an invalid length.
[  307.773426][ T8080] netlink: 190580 bytes leftover after parsing attributes in process `syz.4.491'.
[  307.773500][    T9] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  307.836552][ T5277] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  308.030097][    T9] usb 4-1: config 1 has an invalid descriptor of length 92, skipping remainder of the config
[  308.080417][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  308.083044][ T8087] FAULT_INJECTION: forcing a failure.
[  308.083044][ T8087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.109245][ T5277] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  308.121465][ T5311] usb 5-1: device descriptor read/64, error -71
[  308.127822][ T5277] usb 3-1: config 1 has no interface number 0
[  308.134337][ T5277] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.156502][ T8087] CPU: 1 UID: 0 PID: 8087 Comm: syz.0.494 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  308.162187][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.166772][ T8087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  308.166795][ T8087] Call Trace:
[  308.166806][ T8087]  <TASK>
[  308.166817][ T8087]  dump_stack_lvl+0x241/0x360
[  308.166856][ T8087]  ? __pfx_dump_stack_lvl+0x10/0x10
[  308.201011][ T8087]  ? __pfx__printk+0x10/0x10
[  308.205610][ T8087]  ? __pfx_lock_release+0x10/0x10
[  308.210643][ T8087]  should_fail_ex+0x3b0/0x4e0
[  308.215331][ T8087]  _copy_from_user+0x2f/0xe0
[  308.219923][ T8087]  do_tcp_setsockopt+0x29e/0x2540
[  308.224958][ T8087]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[  308.230430][ T8087]  ? __pfx_lock_acquire+0x10/0x10
[  308.235460][ T8087]  ? __fget_files+0x29/0x470
[  308.240045][ T8087]  ? __mutex_unlock_slowpath+0x21d/0x750
[  308.245679][ T8087]  ? tcp_setsockopt+0x3e/0xf0
[  308.250363][ T8087]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  308.256258][ T8087]  do_sock_setsockopt+0x3af/0x720
[  308.261293][ T8087]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  308.266839][ T8087]  ? __fget_files+0x29/0x470
[  308.271429][ T8087]  ? __fget_files+0x3f6/0x470
[  308.276112][ T8087]  __sys_setsockopt+0x1ae/0x250
[  308.280976][ T8087]  __x64_sys_setsockopt+0xb5/0xd0
[  308.286018][ T8087]  do_syscall_64+0xf3/0x230
[  308.290535][ T8087]  ? clear_bhb_loop+0x35/0x90
[  308.295218][ T8087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.301116][ T8087] RIP: 0033:0x7fc2a4777299
[  308.305531][ T8087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.325131][ T8087] RSP: 002b:00007fc2a557e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  308.333540][ T8087] RAX: ffffffffffffffda RBX: 00007fc2a4905f80 RCX: 00007fc2a4777299
[  308.341503][ T8087] RDX: 0000000000000024 RSI: 0000000000000006 RDI: 0000000000000003
[  308.349466][ T8087] RBP: 00007fc2a557e0a0 R08: 0000000000000004 R09: 0000000000000000
[  308.357433][ T8087] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  308.365415][ T8087] R13: 000000000000000b R14: 00007fc2a4905f80 R15: 00007ffe59d58fc8
[  308.373412][ T8087]  </TASK>
[  308.378417][ T5277] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  308.396586][    T9] usb 4-1: Product: syz
[  308.402219][    T9] usb 4-1: Manufacturer: syz
[  308.407393][ T5277] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  308.436045][ T5277] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  308.445831][ T5277] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.453837][ T5277] usb 3-1: Product: syz
[  308.459174][    T9] usb 4-1: SerialNumber: syz
[  308.466505][ T5277] usb 3-1: Manufacturer: syz
[  308.471177][ T5277] usb 3-1: SerialNumber: syz
[  308.502453][    T9] usb 4-1: bad CDC descriptors
[  308.554763][ T5311] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  308.744678][ T5311] usb 5-1: Using ep0 maxpacket: 16
[  308.843330][ T5311] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  308.871237][ T5311] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  308.908066][ T5311] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.940810][ T5311] usb 5-1: config 0 descriptor??
[  309.290030][ T8080] netlink: 12 bytes leftover after parsing attributes in process `syz.4.491'.
[  309.307230][ T5277] cdc_ncm 3-1:1.1: bind() failure
[  309.551029][ T8080] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  309.627893][ T8080] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  309.730383][ T5311] usbhid 5-1:0.0: can't add hid device: -71
[  309.773831][ T5311] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  309.826701][ T5311] usb 5-1: USB disconnect, device number 16
[  309.906210][ T5278] usb 4-1: USB disconnect, device number 15
[  311.887144][    T8] usb 3-1: USB disconnect, device number 8
[  312.959822][ T8127] netlink: 'syz.1.502': attribute type 12 has an invalid length.
[  312.968060][ T8127] netlink: 'syz.1.502': attribute type 11 has an invalid length.
[  313.045846][ T8127] netlink: 190580 bytes leftover after parsing attributes in process `syz.1.502'.
[  313.434734][ T5230] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  313.454691][ T5280] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  313.635496][ T5230] usb 2-1: Using ep0 maxpacket: 16
[  313.656866][ T5280] usb 1-1: no configurations
[  313.668862][ T5230] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  313.683987][ T5280] usb 1-1: can't read configurations, error -22
[  313.727568][    T8] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  313.738446][ T5230] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  313.748314][ T5230] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.036400][ T5230] usb 2-1: config 0 descriptor??
[  314.094767][ T5280] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  314.138180][    T8] usb 4-1: Using ep0 maxpacket: 32
[  314.158496][    T8] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=a6.59
[  314.180321][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.190074][    T8] usb 4-1: Product: syz
[  314.194445][    T8] usb 4-1: Manufacturer: syz
[  314.199638][    T8] usb 4-1: SerialNumber: syz
[  314.208520][    T8] usb 4-1: config 0 descriptor??
[  314.219356][    T8] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  314.260931][ T8127] netlink: 12 bytes leftover after parsing attributes in process `syz.1.502'.
[  314.286621][ T5280] usb 1-1: no configurations
[  314.299404][ T5280] usb 1-1: can't read configurations, error -22
[  314.311215][ T5280] usb usb1-port1: attempt power cycle
[  314.588803][ T8127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  314.607499][ T8127] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  315.322245][    T8] gspca_topro: reg_w err -110
[  315.565380][    T8] gspca_topro: Sensor soi763a
[  315.642035][ T5230] usbhid 2-1:0.0: can't add hid device: -71
[  315.685019][ T5230] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  315.792570][ T5230] usb 2-1: USB disconnect, device number 13
[  315.814682][ T5280] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  315.924709][ T5280] usb 1-1: device descriptor read/8, error -71
[  316.549794][ T5311] usb 4-1: USB disconnect, device number 16
[  316.601758][ T8201] xt_policy: neither incoming nor outgoing policy selected
[  316.841127][   T29] audit: type=1326 audit(1722151745.469:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8199 comm="syz.0.510" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc2a4777299 code=0x0
[  316.933342][ T8206] 9pnet: Could not find request transport: �0$�x
[  317.007016][ T5232] Bluetooth: hci4: unexpected subevent 0x06 length: 5 < 10
[  317.485323][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  317.498169][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  321.594807][    T8] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  321.804757][    T8] usb 3-1: Using ep0 maxpacket: 32
[  321.910362][    T8] usb 3-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=a6.59
[  321.957778][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.034726][    T8] usb 3-1: Product: syz
[  322.059403][    T8] usb 3-1: Manufacturer: syz
[  322.285045][    T8] usb 3-1: SerialNumber: syz
[  322.590765][    T8] usb 3-1: config 0 descriptor??
[  322.607721][    T8] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  323.136396][    T8] gspca_topro: reg_w err -110
[  323.194703][    T8] gspca_topro: Sensor soi763a
[  323.955119][    T8] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  324.197484][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  324.248426][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  324.298587][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  324.632602][    T8] usb 1-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  324.657825][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.670678][    T8] usb 1-1: config 0 descriptor??
[  324.681769][    T8] gspca_main: abcd:cdee too many config
[  324.691714][    T8] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  324.701356][    T8] usb 1-1: MIDIStreaming interface descriptor not found
[  324.907073][ T8292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  324.917164][ T8292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  324.938868][ T5230] usb 1-1: USB disconnect, device number 19
[  325.384932][    T8] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  325.595939][    T8] usb 5-1: Using ep0 maxpacket: 16
[  325.645613][    T8] usb 5-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  325.695013][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.703083][    T8] usb 5-1: Product: syz
[  325.806935][   T46] usb 3-1: USB disconnect, device number 9
[  325.967502][    T8] usb 5-1: Manufacturer: syz
[  325.972228][    T8] usb 5-1: SerialNumber: syz
[  325.979965][    T8] usb 5-1: config 0 descriptor??
[  325.988206][    T8] visor 5-1:0.0: Sony Clie 3.5 converter detected
[  326.211864][    T8] usb 5-1: clie_3_5_startup: get config number failed: -71
[  326.245294][    T8] visor 5-1:0.0: probe with driver visor failed with error -71
[  326.295127][    T8] usb 5-1: USB disconnect, device number 17
[  327.080573][ T8324] syz.3.539 (8324) used greatest stack depth: 18424 bytes left
[  327.631247][ T8334] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  327.871728][ T5307] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  328.094707][ T5307] usb 3-1: Using ep0 maxpacket: 16
[  328.176056][ T5307] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  328.195527][ T5307] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.222359][ T5307] usb 3-1: Product: syz
[  328.265839][ T5307] usb 3-1: Manufacturer: syz
[  328.313187][ T5307] usb 3-1: SerialNumber: syz
[  328.350333][ T5307] usb 3-1: config 0 descriptor??
[  328.584475][ T5307] usb 3-1: Not enough endpoints found in device, aborting!
[  328.939174][ T5307] usb 3-1: USB disconnect, device number 10
[  329.832208][ T5278] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  330.750927][ T5278] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  330.770993][ T5278] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  330.919375][ T5278] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  330.965900][ T5278] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  331.033653][ T5278] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.063628][ T5278] usb 5-1: config 0 descriptor??
[  331.075749][ T5278] gspca_main: abcd:cdee too many config
[  331.098244][ T5278] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  331.121322][ T5278] usb 5-1: MIDIStreaming interface descriptor not found
[  331.254745][ T5280] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  331.329454][ T8351] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  331.375120][ T8351] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  331.487195][ T5307] usb 5-1: USB disconnect, device number 18
[  331.505386][ T5280] usb 1-1: no configurations
[  331.510363][ T5280] usb 1-1: can't read configurations, error -22
[  331.664914][ T5280] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  331.877716][ T5280] usb 1-1: no configurations
[  331.884793][ T5280] usb 1-1: can't read configurations, error -22
[  331.921833][ T5280] usb usb1-port1: attempt power cycle
[  334.144752][ T8408] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  334.864854][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[  335.854170][ T8425] FAULT_INJECTION: forcing a failure.
[  335.854170][ T8425] name failslab, interval 1, probability 0, space 0, times 0
[  335.974655][ T8425] CPU: 1 UID: 0 PID: 8425 Comm: syz.4.560 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  335.984953][ T8425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  335.995059][ T8425] Call Trace:
[  335.998375][ T8425]  <TASK>
[  336.001330][ T8425]  dump_stack_lvl+0x241/0x360
[  336.006069][ T8425]  ? __pfx_dump_stack_lvl+0x10/0x10
[  336.011311][ T8425]  ? __pfx__printk+0x10/0x10
[  336.015940][ T8425]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  336.021957][ T8425]  ? __pfx___might_resched+0x10/0x10
[  336.027304][ T8425]  should_fail_ex+0x3b0/0x4e0
[  336.032028][ T8425]  should_failslab+0xac/0x100
[  336.036748][ T8425]  ? __alloc_skb+0x1c3/0x440
[  336.041389][ T8425]  kmem_cache_alloc_node_noprof+0x71/0x320
[  336.047335][ T8425]  __alloc_skb+0x1c3/0x440
[  336.051980][ T8425]  ? __pfx___alloc_skb+0x10/0x10
[  336.056963][ T8425]  ? netlink_autobind+0xd6/0x2f0
[  336.061935][ T8425]  ? netlink_autobind+0x2b0/0x2f0
[  336.067004][ T8425]  netlink_sendmsg+0x638/0xcb0
[  336.071824][ T8425]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.077155][ T8425]  ? __import_iovec+0x536/0x820
[  336.082042][ T8425]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  336.087369][ T8425]  ? security_socket_sendmsg+0x87/0xb0
[  336.092860][ T8425]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.098183][ T8425]  __sock_sendmsg+0x221/0x270
[  336.102906][ T8425]  ____sys_sendmsg+0x525/0x7d0
[  336.107728][ T8425]  ? __pfx_____sys_sendmsg+0x10/0x10
[  336.113076][ T8425]  __sys_sendmsg+0x2b0/0x3a0
[  336.117723][ T8425]  ? __pfx___sys_sendmsg+0x10/0x10
[  336.122871][ T8425]  ? vfs_write+0x7c4/0xc90
[  336.127363][ T8425]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  336.133829][ T8425]  ? do_syscall_64+0x100/0x230
[  336.138659][ T8425]  ? do_syscall_64+0xb6/0x230
[  336.143374][ T8425]  do_syscall_64+0xf3/0x230
[  336.147908][ T8425]  ? clear_bhb_loop+0x35/0x90
[  336.152627][ T8425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.158562][ T8425] RIP: 0033:0x7fd67dd77299
[  336.163012][ T8425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.182649][ T8425] RSP: 002b:00007fd67eaac048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  336.191111][ T8425] RAX: ffffffffffffffda RBX: 00007fd67df06058 RCX: 00007fd67dd77299
[  336.199115][ T8425] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000c
[  336.207117][ T8425] RBP: 00007fd67eaac0a0 R08: 0000000000000000 R09: 0000000000000000
[  336.215131][ T8425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.223217][ T8425] R13: 000000000000006e R14: 00007fd67df06058 R15: 00007ffd7a5c4988
[  336.231251][ T8425]  </TASK>
[  337.659417][ T8438] netlink: 20 bytes leftover after parsing attributes in process `syz.0.563'.
[  337.668630][ T8438] netlink: 'syz.0.563': attribute type 1 has an invalid length.
[  339.936774][ T8495] netlink: 'syz.3.568': attribute type 12 has an invalid length.
[  339.987431][ T5232] Bluetooth: hci3: command 0x0406 tx timeout
[  340.004236][ T8495] netlink: 'syz.3.568': attribute type 11 has an invalid length.
[  340.054823][ T8495] netlink: 190580 bytes leftover after parsing attributes in process `syz.3.568'.
[  340.274867][ T5280] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  340.484831][ T5280] usb 4-1: Using ep0 maxpacket: 16
[  340.497894][ T5280] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  340.773224][ T5280] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  340.783402][ T5280] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.908808][ T5230] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  340.917724][ T5280] usb 4-1: config 0 descriptor??
[  341.139061][ T5230] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  341.163021][ T5230] usb 3-1: config 0 has no interfaces?
[  341.186593][ T5230] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  341.215471][ T5230] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.251341][ T8495] netlink: 12 bytes leftover after parsing attributes in process `syz.3.568'.
[  341.285959][ T5230] usb 3-1: config 0 descriptor??
[  341.502290][ T8495] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  341.528534][ T8495] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  341.599427][ T5280] usbhid 4-1:0.0: can't add hid device: -71
[  341.616438][ T5280] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  341.634886][ T8505] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  341.647922][ T5280] usb 4-1: USB disconnect, device number 17
[  341.670188][ T8505] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  341.800358][ T8505] trusted_key: encrypted_key: master key parameter '��g9*pm�s-Ȼ8��E����$�v���' is invalid
[  341.848781][ T8505] netlink: 40 bytes leftover after parsing attributes in process `syz.2.571'.
[  341.889620][    T8] usb 3-1: USB disconnect, device number 11
[  343.057320][ T8529] netlink: 20 bytes leftover after parsing attributes in process `syz.3.576'.
[  343.066421][ T8529] netlink: 'syz.3.576': attribute type 1 has an invalid length.
[  345.408766][ T8582] netlink: 44 bytes leftover after parsing attributes in process `syz.2.582'.
[  345.468473][ T8582] netlink: 28 bytes leftover after parsing attributes in process `syz.2.582'.
[  347.014120][ T8609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.588'.
[  347.023515][ T8609] netlink: 'syz.1.588': attribute type 1 has an invalid length.
[  348.474556][ T8659] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  350.376733][ T8671] FAULT_INJECTION: forcing a failure.
[  350.376733][ T8671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  350.391552][ T8671] CPU: 0 UID: 0 PID: 8671 Comm: syz.4.594 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  350.401864][ T8671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  350.411951][ T8671] Call Trace:
[  350.415256][ T8671]  <TASK>
[  350.418209][ T8671]  dump_stack_lvl+0x241/0x360
[  350.422925][ T8671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  350.428156][ T8671]  ? __pfx__printk+0x10/0x10
[  350.432817][ T8671]  ? __pfx_lock_release+0x10/0x10
[  350.437976][ T8671]  should_fail_ex+0x3b0/0x4e0
[  350.442696][ T8671]  _copy_from_user+0x2f/0xe0
[  350.447344][ T8671]  copy_from_sockptr_offset+0x6b/0xb0
[  350.452754][ T8671]  do_ip6t_set_ctl+0xbe6/0x1270
[  350.457653][ T8671]  ? __pfx___might_resched+0x10/0x10
[  350.462973][ T8671]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  350.468293][ T8671]  ? __pfx_lock_release+0x10/0x10
[  350.473373][ T8671]  ? __mutex_unlock_slowpath+0x21d/0x750
[  350.479050][ T8671]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  350.485083][ T8671]  nf_setsockopt+0x295/0x2c0
[  350.489719][ T8671]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  350.495696][ T8671]  do_sock_setsockopt+0x3af/0x720
[  350.500777][ T8671]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  350.506358][ T8671]  ? __fget_files+0x29/0x470
[  350.510962][ T8671]  ? __fget_files+0x3f6/0x470
[  350.515660][ T8671]  __sys_setsockopt+0x1ae/0x250
[  350.520537][ T8671]  __x64_sys_setsockopt+0xb5/0xd0
[  350.525670][ T8671]  do_syscall_64+0xf3/0x230
[  350.530191][ T8671]  ? clear_bhb_loop+0x35/0x90
[  350.534886][ T8671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.540799][ T8671] RIP: 0033:0x7fd67dd77299
[  350.545231][ T8671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.565027][ T8671] RSP: 002b:00007fd67eb16048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  350.573453][ T8671] RAX: ffffffffffffffda RBX: 00007fd67df05f80 RCX: 00007fd67dd77299
[  350.581531][ T8671] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  350.589527][ T8671] RBP: 00007fd67eb160a0 R08: 00000000000003d3 R09: 0000000000000000
[  350.597539][ T8671] R10: 00000000200003c0 R11: 0000000000000246 R12: 0000000000000001
[  350.605520][ T8671] R13: 000000000000000b R14: 00007fd67df05f80 R15: 00007ffd7a5c4988
[  350.613686][ T8671]  </TASK>
[  357.012866][   T46] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  357.471168][   T46] usb 4-1: Using ep0 maxpacket: 32
[  357.507867][   T46] usb 4-1: config 0 has an invalid interface number: 116 but max is 0
[  357.537170][   T46] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  358.754108][   T46] usb 4-1: config 0 has no interface number 0
[  358.763335][   T46] usb 4-1: config 0 interface 116 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 10
[  358.777436][   T46] usb 4-1: New USB device found, idVendor=2c7c, idProduct=0512, bcdDevice=5d.d4
[  358.826997][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.945718][   T46] usb 4-1: config 0 descriptor??
[  359.240541][   T46] qmi_wwan 4-1:0.116: probe with driver qmi_wwan failed with error -22
[  359.279081][   T46] usb 4-1: USB disconnect, device number 18
[  359.342546][ T8768] trusted_key: encrypted_key: insufficient parameters specified
[  359.373149][ T8768] trusted_key: encrypted_key: insufficient parameters specified
[  359.402359][ T8768] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  359.435061][ T8768] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  359.764655][ T5278] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  359.974878][ T5278] usb 3-1: Using ep0 maxpacket: 32
[  359.987143][ T5278] usb 3-1: New USB device found, idVendor=0e41, idProduct=414d, bcdDevice=28.2f
[  359.998437][ T5278] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.009610][ T5278] usb 3-1: Product: syz
[  360.017172][ T5278] usb 3-1: Manufacturer: syz
[  360.021874][ T5278] usb 3-1: SerialNumber: syz
[  360.036698][ T5278] usb 3-1: config 0 descriptor??
[  360.069717][ T5278] snd_usb_podhd 3-1:0.0: Line 6 POD HD500 found
[  360.081578][ T5278] usb 3-1: selecting invalid altsetting 1
[  360.094694][ T5278] snd_usb_podhd 3-1:0.0: set_interface failed
[  360.102299][ T5278] snd_usb_podhd 3-1:0.0: Line 6 POD HD500 now disconnected
[  360.124722][ T5278] snd_usb_podhd 3-1:0.0: probe with driver snd_usb_podhd failed with error -22
[  360.234665][   T46] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  360.279019][ T5278] usb 3-1: USB disconnect, device number 12
[  360.434853][   T46] usb 4-1: Using ep0 maxpacket: 16
[  360.449250][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  360.471095][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  360.494424][   T46] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  360.516158][   T46] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  360.527548][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.539217][   T46] usb 4-1: config 0 descriptor??
[  361.052898][   T46] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0004/input/input35
[  361.220830][   T46] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  361.318646][   T46] usb 4-1: USB disconnect, device number 19
[  363.896009][ T8823] netlink: 'syz.3.637': attribute type 12 has an invalid length.
[  363.896042][ T8823] netlink: 'syz.3.637': attribute type 11 has an invalid length.
[  363.896060][ T8823] netlink: 190580 bytes leftover after parsing attributes in process `syz.3.637'.
[  364.244760][    T8] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  364.331658][    C1] eth0: bad gso: type: 1, size: 1408
[  364.444676][    T8] usb 4-1: Using ep0 maxpacket: 16
[  364.452728][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  364.641605][    T8] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  364.661413][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.700325][    T8] usb 4-1: config 0 descriptor??
[  365.001234][ T8823] netlink: 12 bytes leftover after parsing attributes in process `syz.3.637'.
[  365.374822][ T8823] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  365.396720][ T8823] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  365.439397][    T8] hid (null): invalid report_size 24940
[  365.455619][    T8] hid (null): nested delimiters
[  365.460704][    T8] hid (null): nested delimiters
[  365.466344][    T8] hid (null): nested delimiters
[  365.471674][    T8] hid (null): report_id 2838798905 is invalid
[  365.479511][    T8] hid (null): unknown global tag 0xc
[  365.485575][    T8] hid (null): unknown global tag 0xa5
[  365.495771][    T8] hid (null): unknown global tag 0xd
[  365.504842][    T8] hid (null): unknown global tag 0xc
[  365.524052][    T8] hid-generic 0003:0158:0100.0005: unknown main item tag 0x1
[  365.844154][    T8] hid-generic 0003:0158:0100.0005: unexpected long global item
[  365.921506][    T8] hid-generic 0003:0158:0100.0005: probe with driver hid-generic failed with error -22
[  366.180291][ T8859] netlink: 20 bytes leftover after parsing attributes in process `syz.4.646'.
[  366.189374][ T8859] netlink: 'syz.4.646': attribute type 1 has an invalid length.
[  366.583670][    T8] usb 4-1: USB disconnect, device number 20
[  368.069806][ T8921] sp0: Synchronizing with TNC
[  368.145680][ T8921] netlink: 12 bytes leftover after parsing attributes in process `syz.1.653'.
[  368.187920][ T8921] x_tables: duplicate underflow at hook 3
[  368.597796][ T8930] FAULT_INJECTION: forcing a failure.
[  368.597796][ T8930] name failslab, interval 1, probability 0, space 0, times 0
[  368.610954][ T8930] CPU: 1 UID: 0 PID: 8930 Comm: syz.2.655 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  368.621329][ T8930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  368.631511][ T8930] Call Trace:
[  368.634817][ T8930]  <TASK>
[  368.637774][ T8930]  dump_stack_lvl+0x241/0x360
[  368.642497][ T8930]  ? __pfx_dump_stack_lvl+0x10/0x10
[  368.647847][ T8930]  ? __pfx__printk+0x10/0x10
[  368.652579][ T8930]  should_fail_ex+0x3b0/0x4e0
[  368.657308][ T8930]  ? skb_clone+0x20c/0x390
[  368.661758][ T8930]  should_failslab+0xac/0x100
[  368.666481][ T8930]  ? skb_clone+0x20c/0x390
[  368.670955][ T8930]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  368.676379][ T8930]  skb_clone+0x20c/0x390
[  368.680676][ T8930]  ? dev_queue_xmit_nit+0x220/0xc10
[  368.685909][ T8930]  dev_queue_xmit_nit+0x419/0xc10
[  368.690961][ T8930]  ? dev_queue_xmit_nit+0x2b/0xc10
[  368.696094][ T8930]  ? validate_xmit_skb+0x9f9/0x1120
[  368.701315][ T8930]  dev_hard_start_xmit+0x15f/0x7e0
[  368.706464][ T8930]  ? __pfx_validate_xmit_skb+0x10/0x10
[  368.712067][ T8930]  __dev_queue_xmit+0x1b63/0x3e90
[  368.717120][ T8930]  ? kasan_save_track+0x51/0x80
[  368.721990][ T8930]  ? do_syscall_64+0xf3/0x230
[  368.726685][ T8930]  ? __dev_queue_xmit+0x2da/0x3e90
[  368.731826][ T8930]  ? __pfx___dev_queue_xmit+0x10/0x10
[  368.737219][ T8930]  ? __copy_skb_header+0x437/0x5b0
[  368.742333][ T8930]  ? __asan_memcpy+0x40/0x70
[  368.746948][ T8930]  ? __copy_skb_header+0x437/0x5b0
[  368.752169][ T8930]  ? __skb_clone+0x454/0x6c0
[  368.756812][ T8930]  ? skb_clone+0x240/0x390
[  368.761253][ T8930]  __netlink_deliver_tap+0x54d/0x7c0
[  368.766596][ T8930]  ? netlink_deliver_tap+0x2e/0x1b0
[  368.771899][ T8930]  netlink_deliver_tap+0x19d/0x1b0
[  368.777054][ T8930]  netlink_unicast+0x7be/0x990
[  368.781867][ T8930]  ? __pfx_netlink_unicast+0x10/0x10
[  368.787160][ T8930]  ? __virt_addr_valid+0x183/0x530
[  368.792282][ T8930]  ? __check_object_size+0x49c/0x900
[  368.797583][ T8930]  ? bpf_lsm_netlink_send+0x9/0x10
[  368.802726][ T8930]  netlink_sendmsg+0x8e4/0xcb0
[  368.807517][ T8930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.812817][ T8930]  ? __import_iovec+0x536/0x820
[  368.817686][ T8930]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  368.822995][ T8930]  ? security_socket_sendmsg+0x87/0xb0
[  368.828479][ T8930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.833809][ T8930]  __sock_sendmsg+0x221/0x270
[  368.838522][ T8930]  ____sys_sendmsg+0x525/0x7d0
[  368.843327][ T8930]  ? __pfx_____sys_sendmsg+0x10/0x10
[  368.848656][ T8930]  __sys_sendmsg+0x2b0/0x3a0
[  368.853271][ T8930]  ? __pfx___sys_sendmsg+0x10/0x10
[  368.858398][ T8930]  ? vfs_write+0x7c4/0xc90
[  368.862858][ T8930]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  368.869472][ T8930]  ? do_syscall_64+0x100/0x230
[  368.874254][ T8930]  ? do_syscall_64+0xb6/0x230
[  368.878948][ T8930]  do_syscall_64+0xf3/0x230
[  368.883464][ T8930]  ? clear_bhb_loop+0x35/0x90
[  368.888167][ T8930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.894091][ T8930] RIP: 0033:0x7f39d3d77299
[  368.898647][ T8930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.918376][ T8930] RSP: 002b:00007f39d4a69048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  368.926816][ T8930] RAX: ffffffffffffffda RBX: 00007f39d3f05f80 RCX: 00007f39d3d77299
[  368.934819][ T8930] RDX: 0000000000000000 RSI: 00000000200008c0 RDI: 0000000000000003
[  368.942911][ T8930] RBP: 00007f39d4a690a0 R08: 0000000000000000 R09: 0000000000000000
[  368.950995][ T8930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.958997][ T8930] R13: 000000000000000b R14: 00007f39d3f05f80 R15: 00007fff84595768
[  368.967001][ T8930]  </TASK>
[  369.648405][ T8940] netlink: 8 bytes leftover after parsing attributes in process `syz.4.659'.
[  370.073111][ T8951] netlink: 'syz.3.661': attribute type 12 has an invalid length.
[  370.081833][ T8951] netlink: 'syz.3.661': attribute type 11 has an invalid length.
[  370.091146][ T8951] netlink: 190580 bytes leftover after parsing attributes in process `syz.3.661'.
[  370.424664][ T5311] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  370.624873][ T5311] usb 4-1: Using ep0 maxpacket: 16
[  370.634870][   T46] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  370.672069][ T5311] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  370.719099][ T8963] FAULT_INJECTION: forcing a failure.
[  370.719099][ T8963] name failslab, interval 1, probability 0, space 0, times 0
[  370.734710][ T5311] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  370.744686][ T5311] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.753424][ T8963] CPU: 1 UID: 0 PID: 8963 Comm: syz.0.666 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  370.763726][ T8963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  370.773828][ T8963] Call Trace:
[  370.777144][ T8963]  <TASK>
[  370.780110][ T8963]  dump_stack_lvl+0x241/0x360
[  370.784845][ T8963]  ? __pfx_dump_stack_lvl+0x10/0x10
[  370.790115][ T8963]  ? __pfx__printk+0x10/0x10
[  370.794748][ T8963]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  370.800776][ T8963]  ? __pfx___might_resched+0x10/0x10
[  370.806105][ T8963]  should_fail_ex+0x3b0/0x4e0
[  370.810835][ T8963]  should_failslab+0xac/0x100
[  370.815564][ T8963]  ? __alloc_skb+0x1c3/0x440
[  370.820215][ T8963]  kmem_cache_alloc_node_noprof+0x71/0x320
[  370.826089][ T8963]  __alloc_skb+0x1c3/0x440
[  370.830568][ T8963]  ? __pfx___alloc_skb+0x10/0x10
[  370.835566][ T8963]  ? netlink_autobind+0xd6/0x2f0
[  370.840573][ T8963]  ? netlink_autobind+0x2b0/0x2f0
[  370.845675][ T8963]  netlink_sendmsg+0x638/0xcb0
[  370.850499][ T8963]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.855846][ T8963]  ? __import_iovec+0x536/0x820
[  370.860743][ T8963]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  370.866069][ T8963]  ? security_socket_sendmsg+0x87/0xb0
[  370.871595][ T8963]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.876928][ T8963]  __sock_sendmsg+0x221/0x270
[  370.881650][ T8963]  ____sys_sendmsg+0x525/0x7d0
[  370.886479][ T8963]  ? __pfx_____sys_sendmsg+0x10/0x10
[  370.891838][ T8963]  __sys_sendmsg+0x2b0/0x3a0
[  370.896492][ T8963]  ? __pfx___sys_sendmsg+0x10/0x10
[  370.901649][ T8963]  ? vfs_write+0x7c4/0xc90
[  370.906233][ T8963]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  370.912737][ T8963]  ? do_syscall_64+0x100/0x230
[  370.917566][ T8963]  ? do_syscall_64+0xb6/0x230
[  370.922299][ T8963]  do_syscall_64+0xf3/0x230
[  370.926849][ T8963]  ? clear_bhb_loop+0x35/0x90
[  370.931672][ T8963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.937621][ T8963] RIP: 0033:0x7fc2a4777299
[  370.942088][ T8963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.961740][ T8963] RSP: 002b:00007fc2a557e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  370.970217][ T8963] RAX: ffffffffffffffda RBX: 00007fc2a4905f80 RCX: 00007fc2a4777299
[  370.978251][ T8963] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000007
[  370.986257][ T8963] RBP: 00007fc2a557e0a0 R08: 0000000000000000 R09: 0000000000000000
[  370.994271][ T8963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.002279][ T8963] R13: 000000000000000b R14: 00007fc2a4905f80 R15: 00007ffe59d58fc8
[  371.010316][ T8963]  </TASK>
[  371.024045][ T5311] usb 4-1: config 0 descriptor??
[  371.033170][ T8970] FAULT_INJECTION: forcing a failure.
[  371.033170][ T8970] name failslab, interval 1, probability 0, space 0, times 0
[  371.054762][ T8970] CPU: 1 UID: 0 PID: 8970 Comm: syz.4.669 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  371.065175][ T8970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  371.075284][ T8970] Call Trace:
[  371.078576][ T8970]  <TASK>
[  371.081561][ T8970]  dump_stack_lvl+0x241/0x360
[  371.086353][ T8970]  ? __pfx_dump_stack_lvl+0x10/0x10
[  371.091572][ T8970]  ? __pfx__printk+0x10/0x10
[  371.096181][ T8970]  ? __kmalloc_noprof+0xb0/0x400
[  371.101136][ T8970]  ? __pfx___might_resched+0x10/0x10
[  371.106456][ T8970]  ? __mutex_lock+0x2ef/0xd70
[  371.111148][ T8970]  should_fail_ex+0x3b0/0x4e0
[  371.115849][ T8970]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  371.122105][ T8970]  should_failslab+0xac/0x100
[  371.126799][ T8970]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  371.133049][ T8970]  __kmalloc_noprof+0xd8/0x400
[  371.137864][ T8970]  ? safesetid_security_capable+0xb2/0x1d0
[  371.143771][ T8970]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  371.149861][ T8970]  genl_rcv_msg+0x802/0xec0
[  371.154382][ T8970]  ? mark_lock+0x9a/0x350
[  371.158738][ T8970]  ? __pfx_genl_rcv_msg+0x10/0x10
[  371.163805][ T8970]  ? __pfx_lock_acquire+0x10/0x10
[  371.168856][ T8970]  ? __pfx_wg_set_device+0x10/0x10
[  371.174010][ T8970]  ? __pfx___might_resched+0x10/0x10
[  371.179322][ T8970]  netlink_rcv_skb+0x1e3/0x430
[  371.184102][ T8970]  ? __pfx_genl_rcv_msg+0x10/0x10
[  371.189145][ T8970]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  371.194454][ T8970]  ? __netlink_deliver_tap+0x77e/0x7c0
[  371.199940][ T8970]  genl_rcv+0x28/0x40
[  371.203938][ T8970]  netlink_unicast+0x7f0/0x990
[  371.208726][ T8970]  ? __pfx_netlink_unicast+0x10/0x10
[  371.214020][ T8970]  ? __virt_addr_valid+0x183/0x530
[  371.219144][ T8970]  ? __check_object_size+0x49c/0x900
[  371.224443][ T8970]  ? bpf_lsm_netlink_send+0x9/0x10
[  371.229582][ T8970]  netlink_sendmsg+0x8e4/0xcb0
[  371.234375][ T8970]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.239681][ T8970]  ? __import_iovec+0x536/0x820
[  371.244554][ T8970]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  371.249862][ T8970]  ? security_socket_sendmsg+0x87/0xb0
[  371.255358][ T8970]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.260657][ T8970]  __sock_sendmsg+0x221/0x270
[  371.265350][ T8970]  ____sys_sendmsg+0x525/0x7d0
[  371.270139][ T8970]  ? __pfx_____sys_sendmsg+0x10/0x10
[  371.275458][ T8970]  __sys_sendmsg+0x2b0/0x3a0
[  371.280073][ T8970]  ? __pfx___sys_sendmsg+0x10/0x10
[  371.285225][ T8970]  ? vfs_write+0x7c4/0xc90
[  371.289842][ T8970]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  371.296203][ T8970]  ? do_syscall_64+0x100/0x230
[  371.300982][ T8970]  ? do_syscall_64+0xb6/0x230
[  371.305669][ T8970]  do_syscall_64+0xf3/0x230
[  371.310181][ T8970]  ? clear_bhb_loop+0x35/0x90
[  371.314891][ T8970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.320800][ T8970] RIP: 0033:0x7fd67dd77299
[  371.325236][ T8970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.345034][ T8970] RSP: 002b:00007fd67eb16048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.353461][ T8970] RAX: ffffffffffffffda RBX: 00007fd67df05f80 RCX: 00007fd67dd77299
[  371.361442][ T8970] RDX: 0000000000000000 RSI: 0000000020001000 RDI: 0000000000000003
[  371.369421][ T8970] RBP: 00007fd67eb160a0 R08: 0000000000000000 R09: 0000000000000000
[  371.377402][ T8970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.385390][ T8970] R13: 000000000000000b R14: 00007fd67df05f80 R15: 00007ffd7a5c4988
[  371.393398][ T8970]  </TASK>
[  371.416812][ T8971] netlink: 60 bytes leftover after parsing attributes in process `syz.1.668'.
[  371.444707][   T46] usb 3-1: Using ep0 maxpacket: 32
[  371.507559][   T46] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  371.521417][ T8951] netlink: 12 bytes leftover after parsing attributes in process `syz.3.661'.
[  371.567715][   T46] usb 3-1: New USB device found, idVendor=06cd, idProduct=0108, bcdDevice=f3.0c
[  371.610170][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=1
[  371.627197][   T46] usb 3-1: Product: syz
[  371.631473][   T46] usb 3-1: Manufacturer: syz
[  371.656084][   T46] usb 3-1: SerialNumber: syz
[  371.687389][   T46] usb 3-1: config 0 descriptor??
[  371.712558][   T46] keyspan 3-1:0.0: Keyspan 1 port adapter converter detected
[  371.751108][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 87
[  371.764460][ T8951] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  371.772524][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 7
[  371.805111][ T8951] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  371.807658][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 81
[  371.837298][ T5311] hid (null): invalid report_size 24940
[  371.876958][ T5311] hid (null): nested delimiters
[  371.881888][ T5311] hid (null): nested delimiters
[  371.892170][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 1
[  371.901420][ T5311] hid (null): nested delimiters
[  371.933212][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 2
[  371.942075][ T5311] hid (null): report_id 2838798905 is invalid
[  371.962495][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 85
[  371.974965][ T5311] hid (null): unknown global tag 0xc
[  371.980356][ T5311] hid (null): unknown global tag 0xa5
[  372.001598][   T46] keyspan 3-1:0.0: found no endpoint descriptor for endpoint 5
[  372.018992][ T5311] hid (null): unknown global tag 0xd
[  372.024455][ T5311] hid (null): unknown global tag 0xc
[  372.045335][   T46] usb 3-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  372.057895][ T5311] hid-generic 0003:0158:0100.0006: unknown main item tag 0x1
[  372.070212][   T46] usb 3-1: USB disconnect, device number 13
[  372.088256][ T5311] hid-generic 0003:0158:0100.0006: unexpected long global item
[  372.106339][   T46] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  372.117031][ T5311] hid-generic 0003:0158:0100.0006: probe with driver hid-generic failed with error -22
[  372.133849][   T46] keyspan 3-1:0.0: device disconnected
[  372.166955][ T5311] usb 4-1: USB disconnect, device number 21
[  372.341225][ T7027] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.601318][ T7027] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.923985][ T7027] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.136383][ T7027] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.573060][ T7027] bridge_slave_1: left allmulticast mode
[  373.595729][ T7027] bridge_slave_1: left promiscuous mode
[  373.607167][ T7027] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.635250][ T7027] bridge_slave_0: left allmulticast mode
[  373.641054][ T7027] bridge_slave_0: left promiscuous mode
[  373.647532][ T7027] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.683933][ T5232] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  373.693842][ T5232] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  373.702077][ T5232] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  373.712109][ T5232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  373.720538][ T5232] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  373.728167][ T5232] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  374.216761][ T7027] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  374.263624][ T7027] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  374.280270][ T7027] bond0 (unregistering): Released all slaves
[  375.815802][   T54] Bluetooth: hci0: command tx timeout
[  375.974755][    T8] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  376.165022][    T8] usb 3-1: Using ep0 maxpacket: 8
[  376.200284][    T8] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  376.246286][    T8] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  377.024597][    T8] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  377.044576][    T8] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  377.047144][ T6944] tipc: Subscription rejected, illegal request
[  377.202057][    T8] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  377.224618][    T8] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  377.236368][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.474869][    T8] usb 3-1: usb_control_msg returned -32
[  377.480560][    T8] usbtmc 3-1:16.0: can't read capabilities
[  377.665799][   T46] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  377.846335][ T8998] chnl_net:caif_netlink_parms(): no params data found
[  377.859469][ T9057] usbtmc 3-1:16.0: usbtmc488_ioctl_trigger returned -90
[  377.885069][   T46] usb 4-1: Using ep0 maxpacket: 32
[  377.894781][   T54] Bluetooth: hci0: command tx timeout
[  377.910681][   T46] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  377.937204][   T46] usb 4-1: New USB device found, idVendor=06cd, idProduct=0108, bcdDevice=f3.0c
[  377.959608][ T7027] hsr_slave_0: left promiscuous mode
[  377.959609][   T46] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=1
[  377.959639][   T46] usb 4-1: Product: syz
[  377.981077][   T46] usb 4-1: Manufacturer: syz
[  377.981198][ T7027] hsr_slave_1: left promiscuous mode
[  378.001949][ T7027] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  378.005619][   T46] usb 4-1: SerialNumber: syz
[  378.016509][ T7027] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.025091][   T46] usb 4-1: config 0 descriptor??
[  378.035712][ T7027] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  378.043454][ T7027] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.062211][   T46] keyspan 4-1:0.0: Keyspan 1 port adapter converter detected
[  378.076444][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 87
[  378.094232][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 7
[  378.117743][ T7027] veth1_macvtap: left promiscuous mode
[  378.124153][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[  378.132509][ T7027] veth0_macvtap: left promiscuous mode
[  378.145017][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[  378.158663][ T7027] veth1_vlan: left promiscuous mode
[  378.164406][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[  378.172932][ T7027] veth0_vlan: left promiscuous mode
[  378.179410][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 85
[  378.188737][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 5
[  378.202369][   T46] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  378.358096][   T46] usb 4-1: USB disconnect, device number 22
[  378.390348][   T46] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  378.441493][   T46] keyspan 4-1:0.0: device disconnected
[  378.662786][ T9062] xt_policy: neither incoming nor outgoing policy selected
[  378.792289][   T29] audit: type=1326 audit(1722151807.419:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9060 comm="syz.0.691" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc2a4777299 code=0x0
[  378.796561][ T9062] 9pnet: Could not find request transport: �0$�x
[  378.862553][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  378.870010][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  378.986238][ T5278] usb 3-1: USB disconnect, device number 14
[  379.539911][ T9074] netlink: 20 bytes leftover after parsing attributes in process `syz.2.693'.
[  379.549028][ T9074] netlink: 'syz.2.693': attribute type 1 has an invalid length.
[  380.224614][   T54] Bluetooth: hci0: command tx timeout
[  380.364635][   T46] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  380.580749][   T46] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  380.627747][   T46] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  380.687134][   T46] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  380.708526][   T46] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.727439][   T46] usb 4-1: Product: syz
[  380.744152][   T46] usb 4-1: Manufacturer: syz
[  380.749357][   T46] usb 4-1: SerialNumber: syz
[  380.781766][ T7027] team0 (unregistering): Port device team_slave_1 removed
[  380.860383][ T7027] team0 (unregistering): Port device team_slave_0 removed
[  381.187154][   T46] usb 4-1: cannot find UAC_HEADER
[  381.399934][   T46] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  381.436711][   T46] usb 4-1: USB disconnect, device number 23
[  381.677049][ T5887] udevd[5887]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  382.136061][ T9091] netlink: 44 bytes leftover after parsing attributes in process `syz.0.698'.
[  382.156115][ T9091] netlink: 28 bytes leftover after parsing attributes in process `syz.0.698'.
[  382.305096][   T54] Bluetooth: hci0: command tx timeout
[  382.794326][ T9114] netlink: 20 bytes leftover after parsing attributes in process `syz.0.704'.
[  382.803673][ T9114] netlink: 'syz.0.704': attribute type 1 has an invalid length.
[  383.673231][ T8998] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.716873][ T8998] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.724176][ T8998] bridge_slave_0: entered allmulticast mode
[  383.779475][ T8998] bridge_slave_0: entered promiscuous mode
[  383.789761][ T8998] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.798740][ T8998] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.806447][ T8998] bridge_slave_1: entered allmulticast mode
[  383.827114][ T8998] bridge_slave_1: entered promiscuous mode
[  384.009299][ T8998] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.087912][ T8998] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  384.194106][ T9135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.203744][ T9135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.353041][ T8998] team0: Port device team_slave_0 added
[  384.387232][ T8998] team0: Port device team_slave_1 added
[  384.404012][ T9139] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.413771][ T9139] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.464759][ T5277] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  384.574089][ T8998] batman_adv: batadv0: Adding interface: batadv_slave_0
[  384.588114][ T8998] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.684624][ T8998] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  384.839177][ T8998] batman_adv: batadv0: Adding interface: batadv_slave_1
[  384.854606][ T8998] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.904627][ T8998] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.402451][ T9157] netlink: 20 bytes leftover after parsing attributes in process `syz.0.712'.
[  385.413270][ T9157] netlink: 'syz.0.712': attribute type 1 has an invalid length.
[  386.699308][ T8998] hsr_slave_0: entered promiscuous mode
[  386.791719][ T8998] hsr_slave_1: entered promiscuous mode
[  388.022825][ T9224] netlink: 20 bytes leftover after parsing attributes in process `syz.4.718'.
[  388.031851][ T9224] netlink: 'syz.4.718': attribute type 1 has an invalid length.
[  389.922461][ T9246] netlink: 20 bytes leftover after parsing attributes in process `syz.4.720'.
[  389.931516][ T9246] netlink: 'syz.4.720': attribute type 1 has an invalid length.
[  390.945205][ T9285] FAULT_INJECTION: forcing a failure.
[  390.945205][ T9285] name failslab, interval 1, probability 0, space 0, times 0
[  391.064232][ T9285] CPU: 1 UID: 0 PID: 9285 Comm: syz.0.724 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  391.074572][ T9285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  391.084658][ T9285] Call Trace:
[  391.087962][ T9285]  <TASK>
[  391.090918][ T9285]  dump_stack_lvl+0x241/0x360
[  391.095639][ T9285]  ? __pfx_dump_stack_lvl+0x10/0x10
[  391.100884][ T9285]  ? __pfx__printk+0x10/0x10
[  391.105527][ T9285]  ? __kmalloc_node_noprof+0xb7/0x440
[  391.110943][ T9285]  ? __pfx___might_resched+0x10/0x10
[  391.116270][ T9285]  should_fail_ex+0x3b0/0x4e0
[  391.120997][ T9285]  should_failslab+0xac/0x100
[  391.125725][ T9285]  __kmalloc_node_noprof+0xdf/0x440
[  391.130962][ T9285]  ? __vmalloc_node_range_noprof+0x5dd/0x1460
[  391.137071][ T9285]  __vmalloc_node_range_noprof+0x5dd/0x1460
[  391.143003][ T9285]  ? mod_objcg_state+0x125/0x930
[  391.148005][ T9285]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  391.154372][ T9285]  ? dup_task_struct+0x57/0x8c0
[  391.159259][ T9285]  ? rcu_is_watching+0x15/0xb0
[  391.164072][ T9285]  ? arch_dup_task_struct+0x44/0xa0
[  391.169320][ T9285]  dup_task_struct+0x444/0x8c0
[  391.174132][ T9285]  ? copy_process+0x5d1/0x3dc0
[  391.178930][ T9285]  ? _raw_spin_unlock_irq+0x23/0x50
[  391.184246][ T9285]  copy_process+0x5d1/0x3dc0
[  391.188893][ T9285]  ? __pfx___might_resched+0x10/0x10
[  391.194214][ T9285]  ? __might_fault+0xaa/0x120
[  391.198923][ T9285]  ? __pfx_lock_release+0x10/0x10
[  391.203986][ T9285]  ? kstrtouint_from_user+0x128/0x190
[  391.209409][ T9285]  ? __pfx_copy_process+0x10/0x10
[  391.214470][ T9285]  ? __might_fault+0xc6/0x120
[  391.219180][ T9285]  ? _copy_from_user+0xa6/0xe0
[  391.223980][ T9285]  kernel_clone+0x223/0x870
[  391.228611][ T9285]  ? __pfx_kernel_clone+0x10/0x10
[  391.233681][ T9285]  ? vfs_write+0x7c4/0xc90
[  391.238130][ T9285]  __se_sys_clone3+0x2cb/0x350
[  391.242937][ T9285]  ? __pfx___se_sys_clone3+0x10/0x10
[  391.248297][ T9285]  ? do_syscall_64+0x100/0x230
[  391.253100][ T9285]  ? do_syscall_64+0xb6/0x230
[  391.257811][ T9285]  do_syscall_64+0xf3/0x230
[  391.262361][ T9285]  ? clear_bhb_loop+0x35/0x90
[  391.267081][ T9285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.273007][ T9285] RIP: 0033:0x7fc2a4777299
[  391.277469][ T9285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.297140][ T9285] RSP: 002b:00007fc2a557df18 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  391.306021][ T9285] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fc2a4777299
[  391.314017][ T9285] RDX: 00007fc2a557df30 RSI: 0000000000000058 RDI: 00007fc2a557df30
[  391.322016][ T9285] RBP: 00007fc2a557e0a0 R08: 0000000000000000 R09: 0000000000000058
[  391.330011][ T9285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.338009][ T9285] R13: 000000000000000b R14: 00007fc2a4905f80 R15: 00007ffe59d58fc8
[  391.346028][ T9285]  </TASK>
[  391.576965][ T9285] syz.0.724: vmalloc error: size 32768, failed to allocated page array size 64, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  391.780611][ T9285] CPU: 1 UID: 0 PID: 9285 Comm: syz.0.724 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  391.790971][ T9285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  391.801058][ T9285] Call Trace:
[  391.804363][ T9285]  <TASK>
[  391.807369][ T9285]  dump_stack_lvl+0x241/0x360
[  391.812106][ T9285]  ? __pfx_dump_stack_lvl+0x10/0x10
[  391.817358][ T9285]  ? __pfx__printk+0x10/0x10
[  391.822003][ T9285]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  391.828457][ T9285]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  391.834998][ T9285]  warn_alloc+0x278/0x410
[  391.839364][ T9285]  ? __pfx___might_resched+0x10/0x10
[  391.844686][ T9285]  ? __pfx_warn_alloc+0x10/0x10
[  391.849575][ T9285]  ? rcu_is_watching+0x15/0xb0
[  391.854379][ T9285]  ? trace_kmalloc+0x1f/0xd0
[  391.859029][ T9285]  ? __vmalloc_node_range_noprof+0x5dd/0x1460
[  391.865142][ T9285]  __vmalloc_node_range_noprof+0x69f/0x1460
[  391.871109][ T9285]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  391.877566][ T9285]  ? dup_task_struct+0x57/0x8c0
[  391.882449][ T9285]  ? rcu_is_watching+0x15/0xb0
[  391.887270][ T9285]  ? arch_dup_task_struct+0x44/0xa0
[  391.892511][ T9285]  dup_task_struct+0x444/0x8c0
[  391.897315][ T9285]  ? copy_process+0x5d1/0x3dc0
[  391.902284][ T9285]  ? _raw_spin_unlock_irq+0x23/0x50
[  391.907515][ T9285]  copy_process+0x5d1/0x3dc0
[  391.912153][ T9285]  ? __pfx___might_resched+0x10/0x10
[  391.917475][ T9285]  ? __might_fault+0xaa/0x120
[  391.922188][ T9285]  ? __pfx_lock_release+0x10/0x10
[  391.927264][ T9285]  ? kstrtouint_from_user+0x128/0x190
[  391.932682][ T9285]  ? __pfx_copy_process+0x10/0x10
[  391.937747][ T9285]  ? __might_fault+0xc6/0x120
[  391.942459][ T9285]  ? _copy_from_user+0xa6/0xe0
[  391.947262][ T9285]  kernel_clone+0x223/0x870
[  391.951823][ T9285]  ? __pfx_kernel_clone+0x10/0x10
[  391.956891][ T9285]  ? vfs_write+0x7c4/0xc90
[  391.961347][ T9285]  __se_sys_clone3+0x2cb/0x350
[  391.966152][ T9285]  ? __pfx___se_sys_clone3+0x10/0x10
[  391.971509][ T9285]  ? do_syscall_64+0x100/0x230
[  391.976307][ T9285]  ? do_syscall_64+0xb6/0x230
[  391.981017][ T9285]  do_syscall_64+0xf3/0x230
[  391.985553][ T9285]  ? clear_bhb_loop+0x35/0x90
[  391.990271][ T9285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.996199][ T9285] RIP: 0033:0x7fc2a4777299
[  392.000641][ T9285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.020365][ T9285] RSP: 002b:00007fc2a557df18 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  392.028826][ T9285] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fc2a4777299
[  392.036833][ T9285] RDX: 00007fc2a557df30 RSI: 0000000000000058 RDI: 00007fc2a557df30
[  392.044835][ T9285] RBP: 00007fc2a557e0a0 R08: 0000000000000000 R09: 0000000000000058
[  392.052840][ T9285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  392.060839][ T9285] R13: 000000000000000b R14: 00007fc2a4905f80 R15: 00007ffe59d58fc8
[  392.068862][ T9285]  </TASK>
[  392.107591][ T9285] Mem-Info:
[  392.110948][ T9285] active_anon:347 inactive_anon:7748 isolated_anon:0
[  392.110948][ T9285]  active_file:7056 inactive_file:43239 isolated_file:0
[  392.110948][ T9285]  unevictable:768 dirty:192 writeback:0
[  392.110948][ T9285]  slab_reclaimable:9008 slab_unreclaimable:97057
[  392.110948][ T9285]  mapped:25095 shmem:4265 pagetables:1071
[  392.110948][ T9285]  sec_pagetables:0 bounce:0
[  392.110948][ T9285]  kernel_misc_reclaimable:0
[  392.110948][ T9285]  free:1364443 free_pcp:9936 free_cma:0
[  392.304257][ T9285] Node 0 active_anon:1444kB inactive_anon:31036kB active_file:28068kB inactive_file:172956kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100368kB dirty:752kB writeback:0kB shmem:15616kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12048kB pagetables:4368kB sec_pagetables:0kB all_unreclaimable? no
[  392.686222][ T9285] Node 1 active_anon:0kB inactive_anon:0kB active_file:164kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:84kB dirty:20kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  392.936307][ T9285] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  393.094757][ T9285] lowmem_reserve[]: 0 2563 2565 0 0
[  393.127039][ T9285] Node 0 DMA32 free:1526768kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:1320kB inactive_anon:18560kB active_file:26556kB inactive_file:172892kB unevictable:1536kB writepending:760kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:17948kB local_pcp:964kB free_cma:0kB
[  393.219682][ T9285] lowmem_reserve[]: 0 0 1 0 0
[  393.247366][ T9285] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:4kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  393.327991][ T9285] lowmem_reserve[]: 0 0 0 0 0
[  393.341619][ T9285] Node 1 Normal free:3931272kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:164kB inactive_file:0kB unevictable:1536kB writepending:20kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:18012kB local_pcp:10524kB free_cma:0kB
[  393.444028][ T9285] lowmem_reserve[]: 0 0 0 0 0
[  393.460888][ T9285] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  393.476806][ T9285] Node 0 DMA32: 550*4kB (UME) 828*8kB (UME) 547*16kB (UME) 451*32kB (UME) 344*64kB (UME) 86*128kB (UME) 68*256kB (UM) 25*512kB (UME) 14*1024kB (UME) 3*2048kB (UE) 349*4096kB (UM) = 1545224kB
[  393.528321][ T9285] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  393.581559][ T8998] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  393.595513][ T9285] Node 1 Normal: 3*4kB (UM) 2*8kB (U) 2*16kB (U) 2*32kB (U) 3*64kB (UM) 1*128kB (U) 3*256kB (UM) 6*512kB (UM) 3*1024kB (UM) 4*2048kB (UM) 956*4096kB (M) = 3931324kB
[  393.632518][ T8998] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  393.665560][    T8] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  393.674642][ T9285] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  393.684310][ T8998] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  393.713403][ T9285] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  393.734952][ T8998] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  393.751696][ T9285] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  393.785116][ T9285] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  393.812757][ T9285] 51696 total pagecache pages
[  393.836907][ T9285] 0 pages in swap cache
[  393.841133][ T9285] Free swap  = 124592kB
[  393.870403][ T9285] Total swap = 124996kB
[  393.891828][ T9285] 2097051 pages RAM
[  393.915970][ T9285] 0 pages HighMem/MovableOnly
[  393.940150][ T9285] 402198 pages reserved
[  393.972716][ T9285] 0 pages cma reserved
[  394.084849][    T8] usb 5-1: Using ep0 maxpacket: 16
[  394.099029][    T8] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  394.114575][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.129534][    T8] usb 5-1: Product: syz
[  394.133963][    T8] usb 5-1: Manufacturer: syz
[  394.369307][ T9320] netlink: 20 bytes leftover after parsing attributes in process `syz.3.731'.
[  394.378356][ T9320] netlink: 'syz.3.731': attribute type 1 has an invalid length.
[  394.405399][    T8] usb 5-1: SerialNumber: syz
[  394.553021][    T8] usb 5-1: config 0 descriptor??
[  394.944865][ T9323] netlink: 48 bytes leftover after parsing attributes in process `syz.2.732'.
[  395.030555][    T8] usb 5-1: Not enough endpoints found in device, aborting!
[  395.294909][    T8] usb 5-1: USB disconnect, device number 20
[  395.515071][ T8998] 8021q: adding VLAN 0 to HW filter on device bond0
[  395.586766][ T8998] 8021q: adding VLAN 0 to HW filter on device team0
[  395.621955][ T5311] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.629214][ T5311] bridge0: port 1(bridge_slave_0) entered forwarding state
[  395.675197][ T5311] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.682459][ T5311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  395.881843][ T8998] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  395.964734][ T8998] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  396.823451][ T9351] netlink: 20 bytes leftover after parsing attributes in process `syz.0.738'.
[  396.832540][ T9351] netlink: 'syz.0.738': attribute type 1 has an invalid length.
[  397.964290][   T29] audit: type=1326 audit(1722151826.589:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9392 comm="syz.3.741" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11ed77299 code=0x0
[  399.183938][   T54] Bluetooth: hci2: unexpected event for opcode 0x0c7a
[  399.247787][ T8998] 8021q: adding VLAN 0 to HW filter on device batadv0
[  399.404838][ T9422] FAULT_INJECTION: forcing a failure.
[  399.404838][ T9422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  399.623667][ T9422] CPU: 1 UID: 0 PID: 9422 Comm: syz.3.745 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  399.631626][ T8998] veth0_vlan: entered promiscuous mode
[  399.633946][ T9422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  399.650443][ T9422] Call Trace:
[  399.653749][ T9422]  <TASK>
[  399.656722][ T9422]  dump_stack_lvl+0x241/0x360
[  399.658355][ T8998] veth1_vlan: entered promiscuous mode
[  399.661419][ T9422]  ? __pfx_dump_stack_lvl+0x10/0x10
[  399.661453][ T9422]  ? __pfx__printk+0x10/0x10
[  399.676788][ T9422]  ? tomoyo_path_number_perm+0x71a/0x880
[  399.682528][ T9422]  ? __pfx_lock_release+0x10/0x10
[  399.687590][ T9422]  should_fail_ex+0x3b0/0x4e0
[  399.692293][ T9422]  _copy_from_user+0x2f/0xe0
[  399.696897][ T9422]  video_usercopy+0x378/0x1180
[  399.701676][ T9422]  ? __pfx___video_do_ioctl+0x10/0x10
[  399.707051][ T9422]  ? __pfx_video_usercopy+0x10/0x10
[  399.712456][ T9422]  ? smack_file_ioctl+0x2fa/0x3a0
[  399.717498][ T9422]  ? __fget_files+0x3f6/0x470
[  399.722179][ T9422]  ? __fget_files+0x29/0x470
[  399.726801][ T9422]  v4l2_ioctl+0x18c/0x1e0
[  399.731146][ T9422]  ? __pfx_v4l2_ioctl+0x10/0x10
[  399.736012][ T9422]  __se_sys_ioctl+0xfc/0x170
[  399.740616][ T9422]  do_syscall_64+0xf3/0x230
[  399.745132][ T9422]  ? clear_bhb_loop+0x35/0x90
[  399.749828][ T9422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.755733][ T9422] RIP: 0033:0x7fe11ed77299
[  399.760157][ T9422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.779856][ T9422] RSP: 002b:00007fe11fa67048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  399.788279][ T9422] RAX: ffffffffffffffda RBX: 00007fe11ef06058 RCX: 00007fe11ed77299
[  399.796254][ T9422] RDX: 0000000020000100 RSI: 00000000c0205647 RDI: 0000000000000008
[  399.804226][ T9422] RBP: 00007fe11fa670a0 R08: 0000000000000000 R09: 0000000000000000
[  399.812203][ T9422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.820191][ T9422] R13: 000000000000006e R14: 00007fe11ef06058 R15: 00007ffd06aab578
[  399.828189][ T9422]  </TASK>
[  400.029080][ T8998] veth0_macvtap: entered promiscuous mode
[  400.089187][ T8998] veth1_macvtap: entered promiscuous mode
[  400.679345][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  400.884717][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.296851][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  401.378744][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.420880][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  401.493602][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.514721][ T9451] netlink: 20 bytes leftover after parsing attributes in process `syz.3.750'.
[  401.523645][ T9451] netlink: 'syz.3.750': attribute type 1 has an invalid length.
[  401.603288][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  401.774587][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.892577][ T8998] batman_adv: batadv0: Interface activated: batadv_slave_0
[  401.988059][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.084537][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.094416][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.205046][ T9491] netlink: 'syz.2.753': attribute type 12 has an invalid length.
[  402.239003][ T9491] netlink: 'syz.2.753': attribute type 11 has an invalid length.
[  402.244765][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.253771][ T9491] netlink: 190580 bytes leftover after parsing attributes in process `syz.2.753'.
[  402.299403][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.379800][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.454612][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.504944][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.549155][ T8998] batman_adv: batadv0: Interface activated: batadv_slave_1
[  402.611518][ T5280] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  402.736072][ T8998] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  402.804578][ T8998] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  402.824916][ T8998] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  402.849734][ T8998] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  402.865662][ T5280] usb 3-1: Using ep0 maxpacket: 16
[  402.883599][ T5280] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  402.941801][ T5280] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  402.984199][ T5280] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.066334][ T5280] usb 3-1: config 0 descriptor??
[  403.187790][ T5431] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.244326][ T5431] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.336328][ T5431] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.344295][ T5431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.422068][ T9491] netlink: 12 bytes leftover after parsing attributes in process `syz.2.753'.
[  403.485926][ T9491] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  403.523443][ T9491] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  403.814416][ T5280] usbhid 3-1:0.0: can't add hid device: -71
[  403.835137][ T5280] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  404.096937][ T5274] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  404.135308][ T5280] usb 3-1: USB disconnect, device number 15
[  404.495952][ T5274] usb 1-1: Using ep0 maxpacket: 32
[  404.523165][ T5274] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=a6.59
[  404.854712][ T5274] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.911332][ T5274] usb 1-1: Product: syz
[  404.944722][ T5274] usb 1-1: Manufacturer: syz
[  405.053030][ T5274] usb 1-1: SerialNumber: syz
[  405.165792][ T5274] usb 1-1: config 0 descriptor??
[  405.260565][ T5274] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  405.654782][ T9566] xt_policy: neither incoming nor outgoing policy selected
[  405.855033][ T5274] gspca_topro: reg_w err -110
[  405.908608][ T5274] gspca_topro: Sensor soi763a
[  406.057383][   T29] audit: type=1326 audit(1722151834.659:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9563 comm="syz.4.759" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd67dd77299 code=0x0
[  406.318036][ T9566] 9pnet: Could not find request transport: �0$�x
[  406.522967][ T9580] xt_policy: neither incoming nor outgoing policy selected
[  406.839405][   T29] audit: type=1326 audit(1722151835.469:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9576 comm="syz.1.761" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04ced77299 code=0x0
[  407.391529][ T9580] 9pnet: Could not find request transport: �0$�x
[  408.544927][ T9610] netlink: 20 bytes leftover after parsing attributes in process `syz.1.764'.
[  408.555068][ T9610] netlink: 'syz.1.764': attribute type 1 has an invalid length.
[  408.996718][ T9631] FAULT_INJECTION: forcing a failure.
[  408.996718][ T9631] name failslab, interval 1, probability 0, space 0, times 0
[  409.082718][ T9631] CPU: 1 UID: 0 PID: 9631 Comm: syz.4.767 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  409.093217][ T9631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  409.103483][ T9631] Call Trace:
[  409.106785][ T9631]  <TASK>
[  409.109739][ T9631]  dump_stack_lvl+0x241/0x360
[  409.114457][ T9631]  ? __pfx_dump_stack_lvl+0x10/0x10
[  409.119702][ T9631]  ? __pfx__printk+0x10/0x10
[  409.124357][ T9631]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  409.129860][ T9631]  ? __pfx___might_resched+0x10/0x10
[  409.135178][ T9631]  ? netlink_sendmsg+0x8e4/0xcb0
[  409.140157][ T9631]  should_fail_ex+0x3b0/0x4e0
[  409.144882][ T9631]  should_failslab+0xac/0x100
[  409.149600][ T9631]  ? rtnl_newlink+0xf2/0x20a0
[  409.154401][ T9631]  __kmalloc_cache_noprof+0x6c/0x2c0
[  409.159918][ T9631]  rtnl_newlink+0xf2/0x20a0
[  409.164492][ T9631]  ? __mutex_trylock_common+0x183/0x2e0
[  409.170081][ T9631]  ? __pfx___might_resched+0x10/0x10
[  409.175421][ T9631]  ? __pfx_rtnl_newlink+0x10/0x10
[  409.180495][ T9631]  ? __pfx___mutex_trylock_common+0x10/0x10
[  409.186433][ T9631]  ? rcu_is_watching+0x15/0xb0
[  409.191240][ T9631]  ? trace_contention_end+0x3c/0x120
[  409.196565][ T9631]  ? __mutex_lock+0x2ef/0xd70
[  409.201292][ T9631]  ? rcu_read_unlock+0x87/0xa0
[  409.206095][ T9631]  ? __dev_queue_xmit+0x1763/0x3e90
[  409.211326][ T9631]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  409.216483][ T9631]  ? __pfx_lock_release+0x10/0x10
[  409.221565][ T9631]  ? __pfx___mutex_lock+0x10/0x10
[  409.226654][ T9631]  ? __pfx_rtnl_newlink+0x10/0x10
[  409.231718][ T9631]  rtnetlink_rcv_msg+0x73f/0xcf0
[  409.236698][ T9631]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  409.241859][ T9631]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  409.247395][ T9631]  ? ref_tracker_free+0x643/0x7e0
[  409.252475][ T9631]  netlink_rcv_skb+0x1e3/0x430
[  409.257286][ T9631]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  409.262810][ T9631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  409.268177][ T9631]  ? netlink_deliver_tap+0x2e/0x1b0
[  409.273427][ T9631]  netlink_unicast+0x7f0/0x990
[  409.278243][ T9631]  ? __pfx_netlink_unicast+0x10/0x10
[  409.283569][ T9631]  ? __virt_addr_valid+0x183/0x530
[  409.288723][ T9631]  ? __check_object_size+0x49c/0x900
[  409.294070][ T9631]  ? bpf_lsm_netlink_send+0x9/0x10
[  409.299228][ T9631]  netlink_sendmsg+0x8e4/0xcb0
[  409.304054][ T9631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  409.309386][ T9631]  ? __import_iovec+0x536/0x820
[  409.314275][ T9631]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  409.319623][ T9631]  ? security_socket_sendmsg+0x87/0xb0
[  409.325128][ T9631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  409.330461][ T9631]  __sock_sendmsg+0x221/0x270
[  409.335195][ T9631]  ____sys_sendmsg+0x525/0x7d0
[  409.340038][ T9631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  409.345389][ T9631]  __sys_sendmsg+0x2b0/0x3a0
[  409.350059][ T9631]  ? __pfx___sys_sendmsg+0x10/0x10
[  409.355216][ T9631]  ? vfs_write+0x7c4/0xc90
[  409.359725][ T9631]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  409.366096][ T9631]  ? do_syscall_64+0x100/0x230
[  409.370907][ T9631]  ? do_syscall_64+0xb6/0x230
[  409.375718][ T9631]  do_syscall_64+0xf3/0x230
[  409.380265][ T9631]  ? clear_bhb_loop+0x35/0x90
[  409.384998][ T9631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.390941][ T9631] RIP: 0033:0x7fd67dd77299
[  409.395417][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.415054][ T9631] RSP: 002b:00007fd67eb16048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  409.423479][ T9631] RAX: ffffffffffffffda RBX: 00007fd67df05f80 RCX: 00007fd67dd77299
[  409.431468][ T9631] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[  409.439452][ T9631] RBP: 00007fd67eb160a0 R08: 0000000000000000 R09: 0000000000000000
[  409.447429][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.455406][ T9631] R13: 000000000000000b R14: 00007fd67df05f80 R15: 00007ffd7a5c4988
[  409.463397][ T9631]  </TASK>
[  409.875945][ T9651] IPv6: NLM_F_CREATE should be specified when creating new route
[  409.972832][ T9652] program syz.3.768 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  410.574871][   T29] audit: type=1326 audit(1722151839.189:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.3.773" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11ed77299 code=0x0
[  410.643067][ T5311] usb 1-1: USB disconnect, device number 23
[  412.183662][ T9686] netlink: 48 bytes leftover after parsing attributes in process `syz.0.778'.
[  413.402340][ T9697] netlink: 20 bytes leftover after parsing attributes in process `syz.1.780'.
[  413.411365][ T9697] netlink: 'syz.1.780': attribute type 1 has an invalid length.
[  414.343862][ T9740] IPv6: NLM_F_CREATE should be specified when creating new route
[  416.212022][ T9792] netlink: 20 bytes leftover after parsing attributes in process `syz.2.787'.
[  416.221167][ T9792] netlink: 'syz.2.787': attribute type 1 has an invalid length.
[  416.754698][ T5307] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  417.154833][ T5280] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  417.154928][ T5307] usb 2-1: Using ep0 maxpacket: 16
[  417.233177][ T5307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  417.481088][ T5307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  417.530621][ T5307] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  417.940681][ T5307] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  418.028430][ T5307] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  418.076757][ T5307] usb 2-1: config 0 descriptor??
[  418.085225][ T5280] usb 4-1: Using ep0 maxpacket: 32
[  418.182248][ T5280] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=a6.59
[  418.208281][ T5280] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.240860][ T5280] usb 4-1: Product: syz
[  418.252743][ T5280] usb 4-1: Manufacturer: syz
[  418.259296][ T5280] usb 4-1: SerialNumber: syz
[  418.275217][ T5280] usb 4-1: config 0 descriptor??
[  418.319888][ T5280] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  418.832964][ T5307] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0007/input/input37
[  418.889245][ T5280] gspca_topro: reg_w err -110
[  418.965394][ T5280] gspca_topro: Sensor soi763a
[  419.002131][ T5307] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  419.110123][ T5307] usb 2-1: USB disconnect, device number 14
[  421.838260][ T9905] xt_policy: neither incoming nor outgoing policy selected
[  422.020761][   T29] audit: type=1326 audit(1722151850.649:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9902 comm="syz.1.800" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04ced77299 code=0x0
[  422.091982][ T9905] 9pnet: Could not find request transport: �0$�x
[  422.834961][ T5277] usb 4-1: USB disconnect, device number 24
[  424.104064][ T9944] netlink: 20 bytes leftover after parsing attributes in process `syz.0.808'.
[  424.115447][ T9944] netlink: 'syz.0.808': attribute type 1 has an invalid length.
[  424.525335][ T9934] block nbd1: shutting down sockets
[  425.060646][ T9934] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  426.134860][ T5274] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  426.344744][ T5274] usb 1-1: Using ep0 maxpacket: 32
[  426.373452][ T5274] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=a6.59
[  426.395452][ T5274] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.424565][ T5274] usb 1-1: Product: syz
[  426.430866][ T5274] usb 1-1: Manufacturer: syz
[  426.449232][ T5274] usb 1-1: SerialNumber: syz
[  426.484136][ T5274] usb 1-1: config 0 descriptor??
[  426.523386][ T5274] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  427.090060][ T5274] gspca_topro: reg_w err -110
[  427.216968][ T5274] gspca_topro: Sensor soi763a
[  427.706160][    C1] eth0: bad gso: type: 1, size: 1408
[  428.165776][   T29] audit: type=1326 audit(1722151856.789:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10025 comm="syz.4.825" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd67dd77299 code=0x0
[  430.824631][ T5274] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  431.024637][ T5274] usb 5-1: Using ep0 maxpacket: 16
[  431.054707][ T5274] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  431.074568][ T5274] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  431.104767][ T5274] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  431.124588][ T5274] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  431.144263][ T5274] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.208134][ T5274] usb 5-1: config 0 descriptor??
[  431.531012][ T5277] usb 1-1: USB disconnect, device number 24
[  434.964916][ T5274] usbhid 5-1:0.0: can't add hid device: -71
[  434.972252][ T5274] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  435.340191][ T5274] usb 5-1: USB disconnect, device number 21
[  435.712711][T10168] FAULT_INJECTION: forcing a failure.
[  435.712711][T10168] name failslab, interval 1, probability 0, space 0, times 0
[  435.725933][T10168] CPU: 1 UID: 0 PID: 10168 Comm: syz.1.843 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  435.736308][T10168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  435.746478][T10168] Call Trace:
[  435.749775][T10168]  <TASK>
[  435.752710][T10168]  dump_stack_lvl+0x241/0x360
[  435.757415][T10168]  ? __pfx_dump_stack_lvl+0x10/0x10
[  435.762623][T10168]  ? __pfx__printk+0x10/0x10
[  435.767240][T10168]  should_fail_ex+0x3b0/0x4e0
[  435.771931][T10168]  ? dst_alloc+0x12b/0x190
[  435.776354][T10168]  should_failslab+0xac/0x100
[  435.781039][T10168]  ? dst_alloc+0x12b/0x190
[  435.785494][T10168]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  435.790895][T10168]  dst_alloc+0x12b/0x190
[  435.795167][T10168]  ip_route_input_rcu+0x24be/0x3910
[  435.800397][T10168]  ? __pfx_ip_route_input_rcu+0x10/0x10
[  435.805958][T10168]  ? __pfx_lock_acquire+0x10/0x10
[  435.811007][T10168]  ? nf_conntrack_in+0x15e6/0x1880
[  435.816154][T10168]  ip_route_input_noref+0x170/0x260
[  435.821360][T10168]  ? ip_route_input_noref+0xb1/0x260
[  435.826650][T10168]  ? __pfx_ip_route_input_noref+0x10/0x10
[  435.832396][T10168]  ? tcp_v4_early_demux+0x445/0x930
[  435.837794][T10168]  ? tcp_v4_early_demux+0x56c/0x930
[  435.843055][T10168]  ip_rcv_finish_core+0x5ab/0x1b40
[  435.848236][T10168]  ip_rcv_finish+0x14a/0x560
[  435.852889][T10168]  ? NF_HOOK+0x392/0x450
[  435.857161][T10168]  ? __pfx_ip_rcv_finish+0x10/0x10
[  435.862300][T10168]  NF_HOOK+0x3a4/0x450
[  435.866393][T10168]  ? NF_HOOK+0x9a/0x450
[  435.870587][T10168]  ? __pfx_NF_HOOK+0x10/0x10
[  435.875200][T10168]  ? ip_rcv_core+0x801/0xd10
[  435.879809][T10168]  ? __pfx_ip_rcv_finish+0x10/0x10
[  435.884939][T10168]  ? __pfx_ip_rcv+0x10/0x10
[  435.889455][T10168]  __netif_receive_skb+0x2bf/0x650
[  435.894582][T10168]  ? __pfx_lock_acquire+0x10/0x10
[  435.899634][T10168]  ? seqcount_lockdep_reader_access+0x1d7/0x220
[  435.905886][T10168]  ? __pfx___netif_receive_skb+0x10/0x10
[  435.911526][T10168]  ? __kasan_slab_alloc+0x66/0x80
[  435.916648][T10168]  ? read_tsc+0x9/0x20
[  435.920741][T10168]  ? timekeeping_get_ns+0x2c0/0x420
[  435.925957][T10168]  ? netif_receive_skb+0x131/0x890
[  435.931333][T10168]  ? netif_receive_skb+0x131/0x890
[  435.936448][T10168]  netif_receive_skb+0x1e8/0x890
[  435.941393][T10168]  ? tun_rx_batched+0x160/0x8f0
[  435.946274][T10168]  ? __pfx_netif_receive_skb+0x10/0x10
[  435.951749][T10168]  ? tun_rx_batched+0x160/0x8f0
[  435.956614][T10168]  tun_rx_batched+0x1b7/0x8f0
[  435.961307][T10168]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  435.967668][T10168]  ? __pfx_lock_acquire+0x10/0x10
[  435.972728][T10168]  ? __pfx_tun_rx_batched+0x10/0x10
[  435.977969][T10168]  tun_get_user+0x2f84/0x4720
[  435.982667][T10168]  ? tun_get_user+0x2a78/0x4720
[  435.987547][T10168]  ? __lock_acquire+0x137a/0x2040
[  435.992596][T10168]  ? __pfx_tun_get_user+0x10/0x10
[  435.997656][T10168]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  436.003124][T10168]  ? tun_get+0x1e/0x2f0
[  436.007309][T10168]  ? __pfx_lock_release+0x10/0x10
[  436.012360][T10168]  ? tun_get+0x1e/0x2f0
[  436.016532][T10168]  ? tun_get+0x27d/0x2f0
[  436.020792][T10168]  tun_chr_write_iter+0x113/0x1f0
[  436.025838][T10168]  vfs_write+0xa72/0xc90
[  436.030092][T10168]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  436.035659][T10168]  ? __pfx_vfs_write+0x10/0x10
[  436.040449][T10168]  ksys_write+0x1a0/0x2c0
[  436.044788][T10168]  ? __pfx_ksys_write+0x10/0x10
[  436.049642][T10168]  ? do_syscall_64+0x100/0x230
[  436.054437][T10168]  ? do_syscall_64+0xb6/0x230
[  436.059220][T10168]  do_syscall_64+0xf3/0x230
[  436.063733][T10168]  ? clear_bhb_loop+0x35/0x90
[  436.068426][T10168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.074331][T10168] RIP: 0033:0x7f04ced75e1f
[  436.078754][T10168] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  436.098372][T10168] RSP: 002b:00007f04cfa6c010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  436.106801][T10168] RAX: ffffffffffffffda RBX: 00007f04cef05f80 RCX: 00007f04ced75e1f
[  436.114779][T10168] RDX: 000000000000004a RSI: 0000000020000000 RDI: 00000000000000c8
[  436.122777][T10168] RBP: 00007f04cfa6c0a0 R08: 0000000000000000 R09: 0000000000000000
[  436.130751][T10168] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  436.138725][T10168] R13: 000000000000000b R14: 00007f04cef05f80 R15: 00007ffeb748c428
[  436.146718][T10168]  </TASK>
[  437.523752][T10170] netlink: 44 bytes leftover after parsing attributes in process `syz.3.845'.
[  438.247439][ T5274] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  439.306446][ T5274] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  439.349810][ T5274] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  439.393486][ T5274] usb 4-1: New USB device found, idVendor=5543, idProduct=3031, bcdDevice= 0.00
[  440.213215][ T5274] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.247367][ T5274] usb 4-1: config 0 descriptor??
[  440.338653][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  440.345264][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  440.421653][T10209] fuse: Bad value for 'fd'
[  440.771016][T10209] netlink: 'syz.1.854': attribute type 10 has an invalid length.
[  440.831278][T10209] netlink: 40 bytes leftover after parsing attributes in process `syz.1.854'.
[  441.086881][T10209] team0: Port device geneve0 added
[  441.757526][T10196] syz.0.849 (10196): drop_caches: 2
[  441.860694][ T5277] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  442.074803][ T5277] usb 3-1: Using ep0 maxpacket: 16
[  442.350894][ T5277] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  442.363951][ T5277] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  442.485011][T10223] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  443.274685][   T29] audit: type=1326 audit(1722151871.379:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10220 comm="syz.4.857" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd67dd77299 code=0x0
[  443.377201][ T5277] usb 3-1: Product: syz
[  443.408819][ T5277] usb 3-1: Manufacturer: syz
[  443.434614][ T5277] usb 3-1: SerialNumber: syz
[  443.460629][ T5277] usb 3-1: config 0 descriptor??
[  443.548102][ T5274] usbhid 4-1:0.0: can't add hid device: -71
[  443.577741][ T5274] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  443.615428][ T5274] usb 4-1: USB disconnect, device number 25
[  443.705454][ T5277] usb 3-1: Not enough endpoints found in device, aborting!
[  443.987899][   T29] audit: type=1326 audit(1722151872.599:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10231 comm="syz.3.860" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11ed77299 code=0x0
[  444.892464][ T5230] usb 3-1: USB disconnect, device number 16
[  445.968168][T10262] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  446.284648][ T5307] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  446.454769][ T5307] usb 3-1: device descriptor read/64, error -71
[  446.739259][ T5307] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  446.914679][ T5307] usb 3-1: device descriptor read/64, error -71
[  447.046532][ T5307] usb usb3-port1: attempt power cycle
[  447.207275][    C1] eth0: bad gso: type: 1, size: 1408
[  447.319941][T10272] binder: 10271:10272 ioctl c0306201 0 returned -14
[  447.348882][T10272] binder: 10271:10272 ioctl 4018620d 0 returned -22
[  447.380703][T10272] binder: 10271:10272 ioctl c0306201 20000280 returned -11
[  447.409405][T10272] binder: 10271:10272 ioctl c0306201 0 returned -14
[  447.464785][ T5307] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  447.546686][ T5307] usb 3-1: device descriptor read/8, error -71
[  447.998770][T10279] netlink: 20 bytes leftover after parsing attributes in process `syz.4.872'.
[  448.007828][T10279] netlink: 'syz.4.872': attribute type 1 has an invalid length.
[  448.094918][ T5307] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  448.206169][ T5307] usb 3-1: device descriptor read/8, error -71
[  448.412274][ T5307] usb usb3-port1: unable to enumerate USB device
[  449.118073][ T7038] tipc: Subscription rejected, illegal request
[  449.494720][ T5230] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  449.711805][ T5230] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  449.731371][ T5230] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  449.755959][ T5230] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  449.815887][ T5230] usb 3-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  449.839356][T10303] netlink: 44 bytes leftover after parsing attributes in process `syz.3.881'.
[  449.862275][ T5230] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.876006][T10303] netlink: 28 bytes leftover after parsing attributes in process `syz.3.881'.
[  449.883818][T10311] Bluetooth: MGMT ver 1.23
[  449.897400][ T5230] usb 3-1: config 0 descriptor??
[  449.914690][ T5230] gspca_main: abcd:cdee too many config
[  449.943238][ T5230] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  449.967361][ T5230] usb 3-1: MIDIStreaming interface descriptor not found
[  450.114577][ T5274] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  450.193885][T10293] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  450.217539][T10293] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  450.232372][T10316] netlink: 96 bytes leftover after parsing attributes in process `syz.3.883'.
[  450.259466][ T5311] usb 3-1: USB disconnect, device number 21
[  450.347446][ T5274] usb 5-1: config 1 has an invalid descriptor of length 125, skipping remainder of the config
[  450.378687][ T5274] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  450.425914][ T5274] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  450.440585][ T5274] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  450.467606][ T5274] usb 5-1: SerialNumber: syz
[  450.700267][ T5274] usb 5-1: 0:2 : does not exist
[  450.717683][ T5274] usb 5-1: unit 48 not found!
[  450.790341][ T5274] usb 5-1: USB disconnect, device number 22
[  451.818829][ T5887] udevd[5887]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  452.037271][T10333] netlink: 20 bytes leftover after parsing attributes in process `syz.2.885'.
[  452.046357][T10333] netlink: 'syz.2.885': attribute type 1 has an invalid length.
[  452.493876][T10337] usb usb8: usbfs: process 10337 (syz.4.887) did not claim interface 0 before use
[  452.897039][T10344] netlink: 40 bytes leftover after parsing attributes in process `syz.2.888'.
[  453.116511][T10344] netlink: 76 bytes leftover after parsing attributes in process `syz.2.888'.
[  453.241531][T10344] ���: entered promiscuous mode
[  453.717634][ T5441] tipc: Subscription rejected, illegal request
[  454.001599][T10358] netlink: 96 bytes leftover after parsing attributes in process `syz.1.894'.
[  454.434747][ T5274] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  454.646991][ T5274] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  455.605421][ T5274] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  455.635607][ T5274] usb 3-1: New USB device found, idVendor=5543, idProduct=3031, bcdDevice= 0.00
[  455.667393][ T5274] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  455.703673][ T5274] usb 3-1: config 0 descriptor??
[  457.654767][   T54] Bluetooth: hci3: unexpected event for opcode 0x0804
[  458.680112][T10437] netlink: 44 bytes leftover after parsing attributes in process `syz.4.903'.
[  458.710382][T10437] netlink: 28 bytes leftover after parsing attributes in process `syz.4.903'.
[  459.032827][ T5274] usbhid 3-1:0.0: can't add hid device: -71
[  459.063726][ T5274] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  459.139728][ T5274] usb 3-1: USB disconnect, device number 22
[  459.638997][ T5470] tipc: Subscription rejected, illegal request
[  460.364597][ T5307] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  460.678037][ T5307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  460.702812][ T5307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  460.729567][ T5307] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  461.014833][ T5307] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.80
[  461.025180][ T5307] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.037636][ T5307] usb 5-1: config 0 descriptor??
[  461.054697][ T5230] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  462.175126][ T5307] acrux 0003:1A34:0802.0008: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.4-1/input0
[  462.228920][ T5230] usb 2-1: Using ep0 maxpacket: 16
[  462.271255][ T5307] acrux 0003:1A34:0802.0008: no inputs found
[  462.302287][ T5307] acrux 0003:1A34:0802.0008: Failed to enable force feedback support, error: -19
[  462.349630][ T5230] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  462.415790][ T5230] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.495273][ T5230] usb 2-1: Product: syz
[  462.499518][ T5230] usb 2-1: Manufacturer: syz
[  462.504143][ T5230] usb 2-1: SerialNumber: syz
[  462.665394][ T5230] usb 2-1: config 0 descriptor??
[  462.669737][ T5307] usb 5-1: USB disconnect, device number 23
[  463.520922][ T5230] usb 2-1: Not enough endpoints found in device, aborting!
[  463.628232][   T54] Bluetooth: hci1: unexpected event for opcode 0x0804
[  463.728936][ T5311] usb 2-1: USB disconnect, device number 15
[  463.769245][T10529] netlink: 40 bytes leftover after parsing attributes in process `syz.3.915'.
[  463.901110][T10528] netlink: 44 bytes leftover after parsing attributes in process `syz.2.916'.
[  463.914999][T10528] netlink: 28 bytes leftover after parsing attributes in process `syz.2.916'.
[  463.938616][T10529] netlink: 76 bytes leftover after parsing attributes in process `syz.3.915'.
[  463.954308][T10533] netlink: 8 bytes leftover after parsing attributes in process `syz.4.917'.
[  464.094371][T10529] ���: entered promiscuous mode
[  464.126700][T10535] netlink: 'syz.4.917': attribute type 6 has an invalid length.
[  464.939788][ T5445] tipc: Subscription rejected, illegal request
[  468.278226][T10571] xt_policy: neither incoming nor outgoing policy selected
[  468.474966][   T29] audit: type=1326 audit(1722151897.099:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10559 comm="syz.1.924" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04ced77299 code=0x0
[  468.558731][T10582] 9pnet: Could not find request transport: �0$�x
[  468.654768][ T5307] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  468.664802][ T5276] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  468.877321][ T5276] usb 5-1: Using ep0 maxpacket: 16
[  468.879217][ T5307] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  468.918129][ T5276] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  468.921093][ T5307] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  468.943316][ T5307] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  468.962031][ T5307] usb 1-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.80
[  468.981204][ T5307] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.995025][ T5276] usb 5-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  468.997117][ T5307] usb 1-1: config 0 descriptor??
[  469.020426][ T5276] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.034443][ T5276] usb 5-1: Product: syz
[  469.053705][ T5276] usb 5-1: Manufacturer: syz
[  469.079246][ T5276] usb 5-1: SerialNumber: syz
[  469.113833][ T5276] usb 5-1: config 0 descriptor??
[  469.392592][ T5276] usb 5-1: USB disconnect, device number 24
[  469.511761][ T5307] acrux 0003:1A34:0802.0009: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.0-1/input0
[  469.534901][ T5307] acrux 0003:1A34:0802.0009: no inputs found
[  469.560185][ T5307] acrux 0003:1A34:0802.0009: Failed to enable force feedback support, error: -19
[  469.909723][ T7035] tipc: Subscription rejected, illegal request
[  469.956423][ T5278] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  470.117713][ T5277] usb 1-1: USB disconnect, device number 25
[  470.247455][ T5278] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  470.477439][ T5278] usb 3-1: config 7 has 1 interface, different from the descriptor's value: 2
[  470.510073][ T5278] usb 3-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 0.84
[  470.563013][ T5278] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  470.608436][ T5278] usb 3-1: Product: syz
[  470.613856][ T5278] usb 3-1: SerialNumber: syz
[  470.628929][ T5278] option 3-1:7.0: GSM modem (1-port) converter detected
[  470.894021][   T29] audit: type=1326 audit(1722151899.519:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10613 comm="syz.1.936" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04ced77299 code=0x0
[  471.009906][T10621] netlink: 44 bytes leftover after parsing attributes in process `syz.0.937'.
[  471.052129][T10621] netlink: 28 bytes leftover after parsing attributes in process `syz.0.937'.
[  471.650818][T10631] netlink: 'syz.0.939': attribute type 12 has an invalid length.
[  471.696455][T10631] netlink: 'syz.0.939': attribute type 11 has an invalid length.
[  471.712387][T10631] netlink: 190580 bytes leftover after parsing attributes in process `syz.0.939'.
[  472.054879][ T5311] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  472.264660][ T5311] usb 1-1: Using ep0 maxpacket: 16
[  472.275029][ T5278] usb 3-1: USB disconnect, device number 23
[  472.286848][ T5311] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  472.315507][ T5311] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  472.339768][ T5311] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  472.350836][ T5278] option 3-1:7.0: device disconnected
[  472.371062][ T5311] usb 1-1: config 0 descriptor??
[  472.694751][T10645] 9pnet: p9_errstr2errno: server reported unknown error 
[  472.909322][T10631] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  472.925245][T10631] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  472.975361][ T5311] hid (null): invalid report_size 24940
[  473.002466][ T5311] hid (null): unknown global tag 0xa5
[  473.029589][ T5311] hid (null): unknown global tag 0xd
[  473.084572][ T5311] hid-generic 0003:0158:0100.000A: unknown main item tag 0x1
[  473.122085][ T5311] hid-generic 0003:0158:0100.000A: unexpected long global item
[  473.156289][ T5311] hid-generic 0003:0158:0100.000A: probe with driver hid-generic failed with error -22
[  473.215275][ T5311] usb 1-1: USB disconnect, device number 26
[  473.247404][   T52] tipc: Subscription rejected, illegal request
[  474.749055][   T29] audit: type=1326 audit(1722151903.359:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10665 comm="syz.3.950" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11ed77299 code=0x0
[  475.069209][   T29] audit: type=1326 audit(1722151903.679:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10671 comm="syz.4.952" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd67dd77299 code=0x0
[  475.314571][    T8] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  475.466189][   T52] tipc: Subscription rejected, illegal request
[  475.570319][    T8] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  475.598243][    T8] usb 1-1: config 7 has 1 interface, different from the descriptor's value: 2
[  475.635352][    T8] usb 1-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 0.84
[  475.857013][    T8] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  475.905633][    T8] usb 1-1: Product: syz
[  475.923717][    T8] usb 1-1: SerialNumber: syz
[  475.961614][    T8] option 1-1:7.0: GSM modem (1-port) converter detected
[  476.954657][ T5278] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  477.128251][T10721] FAULT_INJECTION: forcing a failure.
[  477.128251][T10721] name failslab, interval 1, probability 0, space 0, times 0
[  477.168412][ T5278] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  477.173793][T10721] CPU: 0 UID: 0 PID: 10721 Comm: syz.4.960 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  477.187835][T10721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  477.197902][T10721] Call Trace:
[  477.201185][T10721]  <TASK>
[  477.204122][T10721]  dump_stack_lvl+0x241/0x360
[  477.208817][T10721]  ? __pfx_dump_stack_lvl+0x10/0x10
[  477.214031][T10721]  ? __pfx__printk+0x10/0x10
[  477.218658][T10721]  ? kmem_cache_alloc_lru_noprof+0x49/0x2b0
[  477.224575][T10721]  ? __pfx___might_resched+0x10/0x10
[  477.229896][T10721]  should_fail_ex+0x3b0/0x4e0
[  477.234957][T10721]  ? proc_alloc_inode+0x2a/0xc0
[  477.239823][T10721]  should_failslab+0xac/0x100
[  477.244610][T10721]  ? proc_alloc_inode+0x2a/0xc0
[  477.249508][T10721]  kmem_cache_alloc_lru_noprof+0x71/0x2b0
[  477.255255][T10721]  proc_alloc_inode+0x2a/0xc0
[  477.259943][T10721]  ? __pfx_proc_alloc_inode+0x10/0x10
[  477.265325][T10721]  new_inode+0x6e/0x310
[  477.269498][T10721]  proc_pid_make_inode+0x1f/0x130
[  477.274722][T10721]  proc_fd_instantiate+0x57/0x2a0
[  477.279781][T10721]  proc_fill_cache+0x316/0x420
[  477.284571][T10721]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  477.290218][T10721]  ? __pfx_proc_fill_cache+0x10/0x10
[  477.295511][T10721]  ? snprintf+0xda/0x120
[  477.299763][T10721]  ? proc_readfd_common+0x2f1/0xac0
[  477.305000][T10721]  ? proc_readfd_common+0x2f1/0xac0
[  477.310211][T10721]  proc_readfd_common+0x5ef/0xac0
[  477.315249][T10721]  ? proc_readfd_common+0x2f1/0xac0
[  477.320457][T10721]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  477.326119][T10721]  ? __pfx_proc_readfd_common+0x10/0x10
[  477.331694][T10721]  ? __fget_files+0x29/0x470
[  477.336310][T10721]  ? __fget_files+0x3f6/0x470
[  477.340993][T10721]  ? bpf_lsm_file_permission+0x9/0x10
[  477.346392][T10721]  iterate_dir+0x57a/0x810
[  477.350840][T10721]  __se_sys_getdents64+0x20d/0x4f0
[  477.355976][T10721]  ? __pfx___se_sys_getdents64+0x10/0x10
[  477.361613][T10721]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  477.367600][T10721]  ? __pfx_filldir64+0x10/0x10
[  477.372384][T10721]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  477.378751][T10721]  ? do_syscall_64+0x100/0x230
[  477.383525][T10721]  ? do_syscall_64+0xb6/0x230
[  477.388231][T10721]  do_syscall_64+0xf3/0x230
[  477.393261][T10721]  ? clear_bhb_loop+0x35/0x90
[  477.397950][T10721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  477.403853][T10721] RIP: 0033:0x7fd67dd77299
[  477.408271][T10721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  477.427886][T10721] RSP: 002b:00007fd67eb16048 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  477.436312][T10721] RAX: ffffffffffffffda RBX: 00007fd67df05f80 RCX: 00007fd67dd77299
[  477.444378][T10721] RDX: 0000000000001002 RSI: 0000000020002f40 RDI: 0000000000000004
[  477.452348][T10721] RBP: 00007fd67eb160a0 R08: 0000000000000000 R09: 0000000000000000
[  477.460323][T10721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  477.468313][T10721] R13: 000000000000000b R14: 00007fd67df05f80 R15: 00007ffd7a5c4988
[  477.476354][T10721]  </TASK>
[  477.494607][ T5278] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.516854][ T5278] usb 3-1: config 0 descriptor??
[  477.990088][ T5278] gs_usb 3-1:0.0: Couldn't get device config: (err=-71)
[  477.997871][ T5278] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[  478.017427][ T5276] usb 1-1: USB disconnect, device number 27
[  478.025116][ T5278] usb 3-1: USB disconnect, device number 24
[  478.025174][ T5276] option 1-1:7.0: device disconnected
[  478.119851][ T3854] tipc: Subscription rejected, illegal request
[  478.264081][T10730] netlink: 'syz.1.963': attribute type 1 has an invalid length.
[  478.285007][T10730] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.963'.
[  478.302022][T10730] netlink: 'syz.1.963': attribute type 1 has an invalid length.
[  479.739407][   T29] audit: type=1326 audit(1722151908.359:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10740 comm="syz.4.965" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd67dd77299 code=0x0
[  480.324883][ T5307] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  481.071725][ T5307] usb 4-1: Using ep0 maxpacket: 16
[  481.082839][ T5307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  481.104602][ T5307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  481.114410][ T5307] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  481.208958][ T5307] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  481.232558][ T5307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.248684][ T5307] usb 4-1: config 0 descriptor??
[  482.014631][ T5445] tipc: Subscription rejected, illegal request
[  482.486661][ T5307] usbhid 4-1:0.0: can't add hid device: -71
[  482.564559][ T5307] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  482.658237][ T5307] usb 4-1: USB disconnect, device number 26
[  485.989594][   T29] audit: type=1326 audit(1722151914.619:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10861 comm="syz.0.983" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc2a4777299 code=0x0
[  487.309292][T10907] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  487.345262][T10907] IPVS: set_ctl: invalid protocol: 58 172.20.20.187:0
[  487.397874][T10907] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  487.524581][    T8] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  487.717241][    T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  487.754261][    T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  487.787126][    T8] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  487.814805][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  487.841295][    T8] usb 4-1: SerialNumber: syz
[  487.967043][    C1] eth0: bad gso: type: 1, size: 1408
[  488.146239][    T8] usb 4-1: invalid UAC_HEADER (v1)
[  488.218551][    T8] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  488.255483][    T8] usb 4-1: USB disconnect, device number 27
[  488.329882][T10920] random: crng reseeded on system resumption
[  488.396667][T10925] loop0: detected capacity change from 0 to 7
[  488.456754][T10925] Dev loop0: unable to read RDB block 7
[  488.499854][T10925]  loop0: unable to read partition table
[  488.507275][ T5887] udevd[5887]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  488.535311][T10925] loop0: partition table beyond EOD, truncated
[  488.547032][T10925] loop_reread_partitions: partition scan of loop0 (�被x������ڬ��dƤ����ݡ�����
[  488.547032][T10925] 
) failed (rc=-5)
[  489.314695][ T5311] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  489.523547][   T29] audit: type=1326 audit(1722151918.149:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10933 comm="syz.3.996" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11ed77299 code=0x0
[  490.810310][ T5311] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  490.865021][ T5311] usb 1-1: config 7 has 1 interface, different from the descriptor's value: 2
[  490.965267][ T5311] usb 1-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 0.84
[  491.066532][ T5311] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  491.185913][ T5311] usb 1-1: Product: syz
[  491.190116][ T5311] usb 1-1: SerialNumber: syz
[  491.483443][ T5311] usb 1-1: can't set config #7, error -71
[  491.645371][ T5311] usb 1-1: USB disconnect, device number 28
[  496.501057][T11060] netlink: 'syz.0.1008': attribute type 12 has an invalid length.
[  496.549656][T11060] netlink: 'syz.0.1008': attribute type 11 has an invalid length.
[  496.599785][T11060] netlink: 190580 bytes leftover after parsing attributes in process `syz.0.1008'.
[  496.624667][    T8] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  496.858527][    T8] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  496.874958][    T8] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  496.915180][ T5311] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  496.917334][    T8] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  496.958459][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  496.989368][    T8] usb 5-1: SerialNumber: syz
[  497.069418][   T29] audit: type=1326 audit(1722151925.699:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11066 comm="syz.2.1010" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f39d3d77299 code=0x0
[  497.144608][ T5311] usb 1-1: Using ep0 maxpacket: 16
[  497.152745][ T5311] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  497.189415][ T5311] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  497.208130][ T5311] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.236237][    T8] usb 5-1: invalid UAC_HEADER (v1)
[  497.242291][ T5311] usb 1-1: config 0 descriptor??
[  497.313672][    T8] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[  497.359961][    T8] usb 5-1: USB disconnect, device number 25
[  497.566775][T11060] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1008'.
[  497.618475][ T5887] udevd[5887]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  497.809263][T11060] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  497.854982][T11060] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  497.906255][ T5311] hid (null): invalid report_size 24940
[  497.927346][ T5311] hid (null): unknown global tag 0xa5
[  497.940758][ T5311] hid (null): unknown global tag 0xd
[  497.970707][ T5311] hid-generic 0003:0158:0100.000B: unknown main item tag 0x1
[  497.996434][ T5311] hid-generic 0003:0158:0100.000B: unexpected long global item
[  498.021567][ T5311] hid-generic 0003:0158:0100.000B: probe with driver hid-generic failed with error -22
[  498.204099][    T8] usb 1-1: USB disconnect, device number 29
[  499.165799][ T3854] tipc: Subscription rejected, illegal request
[  500.761455][T11116] x_tables: ip_tables: ah match: only valid for protocol 51
[  501.604107][T11122] FAULT_INJECTION: forcing a failure.
[  501.604107][T11122] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.724337][T11122] CPU: 0 UID: 0 PID: 11122 Comm: syz.1.1021 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  501.734841][T11122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  501.744949][T11122] Call Trace:
[  501.748256][T11122]  <TASK>
[  501.751205][T11122]  dump_stack_lvl+0x241/0x360
[  501.755923][T11122]  ? __pfx_dump_stack_lvl+0x10/0x10
[  501.761151][T11122]  ? __pfx__printk+0x10/0x10
[  501.765774][T11122]  ? __pfx_lock_release+0x10/0x10
[  501.770840][T11122]  should_fail_ex+0x3b0/0x4e0
[  501.775567][T11122]  _copy_from_user+0x2f/0xe0
[  501.780234][T11122]  vmemdup_user+0x149/0x1c0
[  501.784791][T11122]  con_set_unimap+0x42/0xdc0
[  501.789425][T11122]  ? cap_capable+0x1b4/0x250
[  501.794047][T11122]  ? safesetid_security_capable+0xb2/0x1d0
[  501.795116][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  501.799874][T11122]  ? __might_fault+0xc6/0x120
[  501.806279][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  501.810773][T11122]  vt_ioctl+0x13f5/0x2090
[  501.821431][T11122]  ? vt_ioctl+0xd1/0x2090
[  501.825786][T11122]  ? __pfx_vt_ioctl+0x10/0x10
[  501.830473][T11122]  ? __asan_memset+0x23/0x50
[  501.835092][T11122]  ? smack_file_ioctl+0x2a1/0x3a0
[  501.840148][T11122]  ? __pfx_smack_file_ioctl+0x10/0x10
[  501.845561][T11122]  ? tty_jobctrl_ioctl+0x36e/0xba0
[  501.850703][T11122]  ? __fget_files+0x29/0x470
[  501.855314][T11122]  tty_ioctl+0x915/0xdc0
[  501.859573][T11122]  ? security_file_ioctl+0x87/0xb0
[  501.864701][T11122]  ? __pfx_tty_ioctl+0x10/0x10
[  501.869480][T11122]  __se_sys_ioctl+0xfc/0x170
[  501.874078][T11122]  do_syscall_64+0xf3/0x230
[  501.878596][T11122]  ? clear_bhb_loop+0x35/0x90
[  501.883307][T11122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.889394][T11122] RIP: 0033:0x7f04ced77299
[  501.893851][T11122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.913469][T11122] RSP: 002b:00007f04cfa6c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  501.921898][T11122] RAX: ffffffffffffffda RBX: 00007f04cef05f80 RCX: 00007f04ced77299
[  501.929900][T11122] RDX: 0000000020001900 RSI: 0000000000004b67 RDI: 0000000000000004
[  501.937970][T11122] RBP: 00007f04cfa6c0a0 R08: 0000000000000000 R09: 0000000000000000
[  501.945953][T11122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.954105][T11122] R13: 000000000000000b R14: 00007f04cef05f80 R15: 00007ffeb748c428
[  501.962097][T11122]  </TASK>
[  502.451742][T11131] vlan2: entered promiscuous mode
[  502.468900][T11131] vlan0: entered promiscuous mode
[  502.487462][T11129] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1024'.
[  502.536780][T11131] vlan0: left promiscuous mode
[  504.304287][T11166] FAULT_INJECTION: forcing a failure.
[  504.304287][T11166] name failslab, interval 1, probability 0, space 0, times 0
[  504.673894][T11166] CPU: 1 UID: 0 PID: 11166 Comm: syz.1.1028 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  504.684390][T11166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  504.694485][T11166] Call Trace:
[  504.697787][T11166]  <TASK>
[  504.700742][T11166]  dump_stack_lvl+0x241/0x360
[  504.705472][T11166]  ? __pfx_dump_stack_lvl+0x10/0x10
[  504.710724][T11166]  ? __pfx__printk+0x10/0x10
[  504.715366][T11166]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  504.720883][T11166]  ? __pfx___might_resched+0x10/0x10
[  504.726225][T11166]  should_fail_ex+0x3b0/0x4e0
[  504.730963][T11166]  should_failslab+0xac/0x100
[  504.735695][T11166]  ? sctp_association_new+0x8a/0x23f0
[  504.741116][T11166]  __kmalloc_cache_noprof+0x6c/0x2c0
[  504.746459][T11166]  ? __asan_memcpy+0x40/0x70
[  504.751098][T11166]  sctp_association_new+0x8a/0x23f0
[  504.756346][T11166]  ? sctp_do_bind+0x679/0x950
[  504.761120][T11166]  ? __ipv6_addr_type+0x146/0x2f0
[  504.766201][T11166]  sctp_connect_new_asoc+0x2d8/0x6c0
[  504.771578][T11166]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  504.777465][T11166]  ? __ipv6_addr_type+0x146/0x2f0
[  504.782629][T11166]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  504.788541][T11166]  __sctp_connect+0x66d/0xe30
[  504.793456][T11166]  ? __pfx___sctp_connect+0x10/0x10
[  504.798702][T11166]  ? __might_fault+0xc6/0x120
[  504.803426][T11166]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  504.809044][T11166]  ? security_sctp_bind_connect+0x90/0xb0
[  504.814819][T11166]  sctp_getsockopt_connectx3+0x46f/0x730
[  504.820787][T11166]  ? __local_bh_enable_ip+0x168/0x200
[  504.826210][T11166]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  504.832420][T11166]  ? __local_bh_enable_ip+0x168/0x200
[  504.837908][T11166]  ? sctp_getsockopt+0x13a/0xbb0
[  504.842901][T11166]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  504.848658][T11166]  sctp_getsockopt+0x8de/0xbb0
[  504.853439][T11166]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  504.859351][T11166]  do_sock_getsockopt+0x373/0x850
[  504.864612][T11166]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  504.870175][T11166]  ? __fget_files+0x3f6/0x470
[  504.875399][T11166]  __sys_getsockopt+0x271/0x330
[  504.880274][T11166]  ? __pfx___sys_getsockopt+0x10/0x10
[  504.885668][T11166]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  504.892017][T11166]  ? do_syscall_64+0x100/0x230
[  504.896970][T11166]  __x64_sys_getsockopt+0xb5/0xd0
[  504.902016][T11166]  do_syscall_64+0xf3/0x230
[  504.906533][T11166]  ? clear_bhb_loop+0x35/0x90
[  504.911269][T11166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.917212][T11166] RIP: 0033:0x7f04ced77299
[  504.921638][T11166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  504.941251][T11166] RSP: 002b:00007f04cfa6c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  504.949676][T11166] RAX: ffffffffffffffda RBX: 00007f04cef05f80 RCX: 00007f04ced77299
[  504.957657][T11166] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000003
[  504.965635][T11166] RBP: 00007f04cfa6c0a0 R08: 0000000020000180 R09: 0000000000000000
[  504.973618][T11166] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  504.981602][T11166] R13: 000000000000000b R14: 00007f04cef05f80 R15: 00007ffeb748c428
[  504.989634][T11166]  </TASK>
[  508.604777][ T5280] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  508.726713][T11216] netlink: 'syz.2.1039': attribute type 12 has an invalid length.
[  508.759140][T11216] netlink: 'syz.2.1039': attribute type 11 has an invalid length.
[  508.800365][T11216] netlink: 190580 bytes leftover after parsing attributes in process `syz.2.1039'.
[  508.824678][ T5280] usb 5-1: Using ep0 maxpacket: 16
[  508.848971][ T5280] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  508.898296][ T5441] tipc: Subscription rejected, illegal request
[  508.918538][ T5280] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.962974][ T5280] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  509.034616][ T5280] usb 5-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c
[  509.884888][    T8] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  509.903849][ T5280] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.016206][ T5280] usb 5-1: config 0 descriptor??
[  510.134641][    T8] usb 3-1: Using ep0 maxpacket: 16
[  510.211012][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  510.295021][    T8] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  510.364522][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.466775][    T8] usb 3-1: config 0 descriptor??
[  510.897987][T11216] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1039'.
[  511.320818][T11216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  511.525078][T11216] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  511.847949][    T8] hid (null): invalid report_size 24940
[  511.863190][    T8] hid (null): unknown global tag 0xa5
[  511.871283][    T8] hid (null): unknown global tag 0xd
[  511.889346][    T8] hid-generic 0003:0158:0100.000C: unknown main item tag 0x1
[  511.900205][    T8] hid-generic 0003:0158:0100.000C: unexpected long global item
[  511.909936][    T8] hid-generic 0003:0158:0100.000C: probe with driver hid-generic failed with error -22
[  511.933685][ T5280] usbhid 5-1:0.0: can't add hid device: -71
[  511.968959][ T5280] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  512.034976][ T5280] usb 5-1: USB disconnect, device number 26
[  512.089216][ T5307] usb 3-1: USB disconnect, device number 25
[  513.815080][    C1] eth0: bad gso: type: 1, size: 1408
[  513.849888][    C1] Oops: general protection fault, probably for non-canonical address 0xdffffc00291a5c82: 0000 [#1] PREEMPT SMP KASAN PTI
[  513.862547][    C1] KASAN: probably user-memory-access in range [0x0000000148d2e410-0x0000000148d2e417]
[  513.872129][    C1] CPU: 1 UID: 0 PID: 11302 Comm: syz.3.1050 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  513.882580][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  513.892846][    C1] RIP: 0010:__xsk_map_flush+0xc9/0x2b0
[  513.898358][    C1] Code: 01 00 00 8b 6b 08 48 83 c3 10 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 81 98 65 f6 48 8b 1b 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 58 01 00 00 89 2b 49 8d 5f 10 48 89 d8
[  513.918003][    C1] RSP: 0018:ffffc90000a18ae8 EFLAGS: 00010207
[  513.924090][    C1] RAX: 00000000291a5c82 RBX: 0000000148d2e417 RCX: ffff88806af60000
[  513.932058][    C1] RDX: 0000000080000101 RSI: 0000000000000010 RDI: ffff88806af60acc
[  513.940054][    C1] RBP: 0000000000000000 R08: ffffffff8985683a R09: 1ffffffff1fecbc5
[  513.948146][    C1] R10: dffffc0000000000 R11: fffffbfff1fecbc6 R12: 0000000000000000
[  513.956118][    C1] R13: dffffc0000000000 R14: 0000000000000010 R15: ffffc900109e7280
[  513.964086][    C1] FS:  00007fe11fa886c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  513.973017][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  513.979607][    C1] CR2: 0000001b32310ff8 CR3: 0000000024d3c000 CR4: 00000000003506f0
[  513.987600][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  513.995565][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  514.003555][    C1] Call Trace:
[  514.006832][    C1]  <IRQ>
[  514.009670][    C1]  ? __die_body+0x88/0xe0
[  514.014006][    C1]  ? die_addr+0x108/0x140
[  514.018340][    C1]  ? exc_general_protection+0x3dd/0x5d0
[  514.023930][    C1]  ? asm_exc_general_protection+0x26/0x30
[  514.029660][    C1]  ? xdp_do_check_flushed+0x10a/0x240
[  514.035034][    C1]  ? __xsk_map_flush+0xc9/0x2b0
[  514.039902][    C1]  ? __xsk_map_flush+0x24/0x2b0
[  514.044752][    C1]  xdp_do_check_flushed+0x18e/0x240
[  514.049954][    C1]  __napi_poll+0xe4/0x490
[  514.054284][    C1]  net_rx_action+0x89b/0x1240
[  514.058985][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  514.064118][    C1]  ? sched_clock+0x4a/0x70
[  514.068541][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  514.074882][    C1]  handle_softirqs+0x2c4/0x970
[  514.079648][    C1]  ? __irq_exit_rcu+0xf4/0x1c0
[  514.084418][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  514.089720][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  514.094931][    C1]  __irq_exit_rcu+0xf4/0x1c0
[  514.099529][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  514.104750][    C1]  irq_exit_rcu+0x9/0x30
[  514.108992][    C1]  common_interrupt+0xaa/0xd0
[  514.113692][    C1]  </IRQ>
[  514.116617][    C1]  <TASK>
[  514.119541][    C1]  asm_common_interrupt+0x26/0x40
[  514.124574][    C1] RIP: 0010:lock_acquire+0x264/0x550
[  514.129868][    C1] Code: 2b 00 74 08 4c 89 f7 e8 aa e9 87 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  514.149560][    C1] RSP: 0018:ffffc900109e7800 EFLAGS: 00000206
[  514.155627][    C1] RAX: 0000000000000001 RBX: 1ffff9200213cf0c RCX: aa1b3e40ae835a00
[  514.163591][    C1] RDX: dffffc0000000000 RSI: ffffffff8beae6a0 RDI: ffffffff8c3f9480
[  514.171557][    C1] RBP: ffffc900109e7948 R08: ffffffff934e78ff R09: 1ffffffff269cf1f
[  514.179527][    C1] R10: dffffc0000000000 R11: fffffbfff269cf20 R12: 1ffff9200213cf08
[  514.187491][    C1] R13: dffffc0000000000 R14: ffffc900109e7860 R15: 0000000000000246
[  514.195474][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  514.200527][    C1]  ? get_futex_key+0xaeb/0x1050
[  514.205377][    C1]  ? __pfx_get_futex_key+0x10/0x10
[  514.210571][    C1]  ? bcm_sendmsg+0x603/0x7a0
[  514.215163][    C1]  _raw_spin_lock+0x2e/0x40
[  514.219692][    C1]  ? futex_q_lock+0x193/0x230
[  514.224375][    C1]  futex_q_lock+0x193/0x230
[  514.228893][    C1]  futex_wait_setup+0x110/0x340
[  514.233773][    C1]  ? __pfx_futex_wait_setup+0x10/0x10
[  514.239146][    C1]  ? __pfx_bcm_sendmsg+0x10/0x10
[  514.244097][    C1]  ? __futex_wait+0xaf/0x320
[  514.248695][    C1]  __futex_wait+0x13c/0x320
[  514.253206][    C1]  ? __pfx___futex_wait+0x10/0x10
[  514.258229][    C1]  ? get_futex_key+0xaeb/0x1050
[  514.263078][    C1]  ? __pfx_futex_wake_mark+0x10/0x10
[  514.268372][    C1]  ? futex_hash+0x1e/0x1f0
[  514.272786][    C1]  futex_wait+0x101/0x360
[  514.277121][    C1]  ? __pfx_futex_wait+0x10/0x10
[  514.281977][    C1]  ? __pfx___sys_sendmsg+0x10/0x10
[  514.287105][    C1]  ? vfs_write+0x7cb/0xc90
[  514.291521][    C1]  do_futex+0x33b/0x560
[  514.295679][    C1]  ? __pfx_do_futex+0x10/0x10
[  514.300489][    C1]  __se_sys_futex+0x3f9/0x480
[  514.305441][    C1]  ? __pfx___se_sys_futex+0x10/0x10
[  514.310653][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  514.317007][    C1]  ? do_syscall_64+0x100/0x230
[  514.321800][    C1]  ? __x64_sys_futex+0x21/0xf0
[  514.326605][    C1]  do_syscall_64+0xf3/0x230
[  514.331113][    C1]  ? clear_bhb_loop+0x35/0x90
[  514.335789][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.341685][    C1] RIP: 0033:0x7fe11ed77299
[  514.346102][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.365793][    C1] RSP: 002b:00007fe11fa880f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  514.374223][    C1] RAX: ffffffffffffffda RBX: 00007fe11ef05f88 RCX: 00007fe11ed77299
[  514.382199][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe11ef05f88
[  514.390167][    C1] RBP: 00007fe11ef05f80 R08: 00007fe11fa886c0 R09: 00007fe11fa886c0
[  514.398149][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe11ef05f8c
[  514.406138][    C1] R13: 000000000000000b R14: 00007ffd06aab490 R15: 00007ffd06aab578
[  514.414116][    C1]  </TASK>
[  514.417125][    C1] Modules linked in:
[  514.421109][    C1] ---[ end trace 0000000000000000 ]---
[  514.426585][    C1] RIP: 0010:__xsk_map_flush+0xc9/0x2b0
[  514.432047][    C1] Code: 01 00 00 8b 6b 08 48 83 c3 10 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 81 98 65 f6 48 8b 1b 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 58 01 00 00 89 2b 49 8d 5f 10 48 89 d8
[  514.451677][    C1] RSP: 0018:ffffc90000a18ae8 EFLAGS: 00010207
[  514.457849][    C1] RAX: 00000000291a5c82 RBX: 0000000148d2e417 RCX: ffff88806af60000
[  514.465930][    C1] RDX: 0000000080000101 RSI: 0000000000000010 RDI: ffff88806af60acc
[  514.473899][    C1] RBP: 0000000000000000 R08: ffffffff8985683a R09: 1ffffffff1fecbc5
[  514.481884][    C1] R10: dffffc0000000000 R11: fffffbfff1fecbc6 R12: 0000000000000000
[  514.489866][    C1] R13: dffffc0000000000 R14: 0000000000000010 R15: ffffc900109e7280
[  514.497850][    C1] FS:  00007fe11fa886c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  514.506791][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  514.513367][    C1] CR2: 0000001b32310ff8 CR3: 0000000024d3c000 CR4: 00000000003506f0
[  514.521358][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  514.529434][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  514.537446][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[  514.544922][    C1] Kernel Offset: disabled
[  514.549245][    C1] Rebooting in 86400 seconds..