last executing test programs:

12m18.358254537s ago: executing program 2 (id=714):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7d08acea59c81dbb34fb13ee724add660"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.net/syz0\x00', 0x200002, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

12m17.451369934s ago: executing program 2 (id=718):
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
io_uring_setup(0x41c3, &(0x7f0000000000)={0x0, 0xd1a8, 0x40, 0x0, 0x32e})
socket$kcm(0x10, 0x2, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x24, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000080)={{0x6, @rose={0xbb, 0xbb, 0xbb, 0x2}}, [@null, @default, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @default, @bcast]}, 0x48)
sendto$inet(0xffffffffffffffff, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff9", 0x22, 0x0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r4, r5, r4}, &(0x7f00000005c0)=""/66, 0x42, &(0x7f0000000340)={&(0x7f0000000280)={'crc32c-generic\x00'}})

12m15.739874107s ago: executing program 2 (id=720):
socket$nl_route(0x10, 0x3, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000180), 0x80800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x77359400}}, 0x0)
io_uring_setup(0x79bb, 0x0)
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000080)={0x1a, 0x2, 0x0, 0x0, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10)
listen(r5, 0x0)
accept4$llc(r5, 0x0, 0x0, 0x0)
sendmmsg$inet(r3, &(0x7f0000004bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
getpid()
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

12m13.817116073s ago: executing program 2 (id=725):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82004000000", @ANYBLOB="00008000000000001800348005"], 0x38}, 0x1, 0x300}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, 0x0, 0x0, 0x0)

12m13.584125342s ago: executing program 2 (id=728):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7d08acea59c81dbb34fb13ee724add660"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.net/syz0\x00', 0x200002, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

12m12.582020201s ago: executing program 2 (id=732):
socket$inet6(0xa, 0x2, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x20}, {{0x18, 0x7, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x2f}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0x7}, {0x18, 0x9, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8, 0x4}, {0x6, 0x0, 0x5, 0x7}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

11m57.448562986s ago: executing program 32 (id=732):
socket$inet6(0xa, 0x2, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x20}, {{0x18, 0x7, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x2f}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0x7}, {0x18, 0x9, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8, 0x4}, {0x6, 0x0, 0x5, 0x7}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

7.522582743s ago: executing program 1 (id=2896):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

7.417533046s ago: executing program 1 (id=2897):
faccessat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4)
syz_init_net_socket$ax25(0x3, 0x2, 0xc4)
syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0), &(0x7f0000000080))
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x0, 0x400, 0x3, 0xfffffffe}, &(0x7f0000000240)=<r4=>0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1})
rt_sigsuspend(0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r5, 0x0, 0x20e)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x2f8, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x320, 0xffffffff, 0xffffffff, 0x320, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xd0, 0xf0, 0x60030000, {0x0, 0xff000000}, [@common=@hl={{0x28}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x358)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000000)={0x0, 0x2, 0x21, 0x1, 0x200, &(0x7f00000003c0)="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"})

6.002088642s ago: executing program 0 (id=2837):
fsopen(&(0x7f00000029c0)='vfat\x00', 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x8d, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000b40)="f30f09ba6100b8c400ef66b9eb0a00000f3266b9830000c066b84700000066ba000000000f30f2a60fc75add650fdabc755ac09af67f0066b98004000066b8532ebe1866ba0bffd3710f3066b9830500000f32", 0x53}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.602327564s ago: executing program 0 (id=2902):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
r5 = fcntl$dupfd(r3, 0x0, r3)
ioctl$TCFLSH(r5, 0x400455c8, 0x0)
fstat(r1, 0x0)
socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x29a83a768e447add)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd27, 0x20000000, {0x0, 0x0, 0x0, 0x0, {0x5, 0x2}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.714205549s ago: executing program 4 (id=2903):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16, @ANYBLOB="ff830500000700ff", @ANYRES32], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

4.052530299s ago: executing program 0 (id=2904):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4.01884235s ago: executing program 5 (id=2905):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff09"], 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

3.9459926s ago: executing program 4 (id=2906):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3.751867357s ago: executing program 0 (id=2907):
socket$inet(0x2, 0x5, 0x6)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8a}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(r1, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x1)
preadv(r3, 0x0, 0x0, 0x0, 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c40), r5)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r5, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x54, r6, 0x1, 0x0, 0x0, {0x6, 0x0, 0x900}, [@NLBL_UNLABEL_A_SECCTX={0xf, 0x7, 'unconfined\x00'}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}]}, 0x54}, 0x2, 0x34005}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f0000000300)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560aff820fffff5bab003a0000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000003980)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x225, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x5, 0x10, 0x8, [{{0x9, 0x4, 0x0, 0xca, 0x2, 0x3, 0x1, 0x2, 0x7f, {0x9, 0x21, 0x5, 0x4, 0x1, {0x22, 0xd88}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0xf, 0xc, 0x3}}}}}]}}]}}, &(0x7f0000003b00)={0x0, 0x0, 0x0, 0x0})

3.700710701s ago: executing program 4 (id=2908):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3.547804547s ago: executing program 5 (id=2909):
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='io_uring_register\x00', r0, 0x0, 0xffff}, 0x18)
r1 = syz_io_uring_setup(0x6acf, &(0x7f0000000940), &(0x7f00000009c0), &(0x7f00000003c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000001c80)={0x0, 0x2000000, 0x0, 0x0, 0x0}, 0x20)

3.425869974s ago: executing program 4 (id=2910):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x4, 0x4, 0x21, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000280), 0xb47, r0}, 0x38)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000100)={r0, &(0x7f00000000c0), 0x98000000}, 0x20)

3.291567834s ago: executing program 3 (id=2911):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
keyctl$session_to_parent(0x12)
ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000240)={0x17, 0x0, 0x0})
r0 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x2, 0x208000)
ioctl$SNDRV_PCM_IOCTL_XRUN(r0, 0xc0984124, 0x1000000000000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500000000000061109b000000000007000080000000009500000000000000b9e680d18101135e7bffdba20847df674ca591493fde4d5dae95f39b8d4c67611cf8fb2cdd53e04831e6bc987087161c67ce0e2db727"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
keyctl$session_to_parent(0x12)
preadv(0xffffffffffffffff, &(0x7f0000001540), 0x0, 0x6, 0x5)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = socket(0x2, 0x3, 0x9)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004780)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10, 0x0}}, {{&(0x7f00000031c0)={0x2, 0x0, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="2c0000000000000000000083e86aad0007000000441c1503ac1414aa00000000ac1e00fafffffd0000000000000000006bce5af9dd5435695f941e690b0cbac72ef27120629116d04beeca4b8e3f"], 0x30}}], 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r5)
sendmsg$NLBL_CALIPSO_C_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x24, r6, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000005}, 0x2000c890)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f917240685", 0x14}], 0x1}, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r10 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r10, 0xc0184800, &(0x7f0000000100)={0x4, <r11=>r9})
ioctl$DMA_BUF_SET_NAME_A(r11, 0x40086201, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r13=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="36710002", @ANYRES16=r12, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r13, @ANYBLOB="0800050003000000"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_SET_KEY(r3, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x7c, 0x0, 0x4b4, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r13}, @val={0xc, 0x99, {0x3, 0x79}}}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x10, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc800}, 0x8004)
write$binfmt_script(r2, &(0x7f0000000100)={'#! ', './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa', [{0x20, '/,+*'}]}, 0x105)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000000, 0x80010, r1, 0x2000)
io_uring_setup(0x7fe, &(0x7f0000000000)={0x0, 0x0, 0x8002, 0x1, 0x2})

3.26971847s ago: executing program 1 (id=2912):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b"], 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

3.210246094s ago: executing program 5 (id=2913):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mremap(&(0x7f000011f000/0x1000)=nil, 0x1000, 0x13000, 0x2, &(0x7f00000b5000/0x13000)=nil)
r1 = getpid()
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa1400"], 0x10c}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = inotify_add_watch(0xffffffffffffffff, 0x0, 0x400)
socket(0x10, 0x3, 0x0)
r6 = dup(0xffffffffffffffff)
syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x101000)
inotify_rm_watch(r6, r5)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x4001, 0x3, 0x260, 0x138, 0x0, 0x148, 0x0, 0x148, 0x218, 0x240, 0x240, 0x218, 0x240, 0x7fffffe, 0x0, {[{{@ip={@loopback, @local, 0x0, 0x0, 'ip6gretap0\x00', 'netdevsim0\x00'}, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private1, 'ip6erspan0\x00'}}}, {{@ip={@local, @loopback, 0x0, 0x0, 'veth0_vlan\x00', 'macvtap0\x00'}, 0x0, 0x98, 0xb8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000008c0)=ANY=[@ANYBLOB="48010000100013070000000000000000ac1e000100000000000000001d00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000ffffe0000002000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000002000000000000000000000048000200656362286369706865725f6e756c6c2900"], 0x148}}, 0x0)

3.162190967s ago: executing program 4 (id=2914):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$inet(0x2b, 0x801, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_open_dev$loop(&(0x7f0000000200), 0x7, 0x200000)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x4})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.125277987s ago: executing program 3 (id=2915):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
r5 = fcntl$dupfd(r3, 0x0, r3)
ioctl$TCFLSH(r5, 0x400455c8, 0x0)
fstat(r1, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x29a83a768e447add)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd27, 0x20000000, {0x0, 0x0, 0x0, r6, {0x5, 0x2}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.042340595s ago: executing program 5 (id=2916):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/35, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff09"], 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000140)={0x7, 0x0, 0xb})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

1.70739818s ago: executing program 5 (id=2917):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.625511887s ago: executing program 3 (id=2918):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

1.524842419s ago: executing program 3 (id=2919):
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x6, &(0x7f00000000c0)=[{0x21, 0x0, 0x80, 0xfffff00c}, {0x30, 0x6, 0x3}, {0x6, 0x0, 0xfd}, {0x8, 0x23, 0x20, 0x4}, {0x2a0, 0x6, 0x7, 0x5}, {0x7, 0x9, 0x8, 0xfffffffb}]}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x6, &(0x7f00000000c0)=[{0x21, 0x0, 0x80, 0xfffff00c}, {0x30, 0x6, 0x3}, {0x6, 0x0, 0xfd}, {0x8, 0x23, 0x20, 0x4}, {0x2a0, 0x6, 0x7, 0x5}, {0x7, 0x9, 0x8, 0xfffffffb}]}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b04, &(0x7f00000000c0)={'wlan1\x00'})
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x707b, 0x0, 0x4, 0x288}, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}, {&(0x7f00000005c0)=""/177, 0xb1}], 0x3}, 0x3}], 0x1, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) (async)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r4, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180050002000000000008000400050000000800010002000000240003"], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r4, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180050002000000000008000400050000000800010002000000240003"], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000400000002000000000000110400000000000000000000000000000203000000020000000000001202000000020000000000000e030000000000000000006100793109652983f536084a68c245dce8d6db8eb86b561cbc7b7614ff14ce536e8686d7bcbd01f1c2e636789fecb5d5f4bb52598de5c0224f1e08468c43e9230dc7d793197388e7adec9e0a1b4b37f3131f7916b64d68a9ef965af79698bc7062297bac0e87937e6c43706570e26c4dbf89cb71ca61"], 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_uring_enter(r1, 0x4222, 0xce10, 0xc, &(0x7f0000000040)={[0x7]}, 0x8)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000002840)={0xff}, &(0x7f0000002880)={0x0, 0x989680}, 0x0) (async)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000002840)={0xff}, &(0x7f0000002880)={0x0, 0x989680}, 0x0)

1.501725491s ago: executing program 1 (id=2920):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xcb}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x200000400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.481209138s ago: executing program 5 (id=2921):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

1.454148645s ago: executing program 4 (id=2922):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xc, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
io_setup(0x4082, &(0x7f0000000380))
landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0xb, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7fffffd}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2002, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000000c0), 0x8800, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x94}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(r3, &(0x7f0000000000)='4\x00', 0x2)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
pipe2(&(0x7f0000000340)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x4080)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, &(0x7f0000000140))
read$FUSE(r5, &(0x7f0000000480)={0x2020}, 0x2020)

1.379836909s ago: executing program 3 (id=2923):
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='io_uring_register\x00', r0, 0x0, 0xffff}, 0x18)
r1 = syz_io_uring_setup(0x6acf, &(0x7f0000000940), &(0x7f00000009c0), &(0x7f00000003c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000001c80)={0x0, 0x2000000, 0x0, 0x0, 0x0}, 0x20)

1.076658306s ago: executing program 3 (id=2924):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
fcntl$dupfd(r3, 0x0, r3)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x4)
r4 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x29a83a768e447add)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd27, 0x20000000, {0x0, 0x0, 0x0, r5, {0x5, 0x2}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

491.170758ms ago: executing program 0 (id=2925):
syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
getsockopt$MRT6(r1, 0x29, 0xd0, 0xffffffffffffffff, &(0x7f0000000640))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000040)={'vlan0\x00', &(0x7f0000000340)=@ethtool_gstrings={0x1b, 0x9}}) (async)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a30000000002c0000001b0a05000001000000000000010000000900010073797a30000000000c0002"], 0x74}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000080)=[{&(0x7f00000000c0)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c100000000000000003a0", 0x58}], 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x16, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@printk={@s, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={r7, 0x0, 0xe, 0x0, &(0x7f0000000640)="0cffffdf71c8afefeba000dee560", 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r6, 0x8982, &(0x7f0000000180)={0x3, 'bridge0\x00', {0xcc}}) (async)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1c33b}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="98"], 0x98}}, 0x40) (async)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9, 0x0, 0x0, 0x6044040}, 0x0) (async)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6f94f90424fc600e0005000a000200053582c137153e3704000880fc0b09000300", 0x33fe0}], 0x1}, 0x0)

219.491538ms ago: executing program 1 (id=2926):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05"], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e7", 0x9b}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

22.13399ms ago: executing program 0 (id=2927):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/35, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff09"], 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000140)={0x7, 0x0, 0xb})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

0s ago: executing program 1 (id=2928):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x181)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r5, 0x80)
sendfile(r4, r5, 0x0, 0x7ffff000)
ioctl$sock_ifreq(r0, 0x8995, &(0x7f00000002c0)={'erspan0\x00', @ifru_map={0x10000, 0x8, 0x9, 0xbf, 0xc}})

kernel console output (not intermixed with test programs):

rch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.782553][   T29] audit: type=1326 audit(1738800827.967:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.896137][   T29] audit: type=1326 audit(1738800827.967:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.896453][   T29] audit: type=1326 audit(1738800827.967:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.896875][   T29] audit: type=1326 audit(1738800827.977:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.897228][   T29] audit: type=1326 audit(1738800827.977:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.897675][   T29] audit: type=1326 audit(1738800827.977:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.898172][   T29] audit: type=1326 audit(1738800827.977:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.898361][   T29] audit: type=1326 audit(1738800827.977:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.898630][   T29] audit: type=1326 audit(1738800827.977:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11642 comm="syz.0.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  649.947856][ T5873] usbhid 5-1:0.0: can't add hid device: -71
[  649.948091][ T5873] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  649.955504][ T5873] usb 5-1: USB disconnect, device number 29
[  650.391474][    C1] vkms_vblank_simulate: vblank timer overrun
[  650.473896][    C1] vkms_vblank_simulate: vblank timer overrun
[  650.521138][    T8] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  650.712561][    T8] usb 2-1: Using ep0 maxpacket: 8
[  650.789536][    C1] vkms_vblank_simulate: vblank timer overrun
[  651.703001][ T5839] Bluetooth: hci5: command 0x0406 tx timeout
[  651.924527][    T8] usb 2-1: unable to get BOS descriptor or descriptor too short
[  651.925264][    T8] usb 2-1: unable to read config index 0 descriptor/start: -71
[  651.925285][    T8] usb 2-1: can't read configurations, error -71
[  655.181295][    T9] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  655.396073][    T9] usb 5-1: Using ep0 maxpacket: 8
[  656.192194][ T5839] Bluetooth: hci5: command 0x0406 tx timeout
[  656.361772][ T5873] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  657.927363][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  658.060512][    T9] usb 5-1: unable to read config index 0 descriptor/start: -71
[  658.074867][    T9] usb 5-1: can't read configurations, error -71
[  658.151388][ T5873] usb 6-1: Using ep0 maxpacket: 16
[  658.176230][ T5873] usb 6-1: unable to get BOS descriptor or descriptor too short
[  658.185751][ T5873] usb 6-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  658.537806][ T5873] usb 6-1: config 1 interface 0 has no altsetting 0
[  658.704902][ T5873] usb 6-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  658.809689][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.882174][ T5873] usb 6-1: Product: syz
[  658.905741][ T5873] usb 6-1: Manufacturer: syz
[  659.081550][ T5873] usb 6-1: SerialNumber: syz
[  659.641455][ T5873] usb 6-1: can't set config #1, error -71
[  659.684078][ T5873] usb 6-1: USB disconnect, device number 13
[  660.669760][T11734] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  660.679079][T11734] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  660.688012][T11734] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  660.696802][T11734] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  660.785796][T11734] vxlan0: entered promiscuous mode
[  660.790973][T11734] vxlan0: entered allmulticast mode
[  661.337904][T11734] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  661.347393][T11734] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  661.356386][T11734] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  661.365473][T11734] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  665.493113][  T974] kernel write not supported for file /vcs (pid: 974 comm: kworker/0:2)
[  665.593150][    T9] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  665.761214][    T9] usb 6-1: Using ep0 maxpacket: 8
[  665.774533][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  665.792213][    T9] usb 6-1: config 4 has an invalid interface number: 147 but max is 0
[  665.819110][    T9] usb 6-1: config 4 has an invalid descriptor of length 52, skipping remainder of the config
[  665.841001][    T9] usb 6-1: config 4 has no interface number 0
[  665.855614][    T9] usb 6-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  665.882797][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  665.903501][    T9] usb 6-1: Product: syz
[  665.907799][    T9] usb 6-1: Manufacturer: syz
[  665.918280][    T9] usb 6-1: SerialNumber: syz
[  666.201958][ T5839] Bluetooth: hci5: command 0x0406 tx timeout
[  667.407344][    T9] usb 6-1: Found UVC 0.00 device syz (04f2:b746)
[  667.434428][    T9] usb 6-1: No valid video chain found.
[  667.498613][    T9] usb 6-1: USB disconnect, device number 14
[  671.137309][T11849] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1816'.
[  671.193163][T11849] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1816'.
[  671.326984][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  671.326999][   T29] audit: type=1326 audit(1738800849.567:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  671.359124][T11849] batadv1: entered promiscuous mode
[  671.461508][   T29] audit: type=1326 audit(1738800849.567:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  671.557851][   T29] audit: type=1326 audit(1738800849.567:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  671.639318][   T29] audit: type=1326 audit(1738800849.567:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  671.670546][T11863] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1821'.
[  671.684257][T11863] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1821'.
[  671.694085][   T29] audit: type=1326 audit(1738800849.607:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efd77f8b750 code=0x7ffc0000
[  671.716554][T11863] netlink: 38 bytes leftover after parsing attributes in process `syz.5.1821'.
[  671.729860][   T29] audit: type=1326 audit(1738800849.607:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7efd77f8e617 code=0x7ffc0000
[  671.757437][   T29] audit: type=1326 audit(1738800849.607:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  671.888724][   T29] audit: type=1326 audit(1738800849.607:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7efd77f8e617 code=0x7ffc0000
[  671.983052][   T29] audit: type=1326 audit(1738800849.607:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7efd77f8ba4a code=0x7ffc0000
[  672.073077][   T29] audit: type=1326 audit(1738800849.607:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11850 comm="syz.0.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  672.426265][    T8] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  672.932570][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  672.947512][    T8] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  672.992423][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.026140][    T8] usb 4-1: config 0 descriptor??
[  673.027081][T11887] bond0: (slave macvlan2): Error -16 calling set_mac_address
[  673.054852][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[  673.499251][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[  673.710180][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[  673.718179][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[  673.727725][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[  673.766194][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[  673.801510][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[  673.831620][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[  673.840955][    T8] pwc: recv_control_msg error -32 req 02 val 2100
[  673.850486][    T8] pwc: recv_control_msg error -32 req 04 val 1500
[  673.860103][    T8] pwc: recv_control_msg error -32 req 02 val 2500
[  673.870535][    T8] pwc: recv_control_msg error -32 req 02 val 2400
[  674.023781][T11899] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1834'.
[  674.047839][T11899] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1834'.
[  674.079996][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[  674.089692][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[  674.100141][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[  674.108516][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[  674.117607][    T8] pwc: Registered as video103.
[  674.123275][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input29
[  674.137634][    T8] usb 4-1: USB disconnect, device number 26
[  674.153553][ T1738] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  674.351277][ T1738] usb 5-1: Using ep0 maxpacket: 16
[  674.363983][ T1738] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  674.391607][ T1738] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  674.420583][ T1738] usb 5-1: Product: syz
[  674.430065][ T1738] usb 5-1: Manufacturer: syz
[  674.450299][ T1738] usb 5-1: SerialNumber: syz
[  674.489596][ T1738] r8152-cfgselector 5-1: Unknown version 0x0000
[  674.501062][ T1738] r8152-cfgselector 5-1: config 0 descriptor??
[  674.835776][    T8] kernel write not supported for file /cpu/0/msr (pid: 8 comm: kworker/0:0)
[  675.174332][ T1738] r8152-cfgselector 5-1: Unknown version 0x0000
[  675.210165][ T1738] r8152-cfgselector 5-1: bad CDC descriptors
[  675.321581][ T1738] r8152-cfgselector 5-1: USB disconnect, device number 32
[  675.846861][T11934] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1844'.
[  677.778812][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  677.778832][   T29] audit: type=1326 audit(1738800855.957:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  677.861237][   T29] audit: type=1326 audit(1738800855.957:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  677.950983][   T29] audit: type=1326 audit(1738800856.057:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  677.983482][   T29] audit: type=1326 audit(1738800856.057:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  678.017890][   T29] audit: type=1326 audit(1738800856.057:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f503858b750 code=0x7ffc0000
[  678.163730][   T29] audit: type=1326 audit(1738800856.057:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  678.208662][   T29] audit: type=1326 audit(1738800856.057:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  678.306821][T11971] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1858'.
[  678.371154][   T29] audit: type=1326 audit(1738800856.057:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  678.476506][   T29] audit: type=1326 audit(1738800856.057:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f503858ba4a code=0x7ffc0000
[  678.500033][   T29] audit: type=1326 audit(1738800856.057:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11954 comm="syz.4.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  678.622492][  T974] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  678.840395][  T974] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  679.074662][  T974] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  679.124353][  T974] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  679.346912][  T974] usb 6-1: config 0 descriptor??
[  679.369544][  T974] pwc: Askey VC010 type 2 USB webcam detected.
[  679.999861][  T974] pwc: recv_control_msg error -32 req 02 val 2b00
[  680.267964][  T974] pwc: recv_control_msg error -32 req 02 val 2700
[  680.655555][  T974] pwc: recv_control_msg error -32 req 02 val 2c00
[  680.771868][  T974] pwc: recv_control_msg error -32 req 04 val 1000
[  680.811620][  T974] pwc: recv_control_msg error -32 req 04 val 1300
[  680.818590][  T974] pwc: recv_control_msg error -32 req 04 val 1400
[  680.838114][  T974] pwc: recv_control_msg error -32 req 02 val 2000
[  680.858360][  T974] pwc: recv_control_msg error -32 req 02 val 2100
[  680.888887][  T974] pwc: recv_control_msg error -32 req 04 val 1500
[  680.916831][  T974] pwc: recv_control_msg error -32 req 02 val 2500
[  680.984268][T12004] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1870'.
[  681.181987][  T974] pwc: recv_control_msg error -71 req 02 val 2600
[  681.196645][  T974] pwc: recv_control_msg error -71 req 02 val 2900
[  681.211584][  T974] pwc: recv_control_msg error -71 req 02 val 2800
[  681.221364][  T974] pwc: recv_control_msg error -71 req 04 val 1100
[  681.245102][  T974] pwc: recv_control_msg error -71 req 04 val 1200
[  681.262272][  T974] pwc: Registered as video103.
[  681.268183][  T974] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input30
[  681.339792][  T974] usb 6-1: USB disconnect, device number 15
[  681.484003][T12015] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.1875'.
[  682.381448][   T25] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  682.591294][   T25] usb 6-1: Using ep0 maxpacket: 32
[  682.602939][   T25] usb 6-1: New USB device found, idVendor=06cd, idProduct=0107, bcdDevice=44.fe
[  682.631300][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.745781][   T25] usb 6-1: config 0 descriptor??
[  682.765882][   T25] keyspan 6-1:0.0: Keyspan 1 port adapter converter detected
[  682.786355][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 84
[  682.825373][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 81
[  683.020634][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 82
[  683.052663][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 1
[  683.127674][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 2
[  683.170879][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 83
[  683.201682][   T25] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 3
[  683.253888][   T25] usb 6-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  683.311595][   T25] usb 6-1: USB disconnect, device number 16
[  683.482867][   T25] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  683.497653][   T25] keyspan 6-1:0.0: device disconnected
[  686.211610][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  686.227881][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  686.401398][   T25] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  686.410584][    T8] kernel write not supported for file /cpu/0/msr (pid: 8 comm: kworker/0:0)
[  686.768649][   T25] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  686.787028][   T25] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  686.820595][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  686.850316][   T25] usb 4-1: config 0 descriptor??
[  686.859334][   T25] pwc: Askey VC010 type 2 USB webcam detected.
[  687.371619][   T25] pwc: recv_control_msg error -32 req 02 val 2b00
[  687.381565][   T25] pwc: recv_control_msg error -32 req 02 val 2700
[  687.399367][   T25] pwc: recv_control_msg error -32 req 02 val 2c00
[  687.420816][   T25] pwc: recv_control_msg error -32 req 04 val 1000
[  687.435861][   T25] pwc: recv_control_msg error -32 req 04 val 1300
[  687.453478][   T25] pwc: recv_control_msg error -32 req 04 val 1400
[  687.486227][   T25] pwc: recv_control_msg error -32 req 02 val 2000
[  687.524768][   T25] pwc: recv_control_msg error -32 req 02 val 2100
[  687.565817][   T25] pwc: recv_control_msg error -32 req 04 val 1500
[  687.718752][   T25] pwc: recv_control_msg error -32 req 02 val 2500
[  687.990711][   T25] pwc: recv_control_msg error -71 req 02 val 2600
[  687.999120][   T25] pwc: recv_control_msg error -71 req 02 val 2900
[  688.008337][   T25] pwc: recv_control_msg error -71 req 02 val 2800
[  688.020322][   T25] pwc: recv_control_msg error -71 req 04 val 1100
[  688.028223][   T25] pwc: recv_control_msg error -71 req 04 val 1200
[  688.120732][  T974] kernel write not supported for file /cpu/0/msr (pid: 974 comm: kworker/0:2)
[  688.391753][   T25] pwc: Registered as video103.
[  688.585258][   T25] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input31
[  688.730009][   T25] usb 4-1: USB disconnect, device number 27
[  690.601170][  T974] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  691.055026][  T974] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  691.086287][  T974] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  691.100358][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  691.272848][  T974] usb 4-1: config 0 descriptor??
[  691.286702][  T974] pwc: Askey VC010 type 2 USB webcam detected.
[  691.636540][T12112] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1903'.
[  692.345545][  T974] pwc: recv_control_msg error -32 req 02 val 2b00
[  692.376083][  T974] pwc: recv_control_msg error -32 req 02 val 2700
[  692.401448][  T974] pwc: recv_control_msg error -32 req 02 val 2c00
[  692.453288][  T974] pwc: recv_control_msg error -32 req 04 val 1000
[  692.491779][  T974] pwc: recv_control_msg error -32 req 04 val 1300
[  692.505848][  T974] pwc: recv_control_msg error -32 req 04 val 1400
[  692.518541][  T974] pwc: recv_control_msg error -32 req 02 val 2000
[  692.532248][  T974] pwc: recv_control_msg error -32 req 02 val 2100
[  692.547202][  T974] pwc: recv_control_msg error -32 req 04 val 1500
[  692.555720][  T974] pwc: recv_control_msg error -32 req 02 val 2500
[  692.614355][  T974] pwc: recv_control_msg error -32 req 02 val 2400
[  692.975942][  T974] pwc: recv_control_msg error -71 req 02 val 2900
[  692.987524][  T974] pwc: recv_control_msg error -71 req 02 val 2800
[  692.996767][  T974] pwc: recv_control_msg error -71 req 04 val 1100
[  693.003963][  T974] pwc: recv_control_msg error -71 req 04 val 1200
[  693.115975][  T974] pwc: Registered as video103.
[  693.299088][  T974] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input32
[  693.372460][T12128] netlink: 188 bytes leftover after parsing attributes in process `syz.5.1908'.
[  693.382395][T12128] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1908'.
[  693.391751][T12128] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1908'.
[  693.449878][  T974] usb 4-1: USB disconnect, device number 28
[  693.686734][T12130] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1908'.
[  695.965477][T12143] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  695.974742][T12143] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  695.983781][T12143] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  695.992622][T12143] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  696.025000][T12143] vxlan0: entered promiscuous mode
[  696.030179][T12143] vxlan0: entered allmulticast mode
[  696.226532][T12143] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.235657][T12143] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.244637][T12143] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.253788][T12143] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  699.133310][T12163] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  699.141670][T12165] x_tables: unsorted underflow at hook 4
[  699.251370][T12167] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1920'.
[  699.260567][T12167] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1920'.
[  699.269686][T12167] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1920'.
[  699.562906][T12170] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1920'.
[  703.674882][T12197] x_tables: unsorted underflow at hook 4
[  705.032513][T12208] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1931'.
[  705.445085][T12210] kvm_pr_unimpl_wrmsr: 4 callbacks suppressed
[  705.446287][T12210] kvm: kvm [12209]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4900000080
[  705.480935][T12210] kvm: kvm [12209]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0x7a00004000
[  709.402481][   T46] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  709.592807][   T46] usb 4-1: Using ep0 maxpacket: 32
[  709.681970][   T46] usb 4-1: New USB device found, idVendor=06cd, idProduct=0107, bcdDevice=44.fe
[  709.725759][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.877078][   T46] usb 4-1: config 0 descriptor??
[  709.974992][   T46] keyspan 4-1:0.0: Keyspan 1 port adapter converter detected
[  709.986321][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 84
[  710.026490][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[  710.064044][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 82
[  710.118738][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[  710.157308][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[  710.207825][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83
[  710.370524][   T46] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3
[  710.628532][   T46] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  710.668854][T12271] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1951'.
[  710.680635][   T46] usb 4-1: USB disconnect, device number 29
[  710.768260][   T46] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  710.794015][   T46] keyspan 4-1:0.0: device disconnected
[  712.073718][T12288] overlayfs: failed to resolve './file0': -2
[  716.302314][T12327] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1966'.
[  716.302382][T12327] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1966'.
[  716.655000][T12335] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1966'.
[  717.262782][T12340] overlayfs: failed to resolve './file0': -2
[  719.025108][T12350] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1974'.
[  719.118435][T12355] netlink: 'syz.0.1977': attribute type 72 has an invalid length.
[  720.291711][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  720.291729][   T29] audit: type=1326 audit(1738800898.507:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.3.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  720.364238][   T29] audit: type=1326 audit(1738800898.507:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.3.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  720.410249][   T29] audit: type=1326 audit(1738800898.507:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.3.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  720.497845][   T29] audit: type=1326 audit(1738800898.507:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.3.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  720.597894][T12374] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1983'.
[  720.607175][T12374] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1983'.
[  720.947119][T12378] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1983'.
[  721.854409][T12382] overlayfs: failed to resolve './file0': -2
[  722.259302][T12387] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1986'.
[  722.907586][T12391] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.1989'.
[  723.698817][T12398] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1991'.
[  724.544690][T12412] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1996'.
[  724.553876][T12412] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1996'.
[  724.902638][T12417] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1996'.
[  726.135533][T12424] capability: warning: `syz.0.1998' uses 32-bit capabilities (legacy support in use)
[  727.217399][   T29] audit: type=1326 audit(1738800905.457:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.270333][   T29] audit: type=1326 audit(1738800905.457:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.320025][   T29] audit: type=1326 audit(1738800905.457:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.511551][   T29] audit: type=1326 audit(1738800905.457:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.511631][   T29] audit: type=1326 audit(1738800905.457:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.511700][   T29] audit: type=1326 audit(1738800905.457:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f19a438b750 code=0x7ffc0000
[  727.511773][   T29] audit: type=1326 audit(1738800905.457:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f19a438e617 code=0x7ffc0000
[  727.511843][   T29] audit: type=1326 audit(1738800905.457:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  727.511909][   T29] audit: type=1326 audit(1738800905.457:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f19a438e617 code=0x7ffc0000
[  727.511976][   T29] audit: type=1326 audit(1738800905.457:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12427 comm="syz.5.2001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f19a438ba4a code=0x7ffc0000
[  727.682527][    C1] vkms_vblank_simulate: vblank timer overrun
[  727.750386][    C1] vkms_vblank_simulate: vblank timer overrun
[  730.995600][T12457] netlink: 188 bytes leftover after parsing attributes in process `syz.0.2009'.
[  731.004897][T12457] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2009'.
[  731.290360][T12460] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2009'.
[  732.082438][T12463] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2010'.
[  732.461195][    T8] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  732.625652][    T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  732.666488][    T8] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  732.723561][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.853152][    T8] usb 2-1: config 0 descriptor??
[  732.864231][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[  734.047544][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  734.047561][   T29] audit: type=1326 audit(1738800912.287:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.100153][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[  734.129076][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[  734.165020][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[  734.186824][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[  734.205550][   T29] audit: type=1326 audit(1738800912.327:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.241003][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[  734.284562][   T29] audit: type=1326 audit(1738800912.327:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.287558][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[  734.315552][   T29] audit: type=1326 audit(1738800912.327:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.339278][   T29] audit: type=1326 audit(1738800912.327:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.387440][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[  734.555843][   T29] audit: type=1326 audit(1738800912.327:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  734.562188][    T8] pwc: recv_control_msg error -32 req 02 val 2100
[  734.669277][   T29] audit: type=1326 audit(1738800912.337:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f503858b750 code=0x7ffc0000
[  734.956761][   T29] audit: type=1326 audit(1738800912.337:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  734.991474][    T8] pwc: recv_control_msg error -32 req 04 val 1500
[  734.998889][    T8] pwc: recv_control_msg error -32 req 02 val 2500
[  735.024461][    T8] pwc: recv_control_msg error -32 req 02 val 2400
[  735.054277][   T29] audit: type=1326 audit(1738800912.337:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  735.116880][   T29] audit: type=1326 audit(1738800912.337:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12476 comm="syz.4.2014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  735.369593][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[  735.469281][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[  735.533152][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[  735.717590][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[  735.736932][    T8] pwc: Registered as video103.
[  735.916747][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input33
[  736.731362][    T8] usb 2-1: USB disconnect, device number 29
[  737.315680][T12504] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2021'.
[  737.324999][T12504] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2021'.
[  737.584218][T12509] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2021'.
[  738.809058][T12519] overlayfs: failed to resolve './file1': -2
[  739.143555][T12522] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2024'.
[  741.224926][T12536] kvm: pic: non byte write
[  741.261541][T12536] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (4194322 ns). Using initial count to start timer.
[  741.434253][T12544] netlink: 188 bytes leftover after parsing attributes in process `syz.5.2034'.
[  741.443412][T12544] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2034'.
[  741.638982][T12545] netlink: 'syz.0.2033': attribute type 1 has an invalid length.
[  741.646818][T12545] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.2033'.
[  742.432524][T12547] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2034'.
[  746.070869][T12582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2043'.
[  746.108031][T12582] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2043'.
[  746.137091][T12582] netlink: 'syz.1.2043': attribute type 1 has an invalid length.
[  746.181729][T12582] netlink: 10 bytes leftover after parsing attributes in process `syz.1.2043'.
[  747.062418][T12592] netlink: 188 bytes leftover after parsing attributes in process `syz.5.2046'.
[  747.071605][T12592] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2046'.
[  747.475774][T12598] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2046'.
[  747.635402][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  747.641932][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  749.455774][    T8] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  749.683113][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  749.720157][    T8] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  749.757461][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  749.806283][    T8] usb 5-1: config 0 descriptor??
[  749.835647][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[  750.249454][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[  750.256706][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[  750.264409][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[  750.271682][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[  751.021939][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[  751.029128][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[  751.037062][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[  751.110019][    T8] pwc: recv_control_msg error -32 req 02 val 2100
[  751.131388][    T8] pwc: recv_control_msg error -32 req 04 val 1500
[  751.139303][    T8] pwc: recv_control_msg error -32 req 02 val 2500
[  751.402076][    T8] pwc: recv_control_msg error -71 req 02 val 2600
[  751.536759][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[  751.552714][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[  751.571391][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[  751.623327][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[  751.655006][    T8] pwc: Registered as video103.
[  751.675814][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input34
[  751.735506][    T8] usb 5-1: USB disconnect, device number 33
[  753.789072][T12663] tc_dump_action: action bad kind
[  753.793344][T12662] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2071'.
[  753.805100][T12662] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2071'.
[  754.152650][T12671] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2071'.
[  758.402673][T12709] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  759.206586][T12713] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (4194322 ns). Using initial count to start timer.
[  759.636980][T12720] overlayfs: overlapping lowerdir path
[  761.783136][T12737] netlink: 172 bytes leftover after parsing attributes in process `syz.5.2094'.
[  764.344383][T12768] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  767.889194][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x6700004000
[  767.919161][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x6800004081
[  767.943677][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0xf70000008c
[  767.964570][T12803] netlink: 172 bytes leftover after parsing attributes in process `syz.3.2115'.
[  767.982275][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x1f70000008c
[  768.121722][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x2f70000008c
[  768.169637][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x3f70000008c
[  769.044856][T12792] kvm: kvm [12790]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4f70000008c
[  776.961977][T12901] overlayfs: overlapping lowerdir path
[  781.717281][T12947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2161'.
[  785.701263][    T9] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  786.641112][    T9] usb 5-1: Using ep0 maxpacket: 32
[  786.680271][    T9] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  786.708509][    T9] usb 5-1: New USB device found, idVendor=06cd, idProduct=0107, bcdDevice=44.fe
[  786.869344][T12992] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2175'.
[  787.179226][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.201548][    T9] usb 5-1: config 0 descriptor??
[  787.442248][    T9] usb 5-1: USB disconnect, device number 34
[  788.845151][T13019] overlayfs: missing 'lowerdir'
[  789.756259][T13029] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2190'.
[  790.005005][T13038] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2193'.
[  791.806010][  T974] kernel write not supported for file /cpu/0/msr (pid: 974 comm: kworker/0:2)
[  799.960686][T13120] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  801.053600][T13127] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2220'.
[  808.147528][   T25] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  808.312959][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  808.346665][   T25] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  808.402011][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  808.426897][   T25] usb 5-1: config 0 descriptor??
[  808.493455][T13207] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2245'.
[  808.505687][   T25] pwc: Askey VC010 type 2 USB webcam detected.
[  808.692435][T13212] netlink: 'syz.5.2241': attribute type 1 has an invalid length.
[  808.700256][T13212] netlink: 105116 bytes leftover after parsing attributes in process `syz.5.2241'.
[  809.011243][   T25] pwc: recv_control_msg error -32 req 02 val 2b00
[  809.039158][   T25] pwc: recv_control_msg error -32 req 02 val 2700
[  809.053560][   T25] pwc: recv_control_msg error -32 req 02 val 2c00
[  809.087578][   T25] pwc: recv_control_msg error -32 req 04 val 1000
[  809.099271][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  809.126510][   T25] pwc: recv_control_msg error -32 req 04 val 1300
[  809.127452][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  809.190968][   T25] pwc: recv_control_msg error -32 req 04 val 1400
[  809.285745][   T25] pwc: recv_control_msg error -32 req 02 val 2000
[  809.354405][   T25] pwc: recv_control_msg error -32 req 02 val 2100
[  809.439801][   T25] pwc: recv_control_msg error -32 req 04 val 1500
[  809.629518][   T25] pwc: recv_control_msg error -32 req 02 val 2500
[  810.704475][T13228] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  810.713417][T13228] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  810.722203][T13228] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  810.731370][T13228] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  810.764518][T13228] vxlan0: entered promiscuous mode
[  810.777637][T13228] vxlan0: entered allmulticast mode
[  810.814955][   T25] pwc: recv_control_msg error -71 req 02 val 2600
[  810.840677][   T25] pwc: recv_control_msg error -71 req 02 val 2900
[  810.862427][T13228] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  810.871747][T13228] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  810.880631][T13228] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  810.890664][T13228] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  810.913765][   T25] pwc: recv_control_msg error -71 req 02 val 2800
[  810.941537][   T25] pwc: recv_control_msg error -71 req 04 val 1100
[  810.971147][   T25] pwc: recv_control_msg error -71 req 04 val 1200
[  810.992598][   T25] pwc: Registered as video103.
[  811.008815][   T25] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input35
[  811.030817][   T25] usb 5-1: USB disconnect, device number 35
[  814.658859][T13267] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  818.117606][T13314] 9pnet_fd: Insufficient options for proto=fd
[  819.179082][T13327] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2282'.
[  823.485308][T13357] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2293'.
[  823.507133][T13357] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2293'.
[  823.571284][T13357] nbd: socks must be embedded in a SOCK_ITEM attr
[  824.332151][T13367] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  825.891359][   T29] kauditd_printk_skb: 13 callbacks suppressed
[  825.891375][   T29] audit: type=1326 audit(1738801004.117:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13397 comm="syz.5.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  826.061469][   T29] audit: type=1326 audit(1738801004.117:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13397 comm="syz.5.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  826.155784][   T29] audit: type=1326 audit(1738801004.117:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13397 comm="syz.5.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  826.213540][   T29] audit: type=1326 audit(1738801004.117:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13397 comm="syz.5.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  826.521413][ T5921] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  827.161271][ T5921] usb 6-1: Using ep0 maxpacket: 16
[  827.182148][ T5921] usb 6-1: unable to get BOS descriptor or descriptor too short
[  827.197045][ T5921] usb 6-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  827.341500][ T5921] usb 6-1: config 1 interface 0 has no altsetting 0
[  827.364384][   T29] audit: type=1326 audit(1738801005.597:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  827.397578][ T5921] usb 6-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  827.402984][   T29] audit: type=1326 audit(1738801005.607:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  827.423326][ T5921] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  828.533922][   T29] audit: type=1326 audit(1738801005.607:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  828.533964][   T29] audit: type=1326 audit(1738801005.607:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  828.533996][   T29] audit: type=1326 audit(1738801005.607:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  828.534026][   T29] audit: type=1326 audit(1738801005.607:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13418 comm="syz.4.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  828.575436][ T5921] usb 6-1: Product: syz
[  828.575460][ T5921] usb 6-1: Manufacturer: syz
[  828.575476][ T5921] usb 6-1: SerialNumber: syz
[  828.722130][    C0] vkms_vblank_simulate: vblank timer overrun
[  828.785215][T13435] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  828.794292][T13435] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  828.803211][T13435] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  828.812130][T13435] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  829.205376][T13435] vxlan0: entered promiscuous mode
[  829.217989][T13435] vxlan0: entered allmulticast mode
[  829.985420][T13435] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  829.994605][T13435] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  830.003689][T13435] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  830.012687][T13435] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  831.161405][   T29] kauditd_printk_skb: 27 callbacks suppressed
[  831.161422][   T29] audit: type=1326 audit(1738801009.377:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.340871][   T29] audit: type=1326 audit(1738801009.377:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.372585][   T29] audit: type=1326 audit(1738801009.377:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.404526][   T29] audit: type=1326 audit(1738801009.377:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.759423][   T29] audit: type=1326 audit(1738801009.377:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.800925][   T29] audit: type=1326 audit(1738801009.377:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.850110][   T29] audit: type=1326 audit(1738801009.377:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  831.871739][    C1] vkms_vblank_simulate: vblank timer overrun
[  832.446092][   T29] audit: type=1326 audit(1738801009.377:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff9f2b8b750 code=0x7ffc0000
[  832.780386][ T5921] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/input/input36
[  832.789750][   T29] audit: type=1326 audit(1738801009.377:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7ff9f2b8e617 code=0x7ffc0000
[  833.526150][ T5182] bcm5974 6-1:1.0: could not read from device
[  833.544361][   T29] audit: type=1326 audit(1738801009.377:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13462 comm="syz.3.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  833.609272][ T5921] usb 6-1: USB disconnect, device number 17
[  833.651977][ T5182] bcm5974 6-1:1.0: could not read from device
[  836.293247][T13506] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2343'.
[  836.303455][T13506] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2343'.
[  836.930703][T13515] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2343'.
[  838.133375][    T8] kernel write not supported for file /cpu/0/msr (pid: 8 comm: kworker/0:0)
[  838.136084][T13519] x_tables: unsorted underflow at hook 4
[  838.361707][   T29] kauditd_printk_skb: 39 callbacks suppressed
[  838.361724][   T29] audit: type=1326 audit(1738801016.607:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13523 comm="syz.0.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  839.169354][   T29] audit: type=1326 audit(1738801016.637:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13523 comm="syz.0.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  839.226772][   T29] audit: type=1326 audit(1738801016.847:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13523 comm="syz.0.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  839.248328][    C0] vkms_vblank_simulate: vblank timer overrun
[  839.309071][   T29] audit: type=1326 audit(1738801016.847:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13523 comm="syz.0.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  839.336225][   T29] audit: type=1326 audit(1738801016.847:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13523 comm="syz.0.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  840.613375][T13543] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  843.573707][   T29] audit: type=1326 audit(1738801021.817:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13563 comm="syz.0.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  843.595289][    C1] vkms_vblank_simulate: vblank timer overrun
[  844.168187][   T29] audit: type=1326 audit(1738801022.387:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13563 comm="syz.0.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  844.981105][   T29] audit: type=1326 audit(1738801022.387:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13563 comm="syz.0.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  845.085845][   T29] audit: type=1326 audit(1738801022.387:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13563 comm="syz.0.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  845.216999][   T29] audit: type=1326 audit(1738801022.387:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13563 comm="syz.0.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  846.459591][T13591] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  847.431940][   T29] audit: type=1326 audit(1738801025.677:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13604 comm="syz.4.2373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  847.486457][   T29] audit: type=1326 audit(1738801025.707:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13604 comm="syz.4.2373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  847.534087][   T29] audit: type=1326 audit(1738801025.727:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13604 comm="syz.4.2373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  847.596893][   T29] audit: type=1326 audit(1738801025.727:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13604 comm="syz.4.2373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  850.335972][T13608] kvm: kvm [13607]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5500000800
[  850.891152][ T1738] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  851.482286][ T1738] usb 2-1: Using ep0 maxpacket: 32
[  851.525187][ T1738] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  851.543196][ T1738] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  851.576845][ T1738] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  851.607223][ T1738] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  851.879383][ T1738] usb 2-1: Product: syz
[  852.840878][ T1738] usb 2-1: Manufacturer: syz
[  852.846463][ T1738] usb 2-1: SerialNumber: syz
[  852.926231][ T1738] usb 2-1: config 0 descriptor??
[  854.301703][   T29] audit: type=1326 audit(1738801032.547:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13654 comm="syz.5.2385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  854.589251][   T29] audit: type=1326 audit(1738801032.577:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13654 comm="syz.5.2385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  854.606809][ T1738] usb 2-1: can't set config #0, error -71
[  854.924336][ T1738] usb 2-1: USB disconnect, device number 30
[  855.038554][   T29] audit: type=1326 audit(1738801032.577:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13654 comm="syz.5.2385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  855.079020][T13653] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  855.104636][   T29] audit: type=1326 audit(1738801032.577:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13654 comm="syz.5.2385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  857.179325][T13683] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2394'.
[  857.188527][T13683] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2394'.
[  858.595239][T13694] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2394'.
[  858.751191][   T29] audit: type=1326 audit(1738801036.917:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13700 comm="syz.1.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  858.957622][   T29] audit: type=1326 audit(1738801036.917:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13700 comm="syz.1.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  859.125455][   T29] audit: type=1326 audit(1738801036.917:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13700 comm="syz.1.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  859.286710][   T29] audit: type=1326 audit(1738801036.917:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13700 comm="syz.1.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  859.359185][   T29] audit: type=1326 audit(1738801036.917:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13700 comm="syz.1.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  860.909114][   T29] audit: type=1326 audit(1738801039.147:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13737 comm="syz.5.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  861.143936][   T29] audit: type=1326 audit(1738801039.147:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13737 comm="syz.5.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  861.498697][   T29] audit: type=1326 audit(1738801039.177:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13737 comm="syz.5.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  861.592849][   T29] audit: type=1326 audit(1738801039.177:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13737 comm="syz.5.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  862.201090][   T29] audit: type=1326 audit(1738801039.177:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13737 comm="syz.5.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  862.542386][ T1738] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  862.780740][ T1738] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  862.817393][ T1738] usb 5-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config
[  862.967200][ T1738] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  862.976917][ T1738] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  863.001539][ T1738] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  863.020877][ T1738] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  863.029483][ T1738] usb 5-1: Product: syz
[  863.035259][ T1738] usb 5-1: Manufacturer: syz
[  863.048990][ T1738] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  863.782918][    T9] usb 5-1: USB disconnect, device number 36
[  863.865189][   T29] audit: type=1326 audit(1738801042.107:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13775 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  863.942110][   T29] audit: type=1326 audit(1738801042.127:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13775 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  863.954718][T13777] netlink: 'syz.5.2422': attribute type 1 has an invalid length.
[  863.977924][   T29] audit: type=1326 audit(1738801042.127:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13775 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  864.046630][T13777] netlink: 105116 bytes leftover after parsing attributes in process `syz.5.2422'.
[  864.047774][   T29] audit: type=1326 audit(1738801042.127:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13775 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  864.077522][    C0] vkms_vblank_simulate: vblank timer overrun
[  864.191825][T13790] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2430'.
[  865.172479][   T29] audit: type=1326 audit(1738801043.397:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13811 comm="syz.4.2438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  865.305869][   T29] audit: type=1326 audit(1738801043.407:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13811 comm="syz.4.2438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  865.440495][   T29] audit: type=1326 audit(1738801043.417:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13811 comm="syz.4.2438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  865.462308][   T29] audit: type=1326 audit(1738801043.417:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13811 comm="syz.4.2438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  865.697131][T13824] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2442'.
[  865.717344][T13824] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2442'.
[  865.904897][   T29] audit: type=1326 audit(1738801044.147:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  865.969952][   T29] audit: type=1326 audit(1738801044.147:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  866.000277][   T29] audit: type=1326 audit(1738801044.147:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  866.037502][   T29] audit: type=1326 audit(1738801044.147:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  866.061210][   T29] audit: type=1326 audit(1738801044.147:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff078cde9 code=0x7ffc0000
[  866.083678][   T29] audit: type=1326 audit(1738801044.147:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13825 comm="syz.1.2443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faff078b750 code=0x7ffc0000
[  866.668755][T13839] kvm: kvm [13838]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x2d00000800
[  866.716763][T13839] kvm: kvm [13838]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xb500000800
[  866.745815][T13839] kvm: kvm [13838]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x15700000800
[  866.799729][T13839] kvm: kvm [13838]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x17700000800
[  867.037561][T13854] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  867.220641][T13858] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2454'.
[  867.250516][T13858] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2454'.
[  870.512398][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  870.518694][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  870.569449][T13893] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2465'.
[  871.957758][T13889] kvm: kvm [13888]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x2d00000800
[  872.077424][T13907] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2467'.
[  872.087249][T13907] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2467'.
[  879.801437][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  879.801486][   T29] audit: type=1326 audit(1738801058.037:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  879.861196][   T29] audit: type=1326 audit(1738801058.047:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  879.883580][   T29] audit: type=1326 audit(1738801058.047:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  880.091180][   T29] audit: type=1326 audit(1738801058.047:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  880.146377][   T29] audit: type=1326 audit(1738801058.047:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  880.279082][   T29] audit: type=1326 audit(1738801058.047:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  880.315269][   T29] audit: type=1326 audit(1738801058.057:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  880.602200][   T29] audit: type=1326 audit(1738801058.057:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f19a438b750 code=0x7ffc0000
[  880.626147][   T29] audit: type=1326 audit(1738801058.057:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f19a438e617 code=0x7ffc0000
[  880.647696][    C1] vkms_vblank_simulate: vblank timer overrun
[  880.658355][   T29] audit: type=1326 audit(1738801058.057:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14008 comm="syz.5.2496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f19a438cde9 code=0x7ffc0000
[  881.651310][    T9] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  882.221274][    T9] usb 2-1: Using ep0 maxpacket: 16
[  882.235977][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  882.641610][    T9] usb 2-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  883.247971][    T9] usb 2-1: config 1 interface 0 has no altsetting 0
[  884.624567][    T9] usb 2-1: string descriptor 0 read error: -71
[  884.630981][    T9] usb 2-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  885.033461][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  885.198239][    T9] usb 2-1: can't set config #1, error -71
[  885.227434][    T9] usb 2-1: USB disconnect, device number 31
[  888.649512][T14084] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  890.953966][T14097] tty tty1: ldisc open failed (-12), clearing slot 0
[  900.793200][T14151] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  901.161307][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  901.161322][   T29] audit: type=1326 audit(1738801079.397:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.303112][   T29] audit: type=1326 audit(1738801079.397:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.372510][   T29] audit: type=1326 audit(1738801079.397:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.395466][   T29] audit: type=1326 audit(1738801079.397:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.432537][   T29] audit: type=1326 audit(1738801079.397:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.721264][   T29] audit: type=1326 audit(1738801079.397:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  901.740112][T14165] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  901.973751][   T29] audit: type=1326 audit(1738801079.397:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  902.211279][   T29] audit: type=1326 audit(1738801079.397:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  902.356842][   T29] audit: type=1326 audit(1738801079.397:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efd77f8b750 code=0x7ffc0000
[  902.390733][   T29] audit: type=1326 audit(1738801079.397:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14146 comm="syz.0.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7efd77f8e617 code=0x7ffc0000
[  903.827601][T14187] cgroup: Unknown subsys name '/dev/ptmx'
[  914.151118][    T8] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  914.411949][    T8] usb 2-1: Using ep0 maxpacket: 16
[  914.582090][    T8] usb 2-1: unable to get BOS descriptor or descriptor too short
[  914.697536][    T8] usb 2-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  914.981089][    T8] usb 2-1: config 1 interface 0 has no altsetting 0
[  915.005534][    T8] usb 2-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  915.491159][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  915.522077][    T8] usb 2-1: Product: syz
[  915.526366][    T8] usb 2-1: Manufacturer: syz
[  915.797651][    T8] usb 2-1: SerialNumber: syz
[  917.140691][    T8] usb 2-1: can't set config #1, error -71
[  917.183767][    T8] usb 2-1: USB disconnect, device number 32
[  917.597930][T14273] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  931.955616][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  931.962414][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  934.014591][   T29] kauditd_printk_skb: 10 callbacks suppressed
[  934.014608][   T29] audit: type=1326 audit(1738801112.257:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.105248][   T29] audit: type=1326 audit(1738801112.287:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.161897][   T29] audit: type=1326 audit(1738801112.287:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.183977][    C0] vkms_vblank_simulate: vblank timer overrun
[  934.273628][   T29] audit: type=1326 audit(1738801112.287:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.381377][   T29] audit: type=1326 audit(1738801112.287:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.426517][   T29] audit: type=1326 audit(1738801112.287:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.448176][    C0] vkms_vblank_simulate: vblank timer overrun
[  934.470097][   T29] audit: type=1326 audit(1738801112.287:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.512936][   T29] audit: type=1326 audit(1738801112.287:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f503858b750 code=0x7ffc0000
[  934.534627][    C0] vkms_vblank_simulate: vblank timer overrun
[  934.871206][   T29] audit: type=1326 audit(1738801112.297:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  934.945294][   T29] audit: type=1326 audit(1738801112.297:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14397 comm="syz.4.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  934.966876][    C0] vkms_vblank_simulate: vblank timer overrun
[  935.432982][T14413] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2611'.
[  939.010194][T14455] overlayfs: failed to resolve './file1': -2
[  940.340505][   T29] kauditd_printk_skb: 32 callbacks suppressed
[  940.340522][   T29] audit: type=1326 audit(1738801118.577:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  940.433240][   T29] audit: type=1326 audit(1738801118.577:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  940.967940][   T29] audit: type=1326 audit(1738801118.577:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  940.991301][   T29] audit: type=1326 audit(1738801118.577:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  941.037964][   T29] audit: type=1326 audit(1738801118.577:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  941.065828][   T29] audit: type=1326 audit(1738801118.617:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efd77f8b750 code=0x7ffc0000
[  941.090901][   T29] audit: type=1326 audit(1738801118.627:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7efd77f8e617 code=0x7ffc0000
[  941.139919][   T29] audit: type=1326 audit(1738801118.627:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efd77f8cde9 code=0x7ffc0000
[  941.181715][   T29] audit: type=1326 audit(1738801118.627:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7efd77f8e617 code=0x7ffc0000
[  941.301184][   T29] audit: type=1326 audit(1738801118.627:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14471 comm="syz.0.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7efd77f8ba4a code=0x7ffc0000
[  941.808989][ T5873] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  942.009007][ T5873] usb 2-1: Using ep0 maxpacket: 16
[  942.034678][ T5873] usb 2-1: unable to get BOS descriptor or descriptor too short
[  942.054870][ T5873] usb 2-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  942.096656][ T5873] usb 2-1: config 1 interface 0 has no altsetting 0
[  942.129417][ T5873] usb 2-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  942.158083][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  942.189714][ T5873] usb 2-1: Product: syz
[  942.208653][ T5873] usb 2-1: Manufacturer: syz
[  942.232846][ T5873] usb 2-1: SerialNumber: syz
[  942.634452][T14509] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2641'.
[  942.996641][T14504] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2640'.
[  943.041558][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input37
[  943.124734][ T5873] usb 2-1: USB disconnect, device number 33
[  943.996579][T14526] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.2646'.
[  946.288304][T14555] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2656'.
[  947.305587][T14564] netlink: 188 bytes leftover after parsing attributes in process `syz.0.2660'.
[  947.315051][T14564] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2660'.
[  947.562121][T14570] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2660'.
[  956.999564][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  956.999584][   T29] audit: type=1326 audit(1738801135.237:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.073652][   T29] audit: type=1326 audit(1738801135.237:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.182014][   T29] audit: type=1326 audit(1738801135.277:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.209442][   T29] audit: type=1326 audit(1738801135.277:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.240790][   T29] audit: type=1326 audit(1738801135.277:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.401131][   T29] audit: type=1326 audit(1738801135.277:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.472833][   T29] audit: type=1326 audit(1738801135.277:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.584233][   T29] audit: type=1326 audit(1738801135.277:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503858cde9 code=0x7ffc0000
[  957.790379][   T29] audit: type=1326 audit(1738801135.277:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f503858b750 code=0x7ffc0000
[  957.907052][   T29] audit: type=1326 audit(1738801135.277:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.4.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f503858e617 code=0x7ffc0000
[  958.392046][    T8] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  958.732479][    T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  958.752854][    T8] usb 2-1: config 0 has no interfaces?
[  958.781116][    T8] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  958.810577][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  959.035375][    T8] usb 2-1: config 0 descriptor??
[  960.517798][T14698] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2698'.
[  960.981617][ T5921] usb 2-1: USB disconnect, device number 34
[  961.560429][T14711] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2703'.
[  964.080373][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  964.080390][   T29] audit: type=1326 audit(1738801142.317:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.158800][   T29] audit: type=1326 audit(1738801142.317:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.182601][   T29] audit: type=1326 audit(1738801142.317:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.210033][   T29] audit: type=1326 audit(1738801142.317:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.211331][ T5873] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  964.233096][   T29] audit: type=1326 audit(1738801142.317:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.415696][T14751] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2713'.
[  964.425669][ T5873] usb 6-1: Using ep0 maxpacket: 16
[  964.439948][   T29] audit: type=1326 audit(1738801142.317:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  964.467436][ T5873] usb 6-1: unable to get BOS descriptor or descriptor too short
[  964.543591][ T5873] usb 6-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  964.572262][ T5873] usb 6-1: config 1 interface 0 has no altsetting 0
[  964.579330][   T29] audit: type=1326 audit(1738801142.347:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff9f2b8b750 code=0x7ffc0000
[  964.617295][   T29] audit: type=1326 audit(1738801142.357:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7ff9f2b8e617 code=0x7ffc0000
[  964.642950][ T5873] usb 6-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  964.656307][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  965.094051][ T5873] usb 6-1: Product: syz
[  965.113569][ T5873] usb 6-1: Manufacturer: syz
[  965.131170][ T5873] usb 6-1: SerialNumber: syz
[  965.138321][   T29] audit: type=1326 audit(1738801142.357:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff9f2b8cde9 code=0x7ffc0000
[  965.171352][   T29] audit: type=1326 audit(1738801142.357:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14741 comm="syz.3.2711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7ff9f2b8e617 code=0x7ffc0000
[  965.378847][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/input/input38
[  965.395085][ T5182] bcm5974 6-1:1.0: could not read from device
[  965.469436][ T5873] usb 6-1: USB disconnect, device number 18
[  966.124278][ T5921] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  966.561306][ T5921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  966.613391][ T5921] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  966.651820][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  966.683739][T14768] kvm: kvm [14764]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4900000080
[  966.721974][ T5921] usb 2-1: config 0 descriptor??
[  966.745889][ T5921] pwc: Askey VC010 type 2 USB webcam detected.
[  966.831430][ T5870] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  967.031449][ T5870] usb 5-1: Using ep0 maxpacket: 16
[  967.045309][ T5870] usb 5-1: unable to get BOS descriptor or descriptor too short
[  967.064148][ T5870] usb 5-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  967.114234][ T5870] usb 5-1: config 1 interface 0 has no altsetting 0
[  967.206737][ T5921] pwc: recv_control_msg error -32 req 02 val 2b00
[  967.274268][ T5921] pwc: recv_control_msg error -32 req 02 val 2700
[  967.312506][ T5870] usb 5-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  967.336218][ T5921] pwc: recv_control_msg error -32 req 02 val 2c00
[  967.371176][ T5870] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  967.383622][ T5921] pwc: recv_control_msg error -32 req 04 val 1000
[  967.441840][ T5873] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  967.447954][ T5921] pwc: recv_control_msg error -32 req 04 val 1300
[  967.461442][ T5870] usb 5-1: Product: syz
[  967.465738][ T5870] usb 5-1: Manufacturer: syz
[  967.493662][ T5921] pwc: recv_control_msg error -32 req 04 val 1400
[  967.511118][ T5870] usb 5-1: SerialNumber: syz
[  967.516467][ T5921] pwc: recv_control_msg error -32 req 02 val 2000
[  967.591420][ T5921] pwc: recv_control_msg error -32 req 02 val 2100
[  967.621890][ T5873] usb 4-1: Using ep0 maxpacket: 16
[  967.653466][ T5921] pwc: recv_control_msg error -32 req 04 val 1500
[  967.657750][ T5873] usb 4-1: unable to get BOS descriptor or descriptor too short
[  967.671184][ T5921] pwc: recv_control_msg error -32 req 02 val 2500
[  967.695515][ T5873] usb 4-1: config 1 interface 0 altsetting 202 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  967.739239][ T5873] usb 4-1: config 1 interface 0 has no altsetting 0
[  967.759032][ T5873] usb 4-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.40
[  967.791592][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  967.809167][ T5873] usb 4-1: Product: syz
[  967.827880][ T5873] usb 4-1: Manufacturer: syz
[  967.845735][ T5873] usb 4-1: SerialNumber: syz
[  967.894040][ T5921] pwc: recv_control_msg error -71 req 02 val 2600
[  967.911094][ T5921] pwc: recv_control_msg error -71 req 02 val 2900
[  968.126407][ T5921] pwc: recv_control_msg error -71 req 02 val 2800
[  968.131986][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input39
[  968.145219][ T5921] pwc: recv_control_msg error -71 req 04 val 1100
[  968.163747][ T5921] pwc: recv_control_msg error -71 req 04 val 1200
[  968.195551][ T5921] pwc: Registered as video103.
[  968.207059][ T5182] bcm5974 4-1:1.0: could not read from device
[  968.217720][ T5921] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input40
[  968.238661][ T5182] bcm5974 4-1:1.0: could not read from device
[  968.249820][ T5182] bcm5974 4-1:1.0: could not read from device
[  968.253304][ T5873] usb 4-1: USB disconnect, device number 30
[  968.266469][ T5921] usb 2-1: USB disconnect, device number 35
[  968.279210][ T5182] bcm5974 4-1:1.0: could not read from device
[  968.474558][ T5870] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input41
[  968.739704][ T5870] usb 5-1: USB disconnect, device number 37
[  968.783707][ T5182] bcm5974 5-1:1.0: could not read from device
[  969.231148][T14813] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2730'.
[  970.864546][   T46] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  971.067142][   T46] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  971.081607][   T46] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  971.099528][   T46] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  971.227827][   T46] usb 6-1: config 0 descriptor??
[  971.244227][   T46] pwc: Askey VC010 type 2 USB webcam detected.
[  971.283961][T14833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  971.305721][T14833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  972.204466][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.258092][T14833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  972.274334][T14833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  972.282447][T14833] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  972.289894][T14833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  972.334118][   T46] pwc: recv_control_msg error -32 req 02 val 2b00
[  972.361809][   T46] pwc: recv_control_msg error -32 req 02 val 2700
[  972.372091][   T46] pwc: recv_control_msg error -32 req 02 val 2c00
[  972.390151][   T46] pwc: recv_control_msg error -32 req 04 val 1000
[  972.402121][   T46] pwc: recv_control_msg error -32 req 04 val 1300
[  972.412339][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.432580][   T46] pwc: recv_control_msg error -32 req 04 val 1400
[  972.441717][   T46] pwc: recv_control_msg error -32 req 02 val 2000
[  972.459055][   T46] pwc: recv_control_msg error -32 req 02 val 2100
[  972.489188][   T46] pwc: recv_control_msg error -32 req 04 val 1500
[  972.501931][   T46] pwc: recv_control_msg error -32 req 02 val 2500
[  972.574014][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.716196][   T46] pwc: recv_control_msg error -71 req 02 val 2600
[  972.859523][   T46] pwc: recv_control_msg error -71 req 02 val 2900
[  973.273853][   T46] pwc: recv_control_msg error -71 req 02 val 2800
[  973.281494][   T46] pwc: recv_control_msg error -71 req 04 val 1100
[  973.291279][   T46] pwc: recv_control_msg error -71 req 04 val 1200
[  973.302486][   T46] pwc: Registered as video103.
[  973.308407][   T46] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input42
[  973.382365][   T46] usb 6-1: USB disconnect, device number 19
[  973.387094][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  973.571658][T14856] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2741'.
[  974.351913][ T5831] Bluetooth: hci0: command tx timeout
[  974.491757][T14867] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2744'.
[  975.037382][   T12] bridge_slave_1: left allmulticast mode
[  975.279232][   T12] bridge_slave_1: left promiscuous mode
[  975.297727][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  975.362130][   T12] bridge_slave_0: left allmulticast mode
[  975.367833][   T12] bridge_slave_0: left promiscuous mode
[  975.435082][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.431338][ T5831] Bluetooth: hci0: command tx timeout
[  976.514729][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  976.527449][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  976.539635][   T12] bond0 (unregistering): Released all slaves
[  976.598682][T14832] chnl_net:caif_netlink_parms(): no params data found
[  976.645183][   T12] fþ²¹¥‰: left promiscuous mode
[  977.595043][T14832] bridge0: port 1(bridge_slave_0) entered blocking state
[  977.757607][T14832] bridge0: port 1(bridge_slave_0) entered disabled state
[  977.916914][T14832] bridge_slave_0: entered allmulticast mode
[  978.056201][T14832] bridge_slave_0: entered promiscuous mode
[  978.104739][T14832] bridge0: port 2(bridge_slave_1) entered blocking state
[  978.151214][T14832] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.186483][T14832] bridge_slave_1: entered allmulticast mode
[  978.193983][T14832] bridge_slave_1: entered promiscuous mode
[  978.511895][ T5831] Bluetooth: hci0: command tx timeout
[  978.572356][T14832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  978.591571][T14832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  978.670593][   T12] hsr_slave_0: left promiscuous mode
[  978.687656][   T12] hsr_slave_1: left promiscuous mode
[  978.704563][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  978.766157][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  978.821943][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  978.849240][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  978.932972][   T12] veth1_macvtap: left promiscuous mode
[  978.939224][   T12] veth0_macvtap: left promiscuous mode
[  978.949174][   T12] veth1_vlan: left promiscuous mode
[  978.959449][   T12] veth0_vlan: left promiscuous mode
[  979.723259][   T12] team0 (unregistering): Port device team_slave_1 removed
[  979.774963][   T12] team0 (unregistering): Port device team_slave_0 removed
[  979.981982][T14947] 9pnet_fd: Insufficient options for proto=fd
[  980.317158][T14832] team0: Port device team_slave_0 added
[  980.356303][T14832] team0: Port device team_slave_1 added
[  980.439969][T14951] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2766'.
[  980.600915][ T5831] Bluetooth: hci0: command tx timeout
[  980.611561][T14832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  980.631177][T14832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  980.713047][T14832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  980.735379][T14832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  981.437431][T14832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  981.636303][T14969] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2770'.
[  981.755273][T14832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  982.331984][T14832] hsr_slave_0: entered promiscuous mode
[  982.337965][T14832] hsr_slave_1: entered promiscuous mode
[  982.831170][T14832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  982.997616][T14832] Cannot create hsr debugfs directory
[  983.655218][T14982] 9pnet_fd: Insufficient options for proto=fd
[  983.688764][T14968] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2771'.
[  983.754433][   T12] IPVS: stop unused estimator thread 0...
[  983.942063][T14975] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2772'.
[  985.345170][T14996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2778'.
[  986.619565][T15002] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2780'.
[  987.717322][T15017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2782'.
[  988.771146][ T5870] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  988.787999][T14832] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  988.838151][T14832] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  988.859466][T14832] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  988.870592][T14832] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  988.954031][ T5870] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  988.994205][ T5870] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  989.046597][ T5870] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  989.060142][T14832] 8021q: adding VLAN 0 to HW filter on device bond0
[  989.075552][ T5870] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  989.089792][ T5870] usb 5-1: config 0 descriptor??
[  989.303329][T14832] 8021q: adding VLAN 0 to HW filter on device team0
[  989.334519][ T2931] bridge0: port 1(bridge_slave_0) entered blocking state
[  989.341719][ T2931] bridge0: port 1(bridge_slave_0) entered forwarding state
[  989.387914][T15044] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2788'.
[  990.230715][T12313] bridge0: port 2(bridge_slave_1) entered blocking state
[  990.237874][T12313] bridge0: port 2(bridge_slave_1) entered forwarding state
[  991.473414][ T5870] usb 5-1: USB disconnect, device number 38
[  991.637619][T15068] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2792'.
[  992.643375][T14832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  992.691529][T14832] veth0_vlan: entered promiscuous mode
[  992.714919][T14832] veth1_vlan: entered promiscuous mode
[  993.363087][T14832] veth0_macvtap: entered promiscuous mode
[  993.395358][T14832] veth1_macvtap: entered promiscuous mode
[  993.412590][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  993.418927][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  993.455208][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.467384][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.500152][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.544077][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.574655][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.628754][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.669947][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.002754][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.081390][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.201099][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.343654][T14832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  994.379054][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.413735][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.455620][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.498790][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.533588][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.533725][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.533850][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.533969][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.534361][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.711149][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.745633][T14832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  994.790558][T14832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  994.841221][T14832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  994.881357][T14832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  994.890114][T14832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  995.055172][T15114] kvm: kvm [15113]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  995.192738][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  995.220992][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  995.331149][T12157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  995.339004][T12157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  995.381136][ T5908] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  995.545994][ T5908] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  995.577205][ T5908] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  995.621447][ T5908] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  995.651837][ T5908] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  995.924515][ T5908] usb 4-1: config 0 descriptor??
[  998.911480][ T5921] usb 4-1: USB disconnect, device number 31
[ 1001.222464][T15216] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2820'.
[ 1005.099476][T15251] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2829'.
[ 1007.506357][T14833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1007.523142][T14833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1007.531082][T14833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1007.546611][T14833] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1007.555119][T14833] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1007.564699][T14833] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1007.871335][ T5921] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1007.897131][T15279] chnl_net:caif_netlink_parms(): no params data found
[ 1008.041154][ T5921] usb 2-1: Using ep0 maxpacket: 16
[ 1008.073661][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[ 1008.105660][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[ 1008.161136][ T5921] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1008.227591][ T5921] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1008.245531][ T6006] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.266582][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1008.294085][ T5921] usb 2-1: config 0 descriptor??
[ 1008.302657][T15279] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.319036][T15279] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.327975][T15279] bridge_slave_0: entered allmulticast mode
[ 1008.335807][T15279] bridge_slave_0: entered promiscuous mode
[ 1008.345200][T15279] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.353039][T15279] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.360327][T15279] bridge_slave_1: entered allmulticast mode
[ 1008.374118][T15279] bridge_slave_1: entered promiscuous mode
[ 1008.420796][ T6006] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.533505][T15279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1008.556300][T15279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1008.622898][ T6006] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.716909][T15279] team0: Port device team_slave_0 added
[ 1008.724967][ T5921] microsoft 0003:045E:07DA.0009: unknown main item tag 0x4
[ 1008.914752][T15279] team0: Port device team_slave_1 added
[ 1009.027513][ T5921] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0009/input/input43
[ 1009.196192][ T5921] microsoft 0003:045E:07DA.0009: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[ 1009.444801][ T6006] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1009.456332][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[ 1009.462894][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[ 1009.616196][T15282] netlink: 'syz.1.2839': attribute type 3 has an invalid length.
[ 1009.631279][ T5831] Bluetooth: hci1: command tx timeout
[ 1009.651499][T15282] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2839'.
[ 1009.688927][T15279] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1009.707525][T15279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1009.739282][ T5921] usb 2-1: USB disconnect, device number 36
[ 1009.794940][T15279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1009.836228][T15279] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1009.856105][T15279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1009.920903][T15279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1010.044570][T15279] hsr_slave_0: entered promiscuous mode
[ 1010.051353][T15279] hsr_slave_1: entered promiscuous mode
[ 1010.057495][T15279] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1010.068908][T15279] Cannot create hsr debugfs directory
[ 1010.219372][    C1] vcan0: j1939_tp_rxtimer: 0xffff888024596000: rx timeout, send abort
[ 1010.267660][T15324] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2850'.
[ 1010.276852][T15324] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2850'.
[ 1010.288405][ T6006] bridge_slave_1: left allmulticast mode
[ 1010.418442][ T6006] bridge_slave_1: left promiscuous mode
[ 1010.428362][ T6006] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1010.452376][ T6006] bridge_slave_0: left allmulticast mode
[ 1010.471710][ T6006] bridge_slave_0: left promiscuous mode
[ 1010.479222][ T6006] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1010.528835][T15326] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2850'.
[ 1010.727674][    C1] vcan0: j1939_tp_rxtimer: 0xffff888024596000: abort rx timeout. Force session deactivation
[ 1011.461174][ T5908] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1011.651101][ T5908] usb 2-1: Using ep0 maxpacket: 16
[ 1011.662493][ T5908] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1011.675887][ T5908] usb 2-1: config 0 has no interface number 0
[ 1011.701452][ T5908] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1011.711153][ T5831] Bluetooth: hci1: command tx timeout
[ 1011.725824][ T5908] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1011.767935][ T5908] usb 2-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1011.817626][ T5908] usb 2-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00
[ 1011.827812][ T5908] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1011.838846][ T5908] usb 2-1: config 0 descriptor??
[ 1011.961696][ T6006] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1011.991687][ T6006] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1012.002590][ T6006] bond0 (unregistering): Released all slaves
[ 1012.332855][ T5908] holtek_mouse 0003:04D9:A072.000A: unknown main item tag 0x3
[ 1012.340417][ T5908] holtek_mouse 0003:04D9:A072.000A: item fetching failed at offset 2/4
[ 1012.388356][ T5908] holtek_mouse 0003:04D9:A072.000A: hid parse failed: -22
[ 1012.406253][ T5908] holtek_mouse 0003:04D9:A072.000A: probe with driver holtek_mouse failed with error -22
[ 1013.394180][ T5921] usb 2-1: USB disconnect, device number 37
[ 1013.489599][T15371] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2861'.
[ 1013.500167][T15371] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2861'.
[ 1013.846949][T15381] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2861'.
[ 1013.858573][ T5831] Bluetooth: hci1: command tx timeout
[ 1013.867285][   T46] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 1014.069282][   T46] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1014.161898][   T46] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1014.262790][   T46] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1014.416630][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1014.485218][   T46] usb 4-1: config 0 descriptor??
[ 1014.723063][T15279] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1014.834343][T15279] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1014.869127][T15397] FAULT_INJECTION: forcing a failure.
[ 1014.869127][T15397] name failslab, interval 1, probability 0, space 0, times 1
[ 1014.911256][T15397] CPU: 1 UID: 0 PID: 15397 Comm: syz.5.2865 Not tainted 6.14.0-rc1-syzkaller-00034-g92514ef226f5 #0
[ 1014.911280][T15397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1014.911290][T15397] Call Trace:
[ 1014.911296][T15397]  <TASK>
[ 1014.911304][T15397]  dump_stack_lvl+0x241/0x360
[ 1014.911336][T15397]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1014.911360][T15397]  ? __pfx__printk+0x10/0x10
[ 1014.911396][T15397]  should_fail_ex+0x40a/0x550
[ 1014.911419][T15397]  should_failslab+0xac/0x100
[ 1014.911440][T15397]  ? skb_clone+0x20c/0x390
[ 1014.911456][T15397]  kmem_cache_alloc_noprof+0x70/0x380
[ 1014.911482][T15397]  skb_clone+0x20c/0x390
[ 1014.911503][T15397]  __netlink_deliver_tap+0x3cc/0x7f0
[ 1014.911529][T15397]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1014.911552][T15397]  netlink_deliver_tap+0x19d/0x1b0
[ 1014.911577][T15397]  netlink_unicast+0x7c4/0x990
[ 1014.911607][T15397]  ? __pfx_netlink_unicast+0x10/0x10
[ 1014.911626][T15397]  ? __virt_addr_valid+0x45f/0x530
[ 1014.911648][T15397]  ? __phys_addr_symbol+0x2f/0x70
[ 1014.911668][T15397]  ? __check_object_size+0x47a/0x730
[ 1014.911693][T15397]  netlink_sendmsg+0x8e4/0xcb0
[ 1014.911720][T15397]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1014.911749][T15397]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1014.911763][T15397]  __sock_sendmsg+0x221/0x270
[ 1014.911786][T15397]  ____sys_sendmsg+0x52a/0x7e0
[ 1014.911811][T15397]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1014.911825][T15397]  ? __fget_files+0x2a/0x410
[ 1014.911849][T15397]  ? __fget_files+0x2a/0x410
[ 1014.911877][T15397]  __sys_sendmsg+0x269/0x350
[ 1014.911898][T15397]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1014.911927][T15397]  ? do_sys_openat2+0x17a/0x1d0
[ 1014.911982][T15397]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1014.912003][T15397]  ? do_syscall_64+0x100/0x230
[ 1014.912028][T15397]  ? do_syscall_64+0xb6/0x230
[ 1014.912051][T15397]  do_syscall_64+0xf3/0x230
[ 1014.912071][T15397]  ? clear_bhb_loop+0x35/0x90
[ 1014.912095][T15397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1014.912115][T15397] RIP: 0033:0x7f19a438cde9
[ 1014.912130][T15397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1014.912143][T15397] RSP: 002b:00007f19a21d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1014.912162][T15397] RAX: ffffffffffffffda RBX: 00007f19a45a6080 RCX: 00007f19a438cde9
[ 1014.912174][T15397] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000005
[ 1014.912184][T15397] RBP: 00007f19a21d5090 R08: 0000000000000000 R09: 0000000000000000
[ 1014.912194][T15397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1014.912203][T15397] R13: 0000000000000000 R14: 00007f19a45a6080 R15: 00007ffe8d7560c8
[ 1014.912229][T15397]  </TASK>
[ 1015.186186][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1015.238938][ T6006] hsr_slave_0: left promiscuous mode
[ 1015.291212][ T6006] hsr_slave_1: left promiscuous mode
[ 1015.309510][ T6006] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1015.344951][ T6006] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1015.384028][ T6006] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1015.422859][ T6006] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1015.459065][ T6006] veth1_macvtap: left promiscuous mode
[ 1015.464680][ T6006] veth0_macvtap: left promiscuous mode
[ 1015.470313][ T6006] veth1_vlan: left promiscuous mode
[ 1015.475771][ T6006] veth0_vlan: left promiscuous mode
[ 1015.962527][ T5831] Bluetooth: hci1: command tx timeout
[ 1016.629377][   T46] usb 4-1: USB disconnect, device number 32
[ 1016.701217][ T5921] usb 5-1: new full-speed USB device number 39 using dummy_hcd
[ 1016.865086][ T5921] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1016.891898][ T5921] usb 5-1: not running at top speed; connect to a high speed hub
[ 1016.907721][ T5921] usb 5-1: config 129 has an invalid interface number: 135 but max is 0
[ 1016.920620][ T5921] usb 5-1: config 129 has an invalid interface number: 5 but max is 0
[ 1016.938075][ T5921] usb 5-1: config 129 descriptor has 1 excess byte, ignoring
[ 1016.947062][ T5921] usb 5-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[ 1016.969359][ T5921] usb 5-1: config 129 has no interface number 0
[ 1016.980456][ T5921] usb 5-1: config 129 has no interface number 1
[ 1016.989940][ T5921] usb 5-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1017.010041][ T5921] usb 5-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30
[ 1017.031106][ T5921] usb 5-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37
[ 1017.044746][ T5921] usb 5-1: config 129 interface 135 has no altsetting 0
[ 1017.051832][ T5921] usb 5-1: config 129 interface 5 has no altsetting 0
[ 1017.062150][ T5921] usb 5-1: string descriptor 0 read error: -22
[ 1017.069486][ T5921] usb 5-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.62
[ 1017.080407][ T5921] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1017.097222][ T5921] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1017.105357][ T5921] usb 5-1: MIDIStreaming interface descriptor not found
[ 1017.264709][ T6006] team0 (unregistering): Port device team_slave_1 removed
[ 1017.303847][ T5921] usb 5-1: USB disconnect, device number 39
[ 1017.380819][ T6006] team0 (unregistering): Port device team_slave_0 removed
[ 1017.818037][T15279] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1017.839364][T15279] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1018.109731][T15279] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1018.130962][T15279] 8021q: adding VLAN 0 to HW filter on device team0
[ 1018.162135][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1018.169251][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1018.458798][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1018.465919][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1018.787591][T15444] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1020.179148][T15279] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1020.263525][T15471] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1020.273248][T15471] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1020.497204][T15279] veth0_vlan: entered promiscuous mode
[ 1021.911525][T15478] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1022.222029][T15279] veth1_vlan: entered promiscuous mode
[ 1022.347048][T15279] veth0_macvtap: entered promiscuous mode
[ 1022.752827][T15279] veth1_macvtap: entered promiscuous mode
[ 1022.816304][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1022.841121][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.871306][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1022.901073][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.921197][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1022.950406][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.960499][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1022.983002][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.000387][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1023.019743][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.033117][T15279] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1023.047744][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1023.064180][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.084732][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1023.107514][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.129241][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1023.147837][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.157830][ T5921] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 1023.181093][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1023.203382][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.222620][T15279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1023.239148][T15279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.258526][T15279] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1023.315143][T15279] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1023.324175][ T5921] usb 6-1: Using ep0 maxpacket: 16
[ 1023.336894][T15504] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2898'.
[ 1023.369646][T15279] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1023.378720][ T5921] usb 6-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[ 1023.417250][T15279] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1023.428432][T15279] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1023.435550][ T5921] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1023.498001][ T5921] usb 6-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[ 1023.516926][ T5921] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1023.561274][ T5921] usb 6-1: config 0 descriptor??
[ 1023.683765][ T8036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1023.721250][ T8036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1023.799589][ T5929] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1023.811171][ T5929] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1024.014204][ T5921] zydacron 0003:13EC:0006.000B: hidraw0: USB HID v0.00 Device [HID 13ec:0006] on usb-dummy_hcd.5-1/input0
[ 1024.201519][T15510] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1024.531539][T15493] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2894'.
[ 1024.590064][T15493] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1024.728626][ T5921] usb 6-1: USB disconnect, device number 20
[ 1024.852908][T15517] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2901'.
[ 1024.862019][T15517] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2901'.
[ 1025.134326][T15521] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2901'.
[ 1027.340110][T15553] netlink: 188 bytes leftover after parsing attributes in process `syz.5.2913'.
[ 1027.349297][T15553] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2913'.
[ 1027.688168][T15562] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2913'.
[ 1029.390555][    T8] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[ 1029.732665][    T8] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1029.844507][    T8] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1030.011257][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1030.022559][    T8] usb 6-1: config 0 descriptor??
[ 1030.030777][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[ 1030.440234][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1030.469391][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[ 1030.496383][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1030.517344][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[ 1030.537908][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[ 1030.561830][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[ 1030.582425][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[ 1030.611139][    T8] pwc: recv_control_msg error -32 req 02 val 2100
[ 1030.634596][    T8] pwc: recv_control_msg error -32 req 04 val 1500
[ 1030.652471][    T8] pwc: recv_control_msg error -32 req 02 val 2500
[ 1030.672399][    T8] pwc: recv_control_msg error -32 req 02 val 2400
[ 1030.696875][    T8] pwc: recv_control_msg error -32 req 02 val 2600
[ 1030.726346][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[ 1030.740978][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[ 1030.773126][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[ 1030.777911][T15610] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN PTI
[ 1030.790173][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[ 1030.792106][T15610] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[ 1030.792125][T15610] CPU: 1 UID: 0 PID: 15610 Comm: syz.1.2928 Not tainted 6.14.0-rc1-syzkaller-00034-g92514ef226f5 #0
[ 1030.792146][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1030.792157][T15610] RIP: 0010:iter_file_splice_write+0xe07/0x1510
[ 1030.811283][    T8] pwc: Registered as video103.
[ 1030.817682][T15610] Code: 00 00 fc ff df 41 80 3c 06 00 49 89 c6 74 08 4c 89 e7 e8 ec 19 df ff 49 c7 04 24 00 00 00 00 48 83 c3 08 48 89 d8 48 c1 e8 03 <42> 80 3c 30 00 74 08 48 89 df e8 da 18 df ff 48 8b 44 24 20 48 8b
[ 1030.817701][T15610] RSP: 0018:ffffc900042bf780 EFLAGS: 00010202
[ 1030.856277][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input44
[ 1030.858293][T15610] 
[ 1030.858302][T15610] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000005
[ 1030.858315][T15610] RDX: ffffc9001190d000 RSI: 0000000000000000 RDI: 7fffffffffffff7f
[ 1030.881260][    T8] usb 6-1: USB disconnect, device number 21
[ 1030.884053][T15610] RBP: ffffc900042bfa30 R08: ffffffff82445584 R09: 1ffff1100f29a01b
[ 1030.884071][T15610] R10: dffffc0000000000 R11: ffffffff820145b0 R12: ffff888030c04038
[ 1030.913906][T15610] R13: 0000000000000000 R14: dffffc0000000000 R15: 7fffffffffffff7f
[ 1030.921892][T15610] FS:  00007fefc61f66c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1030.930835][T15610] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1030.937426][T15610] CR2: 0000000000000000 CR3: 000000007a266000 CR4: 00000000003526f0
[ 1030.945404][T15610] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1030.953366][T15610] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1030.961327][T15610] Call Trace:
[ 1030.964594][T15610]  <TASK>
[ 1030.967513][T15610]  ? __die_body+0x5f/0xb0
[ 1030.971840][T15610]  ? die_addr+0xb0/0xe0
[ 1030.975987][T15610]  ? exc_general_protection+0x3dd/0x5d0
[ 1030.981533][T15610]  ? asm_exc_general_protection+0x26/0x30
[ 1030.987245][T15610]  ? __pfx_zero_pipe_buf_release+0x10/0x10
[ 1030.993051][T15610]  ? iter_file_splice_write+0xd84/0x1510
[ 1030.998684][T15610]  ? iter_file_splice_write+0xe07/0x1510
[ 1031.004320][T15610]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1031.010208][T15610]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1031.015660][T15610]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1031.021541][T15610]  direct_splice_actor+0x11b/0x220
[ 1031.026994][T15610]  splice_direct_to_actor+0x586/0xc80
[ 1031.032366][T15610]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1031.037988][T15610]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1031.043873][T15610]  ? __fget_files+0x2a/0x410
[ 1031.048456][T15610]  ? __pfx_lock_release+0x10/0x10
[ 1031.053474][T15610]  do_splice_direct+0x289/0x3e0
[ 1031.058317][T15610]  ? __pfx_do_splice_direct+0x10/0x10
[ 1031.063679][T15610]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1031.069570][T15610]  ? rw_verify_area+0x243/0x630
[ 1031.074418][T15610]  do_sendfile+0x564/0x8a0
[ 1031.078830][T15610]  ? __pfx_do_sendfile+0x10/0x10
[ 1031.083761][T15610]  __se_sys_sendfile64+0x17c/0x1e0
[ 1031.088873][T15610]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 1031.094497][T15610]  ? do_syscall_64+0x100/0x230
[ 1031.099258][T15610]  ? do_syscall_64+0xb6/0x230
[ 1031.103932][T15610]  do_syscall_64+0xf3/0x230
[ 1031.108432][T15610]  ? clear_bhb_loop+0x35/0x90
[ 1031.113103][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1031.118988][T15610] RIP: 0033:0x7fefc838cde9
[ 1031.123397][T15610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1031.142991][T15610] RSP: 002b:00007fefc61f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1031.151397][T15610] RAX: ffffffffffffffda RBX: 00007fefc85a5fa0 RCX: 00007fefc838cde9
[ 1031.159358][T15610] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000008
[ 1031.167313][T15610] RBP: 00007fefc840e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1031.175270][T15610] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[ 1031.183226][T15610] R13: 0000000000000000 R14: 00007fefc85a5fa0 R15: 00007ffc3464ee68
[ 1031.191191][T15610]  </TASK>
[ 1031.194197][T15610] Modules linked in:
[ 1031.198151][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1031.205516][T15610] ---[ end trace 0000000000000000 ]---
[ 1031.226359][T15610] RIP: 0010:iter_file_splice_write+0xe07/0x1510
[ 1031.247578][T15610] Code: 00 00 fc ff df 41 80 3c 06 00 49 89 c6 74 08 4c 89 e7 e8 ec 19 df ff 49 c7 04 24 00 00 00 00 48 83 c3 08 48 89 d8 48 c1 e8 03 <42> 80 3c 30 00 74 08 48 89 df e8 da 18 df ff 48 8b 44 24 20 48 8b
[ 1031.293172][T15610] RSP: 0018:ffffc900042bf780 EFLAGS: 00010202
[ 1031.301208][T15610] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000005
[ 1031.311606][T15610] RDX: ffffc9001190d000 RSI: 0000000000000000 RDI: 7fffffffffffff7f
[ 1031.339367][T15610] RBP: ffffc900042bfa30 R08: ffffffff82445584 R09: 1ffff1100f29a01b
[ 1031.363551][T15610] R10: dffffc0000000000 R11: ffffffff820145b0 R12: ffff888030c04038
[ 1031.383785][T15610] R13: 0000000000000000 R14: dffffc0000000000 R15: 7fffffffffffff7f
[ 1031.408686][T15610] FS:  00007fefc61f66c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1031.445250][T15610] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1031.456158][T15610] CR2: 0000000000000000 CR3: 000000007a266000 CR4: 00000000003526f0
[ 1031.464995][T15610] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1031.473372][T15610] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1031.481560][T15610] Kernel panic - not syncing: Fatal exception
[ 1031.487877][T15610] Kernel Offset: disabled
[ 1031.492189][T15610] Rebooting in 86400 seconds..