last executing test programs:

1m4.181740841s ago: executing program 1 (id=4126):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'pim6reg\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}})
write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d0020000010210000000000000000000000000000000000ff020000000000000000000000000001"], 0x4a)

1m3.652726472s ago: executing program 1 (id=4131):
mount(&(0x7f0000000000)=@rnullb, &(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000040)='gfs2\x00', 0x208002, 0x0)

1m3.527551289s ago: executing program 1 (id=4134):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000a, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267", 0xb5}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
readv(r0, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xc1}], 0x1)

1m3.403929804s ago: executing program 1 (id=4136):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r1, 0xffffffffffffffff, 0x0)

1m2.274561918s ago: executing program 1 (id=4147):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300020000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES16=r0], 0xc4}}, 0x0)

1m2.065476407s ago: executing program 1 (id=4149):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000040)={'gretap0\x00', <r1=>0x0, 0x8, 0x1, 0xfffffff9, 0x400, {{0xc, 0x4, 0x1, 0x4, 0x30, 0x66, 0x0, 0x40, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x26}, @loopback, {[@ssrr={0x89, 0x13, 0xe9, [@broadcast, @dev={0xac, 0x14, 0x14, 0x12}, @empty, @multicast2]}, @end, @lsrr={0x83, 0x7, 0xcf, [@multicast2]}, @end]}}}}})
sendmsg$nl_xfrm(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000100)=@delsa={0x194, 0x11, 0x400, 0x70bd25, 0x25dfdbfd, {@in=@remote, 0x4d4, 0x2, 0x32}, [@lifetime_val={0x24, 0x9, {0x2, 0x10000, 0x1, 0xb2}}, @migrate={0x134, 0x11, [{@in=@remote, @in6=@remote, @in6=@mcast2, @in6=@local, 0x2b, 0x1, 0x0, 0x3501, 0xa, 0xa}, {@in=@multicast1, @in=@private=0xa010102, @in=@loopback, @in6=@mcast2, 0x32, 0x2, 0x0, 0x0, 0x2, 0xa}, {@in=@empty, @in=@remote, @in6=@remote, @in6=@remote, 0x2b, 0x4, 0x0, 0x3504, 0x0, 0x2}, {@in6=@private2, @in6=@dev={0xfe, 0x80, '\x00', 0x28}, @in=@dev={0xac, 0x14, 0x14, 0xe}, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}, 0x6c, 0x2, 0x0, 0x3502, 0xa, 0xa}]}, @offload={0xc, 0x1c, {r1, 0x1}}, @replay_thresh={0x8, 0xb, 0x8}]}, 0x194}, 0x1, 0x0, 0x0, 0x4008000}, 0x8800)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000340)={'team_slave_0\x00', {0x2, 0x0, @loopback}})
recvfrom(r0, &(0x7f0000000380)=""/156, 0x9c, 0x40000000, &(0x7f0000000440)=@ll={0x11, 0x5, r1, 0x1, 0x67, 0x6, @remote}, 0x80)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000dc0)=<r2=>0x0)
sendmmsg(r0, &(0x7f0000002f80)=[{{&(0x7f00000004c0)=@hci={0x1f, 0xffffffffffffffff}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000540)="1b8f02cc7fa990761521c974f9be7c7a10d55b3716cdcc6762d821f83c53725f652f41a0c4c858fdc9eda1c6d9b7100eeea613695234590d0e8e20523079e71cc66b7ec3c34a5fd15d0ed2bbf8c83a2c36421a20ed04dc3b24c319a0c56d0bfff944e7c06eb53b9ef265bb4cf07d49bd6ba45fdf82bf2f5e6f58083fe4d0363e72355d086166818fe2a33dc210657768ef56fb0a006b2ec4c3ebea75a198e8b489cf46836153a4c1f53474cd374e70e3ec4411204f46726d87ba17ceee1c2404988f7150470e703f009dc3f12c10c7b9e4c6605b759597fe720bb1cf87f7f8816cccf7", 0xe3}, {&(0x7f0000000640)="ec39b169643c04773b47ae1c307d60813437df07f78bcbd6139d0b378afe5e68fd078ea3b0d67f037e1c69767cbb158e8bf38dbe2c4844473f812f0cd958048935e4cf1ac96a5141c373fde4cd815a57b45b07215aea56818993625073f60de6d45177c24cc979bfd412052de39009f186ac015065a4cb7fc883356b5e87bfdc93b2b68d94", 0x85}, {&(0x7f0000000700)="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", 0xfa}, {&(0x7f0000000800)="5e6247fad95991a375558b43f58ad785d173eb59ff2817ca8418398b480bd46af3f4cf301538fa8eaf59f6b701ff0ea1135eb55393a9654a6b57fbf4f164cf0c671c2c582073ca34fb3ae0c099a73a49e1ad5a8ebd16dbe2407a339f8701df1c05cf457bbca3c39c9f07247a16f779fc14493eea50bfc1161d8285d139e6401114e0f9dbeee5174910e127ed95871405eaf584ea0dfc52f62eaa438889e951aab4e34a7e0fa14e706df53a6b2f44587c138729b00b14c5d15e3e5b7a3eee6f2d0082771b6f", 0xc5}, {&(0x7f0000000900)="507f62dd58524f80b13584a531748412228f487fe5391614ee63ac228183d412ac743f4aa788c606e87c5e6ce5fbbeabb3f7c3cf4f22b7bb28c86c7d0c661fc30ff1c48cf55afa130aa6a2c929e533eaa8fe8a6f13105442d613375f57e4f59925dccc95936965bfc1757d639266abf19b962d482ec34bd81ad232c858c18cf5545ddea7f642ca74d7e7e5b08e8bd252f3d7cd9377273c5ac3db475365e7", 0x9e}, {&(0x7f00000009c0)="cef851d12b1b1cdb27f7d762e100e83a49f9966865db5dcb4b157bd1d868cfb14016dbcd8a55930340ca2b8c02f34d4d95560b0d3ea2545479b957df2fce17ed2f3fdfac59fea4a6723449e3ccbe96668a9cd9dcec73d183be66b31519cfe1d59f959f7e8df1eab073810637ae2aa8977952fe07e79bac1de6b9b1b2a341dbb1e823fd5cc2b6abee88860960d1a283d9ab1cc88c54ad310c94efe3c06611ee96ef35137a8cf6286c8954c0504f41098feed60b29a684389f2e6b495732323d46ee325a", 0xc3}, {&(0x7f0000000ac0)="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", 0xfa}, {&(0x7f0000000bc0)="5e7827356e24d39cbedb4454cc8e6d17933900e8a361d46622d8fedc5ce2834bd52b156f8969fd363c55eb6e317a32", 0x2f}, {&(0x7f0000000c00)="d095d932f781", 0x6}, {&(0x7f0000000c40)="cbe0f379bad570d411cf79e90ba33d0ad74532ef2ed371918321050e8c2b7115d6371093", 0x24}], 0xa, &(0x7f0000000d40)=[{0x80, 0x112, 0x0, "792fbee14f20c0ee49f769b22c763105552a4a0a116da595e0277670a92ac655c1cc17f0a24b5f49016d5e44e7d6de8a72a0f2fda8512b6ac350d2ee8fa3a697216c17acb3b3d3303d7a8edca6e12d79363e59db52a24695d5db72de9d45d0e0ca7426297141ff5bf9b0f67c1c879f"}], 0x80}}, {{&(0x7f0000000e00)=@nfc_llcp={0x27, r2, 0x1, 0x4, 0x9, 0x6, "6b2de9dc72062d850bdbf0d317fa24441c27d6854000b6f53def8bcad94ae5ee71296a3438c45bd88778ab0fa0835c2104794dbe9c4e44825e668ead32c62e", 0x31}, 0x80, &(0x7f0000001240)=[{&(0x7f0000000e80)="6159a9733f3ac3403ed57a50c5778d111aceb2453607a412785b5ab90fdc5df7fc31cf70e8d5cfa62b2ef5066d9d1cc8432bf2169b360fb55825a15b64f77fcbeb5233e88d8753ea47a5b750a9e119df1bc4fe70f994907dea0f9f2bd438cccf46880cb9fc8377d3ae429fd0d4a792b7e31e9a6f3471d863b1b1b0cd8e618177dbef9902d2df807432a9cd257325d07ebcaead73ef07d2676b098caea96e8cb5aa7be8", 0xa3}, {&(0x7f0000000f40)="b66f91cbc6e3349ec8be492108d01628d55d3144b4ca68819117a6a0f99e15bb9dd52b6a41b74372c277f00480c6e7edee848ada703ce9ae9c717846b5752678bf15e37bd5d5ec9ec4b7f47143155749744443d3be7075c8da9097ecbeda1fc3f1ceccbe5a1da585e75e1c888f179813d7811b822946de338e214a1ab655a70b6ec7ea7637b79b9227332211a158dae50b0bfc179d2681a044ecce14c0cc4993b797407df0824fddb2553cbf6402617692f727517dfd839810ec51ad481f750821bcef00e5d73b67257792", 0xcb}, {&(0x7f0000001040)="470b6eeb8efd4ce6404dd65098323e5b5d7e684215de28e2d2e38ccb81ed5d3e97b206f7e4dcd3947b35f2e86e5ef90dbcf17530ac52e06a391c0e7fb352cd1431c31c895d206e6d7a560bdf6afdd4dc0154a36439d725e1439ec0eaf3f9424034ea9710b4c8af11970ee6e9a061457f21e19ee501a7621002becca256ca5b9239a863217e29246fead991fc38aac6c334", 0x91}, {&(0x7f0000001100)="0caae0cf3307b0db846b572a0709a064d4f94366f89659fe5841cdab3f6e991782d278673669fd686b2f08287f1240a68b464ebe3046a2c8b67f33a5d128a4a7594099fb8c0f4d76b3fd50dffa3cdb8760d431a93a4e8113afe633a43d25b6d1cca1a2437410a92aba03f37e271a1a991749b9f4b3985e21a8611dc76716b29a198404ba835d161a", 0x88}, {&(0x7f00000011c0)="da916d33c167b73a8cda52af781eb4d5eac5eb9c4d9c9c2c7c7594140eac6dcff3a14c6e5f3f4b7db4a205ec5507c00cca97a997cbcbfcf143140c0deefd056d094dd9b85516eaa4b4", 0x49}], 0x5, &(0x7f00000012c0)=[{0x100, 0x109, 0x7f, "2237688da3974ed43487f3480aee8d550b7e8f73761d3e915b5ef017f4ed440c580db397db1d407bddeb0a9dd4ccc0744851c41e577c7d0a6ce5a5dfcbce16b087d8bb0d4902d807b5992df224f2f20f6215d2db76af20a42fa03f272422601b3b5cf4fe963af9948aee456de77b18b10ec367a0e46372d770a3ec0ba745bbf2d72f21ad9d9c3efeccb814a6d253f6e880760331f44471599a8995e104104e005587dbcc803349b9f8ad7221aeb1b6aa855ac84ae42e3c57926d4905743e573a896a8ca7eb3782b7366158e2c49f1a9ab015868165bbf48d44fbc2085e5f2523b91bc87c7e02e65253d6069425c8"}, {0x30, 0x104, 0x13cf, "ce333fcc7798d091978938ca93c725ab43a68d156a572a50fb01905b"}, {0x38, 0x10f, 0x9, "8d0e27c9eb52c21f7a7975155cb187ae199202d8f21c7c318e6fd7abf2a2b8e712af1250bebd3e57"}, {0xc0, 0x1, 0xd, "475729963712f4cc54031220e17431400ab3ded70460a54d46d00614eef1364100bcc9cb91ce79915ce8e4167442244fba9cdf7a4350dfa08921ea6d882005de6aea3d3a512b28a5cb5e1eea746c9d244d99d8acc93b6d4a5f0d319b29a4820067ee8a2051197bef4ab23794a73efde27f1b52ce49d165486f0175d8eba056d16b26f45b1729af65415d0ec0beb03c69af72b45f155c20a7191ad6527aea24e01faeb96988a0ada9cdd266"}, {0xd0, 0x101, 0x3, "7784856dcca6c94748af4b5f22907e647348e0d30a8bfe6c38fd69d083fddd955b6340db839a9314e216e7d5b5ea6bb6464471069fc693bc07900745fc6a56e9e386c150a7e57dfdaf8a9e4cd4ddf3b5476f1483a05fb022613bfc7f7cdf1ddf410181216082a193589270d26511ceeff94eea5a9fdeb9acc90f77bddda8d468659a3906a439a934ccbea15a278284590e1ff55110f9a67ad122dee620836a2d761d1bb42d73f0c6ea1bbec97c3a17d4ed5dce669a69259ac0de7c"}, {0x70, 0x29, 0x9, "769e348ca16fbaefbe3ed9f117203b46309785893d95cf37de0802ea7da64dc1d312f2b3f5adc24afc4940196d6ea86ea2b21efb1e6e99175b2b8b36516454522d2ed98c351588fc853c3d2fb5dbc0f7363370338032029584"}, {0xb0, 0x117, 0xe, "631093e4fd39288bf100dc0e5c543830b2f16228cd6810842073b717c58ec73fb50e9438c269df9b029ef9edfd2aedf889011e63cb5710a2db41d49ed079b0880fb0ba217dc394858c48640eaa9ce14ef74caea202933a0f37443f118ddbbe8c4c59471c7d5f987eff3aeca39c1d99a6b84a287c6a3610b6bb7d2142721fc64e5565f82b2572a7543e787a3ba49e6cae5817d001df395ebc6e9e06caf17b"}], 0x418}}, {{&(0x7f0000001700)=@un=@abs={0x0, 0x0, 0x4e24}, 0x80, &(0x7f0000001840)=[{0x0}, {&(0x7f0000001780)="7f0d7230342b8f49046bac487e8fd742469af7c585ae64cc7bd90acb56a0fb855d2438ac4506269c178be6d56dd76eb531dbcbce0da37825dd36cf22d3c705eb58f6f19b12108e53c08944ddc2bc3aa464ab75941c069bd4a33ae6194d347304abf2921391ad86dc2fbbc7d8b9ca9393e55b494097f73d8591349187fdbedf97e5f95e0075e7d9c007b6ec64c2fe88344f55ee3837a5147a5414449df1c6a2f732ad003bd28cd614", 0xa8}], 0x2, &(0x7f0000001880)=[{0x30, 0x6, 0x7, "cb016234c13b89fbe3e569513c8b3446aa01263d7c4ac81a8625fc"}], 0x30}}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f00000018c0)="a364d2a168e1aef769fd8b83764338c66595437c265b212647bfbce13325d43940d096b52ea4b79ffa36838e1ec310aeafe3b03bcb2e89da694ec803789fa651474477775c7333994ea0bf81b2cbb3e27ccb66e5ffa48c351c90773af4c5e5da9ac6f58d2a1b610f4629a4ef19a4c024c3b36c0dcd54ac115cd42337fff486", 0x7f}, {0xfffffffffffffffe}, {&(0x7f0000001940)="9b3691b769fcee60f4b6ae8975444245ed04146ba30c1b061e1e4ae312da2e5ceaa064eedf1c8f6a97876f4dd3fe7cc86802ba7df0e22d69e2bf28874a534326c86c36b7f07e4acd15d52bf22e780ef3775430d6c3db20bd9e0018e1e92a4c7a15666c27aa1ff8831e04b132908f2a74764a1e34a64e48ed3f2a2d33a72c1435054be77e527c0d8af06f699c501d155bb0189cd0", 0x94}], 0x3, &(0x7f0000001a40)=[{0x88, 0x10e, 0x1, "7209c428dbf9cc187865e5c61c8e220187ebd41d5ace028d58b0b44bcc7c56f416570644a05f7ebef5c1e9c4660bc5cdc16b5ebfc04813c02a46ee871a37153e16758d1455ef34a893ccb0cc164b65780b743d6c52c30ef1a95e52c406d920c684e014b9dbe29567332016d9ba47c2dc1ac668"}, {0x28, 0x0, 0x7, "56f11e4d1143a40ff1003154b36425707f2a"}, {0x1010, 0x104, 0xe7a, "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"}, {0x30, 0x1e0, 0x3, "f4a7a20ea0e71b2156b353840c3531f2c1731b2413741073fe"}, {0x98, 0x109, 0x7, "fe1a2530feed408291fb53e21bc7e85677efbaf32ac4eac86ca3806c678014e2d8791627f713eb30fa2f2313d78e9e91a3da13fc0efb149f63992b98ffd218a8f54ebb1445df73b3768e9ca06932bc893d5a982c0abd8b6561b85e100915f9bb0b05c97af676b3818ed4f0be5f6e9757351d0d170a8db245c7d11ff141863d08872c"}, {0x50, 0x109, 0xffffffff, "cc8220a6e764534e5216a61ee82f5abb8a87d4d35126fbba0e40bff64711595182396a7177aa2e11abfc1d85a389ef85768d07cd729441692553036f"}, {0xa0, 0x112, 0xc, "6d38cd0a4c1ea61e5d179059746c699796b23daf838e2becedfcd16fb61b0eb518f7824c7c05586ffb75125515f83aec97dd9e735249621abb3069afbc83fcec6356246ee5fbe9f4f5ad46dd796842496bd6f2cb7e155bededb1cba4b1d7f9e26aa12130c04fdb25a9f71852280f14270760c11b572e51536a1dbe3fe7c7798d000ebbdfb03934e59818b7ad"}], 0x1278}}, {{&(0x7f0000002cc0)=@nl=@unspec, 0x80, &(0x7f0000002f40)=[{&(0x7f0000002d40)="e0431231c677aa8c9b5dace87a580222a0fd2380d10e2aafbdf1d19b799550c3292db1b2826b587e99386aa8795494425c9bd24212258322948c6031e86049c81c047e4a695beae2ff47f20e03acf753257d739f03e1f5cb53d8fca85f0f56d863bc2d6027225662545f94385c6fd9b966070ff5a21b37bf99aba2e3183a9c99cae3ede1c009b91ba1b284ec82d695ebeb898b0fb3ea9221acb046a97ba66dba6135c2fd56838f8c4300e3fadca284cf23ca550c7f2ead757a2038e851186fcb6a4c90a05d18", 0xc6}, {&(0x7f0000002e40)="beef10d0f0e6732023fbd509d32258055c06179c94e3a3dc73ef99ba6a16fe8c8f48823deaf723da2d6c799b1bab7f6a5874e1e32a82c806b0249f8c437b98f94acefd3c674789a8b9bd2959bd8a95bc958dd0fc51e6a1b444d8367cdf0a3f4e208afc337967686c1e7c6cc6c84acc3110c70649e38750cc9af56a6e1de20e88f645bf42f1754384280a47c460d19e648e1be2cc631b8faa5a9b81b60e6ea8111ba91b99a09694e1ebe9b729e1de5da15733f3a367ee6790a3d4921649029c13e8fdb9", 0xc3}], 0x2}}], 0x5, 0x40)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt(r3, 0x8, 0x6, &(0x7f00000030c0)="4fbd5b42c70149f7aae7ac4f0424f624ceac2536fe4b2c7e7d7b1fe9ecd6483787068d70b65c658e7188aaa730b78c71ba5b55a24e8074749e0d10f7a7", 0x3d)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_IOC_ASKUMOUNT(r3, 0x80049370, &(0x7f0000003100))
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000003140), 0x2, 0x0)
write$nci(r4, &(0x7f0000003180)=@NCI_OP_CORE_GENERIC_ERROR_NTF={0x0, 0x0, 0x3, 0x7, 0x8, 0x1}, 0x4)
ioctl$F2FS_IOC_DECOMPRESS_FILE(r3, 0xf517, 0x0)
r5 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f00000031c0), 0x2, 0x0)
write$apparmor_exec(r5, &(0x7f0000003200)={'exec ', 'gretap0\x00'}, 0xd)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCDELRT(r6, 0x890c, &(0x7f0000003240)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x2, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bpq0, 0x7, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default]})
shutdown(r6, 0x0)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f00000032c0), 0x4)
syz_usb_connect$uac1(0x4, 0xb8, &(0x7f0000003300)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xa6, 0x3, 0x1, 0x7, 0x80, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x8}, [@mixer_unit={0x5, 0x24, 0x4, 0x4, 0x6}, @input_terminal={0xc, 0x24, 0x2, 0x4, 0x201, 0x2, 0x80, 0x0, 0x5, 0x5}, @mixer_unit={0xa, 0x24, 0x4, 0x5, 0xff, "f1a408a372"}, @selector_unit={0xb, 0x24, 0x5, 0x5, 0x1, "0adb0169cb8f"}, @extension_unit={0xb, 0x24, 0x8, 0x1, 0xf, 0x5, "548695d5"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xf, 0x24, 0x2, 0x2, 0x7ff, 0x9, 0x3, "b572abc42739"}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x6, 0x8, 0x2, {0x7, 0x25, 0x1, 0x1, 0xfc, 0xe}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x3, 0x7, 0x5}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x6, 0x5, 0x81, {0x7, 0x25, 0x1, 0x80, 0xf, 0x7f}}}}}}}]}}, &(0x7f0000003500)={0xa, &(0x7f00000033c0)={0xa, 0x6, 0x201, 0x47, 0x1, 0x1, 0x60, 0x86}, 0x40, &(0x7f0000003400)={0x5, 0xf, 0x40, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x8, 0x7, 0x5}, @ssp_cap={0x10, 0x10, 0xa, 0xd, 0x1, 0x7, 0xf00f, 0x8001, [0x6060]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x57, 0x23, 0x6}, @generic={0x1a, 0x10, 0x4, "1b718e0401702786a7450fc2a295187c37290e818f8bbf"}]}, 0x1, [{0x8c, &(0x7f0000003440)=@string={0x8c, 0x3, "f7b7b4b6b1feac934802b7d3a0fa57ed13ee34542754b37682740f9d396eae0d9067d9286ae48195529932d57223900e281806ef71515ae1f852b3b91490e69e1ac2ab7704240f39ea61d92506ad49c045792eca74dc41b2e486e216eabfa8744c360ab3f415c84e35a2649ec094e041f81c40d71f769ee91de4c6fc48db0eef5b87b8a4c07369f0f1f3"}}]})
ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f0000003540)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4, @bcast, @rose={'rose', 0x0}, 0x4, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]})
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000003600)={0x2, &(0x7f00000035c0)=[{0x9, 0x1, 0x3, 0x7}, {0x529, 0x6a, 0x24, 0x9}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000003640)={<r9=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r8, 0x40082102, &(0x7f00000036c0)=r9)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000003780)=<r10=>0xffffffffffffffff)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f00000037c0)=@multiplanar_overlay={0x7, 0x1, 0x4, 0x100, 0x0, {0x77359400}, {0x0, 0xc, 0x2, 0xb, 0xd1, 0x87, "11c2ccd5"}, 0x101, 0x3, {&(0x7f0000003700)=[{0xfcb6, 0x7fffffff, {0x9}, 0x2}, {0x6, 0x9, {0xc5da}, 0x4}]}, 0x457, 0x0, r10})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r11, &(0x7f0000003ac0)={&(0x7f0000003840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000003a80)={&(0x7f0000003a00)={0x78, 0x0, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000845}, 0x8000)

51.44073839s ago: executing program 2 (id=4220):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0x10, 0x2, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_to_team\x00', <r3=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl0\x00', r3, 0x29, 0x0, 0x9, 0x4, 0x77, @remote, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x40, 0x20, 0x9, 0x40}})
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=ANY=[@ANYBLOB="84010000", @ANYRES16=r4, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054010b800800090000000000040009"], 0x184}}, 0x0)

51.168002594s ago: executing program 2 (id=4223):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f000000ac40)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
setns(r0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f000000ac40)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) (async)
setns(r0, 0x0) (async)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x81c0, 0x0) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) (async)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0) (async)

50.888973576s ago: executing program 2 (id=4226):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000b0000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c"], 0x10b8}, 0x0)

50.371079262s ago: executing program 2 (id=4230):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x44}}, 0x4000080)

50.308099482s ago: executing program 2 (id=4232):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000a, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267f307d605e87225cb4175be", 0xc0}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
readv(r0, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xc1}], 0x1)

49.725004384s ago: executing program 2 (id=4233):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$user(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000540)="0706675823b8a37f19b37e0f9f120663b78a6a322f28cb301825eddc42c667fc68923d7df9f4c1843c5f11b63d2684fff43955079736fa4c80100487c31c09706b6bf145eb1baf416d2681491bd6a3098fe1a6741d65b085b4075db8419d9e6d17b1eec4dfb860a71d61af753459bcc5ea1f20d6c1c74afda3b0c08bf98886eaac01b08aa753b8727f25773c98cd6a78c06b758992b03b81e2e09cf103dc16a5658a3b58626b457ee4773d41b3548f2258a2e11cc22555da4ef9035cbfe8dc1e", 0xc0, r0)
r2 = add_key$user(&(0x7f0000000180), &(0x7f0000000340)={'syz', 0x3}, &(0x7f0000000140)="04", 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f00000001c0)={r2, r1, r2}, &(0x7f0000000700)=""/253, 0xfd, &(0x7f0000000400)={&(0x7f0000000100)={'xxhash64-generic\x00'}})
keyctl$read(0xb, r1, &(0x7f0000000100)=""/82, 0x52)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x84, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}]}]}, 0x84}}, 0x0)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r6, 0x7dfff000)

47.00333395s ago: executing program 32 (id=4149):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000040)={'gretap0\x00', <r1=>0x0, 0x8, 0x1, 0xfffffff9, 0x400, {{0xc, 0x4, 0x1, 0x4, 0x30, 0x66, 0x0, 0x40, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x26}, @loopback, {[@ssrr={0x89, 0x13, 0xe9, [@broadcast, @dev={0xac, 0x14, 0x14, 0x12}, @empty, @multicast2]}, @end, @lsrr={0x83, 0x7, 0xcf, [@multicast2]}, @end]}}}}})
sendmsg$nl_xfrm(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000100)=@delsa={0x194, 0x11, 0x400, 0x70bd25, 0x25dfdbfd, {@in=@remote, 0x4d4, 0x2, 0x32}, [@lifetime_val={0x24, 0x9, {0x2, 0x10000, 0x1, 0xb2}}, @migrate={0x134, 0x11, [{@in=@remote, @in6=@remote, @in6=@mcast2, @in6=@local, 0x2b, 0x1, 0x0, 0x3501, 0xa, 0xa}, {@in=@multicast1, @in=@private=0xa010102, @in=@loopback, @in6=@mcast2, 0x32, 0x2, 0x0, 0x0, 0x2, 0xa}, {@in=@empty, @in=@remote, @in6=@remote, @in6=@remote, 0x2b, 0x4, 0x0, 0x3504, 0x0, 0x2}, {@in6=@private2, @in6=@dev={0xfe, 0x80, '\x00', 0x28}, @in=@dev={0xac, 0x14, 0x14, 0xe}, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}, 0x6c, 0x2, 0x0, 0x3502, 0xa, 0xa}]}, @offload={0xc, 0x1c, {r1, 0x1}}, @replay_thresh={0x8, 0xb, 0x8}]}, 0x194}, 0x1, 0x0, 0x0, 0x4008000}, 0x8800)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000340)={'team_slave_0\x00', {0x2, 0x0, @loopback}})
recvfrom(r0, &(0x7f0000000380)=""/156, 0x9c, 0x40000000, &(0x7f0000000440)=@ll={0x11, 0x5, r1, 0x1, 0x67, 0x6, @remote}, 0x80)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000dc0)=<r2=>0x0)
sendmmsg(r0, &(0x7f0000002f80)=[{{&(0x7f00000004c0)=@hci={0x1f, 0xffffffffffffffff}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000540)="1b8f02cc7fa990761521c974f9be7c7a10d55b3716cdcc6762d821f83c53725f652f41a0c4c858fdc9eda1c6d9b7100eeea613695234590d0e8e20523079e71cc66b7ec3c34a5fd15d0ed2bbf8c83a2c36421a20ed04dc3b24c319a0c56d0bfff944e7c06eb53b9ef265bb4cf07d49bd6ba45fdf82bf2f5e6f58083fe4d0363e72355d086166818fe2a33dc210657768ef56fb0a006b2ec4c3ebea75a198e8b489cf46836153a4c1f53474cd374e70e3ec4411204f46726d87ba17ceee1c2404988f7150470e703f009dc3f12c10c7b9e4c6605b759597fe720bb1cf87f7f8816cccf7", 0xe3}, {&(0x7f0000000640)="ec39b169643c04773b47ae1c307d60813437df07f78bcbd6139d0b378afe5e68fd078ea3b0d67f037e1c69767cbb158e8bf38dbe2c4844473f812f0cd958048935e4cf1ac96a5141c373fde4cd815a57b45b07215aea56818993625073f60de6d45177c24cc979bfd412052de39009f186ac015065a4cb7fc883356b5e87bfdc93b2b68d94", 0x85}, {&(0x7f0000000700)="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", 0xfa}, {&(0x7f0000000800)="5e6247fad95991a375558b43f58ad785d173eb59ff2817ca8418398b480bd46af3f4cf301538fa8eaf59f6b701ff0ea1135eb55393a9654a6b57fbf4f164cf0c671c2c582073ca34fb3ae0c099a73a49e1ad5a8ebd16dbe2407a339f8701df1c05cf457bbca3c39c9f07247a16f779fc14493eea50bfc1161d8285d139e6401114e0f9dbeee5174910e127ed95871405eaf584ea0dfc52f62eaa438889e951aab4e34a7e0fa14e706df53a6b2f44587c138729b00b14c5d15e3e5b7a3eee6f2d0082771b6f", 0xc5}, {&(0x7f0000000900)="507f62dd58524f80b13584a531748412228f487fe5391614ee63ac228183d412ac743f4aa788c606e87c5e6ce5fbbeabb3f7c3cf4f22b7bb28c86c7d0c661fc30ff1c48cf55afa130aa6a2c929e533eaa8fe8a6f13105442d613375f57e4f59925dccc95936965bfc1757d639266abf19b962d482ec34bd81ad232c858c18cf5545ddea7f642ca74d7e7e5b08e8bd252f3d7cd9377273c5ac3db475365e7", 0x9e}, {&(0x7f00000009c0)="cef851d12b1b1cdb27f7d762e100e83a49f9966865db5dcb4b157bd1d868cfb14016dbcd8a55930340ca2b8c02f34d4d95560b0d3ea2545479b957df2fce17ed2f3fdfac59fea4a6723449e3ccbe96668a9cd9dcec73d183be66b31519cfe1d59f959f7e8df1eab073810637ae2aa8977952fe07e79bac1de6b9b1b2a341dbb1e823fd5cc2b6abee88860960d1a283d9ab1cc88c54ad310c94efe3c06611ee96ef35137a8cf6286c8954c0504f41098feed60b29a684389f2e6b495732323d46ee325a", 0xc3}, {&(0x7f0000000ac0)="40b4b2e59e03eb2fe8a338a44d640e860c0a9150419740bb3ab76256ad4f146c10c67a75216b61bbef2eedc57a76c00728d71fe1be09202f47a77f1bc31d4eac0eceae35477b7cb15b43fd5a415ca6950f10ab580c0f5d6fb0413000fa957606eebb809ea8253722d426ad3407409d96bdb02f98ea9e5736ee882e55f0b347878301ae08766dbb120f9121cec7e18c750373eceef1eda6695d9d8b04b2d156e8881ac2a9b673d62fec635b71cf85be9e06caaa4f70eb4ff73b8abe66e7861ced85a1a2d1c6ae059a7085f471ace6ae6d6a8f380795aaae42107913174b0ce4d1c0b93545fbf78537702cf26a7301e9baf7abe3a4c3db84ed9289", 0xfa}, {&(0x7f0000000bc0)="5e7827356e24d39cbedb4454cc8e6d17933900e8a361d46622d8fedc5ce2834bd52b156f8969fd363c55eb6e317a32", 0x2f}, {&(0x7f0000000c00)="d095d932f781", 0x6}, {&(0x7f0000000c40)="cbe0f379bad570d411cf79e90ba33d0ad74532ef2ed371918321050e8c2b7115d6371093", 0x24}], 0xa, &(0x7f0000000d40)=[{0x80, 0x112, 0x0, "792fbee14f20c0ee49f769b22c763105552a4a0a116da595e0277670a92ac655c1cc17f0a24b5f49016d5e44e7d6de8a72a0f2fda8512b6ac350d2ee8fa3a697216c17acb3b3d3303d7a8edca6e12d79363e59db52a24695d5db72de9d45d0e0ca7426297141ff5bf9b0f67c1c879f"}], 0x80}}, {{&(0x7f0000000e00)=@nfc_llcp={0x27, r2, 0x1, 0x4, 0x9, 0x6, "6b2de9dc72062d850bdbf0d317fa24441c27d6854000b6f53def8bcad94ae5ee71296a3438c45bd88778ab0fa0835c2104794dbe9c4e44825e668ead32c62e", 0x31}, 0x80, &(0x7f0000001240)=[{&(0x7f0000000e80)="6159a9733f3ac3403ed57a50c5778d111aceb2453607a412785b5ab90fdc5df7fc31cf70e8d5cfa62b2ef5066d9d1cc8432bf2169b360fb55825a15b64f77fcbeb5233e88d8753ea47a5b750a9e119df1bc4fe70f994907dea0f9f2bd438cccf46880cb9fc8377d3ae429fd0d4a792b7e31e9a6f3471d863b1b1b0cd8e618177dbef9902d2df807432a9cd257325d07ebcaead73ef07d2676b098caea96e8cb5aa7be8", 0xa3}, {&(0x7f0000000f40)="b66f91cbc6e3349ec8be492108d01628d55d3144b4ca68819117a6a0f99e15bb9dd52b6a41b74372c277f00480c6e7edee848ada703ce9ae9c717846b5752678bf15e37bd5d5ec9ec4b7f47143155749744443d3be7075c8da9097ecbeda1fc3f1ceccbe5a1da585e75e1c888f179813d7811b822946de338e214a1ab655a70b6ec7ea7637b79b9227332211a158dae50b0bfc179d2681a044ecce14c0cc4993b797407df0824fddb2553cbf6402617692f727517dfd839810ec51ad481f750821bcef00e5d73b67257792", 0xcb}, {&(0x7f0000001040)="470b6eeb8efd4ce6404dd65098323e5b5d7e684215de28e2d2e38ccb81ed5d3e97b206f7e4dcd3947b35f2e86e5ef90dbcf17530ac52e06a391c0e7fb352cd1431c31c895d206e6d7a560bdf6afdd4dc0154a36439d725e1439ec0eaf3f9424034ea9710b4c8af11970ee6e9a061457f21e19ee501a7621002becca256ca5b9239a863217e29246fead991fc38aac6c334", 0x91}, {&(0x7f0000001100)="0caae0cf3307b0db846b572a0709a064d4f94366f89659fe5841cdab3f6e991782d278673669fd686b2f08287f1240a68b464ebe3046a2c8b67f33a5d128a4a7594099fb8c0f4d76b3fd50dffa3cdb8760d431a93a4e8113afe633a43d25b6d1cca1a2437410a92aba03f37e271a1a991749b9f4b3985e21a8611dc76716b29a198404ba835d161a", 0x88}, {&(0x7f00000011c0)="da916d33c167b73a8cda52af781eb4d5eac5eb9c4d9c9c2c7c7594140eac6dcff3a14c6e5f3f4b7db4a205ec5507c00cca97a997cbcbfcf143140c0deefd056d094dd9b85516eaa4b4", 0x49}], 0x5, &(0x7f00000012c0)=[{0x100, 0x109, 0x7f, "2237688da3974ed43487f3480aee8d550b7e8f73761d3e915b5ef017f4ed440c580db397db1d407bddeb0a9dd4ccc0744851c41e577c7d0a6ce5a5dfcbce16b087d8bb0d4902d807b5992df224f2f20f6215d2db76af20a42fa03f272422601b3b5cf4fe963af9948aee456de77b18b10ec367a0e46372d770a3ec0ba745bbf2d72f21ad9d9c3efeccb814a6d253f6e880760331f44471599a8995e104104e005587dbcc803349b9f8ad7221aeb1b6aa855ac84ae42e3c57926d4905743e573a896a8ca7eb3782b7366158e2c49f1a9ab015868165bbf48d44fbc2085e5f2523b91bc87c7e02e65253d6069425c8"}, {0x30, 0x104, 0x13cf, "ce333fcc7798d091978938ca93c725ab43a68d156a572a50fb01905b"}, {0x38, 0x10f, 0x9, "8d0e27c9eb52c21f7a7975155cb187ae199202d8f21c7c318e6fd7abf2a2b8e712af1250bebd3e57"}, {0xc0, 0x1, 0xd, "475729963712f4cc54031220e17431400ab3ded70460a54d46d00614eef1364100bcc9cb91ce79915ce8e4167442244fba9cdf7a4350dfa08921ea6d882005de6aea3d3a512b28a5cb5e1eea746c9d244d99d8acc93b6d4a5f0d319b29a4820067ee8a2051197bef4ab23794a73efde27f1b52ce49d165486f0175d8eba056d16b26f45b1729af65415d0ec0beb03c69af72b45f155c20a7191ad6527aea24e01faeb96988a0ada9cdd266"}, {0xd0, 0x101, 0x3, "7784856dcca6c94748af4b5f22907e647348e0d30a8bfe6c38fd69d083fddd955b6340db839a9314e216e7d5b5ea6bb6464471069fc693bc07900745fc6a56e9e386c150a7e57dfdaf8a9e4cd4ddf3b5476f1483a05fb022613bfc7f7cdf1ddf410181216082a193589270d26511ceeff94eea5a9fdeb9acc90f77bddda8d468659a3906a439a934ccbea15a278284590e1ff55110f9a67ad122dee620836a2d761d1bb42d73f0c6ea1bbec97c3a17d4ed5dce669a69259ac0de7c"}, {0x70, 0x29, 0x9, "769e348ca16fbaefbe3ed9f117203b46309785893d95cf37de0802ea7da64dc1d312f2b3f5adc24afc4940196d6ea86ea2b21efb1e6e99175b2b8b36516454522d2ed98c351588fc853c3d2fb5dbc0f7363370338032029584"}, {0xb0, 0x117, 0xe, "631093e4fd39288bf100dc0e5c543830b2f16228cd6810842073b717c58ec73fb50e9438c269df9b029ef9edfd2aedf889011e63cb5710a2db41d49ed079b0880fb0ba217dc394858c48640eaa9ce14ef74caea202933a0f37443f118ddbbe8c4c59471c7d5f987eff3aeca39c1d99a6b84a287c6a3610b6bb7d2142721fc64e5565f82b2572a7543e787a3ba49e6cae5817d001df395ebc6e9e06caf17b"}], 0x418}}, {{&(0x7f0000001700)=@un=@abs={0x0, 0x0, 0x4e24}, 0x80, &(0x7f0000001840)=[{0x0}, {&(0x7f0000001780)="7f0d7230342b8f49046bac487e8fd742469af7c585ae64cc7bd90acb56a0fb855d2438ac4506269c178be6d56dd76eb531dbcbce0da37825dd36cf22d3c705eb58f6f19b12108e53c08944ddc2bc3aa464ab75941c069bd4a33ae6194d347304abf2921391ad86dc2fbbc7d8b9ca9393e55b494097f73d8591349187fdbedf97e5f95e0075e7d9c007b6ec64c2fe88344f55ee3837a5147a5414449df1c6a2f732ad003bd28cd614", 0xa8}], 0x2, &(0x7f0000001880)=[{0x30, 0x6, 0x7, "cb016234c13b89fbe3e569513c8b3446aa01263d7c4ac81a8625fc"}], 0x30}}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f00000018c0)="a364d2a168e1aef769fd8b83764338c66595437c265b212647bfbce13325d43940d096b52ea4b79ffa36838e1ec310aeafe3b03bcb2e89da694ec803789fa651474477775c7333994ea0bf81b2cbb3e27ccb66e5ffa48c351c90773af4c5e5da9ac6f58d2a1b610f4629a4ef19a4c024c3b36c0dcd54ac115cd42337fff486", 0x7f}, {0xfffffffffffffffe}, {&(0x7f0000001940)="9b3691b769fcee60f4b6ae8975444245ed04146ba30c1b061e1e4ae312da2e5ceaa064eedf1c8f6a97876f4dd3fe7cc86802ba7df0e22d69e2bf28874a534326c86c36b7f07e4acd15d52bf22e780ef3775430d6c3db20bd9e0018e1e92a4c7a15666c27aa1ff8831e04b132908f2a74764a1e34a64e48ed3f2a2d33a72c1435054be77e527c0d8af06f699c501d155bb0189cd0", 0x94}], 0x3, &(0x7f0000001a40)=[{0x88, 0x10e, 0x1, "7209c428dbf9cc187865e5c61c8e220187ebd41d5ace028d58b0b44bcc7c56f416570644a05f7ebef5c1e9c4660bc5cdc16b5ebfc04813c02a46ee871a37153e16758d1455ef34a893ccb0cc164b65780b743d6c52c30ef1a95e52c406d920c684e014b9dbe29567332016d9ba47c2dc1ac668"}, {0x28, 0x0, 0x7, "56f11e4d1143a40ff1003154b36425707f2a"}, {0x1010, 0x104, 0xe7a, "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"}, {0x30, 0x1e0, 0x3, "f4a7a20ea0e71b2156b353840c3531f2c1731b2413741073fe"}, {0x98, 0x109, 0x7, "fe1a2530feed408291fb53e21bc7e85677efbaf32ac4eac86ca3806c678014e2d8791627f713eb30fa2f2313d78e9e91a3da13fc0efb149f63992b98ffd218a8f54ebb1445df73b3768e9ca06932bc893d5a982c0abd8b6561b85e100915f9bb0b05c97af676b3818ed4f0be5f6e9757351d0d170a8db245c7d11ff141863d08872c"}, {0x50, 0x109, 0xffffffff, "cc8220a6e764534e5216a61ee82f5abb8a87d4d35126fbba0e40bff64711595182396a7177aa2e11abfc1d85a389ef85768d07cd729441692553036f"}, {0xa0, 0x112, 0xc, "6d38cd0a4c1ea61e5d179059746c699796b23daf838e2becedfcd16fb61b0eb518f7824c7c05586ffb75125515f83aec97dd9e735249621abb3069afbc83fcec6356246ee5fbe9f4f5ad46dd796842496bd6f2cb7e155bededb1cba4b1d7f9e26aa12130c04fdb25a9f71852280f14270760c11b572e51536a1dbe3fe7c7798d000ebbdfb03934e59818b7ad"}], 0x1278}}, {{&(0x7f0000002cc0)=@nl=@unspec, 0x80, &(0x7f0000002f40)=[{&(0x7f0000002d40)="e0431231c677aa8c9b5dace87a580222a0fd2380d10e2aafbdf1d19b799550c3292db1b2826b587e99386aa8795494425c9bd24212258322948c6031e86049c81c047e4a695beae2ff47f20e03acf753257d739f03e1f5cb53d8fca85f0f56d863bc2d6027225662545f94385c6fd9b966070ff5a21b37bf99aba2e3183a9c99cae3ede1c009b91ba1b284ec82d695ebeb898b0fb3ea9221acb046a97ba66dba6135c2fd56838f8c4300e3fadca284cf23ca550c7f2ead757a2038e851186fcb6a4c90a05d18", 0xc6}, {&(0x7f0000002e40)="beef10d0f0e6732023fbd509d32258055c06179c94e3a3dc73ef99ba6a16fe8c8f48823deaf723da2d6c799b1bab7f6a5874e1e32a82c806b0249f8c437b98f94acefd3c674789a8b9bd2959bd8a95bc958dd0fc51e6a1b444d8367cdf0a3f4e208afc337967686c1e7c6cc6c84acc3110c70649e38750cc9af56a6e1de20e88f645bf42f1754384280a47c460d19e648e1be2cc631b8faa5a9b81b60e6ea8111ba91b99a09694e1ebe9b729e1de5da15733f3a367ee6790a3d4921649029c13e8fdb9", 0xc3}], 0x2}}], 0x5, 0x40)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt(r3, 0x8, 0x6, &(0x7f00000030c0)="4fbd5b42c70149f7aae7ac4f0424f624ceac2536fe4b2c7e7d7b1fe9ecd6483787068d70b65c658e7188aaa730b78c71ba5b55a24e8074749e0d10f7a7", 0x3d)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_IOC_ASKUMOUNT(r3, 0x80049370, &(0x7f0000003100))
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000003140), 0x2, 0x0)
write$nci(r4, &(0x7f0000003180)=@NCI_OP_CORE_GENERIC_ERROR_NTF={0x0, 0x0, 0x3, 0x7, 0x8, 0x1}, 0x4)
ioctl$F2FS_IOC_DECOMPRESS_FILE(r3, 0xf517, 0x0)
r5 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f00000031c0), 0x2, 0x0)
write$apparmor_exec(r5, &(0x7f0000003200)={'exec ', 'gretap0\x00'}, 0xd)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCDELRT(r6, 0x890c, &(0x7f0000003240)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x2, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bpq0, 0x7, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default]})
shutdown(r6, 0x0)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f00000032c0), 0x4)
syz_usb_connect$uac1(0x4, 0xb8, &(0x7f0000003300)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xa6, 0x3, 0x1, 0x7, 0x80, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x8}, [@mixer_unit={0x5, 0x24, 0x4, 0x4, 0x6}, @input_terminal={0xc, 0x24, 0x2, 0x4, 0x201, 0x2, 0x80, 0x0, 0x5, 0x5}, @mixer_unit={0xa, 0x24, 0x4, 0x5, 0xff, "f1a408a372"}, @selector_unit={0xb, 0x24, 0x5, 0x5, 0x1, "0adb0169cb8f"}, @extension_unit={0xb, 0x24, 0x8, 0x1, 0xf, 0x5, "548695d5"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xf, 0x24, 0x2, 0x2, 0x7ff, 0x9, 0x3, "b572abc42739"}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x6, 0x8, 0x2, {0x7, 0x25, 0x1, 0x1, 0xfc, 0xe}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x3, 0x7, 0x5}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x6, 0x5, 0x81, {0x7, 0x25, 0x1, 0x80, 0xf, 0x7f}}}}}}}]}}, &(0x7f0000003500)={0xa, &(0x7f00000033c0)={0xa, 0x6, 0x201, 0x47, 0x1, 0x1, 0x60, 0x86}, 0x40, &(0x7f0000003400)={0x5, 0xf, 0x40, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x8, 0x7, 0x5}, @ssp_cap={0x10, 0x10, 0xa, 0xd, 0x1, 0x7, 0xf00f, 0x8001, [0x6060]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x57, 0x23, 0x6}, @generic={0x1a, 0x10, 0x4, "1b718e0401702786a7450fc2a295187c37290e818f8bbf"}]}, 0x1, [{0x8c, &(0x7f0000003440)=@string={0x8c, 0x3, "f7b7b4b6b1feac934802b7d3a0fa57ed13ee34542754b37682740f9d396eae0d9067d9286ae48195529932d57223900e281806ef71515ae1f852b3b91490e69e1ac2ab7704240f39ea61d92506ad49c045792eca74dc41b2e486e216eabfa8744c360ab3f415c84e35a2649ec094e041f81c40d71f769ee91de4c6fc48db0eef5b87b8a4c07369f0f1f3"}}]})
ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f0000003540)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4, @bcast, @rose={'rose', 0x0}, 0x4, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]})
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000003600)={0x2, &(0x7f00000035c0)=[{0x9, 0x1, 0x3, 0x7}, {0x529, 0x6a, 0x24, 0x9}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000003640)={<r9=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r8, 0x40082102, &(0x7f00000036c0)=r9)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000003780)=<r10=>0xffffffffffffffff)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f00000037c0)=@multiplanar_overlay={0x7, 0x1, 0x4, 0x100, 0x0, {0x77359400}, {0x0, 0xc, 0x2, 0xb, 0xd1, 0x87, "11c2ccd5"}, 0x101, 0x3, {&(0x7f0000003700)=[{0xfcb6, 0x7fffffff, {0x9}, 0x2}, {0x6, 0x9, {0xc5da}, 0x4}]}, 0x457, 0x0, r10})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r11, &(0x7f0000003ac0)={&(0x7f0000003840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000003a80)={&(0x7f0000003a00)={0x78, 0x0, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000845}, 0x8000)

18.084126439s ago: executing program 3 (id=4400):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000007040)={0x0, 0x0, &(0x7f0000007000)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x3, 0x0, 0x0, {0xa}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x50}}, 0x2400)

17.836868947s ago: executing program 3 (id=4401):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_DATA={0x4}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe0}, 0x1, 0x0, 0x60}, 0x0)

17.808445459s ago: executing program 3 (id=4402):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010023010000813499db01"], 0x1c}}, 0x0)
r3 = gettid()
r4 = syz_open_procfs(r3, &(0x7f0000000300)='sched\x00')
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/kexec_crash_loaded', 0x141a82, 0x0)
write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000000), 0xa)
preadv(r4, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x8, 0x0)
ioctl$VIDIOC_ENUMAUDIO(r4, 0xc0345641, &(0x7f00000000c0)={0x8, "3623edf7497abfee2b476df180641f1f754d1f16199e8616259d36acfd95227c", 0x3})
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='ocfs2\x00', 0x200000, 0x0)

17.616939279s ago: executing program 3 (id=4404):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@remote, 0x0, 0x3, 0x4e1d, 0x0, 0xa, 0x0, 0x80, 0x5e}, {0x0, 0x800, 0x0, 0x7, 0x6000000, 0x0, 0x3, 0x7}, {0x0, 0x0, 0x1}}}, 0xb8}}, 0x0)

17.588947s ago: executing program 3 (id=4406):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x2c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}}, 0x4000080)

17.470109956s ago: executing program 3 (id=4407):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x806, 0x4, 0x0, 0x7fff0006}]})
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000001c0)=ANY=[@ANYBLOB="00000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffff0000ef8a00007295000000000000040000000000000005000000000000000400000000000000000000000000000000000000000000000000000000000000020000000100000000000000000006000000000000000300"/256])
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x101801, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
poll(&(0x7f00000003c0)=[{r2}, {r1, 0x2084}], 0x2, 0x6)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x831)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
ioctl$SIOCGSTAMP(r5, 0x8906, &(0x7f00000002c0))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000013c0)={0x28, 0x24, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0x9, 0x0, 0x0, 0x1, [@generic="976b640868"]}, @nested={0x4, 0x1}]}, 0x28}], 0x1}, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
read(r3, &(0x7f0000000100)=""/159, 0xfffffe5a)

16.369182047s ago: executing program 0 (id=4411):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0xf0ff, 0x68, 0x18, &(0x7f00000004c0)={@flat=@weak_binder={0x77622a85, 0x1000, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x48, 0x2, 0x23}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x1, 0x48}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

16.248838322s ago: executing program 0 (id=4412):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r1, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
setsockopt$sock_int(r1, 0x1, 0x4, &(0x7f0000000540)=0x2, 0x4)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x80)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3cd2e7b3d6526bf5}}}, 0x68}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{0x0}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568", 0x8f}], 0x2}}, {{0x0, 0x700, &(0x7f0000000000)=[{0x0}], 0x1}}], 0x2, 0xc0)

16.177685333s ago: executing program 0 (id=4413):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x2c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}}, 0x4000080)

16.105182845s ago: executing program 0 (id=4414):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468"], 0xa8}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r1, 0xffffffffffffffff, 0x0)

15.270087807s ago: executing program 0 (id=4415):
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f00000002c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0], &(0x7f00000000c0)=[{}, {}, {}, {}, {}], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0], 0x5, 0x4, 0x3})
ioprio_set$pid(0x1, 0x0, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r1, 0x7dfff000)

15.116788191s ago: executing program 0 (id=4416):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x23}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "71b3b11c1b7a4eb7233b4fd3bb6a42e2"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b3e673fe5d751c75cb22b3ae92a8a702"}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000010)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x50, 0x0, 0x383c5801286e3cd6, 0x70bd25, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xb8, 0xc}}}}, [@NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7f}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0xfffffffe}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x1}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
r1 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x14, r1, 0x300, 0x70bd2b, 0x25dfdbfe}, 0x14}}, 0x10)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000006c0)={'wlan1\x00'})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000700)={0x0, 'bond0\x00', {0x4}, 0x40})
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r4 = dup(r3)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r4, 0x0)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r5, 0x0, 0x3, &(0x7f0000000000)=0x6, 0x4)
sendto$inet(r5, &(0x7f0000000480)="0c00433b8c0f3bedf6ba82cc8bce6eee4f00e360", 0x14, 0x814, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r6, 0x6, 0x23, &(0x7f0000000040), &(0x7f0000000200)=0x14)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000640)={[0x202a4, 0x7, 0x8000, 0x800000000004, 0x2, 0x5, 0xefffffffffffffff, 0xb, 0x0, 0x7fffffffffffffff, 0x0, 0x9, 0x3, 0x1, 0x8000000000000000, 0xff], 0x0, 0x41845})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r4, 0xc0d05640, &(0x7f0000000300)={0x1, @pix={0x7, 0x800, 0x34325258, 0x4, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6, 0x2, 0x6}})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a64000000060a0b0400000000000000000200000038000480340001800a000100696e6e657200000800000280080002400000004008000440000db118f0cc385fce2a58f1b2f5000039080001400000000008000340000000020900010073797a30000000000900020073797a3200000000140000001100010000000039bca939bd30fb9c545cbf5440e500000000000000000a"], 0x8c}}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
landlock_create_ruleset(&(0x7f0000000140)={0x4000}, 0x18, 0x0)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r4)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r9, 0x8, 0x70bd29, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x3}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0xc004)
socket$tipc(0x1e, 0x2, 0x0)

2.050559795s ago: executing program 33 (id=4407):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x806, 0x4, 0x0, 0x7fff0006}]})
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000001c0)=ANY=[@ANYBLOB="00000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffff0000ef8a00007295000000000000040000000000000005000000000000000400000000000000000000000000000000000000000000000000000000000000020000000100000000000000000006000000000000000300"/256])
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x101801, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
poll(&(0x7f00000003c0)=[{r2}, {r1, 0x2084}], 0x2, 0x6)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x831)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
ioctl$SIOCGSTAMP(r5, 0x8906, &(0x7f00000002c0))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000013c0)={0x28, 0x24, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0x9, 0x0, 0x0, 0x1, [@generic="976b640868"]}, @nested={0x4, 0x1}]}, 0x28}], 0x1}, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
read(r3, &(0x7f0000000100)=""/159, 0xfffffe5a)

0s ago: executing program 34 (id=4416):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x23}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "71b3b11c1b7a4eb7233b4fd3bb6a42e2"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b3e673fe5d751c75cb22b3ae92a8a702"}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000010)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x50, 0x0, 0x383c5801286e3cd6, 0x70bd25, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xb8, 0xc}}}}, [@NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7f}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0xfffffffe}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x1}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
r1 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x14, r1, 0x300, 0x70bd2b, 0x25dfdbfe}, 0x14}}, 0x10)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000006c0)={'wlan1\x00'})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000700)={0x0, 'bond0\x00', {0x4}, 0x40})
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r4 = dup(r3)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r4, 0x0)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r5, 0x0, 0x3, &(0x7f0000000000)=0x6, 0x4)
sendto$inet(r5, &(0x7f0000000480)="0c00433b8c0f3bedf6ba82cc8bce6eee4f00e360", 0x14, 0x814, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r6, 0x6, 0x23, &(0x7f0000000040), &(0x7f0000000200)=0x14)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000640)={[0x202a4, 0x7, 0x8000, 0x800000000004, 0x2, 0x5, 0xefffffffffffffff, 0xb, 0x0, 0x7fffffffffffffff, 0x0, 0x9, 0x3, 0x1, 0x8000000000000000, 0xff], 0x0, 0x41845})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r4, 0xc0d05640, &(0x7f0000000300)={0x1, @pix={0x7, 0x800, 0x34325258, 0x4, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6, 0x2, 0x6}})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a64000000060a0b0400000000000000000200000038000480340001800a000100696e6e657200000800000280080002400000004008000440000db118f0cc385fce2a58f1b2f5000039080001400000000008000340000000020900010073797a30000000000900020073797a3200000000140000001100010000000039bca939bd30fb9c545cbf5440e500000000000000000a"], 0x8c}}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
landlock_create_ruleset(&(0x7f0000000140)={0x4000}, 0x18, 0x0)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r4)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r9, 0x8, 0x70bd29, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x3}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0xc004)
socket$tipc(0x1e, 0x2, 0x0)

kernel console output (not intermixed with test programs):

978836][T22786]  dump_stack_lvl+0x189/0x250
[  475.978865][T22786]  ? __pfx____ratelimit+0x10/0x10
[  475.978895][T22786]  ? __pfx_dump_stack_lvl+0x10/0x10
[  475.978917][T22786]  ? __pfx__printk+0x10/0x10
[  475.978942][T22786]  ? fs_reclaim_acquire+0x7d/0x100
[  475.978978][T22786]  should_fail_ex+0x414/0x560
[  475.979010][T22786]  prepare_alloc_pages+0x213/0x610
[  475.979046][T22786]  __alloc_frozen_pages_noprof+0x123/0x370
[  475.979080][T22786]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  475.979119][T22786]  ? policy_nodemask+0x27c/0x720
[  475.979141][T22786]  ? __lock_acquire+0xab9/0xd20
[  475.979166][T22786]  alloc_pages_mpol+0x232/0x4a0
[  475.979197][T22786]  vma_alloc_folio_noprof+0xe4/0x200
[  475.979221][T22786]  ? page_table_check_set+0x18d/0x730
[  475.979248][T22786]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  475.979287][T22786]  folio_prealloc+0x30/0x180
[  475.979313][T22786]  __handle_mm_fault+0x2c88/0x5620
[  475.979354][T22786]  ? __pfx___handle_mm_fault+0x10/0x10
[  475.979391][T22786]  ? follow_page_pte+0x8d6/0x14b0
[  475.979425][T22786]  handle_mm_fault+0x40a/0x8e0
[  475.979460][T22786]  __get_user_pages+0x1af4/0x30b0
[  475.979520][T22786]  ? __pfx___get_user_pages+0x10/0x10
[  475.979540][T22786]  ? __gup_longterm_locked+0xbf7/0x15b0
[  475.979561][T22786]  ? down_read_killable+0x1d1/0x350
[  475.979580][T22786]  ? try_get_folio+0x633/0x660
[  475.979606][T22786]  __gup_longterm_locked+0xd66/0x15b0
[  475.979634][T22786]  ? try_grab_folio_fast+0x35b/0x4f0
[  475.979662][T22786]  ? sanity_check_pinned_pages+0x11c8/0x12c0
[  475.979702][T22786]  gup_fast_fallback+0x1cd4/0x2260
[  475.979763][T22786]  ? __pfx_gup_fast_fallback+0x10/0x10
[  475.979794][T22786]  ? rcu_is_watching+0x15/0xb0
[  475.979815][T22786]  ? is_valid_gup_args+0x11f/0x200
[  475.979840][T22786]  ? pin_user_pages_fast+0x4d/0xb0
[  475.979864][T22786]  rds_info_getsockopt+0x1fb/0x470
[  475.979893][T22786]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  475.979918][T22786]  ? __might_fault+0xb0/0x130
[  475.979945][T22786]  ? rds_getsockopt+0x2c6/0x500
[  475.979975][T22786]  do_sock_getsockopt+0x35d/0x650
[  475.980006][T22786]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  475.980031][T22786]  ? do_syscall_64+0x40/0x3b0
[  475.980050][T22786]  ? __fget_files+0x3a0/0x420
[  475.980077][T22786]  ? __fget_files+0x2a/0x420
[  475.980113][T22786]  __x64_sys_getsockopt+0x1a5/0x250
[  475.980136][T22786]  ? do_syscall_64+0x40/0x3b0
[  475.980158][T22786]  ? do_syscall_64+0x40/0x3b0
[  475.980181][T22786]  do_syscall_64+0xfa/0x3b0
[  475.980199][T22786]  ? lockdep_hardirqs_on+0x9c/0x150
[  475.980229][T22786]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.980249][T22786]  ? clear_bhb_loop+0x60/0xb0
[  475.980274][T22786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.980292][T22786] RIP: 0033:0x7f04ae58e929
[  475.980311][T22786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  475.980329][T22786] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  475.980353][T22786] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  475.980367][T22786] RDX: 0000000000002716 RSI: 0000000000000114 RDI: 0000000000000003
[  475.980380][T22786] RBP: 00007f04af4ae090 R08: 0000200000000000 R09: 0000000000000000
[  475.980394][T22786] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000002
[  475.980407][T22786] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  475.980440][T22786]  </TASK>
[  476.209903][T22797] /dev/rnullb0: Can't open blockdev
[  476.215003][T22790] sysfs: cannot create duplicate filename '/class/ieee80211/!�'
[  476.377080][T22790] CPU: 0 UID: 0 PID: 22790 Comm: syz.2.3580 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  476.377111][T22790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  476.377124][T22790] Call Trace:
[  476.377133][T22790]  <TASK>
[  476.377143][T22790]  dump_stack_lvl+0x189/0x250
[  476.377177][T22790]  ? __pfx_dump_stack_lvl+0x10/0x10
[  476.377202][T22790]  ? __pfx__printk+0x10/0x10
[  476.377226][T22790]  ? kernfs_path_from_node+0x2c/0x260
[  476.377247][T22790]  ? kernfs_path_from_node+0x2c/0x260
[  476.377264][T22790]  ? kernfs_path_from_node+0x2c/0x260
[  476.377286][T22790]  ? kernfs_path_from_node+0x22c/0x260
[  476.377304][T22790]  ? kernfs_path_from_node+0x2c/0x260
[  476.377328][T22790]  sysfs_warn_dup+0x8e/0xa0
[  476.377359][T22790]  sysfs_do_create_link_sd+0xc0/0x110
[  476.377393][T22790]  device_add_class_symlinks+0x1cf/0x240
[  476.377423][T22790]  device_add+0x475/0xb50
[  476.377451][T22790]  wiphy_register+0x199a/0x26b0
[  476.377498][T22790]  ? __pfx_wiphy_register+0x10/0x10
[  476.377526][T22790]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  476.377561][T22790]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  476.377593][T22790]  ieee80211_register_hw+0x33e1/0x4120
[  476.377643][T22790]  ? ieee80211_register_hw+0x1481/0x4120
[  476.377681][T22790]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  476.377713][T22790]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  476.377753][T22790]  ? __hrtimer_setup+0x187/0x210
[  476.377775][T22790]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  476.377805][T22790]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  476.377864][T22790]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  476.377885][T22790]  ? trace_kmalloc+0x1f/0xd0
[  476.377906][T22790]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  476.377931][T22790]  ? kstrndup+0xbf/0x160
[  476.377982][T22790]  hwsim_new_radio_nl+0xea4/0x1b10
[  476.378008][T22790]  ? __pfx___nla_validate_parse+0x10/0x10
[  476.378057][T22790]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  476.378096][T22790]  ? __nla_parse+0x40/0x60
[  476.378131][T22790]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  476.378163][T22790]  genl_family_rcv_msg_doit+0x212/0x300
[  476.378204][T22790]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  476.378252][T22790]  ? bpf_lsm_capable+0x9/0x20
[  476.378276][T22790]  ? security_capable+0x7e/0x2e0
[  476.378306][T22790]  genl_rcv_msg+0x60e/0x790
[  476.378345][T22790]  ? __pfx_genl_rcv_msg+0x10/0x10
[  476.378375][T22790]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  476.378416][T22790]  netlink_rcv_skb+0x205/0x470
[  476.378442][T22790]  ? __pfx_genl_rcv_msg+0x10/0x10
[  476.378475][T22790]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  476.378522][T22790]  ? down_read+0x1ad/0x2e0
[  476.378548][T22790]  genl_rcv+0x28/0x40
[  476.378575][T22790]  netlink_unicast+0x758/0x8d0
[  476.378613][T22790]  netlink_sendmsg+0x805/0xb30
[  476.378651][T22790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  476.378681][T22790]  ? aa_sock_msg_perm+0x94/0x160
[  476.378703][T22790]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  476.378733][T22790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  476.378760][T22790]  __sock_sendmsg+0x219/0x270
[  476.378785][T22790]  ____sys_sendmsg+0x505/0x830
[  476.378820][T22790]  ? __pfx_____sys_sendmsg+0x10/0x10
[  476.378859][T22790]  ? import_iovec+0x74/0xa0
[  476.378886][T22790]  ___sys_sendmsg+0x21f/0x2a0
[  476.378917][T22790]  ? __pfx____sys_sendmsg+0x10/0x10
[  476.379000][T22790]  ? __fget_files+0x2a/0x420
[  476.379029][T22790]  ? __fget_files+0x3a0/0x420
[  476.379073][T22790]  __x64_sys_sendmsg+0x19b/0x260
[  476.379104][T22790]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  476.379144][T22790]  ? rcu_is_watching+0x15/0xb0
[  476.379173][T22790]  ? do_syscall_64+0xbe/0x3b0
[  476.379197][T22790]  do_syscall_64+0xfa/0x3b0
[  476.379214][T22790]  ? lockdep_hardirqs_on+0x9c/0x150
[  476.379243][T22790]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.379261][T22790]  ? clear_bhb_loop+0x60/0xb0
[  476.379287][T22790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.379306][T22790] RIP: 0033:0x7fddba78e929
[  476.379323][T22790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.379342][T22790] RSP: 002b:00007fddbb58d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  476.379363][T22790] RAX: ffffffffffffffda RBX: 00007fddba9b5fa0 RCX: 00007fddba78e929
[  476.379375][T22790] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  476.379388][T22790] RBP: 00007fddba810b39 R08: 0000000000000000 R09: 0000000000000000
[  476.379400][T22790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.379413][T22790] R13: 0000000000000000 R14: 00007fddba9b5fa0 R15: 00007ffe160d2658
[  476.379446][T22790]  </TASK>
[  476.839619][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.913225][T22808] netlink: 348 bytes leftover after parsing attributes in process `syz.3.3585'.
[  477.090849][T22816] netlink: 57 bytes leftover after parsing attributes in process `syz.3.3590'.
[  477.175816][T22822] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3591'.
[  477.241211][T22824] /dev/rnullb0: Can't open blockdev
[  477.276798][T22829] /dev/rnullb0: Can't open blockdev
[  477.423466][T22835] /dev/rnullb0: Can't open blockdev
[  477.425037][T22836] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3595'.
[  477.510867][T22838] netlink: 348 bytes leftover after parsing attributes in process `syz.2.3597'.
[  477.810033][T22850] ieee802154 phy0 wpan0: encryption failed: -22
[  477.826764][T22852] /dev/rnullb0: Can't open blockdev
[  478.168723][T22863] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3606'.
[  478.235445][T22866] netlink: 348 bytes leftover after parsing attributes in process `syz.0.3608'.
[  478.252535][T22867] tmpfs: Unknown parameter 'indo64'
[  478.260655][T22867] /dev/rnullb0: Can't open blockdev
[  478.406369][T22875] sp0: Synchronizing with TNC
[  478.425724][T22875] syz.3.3611: attempt to access beyond end of device
[  478.425724][T22875] loop3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  478.451033][T22875] gfs2: error -5 reading superblock
[  478.458847][T22880] /dev/rnullb0: Can't open blockdev
[  478.476985][T22882] syz.3.3611: attempt to access beyond end of device
[  478.476985][T22882] loop3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  478.499164][T22882] gfs2: error -5 reading superblock
[  478.774850][T22899] netlink: 328 bytes leftover after parsing attributes in process `syz.0.3618'.
[  478.980677][T22911] /dev/rnullb0: Can't open blockdev
[  479.364978][T22929] netlink: 328 bytes leftover after parsing attributes in process `syz.2.3628'.
[  479.432321][T22930] netlink: 'syz.0.3629': attribute type 10 has an invalid length.
[  479.579770][T22937] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  479.602969][T22937] /dev/rnullb0: Can't open blockdev
[  479.767382][T22953] /dev/rnullb0: Can't open blockdev
[  479.800097][T22955] /dev/rnullb0: Can't open blockdev
[  479.946229][T22963] netlink: 328 bytes leftover after parsing attributes in process `syz.1.3638'.
[  480.089760][T22970] netlink: 'syz.2.3639': attribute type 12 has an invalid length.
[  480.107181][T22973] /dev/rnullb0: Can't open blockdev
[  480.715948][T23004] netlink: 'syz.0.3650': attribute type 9 has an invalid length.
[  480.980131][T23024] /dev/rnullb0: Can't open blockdev
[  481.217659][T23037] FAULT_INJECTION: forcing a failure.
[  481.217659][T23037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.273811][T23037] CPU: 1 UID: 0 PID: 23037 Comm: syz.2.3660 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  481.273843][T23037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  481.273855][T23037] Call Trace:
[  481.273864][T23037]  <TASK>
[  481.273872][T23037]  dump_stack_lvl+0x189/0x250
[  481.273901][T23037]  ? __pfx____ratelimit+0x10/0x10
[  481.273931][T23037]  ? __pfx_dump_stack_lvl+0x10/0x10
[  481.273953][T23037]  ? __pfx__printk+0x10/0x10
[  481.273976][T23037]  ? __might_fault+0xb0/0x130
[  481.274012][T23037]  should_fail_ex+0x414/0x560
[  481.274042][T23037]  _copy_from_user+0x2d/0xb0
[  481.274064][T23037]  snd_seq_oss_write+0x382/0x930
[  481.274103][T23037]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  481.274125][T23037]  ? common_file_perm+0x199/0x200
[  481.274152][T23037]  ? security_file_permission+0x75/0x290
[  481.274185][T23037]  odev_write+0x5a/0x80
[  481.274209][T23037]  ? __pfx_odev_write+0x10/0x10
[  481.274236][T23037]  vfs_write+0x27b/0xa90
[  481.274270][T23037]  ? __pfx_vfs_write+0x10/0x10
[  481.274297][T23037]  ? __fget_files+0x2a/0x420
[  481.274326][T23037]  ? __fget_files+0x2a/0x420
[  481.274352][T23037]  ? __fget_files+0x3a0/0x420
[  481.274378][T23037]  ? __fget_files+0x2a/0x420
[  481.274413][T23037]  ksys_write+0x145/0x250
[  481.274440][T23037]  ? __pfx_ksys_write+0x10/0x10
[  481.274462][T23037]  ? rcu_is_watching+0x15/0xb0
[  481.274491][T23037]  ? do_syscall_64+0xbe/0x3b0
[  481.274515][T23037]  do_syscall_64+0xfa/0x3b0
[  481.274533][T23037]  ? lockdep_hardirqs_on+0x9c/0x150
[  481.274560][T23037]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.274579][T23037]  ? clear_bhb_loop+0x60/0xb0
[  481.274611][T23037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.274629][T23037] RIP: 0033:0x7fddba78e929
[  481.274647][T23037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.274664][T23037] RSP: 002b:00007fddbb58d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  481.274686][T23037] RAX: ffffffffffffffda RBX: 00007fddba9b5fa0 RCX: 00007fddba78e929
[  481.274700][T23037] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  481.274712][T23037] RBP: 00007fddbb58d090 R08: 0000000000000000 R09: 0000000000000000
[  481.274725][T23037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  481.274736][T23037] R13: 0000000000000000 R14: 00007fddba9b5fa0 R15: 00007ffe160d2658
[  481.274767][T23037]  </TASK>
[  481.946214][T23060] __nla_validate_parse: 4 callbacks suppressed
[  481.946236][T23060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3669'.
[  481.992301][T23062] /dev/rnullb0: Can't open blockdev
[  482.079500][T23068] netlink: 328 bytes leftover after parsing attributes in process `syz.3.3672'.
[  482.147737][T23073] FAULT_INJECTION: forcing a failure.
[  482.147737][T23073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.193938][T23073] CPU: 0 UID: 0 PID: 23073 Comm: syz.1.3673 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  482.193969][T23073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  482.193982][T23073] Call Trace:
[  482.193990][T23073]  <TASK>
[  482.193999][T23073]  dump_stack_lvl+0x189/0x250
[  482.194027][T23073]  ? __pfx____ratelimit+0x10/0x10
[  482.194058][T23073]  ? __pfx_dump_stack_lvl+0x10/0x10
[  482.194081][T23073]  ? __pfx__printk+0x10/0x10
[  482.194104][T23073]  ? __might_fault+0xb0/0x130
[  482.194141][T23073]  should_fail_ex+0x414/0x560
[  482.194172][T23073]  _copy_from_user+0x2d/0xb0
[  482.194195][T23073]  snd_seq_oss_write+0x515/0x930
[  482.194233][T23073]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  482.194256][T23073]  ? common_file_perm+0x199/0x200
[  482.194281][T23073]  ? security_file_permission+0x75/0x290
[  482.194315][T23073]  odev_write+0x5a/0x80
[  482.194341][T23073]  ? __pfx_odev_write+0x10/0x10
[  482.194368][T23073]  vfs_write+0x27b/0xa90
[  482.194404][T23073]  ? __pfx_vfs_write+0x10/0x10
[  482.194432][T23073]  ? __fget_files+0x2a/0x420
[  482.194464][T23073]  ? __fget_files+0x2a/0x420
[  482.194492][T23073]  ? __fget_files+0x3a0/0x420
[  482.194518][T23073]  ? __fget_files+0x2a/0x420
[  482.194556][T23073]  ksys_write+0x145/0x250
[  482.194583][T23073]  ? __pfx_ksys_write+0x10/0x10
[  482.194606][T23073]  ? rcu_is_watching+0x15/0xb0
[  482.194634][T23073]  ? do_syscall_64+0xbe/0x3b0
[  482.194665][T23073]  do_syscall_64+0xfa/0x3b0
[  482.194683][T23073]  ? lockdep_hardirqs_on+0x9c/0x150
[  482.194712][T23073]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.194732][T23073]  ? clear_bhb_loop+0x60/0xb0
[  482.194757][T23073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.194776][T23073] RIP: 0033:0x7f0d8898e929
[  482.194795][T23073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.194812][T23073] RSP: 002b:00007f0d867f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  482.194845][T23073] RAX: ffffffffffffffda RBX: 00007f0d88bb5fa0 RCX: 00007f0d8898e929
[  482.194860][T23073] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  482.194872][T23073] RBP: 00007f0d867f6090 R08: 0000000000000000 R09: 0000000000000000
[  482.194885][T23073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  482.194897][T23073] R13: 0000000000000000 R14: 00007f0d88bb5fa0 R15: 00007ffd67073008
[  482.194929][T23073]  </TASK>
[  482.442479][    C0] vkms_vblank_simulate: vblank timer overrun
[  482.471764][T23079] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3675'.
[  482.521821][T23077] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  482.649724][T23077] syzkaller0: entered promiscuous mode
[  482.655891][T23077] syzkaller0: entered allmulticast mode
[  482.662255][T23077] tipc: Resetting bearer <eth:syzkaller0>
[  482.987135][T23074] tipc: Resetting bearer <eth:syzkaller0>
[  483.139785][T23101] tmpfs: Bad value for 'mpol'
[  483.413402][  T979] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[  483.636288][  T979] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  483.772756][  T979] usb 4-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config
[  483.809133][  T979] usb 4-1: config 255 has 0 interfaces, different from the descriptor's value: 1
[  483.818793][  T979] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  483.834123][  T979] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.689497][T23074] tipc: Disabling bearer <eth:syzkaller0>
[  485.701298][T23105] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  485.711009][T23105] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  485.720741][T23105] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  485.729903][T23107] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$���UL�vy��آ
�D��UD�w�}�zR'
[  485.741127][T23107] CPU: 1 UID: 0 PID: 23107 Comm: syz.2.3682 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  485.741155][T23107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  485.741168][T23107] Call Trace:
[  485.741178][T23107]  <TASK>
[  485.741187][T23107]  dump_stack_lvl+0x189/0x250
[  485.741219][T23107]  ? __pfx_dump_stack_lvl+0x10/0x10
[  485.741243][T23107]  ? __pfx__printk+0x10/0x10
[  485.741265][T23107]  ? kernfs_path_from_node+0x2c/0x260
[  485.741285][T23107]  ? kernfs_path_from_node+0x2c/0x260
[  485.741302][T23107]  ? kernfs_path_from_node+0x2c/0x260
[  485.741322][T23107]  ? kernfs_path_from_node+0x22c/0x260
[  485.741339][T23107]  ? kernfs_path_from_node+0x2c/0x260
[  485.741361][T23107]  sysfs_warn_dup+0x8e/0xa0
[  485.741390][T23107]  sysfs_do_create_link_sd+0xc0/0x110
[  485.741425][T23107]  device_add_class_symlinks+0x1cf/0x240
[  485.741454][T23107]  device_add+0x475/0xb50
[  485.741482][T23107]  wiphy_register+0x199a/0x26b0
[  485.741524][T23107]  ? __pfx_wiphy_register+0x10/0x10
[  485.741547][T23107]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  485.741583][T23107]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  485.741616][T23107]  ieee80211_register_hw+0x33e1/0x4120
[  485.741661][T23107]  ? ieee80211_register_hw+0x1481/0x4120
[  485.741700][T23107]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  485.741733][T23107]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  485.741778][T23107]  ? __hrtimer_setup+0x187/0x210
[  485.741798][T23107]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  485.741828][T23107]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  485.741886][T23107]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  485.741925][T23107]  ? trace_kmalloc+0x1f/0xd0
[  485.741946][T23107]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  485.741972][T23107]  ? kstrndup+0xbf/0x160
[  485.742012][T23107]  hwsim_new_radio_nl+0xea4/0x1b10
[  485.742037][T23107]  ? __pfx___nla_validate_parse+0x10/0x10
[  485.742085][T23107]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  485.742111][T23107]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  485.742142][T23107]  ? __nla_parse+0x40/0x60
[  485.742177][T23107]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  485.742207][T23107]  genl_family_rcv_msg_doit+0x212/0x300
[  485.742247][T23107]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  485.742295][T23107]  ? bpf_lsm_capable+0x9/0x20
[  485.742318][T23107]  ? security_capable+0x7e/0x2e0
[  485.742348][T23107]  genl_rcv_msg+0x60e/0x790
[  485.742386][T23107]  ? __pfx_genl_rcv_msg+0x10/0x10
[  485.742416][T23107]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  485.742458][T23107]  netlink_rcv_skb+0x205/0x470
[  485.742481][T23107]  ? __pfx_genl_rcv_msg+0x10/0x10
[  485.742512][T23107]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  485.742560][T23107]  ? down_read+0x1ad/0x2e0
[  485.742584][T23107]  genl_rcv+0x28/0x40
[  485.742613][T23107]  netlink_unicast+0x758/0x8d0
[  485.742649][T23107]  netlink_sendmsg+0x805/0xb30
[  485.742687][T23107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  485.742717][T23107]  ? aa_sock_msg_perm+0x94/0x160
[  485.742741][T23107]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  485.742768][T23107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  485.742792][T23107]  __sock_sendmsg+0x219/0x270
[  485.742819][T23107]  ____sys_sendmsg+0x505/0x830
[  485.742854][T23107]  ? __pfx_____sys_sendmsg+0x10/0x10
[  485.742902][T23107]  ? import_iovec+0x74/0xa0
[  485.742929][T23107]  ___sys_sendmsg+0x21f/0x2a0
[  485.742961][T23107]  ? __pfx____sys_sendmsg+0x10/0x10
[  485.742993][T23107]  ? rcu_read_unlock_special+0x3fe/0x4c0
[  485.743057][T23107]  ? __fget_files+0x2a/0x420
[  485.743084][T23107]  ? __fget_files+0x3a0/0x420
[  485.743125][T23107]  __x64_sys_sendmsg+0x19b/0x260
[  485.743148][T23107]  ? schedule+0x165/0x360
[  485.743175][T23107]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  485.743226][T23107]  ? do_syscall_64+0xbe/0x3b0
[  485.743252][T23107]  do_syscall_64+0xfa/0x3b0
[  485.743274][T23107]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  485.743293][T23107]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  485.743312][T23107]  ? clear_bhb_loop+0x60/0xb0
[  485.743336][T23107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  485.743356][T23107] RIP: 0033:0x7fddba78e929
[  485.743375][T23107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  485.743394][T23107] RSP: 002b:00007fddbb58d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  485.743417][T23107] RAX: ffffffffffffffda RBX: 00007fddba9b5fa0 RCX: 00007fddba78e929
[  485.743433][T23107] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  485.743447][T23107] RBP: 00007fddba810b39 R08: 0000000000000000 R09: 0000000000000000
[  485.743460][T23107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  485.743472][T23107] R13: 0000000000000000 R14: 00007fddba9b5fa0 R15: 00007ffe160d2658
[  485.743509][T23107]  </TASK>
[  486.354719][T23120] netlink: 'syz.0.3684': attribute type 10 has an invalid length.
[  486.363737][T23120] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3684'.
[  486.380925][T23120] geneve0: entered promiscuous mode
[  486.399101][  T979] usb 4-1: string descriptor 0 read error: -71
[  486.436399][T23118] netlink: 328 bytes leftover after parsing attributes in process `syz.1.3683'.
[  486.463647][  T979] usb 4-1: USB disconnect, device number 76
[  486.570535][T23139] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  486.675701][T23149] FAULT_INJECTION: forcing a failure.
[  486.675701][T23149] name failslab, interval 1, probability 0, space 0, times 0
[  486.689647][T23149] CPU: 1 UID: 0 PID: 23149 Comm: syz.1.3690 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  486.689674][T23149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  486.689686][T23149] Call Trace:
[  486.689694][T23149]  <TASK>
[  486.689702][T23149]  dump_stack_lvl+0x189/0x250
[  486.689729][T23149]  ? __pfx____ratelimit+0x10/0x10
[  486.689757][T23149]  ? __pfx_dump_stack_lvl+0x10/0x10
[  486.689779][T23149]  ? __pfx__printk+0x10/0x10
[  486.689803][T23149]  ? __pfx___might_resched+0x10/0x10
[  486.689825][T23149]  ? fs_reclaim_acquire+0x7d/0x100
[  486.689855][T23149]  should_fail_ex+0x414/0x560
[  486.689883][T23149]  should_failslab+0xa8/0x100
[  486.689909][T23149]  kmem_cache_alloc_noprof+0x73/0x3c0
[  486.689929][T23149]  ? security_inode_alloc+0x39/0x330
[  486.689957][T23149]  security_inode_alloc+0x39/0x330
[  486.689981][T23149]  inode_init_always_gfp+0x9ed/0xdc0
[  486.690015][T23149]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[  486.690032][T23149]  alloc_inode+0x82/0x1b0
[  486.690057][T23149]  ? __pfx_mqueue_fill_super+0x10/0x10
[  486.690077][T23149]  new_inode+0x22/0x170
[  486.690103][T23149]  ? sget_fc+0x962/0xa40
[  486.690123][T23149]  ? __pfx_mqueue_fill_super+0x10/0x10
[  486.690143][T23149]  mqueue_fill_super+0xb8/0x340
[  486.690162][T23149]  ? __pfx_mqueue_fill_super+0x10/0x10
[  486.690183][T23149]  get_tree_nodev+0xbb/0x150
[  486.690210][T23149]  vfs_get_tree+0x8f/0x2b0
[  486.690239][T23149]  fc_mount+0x1c/0xb0
[  486.690265][T23149]  mq_init_ns+0x3a1/0x510
[  486.690298][T23149]  copy_ipcs+0x2f6/0x4f0
[  486.690323][T23149]  create_new_namespaces+0x218/0x720
[  486.690351][T23149]  ? security_capable+0x7e/0x2e0
[  486.690380][T23149]  unshare_nsproxy_namespaces+0x11c/0x170
[  486.690406][T23149]  ksys_unshare+0x4c8/0x8c0
[  486.690439][T23149]  ? __pfx_ksys_unshare+0x10/0x10
[  486.690466][T23149]  ? __pfx_ksys_write+0x10/0x10
[  486.690504][T23149]  __x64_sys_unshare+0x38/0x50
[  486.690529][T23149]  do_syscall_64+0xfa/0x3b0
[  486.690547][T23149]  ? lockdep_hardirqs_on+0x9c/0x150
[  486.690590][T23149]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.690609][T23149]  ? clear_bhb_loop+0x60/0xb0
[  486.690634][T23149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.690653][T23149] RIP: 0033:0x7f0d8898e929
[  486.690671][T23149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.690688][T23149] RSP: 002b:00007f0d867f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  486.690711][T23149] RAX: ffffffffffffffda RBX: 00007f0d88bb5fa0 RCX: 00007f0d8898e929
[  486.690725][T23149] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000
[  486.690738][T23149] RBP: 00007f0d867f6090 R08: 0000000000000000 R09: 0000000000000000
[  486.690751][T23149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  486.690764][T23149] R13: 0000000000000001 R14: 00007f0d88bb5fa0 R15: 00007ffd67073008
[  486.690798][T23149]  </TASK>
[  486.979654][ T5836] usb 1-1: new full-speed USB device number 59 using dummy_hcd
[  487.036331][T23153] netlink: 328 bytes leftover after parsing attributes in process `syz.2.3691'.
[  487.113119][ T5836] usb 1-1: device descriptor read/64, error -71
[  487.276422][T23166] netlink: 324 bytes leftover after parsing attributes in process `syz.3.3696'.
[  487.352871][ T5836] usb 1-1: new full-speed USB device number 60 using dummy_hcd
[  487.369063][T23168] netlink: 'syz.2.3698': attribute type 10 has an invalid length.
[  487.387985][T23168] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3698'.
[  487.492754][ T5836] usb 1-1: device descriptor read/64, error -71
[  487.522978][T23180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3702'.
[  487.532002][T23180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3702'.
[  487.603205][ T5836] usb usb1-port1: attempt power cycle
[  487.642711][ T5879] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[  487.742255][T23192] netlink: 324 bytes leftover after parsing attributes in process `syz.2.3707'.
[  487.797537][ T5879] usb 4-1: Using ep0 maxpacket: 32
[  487.808926][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  487.826912][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  487.838663][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  487.853531][ T5879] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  487.864245][ T5879] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.882069][ T5879] usb 4-1: config 0 descriptor??
[  487.894662][T23170] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  487.912385][ T5879] hub 4-1:0.0: USB hub found
[  487.959065][ T5836] usb 1-1: new full-speed USB device number 61 using dummy_hcd
[  487.998513][ T5836] usb 1-1: device descriptor read/8, error -71
[  488.124341][T23170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  488.143219][T23170] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  488.159070][T23170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  488.174250][T23170] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  488.193579][ T5879] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  488.252689][ T5836] usb 1-1: new full-speed USB device number 62 using dummy_hcd
[  488.273327][ T5836] usb 1-1: device descriptor read/8, error -71
[  488.284085][ T5829] Bluetooth: hci1: command 0x0406 tx timeout
[  488.388797][ T5836] usb usb1-port1: unable to enumerate USB device
[  488.420516][ T5879] usbhid 4-1:0.0: can't add hid device: -32
[  488.439844][ T5879] usbhid 4-1:0.0: probe with driver usbhid failed with error -32
[  488.460276][T23235] netlink: 324 bytes leftover after parsing attributes in process `syz.2.3717'.
[  488.483356][ T5879] usb 4-1: USB disconnect, device number 77
[  488.863535][T23258] loop6: detected capacity change from 7 to 0
[  489.433677][T23269] netlink: 324 bytes leftover after parsing attributes in process `syz.3.3727'.
[  490.154770][T23298] netlink: 324 bytes leftover after parsing attributes in process `syz.3.3737'.
[  490.614564][T23341] loop6: detected capacity change from 0 to 7
[  490.633878][T23341]  loop6: [POWERTEC] p1
[  490.641469][T23341] loop6: p1 size 1680801792 extends beyond EOD, truncated
[  490.820148][ T6064] udevd[6064]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  490.983382][T23378] netlink: 324 bytes leftover after parsing attributes in process `syz.3.3748'.
[  491.117346][T23385] /dev/rnullb0: Can't open blockdev
[  491.849036][T23412] /dev/sg0: Can't lookup blockdev
[  491.938917][T23414] binder_alloc: 23413: binder_alloc_buf size 81152 failed, no address space
[  491.952133][T23414] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 16384 (num: 1 largest: 16384)
[  492.367388][T23434] kvm: user requested TSC rate below hardware speed
[  492.676918][T23454] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  493.550867][T23498] /dev/rnullb0: Can't open blockdev
[  493.680912][T23501] __nla_validate_parse: 1 callbacks suppressed
[  493.680935][T23501] netlink: 396 bytes leftover after parsing attributes in process `syz.3.3784'.
[  494.233863][T23535] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  494.247541][T23537] netlink: 'syz.0.3793': attribute type 10 has an invalid length.
[  494.252338][T23535] /dev/rnullb0: Can't open blockdev
[  494.255841][T23537] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3793'.
[  494.275195][T23538] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  494.318350][T23538] /dev/rnullb0: Can't open blockdev
[  495.227247][T23596] /dev/rnullb0: Can't open blockdev
[  496.055482][T23638] netlink: 312 bytes leftover after parsing attributes in process `syz.2.3814'.
[  496.148084][T23644] Invalid logical block size (117440512)
[  496.766085][T23692] /dev/rnullb0: Can't open blockdev
[  497.222010][ T5836] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[  497.381522][ T5836] usb 4-1: Using ep0 maxpacket: 32
[  497.405682][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  497.424451][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  497.425330][T23717] binder: Unknown parameter 'permit_directio'
[  497.438574][ T5836] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  497.457336][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.477147][ T5836] usb 4-1: config 0 descriptor??
[  497.498102][ T5836] hub 4-1:0.0: USB hub found
[  497.717926][ T5836] hub 4-1:0.0: config failed, can't read hub descriptor (err -90)
[  497.950618][ T5836] usbhid 4-1:0.0: can't add hid device: -71
[  497.968104][ T5836] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  498.003111][ T5836] usb 4-1: USB disconnect, device number 78
[  498.290973][T23762] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3839'.
[  498.818734][T23779] /dev/rnullb0: Can't open blockdev
[  498.989057][T23792] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3850'.
[  499.009450][T23792] openvswitch: netlink: Missing key (keys=40, expected=100)
[  500.518153][T23865] binder: 23864:23865 ioctl 40046205 0 returned -22
[  501.227843][T23913] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$���UL�vy��آ
�D��UD�w�}�zR'
[  501.239761][T23913] CPU: 1 UID: 0 PID: 23913 Comm: syz.1.3878 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  501.239794][T23913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  501.239806][T23913] Call Trace:
[  501.239822][T23913]  <TASK>
[  501.239831][T23913]  dump_stack_lvl+0x189/0x250
[  501.239865][T23913]  ? __pfx_dump_stack_lvl+0x10/0x10
[  501.239888][T23913]  ? __pfx__printk+0x10/0x10
[  501.239912][T23913]  ? kernfs_path_from_node+0x2c/0x260
[  501.239933][T23913]  ? kernfs_path_from_node+0x2c/0x260
[  501.239948][T23913]  ? kernfs_path_from_node+0x2c/0x260
[  501.239970][T23913]  ? kernfs_path_from_node+0x22c/0x260
[  501.239998][T23913]  ? kernfs_path_from_node+0x2c/0x260
[  501.240022][T23913]  sysfs_warn_dup+0x8e/0xa0
[  501.240052][T23913]  sysfs_do_create_link_sd+0xc0/0x110
[  501.240082][T23913]  device_add_class_symlinks+0x1cf/0x240
[  501.240118][T23913]  device_add+0x475/0xb50
[  501.240146][T23913]  wiphy_register+0x199a/0x26b0
[  501.240191][T23913]  ? __pfx_wiphy_register+0x10/0x10
[  501.240214][T23913]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  501.240251][T23913]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  501.240280][T23913]  ieee80211_register_hw+0x33e1/0x4120
[  501.240326][T23913]  ? ieee80211_register_hw+0x1481/0x4120
[  501.240363][T23913]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  501.240397][T23913]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  501.240446][T23913]  ? __hrtimer_setup+0x187/0x210
[  501.240468][T23913]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  501.240497][T23913]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  501.240556][T23913]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  501.240584][T23913]  ? trace_kmalloc+0x1f/0xd0
[  501.240604][T23913]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  501.240629][T23913]  ? kstrndup+0xbf/0x160
[  501.240672][T23913]  hwsim_new_radio_nl+0xea4/0x1b10
[  501.240705][T23913]  ? __pfx___nla_validate_parse+0x10/0x10
[  501.240759][T23913]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  501.240797][T23913]  ? __nla_parse+0x40/0x60
[  501.240832][T23913]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  501.240864][T23913]  genl_family_rcv_msg_doit+0x212/0x300
[  501.240903][T23913]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  501.240948][T23913]  ? bpf_lsm_capable+0x9/0x20
[  501.240972][T23913]  ? security_capable+0x7e/0x2e0
[  501.241000][T23913]  genl_rcv_msg+0x60e/0x790
[  501.241037][T23913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  501.241063][T23913]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  501.241102][T23913]  netlink_rcv_skb+0x205/0x470
[  501.241129][T23913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  501.241160][T23913]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  501.241206][T23913]  ? down_read+0x1ad/0x2e0
[  501.241234][T23913]  genl_rcv+0x28/0x40
[  501.241262][T23913]  netlink_unicast+0x758/0x8d0
[  501.241300][T23913]  netlink_sendmsg+0x805/0xb30
[  501.241340][T23913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  501.241375][T23913]  ? aa_sock_msg_perm+0x94/0x160
[  501.241399][T23913]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  501.241425][T23913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  501.241449][T23913]  __sock_sendmsg+0x219/0x270
[  501.241473][T23913]  ____sys_sendmsg+0x505/0x830
[  501.241504][T23913]  ? __pfx_____sys_sendmsg+0x10/0x10
[  501.241542][T23913]  ? import_iovec+0x74/0xa0
[  501.241568][T23913]  ___sys_sendmsg+0x21f/0x2a0
[  501.241599][T23913]  ? __pfx____sys_sendmsg+0x10/0x10
[  501.241669][T23913]  ? __fget_files+0x2a/0x420
[  501.241695][T23913]  ? __fget_files+0x3a0/0x420
[  501.241732][T23913]  __x64_sys_sendmsg+0x19b/0x260
[  501.241771][T23913]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  501.241812][T23913]  ? rcu_is_watching+0x15/0xb0
[  501.241843][T23913]  ? do_syscall_64+0xbe/0x3b0
[  501.241869][T23913]  do_syscall_64+0xfa/0x3b0
[  501.241889][T23913]  ? lockdep_hardirqs_on+0x9c/0x150
[  501.241920][T23913]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.241941][T23913]  ? clear_bhb_loop+0x60/0xb0
[  501.241967][T23913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.241987][T23913] RIP: 0033:0x7f0d8898e929
[  501.242007][T23913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.242024][T23913] RSP: 002b:00007f0d867f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  501.242048][T23913] RAX: ffffffffffffffda RBX: 00007f0d88bb5fa0 RCX: 00007f0d8898e929
[  501.242063][T23913] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  501.242077][T23913] RBP: 00007f0d88a10b39 R08: 0000000000000000 R09: 0000000000000000
[  501.242090][T23913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  501.242102][T23913] R13: 0000000000000000 R14: 00007f0d88bb5fa0 R15: 00007ffd67073008
[  501.242138][T23913]  </TASK>
[  501.700896][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  502.784096][ T5879] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  502.951874][ T5879] usb 3-1: Using ep0 maxpacket: 8
[  502.963961][ T5879] usb 3-1: unable to get BOS descriptor or descriptor too short
[  502.973724][ T5879] usb 3-1: no configurations
[  502.978775][ T5879] usb 3-1: can't read configurations, error -22
[  504.018729][T24026] FAULT_INJECTION: forcing a failure.
[  504.018729][T24026] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  504.059888][T24026] CPU: 0 UID: 0 PID: 24026 Comm: syz.1.3906 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  504.059920][T24026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  504.059932][T24026] Call Trace:
[  504.059940][T24026]  <TASK>
[  504.059950][T24026]  dump_stack_lvl+0x189/0x250
[  504.059979][T24026]  ? __pfx____ratelimit+0x10/0x10
[  504.060010][T24026]  ? __pfx_dump_stack_lvl+0x10/0x10
[  504.060039][T24026]  ? __pfx__printk+0x10/0x10
[  504.060075][T24026]  should_fail_ex+0x414/0x560
[  504.060104][T24026]  _copy_to_user+0x31/0xb0
[  504.060127][T24026]  simple_read_from_buffer+0xe1/0x170
[  504.060161][T24026]  proc_fail_nth_read+0x1df/0x250
[  504.060185][T24026]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  504.060207][T24026]  ? rw_verify_area+0x258/0x650
[  504.060231][T24026]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  504.060251][T24026]  vfs_read+0x1fd/0x980
[  504.060280][T24026]  ? __pfx___mutex_lock+0x10/0x10
[  504.060296][T24026]  ? __pfx_vfs_read+0x10/0x10
[  504.060320][T24026]  ? __fget_files+0x2a/0x420
[  504.060353][T24026]  ? __fget_files+0x3a0/0x420
[  504.060378][T24026]  ? __fget_files+0x2a/0x420
[  504.060425][T24026]  ksys_read+0x145/0x250
[  504.060454][T24026]  ? __pfx_ksys_read+0x10/0x10
[  504.060474][T24026]  ? rcu_is_watching+0x15/0xb0
[  504.060503][T24026]  ? do_syscall_64+0xbe/0x3b0
[  504.060526][T24026]  do_syscall_64+0xfa/0x3b0
[  504.060544][T24026]  ? lockdep_hardirqs_on+0x9c/0x150
[  504.060572][T24026]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.060592][T24026]  ? clear_bhb_loop+0x60/0xb0
[  504.060616][T24026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.060635][T24026] RIP: 0033:0x7f0d8898d33c
[  504.060655][T24026] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  504.060671][T24026] RSP: 002b:00007f0d867f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  504.060695][T24026] RAX: ffffffffffffffda RBX: 00007f0d88bb5fa0 RCX: 00007f0d8898d33c
[  504.060709][T24026] RDX: 000000000000000f RSI: 00007f0d867f60a0 RDI: 0000000000000004
[  504.060722][T24026] RBP: 00007f0d867f6090 R08: 0000000000000000 R09: 0000000000000000
[  504.060735][T24026] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000002
[  504.060748][T24026] R13: 0000000000000000 R14: 00007f0d88bb5fa0 R15: 00007ffd67073008
[  504.060781][T24026]  </TASK>
[  504.292704][    C0] vkms_vblank_simulate: vblank timer overrun
[  504.678797][T24063] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3912'.
[  504.835033][T24066] sysfs: cannot create duplicate filename '/class/ieee80211/!�'
[  504.880600][T24066] CPU: 1 UID: 0 PID: 24066 Comm: syz.1.3913 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  504.880633][T24066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  504.880646][T24066] Call Trace:
[  504.880656][T24066]  <TASK>
[  504.880666][T24066]  dump_stack_lvl+0x189/0x250
[  504.880700][T24066]  ? __pfx_dump_stack_lvl+0x10/0x10
[  504.880725][T24066]  ? __pfx__printk+0x10/0x10
[  504.880749][T24066]  ? kernfs_path_from_node+0x2c/0x260
[  504.880770][T24066]  ? kernfs_path_from_node+0x2c/0x260
[  504.880788][T24066]  ? kernfs_path_from_node+0x2c/0x260
[  504.880808][T24066]  ? kernfs_path_from_node+0x22c/0x260
[  504.880826][T24066]  ? kernfs_path_from_node+0x2c/0x260
[  504.880849][T24066]  sysfs_warn_dup+0x8e/0xa0
[  504.880879][T24066]  sysfs_do_create_link_sd+0xc0/0x110
[  504.880913][T24066]  device_add_class_symlinks+0x1cf/0x240
[  504.880952][T24066]  device_add+0x475/0xb50
[  504.880982][T24066]  wiphy_register+0x199a/0x26b0
[  504.881027][T24066]  ? __pfx_wiphy_register+0x10/0x10
[  504.881051][T24066]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  504.881085][T24066]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  504.881120][T24066]  ieee80211_register_hw+0x33e1/0x4120
[  504.881169][T24066]  ? ieee80211_register_hw+0x1481/0x4120
[  504.881205][T24066]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  504.881238][T24066]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  504.881287][T24066]  ? __hrtimer_setup+0x187/0x210
[  504.881309][T24066]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  504.881338][T24066]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  504.881401][T24066]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  504.881485][T24066]  ? trace_kmalloc+0x1f/0xd0
[  504.881507][T24066]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  504.881533][T24066]  ? kstrndup+0xbf/0x160
[  504.881573][T24066]  hwsim_new_radio_nl+0xea4/0x1b10
[  504.881598][T24066]  ? __pfx___nla_validate_parse+0x10/0x10
[  504.881642][T24066]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  504.881679][T24066]  ? __nla_parse+0x40/0x60
[  504.881713][T24066]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  504.881745][T24066]  genl_family_rcv_msg_doit+0x212/0x300
[  504.881786][T24066]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  504.881832][T24066]  ? bpf_lsm_capable+0x9/0x20
[  504.881854][T24066]  ? security_capable+0x7e/0x2e0
[  504.881884][T24066]  genl_rcv_msg+0x60e/0x790
[  504.881917][T24066]  ? __pfx_genl_rcv_msg+0x10/0x10
[  504.881945][T24066]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  504.881981][T24066]  netlink_rcv_skb+0x205/0x470
[  504.882005][T24066]  ? __pfx_genl_rcv_msg+0x10/0x10
[  504.882034][T24066]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  504.882079][T24066]  ? down_read+0x1ad/0x2e0
[  504.882104][T24066]  genl_rcv+0x28/0x40
[  504.882129][T24066]  netlink_unicast+0x758/0x8d0
[  504.882168][T24066]  netlink_sendmsg+0x805/0xb30
[  504.882205][T24066]  ? __pfx_netlink_sendmsg+0x10/0x10
[  504.882237][T24066]  ? aa_sock_msg_perm+0x94/0x160
[  504.882262][T24066]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  504.882292][T24066]  ? __pfx_netlink_sendmsg+0x10/0x10
[  504.882321][T24066]  __sock_sendmsg+0x219/0x270
[  504.882348][T24066]  ____sys_sendmsg+0x505/0x830
[  504.882392][T24066]  ? __pfx_____sys_sendmsg+0x10/0x10
[  504.882439][T24066]  ? import_iovec+0x74/0xa0
[  504.882463][T24066]  ___sys_sendmsg+0x21f/0x2a0
[  504.882493][T24066]  ? __pfx____sys_sendmsg+0x10/0x10
[  504.882563][T24066]  ? __fget_files+0x2a/0x420
[  504.882594][T24066]  ? __fget_files+0x3a0/0x420
[  504.882637][T24066]  __x64_sys_sendmsg+0x19b/0x260
[  504.882666][T24066]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  504.882706][T24066]  ? rcu_is_watching+0x15/0xb0
[  504.882735][T24066]  ? do_syscall_64+0xbe/0x3b0
[  504.882759][T24066]  do_syscall_64+0xfa/0x3b0
[  504.882777][T24066]  ? lockdep_hardirqs_on+0x9c/0x150
[  504.882808][T24066]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.882829][T24066]  ? clear_bhb_loop+0x60/0xb0
[  504.882853][T24066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.882871][T24066] RIP: 0033:0x7f0d8898e929
[  504.882891][T24066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  504.882906][T24066] RSP: 002b:00007f0d867f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  504.882926][T24066] RAX: ffffffffffffffda RBX: 00007f0d88bb5fa0 RCX: 00007f0d8898e929
[  504.882941][T24066] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  504.882953][T24066] RBP: 00007f0d88a10b39 R08: 0000000000000000 R09: 0000000000000000
[  504.882966][T24066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  504.882978][T24066] R13: 0000000000000000 R14: 00007f0d88bb5fa0 R15: 00007ffd67073008
[  504.883010][T24066]  </TASK>
[  505.619692][T24087] netlink: 57 bytes leftover after parsing attributes in process `syz.0.3919'.
[  505.693335][T24091] /dev/rnullb0: Can't open blockdev
[  506.278351][T24097] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3922'.
[  506.463351][T24146] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3929'.
[  506.954956][T24163] Set syz1 is full, maxelem 1038 reached
[  507.035931][T24168] /dev/rnullb0: Can't open blockdev
[  507.394344][ T5951] usb 1-1: new high-speed USB device number 63 using dummy_hcd
[  507.570515][T24188] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3941'.
[  507.584020][ T5951] usb 1-1: Using ep0 maxpacket: 8
[  507.598783][ T5951] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  507.609659][ T5951] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.645274][ T5951] usb 1-1: Product: syz
[  507.656077][ T5951] usb 1-1: Manufacturer: syz
[  507.669390][ T5951] usb 1-1: SerialNumber: syz
[  507.699795][ T5951] usb 1-1: config 0 descriptor??
[  507.922371][ T5951] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  507.927780][T24222] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3944'.
[  508.372944][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[  508.381892][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  508.442523][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  508.515636][T24253] loop6: detected capacity change from 0 to 1
[  508.543563][T24253] Dev loop6: unable to read RDB block 1
[  508.549185][T24253]  loop6: unable to read partition table
[  508.578907][T24253] loop6: partition table beyond EOD, truncated
[  508.617985][T24253] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  508.782911][T24269] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  508.794400][T24269] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  508.814396][T24269] /dev/rnullb0: Can't open blockdev
[  509.131999][T24241] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3951'.
[  509.165532][ T5951] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  509.592969][T24303] /dev/rnullb0: Can't open blockdev
[  510.201715][ T5951] usb 1-1: USB disconnect, device number 63
[  510.279294][T24319] netlink: 'syz.3.3966': attribute type 10 has an invalid length.
[  510.551695][T24344] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  510.559520][T24344] /dev/rnullb0: Can't open blockdev
[  511.379318][T24377] FAULT_INJECTION: forcing a failure.
[  511.379318][T24377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  511.399113][T24377] CPU: 0 UID: 0 PID: 24377 Comm: syz.0.3975 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  511.399143][T24377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  511.399156][T24377] Call Trace:
[  511.399165][T24377]  <TASK>
[  511.399175][T24377]  dump_stack_lvl+0x189/0x250
[  511.399202][T24377]  ? __pfx____ratelimit+0x10/0x10
[  511.399233][T24377]  ? __pfx_dump_stack_lvl+0x10/0x10
[  511.399255][T24377]  ? __pfx__printk+0x10/0x10
[  511.399292][T24377]  should_fail_ex+0x414/0x560
[  511.399323][T24377]  _copy_to_user+0x31/0xb0
[  511.399353][T24377]  simple_read_from_buffer+0xe1/0x170
[  511.399387][T24377]  proc_fail_nth_read+0x1df/0x250
[  511.399410][T24377]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  511.399433][T24377]  ? rw_verify_area+0x258/0x650
[  511.399457][T24377]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  511.399478][T24377]  vfs_read+0x1fd/0x980
[  511.399509][T24377]  ? __pfx___mutex_lock+0x10/0x10
[  511.399530][T24377]  ? __pfx_vfs_read+0x10/0x10
[  511.399556][T24377]  ? __fget_files+0x2a/0x420
[  511.399588][T24377]  ? __fget_files+0x3a0/0x420
[  511.399613][T24377]  ? __fget_files+0x2a/0x420
[  511.399651][T24377]  ksys_read+0x145/0x250
[  511.399679][T24377]  ? __pfx_ksys_read+0x10/0x10
[  511.399700][T24377]  ? rcu_is_watching+0x15/0xb0
[  511.399729][T24377]  ? do_syscall_64+0xbe/0x3b0
[  511.399753][T24377]  do_syscall_64+0xfa/0x3b0
[  511.399771][T24377]  ? lockdep_hardirqs_on+0x9c/0x150
[  511.399800][T24377]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.399820][T24377]  ? clear_bhb_loop+0x60/0xb0
[  511.399844][T24377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.399863][T24377] RIP: 0033:0x7fc2e418d33c
[  511.399880][T24377] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  511.399896][T24377] RSP: 002b:00007fc2e4f51030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  511.399917][T24377] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418d33c
[  511.399931][T24377] RDX: 000000000000000f RSI: 00007fc2e4f510a0 RDI: 0000000000000005
[  511.399943][T24377] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  511.399954][T24377] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000002
[  511.399966][T24377] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  511.399997][T24377]  </TASK>
[  511.633227][    C0] vkms_vblank_simulate: vblank timer overrun
[  511.699314][   T30] audit: type=1800 audit(1750561359.043:9): pid=24378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3974" name="dmabuf" dev="dmabuf" ino=7 res=0 errno=0
[  511.973578][T24390] netlink: 'syz.2.3979': attribute type 12 has an invalid length.
[  513.693359][T24468] /dev/rnullb0: Can't open blockdev
[  513.708090][T24461] netlink: 140 bytes leftover after parsing attributes in process `syz.1.3991'.
[  514.123503][T24488] netlink: 288 bytes leftover after parsing attributes in process `syz.1.4000'.
[  514.429597][T24518] FAULT_INJECTION: forcing a failure.
[  514.429597][T24518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.447829][T24518] CPU: 0 UID: 0 PID: 24518 Comm: syz.0.4003 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  514.447860][T24518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  514.447873][T24518] Call Trace:
[  514.447882][T24518]  <TASK>
[  514.447891][T24518]  dump_stack_lvl+0x189/0x250
[  514.447922][T24518]  ? __pfx____ratelimit+0x10/0x10
[  514.447953][T24518]  ? __pfx_dump_stack_lvl+0x10/0x10
[  514.447976][T24518]  ? __pfx__printk+0x10/0x10
[  514.448000][T24518]  ? __might_fault+0xb0/0x130
[  514.448035][T24518]  should_fail_ex+0x414/0x560
[  514.448065][T24518]  _copy_from_user+0x2d/0xb0
[  514.448085][T24518]  snd_seq_oss_write+0x515/0x930
[  514.448121][T24518]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  514.448143][T24518]  ? common_file_perm+0x199/0x200
[  514.448168][T24518]  ? security_file_permission+0x75/0x290
[  514.448201][T24518]  odev_write+0x5a/0x80
[  514.448227][T24518]  ? __pfx_odev_write+0x10/0x10
[  514.448253][T24518]  vfs_write+0x27b/0xa90
[  514.448287][T24518]  ? __pfx_vfs_write+0x10/0x10
[  514.448313][T24518]  ? __fget_files+0x2a/0x420
[  514.448358][T24518]  ? __fget_files+0x2a/0x420
[  514.448385][T24518]  ? __fget_files+0x3a0/0x420
[  514.448411][T24518]  ? __fget_files+0x2a/0x420
[  514.448447][T24518]  ksys_write+0x145/0x250
[  514.448475][T24518]  ? __pfx_ksys_write+0x10/0x10
[  514.448497][T24518]  ? rcu_is_watching+0x15/0xb0
[  514.448526][T24518]  ? do_syscall_64+0xbe/0x3b0
[  514.448550][T24518]  do_syscall_64+0xfa/0x3b0
[  514.448568][T24518]  ? lockdep_hardirqs_on+0x9c/0x150
[  514.448595][T24518]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.448614][T24518]  ? clear_bhb_loop+0x60/0xb0
[  514.448637][T24518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.448655][T24518] RIP: 0033:0x7fc2e418e929
[  514.448673][T24518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.448690][T24518] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  514.448712][T24518] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  514.448727][T24518] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  514.448740][T24518] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  514.448752][T24518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  514.448763][T24518] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  514.448794][T24518]  </TASK>
[  514.691776][    C0] vkms_vblank_simulate: vblank timer overrun
[  514.861728][T24523] FAULT_INJECTION: forcing a failure.
[  514.861728][T24523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.878547][T24523] CPU: 0 UID: 0 PID: 24523 Comm: syz.0.4005 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  514.878586][T24523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  514.878598][T24523] Call Trace:
[  514.878607][T24523]  <TASK>
[  514.878616][T24523]  dump_stack_lvl+0x189/0x250
[  514.878645][T24523]  ? __pfx____ratelimit+0x10/0x10
[  514.878675][T24523]  ? __pfx_dump_stack_lvl+0x10/0x10
[  514.878697][T24523]  ? __pfx__printk+0x10/0x10
[  514.878720][T24523]  ? __might_fault+0xb0/0x130
[  514.878756][T24523]  should_fail_ex+0x414/0x560
[  514.878787][T24523]  _copy_from_iter+0x1db/0x16f0
[  514.878822][T24523]  ? rcu_is_watching+0x15/0xb0
[  514.878846][T24523]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  514.878875][T24523]  ? __pfx__copy_from_iter+0x10/0x10
[  514.878905][T24523]  ? __build_skb_around+0x257/0x3e0
[  514.878933][T24523]  ? netlink_sendmsg+0x642/0xb30
[  514.878956][T24523]  ? skb_put+0x11b/0x210
[  514.878983][T24523]  netlink_sendmsg+0x6b2/0xb30
[  514.879017][T24523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.879046][T24523]  ? aa_sock_msg_perm+0x94/0x160
[  514.879069][T24523]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  514.879099][T24523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.879125][T24523]  __sock_sendmsg+0x219/0x270
[  514.879149][T24523]  ____sys_sendmsg+0x505/0x830
[  514.879182][T24523]  ? __pfx_____sys_sendmsg+0x10/0x10
[  514.879218][T24523]  ? import_iovec+0x74/0xa0
[  514.879243][T24523]  ___sys_sendmsg+0x21f/0x2a0
[  514.879272][T24523]  ? __pfx____sys_sendmsg+0x10/0x10
[  514.879334][T24523]  ? __fget_files+0x2a/0x420
[  514.879361][T24523]  ? __fget_files+0x3a0/0x420
[  514.879400][T24523]  __x64_sys_sendmsg+0x19b/0x260
[  514.879429][T24523]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  514.879465][T24523]  ? __pfx_ksys_write+0x10/0x10
[  514.879488][T24523]  ? rcu_is_watching+0x15/0xb0
[  514.879522][T24523]  ? do_syscall_64+0xbe/0x3b0
[  514.879546][T24523]  do_syscall_64+0xfa/0x3b0
[  514.879564][T24523]  ? lockdep_hardirqs_on+0x9c/0x150
[  514.879601][T24523]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.879621][T24523]  ? clear_bhb_loop+0x60/0xb0
[  514.879645][T24523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.879664][T24523] RIP: 0033:0x7fc2e418e929
[  514.879683][T24523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.879701][T24523] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.879723][T24523] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  514.879737][T24523] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  514.879750][T24523] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  514.879763][T24523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.879775][T24523] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  514.879807][T24523]  </TASK>
[  515.165128][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.304626][T24529] netlink: 328 bytes leftover after parsing attributes in process `syz.1.4006'.
[  515.407795][T24531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4009'.
[  515.711876][   T51] Bluetooth: hci1: unexpected event for opcode 0x0419
[  515.719865][T24540] netlink: 288 bytes leftover after parsing attributes in process `syz.3.4010'.
[  515.741914][ T5951] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[  515.807907][T24546] FAULT_INJECTION: forcing a failure.
[  515.807907][T24546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.826929][T24546] CPU: 1 UID: 0 PID: 24546 Comm: syz.3.4012 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  515.826959][T24546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  515.826970][T24546] Call Trace:
[  515.826979][T24546]  <TASK>
[  515.826988][T24546]  dump_stack_lvl+0x189/0x250
[  515.827018][T24546]  ? __pfx____ratelimit+0x10/0x10
[  515.827048][T24546]  ? __pfx_dump_stack_lvl+0x10/0x10
[  515.827070][T24546]  ? __pfx__printk+0x10/0x10
[  515.827093][T24546]  ? __might_fault+0xb0/0x130
[  515.827128][T24546]  should_fail_ex+0x414/0x560
[  515.827158][T24546]  _copy_from_user+0x2d/0xb0
[  515.827180][T24546]  snd_seq_oss_write+0x382/0x930
[  515.827219][T24546]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  515.827241][T24546]  ? common_file_perm+0x199/0x200
[  515.827267][T24546]  ? security_file_permission+0x75/0x290
[  515.827299][T24546]  odev_write+0x5a/0x80
[  515.827426][T24546]  ? __pfx_odev_write+0x10/0x10
[  515.827465][T24546]  vfs_write+0x27b/0xa90
[  515.827503][T24546]  ? __pfx_vfs_write+0x10/0x10
[  515.827531][T24546]  ? __fget_files+0x2a/0x420
[  515.827562][T24546]  ? __fget_files+0x2a/0x420
[  515.827606][T24546]  ? __fget_files+0x3a0/0x420
[  515.827629][T24546]  ? __fget_files+0x2a/0x420
[  515.827663][T24546]  ksys_write+0x145/0x250
[  515.827689][T24546]  ? __pfx_ksys_write+0x10/0x10
[  515.827708][T24546]  ? rcu_is_watching+0x15/0xb0
[  515.827737][T24546]  ? do_syscall_64+0xbe/0x3b0
[  515.827761][T24546]  do_syscall_64+0xfa/0x3b0
[  515.827778][T24546]  ? lockdep_hardirqs_on+0x9c/0x150
[  515.827806][T24546]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.827831][T24546]  ? clear_bhb_loop+0x60/0xb0
[  515.827854][T24546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.827873][T24546] RIP: 0033:0x7f04ae58e929
[  515.827893][T24546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.827910][T24546] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  515.827930][T24546] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  515.827943][T24546] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  515.827956][T24546] RBP: 00007f04af4ae090 R08: 0000000000000000 R09: 0000000000000000
[  515.827968][T24546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  515.827980][T24546] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  515.828012][T24546]  </TASK>
[  516.169291][T24571] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4013'.
[  516.383075][ T5951] usb 1-1: Using ep0 maxpacket: 32
[  516.390637][ T5951] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  516.401435][ T5951] usb 1-1: config 0 has no interface number 0
[  516.407624][ T5951] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  516.431429][ T5951] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  516.441254][ T5951] usb 1-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  516.450411][ T5951] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.502392][ T5951] usb 1-1: config 0 descriptor??
[  517.122182][ T5951] uclogic 0003:28BD:0094.000C: pen parameters not found
[  517.122678][T24528] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4008'.
[  517.141283][ T5951] uclogic 0003:28BD:0094.000C: interface is invalid, ignoring
[  517.221824][ T5951] usb 1-1: USB disconnect, device number 64
[  518.132860][   T51] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  518.142995][   T51] Bluetooth: hci0: Injecting HCI hardware error event
[  518.155228][   T51] Bluetooth: hci0: hardware error 0x00
[  518.704608][ T5829] Bluetooth: hci2: unexpected event for opcode 0x0419
[  518.732441][T24635] netlink: 288 bytes leftover after parsing attributes in process `syz.0.4022'.
[  518.794935][T24643] netlink: 'syz.2.4024': attribute type 10 has an invalid length.
[  518.837565][T24643] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4024'.
[  518.971193][T24643] geneve0: entered allmulticast mode
[  519.004314][T24649] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$���UL�vy��آ
�D��UD�w�}�zR'
[  519.042634][T24649] CPU: 0 UID: 0 PID: 24649 Comm: syz.3.4025 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  519.042665][T24649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  519.042679][T24649] Call Trace:
[  519.042689][T24649]  <TASK>
[  519.042699][T24649]  dump_stack_lvl+0x189/0x250
[  519.042734][T24649]  ? __pfx_dump_stack_lvl+0x10/0x10
[  519.042763][T24649]  ? __pfx__printk+0x10/0x10
[  519.042787][T24649]  ? kernfs_path_from_node+0x2c/0x260
[  519.042808][T24649]  ? kernfs_path_from_node+0x2c/0x260
[  519.042826][T24649]  ? kernfs_path_from_node+0x2c/0x260
[  519.042845][T24649]  ? kernfs_path_from_node+0x22c/0x260
[  519.042863][T24649]  ? kernfs_path_from_node+0x2c/0x260
[  519.042887][T24649]  sysfs_warn_dup+0x8e/0xa0
[  519.042917][T24649]  sysfs_do_create_link_sd+0xc0/0x110
[  519.042951][T24649]  device_add_class_symlinks+0x1cf/0x240
[  519.042980][T24649]  device_add+0x475/0xb50
[  519.043007][T24649]  wiphy_register+0x199a/0x26b0
[  519.043054][T24649]  ? __pfx_wiphy_register+0x10/0x10
[  519.043077][T24649]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  519.043110][T24649]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  519.043143][T24649]  ieee80211_register_hw+0x33e1/0x4120
[  519.043193][T24649]  ? ieee80211_register_hw+0x1481/0x4120
[  519.043230][T24649]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  519.043262][T24649]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  519.043300][T24649]  ? __hrtimer_setup+0x187/0x210
[  519.043322][T24649]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  519.043352][T24649]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  519.043419][T24649]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  519.043441][T24649]  ? trace_kmalloc+0x1f/0xd0
[  519.043462][T24649]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  519.043487][T24649]  ? kstrndup+0xbf/0x160
[  519.043530][T24649]  hwsim_new_radio_nl+0xea4/0x1b10
[  519.043557][T24649]  ? __pfx___nla_validate_parse+0x10/0x10
[  519.043604][T24649]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.043631][T24649]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  519.043661][T24649]  ? __nla_parse+0x40/0x60
[  519.043696][T24649]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  519.043727][T24649]  genl_family_rcv_msg_doit+0x212/0x300
[  519.043768][T24649]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  519.043812][T24649]  ? bpf_lsm_capable+0x9/0x20
[  519.043834][T24649]  ? security_capable+0x7e/0x2e0
[  519.043864][T24649]  genl_rcv_msg+0x60e/0x790
[  519.043901][T24649]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.043929][T24649]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.043970][T24649]  netlink_rcv_skb+0x205/0x470
[  519.043995][T24649]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.044024][T24649]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  519.044066][T24649]  ? down_read+0x1ad/0x2e0
[  519.044093][T24649]  genl_rcv+0x28/0x40
[  519.044119][T24649]  netlink_unicast+0x758/0x8d0
[  519.044156][T24649]  netlink_sendmsg+0x805/0xb30
[  519.044195][T24649]  ? __pfx_netlink_sendmsg+0x10/0x10
[  519.044226][T24649]  ? aa_sock_msg_perm+0x94/0x160
[  519.044251][T24649]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  519.044280][T24649]  ? __pfx_netlink_sendmsg+0x10/0x10
[  519.044307][T24649]  __sock_sendmsg+0x219/0x270
[  519.044331][T24649]  ____sys_sendmsg+0x505/0x830
[  519.044362][T24649]  ? __pfx_____sys_sendmsg+0x10/0x10
[  519.044411][T24649]  ? import_iovec+0x74/0xa0
[  519.044437][T24649]  ___sys_sendmsg+0x21f/0x2a0
[  519.044468][T24649]  ? __pfx____sys_sendmsg+0x10/0x10
[  519.044542][T24649]  ? __fget_files+0x2a/0x420
[  519.044572][T24649]  ? __fget_files+0x3a0/0x420
[  519.044616][T24649]  __x64_sys_sendmsg+0x19b/0x260
[  519.044647][T24649]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  519.044684][T24649]  ? rcu_is_watching+0x15/0xb0
[  519.044715][T24649]  ? do_syscall_64+0xbe/0x3b0
[  519.044741][T24649]  do_syscall_64+0xfa/0x3b0
[  519.044760][T24649]  ? lockdep_hardirqs_on+0x9c/0x150
[  519.044791][T24649]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.044812][T24649]  ? clear_bhb_loop+0x60/0xb0
[  519.044837][T24649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.044856][T24649] RIP: 0033:0x7f04ae58e929
[  519.044876][T24649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.044893][T24649] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  519.044915][T24649] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  519.044930][T24649] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  519.044943][T24649] RBP: 00007f04ae610b39 R08: 0000000000000000 R09: 0000000000000000
[  519.044955][T24649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.044969][T24649] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  519.045004][T24649]  </TASK>
[  519.612351][T24659] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  519.722050][ T5893] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[  519.730212][ T5829] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  519.740775][ T5829] Bluetooth: hci1: Injecting HCI hardware error event
[  519.750881][ T5829] Bluetooth: hci1: hardware error 0x00
[  519.861467][ T5893] usb 1-1: device descriptor read/64, error -71
[  520.061955][T24697] dvmrp1: entered allmulticast mode
[  520.105340][ T5893] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[  520.252632][ T5893] usb 1-1: device descriptor read/64, error -71
[  520.361932][ T5893] usb usb1-port1: attempt power cycle
[  520.711555][ T5893] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[  520.762606][   T51] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  520.771989][ T5893] usb 1-1: device descriptor read/8, error -71
[  520.774338][   T51] Bluetooth: hci4: unexpected event for opcode 0x0419
[  520.826815][T24744] netlink: 288 bytes leftover after parsing attributes in process `syz.2.4035'.
[  521.041574][ T5893] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[  521.086278][ T5893] usb 1-1: device descriptor read/8, error -71
[  521.213228][ T5893] usb usb1-port1: unable to enumerate USB device
[  521.342225][T24768] netlink: 'syz.3.4044': attribute type 10 has an invalid length.
[  521.350117][T24768] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4044'.
[  521.871685][   T43] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[  521.885528][ T5829] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  522.051491][   T43] usb 4-1: Using ep0 maxpacket: 16
[  522.059134][   T43] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  522.091557][   T43] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  522.124054][   T43] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  522.171851][   T43] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  522.206638][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  522.235753][   T43] usb 4-1: Product: syz
[  522.239984][   T43] usb 4-1: Manufacturer: syz
[  522.279812][   T43] usb 4-1: SerialNumber: syz
[  522.723063][   T43] usb 4-1: 0:2 : does not exist
[  522.761936][ T5829] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  522.772259][ T5829] Bluetooth: hci2: Injecting HCI hardware error event
[  522.783235][ T5829] Bluetooth: hci2: hardware error 0x00
[  523.454449][T24878] /dev/rnullb0: Can't open blockdev
[  523.968667][   T43] usb 4-1: 1:0: failed to get current value for ch 0 (-22)
[  524.025789][T24889] binder: 24888:24889 ioctl c0306201 200000000640 returned -22
[  524.120221][   T43] usb 4-1: USB disconnect, device number 79
[  524.209257][ T6064] udevd[6064]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  524.744330][T24932] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  524.842308][   T51] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  524.853215][   T51] Bluetooth: hci4: Injecting HCI hardware error event
[  524.863216][T24669] Bluetooth: hci4: hardware error 0x00
[  524.922089][ T5829] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  525.122520][T24952] ptrace attach of "./syz-executor exec"[16573] was attempted by ""[24952]
[  525.456474][T24972] loop6: detected capacity change from 0 to 7
[  525.477836][ T6064]  loop6: [POWERTEC] p1
[  525.493835][ T6064] loop6: p1 size 1680801792 extends beyond EOD, truncated
[  525.524279][T24972]  loop6: [POWERTEC] p1
[  525.536861][T24972] loop6: p1 size 1680801792 extends beyond EOD, truncated
[  525.691157][ T6064] udevd[6064]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  525.745145][ T6064] udevd[6064]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  526.333665][T25023] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  526.350352][T25026] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4088'.
[  526.925494][T24669] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  527.391815][T25077] netlink: 796 bytes leftover after parsing attributes in process `syz.1.4100'.
[  527.655101][T25087] binder_alloc: 25086: binder_alloc_buf size 81904 failed, no address space
[  527.664217][T25087] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 16384 (num: 1 largest: 16384)
[  527.864240][T25093] bridge0: port 1(bridge_slave_0) entered disabled state
[  528.123798][T25093] bridge_slave_0 (unregistering): left allmulticast mode
[  528.154185][T25093] bridge_slave_0 (unregistering): left promiscuous mode
[  528.167341][T25093] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.009474][T25130] tipc: Enabled bearer <udp:s>, priority 10
[  529.345781][T25154] /dev/rnullb0: Can't open blockdev
[  529.783819][T25173] netlink: 396 bytes leftover after parsing attributes in process `syz.1.4122'.
[  530.099212][T25183] binder: BINDER_SET_CONTEXT_MGR already set
[  530.116433][T25183] binder: 25181:25183 ioctl 4018620d 200000000040 returned -16
[  530.137435][ T5915] tipc: Node number set to 1835413037
[  530.631505][T25203] netlink: 'syz.0.4130': attribute type 10 has an invalid length.
[  530.663820][T25203] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4130'.
[  530.719570][T25207] /dev/rnullb0: Can't open blockdev
[  531.164424][T25224] /dev/rnullb0: Can't open blockdev
[  532.490334][T25302] netlink: 312 bytes leftover after parsing attributes in process `syz.3.4152'.
[  532.673536][T25314] Invalid logical block size (150994944)
[  532.961517][ T5893] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[  533.121545][ T5893] usb 3-1: Using ep0 maxpacket: 32
[  533.131248][ T5893] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.170930][ T5893] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  533.198543][ T5893] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.215992][ T5893] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  533.265940][ T5893] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.285848][ T5893] usb 3-1: config 0 descriptor??
[  533.302255][T25319] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  533.339458][ T5893] hub 3-1:0.0: USB hub found
[  533.520929][ T5893] hub 3-1:0.0: 2 ports detected
[  533.652399][T25374] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4166'.
[  533.781296][T25380] program syz.0.4167 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  534.370458][ T5893] usb 3-1: USB disconnect, device number 56
[  534.616667][T25432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4173'.
[  534.641771][T25432] openvswitch: netlink: Missing key (keys=40, expected=100)
[  534.753981][T25437] input: syz0 as /devices/virtual/input/input29
[  535.269785][T25473] overlayfs: missing 'workdir'
[  536.005804][T25520] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$���UL�vy��آ
�D��UD�w�}�zR'
[  536.020820][T25520] CPU: 0 UID: 0 PID: 25520 Comm: syz.0.4188 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  536.020852][T25520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  536.020865][T25520] Call Trace:
[  536.020874][T25520]  <TASK>
[  536.020883][T25520]  dump_stack_lvl+0x189/0x250
[  536.020916][T25520]  ? __pfx_dump_stack_lvl+0x10/0x10
[  536.020940][T25520]  ? __pfx__printk+0x10/0x10
[  536.020965][T25520]  ? kernfs_path_from_node+0x2c/0x260
[  536.020985][T25520]  ? kernfs_path_from_node+0x2c/0x260
[  536.021002][T25520]  ? kernfs_path_from_node+0x2c/0x260
[  536.021023][T25520]  ? kernfs_path_from_node+0x22c/0x260
[  536.021040][T25520]  ? kernfs_path_from_node+0x2c/0x260
[  536.021063][T25520]  sysfs_warn_dup+0x8e/0xa0
[  536.021092][T25520]  sysfs_do_create_link_sd+0xc0/0x110
[  536.021126][T25520]  device_add_class_symlinks+0x1cf/0x240
[  536.021153][T25520]  device_add+0x475/0xb50
[  536.021188][T25520]  wiphy_register+0x199a/0x26b0
[  536.021233][T25520]  ? __pfx_wiphy_register+0x10/0x10
[  536.021256][T25520]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  536.021291][T25520]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  536.021324][T25520]  ieee80211_register_hw+0x33e1/0x4120
[  536.021374][T25520]  ? ieee80211_register_hw+0x1481/0x4120
[  536.021412][T25520]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  536.021443][T25520]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  536.021482][T25520]  ? __hrtimer_setup+0x187/0x210
[  536.021502][T25520]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  536.021531][T25520]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  536.021589][T25520]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  536.021610][T25520]  ? trace_kmalloc+0x1f/0xd0
[  536.021632][T25520]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  536.021656][T25520]  ? kstrndup+0xbf/0x160
[  536.021698][T25520]  hwsim_new_radio_nl+0xea4/0x1b10
[  536.021723][T25520]  ? __pfx___nla_validate_parse+0x10/0x10
[  536.021770][T25520]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  536.021808][T25520]  ? __nla_parse+0x40/0x60
[  536.021843][T25520]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  536.021873][T25520]  genl_family_rcv_msg_doit+0x212/0x300
[  536.021914][T25520]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  536.021961][T25520]  ? bpf_lsm_capable+0x9/0x20
[  536.021985][T25520]  ? security_capable+0x7e/0x2e0
[  536.022016][T25520]  genl_rcv_msg+0x60e/0x790
[  536.022055][T25520]  ? __pfx_genl_rcv_msg+0x10/0x10
[  536.022084][T25520]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  536.022124][T25520]  netlink_rcv_skb+0x205/0x470
[  536.022150][T25520]  ? __pfx_genl_rcv_msg+0x10/0x10
[  536.022191][T25520]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  536.022239][T25520]  ? down_read+0x1ad/0x2e0
[  536.022265][T25520]  genl_rcv+0x28/0x40
[  536.022293][T25520]  netlink_unicast+0x758/0x8d0
[  536.022331][T25520]  netlink_sendmsg+0x805/0xb30
[  536.022370][T25520]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.022401][T25520]  ? aa_sock_msg_perm+0x94/0x160
[  536.022426][T25520]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  536.022454][T25520]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.022481][T25520]  __sock_sendmsg+0x219/0x270
[  536.022507][T25520]  ____sys_sendmsg+0x505/0x830
[  536.022542][T25520]  ? __pfx_____sys_sendmsg+0x10/0x10
[  536.022581][T25520]  ? import_iovec+0x74/0xa0
[  536.022607][T25520]  ___sys_sendmsg+0x21f/0x2a0
[  536.022638][T25520]  ? __pfx____sys_sendmsg+0x10/0x10
[  536.022711][T25520]  ? __fget_files+0x2a/0x420
[  536.022740][T25520]  ? __fget_files+0x3a0/0x420
[  536.022783][T25520]  __x64_sys_sendmsg+0x19b/0x260
[  536.022814][T25520]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  536.022855][T25520]  ? rcu_is_watching+0x15/0xb0
[  536.022886][T25520]  ? do_syscall_64+0xbe/0x3b0
[  536.022911][T25520]  do_syscall_64+0xfa/0x3b0
[  536.022930][T25520]  ? lockdep_hardirqs_on+0x9c/0x150
[  536.022960][T25520]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.022980][T25520]  ? clear_bhb_loop+0x60/0xb0
[  536.023006][T25520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.023025][T25520] RIP: 0033:0x7fc2e418e929
[  536.023044][T25520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.023062][T25520] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  536.023085][T25520] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  536.023100][T25520] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  536.023113][T25520] RBP: 00007fc2e4210b39 R08: 0000000000000000 R09: 0000000000000000
[  536.023126][T25520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  536.023138][T25520] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  536.023173][T25520]  </TASK>
[  536.770704][T25541] binder: 25540:25541 ioctl c018620c 200000000140 returned -22
[  537.352798][ T2154] usb 3-1: new full-speed USB device number 57 using dummy_hcd
[  537.515070][ T2154] usb 3-1: config 7 has an invalid interface number: 101 but max is 0
[  537.549124][ T2154] usb 3-1: config 7 has no interface number 0
[  537.584936][ T2154] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b
[  537.603015][ T2154] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  537.611069][ T2154] usb 3-1: Product: syz
[  537.655144][ T2154] usb 3-1: Manufacturer: syz
[  537.659824][ T2154] usb 3-1: SerialNumber: syz
[  537.835530][T25613] FAULT_INJECTION: forcing a failure.
[  537.835530][T25613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  537.872224][T25613] CPU: 1 UID: 0 PID: 25613 Comm: syz.0.4201 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  537.872262][T25613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  537.872275][T25613] Call Trace:
[  537.872284][T25613]  <TASK>
[  537.872293][T25613]  dump_stack_lvl+0x189/0x250
[  537.872322][T25613]  ? __pfx____ratelimit+0x10/0x10
[  537.872352][T25613]  ? __pfx_dump_stack_lvl+0x10/0x10
[  537.872375][T25613]  ? __pfx__printk+0x10/0x10
[  537.872411][T25613]  should_fail_ex+0x414/0x560
[  537.872438][T25613]  ? do_fcntl+0x81e/0x1910
[  537.872460][T25613]  _copy_to_user+0x31/0xb0
[  537.872481][T25613]  ? do_fcntl+0x81e/0x1910
[  537.872501][T25613]  do_fcntl+0x13c2/0x1910
[  537.872525][T25613]  ? do_fcntl+0x81e/0x1910
[  537.872548][T25613]  ? __pfx_do_fcntl+0x10/0x10
[  537.872575][T25613]  ? __fget_files+0x2a/0x420
[  537.872607][T25613]  ? __fget_files+0x2a/0x420
[  537.872641][T25613]  ? bpf_lsm_file_fcntl+0x9/0x20
[  537.872667][T25613]  __se_sys_fcntl+0xc8/0x150
[  537.872691][T25613]  do_syscall_64+0xfa/0x3b0
[  537.872709][T25613]  ? lockdep_hardirqs_on+0x9c/0x150
[  537.872738][T25613]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.872757][T25613]  ? clear_bhb_loop+0x60/0xb0
[  537.872782][T25613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.872801][T25613] RIP: 0033:0x7fc2e418e929
[  537.872819][T25613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.872836][T25613] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  537.872859][T25613] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  537.872874][T25613] RDX: 0000200000000300 RSI: 0000000000000010 RDI: 0000000000000003
[  537.872887][T25613] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  537.872900][T25613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.872912][T25613] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  537.872944][T25613]  </TASK>
[  538.208045][ T2154] as10x_usb: device has been detected
[  538.216925][ T2154] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[  538.261927][ T2154] usb 3-1: DVB: registering adapter 2 frontend 0 (Elgato EyeTV DTT Deluxe)...
[  538.362536][ T2154] as10x_usb: error during firmware upload part1
[  538.369560][ T2154] Registered device Elgato EyeTV DTT Deluxe
[  538.372450][ T2154] usb 3-1: USB disconnect, device number 57
[  538.495700][ T2154] Unregistered device Elgato EyeTV DTT Deluxe
[  538.500345][ T2154] as10x_usb: device has been disconnected
[  539.911452][ T2154] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[  540.041455][ T2154] usb 4-1: device descriptor read/64, error -71
[  540.302290][ T2154] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[  540.463844][ T2154] usb 4-1: device descriptor read/64, error -71
[  540.586337][ T2154] usb usb4-port1: attempt power cycle
[  540.951509][ T2154] usb 4-1: new high-speed USB device number 82 using dummy_hcd
[  540.993093][ T2154] usb 4-1: device descriptor read/8, error -71
[  541.261627][ T2154] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[  541.303730][ T2154] usb 4-1: device descriptor read/8, error -71
[  541.426119][ T2154] usb usb4-port1: unable to enumerate USB device
[  541.812020][ T2154] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  541.971500][ T2154] usb 3-1: Using ep0 maxpacket: 8
[  541.990481][ T2154] usb 3-1: unable to get BOS descriptor or descriptor too short
[  542.004397][ T2154] usb 3-1: no configurations
[  542.009176][ T2154] usb 3-1: can't read configurations, error -22
[  543.057260][T25809] netlink: 324 bytes leftover after parsing attributes in process `syz.2.4220'.
[  543.269006][T25817] /dev/rnullb0: Can't open blockdev
[  543.278454][T25817] /dev/rnullb0: Can't open blockdev
[  543.306862][T25821] netlink: 'syz.0.4224': attribute type 9 has an invalid length.
[  543.524904][T25826] FAULT_INJECTION: forcing a failure.
[  543.524904][T25826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  543.543218][T25826] CPU: 0 UID: 0 PID: 25826 Comm: syz.0.4225 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  543.543249][T25826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  543.543261][T25826] Call Trace:
[  543.543270][T25826]  <TASK>
[  543.543279][T25826]  dump_stack_lvl+0x189/0x250
[  543.543309][T25826]  ? __pfx____ratelimit+0x10/0x10
[  543.543339][T25826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  543.543363][T25826]  ? __pfx__printk+0x10/0x10
[  543.543385][T25826]  ? __might_fault+0xb0/0x130
[  543.543421][T25826]  should_fail_ex+0x414/0x560
[  543.543453][T25826]  _copy_from_user+0x2d/0xb0
[  543.543475][T25826]  ___sys_sendmsg+0x158/0x2a0
[  543.543505][T25826]  ? __pfx____sys_sendmsg+0x10/0x10
[  543.543571][T25826]  ? __fget_files+0x2a/0x420
[  543.543600][T25826]  ? __fget_files+0x3a0/0x420
[  543.543639][T25826]  __x64_sys_sendmsg+0x19b/0x260
[  543.543669][T25826]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  543.543706][T25826]  ? __pfx_ksys_write+0x10/0x10
[  543.543730][T25826]  ? rcu_is_watching+0x15/0xb0
[  543.543758][T25826]  ? do_syscall_64+0xbe/0x3b0
[  543.543783][T25826]  do_syscall_64+0xfa/0x3b0
[  543.543802][T25826]  ? lockdep_hardirqs_on+0x9c/0x150
[  543.543831][T25826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.543850][T25826]  ? clear_bhb_loop+0x60/0xb0
[  543.543875][T25826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.543893][T25826] RIP: 0033:0x7fc2e418e929
[  543.543912][T25826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.543930][T25826] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  543.543954][T25826] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  543.543968][T25826] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  543.543981][T25826] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  543.543993][T25826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  543.544005][T25826] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  543.544037][T25826]  </TASK>
[  543.758605][    C0] vkms_vblank_simulate: vblank timer overrun
[  543.926093][T25839] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4228'.
[  544.133060][T25848] sysfs: cannot create duplicate filename '/class/ieee80211/!�'
[  544.140883][T25848] CPU: 1 UID: 0 PID: 25848 Comm: syz.3.4231 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  544.140910][T25848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  544.140922][T25848] Call Trace:
[  544.140931][T25848]  <TASK>
[  544.140940][T25848]  dump_stack_lvl+0x189/0x250
[  544.140974][T25848]  ? __pfx_dump_stack_lvl+0x10/0x10
[  544.140997][T25848]  ? __pfx__printk+0x10/0x10
[  544.141022][T25848]  ? kernfs_path_from_node+0x2c/0x260
[  544.141042][T25848]  ? kernfs_path_from_node+0x2c/0x260
[  544.141058][T25848]  ? kernfs_path_from_node+0x2c/0x260
[  544.141078][T25848]  ? kernfs_path_from_node+0x22c/0x260
[  544.141096][T25848]  ? kernfs_path_from_node+0x2c/0x260
[  544.141117][T25848]  sysfs_warn_dup+0x8e/0xa0
[  544.141156][T25848]  sysfs_do_create_link_sd+0xc0/0x110
[  544.141190][T25848]  device_add_class_symlinks+0x1cf/0x240
[  544.141218][T25848]  device_add+0x475/0xb50
[  544.141246][T25848]  wiphy_register+0x199a/0x26b0
[  544.141290][T25848]  ? __pfx_wiphy_register+0x10/0x10
[  544.141312][T25848]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  544.141350][T25848]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  544.141382][T25848]  ieee80211_register_hw+0x33e1/0x4120
[  544.141430][T25848]  ? ieee80211_register_hw+0x1481/0x4120
[  544.141466][T25848]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  544.141498][T25848]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  544.141536][T25848]  ? __hrtimer_setup+0x187/0x210
[  544.141556][T25848]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  544.141582][T25848]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  544.141642][T25848]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  544.141663][T25848]  ? trace_kmalloc+0x1f/0xd0
[  544.141685][T25848]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  544.141711][T25848]  ? kstrndup+0xbf/0x160
[  544.141750][T25848]  hwsim_new_radio_nl+0xea4/0x1b10
[  544.141776][T25848]  ? __pfx___nla_validate_parse+0x10/0x10
[  544.141818][T25848]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.141856][T25848]  ? __nla_parse+0x40/0x60
[  544.141888][T25848]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  544.141919][T25848]  genl_family_rcv_msg_doit+0x212/0x300
[  544.141957][T25848]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  544.142003][T25848]  ? bpf_lsm_capable+0x9/0x20
[  544.142025][T25848]  ? security_capable+0x7e/0x2e0
[  544.142053][T25848]  genl_rcv_msg+0x60e/0x790
[  544.142090][T25848]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.142116][T25848]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.142166][T25848]  netlink_rcv_skb+0x205/0x470
[  544.142192][T25848]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.142222][T25848]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  544.142270][T25848]  ? down_read+0x1ad/0x2e0
[  544.142294][T25848]  genl_rcv+0x28/0x40
[  544.142320][T25848]  netlink_unicast+0x758/0x8d0
[  544.142356][T25848]  netlink_sendmsg+0x805/0xb30
[  544.142391][T25848]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.142417][T25848]  ? aa_sock_msg_perm+0x94/0x160
[  544.142439][T25848]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  544.142467][T25848]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.142493][T25848]  __sock_sendmsg+0x219/0x270
[  544.142519][T25848]  ____sys_sendmsg+0x505/0x830
[  544.142554][T25848]  ? __pfx_____sys_sendmsg+0x10/0x10
[  544.142592][T25848]  ? import_iovec+0x74/0xa0
[  544.142617][T25848]  ___sys_sendmsg+0x21f/0x2a0
[  544.142647][T25848]  ? __pfx____sys_sendmsg+0x10/0x10
[  544.142715][T25848]  ? __fget_files+0x2a/0x420
[  544.142741][T25848]  ? __fget_files+0x3a0/0x420
[  544.142785][T25848]  __x64_sys_sendmsg+0x19b/0x260
[  544.142814][T25848]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  544.142853][T25848]  ? rcu_is_watching+0x15/0xb0
[  544.142883][T25848]  ? do_syscall_64+0xbe/0x3b0
[  544.142908][T25848]  do_syscall_64+0xfa/0x3b0
[  544.142927][T25848]  ? lockdep_hardirqs_on+0x9c/0x150
[  544.142968][T25848]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.142988][T25848]  ? clear_bhb_loop+0x60/0xb0
[  544.143012][T25848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.143032][T25848] RIP: 0033:0x7f04ae58e929
[  544.143052][T25848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.143069][T25848] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  544.143092][T25848] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  544.143107][T25848] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  544.143120][T25848] RBP: 00007f04ae610b39 R08: 0000000000000000 R09: 0000000000000000
[  544.143140][T25848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.143152][T25848] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  544.143185][T25848]  </TASK>
[  545.351512][ T5879] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[  545.533733][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  545.550852][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  545.581648][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  545.620623][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  545.686998][ T5879] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  545.739872][ T5879] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  545.793465][ T5879] usb 4-1: config 0 descriptor??
[  546.078224][ T5879] usbhid 4-1:0.0: can't add hid device: -71
[  546.094142][ T5879] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  546.148625][ T5879] usb 4-1: USB disconnect, device number 84
[  546.507239][T25954] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4245'.
[  546.778740][T25979] exFAT-fs (rnullb0): invalid boot record signature
[  546.788412][T25979] exFAT-fs (rnullb0): failed to read boot sector
[  546.809337][T25979] exFAT-fs (rnullb0): failed to recognize exfat type
[  548.232536][T26042] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4260'.
[  548.691676][T26056] kvm: kvm [26055]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x60000000003
[  549.208596][T26072] kvm: kvm [26071]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x3
[  549.261600][ T5893] usb 1-1: new full-speed USB device number 69 using dummy_hcd
[  549.423818][ T5893] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  549.441635][ T5893] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  549.474500][ T5893] usb 1-1: config 0 descriptor??
[  549.506220][ T5893] cp210x 1-1:0.0: cp210x converter detected
[  549.643981][T26093] FAULT_INJECTION: forcing a failure.
[  549.643981][T26093] name failslab, interval 1, probability 0, space 0, times 0
[  549.659276][T26093] CPU: 1 UID: 0 PID: 26093 Comm: syz.3.4267 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  549.659314][T26093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  549.659328][T26093] Call Trace:
[  549.659336][T26093]  <TASK>
[  549.659346][T26093]  dump_stack_lvl+0x189/0x250
[  549.659374][T26093]  ? __pfx____ratelimit+0x10/0x10
[  549.659404][T26093]  ? __pfx_dump_stack_lvl+0x10/0x10
[  549.659426][T26093]  ? __pfx__printk+0x10/0x10
[  549.659454][T26093]  ? __pfx___might_resched+0x10/0x10
[  549.659476][T26093]  ? fs_reclaim_acquire+0x7d/0x100
[  549.659509][T26093]  should_fail_ex+0x414/0x560
[  549.659540][T26093]  should_failslab+0xa8/0x100
[  549.659567][T26093]  __kmalloc_noprof+0xcb/0x4f0
[  549.659589][T26093]  ? kfree+0x4d/0x440
[  549.659608][T26093]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  549.659639][T26093]  tomoyo_realpath_from_path+0xe3/0x5d0
[  549.659662][T26093]  ? tomoyo_domain+0xd9/0x130
[  549.659692][T26093]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  549.659722][T26093]  tomoyo_path_number_perm+0x1e8/0x5a0
[  549.659756][T26093]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  549.659804][T26093]  ? __lock_acquire+0xab9/0xd20
[  549.659849][T26093]  ? __fget_files+0x2a/0x420
[  549.659881][T26093]  ? __fget_files+0x2a/0x420
[  549.659906][T26093]  ? __fget_files+0x3a0/0x420
[  549.659932][T26093]  ? __fget_files+0x2a/0x420
[  549.659963][T26093]  security_file_ioctl+0xcb/0x2d0
[  549.659994][T26093]  __se_sys_ioctl+0x47/0x170
[  549.660022][T26093]  do_syscall_64+0xfa/0x3b0
[  549.660039][T26093]  ? lockdep_hardirqs_on+0x9c/0x150
[  549.660066][T26093]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.660084][T26093]  ? clear_bhb_loop+0x60/0xb0
[  549.660106][T26093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.660124][T26093] RIP: 0033:0x7f04ae58e929
[  549.660143][T26093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.660159][T26093] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  549.660182][T26093] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  549.660196][T26093] RDX: 0000200000000100 RSI: 000000004008ae89 RDI: 0000000000000005
[  549.660208][T26093] RBP: 00007f04af4ae090 R08: 0000000000000000 R09: 0000000000000000
[  549.660219][T26093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.660229][T26093] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  549.660261][T26093]  </TASK>
[  549.660270][T26093] ERROR: Out of memory at tomoyo_realpath_from_path.
[  549.914428][T26093] kvm: kvm [26092]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x3
[  549.955476][ T5893] cp210x 1-1:0.0: failed to get vendor val 0x370c size 13: -71
[  549.991182][ T5893] cp210x 1-1:0.0: GPIO initialisation failed: -71
[  550.018943][ T5893] usb 1-1: cp210x converter now attached to ttyUSB0
[  550.053960][ T5893] usb 1-1: USB disconnect, device number 69
[  550.080027][ T5893] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  550.117053][ T5893] cp210x 1-1:0.0: device disconnected
[  552.941873][ T5836] usb 1-1: new high-speed USB device number 70 using dummy_hcd
[  553.115218][ T5836] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[  553.134409][ T5836] usb 1-1: config 0 has no interface number 0
[  553.140574][ T5836] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  553.185316][ T5836] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  553.199391][ T5836] usb 1-1: config 0 interface 255 has no altsetting 0
[  553.210103][ T5836] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  553.224546][ T5836] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  553.249933][ T5836] usb 1-1: config 0 descriptor??
[  553.277020][ T5836] ums-realtek 1-1:0.255: USB Mass Storage device detected
[  553.480850][T26244] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  553.515290][T26244] UDF-fs: Scanning with blocksize 4096 failed
[  553.553933][T26283] syz.3.4292: attempt to access beyond end of device
[  553.553933][T26283] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  553.567088][T26283] (syz.3.4292,26283,1):ocfs2_get_sector:1714 ERROR: status = -5
[  553.574871][T26283] (syz.3.4292,26283,1):ocfs2_sb_probe:753 ERROR: status = -5
[  553.587412][T26283] (syz.3.4292,26283,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  553.596399][T26283] (syz.3.4292,26283,1):ocfs2_fill_super:1177 ERROR: status = -5
[  554.108023][ T5836] usb 1-1: USB disconnect, device number 70
[  554.667537][T26345] vivid-001: disconnect
[  554.677775][T26345] vivid-001: reconnect
[  555.984937][T26414] netlink: 'syz.0.4308': attribute type 10 has an invalid length.
[  555.994079][T26414] bond0: (slave wlan1): Opening slave failed
[  556.418607][T26433] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  557.487959][T26493] netlink: 'syz.0.4319': attribute type 12 has an invalid length.
[  557.653771][T26503] Can't find a SQUASHFS superblock on rnullb0
[  558.586712][T26561] FAT-fs (rnullb0): bogus number of reserved sectors
[  558.651664][T26561] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  558.812931][T26568] FAULT_INJECTION: forcing a failure.
[  558.812931][T26568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  558.830772][T26568] CPU: 1 UID: 0 PID: 26568 Comm: syz.0.4329 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  558.830800][T26568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  558.830813][T26568] Call Trace:
[  558.830822][T26568]  <TASK>
[  558.830831][T26568]  dump_stack_lvl+0x189/0x250
[  558.830859][T26568]  ? __pfx____ratelimit+0x10/0x10
[  558.830891][T26568]  ? __pfx_dump_stack_lvl+0x10/0x10
[  558.830915][T26568]  ? __pfx__printk+0x10/0x10
[  558.830937][T26568]  ? __might_fault+0xb0/0x130
[  558.830974][T26568]  should_fail_ex+0x414/0x560
[  558.831006][T26568]  _copy_from_user+0x2d/0xb0
[  558.831028][T26568]  ___sys_sendmsg+0x158/0x2a0
[  558.831056][T26568]  ? __pfx____sys_sendmsg+0x10/0x10
[  558.831121][T26568]  ? __fget_files+0x2a/0x420
[  558.831149][T26568]  ? __fget_files+0x3a0/0x420
[  558.831190][T26568]  __x64_sys_sendmsg+0x19b/0x260
[  558.831220][T26568]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  558.831255][T26568]  ? __pfx_ksys_write+0x10/0x10
[  558.831288][T26568]  ? do_syscall_64+0xbe/0x3b0
[  558.831320][T26568]  do_syscall_64+0xfa/0x3b0
[  558.831342][T26568]  ? lockdep_hardirqs_on+0x9c/0x150
[  558.831370][T26568]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.831388][T26568]  ? clear_bhb_loop+0x60/0xb0
[  558.831412][T26568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.831432][T26568] RIP: 0033:0x7fc2e418e929
[  558.831449][T26568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  558.831466][T26568] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  558.831489][T26568] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  558.831502][T26568] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  558.831515][T26568] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  558.831527][T26568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  558.831538][T26568] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  558.831569][T26568]  </TASK>
[  559.285124][ T2932] Bluetooth: (null): Invalid header checksum
[  559.296642][T10176] Bluetooth: (null): Invalid header checksum
[  559.393473][ T2932] Bluetooth: (null): Invalid header checksum
[  559.421578][ T2154] usb 1-1: new high-speed USB device number 71 using dummy_hcd
[  559.504083][T10176] Bluetooth: (null): Invalid header checksum
[  559.596194][ T2154] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  559.610437][ T2154] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.619913][T10176] Bluetooth: (null): Invalid header checksum
[  559.636076][ T2154] usb 1-1: config 0 descriptor??
[  559.649538][ T2154] gspca_main: cpia1-2.14.0 probing 0813:0001
[  559.723731][T10176] Bluetooth: (null): Invalid header checksum
[  559.832022][ T2932] Bluetooth: (null): Invalid header checksum
[  559.941828][T10188] Bluetooth: (null): Invalid header checksum
[  560.049542][ T2154] cpia1 1-1:0.0: unexpected state after lo power cmd: 00
[  560.057256][ T2932] Bluetooth: (null): Invalid header checksum
[  560.174719][   T49] Bluetooth: (null): Invalid header checksum
[  560.292400][T10188] Bluetooth: (null): Invalid header checksum
[  560.413702][   T49] Bluetooth: (null): Invalid header checksum
[  560.467551][ T2154] gspca_cpia1: usb_control_msg 02, error -32
[  560.522696][ T2932] Bluetooth: (null): Invalid header checksum
[  560.607440][ T2154] gspca_cpia1: usb_control_msg 02, error -71
[  560.621186][ T2154] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0)
[  560.658249][ T2154] usb 1-1: USB disconnect, device number 71
[  561.555275][T26677] (syz.0.4339,26677,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  561.564618][T26677] (syz.0.4339,26677,0):ocfs2_fill_super:1177 ERROR: status = -22
[  561.833154][T26682] netlink: 140 bytes leftover after parsing attributes in process `syz.3.4340'.
[  562.927902][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  563.462356][T26756] FAULT_INJECTION: forcing a failure.
[  563.462356][T26756] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  563.486409][T26756] CPU: 1 UID: 0 PID: 26756 Comm: syz.3.4349 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  563.486439][T26756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  563.486450][T26756] Call Trace:
[  563.486459][T26756]  <TASK>
[  563.486468][T26756]  dump_stack_lvl+0x189/0x250
[  563.486496][T26756]  ? __pfx____ratelimit+0x10/0x10
[  563.486525][T26756]  ? __pfx_dump_stack_lvl+0x10/0x10
[  563.486547][T26756]  ? __pfx__printk+0x10/0x10
[  563.486569][T26756]  ? __might_fault+0xb0/0x130
[  563.486604][T26756]  should_fail_ex+0x414/0x560
[  563.486634][T26756]  _copy_from_user+0x2d/0xb0
[  563.486655][T26756]  snd_seq_oss_write+0x382/0x930
[  563.486692][T26756]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  563.486713][T26756]  ? common_file_perm+0x199/0x200
[  563.486738][T26756]  ? security_file_permission+0x75/0x290
[  563.486770][T26756]  odev_write+0x5a/0x80
[  563.486794][T26756]  ? __pfx_odev_write+0x10/0x10
[  563.486819][T26756]  vfs_write+0x27b/0xa90
[  563.486853][T26756]  ? __pfx_vfs_write+0x10/0x10
[  563.486879][T26756]  ? __fget_files+0x2a/0x420
[  563.486909][T26756]  ? __fget_files+0x2a/0x420
[  563.486934][T26756]  ? __fget_files+0x3a0/0x420
[  563.486959][T26756]  ? __fget_files+0x2a/0x420
[  563.486994][T26756]  ksys_write+0x145/0x250
[  563.487021][T26756]  ? __pfx_ksys_write+0x10/0x10
[  563.487042][T26756]  ? rcu_is_watching+0x15/0xb0
[  563.487069][T26756]  ? do_syscall_64+0xbe/0x3b0
[  563.487093][T26756]  do_syscall_64+0xfa/0x3b0
[  563.487110][T26756]  ? lockdep_hardirqs_on+0x9c/0x150
[  563.487138][T26756]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.487157][T26756]  ? clear_bhb_loop+0x60/0xb0
[  563.487180][T26756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.487198][T26756] RIP: 0033:0x7f04ae58e929
[  563.487215][T26756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  563.487244][T26756] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  563.487266][T26756] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  563.487280][T26756] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  563.487292][T26756] RBP: 00007f04af4ae090 R08: 0000000000000000 R09: 0000000000000000
[  563.487303][T26756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  563.487315][T26756] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  563.487345][T26756]  </TASK>
[  564.513673][T26760] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4350'.
[  565.218882][T26813] FAULT_INJECTION: forcing a failure.
[  565.218882][T26813] name failslab, interval 1, probability 0, space 0, times 0
[  565.242491][T26813] CPU: 1 UID: 0 PID: 26813 Comm: syz.3.4352 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  565.242520][T26813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  565.242532][T26813] Call Trace:
[  565.242540][T26813]  <TASK>
[  565.242550][T26813]  dump_stack_lvl+0x189/0x250
[  565.242579][T26813]  ? __pfx____ratelimit+0x10/0x10
[  565.242618][T26813]  ? __pfx_dump_stack_lvl+0x10/0x10
[  565.242641][T26813]  ? __pfx__printk+0x10/0x10
[  565.242665][T26813]  ? __pfx___might_resched+0x10/0x10
[  565.242687][T26813]  ? fs_reclaim_acquire+0x7d/0x100
[  565.242719][T26813]  should_fail_ex+0x414/0x560
[  565.242750][T26813]  should_failslab+0xa8/0x100
[  565.242777][T26813]  __kmalloc_noprof+0xcb/0x4f0
[  565.242799][T26813]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  565.242826][T26813]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  565.242853][T26813]  genl_family_rcv_msg_doit+0xb8/0x300
[  565.242890][T26813]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  565.242922][T26813]  ? rcu_is_watching+0x15/0xb0
[  565.242948][T26813]  ? apparmor_capable+0x137/0x1b0
[  565.242983][T26813]  ? bpf_lsm_capable+0x9/0x20
[  565.243005][T26813]  ? security_capable+0x7e/0x2e0
[  565.243032][T26813]  genl_rcv_msg+0x60e/0x790
[  565.243068][T26813]  ? __pfx_genl_rcv_msg+0x10/0x10
[  565.243095][T26813]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  565.243135][T26813]  netlink_rcv_skb+0x205/0x470
[  565.243160][T26813]  ? __pfx_genl_rcv_msg+0x10/0x10
[  565.243190][T26813]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  565.243232][T26813]  ? down_read+0x1ad/0x2e0
[  565.243257][T26813]  genl_rcv+0x28/0x40
[  565.243282][T26813]  netlink_unicast+0x758/0x8d0
[  565.243317][T26813]  netlink_sendmsg+0x805/0xb30
[  565.243353][T26813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  565.243381][T26813]  ? aa_sock_msg_perm+0x94/0x160
[  565.243404][T26813]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  565.243431][T26813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  565.243456][T26813]  __sock_sendmsg+0x219/0x270
[  565.243480][T26813]  ____sys_sendmsg+0x505/0x830
[  565.243512][T26813]  ? __pfx_____sys_sendmsg+0x10/0x10
[  565.243548][T26813]  ? import_iovec+0x74/0xa0
[  565.243573][T26813]  ___sys_sendmsg+0x21f/0x2a0
[  565.243600][T26813]  ? __pfx____sys_sendmsg+0x10/0x10
[  565.243668][T26813]  ? __fget_files+0x2a/0x420
[  565.243694][T26813]  ? __fget_files+0x3a0/0x420
[  565.243733][T26813]  __x64_sys_sendmsg+0x19b/0x260
[  565.243761][T26813]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  565.243798][T26813]  ? __pfx_ksys_write+0x10/0x10
[  565.243820][T26813]  ? rcu_is_watching+0x15/0xb0
[  565.243847][T26813]  ? do_syscall_64+0xbe/0x3b0
[  565.243871][T26813]  do_syscall_64+0xfa/0x3b0
[  565.243888][T26813]  ? lockdep_hardirqs_on+0x9c/0x150
[  565.243915][T26813]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.243934][T26813]  ? clear_bhb_loop+0x60/0xb0
[  565.243967][T26813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.243986][T26813] RIP: 0033:0x7f04ae58e929
[  565.244004][T26813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.244021][T26813] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  565.244043][T26813] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  565.244057][T26813] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  565.244070][T26813] RBP: 00007f04af4ae090 R08: 0000000000000000 R09: 0000000000000000
[  565.244082][T26813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  565.244094][T26813] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  565.244126][T26813]  </TASK>
[  565.808293][T26820] netlink: 328 bytes leftover after parsing attributes in process `syz.3.4353'.
[  566.324110][T26840] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4356'.
[  566.364243][ T5951] usb 4-1: new high-speed USB device number 85 using dummy_hcd
[  566.542235][ T5951] usb 4-1: Using ep0 maxpacket: 32
[  566.558200][ T5951] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  566.567718][ T5951] usb 4-1: config 0 has no interface number 0
[  566.579462][ T5951] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  566.608734][ T5951] usb 4-1: config 0 interface 85 has no altsetting 0
[  566.624789][ T5951] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  566.639235][ T5951] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  566.647762][ T5951] usb 4-1: Product: syz
[  566.658734][ T5951] usb 4-1: Manufacturer: syz
[  566.664564][ T5951] usb 4-1: SerialNumber: syz
[  566.678016][ T5951] usb 4-1: config 0 descriptor??
[  566.906280][ T5951] appletouch 4-1:0.85: Failed to read mode from device.
[  566.916924][T26844] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4357'.
[  566.941178][ T5951] appletouch 4-1:0.85: probe with driver appletouch failed with error -5
[  567.308233][T26828] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  567.316760][T26828] UDF-fs: Scanning with blocksize 4096 failed
[  567.342888][ T5951] usb 4-1: USB disconnect, device number 85
[  567.511537][ T5879] usb 1-1: new high-speed USB device number 72 using dummy_hcd
[  567.691647][ T5879] usb 1-1: Using ep0 maxpacket: 8
[  567.699243][ T5879] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  567.713335][ T5879] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.725213][ T5879] usb 1-1: config 0 descriptor??
[  567.938264][ T5879] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  567.938747][T26920] FAULT_INJECTION: forcing a failure.
[  567.938747][T26920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  567.951152][ T5879] asix 1-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3
[  567.972454][T26920] CPU: 1 UID: 0 PID: 26920 Comm: syz.3.4360 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  567.972484][T26920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  567.972497][T26920] Call Trace:
[  567.972506][T26920]  <TASK>
[  567.972514][T26920]  dump_stack_lvl+0x189/0x250
[  567.972544][T26920]  ? __pfx____ratelimit+0x10/0x10
[  567.972575][T26920]  ? __pfx_dump_stack_lvl+0x10/0x10
[  567.972599][T26920]  ? __pfx__printk+0x10/0x10
[  567.972621][T26920]  ? __might_fault+0xb0/0x130
[  567.972659][T26920]  should_fail_ex+0x414/0x560
[  567.972688][T26920]  _copy_from_user+0x2d/0xb0
[  567.972710][T26920]  snd_seq_oss_write+0x515/0x930
[  567.972749][T26920]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  567.972771][T26920]  ? common_file_perm+0x199/0x200
[  567.972819][T26920]  ? security_file_permission+0x75/0x290
[  567.972852][T26920]  odev_write+0x5a/0x80
[  567.972878][T26920]  ? __pfx_odev_write+0x10/0x10
[  567.972905][T26920]  vfs_write+0x27b/0xa90
[  567.972938][T26920]  ? __pfx_vfs_write+0x10/0x10
[  567.972966][T26920]  ? __fget_files+0x2a/0x420
[  567.972998][T26920]  ? __fget_files+0x2a/0x420
[  567.973024][T26920]  ? __fget_files+0x3a0/0x420
[  567.973050][T26920]  ? __fget_files+0x2a/0x420
[  567.973087][T26920]  ksys_write+0x145/0x250
[  567.973115][T26920]  ? __pfx_ksys_write+0x10/0x10
[  567.973136][T26920]  ? rcu_is_watching+0x15/0xb0
[  567.973165][T26920]  ? do_syscall_64+0xbe/0x3b0
[  567.973197][T26920]  do_syscall_64+0xfa/0x3b0
[  567.973215][T26920]  ? lockdep_hardirqs_on+0x9c/0x150
[  567.973244][T26920]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.973263][T26920]  ? clear_bhb_loop+0x60/0xb0
[  567.973287][T26920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.973306][T26920] RIP: 0033:0x7f04ae58e929
[  567.973325][T26920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.973343][T26920] RSP: 002b:00007f04af4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  567.973365][T26920] RAX: ffffffffffffffda RBX: 00007f04ae7b5fa0 RCX: 00007f04ae58e929
[  567.973380][T26920] RDX: 0000000000000239 RSI: 0000200000000580 RDI: 0000000000000003
[  567.973393][T26920] RBP: 00007f04af4ae090 R08: 0000000000000000 R09: 0000000000000000
[  567.973406][T26920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  567.973418][T26920] R13: 0000000000000000 R14: 00007f04ae7b5fa0 R15: 00007ffeb314ad58
[  567.973450][T26920]  </TASK>
[  568.220177][ T5879] asix 1-1:0.0: probe with driver asix failed with error -61
[  568.239187][ T5879] usb 1-1: USB disconnect, device number 72
[  568.364729][T26934] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4362'.
[  568.444833][T26938] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.4363'.
[  568.707551][T26967] input: syz1 as /devices/virtual/input/input31
[  568.895159][T26941] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4364'.
[  569.323363][T26990] syz_tun: tun_net_xmit 42
[  569.328442][T26990] syz_tun: tun_net_xmit 42
[  569.345590][T26990] syz_tun: tun_net_xmit 42
[  569.350247][T26990] syz_tun: tun_net_xmit 42
[  569.368038][ T5879] IPVS: starting estimator thread 0...
[  569.375888][T26990] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  569.461497][T26996] IPVS: using max 25 ests per chain, 60000 per kthread
[  572.007442][T27077] netlink: 'syz.3.4374': attribute type 10 has an invalid length.
[  572.019902][T27077] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4374'.
[  572.401911][ T5836] usb 4-1: new high-speed USB device number 86 using dummy_hcd
[  572.530265][T27097] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$���UL�vy��آ
�D��UD�w�}�zR'
[  572.548391][T27097] CPU: 1 UID: 0 PID: 27097 Comm: syz.0.4377 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  572.548422][T27097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  572.548435][T27097] Call Trace:
[  572.548445][T27097]  <TASK>
[  572.548455][T27097]  dump_stack_lvl+0x189/0x250
[  572.548489][T27097]  ? __pfx_dump_stack_lvl+0x10/0x10
[  572.548514][T27097]  ? __pfx__printk+0x10/0x10
[  572.548539][T27097]  ? kernfs_path_from_node+0x2c/0x260
[  572.548559][T27097]  ? kernfs_path_from_node+0x2c/0x260
[  572.548576][T27097]  ? kernfs_path_from_node+0x2c/0x260
[  572.548598][T27097]  ? kernfs_path_from_node+0x22c/0x260
[  572.548616][T27097]  ? kernfs_path_from_node+0x2c/0x260
[  572.548638][T27097]  sysfs_warn_dup+0x8e/0xa0
[  572.548667][T27097]  sysfs_do_create_link_sd+0xc0/0x110
[  572.548699][T27097]  device_add_class_symlinks+0x1cf/0x240
[  572.548727][T27097]  device_add+0x475/0xb50
[  572.548752][T27097]  wiphy_register+0x199a/0x26b0
[  572.548809][T27097]  ? __pfx_wiphy_register+0x10/0x10
[  572.548832][T27097]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  572.548868][T27097]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  572.548899][T27097]  ieee80211_register_hw+0x33e1/0x4120
[  572.548948][T27097]  ? ieee80211_register_hw+0x1481/0x4120
[  572.548994][T27097]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  572.549027][T27097]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  572.549065][T27097]  ? __hrtimer_setup+0x187/0x210
[  572.549088][T27097]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  572.549117][T27097]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  572.549172][T27097]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  572.549191][T27097]  ? trace_kmalloc+0x1f/0xd0
[  572.549210][T27097]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  572.549234][T27097]  ? kstrndup+0xbf/0x160
[  572.549272][T27097]  hwsim_new_radio_nl+0xea4/0x1b10
[  572.549297][T27097]  ? __pfx___nla_validate_parse+0x10/0x10
[  572.549338][T27097]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  572.549373][T27097]  ? __nla_parse+0x40/0x60
[  572.549403][T27097]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  572.549441][T27097]  genl_family_rcv_msg_doit+0x212/0x300
[  572.549474][T27097]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  572.549515][T27097]  ? bpf_lsm_capable+0x9/0x20
[  572.549536][T27097]  ? security_capable+0x7e/0x2e0
[  572.549565][T27097]  genl_rcv_msg+0x60e/0x790
[  572.549598][T27097]  ? __pfx_genl_rcv_msg+0x10/0x10
[  572.549622][T27097]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  572.549658][T27097]  netlink_rcv_skb+0x205/0x470
[  572.549682][T27097]  ? __pfx_genl_rcv_msg+0x10/0x10
[  572.549712][T27097]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  572.549757][T27097]  ? down_read+0x1ad/0x2e0
[  572.549782][T27097]  genl_rcv+0x28/0x40
[  572.549809][T27097]  netlink_unicast+0x758/0x8d0
[  572.549845][T27097]  netlink_sendmsg+0x805/0xb30
[  572.549882][T27097]  ? __pfx_netlink_sendmsg+0x10/0x10
[  572.549910][T27097]  ? aa_sock_msg_perm+0x94/0x160
[  572.549934][T27097]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  572.549968][T27097]  ? __pfx_netlink_sendmsg+0x10/0x10
[  572.549995][T27097]  __sock_sendmsg+0x219/0x270
[  572.550020][T27097]  ____sys_sendmsg+0x505/0x830
[  572.550054][T27097]  ? __pfx_____sys_sendmsg+0x10/0x10
[  572.550093][T27097]  ? import_iovec+0x74/0xa0
[  572.550119][T27097]  ___sys_sendmsg+0x21f/0x2a0
[  572.550146][T27097]  ? __pfx____sys_sendmsg+0x10/0x10
[  572.550216][T27097]  ? __fget_files+0x2a/0x420
[  572.550246][T27097]  ? __fget_files+0x3a0/0x420
[  572.550288][T27097]  __x64_sys_sendmsg+0x19b/0x260
[  572.550318][T27097]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  572.550357][T27097]  ? rcu_is_watching+0x15/0xb0
[  572.550387][T27097]  ? do_syscall_64+0xbe/0x3b0
[  572.550414][T27097]  do_syscall_64+0xfa/0x3b0
[  572.550431][T27097]  ? lockdep_hardirqs_on+0x9c/0x150
[  572.550461][T27097]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.550482][T27097]  ? clear_bhb_loop+0x60/0xb0
[  572.550508][T27097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.550527][T27097] RIP: 0033:0x7fc2e418e929
[  572.550547][T27097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.550565][T27097] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  572.550588][T27097] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  572.550603][T27097] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  572.550616][T27097] RBP: 00007fc2e4210b39 R08: 0000000000000000 R09: 0000000000000000
[  572.550629][T27097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.550641][T27097] R13: 0000000000000000 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  572.550676][T27097]  </TASK>
[  573.031873][ T5836] usb 4-1: config 1 interface 0 has no altsetting 0
[  573.060235][ T5836] usb 4-1: New USB device found, idVendor=056a, idProduct=00b0, bcdDevice= 0.40
[  573.079912][ T5836] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.089090][T27105] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  573.109231][ T5836] usb 4-1: Product: 鸨襤謕밄嵗壼स偨ᄣ젅⩅堭쯳쯵五㚘⏖ꭩᩎᅖ联슞췟㕊丁๐嶝콍Ϝᡸ譣镈ᶇ뢑鮈曉ᒗᶶ຦鷨譚╍ꝑ⇶ೣ滍㛁빀⦨璨桴김캨筩墷ﻚꚺ岦泼邤軦欨␾빿駑뇏혜噗솖騕隙댪운ᥭꞀ⳴쉱큕䰲ﾒ嗌［䏥몜䟹⑔䌌ᢑ倪딳躩抡퀌식锷떤㮽
[  573.187069][ T5836] usb 4-1: Manufacturer: ꄨ቏啱卅珑结咽㯅휲趘쓌氢橛닔Ƽ퉨䋬퐠鶝荧飛擌湄㭭
[  573.217210][ T5836] usb 4-1: SerialNumber: 矱줂䐑錏䀒ᆔ쏬䄽捜됓䢳ꔮ沊輣笐⩽偫뤹黝៣ᾤ㛆阧ꕙ㶹ⱨ鬝屁뙣䜻楦ꠕ㸳쟙憴⸖ꉒ朖偙婪媀앺畽饯䑉곈쟶㩸ᕃ啳슁䂩蜚؇诓䥝冀賳쥗炱Ⳗ␹ｯ肝吐ৈ洋祯琾뙶㯿筼泼䞋Ẵਚ厝폹䜑荃鶿翧苕䡉
[  573.708053][ T5836] usbhid 4-1:1.0: can't add hid device: -71
[  573.718762][ T5836] usbhid 4-1:1.0: probe with driver usbhid failed with error -71
[  573.753905][ T5836] usb 4-1: USB disconnect, device number 86
[  574.507442][T27192] hfs: can't find a HFS filesystem on dev rnullb0
[  574.710160][T27200] FAULT_INJECTION: forcing a failure.
[  574.710160][T27200] name failslab, interval 1, probability 0, space 0, times 0
[  574.731765][T27200] CPU: 1 UID: 0 PID: 27200 Comm: syz.0.4385 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  574.731794][T27200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  574.731806][T27200] Call Trace:
[  574.731814][T27200]  <TASK>
[  574.731823][T27200]  dump_stack_lvl+0x189/0x250
[  574.731852][T27200]  ? __pfx____ratelimit+0x10/0x10
[  574.731891][T27200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  574.731914][T27200]  ? __pfx__printk+0x10/0x10
[  574.731943][T27200]  ? __pfx___might_resched+0x10/0x10
[  574.731964][T27200]  ? fs_reclaim_acquire+0x7d/0x100
[  574.731996][T27200]  should_fail_ex+0x414/0x560
[  574.732027][T27200]  should_failslab+0xa8/0x100
[  574.732054][T27200]  kmem_cache_alloc_noprof+0x73/0x3c0
[  574.732076][T27200]  ? alloc_vfsmnt+0x23/0x4e0
[  574.732104][T27200]  alloc_vfsmnt+0x23/0x4e0
[  574.732129][T27200]  vfs_create_mount+0x6c/0x3d0
[  574.732157][T27200]  mq_init_ns+0x3a1/0x510
[  574.732191][T27200]  copy_ipcs+0x2f6/0x4f0
[  574.732216][T27200]  create_new_namespaces+0x218/0x720
[  574.732242][T27200]  ? security_capable+0x7e/0x2e0
[  574.732271][T27200]  unshare_nsproxy_namespaces+0x11c/0x170
[  574.732297][T27200]  ksys_unshare+0x4c8/0x8c0
[  574.732331][T27200]  ? __pfx_ksys_unshare+0x10/0x10
[  574.732358][T27200]  ? __pfx_ksys_write+0x10/0x10
[  574.732394][T27200]  __x64_sys_unshare+0x38/0x50
[  574.732420][T27200]  do_syscall_64+0xfa/0x3b0
[  574.732438][T27200]  ? lockdep_hardirqs_on+0x9c/0x150
[  574.732465][T27200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.732484][T27200]  ? clear_bhb_loop+0x60/0xb0
[  574.732508][T27200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.732526][T27200] RIP: 0033:0x7fc2e418e929
[  574.732546][T27200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.732563][T27200] RSP: 002b:00007fc2e4f51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  574.732584][T27200] RAX: ffffffffffffffda RBX: 00007fc2e43b5fa0 RCX: 00007fc2e418e929
[  574.732599][T27200] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000
[  574.732612][T27200] RBP: 00007fc2e4f51090 R08: 0000000000000000 R09: 0000000000000000
[  574.732624][T27200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  574.732636][T27200] R13: 0000000000000001 R14: 00007fc2e43b5fa0 R15: 00007ffdff733548
[  574.732668][T27200]  </TASK>
[  575.866001][T27260] netlink: 'syz.3.4396': attribute type 10 has an invalid length.
[  575.874656][T27260] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4396'.
[  576.598036][T27294] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4402'.
[  576.620957][T27294] (syz.3.4402,27294,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  576.635559][T27294] (syz.3.4402,27294,0):ocfs2_fill_super:1177 ERROR: status = -22
[  579.339766][T27417] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4416'.
[  579.349017][T27417] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4416'.
[  624.371054][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  676.089964][T10186] bridge_slave_1: left allmulticast mode
[  676.096053][T10186] bridge_slave_1: left promiscuous mode
[  676.102008][T10186] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.371135][T10186] team0: Port device geneve0 removed
[  676.575292][T10186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  676.586149][T10186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  676.596486][T10186] bond0 (unregistering): Released all slaves
[  678.223734][T10186] tipc: Disabling bearer <udp:s>
[  678.230319][T10186] tipc: Left network mode
[  685.805626][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  694.121675][   T31] INFO: task kworker/1:7:5915 blocked for more than 143 seconds.
[  694.129455][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  694.137158][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  694.146168][   T31] task:kworker/1:7     state:D stack:19480 pid:5915  tgid:5915  ppid:2      task_flags:0x4208060 flags:0x00004000
[  694.158277][   T31] Workqueue: events rfkill_op_handler
[  694.163729][   T31] Call Trace:
[  694.167043][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  694.170016][   T31]  __schedule+0x16f5/0x4d00
[  694.174825][   T31]  ? __lock_acquire+0xab9/0xd20
[  694.179719][   T31]  ? schedule+0x165/0x360
[  694.201345][   T31]  ? __pfx___schedule+0x10/0x10
[  694.206303][   T31]  ? schedule+0x91/0x360
[  694.211412][   T31]  schedule+0x165/0x360
[  694.215629][   T31]  schedule_preempt_disabled+0x13/0x30
[  694.221134][   T31]  __mutex_lock+0x724/0xe80
[  694.271026][   T31]  ? __lock_acquire+0xab9/0xd20
[  694.279561][   T31]  ? __mutex_lock+0x51b/0xe80
[  694.286224][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[  694.291896][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  694.296961][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  694.302291][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  694.308217][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  694.314619][   T31]  ? kobject_uevent_env+0x36b/0x8c0
[  694.319887][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  694.325784][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[  694.330919][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  694.336703][   T31]  rfkill_set_block+0x1cf/0x440
[  694.341691][   T31]  rfkill_epo+0x7e/0x180
[  694.345960][   T31]  rfkill_op_handler+0x84/0x240
[  694.350806][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  694.356577][   T31]  process_scheduled_works+0xae1/0x17b0
[  694.362243][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  694.368234][   T31]  worker_thread+0x8a0/0xda0
[  694.372900][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  694.379259][   T31]  ? __kthread_parkme+0x7b/0x200
[  694.384295][   T31]  kthread+0x70e/0x8a0
[  694.388393][   T31]  ? __pfx_worker_thread+0x10/0x10
[  694.393548][   T31]  ? __pfx_kthread+0x10/0x10
[  694.398163][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  694.403426][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  694.408653][   T31]  ? __pfx_kthread+0x10/0x10
[  694.413314][   T31]  ret_from_fork+0x3f9/0x770
[  694.417926][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  694.423121][   T31]  ? __switch_to_asm+0x39/0x70
[  694.427909][   T31]  ? __switch_to_asm+0x33/0x70
[  694.432747][   T31]  ? __pfx_kthread+0x10/0x10
[  694.437370][   T31]  ret_from_fork_asm+0x1a/0x30
[  694.442255][   T31]  </TASK>
[  694.445355][   T31] INFO: task syz-executor:18716 blocked for more than 143 seconds.
[  694.454294][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  694.462007][   T31]       Blocked by coredump.
[  694.466606][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  694.475313][   T31] task:syz-executor    state:D stack:21960 pid:18716 tgid:18716 ppid:1      task_flags:0x40054c flags:0x00004006
[  694.487282][   T31] Call Trace:
[  694.490556][   T31]  <TASK>
[  694.493542][   T31]  __schedule+0x16f5/0x4d00
[  694.498093][   T31]  ? __lock_acquire+0xab9/0xd20
[  694.502997][   T31]  ? schedule+0x165/0x360
[  694.507364][   T31]  ? __pfx___schedule+0x10/0x10
[  694.512326][   T31]  ? schedule+0x91/0x360
[  694.516599][   T31]  schedule+0x165/0x360
[  694.520755][   T31]  schedule_preempt_disabled+0x13/0x30
[  694.526261][   T31]  __mutex_lock+0x724/0xe80
[  694.530786][   T31]  ? kobject_put+0x43f/0x480
[  694.535525][   T31]  ? __mutex_lock+0x51b/0xe80
[  694.540276][   T31]  ? rfkill_unregister+0xc8/0x220
[  694.545394][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  694.550442][   T31]  ? __pfx_device_del+0x10/0x10
[  694.555407][   T31]  ? hci_sock_dev_event+0x42d/0x600
[  694.560643][   T31]  rfkill_unregister+0xc8/0x220
[  694.565577][   T31]  hci_unregister_dev+0x360/0x500
[  694.570630][   T31]  vhci_release+0x80/0xd0
[  694.575040][   T31]  ? __pfx_vhci_release+0x10/0x10
[  694.580105][   T31]  __fput+0x44c/0xa70
[  694.584194][   T31]  task_work_run+0x1d1/0x260
[  694.588822][   T31]  ? __pfx_task_work_run+0x10/0x10
[  694.594014][   T31]  ? kmem_cache_free+0x18f/0x400
[  694.598956][   T31]  do_exit+0x6ad/0x22e0
[  694.603219][   T31]  ? do_raw_spin_lock+0x121/0x290
[  694.608273][   T31]  ? __pfx_do_exit+0x10/0x10
[  694.613092][   T31]  ? cgroup_freezing+0x20/0x360
[  694.617980][   T31]  do_group_exit+0x21c/0x2d0
[  694.622655][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  694.627886][   T31]  get_signal+0x1286/0x1340
[  694.632488][   T31]  arch_do_signal_or_restart+0x9a/0x750
[  694.638065][   T31]  ? __pfx___x64_sys_wait4+0x10/0x10
[  694.643436][   T31]  ? fput_close_sync+0x119/0x200
[  694.648399][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  694.654640][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  694.660119][   T31]  exit_to_user_mode_loop+0x75/0x110
[  694.665461][   T31]  do_syscall_64+0x2bd/0x3b0
[  694.670070][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  694.675315][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.681747][   T31]  ? clear_bhb_loop+0x60/0xb0
[  694.686452][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.692729][   T31] RIP: 0033:0x7f0d88984b97
[  694.697174][   T31] RSP: 002b:00007ffd67073360 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[  694.705698][   T31] RAX: fffffffffffffe00 RBX: 00000000000002e2 RCX: 00007f0d88984b97
[  694.713774][   T31] RDX: 0000000040000000 RSI: 00007ffd670733cc RDI: 00000000ffffffff
[  694.721832][   T31] RBP: 00007ffd670733cc R08: 0000000000000000 R09: 0000000000000000
[  694.729834][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000013e
[  694.737894][   T31] R13: 0000555567f7a590 R14: 000000000008201d R15: 00007ffd67073420
[  694.745950][   T31]  </TASK>
[  694.748994][   T31] INFO: task kworker/1:0:19877 blocked for more than 143 seconds.
[  694.756876][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  694.765515][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  694.774292][   T31] task:kworker/1:0     state:D stack:23496 pid:19877 tgid:19877 ppid:2      task_flags:0x4208060 flags:0x00004000
[  694.786370][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  694.793154][   T31] Call Trace:
[  694.796719][   T31]  <TASK>
[  694.799658][   T31]  __schedule+0x16f5/0x4d00
[  694.804274][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  694.809513][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  694.815929][   T31]  ? schedule+0x165/0x360
[  694.820297][   T31]  ? __pfx___schedule+0x10/0x10
[  694.825287][   T31]  ? schedule+0x91/0x360
[  694.829573][   T31]  schedule+0x165/0x360
[  694.833792][   T31]  schedule_preempt_disabled+0x13/0x30
[  694.839288][   T31]  __mutex_lock+0x724/0xe80
[  694.845241][   T31]  ? look_up_lock_class+0x74/0x170
[  694.850576][   T31]  ? __mutex_lock+0x51b/0xe80
[  694.855367][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  694.862065][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  694.867156][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  694.873517][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  694.879303][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[  694.885896][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  694.892081][   T31]  process_scheduled_works+0xae1/0x17b0
[  694.897871][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  694.904111][   T31]  worker_thread+0x8a0/0xda0
[  694.908739][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  694.915166][   T31]  ? __kthread_parkme+0x7b/0x200
[  694.920142][   T31]  kthread+0x70e/0x8a0
[  694.924355][   T31]  ? __pfx_worker_thread+0x10/0x10
[  694.929505][   T31]  ? __pfx_kthread+0x10/0x10
[  694.934317][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  694.939556][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  694.944859][   T31]  ? __pfx_kthread+0x10/0x10
[  694.949483][   T31]  ret_from_fork+0x3f9/0x770
[  694.954136][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  694.959275][   T31]  ? __switch_to_asm+0x39/0x70
[  694.964207][   T31]  ? __switch_to_asm+0x33/0x70
[  694.968997][   T31]  ? __pfx_kthread+0x10/0x10
[  694.973639][   T31]  ret_from_fork_asm+0x1a/0x30
[  694.978443][   T31]  </TASK>
[  694.981617][   T31] INFO: task syz.2.3113:20792 blocked for more than 144 seconds.
[  694.989443][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  695.004191][   T31]       Blocked by coredump.
[  695.009162][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  695.017885][   T31] task:syz.2.3113      state:D stack:25976 pid:20792 tgid:20792 ppid:15334  task_flags:0x40044c flags:0x00004006
[  695.029892][   T31] Call Trace:
[  695.033245][   T31]  <TASK>
[  695.036219][   T31]  __schedule+0x16f5/0x4d00
[  695.040754][   T31]  ? __lock_acquire+0xab9/0xd20
[  695.045694][   T31]  ? schedule+0x165/0x360
[  695.050081][   T31]  ? __pfx___schedule+0x10/0x10
[  695.055027][   T31]  ? schedule+0x91/0x360
[  695.059310][   T31]  schedule+0x165/0x360
[  695.063607][   T31]  schedule_preempt_disabled+0x13/0x30
[  695.069110][   T31]  __mutex_lock+0x724/0xe80
[  695.073689][   T31]  ? kobject_put+0x43f/0x480
[  695.078323][   T31]  ? __mutex_lock+0x51b/0xe80
[  695.083374][   T31]  ? rfkill_unregister+0xc8/0x220
[  695.088406][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  695.093509][   T31]  ? __pfx_device_del+0x10/0x10
[  695.098469][   T31]  ? hci_sock_dev_event+0x42d/0x600
[  695.103780][   T31]  rfkill_unregister+0xc8/0x220
[  695.108660][   T31]  hci_unregister_dev+0x360/0x500
[  695.113822][   T31]  vhci_release+0x80/0xd0
[  695.118199][   T31]  ? __pfx_vhci_release+0x10/0x10
[  695.123295][   T31]  __fput+0x44c/0xa70
[  695.127344][   T31]  task_work_run+0x1d1/0x260
[  695.132058][   T31]  ? __pfx_task_work_run+0x10/0x10
[  695.137225][   T31]  ? kmem_cache_free+0x18f/0x400
[  695.142263][   T31]  do_exit+0x6ad/0x22e0
[  695.146449][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  695.151923][   T31]  ? do_raw_spin_lock+0x121/0x290
[  695.156979][   T31]  ? __pfx_do_exit+0x10/0x10
[  695.161695][   T31]  do_group_exit+0x21c/0x2d0
[  695.166316][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  695.171565][   T31]  get_signal+0x1286/0x1340
[  695.176107][   T31]  arch_do_signal_or_restart+0x9a/0x750
[  695.181743][   T31]  ? __pfx_get_timespec64+0x10/0x10
[  695.186968][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  695.193225][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  695.198709][   T31]  exit_to_user_mode_loop+0x75/0x110
[  695.204077][   T31]  do_syscall_64+0x2bd/0x3b0
[  695.208710][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  695.214010][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.220110][   T31]  ? clear_bhb_loop+0x60/0xb0
[  695.224863][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.230802][   T31] RIP: 0033:0x7fddba7c11e5
[  695.235283][   T31] RSP: 002b:00007fddbb58cf80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  695.243763][   T31] RAX: fffffffffffffdfc RBX: 00007fddba9b5fa0 RCX: 00007fddba7c11e5
[  695.251978][   T31] RDX: 00007fddbb58cfc0 RSI: 0000000000000000 RDI: 0000000000000000
[  695.260003][   T31] RBP: 00007fddba810b39 R08: 0000000000000000 R09: 0000000000000000
[  695.268059][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  695.276168][   T31] R13: 0000000000000001 R14: 00007fddba9b5fa0 R15: 00007ffe160d2658
[  695.284257][   T31]  </TASK>
[  695.287329][   T31] INFO: task syz.1.4149:25289 blocked for more than 144 seconds.
[  695.295226][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  695.302927][   T31]       Blocked by coredump.
[  695.307524][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  695.316240][   T31] task:syz.1.4149      state:D stack:25128 pid:25289 tgid:25289 ppid:18716  task_flags:0x40044c flags:0x00004006
[  695.328279][   T31] Call Trace:
[  695.331620][   T31]  <TASK>
[  695.334571][   T31]  __schedule+0x16f5/0x4d00
[  695.339087][   T31]  ? __lock_acquire+0xab9/0xd20
[  695.344008][   T31]  ? schedule+0x165/0x360
[  695.348371][   T31]  ? __pfx___schedule+0x10/0x10
[  695.353290][   T31]  ? schedule+0x91/0x360
[  695.357563][   T31]  schedule+0x165/0x360
[  695.361783][   T31]  schedule_preempt_disabled+0x13/0x30
[  695.367271][   T31]  __mutex_lock+0x724/0xe80
[  695.371887][   T31]  ? kobject_put+0x43f/0x480
[  695.376500][   T31]  ? __mutex_lock+0x51b/0xe80
[  695.381323][   T31]  ? rfkill_unregister+0xc8/0x220
[  695.386372][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  695.391473][   T31]  ? __pfx_device_del+0x10/0x10
[  695.396876][   T31]  rfkill_unregister+0xc8/0x220
[  695.401867][   T31]  nfc_unregister_device+0x96/0x2a0
[  695.407246][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  695.413096][   T31]  virtual_ncidev_close+0x56/0x90
[  695.418242][   T31]  __fput+0x44c/0xa70
[  695.422335][   T31]  task_work_run+0x1d1/0x260
[  695.426972][   T31]  ? __pfx_task_work_run+0x10/0x10
[  695.432214][   T31]  do_exit+0x6ad/0x22e0
[  695.436430][   T31]  ? do_raw_spin_lock+0x21f/0x290
[  695.441545][   T31]  ? __pfx_do_exit+0x10/0x10
[  695.446162][   T31]  ? cgroup_freezing+0x20/0x360
[  695.451052][   T31]  do_group_exit+0x21c/0x2d0
[  695.455695][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  695.460925][   T31]  get_signal+0x1286/0x1340
[  695.465525][   T31]  arch_do_signal_or_restart+0x9a/0x750
[  695.471106][   T31]  ? __pfx_get_timespec64+0x10/0x10
[  695.476368][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  695.482622][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  695.488103][   T31]  exit_to_user_mode_loop+0x75/0x110
[  695.493459][   T31]  do_syscall_64+0x2bd/0x3b0
[  695.498079][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.504227][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  695.510403][   T31]  ? clear_bhb_loop+0x60/0xb0
[  695.515135][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.521051][   T31] RIP: 0033:0x7f0d889c11e5
[  695.525529][   T31] RSP: 002b:00007ffd67073100 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  695.534022][   T31] RAX: fffffffffffffdfc RBX: 00007f0d88bb5fa0 RCX: 00007f0d889c11e5
[  695.542124][   T31] RDX: 00007ffd67073140 RSI: 0000000000000000 RDI: 0000000000000000
[  695.550112][   T31] RBP: 00007f0d88bb7ba0 R08: 0000000000000000 R09: 7fffffffffffffff
[  695.558155][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000082bd0
[  695.566197][   T31] R13: 00007f0d88bb6080 R14: ffffffffffffffff R15: 00007ffd67073280
[  695.574319][   T31]  </TASK>
[  695.577389][   T31] INFO: task syz-executor:25904 blocked for more than 144 seconds.
[  695.585392][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  695.593073][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  695.601902][   T31] task:syz-executor    state:D stack:28008 pid:25904 tgid:25904 ppid:1      task_flags:0x400040 flags:0x00004000
[  695.613926][   T31] Call Trace:
[  695.617222][   T31]  <TASK>
[  695.620154][   T31]  __schedule+0x16f5/0x4d00
[  695.624717][   T31]  ? __lock_acquire+0xab9/0xd20
[  695.629591][   T31]  ? schedule+0x165/0x360
[  695.633995][   T31]  ? __pfx___schedule+0x10/0x10
[  695.638890][   T31]  ? schedule+0x91/0x360
[  695.643234][   T31]  schedule+0x165/0x360
[  695.647419][   T31]  schedule_preempt_disabled+0x13/0x30
[  695.652965][   T31]  __mutex_lock+0x724/0xe80
[  695.657499][   T31]  ? __mutex_lock+0x51b/0xe80
[  695.662262][   T31]  ? rfkill_register+0x37/0x8e0
[  695.667149][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  695.672249][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  695.677580][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  695.683066][   T31]  ? device_initialize+0x24b/0x440
[  695.688204][   T31]  rfkill_register+0x37/0x8e0
[  695.692938][   T31]  hci_register_dev+0x3f5/0x890
[  695.697822][   T31]  vhci_create_device+0x39c/0x6e0
[  695.703027][   T31]  vhci_write+0x3ce/0x4a0
[  695.707415][   T31]  vfs_write+0x548/0xa90
[  695.711761][   T31]  ? __pfx_vhci_write+0x10/0x10
[  695.716656][   T31]  ? __pfx_vfs_write+0x10/0x10
[  695.722265][   T31]  ? count_memcg_event_mm+0x21/0x260
[  695.727588][   T31]  ksys_write+0x145/0x250
[  695.731997][   T31]  ? __pfx_ksys_write+0x10/0x10
[  695.736881][   T31]  ? do_syscall_64+0xbe/0x3b0
[  695.741623][   T31]  do_syscall_64+0xfa/0x3b0
[  695.746146][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  695.751401][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.757490][   T31]  ? clear_bhb_loop+0x60/0xb0
[  695.762252][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.768163][   T31] RIP: 0033:0x7f0ed758d3a0
[  695.772656][   T31] RSP: 002b:00007ffd65f82ac8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  695.781101][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ed758d3a0
[  695.789226][   T31] RDX: 0000000000000002 RSI: 00007ffd65f82ada RDI: 00000000000000ca
[  695.797249][   T31] RBP: 00007f0ed77b6738 R08: 0000000000000000 R09: 00007f0ed82ed6c0
[  695.805684][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  695.813729][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  695.821822][   T31]  </TASK>
[  695.824889][   T31] INFO: task syz-executor:26031 blocked for more than 145 seconds.
[  695.832914][   T31]       Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0
[  695.840566][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  695.849320][   T31] task:syz-executor    state:D stack:28008 pid:26031 tgid:26031 ppid:1      task_flags:0x400040 flags:0x00004000
[  695.863944][   T31] Call Trace:
[  695.867231][   T31]  <TASK>
[  695.870162][   T31]  __schedule+0x16f5/0x4d00
[  695.874775][   T31]  ? __lock_acquire+0xab9/0xd20
[  695.879650][   T31]  ? schedule+0x165/0x360
[  695.887428][   T31]  ? __pfx___schedule+0x10/0x10
[  695.892480][   T31]  ? schedule+0x91/0x360
[  695.896775][   T31]  schedule+0x165/0x360
[  695.900970][   T31]  schedule_preempt_disabled+0x13/0x30
[  695.906732][   T31]  __mutex_lock+0x724/0xe80
[  695.911307][   T31]  ? __mutex_lock+0x51b/0xe80
[  695.916008][   T31]  ? rfkill_register+0x37/0x8e0
[  695.920916][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  695.926116][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  695.931577][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  695.936986][   T31]  ? device_initialize+0x24b/0x440
[  695.942234][   T31]  rfkill_register+0x37/0x8e0
[  695.946954][   T31]  hci_register_dev+0x3f5/0x890
[  695.951907][   T31]  vhci_create_device+0x39c/0x6e0
[  695.956967][   T31]  vhci_write+0x3ce/0x4a0
[  695.961439][   T31]  vfs_write+0x548/0xa90
[  695.965806][   T31]  ? __pfx_vhci_write+0x10/0x10
[  695.970783][   T31]  ? __pfx_vfs_write+0x10/0x10
[  695.975647][   T31]  ? count_memcg_event_mm+0x21/0x260
[  695.980965][   T31]  ksys_write+0x145/0x250
[  695.985464][   T31]  ? __pfx_ksys_write+0x10/0x10
[  695.990447][   T31]  ? do_syscall_64+0xbe/0x3b0
[  695.995211][   T31]  do_syscall_64+0xfa/0x3b0
[  695.999777][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  696.005159][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.011249][   T31]  ? clear_bhb_loop+0x60/0xb0
[  696.016054][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.022061][   T31] RIP: 0033:0x7fd80f18d3a0
[  696.026484][   T31] RSP: 002b:00007ffe2f1a5f78 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  696.034943][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fd80f18d3a0
[  696.043653][   T31] RDX: 0000000000000002 RSI: 00007ffe2f1a5f8a RDI: 00000000000000ca
[  696.051697][   T31] RBP: 00007fd80f3b6738 R08: 0000000000000000 R09: 00007fd80feed6c0
[  696.059712][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  696.067924][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  696.075969][   T31]  </TASK>
[  696.079007][   T31] 
[  696.079007][   T31] Showing all locks held in the system:
[  696.086826][   T31] 1 lock held by khungtaskd/31:
[  696.091796][   T31]  #0: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  696.101798][   T31] 2 locks held by kworker/u8:6/2932:
[  696.107094][   T31]  #0: ffff8880b8639f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  696.117137][   T31]  #1: ffffc9000ba2fbc0 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  696.129951][   T31] 2 locks held by getty/5594:
[  696.136841][   T31]  #0: ffff88803522a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  696.146744][   T31]  #1: ffffc90002fee2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  696.157004][   T31] 4 locks held by kworker/1:7/5915:
[  696.162270][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  696.173386][   T31]  #1: ffffc900043d7bc0 ((rfkill_op_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  696.184430][   T31]  #2: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_epo+0x4c/0x180
[  696.194051][   T31]  #3: ffff8880285ce100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[  696.203798][   T31] 4 locks held by kworker/u8:15/10186:
[  696.209251][   T31]  #0: ffff88801b6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  696.220229][   T31]  #1: ffffc9000f057bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  696.230832][   T31]  #2: ffffffff8f715650 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[  696.240252][   T31]  #3: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  696.250504][   T31] 1 lock held by syz-executor/18716:
[  696.255914][   T31]  #0: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  696.266119][   T31] 3 locks held by kworker/1:0/19877:
[  696.271522][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  696.282612][   T31]  #1: ffffc9000c32fbc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  696.296258][   T31]  #2: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  696.307648][   T31] 1 lock held by syz.2.3113/20792:
[  696.312857][   T31]  #0: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  696.323051][   T31] 2 locks held by syz.1.4149/25289:
[  696.328258][   T31]  #0: ffff8880285ce100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  696.338115][   T31]  #1: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  696.348295][   T31] 2 locks held by syz-executor/25904:
[  696.353758][   T31]  #0: ffff8880773e2118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6e0
[  696.363872][   T31]  #1: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  696.374045][   T31] 2 locks held by syz-executor/26031:
[  696.379451][   T31]  #0: ffff88804ae66918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6e0
[  696.389557][   T31]  #1: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  696.399582][   T31] 2 locks held by syz.3.4407/27320:
[  696.404880][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.413420][   T31]  #1: ffffffff8f9fd228 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x12d/0x820
[  696.423558][   T31] 1 lock held by syz.0.4416/27411:
[  696.428781][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.437330][   T31] 1 lock held by syz-executor/27566:
[  696.442740][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.451395][   T31] 1 lock held by syz-executor/27568:
[  696.456701][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.465221][   T31] 1 lock held by syz-executor/27570:
[  696.470521][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.479072][   T31] 1 lock held by syz-executor/27572:
[  696.484449][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.493051][   T31] 1 lock held by syz-executor/27578:
[  696.498386][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.506942][   T31] 1 lock held by syz-executor/27580:
[  696.512311][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.520906][   T31] 1 lock held by syz-executor/27582:
[  696.526287][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.535062][   T31] 1 lock held by syz-executor/27584:
[  696.541172][   T31]  #0: ffffffff8ebd46c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  696.549762][   T31] 
[  696.552147][   T31] =============================================
[  696.552147][   T31] 
[  696.560579][   T31] NMI backtrace for cpu 1
[  696.560596][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  696.560618][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  696.560628][   T31] Call Trace:
[  696.560635][   T31]  <TASK>
[  696.560641][   T31]  dump_stack_lvl+0x189/0x250
[  696.560668][   T31]  ? __wake_up_klogd+0xd9/0x110
[  696.560691][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  696.560708][   T31]  ? __pfx__printk+0x10/0x10
[  696.560734][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  696.560757][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  696.560775][   T31]  ? _printk+0xcf/0x120
[  696.560795][   T31]  ? __pfx__printk+0x10/0x10
[  696.560812][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  696.560837][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  696.560860][   T31]  watchdog+0xfee/0x1030
[  696.560876][   T31]  ? watchdog+0x1de/0x1030
[  696.560896][   T31]  kthread+0x70e/0x8a0
[  696.560919][   T31]  ? __pfx_watchdog+0x10/0x10
[  696.560932][   T31]  ? __pfx_kthread+0x10/0x10
[  696.560953][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  696.560981][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  696.561002][   T31]  ? __pfx_kthread+0x10/0x10
[  696.561022][   T31]  ret_from_fork+0x3f9/0x770
[  696.561040][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  696.561060][   T31]  ? __switch_to_asm+0x39/0x70
[  696.561077][   T31]  ? __switch_to_asm+0x33/0x70
[  696.561094][   T31]  ? __pfx_kthread+0x10/0x10
[  696.561114][   T31]  ret_from_fork_asm+0x1a/0x30
[  696.561145][   T31]  </TASK>
[  696.561154][   T31] Sending NMI from CPU 1 to CPUs 0:
[  696.718840][    C0] NMI backtrace for cpu 0
[  696.718859][    C0] CPU: 0 UID: 0 PID: 2932 Comm: kworker/u8:6 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  696.718879][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  696.718889][    C0] Workqueue: events_unbound toggle_allocation_gate
[  696.718914][    C0] RIP: 0010:rcu_is_watching+0x55/0xb0
[  696.718935][    C0] Code: 3c c7 8d 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 ec b6 7c 00 48 c7 c3 58 6f c1 92 49 03 1e 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 34 8b 03 65 ff 0d 89 dc 18 11 74 11 83 e0
[  696.718949][    C0] RSP: 0018:ffffc9000ba2f648 EFLAGS: 00000a06
[  696.718963][    C0] RAX: 1ffff110170c65eb RBX: ffff8880b8632f58 RCX: c559741ca1ef8e00
[  696.718975][    C0] RDX: 0000000000000000 RSI: ffffffff8be41820 RDI: ffffffff8be417e0
[  696.718987][    C0] RBP: ffffc9000ba2f830 R08: ffffffff8fc22ef7 R09: 1ffffffff1f845de
[  696.718998][    C0] R10: dffffc0000000000 R11: fffffbfff1f845df R12: dffffc0000000000
[  696.719010][    C0] R13: ffffffff81676f41 R14: ffffffff8dc73c60 R15: dffffc0000000000
[  696.719021][    C0] FS:  0000000000000000(0000) GS:ffff888125a1c000(0000) knlGS:0000000000000000
[  696.719035][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  696.719047][    C0] CR2: 0000561fadc5c3e8 CR3: 000000000e138000 CR4: 00000000003526f0
[  696.719063][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  696.719073][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  696.719084][    C0] Call Trace:
[  696.719091][    C0]  <TASK>
[  696.719099][    C0]  ? __kmalloc_node_track_caller_noprof+0xe8/0x4e0
[  696.719119][    C0]  lock_release+0x4b/0x3e0
[  696.719137][    C0]  ? __kmalloc_node_track_caller_noprof+0xe8/0x4e0
[  696.719156][    C0]  _raw_spin_unlock+0x16/0x50
[  696.719176][    C0]  __text_poke+0x7b1/0xa10
[  696.719199][    C0]  ? __pfx_text_poke_memcpy+0x10/0x10
[  696.719225][    C0]  ? __kmalloc_node_track_caller_noprof+0xe8/0x4e0
[  696.719242][    C0]  ? __pfx___text_poke+0x10/0x10
[  696.719259][    C0]  ? rcu_is_watching+0x15/0xb0
[  696.719276][    C0]  ? trace_contention_end+0x39/0x120
[  696.719300][    C0]  smp_text_poke_batch_finish+0x8af/0x1100
[  696.719323][    C0]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  696.719345][    C0]  ? arch_jump_label_transform_queue+0x97/0x110
[  696.719372][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  696.719394][    C0]  static_key_disable_cpuslocked+0xc5/0x1b0
[  696.719414][    C0]  static_key_disable+0x1a/0x20
[  696.719432][    C0]  toggle_allocation_gate+0x1a1/0x240
[  696.719450][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  696.719469][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  696.719493][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  696.719510][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  696.719527][    C0]  process_scheduled_works+0xae1/0x17b0
[  696.719554][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  696.719578][    C0]  worker_thread+0x8a0/0xda0
[  696.719596][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  696.719620][    C0]  ? __kthread_parkme+0x7b/0x200
[  696.719641][    C0]  kthread+0x70e/0x8a0
[  696.719662][    C0]  ? __pfx_worker_thread+0x10/0x10
[  696.719678][    C0]  ? __pfx_kthread+0x10/0x10
[  696.719698][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  696.719717][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  696.719738][    C0]  ? __pfx_kthread+0x10/0x10
[  696.719757][    C0]  ret_from_fork+0x3f9/0x770
[  696.719773][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  696.719791][    C0]  ? __switch_to_asm+0x39/0x70
[  696.719810][    C0]  ? __switch_to_asm+0x33/0x70
[  696.719827][    C0]  ? __pfx_kthread+0x10/0x10
[  696.719847][    C0]  ret_from_fork_asm+0x1a/0x30
[  696.719872][    C0]  </TASK>
[  696.720955][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  697.082208][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  697.094023][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  697.104084][   T31] Call Trace:
[  697.107375][   T31]  <TASK>
[  697.110310][   T31]  dump_stack_lvl+0x99/0x250
[  697.114917][   T31]  ? __asan_memcpy+0x40/0x70
[  697.119525][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  697.124731][   T31]  ? __pfx__printk+0x10/0x10
[  697.129356][   T31]  panic+0x2db/0x790
[  697.133351][   T31]  ? __pfx_panic+0x10/0x10
[  697.137776][   T31]  ? __pfx_delay_tsc+0x10/0x10
[  697.142552][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  697.148367][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  697.153753][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  697.159926][   T31]  watchdog+0x102d/0x1030
[  697.164265][   T31]  ? watchdog+0x1de/0x1030
[  697.168690][   T31]  kthread+0x70e/0x8a0
[  697.172774][   T31]  ? __pfx_watchdog+0x10/0x10
[  697.177454][   T31]  ? __pfx_kthread+0x10/0x10
[  697.182055][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  697.187267][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  697.192477][   T31]  ? __pfx_kthread+0x10/0x10
[  697.197422][   T31]  ret_from_fork+0x3f9/0x770
[  697.202019][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  697.207143][   T31]  ? __switch_to_asm+0x39/0x70
[  697.211911][   T31]  ? __switch_to_asm+0x33/0x70
[  697.216687][   T31]  ? __pfx_kthread+0x10/0x10
[  697.221292][   T31]  ret_from_fork_asm+0x1a/0x30
[  697.226086][   T31]  </TASK>
[  697.229432][   T31] Kernel Offset: disabled
[  697.233760][   T31] Rebooting in 86400 seconds..