last executing test programs:

1m14.994036863s ago: executing program 3 (id=15):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x2, 0xdc, &(0x7f0000000440)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r2, @ANYRES8=r3, @ANYRESDEC], 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4400046, r4})
syz_usb_connect(0x5, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000440)={0x34, r7, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc2}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}]}]}, 0x34}}, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r10 = dup(r9)
write$UHID_INPUT(r10, &(0x7f00000030c0)={0xf, {"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", 0xb7b}}, 0x1006)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r11=>0x0})
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000540)={@empty, @ipv4={'\x00', '\xff\xff', @multicast1}, @rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x44201a6, r11})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000001900010000000000000000000a0040000000000000000000"], 0x1c}}, 0x0)

1m13.166028327s ago: executing program 3 (id=20):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'pimreg1\x00', <r0=>0x0})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000040)={0xa, 0x4e23, 0x4, @mcast1, 0x8001}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000080)="e3f89ccb910dd5293850e902b283c733246c23172a4178cec1090adc15d72c624e2088f0a18cda8853d0dff9f44e1ae0b7d2228ecfb8994575d9", 0x3a}, {&(0x7f00000000c0)="978fd06536c5bc4ae4032b589244eef9976759e4aa4e3b03e8e035d47ae3f67f2de2b7bf2eff2e353a33fd591f46908a516c83693cddf55585ee445ac4820914cae42f50daae3037d27c26292fe680ba6dfb5d94fc0c6003f00838e546c5537d062a48809b6dbbe00a8d7428a71021c9e1279325688fe0e4397026dee6ecb69670b7c7ac92a5b807e6a57d97f3397fde480b2ae65352a8f3fe150ba2fb424e75dbe8d57240fc22c933b08cbc414a01717f9cec18b2ebccd19e382d07b643ff002ec677e23ea147f06e589c0de0c000bf3ba84f73632f3a6e57e1c4302ba93b1c", 0xe0}, {&(0x7f00000001c0)="676cd2c23d9745e9a5f40b6db1922a66894ccddf462a78d1b9883b766ca225f17e04174e07203e568f0beb3033aa6e79148a40b7f4c75573bf719b084692075377dfb7642e248cfd16d5e2b3e49436bf4066496fa766d1d6aeba269122bba97da2185cbd9b5a1950f25fe1476742c01af3ec6ca18138604d9fc6cc", 0x7b}, {&(0x7f0000000240)="9f04f60bd0d2713537d94f9231a537e877158ae05902e3d64111be830e7a4c253604907231a57b392f83cd24a4e60dfda9de6815777612bd239d44b94ce44780076579bb520febf8ff12ac4615c9d654a6e64d07d1a6407962ed442398b7e738336efa4a704bc5556eaa52bb154a0f2655b3fd3014cd239993065cebcc1da4e2d4bb62458efa02224d92b180c23fd674699c043e8679ac0ab4e2b507505da3698307644499f02446", 0xa8}, {&(0x7f0000000300)="fd4c363f8bd994ea3e4c468b3a810a15114c00dcdce55172b056d1c4caf08dc3a8734e8b0dc52bc09af6e1a5a6f24d0621b2f78b11f784dfc956eafb81ef25a78eb31bdf3c9c614fc5a62c7635a08e29d37cc2def7132650b8a9b6858564b8dfe3b5c6fc0d0183ae4547d4ba526a0b533289b1d21aa036438a0f8f3c17d39a31051398cbb8a89f416d68872a6a7e8a484f2eb8b0f22cf9b81746ae488ee44dcc2b3a065142de9b61861b", 0xaa}], 0x5, &(0x7f0000000480)=[@rthdrdstopts={{0x20, 0x29, 0x37, {0x1, 0x0, '\x00', [@pad1]}}}, @hopopts_2292={{0x48, 0x29, 0x36, {0x2f, 0x5, '\x00', [@calipso={0x7, 0x28, {0x1, 0x8, 0x80, 0xb, [0x4, 0xe, 0x7, 0x3]}}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2, r0}}}, @rthdrdstopts={{0x98, 0x29, 0x37, {0xb2, 0xf, '\x00', [@hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x6}}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @calipso={0x7, 0x58, {0x0, 0x14, 0x2, 0x7, [0x8, 0xff, 0x5, 0x9a, 0x8000, 0x1096, 0xb7f, 0x7, 0x800, 0x3ff]}}]}}}, @rthdrdstopts={{0x70, 0x29, 0x37, {0x32, 0xa, '\x00', [@enc_lim={0x4, 0x1, 0xfb}, @calipso={0x7, 0x50, {0x3, 0x12, 0x2, 0x800, [0xffffffffffffffff, 0x8, 0x8, 0x8, 0x0, 0x3, 0x0, 0x9, 0x6a478000000000]}}]}}}], 0x198}, 0x4000000)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x4, &(0x7f00000000c0)=@framed={{}, [@jmp={0x7, 0x0, 0x9, 0x0, 0x0, 0x1}]}, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x9, 0x2}, 0x10}}, 0x0)
ptrace(0x10, r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="050000005e0001004300000001a686b67d0000002e", @ANYRES32, @ANYBLOB="0100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r2, &(0x7f00000000c0), 0x0}, 0x20)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ptrace$getregset(0x4205, r1, 0x1, &(0x7f0000000080)={0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r3, 0xc02c563a, &(0x7f00000001c0)={0x2, {0x8, 0x4, 0x0, 0xfffffff9}, {0xd58, 0x7, 0xa, 0x5}, {0x7fffffff, 0x7}})
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x741000, 0x0)
r5 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r5, &(0x7f0000003080)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000002e40)={0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @empty}, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x18}}], 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, 0x0, 0x0)

1m12.874157785s ago: executing program 3 (id=23):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0xfffffffffffffecb}}, 0x1006)
r2 = socket(0x22, 0x2, 0x3)
getsockopt$packet_buf(r2, 0x107, 0x1, &(0x7f0000000240)=""/1, &(0x7f0000002180)=0x1)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e00000005000000800000000e00000000200000", @ANYRES32=0x1, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000030000000200000000f2ffffff00"/28], 0x50)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0182101, &(0x7f00000004c0))
r4 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r6 = dup3(r4, r5, 0x0)
read$FUSE(r6, &(0x7f0000000a80)={0x2020}, 0x2020)
preadv(r6, &(0x7f0000000280)=[{&(0x7f0000000100)=""/24, 0x30}, {0x0, 0x2}], 0x2, 0x0, 0x0)
mkdirat(r6, &(0x7f0000000080)='./file0\x00', 0x4)

1m11.926192444s ago: executing program 3 (id=30):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
inotify_rm_watch(0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x7, 0x7, 0x0, 0x2b3, 0x0, 0x0, 0x1}}, 0x50)
r2 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x28, 0x0, &(0x7f0000000200))
r3 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0xdb4, 0x0, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m11.025084391s ago: executing program 3 (id=34):
socket$inet_smc(0x2b, 0x1, 0x0)
syz_usb_connect(0x6, 0x7a, &(0x7f00000000c0)=ANY=[], 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x2, 0x200080)
unshare(0x6a040000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f000000e480), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f000000e580)={0x0, 0x0, &(0x7f000000e540)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="b77226bd7000fcdbdf250300"], 0x20}, 0x1, 0x0, 0x0, 0x20040810}, 0x24040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x794f, &(0x7f0000000300)={0x0, 0x1ffffb, 0x2000, 0x0, 0x2d2}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000240)=<r6=>0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETNOCSUM(r7, 0x400454c8, 0x1)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
ioctl$TCFLSH(r3, 0x540b, 0x1)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="20000000280007010000000801000000057c00"/28, @ANYRES32=0x0, @ANYBLOB], 0x20}}, 0x40080c0)
r9 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
fcntl$setlease(r9, 0x400, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m10.502290309s ago: executing program 3 (id=36):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000010c0)={0x3c, r1, 0x1, 0x20000000, 0x800, {}, [@ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}]}, 0x3c}}, 0x0)

1m9.968404578s ago: executing program 32 (id=36):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000010c0)={0x3c, r1, 0x1, 0x20000000, 0x800, {}, [@ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}]}, 0x3c}}, 0x0)

1m1.339981282s ago: executing program 2 (id=72):
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000000)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) (fail_nth: 5)
fcntl$setlease(r0, 0x400, 0x0)

1m0.921723032s ago: executing program 2 (id=74):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='cmdline\x00')
lseek(r0, 0x20000000000d, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe8381, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000000180)={r3, 0x0, {0x2a00, 0x80010000, 0x0, 0x8000000018, 0x0, 0x0, 0x0, 0x1a, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "91be8b1c551265406c7f306003d8a0f4bd004ab3fde500", [0x9, 0x800000000000007b]}})
ioctl$LOOP_CHANGE_FD(r2, 0x4c03, r3)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000200)={0x1ff, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r6 = dup(r5)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f00000002c0)=0x10000)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000008"], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0c00000004000000040000000900000000000000", @ANYRES32=r7], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000340)={r8, &(0x7f0000000200)}, 0x20)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0xb000)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r10, 0x400454d0, 0x1)
bind$vsock_stream(r9, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x10004, 0x4, 0x2000, 0x1000, &(0x7f0000f9a000/0x1000)=nil})
listen(r9, 0x0)
r11 = syz_io_uring_setup(0x88f, &(0x7f0000000300)={0x0, 0x2aee3, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000180)=<r12=>0x0, &(0x7f0000000280)=<r13=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r12, r13, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r11, 0x1a9a, 0x5242, 0x20, 0x0, 0x0)
r14 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r14, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})

1m0.003083534s ago: executing program 0 (id=79):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000100), 0x41)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r1, &(0x7f0000000500)=[{&(0x7f0000000040)=@in={0x2, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f00000000c0)='l', 0x1}], 0x1, &(0x7f0000000280)=[@prinfo={0x18, 0x84, 0x5, {0x30}}], 0x18}], 0x1, 0x4044040)
close_range(r0, 0xffffffffffffffff, 0x0)

1m0.000731201s ago: executing program 2 (id=80):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="12011f00abbe6740e9174e8b089c000000010902120001000000000904000000ff"], 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x80002, 0x88)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
syz_emit_ethernet(0x83, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009e602206d0414c340000000000109022400010400a000090480000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="00020c0000000c0002", @ANYRES16=r2], 0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_TEST(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x28, 0xb, 0x6, 0x801, 0x0, 0x0, {0x6, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}}, 0x4800)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000480)={0x20, 0x10, 0x6, {0x6, 0x7e8e703122aff25f, "4f0ac39a"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

59.732214563s ago: executing program 0 (id=81):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x80}, @IFLA_GRE_IKEY={0x8, 0x4, 0x3}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x2}]}}}]}, 0x4c}}, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="142505000002"], 0x14}, 0x1, 0x0, 0x0, 0x20000002}, 0xc000)

59.457865793s ago: executing program 0 (id=83):
r0 = inotify_init1(0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x609002, 0x0)
fcntl$getflags(r1, 0x3)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.dequeue\x00', 0x275a, 0x0)
prctl$PR_GET_NAME(0x59616d61, &(0x7f0000000940)=""/254)
r3 = dup3(r0, r2, 0x0)
mq_getsetattr(r2, &(0x7f0000000000)={0xff, 0x9, 0x7ffffffc, 0x1}, &(0x7f0000000040))
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000180))

59.238354743s ago: executing program 0 (id=84):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={0x88, 0x0, 0x20000}, 0x20)
open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x81901)
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x3c, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "01959e56da"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0a}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4091}, 0x0)
r4 = syz_usb_connect(0x3, 0x4a, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x6d, 0xf5, 0x71, 0x8, 0x4e2, 0x1424, 0xc7eb, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x38, 0x2, 0x96, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xcc, 0x7, 0x0, 0x2, 0x59, 0x61, 0x5, [@cdc_ncm={{0x5}, {0x5, 0x24, 0x0, 0x6}, {0xd, 0x24, 0xf, 0x1, 0x890, 0x0, 0x7, 0x8}, {0x6, 0x24, 0x1a, 0x5, 0x11}}]}}, {{0x9, 0x4, 0x1, 0xff, 0x0, 0x6e, 0xb8, 0xc1}}]}}]}}, 0x0)
syz_usb_control_io$printer(r4, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000580)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io$printer(r4, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x48882, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000000680)={0x9, {"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", 0x1000}}, 0x1006)
r8 = dup(r5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x403, 0x6030, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_usb_control_io(r9, 0x0, 0x0)
syz_usb_control_io(r9, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, &(0x7f0000000340))
userfaultfd(0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r8, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r10 = syz_io_uring_setup(0xec8, &(0x7f0000000c00)={0x0, 0x0, 0x2}, &(0x7f0000000500)=<r11=>0x0, &(0x7f0000000100))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r10, 0x2f67, 0x10a5, 0x3, &(0x7f0000000000), 0x8)

58.170011524s ago: executing program 2 (id=87):
mlock2(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x0)
mremap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = socket(0xa, 0x80805, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000140))
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5, 0x3, 0x1}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x13}]}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}], {0x14}}, 0x94}}, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000000)="f697079a", 0x4}], 0x1, 0x20000000, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
lseek(0xffffffffffffffff, 0xb, 0x2)
syz_io_uring_setup(0x13e8, &(0x7f0000000400)={0x0, 0xf86e, 0x20, 0x3, 0xe8}, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r5, 0x29, 0x2a, &(0x7f0000000000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000e0ff00000000000000bd0000000000000000000000e4ec010000000040000000000000000000000000000000000000013da51fd47aa2e2f70000000000000000000000000000000000000000000000000000000000000067ff0000000000000005"], 0x310)
setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000008000000000000000000000001"], 0x110)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r4, &(0x7f0000008680)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000002200)={0x50, 0x0, r6, {0x7, 0x27, 0x2, 0x1dd880, 0x0, 0x0, 0x4}}, 0x50)
read$FUSE(r4, &(0x7f0000000100)={0x2020, 0x0, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f00000027c0)="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", 0x2000, &(0x7f0000002180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000008600)={0x78, 0x0, 0x0, {0x1, 0x0, 0x0, {0x6, 0xffffffffffffa635, 0x9, 0x7, 0x4, 0x1ffffffffffffffe, 0x0, 0x0, 0xffffffff, 0xd000, 0x0, r7, 0x0, 0x1, 0x6}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@private0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4e24, 0xfe01, 0x4e22, 0x0, 0x2, 0x80, 0x80, 0x33, r3, r7}, {0x47, 0x1, 0x3, 0x9, 0x8, 0x7, 0x4, 0x7fff}, {0x8, 0x5, 0x3ff, 0x7fffffffffffffff}, 0x9, 0x6e6bb0, 0x0, 0x0, 0x1, 0x3}, {{@in=@multicast1, 0x4d6, 0x2b}, 0xa, @in=@loopback, 0x0, 0x2, 0x0, 0x7, 0xf, 0x4, 0x80}}, 0xe8)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r9, 0x0)
setsockopt$sock_int(r9, 0x1, 0xc, &(0x7f0000000040)=0x140000, 0x4)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000240)={0x6, 0x101, 0x206, 0x2, 0x754d, 0x6, 0x9, 0xf, r8}, 0x20)

57.11869459s ago: executing program 2 (id=88):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000014c0)=[@text32={0x20, &(0x7f00000001c0)="0f20c035080000000f22c066b812008ed80f0f9b0d000000b7c4c3dd7973640fb82b9f00000f23d00f21f835300000040f23f80f01d10f201db9800000c00f3235004000000f3066b8a6000f00d06564670f79b10920", 0x56}], 0x1, 0x43, 0x0, 0x0)
syz_clone(0x289a2400, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x0, 0x0, 0x32314241}})
setsockopt$inet6_tcp_int(r3, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f00000003c0)={0x0, 0x465f}, 0x8)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback, 0x8000000}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000500)='\x00', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x79, &(0x7f0000000040)=ANY=[], 0x8)
sendto$inet6(r3, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='hybla\x00', 0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
shutdown(r3, 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000100)={0x30001, 0x0, [0x2, 0xffffffffffffffff, 0x10001, 0x4, 0x6, 0x4c, 0x72d, 0x9]})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r6, 0x29, 0x24, &(0x7f0000000240)=0xb1, 0x4)
syz_emit_ethernet(0x5e, &(0x7f0000000340)=ANY=[@ANYBLOB="cf702e8cf675aaaaaaaaaabb86dd6000000000283afffe880000000000000000000000000001ff020000000000000000000000000001"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
gettid()

56.500400736s ago: executing program 2 (id=91):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080))
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x2000000})

55.821164671s ago: executing program 33 (id=91):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080))
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x2000000})

55.354724131s ago: executing program 0 (id=99):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$SOCK_DESTROY(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f0000019d00)={0x14, 0x15, 0x1, 0x70bd2b, 0x25dfdbfe, {0x23, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x24008850}, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000240), 0xa, 0x8100)
ioctl$I2C_TIMEOUT(r1, 0x702, 0xfffffffffffffffc)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000980)={0x2, @pix_mp={0xa, 0x81, 0x50565559, 0x4, 0xb, [{0x200, 0x1}, {0xfffffff7, 0x9}, {0x5, 0x5}, {0x0, 0x3}, {0x8, 0x9d8}, {0x10, 0x4}, {0x1}, {0xfffff000}], 0xcb, 0x9, 0x8, 0x4, 0x6}})

54.890386575s ago: executing program 0 (id=101):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0xa8f2f55cbebf09cc)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x8081)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f00000005c0)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r2, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, 0x0}}], 0x1, 0x20004000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x34, r4, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8081}, 0x24000800)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x20, &(0x7f0000000180)=[@in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e20, @local}]}, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff000011424203"], 0x0)
symlink(0x0, 0x0)
readlinkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x10}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}]}]}, 0x7c}}, 0x0)
readlink(0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x8, 0x3)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r6, 0x0, 0x22, &(0x7f0000937fed), &(0x7f0000000000)=0x2)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r7, &(0x7f0000000f40)=[{{&(0x7f00000000c0)={0xa, 0x4e22, 0xffffff83, @local, 0x9}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000600)="11", 0x1}], 0x1, 0x0, 0x0, 0xf5}}, {{&(0x7f0000000c40)={0xa, 0x4e20, 0x2, @mcast1, 0x22}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000c80)="8b", 0x1}], 0x1}}], 0x2, 0x4c040)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000007c0)={'vxcan1\x00', <r8=>0x0})
sendmsg$inet(r0, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000740)=[{&(0x7f0000000840)="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", 0x19b}, {&(0x7f0000000240)="1d45c0ae9af17d51ae88884f329827b7f55fa12dde570e53ba47196b6a21cbbc920db64c2f99d640bbcfcddb3d1d08bf0a431cb5afd5012256f67424f9f62c1d3884300048298417c3a0425827243e3f15536ace796f90465cd40724a1fa6bdbbe3a27efd9cdd0cb9b743c4aee0e5b426e92198a92f9ff5845df5c08e0c764b704dc65dbd2ad61e1aaa0c54afce9564e0925ae8c0948cbef4234", 0x9a}, {&(0x7f0000000300)="937ae8cfd817b9345d24e1f914d13edcda409336194b0ff1d594653548fa7a8d84aba5696f5a565af1e438a3b3d74f4bb95b54406d249a94c0ce41806ea50687228f21", 0x43}, {&(0x7f00000001c0)="1bd3addcafdf", 0x6}, {&(0x7f0000000380)="35573b356f9ddce01f4a3933854b203a778aabb2cf9400da15b1eb3bc3d02da66dad9a315d5077cb64e6473469383596e85ce2583fe8ddf50fd3a67cf596a20264ed835e3f1bc01490e0831beb4add6cc35aa351736761fb74afac164788f615b83c2c72eb0afa944433a8e48de40d4e323e48db8286a5d66d0d59d9415c38f761426ebd1e621b01e857727a8893a900ebf6b589907cf1fcfbac8318c2b2d787dd5409e6708f83abb9ad50f4a3699d5f39ef119bec9b74f5502bb80443fc6b75a5bf8170622451629742c83e70b6c1116759138e36e9b40919508829c3e0513feead48a52a9cb6494b1ec9880c78", 0xee}, {&(0x7f0000000540)="71b449f18c64230b317eb323279a18630b92c92ba391e388d231babea28ed5e95de23330a788ff1b2524193a3005a00b51521e91149108f22b62c9a093105eb7b2a200754744f223f3bdf55c8d4db2d0e8e5b41ac540f1a495d777b5f906713102100ed516a04e4efd4414a33ce9b734468c007332610c4df6bfd2efe2b53caaebd649b8abb89585c185566d163440e659f53e3a24b4842e7c6014215ac7a2192dfe01cad4af4b9abf972e49556fe71ef4b6c0ccad31a0d2fccfd90f37d6d07e0971416a", 0xc4}, {&(0x7f0000000640)="d43ec41394e6c1c483772e26ef5669ed65e17214d94a200c70109a3faa8a132a2f680e63b3ac01af1fc39b82205073470318a8cd0820e8310653644c828f7888f6adff7329d2c2b3641bc0bd6f9f186e6cd720c0e71ee2deabddf361a2425cc640adb32acf8fe16aaf29f0184d7cb67ad4af8b596234ab9324b7f6bc8dec6aebf9d764067c77e35b171206e26d9ae2d8b2f2343d640194d5d55f09f82220e1139e8045b7a9d5e83bc86d377facb2f6bf998730ca5fc3776042e0f95c94730d76be383282a31c8923ea441d", 0xcb}], 0x7, &(0x7f0000000a00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}], 0x68}, 0x48000)

54.22213209s ago: executing program 34 (id=101):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0xa8f2f55cbebf09cc)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x8081)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f00000005c0)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r2, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, 0x0}}], 0x1, 0x20004000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x34, r4, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8081}, 0x24000800)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x20, &(0x7f0000000180)=[@in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e20, @local}]}, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff000011424203"], 0x0)
symlink(0x0, 0x0)
readlinkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x10}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}]}]}, 0x7c}}, 0x0)
readlink(0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x8, 0x3)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r6, 0x0, 0x22, &(0x7f0000937fed), &(0x7f0000000000)=0x2)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r7, &(0x7f0000000f40)=[{{&(0x7f00000000c0)={0xa, 0x4e22, 0xffffff83, @local, 0x9}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000600)="11", 0x1}], 0x1, 0x0, 0x0, 0xf5}}, {{&(0x7f0000000c40)={0xa, 0x4e20, 0x2, @mcast1, 0x22}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000c80)="8b", 0x1}], 0x1}}], 0x2, 0x4c040)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000007c0)={'vxcan1\x00', <r8=>0x0})
sendmsg$inet(r0, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000740)=[{&(0x7f0000000840)="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", 0x19b}, {&(0x7f0000000240)="1d45c0ae9af17d51ae88884f329827b7f55fa12dde570e53ba47196b6a21cbbc920db64c2f99d640bbcfcddb3d1d08bf0a431cb5afd5012256f67424f9f62c1d3884300048298417c3a0425827243e3f15536ace796f90465cd40724a1fa6bdbbe3a27efd9cdd0cb9b743c4aee0e5b426e92198a92f9ff5845df5c08e0c764b704dc65dbd2ad61e1aaa0c54afce9564e0925ae8c0948cbef4234", 0x9a}, {&(0x7f0000000300)="937ae8cfd817b9345d24e1f914d13edcda409336194b0ff1d594653548fa7a8d84aba5696f5a565af1e438a3b3d74f4bb95b54406d249a94c0ce41806ea50687228f21", 0x43}, {&(0x7f00000001c0)="1bd3addcafdf", 0x6}, {&(0x7f0000000380)="35573b356f9ddce01f4a3933854b203a778aabb2cf9400da15b1eb3bc3d02da66dad9a315d5077cb64e6473469383596e85ce2583fe8ddf50fd3a67cf596a20264ed835e3f1bc01490e0831beb4add6cc35aa351736761fb74afac164788f615b83c2c72eb0afa944433a8e48de40d4e323e48db8286a5d66d0d59d9415c38f761426ebd1e621b01e857727a8893a900ebf6b589907cf1fcfbac8318c2b2d787dd5409e6708f83abb9ad50f4a3699d5f39ef119bec9b74f5502bb80443fc6b75a5bf8170622451629742c83e70b6c1116759138e36e9b40919508829c3e0513feead48a52a9cb6494b1ec9880c78", 0xee}, {&(0x7f0000000540)="71b449f18c64230b317eb323279a18630b92c92ba391e388d231babea28ed5e95de23330a788ff1b2524193a3005a00b51521e91149108f22b62c9a093105eb7b2a200754744f223f3bdf55c8d4db2d0e8e5b41ac540f1a495d777b5f906713102100ed516a04e4efd4414a33ce9b734468c007332610c4df6bfd2efe2b53caaebd649b8abb89585c185566d163440e659f53e3a24b4842e7c6014215ac7a2192dfe01cad4af4b9abf972e49556fe71ef4b6c0ccad31a0d2fccfd90f37d6d07e0971416a", 0xc4}, {&(0x7f0000000640)="d43ec41394e6c1c483772e26ef5669ed65e17214d94a200c70109a3faa8a132a2f680e63b3ac01af1fc39b82205073470318a8cd0820e8310653644c828f7888f6adff7329d2c2b3641bc0bd6f9f186e6cd720c0e71ee2deabddf361a2425cc640adb32acf8fe16aaf29f0184d7cb67ad4af8b596234ab9324b7f6bc8dec6aebf9d764067c77e35b171206e26d9ae2d8b2f2343d640194d5d55f09f82220e1139e8045b7a9d5e83bc86d377facb2f6bf998730ca5fc3776042e0f95c94730d76be383282a31c8923ea441d", 0xcb}], 0x7, &(0x7f0000000a00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}], 0x68}, 0x48000)

32.742911539s ago: executing program 7 (id=164):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x8, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000800000000000000000000000006630140000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x40, 0x0, 0x1, 0x3, 0x0, 0x0, {0x2}, [@CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x10000}]}, @CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x200000, 0x0, &(0x7f0000a00000/0x600000)=nil)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f0000001e40)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f00000014c0)=""/54, 0x36}, &(0x7f0000001540)=[{&(0x7f0000001500)=""/15, 0xf}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{0x1ad, 0xe5}, {0x0}, &(0x7f0000000100)=[{&(0x7f0000000080)=""/99, 0x63}], 0x1, 0x2, 0x838e}}], 0x90}, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000e00)=@newlink={0x34, 0x10, 0x1, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x20000, 0x100}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x2, 0x0, 0x1, {0x4}}]}, @IFLA_MTU={0x8, 0x4, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x8d0}, 0x4008050)

32.541573075s ago: executing program 1 (id=166):
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560aff820fffff5bab00070000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x100000000000020e) (async)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
process_madvise(r2, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000380)='v', 0x1}], 0x2, 0xe, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c0002030040000904000001020d00000524c3176f26240080a9b2f51a0100000000000001000006241a0100140905810340020000fc090401000002"], 0x0)

32.495844895s ago: executing program 7 (id=167):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
fchdir(r0)
r1 = memfd_create(&(0x7f00000000c0)='v\xa6\xf5lj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb8!y6w\xda\xdd\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\x8a\f\x11D\x90\xf5\xbb\x1c\xac\xc7\xad\xdc\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bC\xd8\x1c\xe8\x9bYS', 0x0)
write(r1, &(0x7f0000002140)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (fail_nth: 3)

32.042508329s ago: executing program 7 (id=168):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5, 0xfffffff8, 0x7ffffff}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYRESHEX=r0, @ANYRES16], 0x30}}, 0x4000800)

31.893583107s ago: executing program 7 (id=169):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async, rerun: 64)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, 0x0, {0x7, 0x27, 0x0, 0x1001a}}, 0x50) (async, rerun: 64)
syz_fuse_handle_req(r0, &(0x7f0000008280)="03680f2a20da68ab7a58c28b635d19c32b6efabb6ae3b5eee5a74d8943c613539e166c8baef50500824343a2f05093a5c21f746caefe9f9bccd83cca0fc28da20e2706308c61398dfce5f54ea9f266791ba29a4c7da158637def8b816aa296815ff13c06d632df45feaec1fd272ec1b510eaf58fe6b26cc36df3ecc0f5b1f258a190304e2519dd39ba9f5bc1788926ced5202e3b1e3afa16ae0b5d66dc05b36d3a00f72e5f318f8bdfc7eddc94238c50031d0657a22445ad0b3b90a86b086eed837a00bf0a3888bf61b4db57d6d8d6b286bbb13ba3b246def60ac34241eb843f89fe77d7e3e52573e90d791f21d4a8dfcc24ba95db60e2135634c02bd4b14535285df4fbe381ec036d876c4c8057c79371fa9717414590890e182a7b9e0ab927812083acf0d04e04c20c0555c8ceedc5bcf9b0e814be6eca98ce7b2f9f17d098bea541b75a1617c09fa99902ad746811f89a1fc5e6a80d77528247d6c104395715d2c9f9102f070a295f20c4307b9e848d3928b50985bfa2486893139761925b8fab96d26291243db23c4fd4d96864f4db860731a4e3e10b52d8d0487f5a8536cb4507dbdc111570ad0321b918edbc52807c2e0676d3257553702d9c1bd6741e9cd5cdeb3b8f636b6eb02a3b0066d7f677d586de5018850000f000ab3960f6656fb98039ceb6400d0299c356fc22b7298ed157c667bed5563fac2192a8ff7706a9e58d9d2f92632d6b25d8b090642e3f323bf7ff4d8264617a43a97099dd7347fbe3b1c439737913f17eff57f3e1ff4fdac374fb554e9a6a1ff32daa69507698d660d8d5f591801d8e4a9309342c3dc84966dbfcd2652800200bcb0dde9d456b7a07c5409f4f5387d0150daa34dbc865c6108d34dcc51eedb277e9638b43ce3c9afac5d7aa0f8542e58b0a84632a07557b041845d0012cf016ef065f97660b731ce1b79493de71def047277a3ae6d4a0d86591847d3475926039848c5baf6e1b43bc83053855182423156e54cadc8c85089265b49da853d15e5a701fedf2bf7986a723abf72e513fa05cb178345f2fcc859df49e74c8ccef196000a05cb090f22986ffb6f8f74ab41d2d88b6b535507a23b03d2fc2743f6f69fbcd43b8ff52b1ba32fa0137d542c515569b7f486f8ffa02ad1f54767f51701eb4c141437720884d529a57e17bc2837799124f7f112f42bd90f5b435d7a5d7524f7667bb7a6266263e62bf7ebf6896888d584c65a530b766111f078630d8629ffa91acb5ed02498549bd7e042acae0fab7ccb23278088a364be3da9619d91e1061bbaa9b33c3c5fbbcbc725ce8c2cc9ab0f2b4d30078040d3ca79d3ca056c360381ee87e743dea73a25ea2b4843f9ef280feb507f933fb556c718d8bf8f8618db72805b65d381b319f65c745c1e5060dae2f498852e79aff8dd9c88fd939a31871a430d3ba96fb118c79d1b08a397af23b1a188d1802106f588c768a1e6c9d244ac9a38d2a54ed50f19b78bf25e0ae1f9337ceaa8ff5ca8640104b19bcd643b51501d4e03ed5ffb383e7ed0ab78d540ae10bbd64fba1af59a4190215b7d10230992bbb4ff618d8284a2e2446990511fc2bff07cce9ba94a11d3db041e220e3d931fdf129d8ec2c9b17d6587a0044c9e09f52848db43ddc0df94513cc9e94e9d427623502a910deea0f21d86b16366769a46bf0d6d9fc0d2cd6b98ed885e9e2d765bdd051196bf20bd27c46ec902726d96de352c346d904fa00d63b67d272f116dce489f9d636cef61b441b9c113addec983b8b2fbdb2b32049e436c972b2fcf5140dc7b094c5047cb6226da700b72aeb3febdf16a75b6f61a311f606251c99b377c775c8fb3446ccf25dc4cca24290b3939f948019b05c80b5a6382112f63e0990b324c16a087c72aaec08796afc769f678e3634100a5a9da8215cb5d7a6a6b50a81676ef4edca35595b11f9606bef2fb84fe1f0a0703c886579f09986086f0dca6eb8061f9a74c79c1f758684a7363974b14561b9d2efdaba6c4cd8cb70627da1e195fcae3d8b2fa751278e8f220c83e677e14731eccd6fe0c357b011ed88b6df0c266b383f224b8e95384e401b717030b1227582d0d1042bd90377c4f2c7206a19983fc5905e4eb87edb6532b26ca9e28e160202606d19d9f5da34762f4b3fa842d7bff382ad70dcbc411f8b3e4cace8c8e0c72898d24023545e0dfdc4176209276a535491ce11c045c57b45c40f19b12dcf6ffbf78ab23e7fe9bdc404cf47db9855f2b835e1fce57debfa071803ec38da3c77a904080a4c737ce2b20e14e8449762f1ca0b1ce71779d2e6ee5299e1cf230e8070045c23c1d0e52f66fe9039f95cdc0b448dc12d24de39157934270345991948fce921b5d8e739315cc75d4b3b49928437b88672c1a7770365207b43895f45909d5d972f48aa66de609152a5afa2c7d75f0a14189d0409f0b623eab3b6e7d81025cde140893ed71b6f24f5a36d21dafb62af6be9da845403bc8ed36672efa74d7da19d5794cb4b79fa1c86940b1890c012e14b7c3bb261f16bdd99efaa9819b0bc00af842a6b94c6086d15b16ab81af9331ba3a5bd6941ef35239e85455ceab02c598ccee8fbad97ed37daebfe3b26a5a6c9eda5f65a1cfaf7a1f1688267c812a56c552ae11b465dac030e18f9008ad03cad80bf2cb91a7d99dcfa54d323ae0a4c3a6dc0f80d7ff703870610a945eb0ab5b6d14e81869c8872f6b123d98edcf6bba10d76d35cff4b0bb73db8b6695a8351785bcba1e160a42ed367c4da727da38f91562e941e5c4fa90cd585c5f1cd3a7d6892f18a5aa3c74a4fc00bf5909267489b937a928d9d8ff92530b5226eedf8ab9a957e5ffec45bc3a55e6955b38393ce52892655265d1f741e0b744808eb568a08d145a8bc5ada9b079f6d0bec5fc2ace0502b3f926372dff49478fbd10451f0de4b3d1a63b9d4e17ade45628d2e9dca041fcf7fc1e105e1fc44089fde9caf418ba8454dc361df4a59e1bd79143d280613e3c79ad18e922a43e199aa5927bb9553dd31e6223ad19bf8aff6e1dac8b3680feea3138bc61742b03f047b3d77039c1a4c2d05bd89c4bc12a1b83d78b4e7023f690fce6a44608c423d8cbc2e80942b9d9df2f4bf5606640fa47692f3e003885983a73e1dc313b243bbab5c3c6348afab796da766044ba142eda5a9d3713e3eda8c54c1708909c5da89ba67d29cd7f409c9b759cba316c42028754e3cb6eae2cc4f6d66982f212320f199b2e837bb4c54c54bcdcd2ac240ef6295d38e9889b4213819ef0f9aba6ceead4e0fd2c4becdc1f8ee3049831996c9a74a5fd4e12a1fd21ed47cf27e29f9d61e4b673d88914c36eefa53d3c49d94b463b7f8462c1951dfe33c10993d5cfcd0ededd50ad55009528f1e79fbc2fa70c3338b32c40ae3bb45d7079c7ae8433fb1aa19affbd3fbce0cb5ab0d557afb3be036856066eea45c28e93528b35477fc97fe9ff3641e5bb0f0e46069eb653c027daabff38541250081c77e0e3a1d030a73289e771cc41db10819af60599b5df0ad978fcf0b46af821c6b717b265e07d3a85397ea94de26f510290ddb5df8fcff76fe624843c8577802809c145916afce01d9dfdfa8bf07633e98f14fc73d5ef58ae5cb0c308bc74ca38259692a1cd4cf16752786a1c816f24612c27393d7e40a2df9a3dfa23a0c59613c8a7ccdd97c3fc67ecab94dcd8cc4b4517ed2414d41ce574074ffebd156e3d65c4421b0f339bc9f29abbfe49db62122248cf96b74d9639b3ef9d935cd81315a7ecfb0dc6ea1ee053c2e5c3615fbc10782f16a564fcabe1df70da7de989e00eedc346cef5b5cf880e9d563fc15302f056d37f98a939fd1dd5478b4318c256e93b77e31f87d8f7fe31755191b40d778ddb2ada1480bb9fcb96a09783fcf2c2c9fac2c3a2771dd0e2fb113cd460ee2c9cf4a712f04eb1b1a746091109f7ce0655e1ff7781fbe853e3d03bb91c9d8f4f416f5745c6b607bbf72786bd3c0ac4761e6e6d70f12dbefa1b13542086f793b72c6102ac06e75be17bdbb1efbf7e007f07f9bd433fd9d9cbf93e760757b792f15231895561fe49d9d683ccc066f38af581422b71702627162c0f0f35c36a61eaaa92129114b7334281e35fd39576e51d8593c149c9326e0c710ea4dcc9ef39a432a48ae1834f5046b954f9c033d6035cde0dbffe3e97f48a1dc695f4b2f6fe5d4eee83008318def105c37e11c9015670f13417ed036e68f6fbfca2a8289829677feb23079f3f2ee53b26e491924fefc1c50e54f288a8c4b6ba6d319054c3a9e39e14bba81b423acbd44b51279bbea6b0bb2047325837ce8b2191454f52ffa2cd04abe89e3de5bc102e9fdf740d3efd975bc9503af796e6aeee711ef8797de5d507a964730aa70cb9d3840054d4e1ffc57de378b511f7649666a54a6b3d91ed517198d76322bf99d13bef530a43ed3f13196bf2def6dcfb39f76471c75c5779bedf105717e546057fb478bfd24e8fdf3c12d028b542d1f424a9d45bb9e026e6098eb1cb0a77378300ec1b4c9f006aa4dfb7fb5c57cf1b035cbe96009ead1ca25ea1e5fae40312a4e9fe250684a1c8653bb303209e0fc6a498f3a08f6c5b946378a349f3aea45104a2badb8a45f500bb4f0f6cd620ce794e0f390e1cb7f2f1fc0039f4250a577544a6862b47bf89eea3a8c1516b7a9dd111c2ca719190e8feb1a7079e9fdfdb8224dc50791c986825469c087c8f081616edaa4193e161281aa68b7286a364cbb336b2459f0892e57c40afcfda7d16ea1877efb4e4b0d4b5c31e8cba15066903d3a91bdc7fb64452fb9843436110596f0b038da167a86f97d32c807270a1c994fe88e2517e11bdd210dd982d3c8158459440108308a936c9d2370b9d157c3f9caec36ff05bc40b37f095edf33bf4fad440f38c3f52129456936c07014140be5618f4e9d07b66679238023390cd676b1a3a28d0e90d5ad9ef13a31fcdc5a435454309367c437424e340a1f91c6483bce1026d85a16fb854252ea4ede39a4e69702ecff76432de508e064eda0df9f263a25c0f626d1c1ffaa6783be2975451ee936cc2178648935a924f6fb2db2f8ba34e348920d903114520918cc6872b842e3744fc18d1363583a107ec7b89c7792c0d8069e12f873f6d668f6fdeb47b72986914e45c2b061c5c936c73c9bcf1475ea0d25edaad21cf193405c8acef3bff4e4f1b2b321d70dba59e856a8849c2bba9508bad775370669b2bb7f5e53181af8bff525e13a4935d7e28b997b4ff15da9e36f1353a154ab701ad15420786daaf27ba7e122f7b825c668185b685630420378b4142ec4e4242c2cf0bf6e143f7e55cb12fb9dd59a8df9959ce4fc5fff68ae7174977a31ad7fd644bc94a20bae76f0af474034990fdfec8ceca0e6cd93fe21d84837b7e9d74c17b6d3054f0c008ee05764745fd8773a0c1c31bb3eef5b7e261b54805b5c805a4eeef05c812fcdede200442e7340c63490645ebd09c235d5c52a785542526edfe3875ad08267faed1d0a15236f00c6736b94c1a3821302ff610697ad7becdbc96f54b55138b585cd122e0d5aeaf43c9ba373e8aa1c1297e3415552cc57cd60ee1f3c04500ed0eed37775c873de3066c034c176c67c5bfbe9899a47732030855781341374641da058eee61d01d11b9db8f19fd4558957897340e32cdfbc39713f1f439be0638f614cdb5361433a45a6ff024e39c94141dc5403af101404ce5f2efa97b90d9ecdb7c361785dab977feded32554d1a74d5cbfe2435be7f0329ba382455c2ac11fbe29fe3826796d4bea03dc53a37f63f5be2773f83faf282f0ae24d9fe5762b71b499fd37b4ce7e71f93c3a983f80fed477708bbf2261c89893c4b76e34fac9b42671b6cc81678cc867f53e8c3ec47716206212743ca0c4941c2c61ed3177fccf85921e998d2b826df751173944bb07eeaae4001f677a0687a2550eeac8bb5128ecad9c7b6a514596a30b8292fbacc09ab488193507b6785d7a35c979db774b2c413246f1ae88d35d1914b20b8fb501034321642fb0b0baba3378e4c31fb5e247c177e573295df0194462b99079a436400ba1be2e30d39b8714c0fb2bdcd981d5a5cd514f8d4f14e4e0437108630355d8f2b60a6d18cb14ceb2b5d0704aa6e93e180bd79cb17e176bc4f81a03db12a03413de6189896955bb9e3cc69b6f9a50a7eda3742527f98c71d7ea8ba75e253c2b783f7104813c619949e6a0765179b1b9cbe68b703335ab5986928d86384357a2f4189f4b4ffcd61a3d29709bbc93b5371f0e7798cb72ae4c17bcee24f8e566f2777803c3d182d15a63ac40063f0ccdf4bd790404524eae02eafb6b54c699578486490033f0be866c74a134083003d330498658ba973ea674c4a0ff158403987b4c4752b07c8637a119b019fd5093406960144445056f6ffe73eda0235dc1871bb6058d4a9feecac628265689d58a81453d33290ab56eb691f3180d0288449f41844e56f5c6cf522d4a5866b24fb9552fde71946c4d25dcceaa41cfddb5a33c51c54c0a0a5abd31be8fb6ec53c1d14ba648e183979dbd0db01b9e51ba3803be7e7d3dee752668367264c783f74838121797ae5706ef3aa460682d1bf55808c70e69ae29d7683368470d08e7e9a1095305dce250b5b4bd48c02e098d241b1089736e8306a737e3a1a93e554cc3ab24672b8c74bfb8825004ca869e347f873de14575493836662ad741d79269904f905d7df64d0581ab8d76ee51a32d72ccb719f3a25c0a856b5bd2b2a1269e208d70c32e1d5ad0dfdc0ef43f0230e95eb85871eb4d6033abbf0be7025382d878eeaeea73c94270e79bd5757dc1bac95236a62545cd467830b12dcc30d7cc81e889d360d073db40058e9a1c7b41fc53e67740bc984132a1452cf7d000378f14ef93a7eb0dc9bacf23584ad6761139576607f8214757f71fc47b2944127116ca3e83b9d9643bce8d7bb44b4d16b5d5cff70a9e1114cd920b6fc1f409672648ad56ac3136ef0a314adb458faf3d3f171cb2fc513d76e43e6bda2f1a68e6fcf4a4ecbe6bc87716e2a82ea0c4657983ca0caaf8d75fdf5b0d7930e4f3e95eb1271485f938e7ad2bf0c97b7c11745de45518a1e3a74341968588558e7197b407d24eda0671ee28f219e4c5f809a7ea6f9f5b9705f4634a96112eb262bd5967db5237285b865d3f64516495ea6d1ec20dbed7af02362370bcc98671a61241fa1ef5b3095609d66ecc16010f6f67a280d1c6d215ec224ead17d68bbc9bc64b363b5be9b479b7aa2cbc8587a6b48cf653fde7a262a11ab3a10356f55f122310feac77c32ce0994d6e8a70f1c53331cb473a8e29427322fb6da292c4443b1678877f1c981fa05fbdef96520e5895aeb2a3a8e62652f9d8830c3b144b9598873e2ef41b7ade943807766877d609972cca74855eaedce07cda35b50557de96e736ca3107c154d31aeee78db214687b9964517bcd2c6c9ec047514b45c831aee4588166dc3ec9ab36bd1033e74b3d02d731c5bd84f659fa9fe55cac08c12cb999a2e64fac52f6cb7d1fffbf45d9a1126787d0060fd1be563ccbc278ac97dab0c1bee664675f273f5fa429bdc24b21ff1cf0a3ad3c687fb07ffd88bad6ab6c6b422a43b77ff76f96bf405c07f8a667bb8ff54d6714aaa21ceba2e78ce03146b2ab9f49e6d65081119b8e7cf3843e91349790d2b975c9f9c305df0ab4f2b1b2f30f629313cc66a325e4037f38f29842ee5781ba73d2f30f506cf7ff2237a72b4075aefa32cdd5ba0ae4e65cb6fa47a3e06f0d5f684b7172d6b58f5f7d783c4122db4f4b8b4f9d3296c9d115f432710c29d40dfca0010ecbe2f42fac899911d65c84f08aaa1923c8add5af518286211db14e1187a8839f3b2ae8bd914eafc16a576bbe3eba6271a4c5b3170c3f543761f11f1326a05c575bde1b5c6afd3876bea4fbb649071a95caf74de9f7b3421803ec351f934b8d0932ce72a13abf3627d9a396c10875fc167ef1ae98ff92af9ca366033c99d30306fd540a09d67d26ab192504e7c09f9e4d06287a2b1748f1761ba3c16d9d08be7562b7351c4b4679f5d4b38681bfd86c7f2003a9749b20b602112a95803469f5d252c564912b55c4bf3409298dbd066d877cc70a89b484b9ee6bb836c9acd1e53086c4be85e9a3bc5969c7016db9c72b68620c241409d06f4d7f72fe2289c9b4921055922783b8b886bc22926b7d194820af2b90e3c60e87e1a7851f38a970c07c1da120d1da75de2bb994ff7d05a313522373326f160914a9589711e0439d694f5221afe8cc118722ce4927e9543e61a12a76bcf2da1d01a0f258095d32063387349b4e9f253d8b73c6e834b6866f8a56b4797b92d521fa732aa0d55c8e9d6c56011ee6fb450853dc564d18e97c463609c27a63f9c91c46d7bd80ace4edc0615ca342f43ca3b3d0cc36ed52b7d1f457e5b4b26b5eca0d91abe4f1a42a2eec40ec2faff1222f71dc226d6344e947b45155691205c09913fc3c6ab3fe76f4d1b11fa45869e20694b5f0a1074780a07332764212533b797dd24d8df157d4172f91253b77eb2ec90c8222307ed59136463057b7f469116086410b7503b44cef401c47811c1390060da5b3321d34096b67468a7702978d98d4bd721c18a25ed541249638e90281dc8e3565dc33e66d7b832a9bd62c02c5ed0e92935c92472499653d2d842ea6697c733ee80d775884074b3a0c250a4aa021bb6ea93514f9cc5f09feb5719d270cd184e364ca966f1416e10f111bc425f32a993fc5cd75503f99d89d91d7ddc6dee70193057cb946e5fbf8663c53e12cebffe5dbd4a86bfcf5f35f0d8aa43763a60e00356b4f8bc2bca01b02cfddde38f0c4df1e7f98709fdebc5abb5eb9631bdc3dbfcf15517fabcf16931eb7381e83713b081ad1947274d4896ee8953d772e9e71f363b6f1147317bc739ec128e4ec865f8f0ea34cd5ff19fb2c28931d2c85846735358504ae9161535cd7890e8b95c814cfec116b78e6d0eb5097cd4f35888121452e27391d865c15f0b986925d0d0c623bcbb4d8ca66603720253af17853967ea5954eb5ef0dc43de185ec4925026c680464e66d1caff1f4c7c757bd55ec2515ffe7183e3481ff6f626c2228a3fc3d15f63e4bfbec76a2a170206142cbbcf204a1cbfe0ee56eb47dfb79c80894c0a0fbf8a2955d861678fc2f8f9ad7a28052197b5992bced1273658da5b1f42fca48c80883600c24d8515a0c7113deb4c97df918ab64bca16a0c14f2547dc91d5ce4f884978c95fe54899f77ffc20a2c4b27350bc451bef72a46d8e144ad57a8d5f8ac039f58b8a53ea1f3fd5fce612a171bf82ba17c0681cf46ce5c8181a522ed2e986361903903159643046c7be1787dac6ccab09d18a30997541dc6e9efa260f1ff0392bc1890f19d8bb725f4fe7d8bc618f46e0c23be6b9ca67777dd3f5a89b41ccfb11a526a3bed045a2906f86cc5186a1db7a70391261b694b423e5a44d374f9d3720330e083574083f8950b2b35c8bb5b6c0a7fe259f235dc1c069d4581a9f0a7451890561a0829bb290de6aefe4d243ae0b00ca61a1dc4262bb4951242b21d88148eb7b6a9718d6433274f2b3c9bcdbb6d5df67b48ff42692d8cd7f4b7f41728de68ea1ce0f3e4a2843c5b9ffc43f69b8a0445dce44081f5b443a327084b0d00d07cbdbbfd2da5d67bf8d4bb4ee408d17eeee48b61decd06bd3dac9a1adbeb069b49ec96608b9179bb3af4c10f2ade6778b31fd4c22c2961cb949a64e9a8a4879c550f8d8783064cb304511e40e2e562ba83c08ba8ae011a784ed9db03db5527a7aae222c856c8df0a94f9c4def0f94244c5b8e3db9f39dbd337928e24d9d8562f231fea72116c01089163d2c5f4ca17faab20b73c9957fa1a9af20837a804870034d4e64281125b070d8ee0dbf05f95e5fb079e2a57e9af977222e90b664189114dccbca81ee58b7de90a813768a2049052b339a608d3e9966bdb3b584291fbf7694a7d1dea7f72ca604894e6cca5d326ed5e48c15eff5e6a8cc11c40f84ca920d79a5c55d07001909bf6338921c656a39d59d03f62bb5b8870189f0416ec8c317b03ccdcbbeb3e1a9bf2661813f4966b57eb56a2757de5f7745851b5f7bf75e41eb1646e61a41923c5c0e58c2ea478d95b5c39c450744aea0aad3706fce684cb7338ff3dacab60e8d968f0e6fc070693ae3ca16996b34a50afb7e6e377546ae28dc8de7a2ea3a657b4b0003a91a488e347c61971d62f32eaf843d4d4c4f86cc4033c1244c8408def09188dde509c629323f34072f9089a3846680894e8b000a03865438b2ea212b68fdef7f17583f92014eef2c8115a37c9c82dee06213c1407c1433690f68cdc8e91971104039dfe06774b946f43b68b7957a5ca3ee763eafbb7437850eb0a285c413bcf6965232d593d8da47a2a06abc635ae38e596a9dae55b43f341bcc6fe72d79b453ac1c259da37f64cbc1f1508caf280aa6a3f4cd2ff5564cc5a8727f222431454a5ac93398a29fb95b4e057686cd6fcd920992f74e5870749676a36e043bec5fc1b0fce5563affe9addfaa3689e857383ccd1f2924080449d2cfb006e855570b711c1dedd1df2629afaa3806f4ae229a9a8ef1940ddf2c55dac7812d2374c0684b7ba27b2f0849ee4c055d2b8ccc8e41c593378340d7546bb974bc8032f220b37099e3b04c6591c40d2c50a855a491e03c1c9cbb32c400f6104341262d92daaf3e2c04936cf28788fdff8e0a77770a9deb9089a9e32eb5d9e2581aecd98f83881ca8e7d49e603556dc03a9aa19a8f3a4735aaee347b25ea35b36fa57484c0b6d591979b4a3da894fa0c15966d6a5e02e397cccdb9c314b504372b81ef6913877767001263c05dae362b49e5928ef36f554ce245b4111486417634f1e7f4530a760ae6ffd3123f5736ac12c5bf506c5dca03079c0fd0776cdb56c938cdf480fb9b97b1685dfa3be6f712aae107e2dda726bec137b2ebdf56c0fcaecca4350bd7b5c84d57f29c2a2c99ae10c30cece4831d71ae4ee3362983cc816bb6cb9225b9db08503a1be23a26a0425a8628a2e718feae5df91d829f27966f766b623a0a4958a57642aefae259713733670d5b1d027fb8eb2d0d3a0b4acd482076dfa09ffe883f556b2db2262bc0872e1bd713f100dd7a8a8f2d725b46e09c625d513179872bbcc9a41e596a18b2471d977f4ca2bebd06cdaba31b70ef25e098f214fef16f16f725cad4311eb91457fdb70b471eddb65ecafb1e2b03c5ff21356241e3cab2c8ba601f9ef1aec9006b7cd0b81da29be01cb4c1d52e563298e373013886ebb1889bd5616647c6c418ea6bc1f3c0853b65cae48467b35f08318e3a9d034af7224cc3520ab1ece7751ba15407298b21e4f84ef7c23d7993739403d4f116cba2d0ae2d4003a28334c461c734d4555105b986ad0af28aac36c753ab52b91b7e23ae3ab07d3b170fe53a2249efe5b65463a3f237cec72091b04005f95a15ae595191ba39d0ae1d91d8e00b132ae9339884bc57bbb79978a308e1c31c5f213b092f380a7ba58f55869e9c29a5a6e7a7aa4f8d58e5787cc05e5", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x90, 0x0, 0x2, {0x2, 0xfffffffffffffffc, 0x80000, 0x0, 0xf, 0x0, {0x3, 0x20000, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x48e}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00') (async)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x2, 0x3, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x9}]}, 0x20}, 0x1, 0x7}, 0x0) (async, rerun: 32)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async, rerun: 32)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
close(r2) (async)
ioctl$VIDIOC_TRY_FMT(r2, 0xc0d05640, &(0x7f00000006c0)={0x3, @vbi={0x1, 0x8, 0x5, 0x3831354f, [0x9, 0x2], [0xe20e, 0x56], 0x13a}})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x8c40, 0x0) (async)
r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
bind$vsock_stream(r4, &(0x7f00000000c0)={0x28, 0x0, 0x2711, @local}, 0x10) (async, rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, &(0x7f0000000040)={&(0x7f0000000280)={{@local}, {@local}, 0x400, "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"}, 0x418, 0x7fffffff}) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000180)="f7790066baa00066b86b4266ef420f0866b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x48}], 0x1, 0x56, 0x0, 0x0) (async, rerun: 32)
alarm(0x5) (async)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)=@x86={0x0, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x9, 0x0, 0x0, 0x40000, 0x4, 0x2, 0xff, 0xff, 0x0, '\x00', 0x0, 0x5799fee0}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8000, 0x103)

31.618221925s ago: executing program 7 (id=171):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
syz_open_dev$evdev(0x0, 0x20000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x2c, r4, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_USE_MFP={0x8}, @NL80211_ATTR_IE={0x4}]}, 0x2c}}, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
listen(r2, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r9, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r11, 0x1, 0x30bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
r12 = open(&(0x7f0000000140)='./file0\x00', 0x60102, 0x0)
r13 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r12, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r13, {0x7}}, './file0\x00'})
creat(&(0x7f0000000300)='./file0\x00', 0x0)

31.388852092s ago: executing program 7 (id=172):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = landlock_create_ruleset(0x0, 0x0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)

30.933617663s ago: executing program 35 (id=172):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = landlock_create_ruleset(0x0, 0x0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)

30.750196966s ago: executing program 1 (id=175):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
fchdir(r0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000) (fail_nth: 6)

30.567858539s ago: executing program 1 (id=176):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r3=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000380)=[{0x20, 0x0, 0x4, 0xfffff000}, {0x3, 0x0, 0xff, 0x7515}, {0x5, 0x8, 0x8, 0x2}]}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000011000500000000000000000007000000", @ANYRES32=r3, @ANYBLOB="00000000007f000014001a80100005800c0007"], 0x34}}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000007, 0x11, r0, 0x0)
r5 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000740)={&(0x7f0000000040)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x80, 0x0}, 0x0)
r6 = syz_usb_connect(0x0, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="120101000d0067204f17316a3f26010203010902120001000000000904"], 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r6, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x18)
r7 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000400)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="35010000000000000000010000001400aad2d714dc1109138c4e294abe020077673200000000000000000000000000480008804400008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b08000300020000001400040002004e8cfa0f5a70a4b3ddff3f249852548a6362254d45794eb896fa3f81c75987266bea9ba5ed615d686e48b779478e29562ed4afc94473714ac46dfa6fe494ebfb469c475d2cfcd258260a8c3fe0c26547d408a7d93babf53df5269c85f5e3fd071c281b5d00e53dad9063"], 0x70}}, 0x0)
write$binfmt_elf64(r7, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"/591], 0x258)
r10 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$SNDCTL_FM_LOAD_INSTR(r10, 0x40285107)

29.430248796s ago: executing program 1 (id=183):
r0 = syz_open_dev$vim2m(&(0x7f0000000280), 0x4, 0x2)
r1 = socket(0x15, 0x5, 0x0)
getsockopt(r1, 0x200000000114, 0x2718, 0x0, &(0x7f0000000000)) (async)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00') (async)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r3, &(0x7f0000000140)='./file0\x00', 0x272)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
statx(r3, &(0x7f00000000c0)='./file0\x00', 0x400, 0x40, &(0x7f0000000440))
close(r5) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f00001df000/0x4000)=nil, 0x4000, 0x5, 0x11, r6, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x14, 0x2, 0x2, "bc3e099e006605ba895b6a00523e89ee8e00", 0x30385056})
r7 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000100), 0x80001, 0x0)
fallocate(r7, 0x3, 0x8, 0xbc) (async)
ioctl$FBIOPUT_CON2FBMAP(r7, 0x4610, &(0x7f0000000140)={0x11, 0x1})

29.297066682s ago: executing program 1 (id=184):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{}, [@TCA_NETEM_RATE={0x14, 0xd}]}}}]}, 0x60}}, 0x0) (fail_nth: 6)

28.792385216s ago: executing program 1 (id=186):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect$printer(0x3, 0x0, 0x0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x26, &(0x7f0000000080)=ANY=[@ANYBLOB="2603b30d104b88946b7a53eeb400af30ecb273f6851840c0914ebd3b67994de540799198b501"]}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="98", 0x1}], 0x1}, 0x20048811)
setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000000100), 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0xfd, 0x0, 0x7fff0000}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4)
getsockopt$inet6_buf(r3, 0x29, 0x6, &(0x7f0000000080)=""/19, &(0x7f0000000100)=0x13)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r2, r4, 0x0, 0x64f3)
read(r1, &(0x7f0000000180)=""/68, 0x44)

28.363110703s ago: executing program 36 (id=186):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000105804135000000000000109022400010000000009040002010300000009210000640122f80409f78003ff0304bc0002e530a002319df077b8fa2ec31955e12543cb29a85d4f4820a3d9cb0cfaee69f072d631eac96ffd1dcca07c11e884490b46ad75031b750fb06d3d3982dfdb4e5d1f20cc0a8c2aca515484b6b4f1b699cf0c1525a1b1db26bc0b3fa95aa912c8e014b56eae3e2f1e4e412c29d9848b6529f39facc6f1f21ae6c4b8139e228d2b013266a9500fc4996675a6752db1c7eb2cb0cb82b98fad1b10c6c2f02a976897630850e5f689a633cc26d3b17da1246606b767fb65f8a3ed92f203c956f46122810cc9685b95937a141d2bd3bb866c267711a7f9c5314747e95226cb3f7e7f974bd7c15ab700a032ecf6bdfd3fb1574d326cce9ab58f830e231eb506990c6eda6d76654562afa1c23808a40a794eb209d6b19ce3e72bde388d5fc99fdf3b343971121168899eb1bc40b5eaece6748b41e2aef0994531b4a6698a4af18fb8a2270ac4301022162101652e27bf9ce672268fb67547eb040e050b1782bb556c645ac5ee28ce238b715b236e41a6"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect$printer(0x3, 0x0, 0x0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x26, &(0x7f0000000080)=ANY=[@ANYBLOB="2603b30d104b88946b7a53eeb400af30ecb273f6851840c0914ebd3b67994de540799198b501"]}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="98", 0x1}], 0x1}, 0x20048811)
setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000000100), 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0xfd, 0x0, 0x7fff0000}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4)
getsockopt$inet6_buf(r3, 0x29, 0x6, &(0x7f0000000080)=""/19, &(0x7f0000000100)=0x13)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r2, r4, 0x0, 0x64f3)
read(r1, &(0x7f0000000180)=""/68, 0x44)

10.770405971s ago: executing program 5 (id=289):
r0 = socket$igmp(0x2, 0x3, 0x2)
sendmmsg$inet(r0, &(0x7f0000004840)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="2400000000000000000000000700000001071336ac1414aaac1414aaac1e080100000000000000001c0000000000000000000000080000", @ANYRES32=0x0, @ANYBLOB="ac14"], 0x48}}], 0x1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000280)={0x4, [<r2=>0x0, 0x0, 0x0, 0x0]}, &(0x7f00000002c0)=0x14)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000300)={r2, 0x1c, &(0x7f0000000340)=[@in6={0xa, 0x0, 0xfffffffd, @empty, 0x36}]}, &(0x7f0000000100)=0x10)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x100010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = landlock_create_ruleset(&(0x7f0000000040)={0xc5, 0x3}, 0x18, 0x0)
landlock_restrict_self(r6, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000a40)='./file0\x00', 0x2)
syz_io_uring_submit(r4, r5, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
r7 = socket$inet6(0xa, 0x3, 0x9)
setsockopt$inet6_MCAST_JOIN_GROUP(r7, 0x29, 0x6, &(0x7f0000000000)={0x14, {{0x29, 0x0, 0x3e000000, @mcast2}}}, 0x88)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r9=>0x0})
r10 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r10, &(0x7f0000000080)={0x1d, r9, 0x0, {0x0, 0x0, 0x4}}, 0x18)
sendmsg$can_j1939(r10, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
sendmsg$can_j1939(r10, &(0x7f0000000240)={&(0x7f0000000000)={0x1d, r9, 0x0, {0x0, 0xf0, 0x3}, 0xfe}, 0x18, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x10000010}, 0x40000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x48, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x1, 0x0, 0x0, {0x0, r11}})
getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0xe)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f0000000200)='batadv_slave_1\x00')

9.07761307s ago: executing program 4 (id=299):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000400)=@nat={'nat\x00', 0x670, 0x5, 0x3b0, 0x0, 0x238, 0xfeffffff, 0x0, 0x0, 0x318, 0x318, 0xffffffff, 0x318, 0x318, 0x5, 0x0, {[{{@ip={@broadcast, @remote, 0x0, 0x0, 'geneve1\x00', 'geneve0\x00'}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x3, @broadcast, @local, @gre_key, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0x98, 0x0, {0x0, 0x7}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x220}}, {{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00'}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @multicast1, @dev, @gre_key, @icmp_id}}}}, {{@uncond, 0x0, 0xa8, 0xe0, 0x0, {}, [@common=@unspec=@devgroup={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @local, @loopback, @port, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x410)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'veth0_to_hsr\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x4, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xe, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0x14}]}}]}, 0x3c}}, 0x4000010)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x8}}, './file0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x480, 0x0)
r4 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x29cc, 0x10100}, &(0x7f0000000380)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1})
io_uring_enter(r4, 0x567, 0x0, 0x0, 0x0, 0x0)

8.418504212s ago: executing program 5 (id=301):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
syz_open_dev$evdev(0x0, 0x20000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r4, @ANYBLOB="0800050002000000"], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x2c, r3, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_USE_MFP={0x8}, @NL80211_ATTR_IE={0x4}]}, 0x2c}}, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
listen(r2, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r9, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r11, 0x1, 0x30bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
r12 = open(&(0x7f0000000140)='./file0\x00', 0x60102, 0x0)
r13 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r12, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r13, {0x7}}, './file0\x00'})
creat(&(0x7f0000000300)='./file0\x00', 0x0)

8.271456204s ago: executing program 4 (id=303):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000980), 0xffffffffffffffff)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x97, 0xfe, 0x5d, 0x10, 0x5ac, 0x262, 0x8994, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x5, 0x20, 0xc0, 0x2, [{{0x9, 0x4, 0xe1, 0x7, 0x0, 0x3, 0xbd, 0x2}}]}}]}}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x10, 0x0, 0x1300)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x30, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0xa}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa0}, 0x1, 0x0, 0x0, 0x850}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
io_setup(0x222, &(0x7f0000000180)=<r5=>0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x4000000044402, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r6, 0x0)
io_submit(r5, 0x2, &(0x7f0000000080)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x6417, r6, &(0x7f0000000280)="ab", 0x1, 0x6ed}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x2, 0x8, r6, 0x0, 0x0, 0x1}])
r7 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100), 0x840, 0x0)
ioctl$UFFDIO_ZEROPAGE(r7, 0xc020aa04, &(0x7f0000000140)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r1, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x7f}}}}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x84)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(r8, &(0x7f000000f8c0)={0x0, 0x0, &(0x7f000000f880)={&(0x7f0000002b00)=@newtaction={0x1c, 0x16, 0xe67c0fb78d4e40bf, 0x0, 0x0, {0xa}, [{0x4}, {0x4}]}, 0x1c}}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a80)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_GET_KEY(r9, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x28, r1, 0x15, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}, 0x1, 0x0, 0x0, 0x42000}, 0x2004c040)

7.927359052s ago: executing program 8 (id=305):
r0 = gettid()
rt_sigaction(0x16, &(0x7f0000000080)={&(0x7f0000000440)="c4a23d0643b9f0430fc079fff3460f1ec9f081035c000000f30faed446a900000000660f7ed238c461915492db8876efa1efa12eb22d233333f30fa7d0", 0x90000000, 0x0}, 0x0, 0x8, &(0x7f0000000200))
futex(&(0x7f0000000280), 0x0, 0x0, 0x0, &(0x7f0000000380)=0x1, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r2, &(0x7f0000002400)=[{&(0x7f0000000140)=""/225, 0xe1}], 0x1)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000001c0)={0x18, &(0x7f0000000240)=ANY=[@ANYBLOB="00052b"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x40})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0xf0, 0xbbba, 0x80, 0x18, 0x0, {0x9e}, {0x0, 0xfffffffd, 0xfffffffe}, {0x0, 0xffff0000}, {}, 0x0, 0x3f0, 0x0, 0xd613, 0x0, 0x0, 0x180, 0x679617ab, 0x0, 0x400, 0x0, 0x20000000, 0x0, 0x200, 0x1})
syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x80)
tkill(r0, 0x16)

7.389573553s ago: executing program 5 (id=307):
syz_usb_connect(0x1, 0x36, &(0x7f0000000040)=ANY=[@ANYRESDEC=0x0, @ANYRESDEC, @ANYRESOCT=0x0], 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000000)={0x28, 0x5, 0x0, 0x0, &(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xfffffffffffffffe})

6.875777526s ago: executing program 6 (id=310):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
getpeername(r0, &(0x7f00000000c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000080)=0x80)
syz_clone(0xc00e4000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x11, 0x800000002, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000540)={'wlan0\x00', {0x2, 0x4e24, @multicast2}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x2, &(0x7f0000000180)=[{0x40, 0x9, 0x3, 0x309}, {0x6, 0x4, 0x8, 0x7}]})

6.762669189s ago: executing program 4 (id=311):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = gettid()
tkill(r2, 0x21)
ptrace(0xffffffffffffffff, r2)
getsockopt$sock_buf(r1, 0x1, 0x3b, 0x0, &(0x7f0000000540))
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x300, &(0x7f0000001ac0)={&(0x7f0000000180)=ANY=[@ANYBLOB="180000002c0001000819000000000000ff508e610c32c752"], 0x18}, 0x1, 0x0, 0x0, 0x404000c}, 0x40000)
ptrace(0x11, 0x0)

6.702162414s ago: executing program 8 (id=312):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x80000000000000, &(0x7f0000000040), 0x13f, 0x5}}, 0x20)
syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="120100004e4aa92082051600578e01020301090236000200000000090400f50003ed02000905030000000000000904"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000054000000030a01010000000000000000010000000900030073797a3000000000280004800800024000000000140004007665746830000000000000000000000008000140000000040900010073797a300000000014000000100001000000c6e7000000000000000a"], 0x9c}}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000), &(0x7f0000000040))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240))

6.575459125s ago: executing program 4 (id=313):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x80000000000000, &(0x7f0000000040), 0x13f, 0x5}}, 0x20)
r1 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="120100004e4aa92082051600578e01020301090236000200000000090400f50003ed02000905030000000000000904"], 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000054000000030a01010000000000000000010000000900030073797a3000000000280004800800024000000000140004007665746830000000000000000000000008000140000000040900010073797a300000000014000000100001000000c6e7000000000000000a"], 0x9c}}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000), &(0x7f0000000040))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240))

6.217473977s ago: executing program 9 (id=315):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x80000000000000, &(0x7f0000000040), 0x13f, 0x5}}, 0x20)
r1 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="120100004e4aa92082051600578e01020301090236000200000000090400f50003ed02000905030000000000000904"], 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000), &(0x7f0000000040))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240))

5.818734109s ago: executing program 6 (id=316):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x38, 0xb, 0x6, 0x801, 0x0, 0x0, {0x6, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}}, 0x4800)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20000, 0xc8)
getdents64(r1, &(0x7f0000000200)=""/40, 0x28)
getdents64(r1, 0xfffffffffffffffe, 0x29)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x65, 0x0, 0x0, 0x3a, 0x0, @initdev={0xac, 0x1e, 0xfd, 0x0}, @multicast1}, {0x8000, 0x4e21, 0x10, 0x0, @gue={{0x2, 0x0, 0x3, 0x0, 0x100}}}}}}}, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$ARPT_SO_GET_ENTRIES(r1, 0x0, 0x61, &(0x7f0000000240)={'filter\x00', 0x62, "4bd0e5cd8c24705dc620627f09ee2e762ff023250378e8909a23081ee81bd02edd4f0e4f81d454f22662f5a9f88e779f54a734a56942d000b790b1e49168f367d4e112e871a844fd195e2dac414012b626f5902b551a82d74e505d83c3c446897781"}, &(0x7f0000000080)=0x86)
setsockopt$inet_tcp_int(r3, 0x6, 0x6, &(0x7f0000000040)=0x24, 0x4)

5.183920767s ago: executing program 6 (id=317):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1400000010000100000000000000000000004d6826ad18000a200000060a0b040000000000000000020000030900010073797a30000000001400000011010000040000000000000000000a0000"], 0x48}}, 0x0)

5.10574906s ago: executing program 8 (id=318):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
syz_open_dev$evdev(0x0, 0x20000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r4, @ANYBLOB="0800050002000000"], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x2c, r3, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_USE_MFP={0x8}, @NL80211_ATTR_IE={0x4}]}, 0x2c}}, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
listen(0xffffffffffffffff, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r9, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r11, 0x1, 0x30bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
r12 = open(&(0x7f0000000140)='./file0\x00', 0x60102, 0x0)
r13 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r12, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r13, {0x7}}, './file0\x00'})
creat(&(0x7f0000000300)='./file0\x00', 0x0)

4.448403153s ago: executing program 6 (id=319):
r0 = fsopen(&(0x7f00000000c0)='f2fs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0) (async, rerun: 64)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f0000000240)='//\xf2/\x06\b///o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0) (async, rerun: 64)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106) (async)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0) (async)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000000)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000000c0), 0xffffffffffffffff, 0x0, 0x1, 0x4}}, 0x20) (async, rerun: 32)
setsockopt$sock_attach_bpf(r1, 0x6, 0x19, &(0x7f0000000ec0), 0x22) (async, rerun: 32)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x121000, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r4, 0x40085112, &(0x7f0000000080)=@echo=0x1ff) (async)
r5 = syz_io_uring_setup(0x4171, &(0x7f0000000240)={0x0, 0x2, 0x4, 0x0, 0x37c}, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) (async)
io_uring_enter(r5, 0x567, 0x0, 0x0, 0x0, 0x0) (async)
socket$kcm(0x29, 0x2, 0x0) (async)
socket(0x40000000015, 0x5, 0x0) (async)
r6 = socket$inet6(0xa, 0x3, 0x75)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000100)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {0x0, 0xfef2}, 0x0, 0x1, 0x1, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x32}, 0x0, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x7f}}, 0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@remote, @in6=@mcast1, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20, 0x73}, {0xfffffefffffffffd, 0xeca, 0x2d, 0x0, 0x0, 0x0, 0x778a, 0xffff}, {0x3}}, {{@in6=@mcast2, 0x4d6, 0x3c}, 0x0, @in=@multicast1}}, 0xe8) (async)
close(r6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000b40)='./file1\x00', 0x0, 0x100, 0x12345}) (async, rerun: 32)
r7 = syz_io_uring_setup(0x81f, &(0x7f0000000480)={0x0, 0x0, 0x10, 0x1, 0x34f}, &(0x7f00000000c0)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0) (rerun: 32)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffff9, 0x0, 0x4) (async, rerun: 32)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30, 0x0, 0x0, 0x6}]}, 0x8) (rerun: 32)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1}) (async)
io_uring_enter(r7, 0x47bc, 0x0, 0x21, 0x0, 0x0)

4.18645239s ago: executing program 4 (id=320):
syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x3594, 0x10, 0x1003, 0x21e}, &(0x7f0000000240), &(0x7f0000000340))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newspdinfo={0x2c, 0x24, 0x1, 0x70bd25, 0x25dfdbfb, 0xc, [@XFRMA_SPD_IPV6_HTHRESH, @XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x50}]}, 0x2c}}, 0x0)

4.089783455s ago: executing program 5 (id=321):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x5c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac=@device_b}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x5c}}, 0x0)
unshare(0x22020400)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0x0, 0x80000)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x7c, 0x3000, 0x8, r5})
r6 = socket(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback={0xff00000000000000}}, 0x59)
connect$inet(r6, &(0x7f0000000140)={0x2, 0x4e24, @broadcast}, 0x10)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000080)={0x5001, 0xffff1000, 0x2, r5, 0x4})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r7=>0xffffffffffffffff})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r8, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000480)={0x40, r9, 0xb97534d5fe9704cf, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x5, 0x13, [{0x2}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

3.9577624s ago: executing program 9 (id=322):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000200)=0x1, 0x12)
sendmsg$BATADV_CMD_GET_HARDIF(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xd}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xb}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f00000002c0)="cc", 0x1, 0x880, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000300)="b3", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f00000003c0)={0x0, 0x1}, 0x8)

3.888951116s ago: executing program 8 (id=323):
socket(0x0, 0x6, 0x3)
socket$kcm(0x29, 0x5, 0x0)
mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x40, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
pselect6(0x40, &(0x7f0000000600), 0x0, &(0x7f0000000680)={0xff, 0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000000040)={0x0, 0x3938700}, 0x0)

3.633030384s ago: executing program 6 (id=324):
r0 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x80)
ioctl$CEC_RECEIVE(r0, 0xc0386106, &(0x7f0000000000)={0x0, 0x1, 0xffffffc, 0x8000000, 0xffffffff, 0x9, "26000000000000000000000000000019", 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x7})

3.143000395s ago: executing program 8 (id=325):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0) (fail_nth: 6)

2.943249653s ago: executing program 9 (id=326):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000080)=0x40000)
dup(r0)
r2 = syz_io_uring_setup(0x5179, &(0x7f00000002c0)={0x0, 0x4404000, 0x10100, 0x3, 0x210}, &(0x7f0000000000), &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_setup(0x1bee, &(0x7f00000000c0)={0x0, 0x42000000, 0x1000, 0x1, 0x2}, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r2, 0xb15, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000004)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x2)

2.172914766s ago: executing program 9 (id=327):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f0000000000)={0xa, 0x4, 0xfa00, {r1}}, 0xc)

1.791297485s ago: executing program 4 (id=328):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f000047f000/0x2000)=nil, 0x2000, 0x1000007, 0x38011, r1, 0x2c9ab000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
sendmmsg$inet(r5, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000001b80)=[{&(0x7f00000005c0)="96a67b36bd06304a08a67f14f6c3881ca6167592ce060670a396f8ab05ace2caca6b2a9ecf3471d2", 0x28}, {&(0x7f0000000500)="fc484e55021886bb", 0x7fffefd8}], 0x2}}], 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000400)={0xa, 0x4e23, 0x20380000, @mcast2, 0x6}, 0x1c)
fadvise64(r0, 0x5851, 0x0, 0x2)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x0, &(0x7f0000000040)={@mcast1, <r7=>0x0}, &(0x7f00000000c0)=0x14)
read$FUSE(r1, &(0x7f0000003140)={0x2020, 0x0, 0x0, <r8=>0x0}, 0x2020)
setsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000000280)={{{@in=@remote, @in6=@local, 0x4e21, 0x8, 0x4e24, 0x0, 0xa, 0x80, 0x20, 0x2f, r7, r8}, {0x7, 0x100000001, 0x8000000000000001, 0x401, 0x3, 0x9, 0x5, 0x5}, {0x7c, 0x8, 0x0, 0x2}, 0x1000, 0x0, 0x0, 0x0, 0x1}, {{@in=@remote, 0x4d6, 0x6c}, 0xe9808a50fe4adfba, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x3507, 0x4, 0x0, 0x48, 0x4, 0x9, 0xffffdb2f}}, 0xe8)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.699814272s ago: executing program 6 (id=329):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x81c}, 0x20000000)
move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x16, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000070a03030000000000000000020000000900020073797a30000000000900010073"], 0x2c}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)

1.689306485s ago: executing program 9 (id=330):
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001100)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "244333791f045158d97405000000000000040000000100", [0xfffffffffefffffc]}})
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000033c0)={0x53, 0x0, 0x6, 0x6b, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="1c3513000000", &(0x7f0000001200)=""/4103, 0x0, 0x0, 0x0, 0x0})

1.328791842s ago: executing program 9 (id=331):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r1, 0x2c9ab000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
r5 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x1ffc, @empty, 0x7fffe}, 0x1c)
r6 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x40, &(0x7f0000000200)=0x2, 0x4)
recvmmsg(r6, &(0x7f0000001880)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x0, 0x0)
syz_open_procfs$pagemap(0x0, 0x0)
syz_usb_connect(0x0, 0x43, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x43, 0xa5, 0xaa, 0x40, 0x1b80, 0xe396, 0xa7b1, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x68, 0x5b, 0xd1}}]}}]}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
capset(&(0x7f0000000000)={0x19980330}, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x10000000, 0x2ffffffff}, 0xc)
socket(0x1d, 0x2, 0x6)

1.122194666s ago: executing program 5 (id=332):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0x9, &(0x7f0000000200)=0x8, 0x4)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x149002, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet(r3, &(0x7f0000001980)={0x2, 0x1, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
sendmmsg$inet(r3, &(0x7f0000000780)=[{{&(0x7f00000000c0)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, 0x0}}, {{&(0x7f00000004c0)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, 0x0}}], 0x2, 0x8c37c2b979564e6e)
write$P9_RSTATu(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="930200007d00000005f0000000000000000000000000000000000000000000000000000000000000000000000000000000001f00046e6f6465767b6376666f7892ffffff8102000000000031ffcebc920000003800704a86cec602007dfa673effeb09b5351f5bde05f7"], 0x232)
r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0)
sendmsg$nl_route(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@ipv6_getaddr={0x6c, 0x16, 0x8, 0x70bd2d, 0x25dfdbff, {0xa, 0x38, 0x0, 0xfe, r1}, [@IFA_TARGET_NETNSID={0x8, 0xa, 0x6}, @IFA_RT_PRIORITY={0x8, 0x9, 0x4}, @IFA_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00'}, @IFA_ADDRESS={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IFA_FLAGS={0x8, 0x8, 0x28}, @IFA_ADDRESS={0x14, 0x1, @private0}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x10)
sendto$packet(r0, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14)

453.077616ms ago: executing program 8 (id=333):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
syz_open_dev$evdev(0x0, 0x20000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r4, @ANYBLOB="0800050002000000"], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x2c, r3, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_USE_MFP={0x8}, @NL80211_ATTR_IE={0x4}]}, 0x2c}}, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
listen(0xffffffffffffffff, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r9, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r11, 0x1, 0x30bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
r12 = open(&(0x7f0000000140)='./file0\x00', 0x60102, 0x0)
r13 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r12, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r13, {0x7}}, './file0\x00'})
creat(&(0x7f0000000300)='./file0\x00', 0x0)

0s ago: executing program 5 (id=334):
socket$tipc(0x1e, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000003d0007010000000000000000047c0000040012801400018006000600800a0000080011"], 0x2c}}, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080), &(0x7f0000000100)=0x14)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0xc, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x20000004, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008063, 0x7, 0x1a, 0x1, 0x7, 0x5, 0xffff, 0x8f, 0x4006, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0x9, 0x8000012f, 0x6, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0x3ff, 0x0, 0x4, 0x7, 0x7fff, 0x9, 0x423, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0x0, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x1f, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0x2000b, 0x9, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e5, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x4, 0x38, 0x820003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0xa9, 0x5, 0x9, 0xac8, 0xc0, 0x2, 0x6, 0x7ff, 0x12b, 0x4, 0x1, 0x0, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xe, 0x5, 0x938, 0x6, 0xf, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x7, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1f, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
epoll_create1(0x80000)
unshare(0x22020600)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000640)=@setlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_LINKMODE={0x5, 0x11, 0x8}, @IFLA_GROUP={0x8, 0x1b, 0xfff}]}, 0x44}}, 0x0)
r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x204040, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xc)
socket$inet6(0xa, 0x80002, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000240)='dctcp-reno\x00', 0xb)
ioctl$VT_RELDISP(r3, 0x5605)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000000)={@mcast2={0xff, 0x5}, 0x0, 0x0, 0x2, 0x3}, 0x20)
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x14, 0x0, 0x701, 0x70bd2a}, 0x14}}, 0x4400)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f00000002c0)={&(0x7f00000001c0), 0xc, &(0x7f0000000280)={&(0x7f0000000880)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x19c}, 0x1, 0x0, 0x0, 0x4000050}, 0xc0)
preadv2(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000300)=""/103, 0x67}], 0x1, 0x5, 0x101, 0x1)

kernel console output (not intermixed with test programs):

usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   92.361520][   T52] hsr_slave_0: left promiscuous mode
[   92.375147][   T52] hsr_slave_1: left promiscuous mode
[   92.388203][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.407554][ T5888] usb 2-1: New USB device found, idVendor=0f11, idProduct=1000, bcdDevice= 0.02
[   92.416574][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.424036][ T5887] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   92.424720][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.439698][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.447025][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=232, SerialNumber=255
[   92.463175][ T5888] usb 2-1: Product: syz
[   92.469294][ T5888] usb 2-1: SerialNumber: syz
[   92.481255][ T5888] usb 2-1: config 0 descriptor??
[   92.490478][ T5887] usb 5-1: device descriptor read/8, error -71
[   92.506876][   T52] veth1_macvtap: left promiscuous mode
[   92.519867][   T52] veth0_macvtap: left promiscuous mode
[   92.525589][   T52] veth1_vlan: left promiscuous mode
[   92.531055][   T52] veth0_vlan: left promiscuous mode
[   92.706789][ T5888] ldusb 2-1:0.0: Interrupt in endpoint not found
[   92.735099][ T5888] usb 2-1: USB disconnect, device number 6
[   92.757344][ T5887] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[   92.797212][ T5887] usb 5-1: device descriptor read/8, error -71
[   92.926833][ T5887] usb usb5-port1: unable to enumerate USB device
[   93.035407][ T5886] usb 6-1: USB disconnect, device number 3
[   93.219931][   T52] team0 (unregistering): Port device team_slave_1 removed
[   93.264567][   T52] team0 (unregistering): Port device team_slave_0 removed
[   93.361120][   T54] Bluetooth: hci1: command tx timeout
[   93.592083][   T54] Bluetooth: hci4: command tx timeout
[   93.812493][ T6311] chnl_net:caif_netlink_parms(): no params data found
[   93.861587][ T6328] chnl_net:caif_netlink_parms(): no params data found
[   94.309892][ T5887] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   94.386900][ T6328] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.396555][ T6328] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.403748][ T6328] bridge_slave_0: entered allmulticast mode
[   94.474738][ T6328] bridge_slave_0: entered promiscuous mode
[   94.506585][ T5887] usb 2-1: Using ep0 maxpacket: 8
[   94.510757][ T6328] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.531387][ T5887] usb 2-1: config 0 has an invalid interface number: 31 but max is 0
[   94.541028][ T5887] usb 2-1: config 0 has no interface number 0
[   94.552179][ T5887] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[   94.561467][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.569618][ T5887] usb 2-1: Product: syz
[   94.574487][ T5887] usb 2-1: Manufacturer: syz
[   94.575837][ T6328] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.579179][ T5887] usb 2-1: SerialNumber: syz
[   94.581092][ T5887] usb 2-1: config 0 descriptor??
[   94.606032][ T6328] bridge_slave_1: entered allmulticast mode
[   94.621028][ T6328] bridge_slave_1: entered promiscuous mode
[   94.646625][  T977] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   94.765651][ T6384] FAULT_INJECTION: forcing a failure.
[   94.765651][ T6384] name failslab, interval 1, probability 0, space 0, times 0
[   94.779676][ T6384] CPU: 1 UID: 0 PID: 6384 Comm: syz.4.116 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[   94.779692][ T6384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.779698][ T6384] Call Trace:
[   94.779702][ T6384]  <TASK>
[   94.779707][ T6384]  dump_stack_lvl+0x241/0x360
[   94.779723][ T6384]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.779733][ T6384]  ? __pfx__printk+0x10/0x10
[   94.779743][ T6384]  ? kmem_cache_alloc_noprof+0x48/0x380
[   94.779760][ T6384]  ? __pfx___might_resched+0x10/0x10
[   94.779771][ T6384]  ? alloc_pages_mpol+0x4bd/0x660
[   94.779786][ T6384]  should_fail_ex+0x40a/0x550
[   94.779802][ T6384]  should_failslab+0xac/0x100
[   94.779814][ T6384]  ? __pmd_alloc+0x111/0x420
[   94.779827][ T6384]  kmem_cache_alloc_noprof+0x70/0x380
[   94.779841][ T6384]  __pmd_alloc+0x111/0x420
[   94.779856][ T6384]  ? __pfx___pmd_alloc+0x10/0x10
[   94.779869][ T6384]  ? __pfx_validate_chain+0x10/0x10
[   94.779879][ T6384]  ? kernel_text_address+0xa7/0xe0
[   94.779892][ T6384]  __handle_mm_fault+0xd34/0x70f0
[   94.779904][ T6384]  ? mark_lock+0x9a/0x360
[   94.779924][ T6384]  ? __pfx___handle_mm_fault+0x10/0x10
[   94.779942][ T6384]  ? mt_find+0x2a9/0x920
[   94.779955][ T6384]  ? __pfx_lock_release+0x10/0x10
[   94.779975][ T6384]  ? mt_find+0x2a9/0x920
[   94.779988][ T6384]  ? mt_find+0x6c8/0x920
[   94.779999][ T6384]  ? mt_find+0x2a9/0x920
[   94.780013][ T6384]  ? __pfx_mt_find+0x10/0x10
[   94.780034][ T6384]  ? find_vma+0xf9/0x170
[   94.780047][ T6384]  ? __pfx_find_vma+0x10/0x10
[   94.780059][ T6384]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   94.780073][ T6384]  handle_mm_fault+0x3e5/0x8d0
[   94.780091][ T6384]  exc_page_fault+0x2b9/0x8b0
[   94.780106][ T6384]  asm_exc_page_fault+0x26/0x30
[   94.780119][ T6384] RIP: 0010:__put_user_4+0x11/0x20
[   94.780131][ T6384] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[   94.780139][ T6384] RSP: 0018:ffffc900034d7d98 EFLAGS: 00050206
[   94.780148][ T6384] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00004000000170c0
[   94.780154][ T6384] RDX: 0000000000000000 RSI: ffffffff8c2ab700 RDI: ffffffff8c80ef80
[   94.780160][ T6384] RBP: ffffc900034d7ec8 R08: ffffffff903ced77 R09: 1ffffffff2079dae
[   94.780166][ T6384] R10: dffffc0000000000 R11: fffffbfff2079daf R12: 00004000000170c0
[   94.780173][ T6384] R13: ffff88802fe75e00 R14: ffff88807d82e228 R15: dffffc0000000000
[   94.780195][ T6384]  pidfd_ioctl+0x26d/0x1a20
[   94.780209][ T6384]  ? __pfx_pidfd_ioctl+0x10/0x10
[   94.780218][ T6384]  ? __fget_files+0x2a/0x410
[   94.780232][ T6384]  ? __fget_files+0x2a/0x410
[   94.780247][ T6384]  ? __pfx_pidfd_ioctl+0x10/0x10
[   94.780257][ T6384]  __se_sys_ioctl+0xf5/0x170
[   94.780268][ T6384]  do_syscall_64+0xf3/0x230
[   94.780280][ T6384]  ? clear_bhb_loop+0x35/0x90
[   94.780294][ T6384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.780305][ T6384] RIP: 0033:0x7f98c818d169
[   94.780313][ T6384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.780320][ T6384] RSP: 002b:00007f98c5ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   94.780329][ T6384] RAX: ffffffffffffffda RBX: 00007f98c83a5fa0 RCX: 00007f98c818d169
[   94.780335][ T6384] RDX: 00004000000170c0 RSI: 0000000080087601 RDI: 0000000000000003
[   94.780341][ T6384] RBP: 00007f98c5ff6090 R08: 0000000000000000 R09: 0000000000000000
[   94.780346][ T6384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.780351][ T6384] R13: 0000000000000000 R14: 00007f98c83a5fa0 R15: 00007f98c84cfa28
[   94.780365][ T6384]  </TASK>
[   95.262444][  T977] usb 6-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[   95.273086][  T977] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.581967][  T977] usb 6-1: config 0 descriptor??
[   95.606564][   T54] Bluetooth: hci1: command tx timeout
[   95.616603][ T5887] usb 2-1: Found UVC 0.04 device syz (046d:08c3)
[   95.619591][ T6311] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.623035][ T5887] usb 2-1: No streaming interface found for terminal 6.
[   95.637538][ T6311] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.654410][ T6311] bridge_slave_0: entered allmulticast mode
[   95.677522][ T5837] Bluetooth: hci4: command tx timeout
[   95.678346][ T5887] usb 2-1: Failed to create links for entity 5
[   95.685374][  T977] usb 6-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[   95.696323][  T977] dvb_usb_af9015 6-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[   95.728960][ T6311] bridge_slave_0: entered promiscuous mode
[   95.741993][ T6311] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.749456][ T5887] usb 2-1: Failed to register entities (-22).
[   95.750162][ T6311] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.762926][ T6311] bridge_slave_1: entered allmulticast mode
[   95.770351][ T6311] bridge_slave_1: entered promiscuous mode
[   95.776076][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.780278][ T6328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   95.795672][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.796087][ T6328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   95.809476][ T5887] usb 2-1: USB disconnect, device number 7
[   95.818698][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.841697][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.910807][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.946526][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.963852][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   95.992902][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.033657][ T6311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   96.059664][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.132296][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.166587][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.174148][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.182120][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.190024][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.201461][   T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.212222][ T5888] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0
[   96.263125][ T6328] team0: Port device team_slave_0 added
[   96.269339][ T5888] hid-generic 0000:0003:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   96.333544][ T6328] team0: Port device team_slave_1 added
[   96.385174][ T6311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.578153][   T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.842764][ T6311] team0: Port device team_slave_0 added
[   96.937812][   T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.004087][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_0
[   97.021965][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.062033][ T6328] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   97.075471][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_1
[   97.083430][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.125716][ T6328] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   97.150448][ T6311] team0: Port device team_slave_1 added
[   97.206742][   T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.321188][ T6311] batman_adv: batadv0: Adding interface: batadv_slave_0
[   97.344370][ T6311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.370801][ T5886] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[   97.384470][ T6311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   97.412915][ T6311] batman_adv: batadv0: Adding interface: batadv_slave_1
[   97.436068][ T6311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.463468][ T6311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   97.497920][ T6328] hsr_slave_0: entered promiscuous mode
[   97.504189][ T6328] hsr_slave_1: entered promiscuous mode
[   97.510487][ T6328] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   97.518379][ T5886] usb 5-1: Using ep0 maxpacket: 32
[   97.527040][ T5886] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   97.539744][ T6328] Cannot create hsr debugfs directory
[   97.546855][ T5886] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[   97.682104][ T5837] Bluetooth: hci1: command tx timeout
[   97.699692][ T5886] usb 5-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[   97.716025][ T5886] usb 5-1: config 0 interface 0 has no altsetting 1
[   97.725453][ T5886] usb 5-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[   97.735010][ T5886] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.743358][ T5886] usb 5-1: Product: syz
[   97.747863][ T5837] Bluetooth: hci4: command tx timeout
[   97.753469][ T5886] usb 5-1: Manufacturer: syz
[   97.758592][ T5886] usb 5-1: SerialNumber: syz
[   97.771370][ T5886] usb 5-1: config 0 descriptor??
[   97.839738][ T6413] syz.1.118 uses obsolete (PF_INET,SOCK_PACKET)
[   97.922391][ T6311] hsr_slave_0: entered promiscuous mode
[   97.937787][ T6311] hsr_slave_1: entered promiscuous mode
[   97.944348][ T6311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   97.953063][ T6311] Cannot create hsr debugfs directory
[   98.206081][ T5888] usb 6-1: USB disconnect, device number 4
[   98.221356][   T29] kauditd_printk_skb: 5 callbacks suppressed
[   98.221372][   T29] audit: type=1326 audit(1740719045.555:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.256971][   T29] audit: type=1326 audit(1740719045.585:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.336888][   T51] usb 5-1: USB disconnect, device number 13
[   98.339262][   T29] audit: type=1326 audit(1740719045.585:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.405921][   T52] bridge_slave_1: left allmulticast mode
[   98.413152][   T52] bridge_slave_1: left promiscuous mode
[   98.474270][   T29] audit: type=1326 audit(1740719045.585:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.497543][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.503984][   T29] audit: type=1326 audit(1740719045.585:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.529215][   T52] bridge_slave_0: left allmulticast mode
[   98.532835][   T29] audit: type=1326 audit(1740719045.585:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.534880][   T52] bridge_slave_0: left promiscuous mode
[   98.572993][   T29] audit: type=1326 audit(1740719045.585:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.595795][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.616646][   T29] audit: type=1326 audit(1740719045.585:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.4.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[   98.737431][ T5887] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   98.853621][ T6420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.122'.
[   98.915941][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[   98.925648][ T6422] process 'syz.4.123' launched './file0' with NULL argv: empty string added
[   98.936164][ T5887] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[   98.946073][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   98.969165][ T5887] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[   98.988550][ T5887] usb 6-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[   99.001616][ T5887] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.013793][ T5887] usb 6-1: Product: syz
[   99.023650][ T5887] usb 6-1: Manufacturer: syz
[   99.029983][ T5887] usb 6-1: SerialNumber: syz
[   99.052092][ T5887] usb 6-1: config 0 descriptor??
[   99.061184][ T5887] ti_usb_3410_5052 6-1:0.0: TI USB 3410 1 port adapter converter detected
[   99.077431][ T5887] usb 6-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0
[   99.233767][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   99.244526][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   99.258589][   T52] bond0 (unregistering): (slave wlan1): Releasing backup interface
[   99.279249][   T52] bond0 (unregistering): Released all slaves
[   99.301393][ T6420] erspan0: entered promiscuous mode
[   99.307520][ T6420] macvtap1: entered promiscuous mode
[   99.314190][ T6420] macvtap1: entered allmulticast mode
[   99.321091][ T6420] erspan0: entered allmulticast mode
[   99.360877][ T6423] macvtap1: left promiscuous mode
[   99.366114][ T6423] macvtap1: left allmulticast mode
[   99.374065][ T6423] erspan0: left allmulticast mode
[   99.483932][ T6425] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.495876][ T6425] team0: Port device bond0 added
[   99.517715][ T6418] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.537414][ T6418] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.548502][ T6418] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.559884][ T6418] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.607515][ T6418] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.636491][ T6418] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.646377][ T6418] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.696211][ T6418] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.747243][ T5837] Bluetooth: hci1: command tx timeout
[   99.755107][ T6418] batadv_slave_0: entered promiscuous mode
[   99.762891][ T6418] batadv_slave_0: left promiscuous mode
[   99.808603][ T6436] kvm: MWAIT instruction emulated as NOP!
[   99.854650][ T5886] usb 6-1: USB disconnect, device number 5
[   99.875781][ T5886] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0
[   99.904731][ T5886] ti_usb_3410_5052 6-1:0.0: device disconnected
[  100.147359][ T6449] mmap: syz.4.128 (6449) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  100.166256][ T5903] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  100.273658][   T52] hsr_slave_0: left promiscuous mode
[  100.297655][   T52] hsr_slave_1: left promiscuous mode
[  100.303783][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.315744][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.327645][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.343634][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.351032][ T5903] usb 2-1: Using ep0 maxpacket: 32
[  100.362279][ T5903] usb 2-1: config 4 has an invalid interface number: 128 but max is 0
[  100.373264][ T5903] usb 2-1: config 4 has no interface number 0
[  100.410288][   T52] veth1_macvtap: left promiscuous mode
[  100.415897][   T52] veth0_macvtap: left promiscuous mode
[  100.421655][ T5903] usb 2-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.446709][   T52] veth1_vlan: left promiscuous mode
[  100.452069][   T52] veth0_vlan: left promiscuous mode
[  100.457770][ T5903] usb 2-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.490871][ T5903] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  100.506548][ T5903] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.521373][ T5903] hub 2-1:4.128: USB hub found
[  100.732005][ T5903] hub 2-1:4.128: 2 ports detected
[  100.738777][ T5903] hub 2-1:4.128: Using single TT (err -22)
[  101.086025][ T6476] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  101.411976][   T52] team0 (unregistering): Port device team_slave_1 removed
[  101.471942][   T52] team0 (unregistering): Port device team_slave_0 removed
[  101.479331][ T5887] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  101.556515][ T5903] hub 2-1:4.128: hub_hub_status failed (err = -71)
[  101.580832][ T5903] hub 2-1:4.128: config failed, can't get hub status (err -71)
[  101.608917][ T5903] usb 2-1: USB disconnect, device number 8
[  101.671366][ T5887] usb 5-1: config 0 has an invalid interface number: 129 but max is 0
[  101.680022][ T5887] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  101.694692][ T5887] usb 5-1: config 0 has no interface number 0
[  101.700873][ T5887] usb 5-1: config 0 interface 129 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  101.752814][ T5887] usb 5-1: New USB device found, idVendor=04e8, idProduct=a101, bcdDevice=80.8e
[  101.765444][ T5887] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.778656][ T5887] usb 5-1: Product: syz
[  101.782828][ T5887] usb 5-1: Manufacturer: syz
[  101.794152][ T5887] usb 5-1: SerialNumber: syz
[  101.805939][ T5887] r8152-cfgselector 5-1: Unknown version 0x0000
[  101.817560][ T5887] r8152-cfgselector 5-1: config 0 descriptor??
[  102.029935][ T6478] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.039396][ T6478] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.058982][ T5888] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  102.191960][ T5887] r8152 5-1:0.129: Expected endpoints are not found
[  102.246811][ T5887] r8152-cfgselector 5-1: USB disconnect, device number 14
[  102.274019][ T5888] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.275887][ T6328] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  102.291132][ T5888] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.340579][ T5888] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  102.386521][ T5888] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  102.440987][ T6328] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  102.452358][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.493498][ T5888] usb 2-1: config 0 descriptor??
[  102.575424][ T6328] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  102.607899][ T6328] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  102.734445][ T6311] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  102.801473][ T6311] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  102.839006][ T6311] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  102.880431][ T6311] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  102.928652][ T5888] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  102.985344][ T5888] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  103.059591][ T6328] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.135048][ T6328] 8021q: adding VLAN 0 to HW filter on device team0
[  103.208393][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.215572][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.271514][ T1324] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.278750][ T1324] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.482072][ T6311] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.516571][ T5903] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  103.540480][ T6328] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.587753][ T6311] 8021q: adding VLAN 0 to HW filter on device team0
[  103.641244][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.648450][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.688831][ T5903] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  103.708484][ T5903] usb 5-1: New USB device found, idVendor=1bc7, idProduct=9010, bcdDevice=36.53
[  103.719790][ T5903] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.729546][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.736732][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.749253][ T5903] usb 5-1: config 0 descriptor??
[  103.758568][ T5903] option 5-1:0.0: GSM modem (1-port) converter detected
[  103.805683][ T6328] veth0_vlan: entered promiscuous mode
[  103.812430][ T6521] xt_ipcomp: unknown flags 12
[  103.927549][ T6328] veth1_vlan: entered promiscuous mode
[  103.963336][  T977] usb 5-1: USB disconnect, device number 15
[  103.983629][  T977] option 5-1:0.0: device disconnected
[  104.114886][ T6328] veth0_macvtap: entered promiscuous mode
[  104.126806][   T51] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[  104.163169][ T6311] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.181640][ T6328] veth1_macvtap: entered promiscuous mode
[  104.213531][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.231342][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.251800][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.266081][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.278963][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.292427][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.303704][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.304710][   T51] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  104.325877][   T51] usb 6-1: config 0 has no interface number 0
[  104.333032][   T51] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  104.350312][   T51] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  104.370754][   T51] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  104.373010][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.383391][   T51] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  104.406324][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.406614][   T51] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  104.421503][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.430521][   T51] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  104.446069][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.452914][   T51] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  104.468971][ T6328] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.481234][   T51] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.492251][   T51] usb 6-1: config 0 descriptor??
[  104.499494][ T6521] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  104.507499][ T6521] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  104.521471][ T6328] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.522489][   T51] ldusb 6-1:0.55: LD USB Device #1 now attached to major 180 minor 1
[  104.552544][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.617243][ T6328] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.625982][ T6328] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.641946][ T6328] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.650803][ T6328] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.749459][ T6311] veth0_vlan: entered promiscuous mode
[  104.834377][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.844883][ T6311] veth1_vlan: entered promiscuous mode
[  104.852518][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.910591][ T5913] usb 6-1: USB disconnect, device number 6
[  104.935441][ T5913] ldusb 6-1:0.55: LD USB Device #1 now disconnected
[  104.971106][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.002895][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.017741][ T1324] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.018551][ T5903] usb 2-1: USB disconnect, device number 9
[  105.034334][ T6311] veth0_macvtap: entered promiscuous mode
[  105.040674][ T1324] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.052612][ T6311] veth1_macvtap: entered promiscuous mode
[  105.053425][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.156580][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.175278][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.187254][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.207041][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.212199][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.228987][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.253628][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.283341][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.306588][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.326573][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.344169][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.374099][ T6311] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.399783][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.448328][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.479020][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.512106][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.545331][ T6564] loop7: detected capacity change from 0 to 16384
[  105.555533][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.565600][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.592343][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.602767][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.626490][ T6311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.636621][ T6546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.143'.
[  105.641094][ T6311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.668919][ T6311] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.681227][ T6311] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.701806][ T6311] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.726936][ T6311] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.735677][ T6311] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.827636][   T51] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  106.026705][   T51] usb 6-1: Invalid ep0 maxpacket: 32
[  106.095368][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.113288][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.159213][ T6574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.147'.
[  106.165255][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.201449][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.236597][   T51] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  106.633254][   T51] usb 6-1: Invalid ep0 maxpacket: 32
[  106.686759][    T9] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  106.768585][   T51] usb usb6-port1: attempt power cycle
[  106.849480][    T9] usb 5-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  106.859246][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.891246][    T9] usb 5-1: config 0 descriptor??
[  107.044953][    T9] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  107.065171][    T9] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  107.136728][   T51] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[  107.169698][   T51] usb 6-1: Invalid ep0 maxpacket: 32
[  107.468937][   T51] usb 6-1: new low-speed USB device number 10 using dummy_hcd
[  107.533262][   T51] usb 6-1: Invalid ep0 maxpacket: 32
[  107.572370][   T51] usb usb6-port1: unable to enumerate USB device
[  108.066703][   T51] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  108.236573][   T51] usb 7-1: device descriptor read/64, error -71
[  108.536657][   T51] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  108.676823][   T51] usb 7-1: device descriptor read/64, error -71
[  108.847424][   T51] usb usb7-port1: attempt power cycle
[  109.085163][ T3802] usb 5-1: USB disconnect, device number 16
[  109.281056][ T5887] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  109.284825][ T6640] FAULT_INJECTION: forcing a failure.
[  109.284825][ T6640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.309459][   T51] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  109.357089][   T51] usb 7-1: device descriptor read/8, error -71
[  109.373157][ T6640] CPU: 0 UID: 0 PID: 6640 Comm: syz.5.154 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  109.373183][ T6640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  109.373193][ T6640] Call Trace:
[  109.373200][ T6640]  <TASK>
[  109.373207][ T6640]  dump_stack_lvl+0x241/0x360
[  109.373231][ T6640]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.373248][ T6640]  ? __pfx__printk+0x10/0x10
[  109.373265][ T6640]  ? __pfx_lock_release+0x10/0x10
[  109.373293][ T6640]  should_fail_ex+0x40a/0x550
[  109.373319][ T6640]  _copy_from_user+0x2d/0xb0
[  109.373339][ T6640]  copy_clone_args_from_user+0x1ca/0x840
[  109.373372][ T6640]  ? __pfx_copy_clone_args_from_user+0x10/0x10
[  109.373410][ T6640]  __se_sys_clone3+0xf4/0x380
[  109.373430][ T6640]  ? __mutex_unlock_slowpath+0x227/0x800
[  109.373451][ T6640]  ? __pfx___se_sys_clone3+0x10/0x10
[  109.373482][ T6640]  ? __fget_files+0x2a/0x410
[  109.373524][ T6640]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  109.373547][ T6640]  ? do_syscall_64+0x100/0x230
[  109.373571][ T6640]  ? do_syscall_64+0xb6/0x230
[  109.373593][ T6640]  do_syscall_64+0xf3/0x230
[  109.373613][ T6640]  ? clear_bhb_loop+0x35/0x90
[  109.373637][ T6640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.373657][ T6640] RIP: 0033:0x7f98dcd8d169
[  109.373672][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.373686][ T6640] RSP: 002b:00007f98ddb54f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  109.373703][ T6640] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f98dcd8d169
[  109.373715][ T6640] RDX: 00007f98ddb54f20 RSI: 0000000000000058 RDI: 00007f98ddb54f20
[  109.373726][ T6640] RBP: 00007f98ddb55090 R08: 0000000000000000 R09: 0000000000000058
[  109.373736][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.373746][ T6640] R13: 0000000000000000 R14: 00007f98dcfa5fa0 R15: 00007f98dd0cfa28
[  109.373771][ T6640]  </TASK>
[  109.648261][ T5887] usb 2-1: Using ep0 maxpacket: 16
[  109.685164][ T5887] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.738412][   T51] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  109.819325][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  109.852915][   T51] usb 7-1: device descriptor read/8, error -71
[  109.880255][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  109.899760][ T5887] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  109.933427][ T5887] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  109.969890][ T5887] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  109.979862][ T5887] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  109.989657][   T51] usb usb7-port1: unable to enumerate USB device
[  110.005931][ T5887] usb 2-1: Manufacturer: syz
[  110.077568][ T5903] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  110.099875][ T5887] usb 2-1: config 0 descriptor??
[  110.238572][ T5903] usb 5-1: Using ep0 maxpacket: 32
[  110.249649][ T5903] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  110.260532][ T5903] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  110.270964][ T5903] usb 5-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  110.284200][ T5903] usb 5-1: config 0 interface 0 has no altsetting 1
[  110.293845][ T5903] usb 5-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  110.303360][ T5903] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.317302][ T5903] usb 5-1: Product: syz
[  110.321533][ T5903] usb 5-1: Manufacturer: syz
[  110.326145][ T5903] usb 5-1: SerialNumber: syz
[  110.339388][ T5903] usb 5-1: config 0 descriptor??
[  110.397375][ T5887] rc_core: IR keymap rc-hauppauge not found
[  110.405972][ T5887] Registered IR keymap rc-empty
[  110.415566][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.451341][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.479508][ T5887] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  110.505163][ T5887] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input7
[  110.527980][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.566695][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.596805][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.626837][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.687026][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.737982][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.795644][ T6631] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.808151][   T29] audit: type=1326 audit(1740719058.135:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.827131][ T6631] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.831903][   T29] audit: type=1326 audit(1740719058.135:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.841662][   T51] usb 5-1: USB disconnect, device number 17
[  110.861171][   T29] audit: type=1326 audit(1740719058.135:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.896036][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  110.897090][   T29] audit: type=1326 audit(1740719058.135:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.928042][   T29] audit: type=1326 audit(1740719058.135:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.951038][   T29] audit: type=1326 audit(1740719058.135:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  110.973440][   T29] audit: type=1326 audit(1740719058.135:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  111.002311][ T6631] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.016708][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  111.051257][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  111.073875][ T6631] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  111.094821][   T29] audit: type=1326 audit(1740719058.135:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6648 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  111.116648][ T5887] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  111.188392][ T5887] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  111.250015][ T5887] mceusb 2-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  111.295118][ T5887] usb 2-1: USB disconnect, device number 10
[  111.596587][ T3802] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  111.693630][ T6696] netlink: 8 bytes leftover after parsing attributes in process `syz.4.165'.
[  111.735097][ T6705] FAULT_INJECTION: forcing a failure.
[  111.735097][ T6705] name failslab, interval 1, probability 0, space 0, times 0
[  111.773059][ T6705] CPU: 0 UID: 0 PID: 6705 Comm: syz.7.167 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  111.773086][ T6705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  111.773097][ T6705] Call Trace:
[  111.773103][ T6705]  <TASK>
[  111.773111][ T6705]  dump_stack_lvl+0x241/0x360
[  111.773137][ T6705]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.773156][ T6705]  ? __pfx__printk+0x10/0x10
[  111.773175][ T6705]  ? kmem_cache_alloc_lru_noprof+0x4d/0x390
[  111.773198][ T6705]  ? __pfx___might_resched+0x10/0x10
[  111.773224][ T6705]  should_fail_ex+0x40a/0x550
[  111.773249][ T6705]  should_failslab+0xac/0x100
[  111.773271][ T6705]  ? __d_alloc+0x31/0x740
[  111.773284][ T6705]  kmem_cache_alloc_lru_noprof+0x75/0x390
[  111.773312][ T6705]  __d_alloc+0x31/0x740
[  111.773333][ T6705]  d_alloc+0x4b/0x190
[  111.773359][ T6705]  lookup_one_qstr_excl+0xd7/0x2b0
[  111.773386][ T6705]  filename_create+0x297/0x540
[  111.773401][ T6705]  ? irqentry_exit+0x63/0x90
[  111.773426][ T6705]  ? __pfx_filename_create+0x10/0x10
[  111.773457][ T6705]  do_mkdirat+0xbd/0x3a0
[  111.773478][ T6705]  ? __pfx_do_mkdirat+0x10/0x10
[  111.773506][ T6705]  ? getname_flags+0x1e3/0x540
[  111.773530][ T6705]  __x64_sys_mkdirat+0x87/0xa0
[  111.773548][ T6705]  do_syscall_64+0xf3/0x230
[  111.773570][ T6705]  ? clear_bhb_loop+0x35/0x90
[  111.773594][ T6705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.773614][ T6705] RIP: 0033:0x7fa8d7d8d169
[  111.773629][ T6705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.773643][ T6705] RSP: 002b:00007fa8d8c7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  111.773662][ T6705] RAX: ffffffffffffffda RBX: 00007fa8d7fa5fa0 RCX: 00007fa8d7d8d169
[  111.773674][ T6705] RDX: 00000000000001c0 RSI: 0000400000000040 RDI: ffffffffffffff9c
[  111.773685][ T6705] RBP: 00007fa8d8c7a090 R08: 0000000000000000 R09: 0000000000000000
[  111.773696][ T6705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.773706][ T6705] R13: 0000000000000000 R14: 00007fa8d7fa5fa0 R15: 00007fa8d80cfa28
[  111.773732][ T6705]  </TASK>
[  111.776507][ T3802] usb 7-1: Using ep0 maxpacket: 16
[  112.018369][ T3802] usb 7-1: config index 0 descriptor too short (expected 69, got 36)
[  112.026943][ T3802] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.039568][ T3802] usb 7-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89
[  112.055236][ T3802] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.063774][ T3802] usb 7-1: Product: syz
[  112.080575][ T3802] usb 7-1: Manufacturer: syz
[  112.085220][ T3802] usb 7-1: SerialNumber: syz
[  112.143011][ T3802] usb 7-1: config 0 descriptor??
[  112.160709][ T3802] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622
[  112.168605][   T51] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  112.176728][ T5887] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  112.345628][ T5887] usb 2-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[  112.367113][   T51] usb 5-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  112.376261][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.380009][ T6721] program syz.5.170 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.387208][ T5887] usb 2-1: config 3 has 1 interface, different from the descriptor's value: 2
[  112.412107][   T51] usb 5-1: config 0 descriptor??
[  112.426692][ T5887] usb 2-1: config 3 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  112.449949][   T51] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  112.468100][   T51] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  112.489247][ T5887] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  112.500415][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.511303][ T5887] usb 2-1: Product: syz
[  112.515537][ T5887] usb 2-1: Manufacturer: syz
[  112.520965][ T5887] usb 2-1: SerialNumber: syz
[  112.543534][ T5887] cdc_ncm 2-1:3.0: invalid descriptor buffer length
[  112.559689][ T5887] cdc_ncm 2-1:3.0: CDC Union missing and no IAD found
[  112.569085][ T5887] cdc_ncm 2-1:3.0: bind() failure
[  112.743044][ T5887] usb 2-1: USB disconnect, device number 11
[  112.894250][ T1171] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.967575][ T5903] usb 5-1: USB disconnect, device number 18
[  113.049260][ T3802] gspca_pac7302: reg_w() failed i: 78 v: 40 error -71
[  113.062929][ T3802] gspca_pac7302 7-1:0.0: probe with driver gspca_pac7302 failed with error -71
[  113.092876][ T3802] usb 7-1: USB disconnect, device number 6
[  113.148628][ T1171] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.291026][ T1171] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.414559][ T6744] FAULT_INJECTION: forcing a failure.
[  113.414559][ T6744] name failslab, interval 1, probability 0, space 0, times 0
[  113.453631][ T1171] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.457128][ T6744] CPU: 1 UID: 0 PID: 6744 Comm: syz.1.175 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  113.457154][ T6744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.457164][ T6744] Call Trace:
[  113.457170][ T6744]  <TASK>
[  113.457177][ T6744]  dump_stack_lvl+0x241/0x360
[  113.457203][ T6744]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.457220][ T6744]  ? __pfx__printk+0x10/0x10
[  113.457238][ T6744]  ? kmem_cache_alloc_lru_noprof+0x4d/0x390
[  113.457260][ T6744]  ? __pfx___might_resched+0x10/0x10
[  113.457291][ T6744]  should_fail_ex+0x40a/0x550
[  113.457317][ T6744]  should_failslab+0xac/0x100
[  113.457338][ T6744]  ? proc_alloc_inode+0x2a/0xc0
[  113.457358][ T6744]  kmem_cache_alloc_lru_noprof+0x75/0x390
[  113.457383][ T6744]  proc_alloc_inode+0x2a/0xc0
[  113.457402][ T6744]  ? __pfx_proc_alloc_inode+0x10/0x10
[  113.457421][ T6744]  alloc_inode+0x65/0x1a0
[  113.457445][ T6744]  new_inode+0x22/0x1d0
[  113.457467][ T6744]  proc_pid_make_inode+0x1f/0x130
[  113.457485][ T6744]  proc_map_files_instantiate+0x95/0x190
[  113.457508][ T6744]  proc_fill_cache+0x316/0x420
[  113.457527][ T6744]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[  113.457548][ T6744]  ? __pfx_proc_fill_cache+0x10/0x10
[  113.457562][ T6744]  ? snprintf+0xda/0x120
[  113.457579][ T6744]  ? __pfx___might_resched+0x10/0x10
[  113.457606][ T6744]  ? mas_find+0x950/0xbb0
[  113.457631][ T6744]  proc_map_files_readdir+0x843/0xab0
[  113.457658][ T6744]  ? down_read_killable+0xaaa/0xd30
[  113.457682][ T6744]  ? __pfx_proc_map_files_readdir+0x10/0x10
[  113.457704][ T6744]  ? __fget_files+0x2a/0x410
[  113.457729][ T6744]  ? __pfx___mutex_lock+0x10/0x10
[  113.457754][ T6744]  ? common_file_perm+0x1a6/0x210
[  113.457784][ T6744]  iterate_dir+0x5a9/0x760
[  113.457807][ T6744]  __se_sys_getdents64+0x1e2/0x4b0
[  113.457832][ T6744]  ? __pfx___se_sys_getdents64+0x10/0x10
[  113.457848][ T6744]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  113.457868][ T6744]  ? __pfx_filldir64+0x10/0x10
[  113.457886][ T6744]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  113.457909][ T6744]  ? do_syscall_64+0x100/0x230
[  113.457932][ T6744]  ? do_syscall_64+0xb6/0x230
[  113.457957][ T6744]  do_syscall_64+0xf3/0x230
[  113.457978][ T6744]  ? clear_bhb_loop+0x35/0x90
[  113.458001][ T6744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.458019][ T6744] RIP: 0033:0x7f315ff8d169
[  113.458033][ T6744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.458046][ T6744] RSP: 002b:00007f3160d06038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  113.458063][ T6744] RAX: ffffffffffffffda RBX: 00007f31601a5fa0 RCX: 00007f315ff8d169
[  113.458074][ T6744] RDX: 0000000000001000 RSI: 0000400000000f80 RDI: 0000000000000004
[  113.458085][ T6744] RBP: 00007f3160d06090 R08: 0000000000000000 R09: 0000000000000000
[  113.458094][ T6744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.458104][ T6744] R13: 0000000000000000 R14: 00007f31601a5fa0 R15: 00007f31602cfa28
[  113.458128][ T6744]  </TASK>
[  113.928885][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  113.945736][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  113.978529][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  114.010116][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  114.017951][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  114.025289][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  114.374278][ T6763] netlink: 88 bytes leftover after parsing attributes in process `syz.4.180'.
[  114.409605][ T1171] bridge_slave_1: left allmulticast mode
[  114.415303][ T1171] bridge_slave_1: left promiscuous mode
[  114.423073][ T1171] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.444318][ T1171] bridge_slave_0: left allmulticast mode
[  114.456729][ T5903] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  114.456987][ T1171] bridge_slave_0: left promiscuous mode
[  114.484979][ T1171] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.620241][ T5903] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.657069][ T5903] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0014, bcdDevice= 0.00
[  114.675331][ T5903] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.711018][ T5903] usb 6-1: config 0 descriptor??
[  115.094026][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  115.105834][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  115.117924][ T1171] bond0 (unregistering): Released all slaves
[  115.144485][ T5903] cmedia_hs100b 0003:0D8C:0014.0004: hidraw0: USB HID v0.00 Device [HID 0d8c:0014] on usb-dummy_hcd.5-1/input0
[  115.617690][ T6750] chnl_net:caif_netlink_parms(): no params data found
[  115.704408][ T1171] hsr_slave_0: left promiscuous mode
[  115.711672][ T1171] hsr_slave_1: left promiscuous mode
[  115.724884][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.744925][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.785144][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.814996][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  115.889199][ T1171] veth1_macvtap: left promiscuous mode
[  115.894780][ T1171] veth0_macvtap: left promiscuous mode
[  115.931305][ T1171] veth1_vlan: left promiscuous mode
[  115.950979][ T1171] veth0_vlan: left promiscuous mode
[  116.047564][ T6805] loop4: detected capacity change from 0 to 7
[  116.066585][   T54] Bluetooth: hci1: command tx timeout
[  116.075946][ T6805] Dev loop4: unable to read RDB block 7
[  116.126785][ T5886] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  116.144993][ T6805]  loop4: unable to read partition table
[  116.195867][ T6805] loop4: partition table beyond EOD, truncated
[  116.235520][ T6805] loop_reread_partitions: partition scan of loop4 (�被x������ ) failed (rc=-5)
[  116.300853][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  116.314993][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  116.326775][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  116.338409][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  116.346771][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.360414][ T5837] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  116.367779][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  116.377254][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.418389][ T5886] usb 7-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  116.428662][ T5886] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.438843][ T5886] usb 7-1: config 0 descriptor??
[  116.866153][ T5886] playstation 0003:054C:0DF2.0005: unknown main item tag 0x0
[  116.881748][ T5886] playstation 0003:054C:0DF2.0005: unknown main item tag 0x0
[  116.897117][ T5886] playstation 0003:054C:0DF2.0005: unknown main item tag 0x0
[  116.921191][ T5886] playstation 0003:054C:0DF2.0005: unknown main item tag 0x0
[  116.946577][ T5886] playstation 0003:054C:0DF2.0005: unknown main item tag 0x0
[  116.997180][ T5886] playstation 0003:054C:0DF2.0005: hidraw1: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.6-1/input0
[  117.155518][ T1171] team0 (unregistering): Port device team_slave_1 removed
[  117.182680][ T5887] usb 6-1: USB disconnect, device number 11
[  117.293049][ T1171] team0 (unregistering): Port device team_slave_0 removed
[  117.759653][ T5886] playstation 0003:054C:0DF2.0005: Failed to retrieve feature with reportID 9: -71
[  117.760501][ T6802] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  117.771472][ T5886] playstation 0003:054C:0DF2.0005: Failed to retrieve DualSense pairing info: -71
[  117.789168][ T5886] playstation 0003:054C:0DF2.0005: Failed to get MAC address from DualSense
[  117.804501][ T5886] playstation 0003:054C:0DF2.0005: Failed to create dualsense.
[  117.822046][ T5886] playstation 0003:054C:0DF2.0005: probe with driver playstation failed with error -71
[  117.838927][ T5886] usb 7-1: USB disconnect, device number 7
[  118.066259][ T6750] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.081783][ T6750] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.090586][ T6750] bridge_slave_0: entered allmulticast mode
[  118.107633][ T6750] bridge_slave_0: entered promiscuous mode
[  118.144897][ T6750] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.154606][ T5837] Bluetooth: hci1: command tx timeout
[  118.175838][ T6832] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  118.178697][ T6750] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.199797][ T6750] bridge_slave_1: entered allmulticast mode
[  118.207026][ T6750] bridge_slave_1: entered promiscuous mode
[  118.244960][ T6835] netlink: 40 bytes leftover after parsing attributes in process `syz.5.193'.
[  118.350115][ T6750] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.399100][ T6750] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.470153][ T5837] Bluetooth: hci2: command tx timeout
[  118.555633][ T6750] team0: Port device team_slave_0 added
[  118.611527][ T6750] team0: Port device team_slave_1 added
[  118.752855][ T1171] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.806022][ T6750] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.813623][ T6750] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.846631][ T6750] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  118.864446][ T6814] chnl_net:caif_netlink_parms(): no params data found
[  118.920452][ T6750] batman_adv: batadv0: Adding interface: batadv_slave_1
[  118.937605][ T6750] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.973258][ T6750] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.001849][ T1171] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.165657][ T1171] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.198335][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.218115][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.235224][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.243973][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.272721][ T6750] hsr_slave_0: entered promiscuous mode
[  119.273015][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.289140][ T6750] hsr_slave_1: entered promiscuous mode
[  119.294626][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.300892][ T6750] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.313796][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.322527][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.327823][ T6750] Cannot create hsr debugfs directory
[  119.396052][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.438624][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.467178][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.469160][ T1171] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.476016][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.504398][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.533782][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.548718][ T5887] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  119.573570][ T5887] hid-generic 0000:0003:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  119.593092][ T6879] FAULT_INJECTION: forcing a failure.
[  119.593092][ T6879] name failslab, interval 1, probability 0, space 0, times 0
[  119.606240][ T6879] CPU: 0 UID: 0 PID: 6879 Comm: syz.5.203 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  119.606260][ T6879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.606271][ T6879] Call Trace:
[  119.606276][ T6879]  <TASK>
[  119.606283][ T6879]  dump_stack_lvl+0x241/0x360
[  119.606307][ T6879]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.606323][ T6879]  ? __pfx__printk+0x10/0x10
[  119.606350][ T6879]  should_fail_ex+0x40a/0x550
[  119.606375][ T6879]  should_failslab+0xac/0x100
[  119.606394][ T6879]  __kmalloc_noprof+0xdd/0x4c0
[  119.606416][ T6879]  ? __kmalloc_cache_noprof+0x243/0x390
[  119.606433][ T6879]  ? nsim_fib_event_nb+0x287/0x10b0
[  119.606460][ T6879]  nsim_fib_event_nb+0x287/0x10b0
[  119.606489][ T6879]  notifier_call_chain+0x1a5/0x3f0
[  119.606514][ T6879]  ? atomic_notifier_call_chain+0x26/0x180
[  119.606535][ T6879]  atomic_notifier_call_chain+0xdb/0x180
[  119.606558][ T6879]  call_fib_notifiers+0x31/0x60
[  119.606577][ T6879]  fib6_add+0x1bd5/0x4420
[  119.606616][ T6879]  ? __pfx_lock_acquire+0x10/0x10
[  119.606638][ T6879]  ? __pfx_fib6_add+0x10/0x10
[  119.606659][ T6879]  ? do_raw_spin_lock+0x14f/0x370
[  119.606687][ T6879]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  119.606709][ T6879]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  119.606733][ T6879]  ? ip6_route_add+0x76/0x160
[  119.606759][ T6879]  ip6_route_add+0x8b/0x160
[  119.606784][ T6879]  ipv6_route_ioctl+0x588/0x870
[  119.606812][ T6879]  ? __pfx_ipv6_route_ioctl+0x10/0x10
[  119.606855][ T6879]  ? __might_fault+0xaa/0x120
[  119.606879][ T6879]  inet6_ioctl+0x21a/0x280
[  119.606901][ T6879]  ? __pfx_inet6_ioctl+0x10/0x10
[  119.606940][ T6879]  sock_do_ioctl+0x158/0x460
[  119.606965][ T6879]  ? __pfx_sock_do_ioctl+0x10/0x10
[  119.607003][ T6879]  sock_ioctl+0x626/0x8e0
[  119.607023][ T6879]  ? __pfx_sock_ioctl+0x10/0x10
[  119.607040][ T6879]  ? __fget_files+0x2a/0x410
[  119.607065][ T6879]  ? __fget_files+0x2a/0x410
[  119.607090][ T6879]  ? __pfx_sock_ioctl+0x10/0x10
[  119.607109][ T6879]  __se_sys_ioctl+0xf5/0x170
[  119.607129][ T6879]  do_syscall_64+0xf3/0x230
[  119.607151][ T6879]  ? clear_bhb_loop+0x35/0x90
[  119.607175][ T6879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.607195][ T6879] RIP: 0033:0x7f98dcd8d169
[  119.607210][ T6879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.607224][ T6879] RSP: 002b:00007f98ddb55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  119.607242][ T6879] RAX: ffffffffffffffda RBX: 00007f98dcfa5fa0 RCX: 00007f98dcd8d169
[  119.607254][ T6879] RDX: 0000400000000540 RSI: 000000000000890b RDI: 0000000000000006
[  119.607265][ T6879] RBP: 00007f98ddb55090 R08: 0000000000000000 R09: 0000000000000000
[  119.607276][ T6879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.607286][ T6879] R13: 0000000000000000 R14: 00007f98dcfa5fa0 R15: 00007f98dd0cfa28
[  119.607313][ T6879]  </TASK>
[  119.890969][    C0] vkms_vblank_simulate: vblank timer overrun
[  119.960072][ T6814] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.967335][ T6814] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.974609][ T6814] bridge_slave_0: entered allmulticast mode
[  119.983512][ T6814] bridge_slave_0: entered promiscuous mode
[  119.992784][ T6814] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.001125][ T6814] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.008421][ T6814] bridge_slave_1: entered allmulticast mode
[  120.015682][ T6814] bridge_slave_1: entered promiscuous mode
[  120.091167][ T6882] FAULT_INJECTION: forcing a failure.
[  120.091167][ T6882] name failslab, interval 1, probability 0, space 0, times 0
[  120.140503][ T6882] CPU: 0 UID: 0 PID: 6882 Comm: syz.4.204 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  120.140529][ T6882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  120.140540][ T6882] Call Trace:
[  120.140545][ T6882]  <TASK>
[  120.140552][ T6882]  dump_stack_lvl+0x241/0x360
[  120.140581][ T6882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.140597][ T6882]  ? __pfx__printk+0x10/0x10
[  120.140614][ T6882]  ? kmem_cache_alloc_noprof+0x48/0x380
[  120.140633][ T6882]  ? __pfx___might_resched+0x10/0x10
[  120.140656][ T6882]  should_fail_ex+0x40a/0x550
[  120.140680][ T6882]  should_failslab+0xac/0x100
[  120.140699][ T6882]  ? alloc_pid+0xa2/0xa90
[  120.140716][ T6882]  kmem_cache_alloc_noprof+0x70/0x380
[  120.140732][ T6882]  ? copy_thread+0x4b4/0x980
[  120.140754][ T6882]  alloc_pid+0xa2/0xa90
[  120.140770][ T6882]  ? copy_thread+0x72d/0x980
[  120.140794][ T6882]  copy_process+0x1c43/0x3cf0
[  120.140826][ T6882]  ? copy_process+0x9fa/0x3cf0
[  120.140849][ T6882]  ? __pfx_copy_process+0x10/0x10
[  120.140870][ T6882]  ? __raw_spin_lock_init+0x45/0x100
[  120.140894][ T6882]  vhost_task_create+0x24a/0x320
[  120.140916][ T6882]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  120.140936][ T6882]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  120.140957][ T6882]  ? __pfx_vhost_task_create+0x10/0x10
[  120.140985][ T6882]  ? __pfx_vhost_task_fn+0x10/0x10
[  120.141012][ T6882]  ? look_up_lock_class+0x77/0x170
[  120.141034][ T6882]  ? register_lock_class+0x102/0x980
[  120.141057][ T6882]  kvm_mmu_post_init_vm+0x180/0x2e0
[  120.141081][ T6882]  kvm_arch_vcpu_ioctl_run+0xea/0x1940
[  120.141099][ T6882]  ? mark_lock+0x9a/0x360
[  120.141115][ T6882]  ? __lock_acquire+0x1397/0x2100
[  120.141135][ T6882]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  120.141174][ T6882]  ? __pfx_lock_acquire+0x10/0x10
[  120.141196][ T6882]  ? kvm_vcpu_ioctl+0xeaf/0x1020
[  120.141212][ T6882]  ? __pfx_lock_release+0x10/0x10
[  120.141231][ T6882]  ? do_raw_write_lock+0x148/0x4f0
[  120.141256][ T6882]  ? __pfx_do_raw_write_lock+0x10/0x10
[  120.141283][ T6882]  kvm_vcpu_ioctl+0x996/0x1020
[  120.141304][ T6882]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  120.141338][ T6882]  ? __fget_files+0x2a/0x410
[  120.141362][ T6882]  ? __fget_files+0x2a/0x410
[  120.141386][ T6882]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  120.141419][ T6882]  __se_sys_ioctl+0xf5/0x170
[  120.141438][ T6882]  do_syscall_64+0xf3/0x230
[  120.141459][ T6882]  ? clear_bhb_loop+0x35/0x90
[  120.141483][ T6882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.141503][ T6882] RIP: 0033:0x7f98c818d169
[  120.141519][ T6882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.141533][ T6882] RSP: 002b:00007f98c5ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  120.141550][ T6882] RAX: ffffffffffffffda RBX: 00007f98c83a5fa0 RCX: 00007f98c818d169
[  120.141561][ T6882] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  120.141571][ T6882] RBP: 00007f98c5ff6090 R08: 0000000000000000 R09: 0000000000000000
[  120.141581][ T6882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.141590][ T6882] R13: 0000000000000000 R14: 00007f98c83a5fa0 R15: 00007f98c84cfa28
[  120.141614][ T6882]  </TASK>
[  120.460805][    C0] vkms_vblank_simulate: vblank timer overrun
[  120.480453][ T5837] Bluetooth: hci1: command tx timeout
[  120.525914][ T6814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  120.551633][   T54] Bluetooth: hci2: command tx timeout
[  120.659605][ T6814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  120.901188][ T6814] team0: Port device team_slave_0 added
[  121.037233][ T6814] team0: Port device team_slave_1 added
[  121.058982][ T1171] bridge_slave_1: left allmulticast mode
[  121.071592][ T1171] bridge_slave_1: left promiscuous mode
[  121.078923][ T1171] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.098524][ T1171] bridge_slave_0: left allmulticast mode
[  121.114421][ T1171] bridge_slave_0: left promiscuous mode
[  121.123394][ T1171] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.221154][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.230244][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.248263][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.265809][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.275476][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.301042][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.336166][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.343984][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.385435][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.399935][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.409530][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.440417][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.450042][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.458126][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.493286][ T5888] hid-generic 0000:0003:0000.0007: unknown main item tag 0x0
[  121.532797][ T5888] hid-generic 0000:0003:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  121.927905][    T9] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  122.034024][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.046193][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.056213][ T1171] bond0 (unregistering): Released all slaves
[  122.095568][    T9] usb 5-1: device descriptor read/64, error -71
[  122.158878][ T6814] batman_adv: batadv0: Adding interface: batadv_slave_0
[  122.168710][ T6814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.194616][    C0] vkms_vblank_simulate: vblank timer overrun
[  122.208902][ T6814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  122.267988][ T6814] batman_adv: batadv0: Adding interface: batadv_slave_1
[  122.275104][ T6814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.314751][ T6814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  122.367549][    T9] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  122.441906][ T6814] hsr_slave_0: entered promiscuous mode
[  122.450375][ T6814] hsr_slave_1: entered promiscuous mode
[  122.463992][ T6814] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  122.472171][ T6814] Cannot create hsr debugfs directory
[  122.487530][ T5886] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  122.518306][    T9] usb 5-1: device descriptor read/64, error -71
[  122.556958][   T54] Bluetooth: hci1: command tx timeout
[  122.563469][ T1171] hsr_slave_0: left promiscuous mode
[  122.585491][ T1171] hsr_slave_1: left promiscuous mode
[  122.597810][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.605466][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.623244][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.631020][   T54] Bluetooth: hci2: command tx timeout
[  122.638797][    T9] usb usb5-port1: attempt power cycle
[  122.654581][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.664925][ T5886] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  122.677407][ T5886] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  122.688635][ T5886] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  122.709219][ T1171] veth1_macvtap: left promiscuous mode
[  122.714855][ T5886] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  122.726506][ T1171] veth0_macvtap: left promiscuous mode
[  122.733258][ T1171] veth1_vlan: left promiscuous mode
[  122.739134][ T5886] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  122.750746][ T1171] veth0_vlan: left promiscuous mode
[  122.766782][ T5886] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  122.775866][ T5886] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  122.797177][ T5886] usb 6-1: Product: syz
[  122.801389][ T5886] usb 6-1: Manufacturer: syz
[  122.828937][ T5886] cdc_wdm 6-1:1.0: skipping garbage
[  122.834202][ T5886] cdc_wdm 6-1:1.0: skipping garbage
[  122.854056][ T5886] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  122.876318][ T5886] cdc_wdm 6-1:1.0: Unknown control protocol
[  123.008361][    T9] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  123.047324][    T9] usb 5-1: device descriptor read/8, error -71
[  123.050802][ T5888] usb 6-1: USB disconnect, device number 12
[  123.053827][    C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  123.066300][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  123.072414][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  123.081471][    C0] vkms_vblank_simulate: vblank timer overrun
[  123.336800][    T9] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  123.370244][    T9] usb 5-1: device descriptor read/8, error -71
[  123.496888][    T9] usb usb5-port1: unable to enumerate USB device
[  123.508860][ T1171] team0 (unregistering): Port device team_slave_1 removed
[  123.575839][ T1171] team0 (unregistering): Port device team_slave_0 removed
[  124.160236][ T6750] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  124.219390][ T6750] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  124.240271][ T6750] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  124.280747][ T6750] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  124.677909][ T6814] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  124.707106][   T54] Bluetooth: hci2: command tx timeout
[  124.744571][ T6814] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  124.811990][ T6750] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.831931][ T6814] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  124.894074][ T6814] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  124.985811][ T6750] 8021q: adding VLAN 0 to HW filter on device team0
[  125.017856][ T1336] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.025085][ T1336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.106243][ T1336] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.113451][ T1336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.273128][ T6750] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  125.298932][ T6750] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  125.434995][ T6750] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.465838][ T6814] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.495057][ T6814] 8021q: adding VLAN 0 to HW filter on device team0
[  125.550917][ T1336] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.558102][ T1336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.594583][ T1336] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.601784][ T1336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.729402][ T6750] veth0_vlan: entered promiscuous mode
[  125.803460][ T6750] veth1_vlan: entered promiscuous mode
[  125.890684][ T6814] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.020124][ T6750] veth0_macvtap: entered promiscuous mode
[  126.069291][ T6750] veth1_macvtap: entered promiscuous mode
[  126.116141][ T6814] veth0_vlan: entered promiscuous mode
[  126.170100][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.216594][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.244684][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.274298][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.296503][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.319649][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.350540][ T6750] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.449114][ T6814] veth1_vlan: entered promiscuous mode
[  126.479787][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.501201][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.514473][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.536335][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.554198][ T6750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.565222][ T6750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.583555][ T6750] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.618706][ T6750] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.631352][ T6750] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.642544][ T6750] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.652704][ T6750] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.670328][ T6814] veth0_macvtap: entered promiscuous mode
[  126.689865][ T6814] veth1_macvtap: entered promiscuous mode
[  126.708861][    T9] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  126.776883][ T5886] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  126.811782][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.830461][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.847003][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.857873][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.869890][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.880813][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.891280][    T9] usb 5-1: Using ep0 maxpacket: 16
[  126.897475][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.910500][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.921803][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.933059][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  126.944837][ T6814] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.953409][ T5886] usb 7-1: Using ep0 maxpacket: 16
[  126.960013][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  126.987244][ T5886] usb 7-1: config 0 has no interfaces?
[  127.008872][ T5886] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  127.022765][    T9] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  127.033042][ T7041] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  127.034065][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.054930][ T5886] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  127.056127][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.074882][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.084861][ T5886] usb 7-1: Product: syz
[  127.089386][ T5886] usb 7-1: SerialNumber: syz
[  127.089881][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.096878][    T9] usb 5-1: config 0 descriptor??
[  127.113088][ T5886] usb 7-1: config 0 descriptor??
[  127.115468][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.128270][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.139438][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.149467][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.160241][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.171714][ T6814] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.209685][ T6814] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.233457][ T6814] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.242951][ T6814] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.252717][ T6814] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.344059][   T25] usb 7-1: USB disconnect, device number 8
[  127.344425][ T1324] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.364482][ T1324] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.444380][ T2982] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.455417][ T2982] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.569761][ T2982] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.588365][ T2982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.643088][    T9] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0008/input/input8
[  127.691726][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.705240][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.724349][    T9] microsoft 0003:045E:07DA.0008: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  127.893380][ T7030] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.945746][ T7030] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.985149][ T7061] FAULT_INJECTION: forcing a failure.
[  127.985149][ T7061] name failslab, interval 1, probability 0, space 0, times 0
[  127.999076][ T7061] CPU: 0 UID: 0 PID: 7061 Comm: syz.8.250 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  127.999097][ T7061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  127.999107][ T7061] Call Trace:
[  127.999112][ T7061]  <TASK>
[  127.999119][ T7061]  dump_stack_lvl+0x241/0x360
[  127.999145][ T7061]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.999162][ T7061]  ? __pfx__printk+0x10/0x10
[  127.999186][ T7061]  should_fail_ex+0x40a/0x550
[  127.999212][ T7061]  should_failslab+0xac/0x100
[  127.999233][ T7061]  ? skb_clone+0x20c/0x390
[  127.999247][ T7061]  kmem_cache_alloc_noprof+0x70/0x380
[  127.999272][ T7061]  skb_clone+0x20c/0x390
[  127.999286][ T7061]  ? dev_queue_xmit_nit+0x3fe/0xca0
[  127.999309][ T7061]  dev_queue_xmit_nit+0x249/0xca0
[  127.999333][ T7061]  ? dev_queue_xmit_nit+0x2b/0xca0
[  127.999355][ T7061]  ? validate_xmit_skb+0x9b8/0xff0
[  127.999382][ T7061]  dev_hard_start_xmit+0x15f/0x7d0
[  127.999405][ T7061]  ? __pfx_validate_xmit_skb+0x10/0x10
[  127.999438][ T7061]  __dev_queue_xmit+0x1b73/0x3f50
[  127.999453][ T7061]  ? kasan_save_track+0x51/0x80
[  127.999476][ T7061]  ? ____sys_sendmsg+0x53a/0x860
[  127.999505][ T7061]  ? __dev_queue_xmit+0x2f4/0x3f50
[  127.999525][ T7061]  ? __pfx___dev_queue_xmit+0x10/0x10
[  127.999557][ T7061]  ? __copy_skb_header+0xa7/0x5a0
[  127.999575][ T7061]  ? __asan_memcpy+0x40/0x70
[  127.999590][ T7061]  ? __skb_clone+0x5c/0x6c0
[  127.999610][ T7061]  ? __skb_clone+0x454/0x6c0
[  127.999634][ T7061]  ? skb_clone+0x240/0x390
[  127.999654][ T7061]  __netlink_deliver_tap+0x561/0x7f0
[  127.999690][ T7061]  ? netlink_deliver_tap+0x2e/0x1b0
[  127.999706][ T7061]  netlink_deliver_tap+0x19d/0x1b0
[  127.999725][ T7061]  netlink_unicast+0x7c4/0x990
[  127.999757][ T7061]  ? __pfx_netlink_unicast+0x10/0x10
[  127.999778][ T7061]  ? __virt_addr_valid+0x45f/0x530
[  127.999794][ T7061]  ? __phys_addr_symbol+0x2f/0x70
[  127.999817][ T7061]  ? __check_object_size+0x47a/0x730
[  127.999842][ T7061]  netlink_sendmsg+0x8de/0xcb0
[  127.999871][ T7061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.999893][ T7061]  ? aa_sock_msg_perm+0x91/0x160
[  127.999920][ T7061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.999935][ T7061]  __sock_sendmsg+0x221/0x270
[  127.999957][ T7061]  ____sys_sendmsg+0x53a/0x860
[  127.999989][ T7061]  ? __pfx_____sys_sendmsg+0x10/0x10
[  128.000010][ T7061]  ? __fget_files+0x2a/0x410
[  128.000034][ T7061]  ? __fget_files+0x2a/0x410
[  128.000063][ T7061]  __sys_sendmsg+0x269/0x350
[  128.000092][ T7061]  ? __pfx___sys_sendmsg+0x10/0x10
[  128.000129][ T7061]  ? do_sys_openat2+0x17a/0x1d0
[  128.000192][ T7061]  do_syscall_64+0xf3/0x230
[  128.000214][ T7061]  ? clear_bhb_loop+0x35/0x90
[  128.000238][ T7061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.000258][ T7061] RIP: 0033:0x7f3b88d8d169
[  128.000274][ T7061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.000287][ T7061] RSP: 002b:00007f3b89b0d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  128.000306][ T7061] RAX: ffffffffffffffda RBX: 00007f3b88fa5fa0 RCX: 00007f3b88d8d169
[  128.000318][ T7061] RDX: 0000000024014040 RSI: 0000400000000540 RDI: 0000000000000003
[  128.000329][ T7061] RBP: 00007f3b89b0d090 R08: 0000000000000000 R09: 0000000000000000
[  128.000339][ T7061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.000349][ T7061] R13: 0000000000000000 R14: 00007f3b88fa5fa0 R15: 00007f3b890cfa28
[  128.000375][ T7061]  </TASK>
[  128.341965][   T25] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  128.499724][   T25] usb 6-1: Using ep0 maxpacket: 8
[  128.508165][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  128.561683][ T3802] usb 5-1: USB disconnect, device number 23
[  128.579894][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  128.659038][   T25] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  128.763930][ T7073] IPVS: set_ctl: invalid protocol: 98 172.20.20.48:20001
[  128.836764][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  128.893980][   T25] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  128.992922][   T25] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  129.039470][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.112377][ T7087] FAULT_INJECTION: forcing a failure.
[  129.112377][ T7087] name failslab, interval 1, probability 0, space 0, times 0
[  129.147512][   T25] usb 6-1: config 0 descriptor??
[  129.170928][ T7087] CPU: 0 UID: 0 PID: 7087 Comm: syz.6.256 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  129.170953][ T7087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.170964][ T7087] Call Trace:
[  129.170970][ T7087]  <TASK>
[  129.170977][ T7087]  dump_stack_lvl+0x241/0x360
[  129.171003][ T7087]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.171020][ T7087]  ? __pfx__printk+0x10/0x10
[  129.171038][ T7087]  ? kmem_cache_alloc_noprof+0x48/0x380
[  129.171060][ T7087]  ? __pfx___might_resched+0x10/0x10
[  129.171086][ T7087]  should_fail_ex+0x40a/0x550
[  129.171113][ T7087]  should_failslab+0xac/0x100
[  129.171134][ T7087]  ? key_alloc+0x341/0xff0
[  129.171154][ T7087]  kmem_cache_alloc_noprof+0x70/0x380
[  129.171174][ T7087]  ? key_user_lookup+0x1b2/0x450
[  129.171199][ T7087]  key_alloc+0x341/0xff0
[  129.171228][ T7087]  keyring_alloc+0x44/0xb0
[  129.171248][ T7087]  look_up_user_keyrings+0x22a/0x640
[  129.171274][ T7087]  ? __pfx_look_up_user_keyrings+0x10/0x10
[  129.171301][ T7087]  ? lookup_user_key+0xba/0x1500
[  129.171327][ T7087]  lookup_user_key+0x3ca/0x1500
[  129.171355][ T7087]  ? __pfx_lookup_user_key+0x10/0x10
[  129.171380][ T7087]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  129.171413][ T7087]  ? __might_fault+0xaa/0x120
[  129.171436][ T7087]  __se_sys_add_key+0x2fa/0x490
[  129.171457][ T7087]  ? __pfx___se_sys_add_key+0x10/0x10
[  129.171478][ T7087]  ? __secure_computing+0x125/0x370
[  129.171507][ T7087]  ? __x64_sys_add_key+0x20/0xc0
[  129.171528][ T7087]  do_syscall_64+0xf3/0x230
[  129.171550][ T7087]  ? clear_bhb_loop+0x35/0x90
[  129.171574][ T7087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.171595][ T7087] RIP: 0033:0x7ff6f7f8d169
[  129.171609][ T7087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.171624][ T7087] RSP: 002b:00007ff6f8e47038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  129.171642][ T7087] RAX: ffffffffffffffda RBX: 00007ff6f81a5fa0 RCX: 00007ff6f7f8d169
[  129.171654][ T7087] RDX: 00004000000000c0 RSI: 0000400000000440 RDI: 00004000000003c0
[  129.171665][ T7087] RBP: 00007ff6f8e47090 R08: fffffffffffffffd R09: 0000000000000000
[  129.171676][ T7087] R10: 00000000000000c9 R11: 0000000000000246 R12: 0000000000000001
[  129.171686][ T7087] R13: 0000000000000000 R14: 00007ff6f81a5fa0 R15: 00007ff6f82cfa28
[  129.171712][ T7087]  </TASK>
[  129.203315][ T7052] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  129.452071][ T7093] program syz.6.259 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.593606][   T29] audit: type=1326 audit(1740719076.925:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  129.655315][ T7090] xt_CT: No such helper "pptp"
[  129.700893][   T29] audit: type=1326 audit(1740719077.035:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  129.787777][ T5837] Bluetooth: hci5: Received unexpected HCI Event 0x00
[  129.795029][ T5837] Bluetooth: hci5: Received unexpected HCI Event 0x00
[  129.803080][ T5837] Bluetooth: hci5: Received unexpected HCI Event 0x00
[  129.810293][ T5837] Bluetooth: hci5: Received unexpected HCI Event 0x00
[  129.817745][ T5837] Bluetooth: hci5: Received unexpected HCI Event 0x00
[  129.828126][   T29] audit: type=1326 audit(1740719077.035:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  129.855150][   T29] audit: type=1326 audit(1740719077.035:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  129.881221][   T29] audit: type=1326 audit(1740719077.105:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b88d8bad0 code=0x7ffc0000
[  129.904224][   T29] audit: type=1326 audit(1740719077.105:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8cd6b code=0x7ffc0000
[  129.935922][   T29] audit: type=1326 audit(1740719077.105:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8cd6b code=0x7ffc0000
[  129.968428][   T29] audit: type=1326 audit(1740719077.105:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8cd6b code=0x7ffc0000
[  130.026658][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  130.060698][   T25] usb 6-1: USB disconnect, device number 13
[  130.065689][   T54] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  130.083380][   T29] audit: type=1326 audit(1740719077.105:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8cd6b code=0x7ffc0000
[  130.110150][   T29] audit: type=1326 audit(1740719077.215:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.8.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8cd6b code=0x7ffc0000
[  130.226960][    T9] usb 9-1: Using ep0 maxpacket: 16
[  130.241989][    T9] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  130.258229][    T9] usb 9-1: config 0 has no interface number 0
[  130.281835][    T9] usb 9-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  130.306789][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.326112][    T9] usb 9-1: Product: syz
[  130.346358][    T9] usb 9-1: Manufacturer: syz
[  130.351234][    T9] usb 9-1: SerialNumber: syz
[  130.376133][    T9] usb 9-1: config 0 descriptor??
[  130.403881][    T9] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  130.987973][ T7137] FAULT_INJECTION: forcing a failure.
[  130.987973][ T7137] name failslab, interval 1, probability 0, space 0, times 0
[  131.057135][ T7137] CPU: 0 UID: 0 PID: 7137 Comm: syz.6.269 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  131.057163][ T7137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  131.057173][ T7137] Call Trace:
[  131.057180][ T7137]  <TASK>
[  131.057188][ T7137]  dump_stack_lvl+0x241/0x360
[  131.057214][ T7137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.057234][ T7137]  ? __pfx__printk+0x10/0x10
[  131.057248][ T7137]  ? kasan_save_track+0x51/0x80
[  131.057265][ T7137]  ? kmem_cache_free+0x195/0x410
[  131.057286][ T7137]  ? pfkey_sendmsg+0x492/0x1070
[  131.057304][ T7137]  ? __sock_sendmsg+0x221/0x270
[  131.057320][ T7137]  ? ____sys_sendmsg+0x53a/0x860
[  131.057341][ T7137]  ? do_syscall_64+0xf3/0x230
[  131.057359][ T7137]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.057384][ T7137]  should_fail_ex+0x40a/0x550
[  131.057410][ T7137]  should_failslab+0xac/0x100
[  131.057430][ T7137]  ? xfrm_state_alloc+0x26/0x320
[  131.057446][ T7137]  kmem_cache_alloc_noprof+0x70/0x380
[  131.057472][ T7137]  xfrm_state_alloc+0x26/0x320
[  131.057491][ T7137]  pfkey_add+0x6de/0x2e20
[  131.057514][ T7137]  ? kasan_quarantine_put+0xec/0x230
[  131.057537][ T7137]  ? __pfx_pfkey_add+0x10/0x10
[  131.057557][ T7137]  ? pfkey_broadcast+0x45/0x400
[  131.057579][ T7137]  ? pfkey_broadcast+0x3e3/0x400
[  131.057602][ T7137]  pfkey_sendmsg+0xbe3/0x1070
[  131.057634][ T7137]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  131.057671][ T7137]  ? __pfx_aa_sk_perm+0x10/0x10
[  131.057691][ T7137]  ? __import_iovec+0x582/0x830
[  131.057712][ T7137]  ? aa_sock_msg_perm+0x91/0x160
[  131.057739][ T7137]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  131.057756][ T7137]  __sock_sendmsg+0x221/0x270
[  131.057778][ T7137]  ____sys_sendmsg+0x53a/0x860
[  131.057810][ T7137]  ? __pfx_____sys_sendmsg+0x10/0x10
[  131.057830][ T7137]  ? __fget_files+0x2a/0x410
[  131.057855][ T7137]  ? __fget_files+0x2a/0x410
[  131.057884][ T7137]  __sys_sendmsg+0x269/0x350
[  131.057912][ T7137]  ? __pfx___sys_sendmsg+0x10/0x10
[  131.057947][ T7137]  ? do_sys_openat2+0x17a/0x1d0
[  131.057994][ T7137]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  131.058018][ T7137]  ? do_syscall_64+0x100/0x230
[  131.058042][ T7137]  ? do_syscall_64+0xb6/0x230
[  131.058064][ T7137]  do_syscall_64+0xf3/0x230
[  131.058085][ T7137]  ? clear_bhb_loop+0x35/0x90
[  131.058108][ T7137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.058128][ T7137] RIP: 0033:0x7ff6f7f8d169
[  131.058143][ T7137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.058157][ T7137] RSP: 002b:00007ff6f8e47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.058175][ T7137] RAX: ffffffffffffffda RBX: 00007ff6f81a5fa0 RCX: 00007ff6f7f8d169
[  131.058187][ T7137] RDX: 000000002400c094 RSI: 00004000000001c0 RDI: 0000000000000003
[  131.058199][ T7137] RBP: 00007ff6f8e47090 R08: 0000000000000000 R09: 0000000000000000
[  131.058209][ T7137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.058219][ T7137] R13: 0000000000000000 R14: 00007ff6f81a5fa0 R15: 00007ff6f82cfa28
[  131.058245][ T7137]  </TASK>
[  132.028093][ T7163] x_tables: duplicate underflow at hook 2
[  132.070897][    T9] gspca_spca1528: reg_w err -71
[  132.075874][    T9] spca1528 9-1:0.1: probe with driver spca1528 failed with error -71
[  132.110324][    T9] usb 9-1: USB disconnect, device number 2
[  132.268792][ T7171] netlink: 44 bytes leftover after parsing attributes in process `syz.9.277'.
[  132.602066][ T7186] netlink: 'syz.6.281': attribute type 3 has an invalid length.
[  132.761893][ T7196] FAULT_INJECTION: forcing a failure.
[  132.761893][ T7196] name failslab, interval 1, probability 0, space 0, times 0
[  132.792544][ T7196] CPU: 1 UID: 0 PID: 7196 Comm: syz.6.283 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  132.792571][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.792581][ T7196] Call Trace:
[  132.792587][ T7196]  <TASK>
[  132.792594][ T7196]  dump_stack_lvl+0x241/0x360
[  132.792618][ T7196]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.792635][ T7196]  ? __pfx__printk+0x10/0x10
[  132.792652][ T7196]  ? __kmalloc_noprof+0xb5/0x4c0
[  132.792672][ T7196]  ? __pfx___might_resched+0x10/0x10
[  132.792691][ T7196]  ? genl_get_cmd+0x19e/0xce0
[  132.792713][ T7196]  should_fail_ex+0x40a/0x550
[  132.792737][ T7196]  should_failslab+0xac/0x100
[  132.792757][ T7196]  __kmalloc_noprof+0xdd/0x4c0
[  132.792775][ T7196]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  132.792799][ T7196]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  132.792826][ T7196]  genl_rcv_msg+0x80b/0xec0
[  132.792852][ T7196]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.792897][ T7196]  ? __pfx_lock_acquire+0x10/0x10
[  132.792919][ T7196]  ? __pfx_tipc_nl_bearer_enable+0x10/0x10
[  132.792941][ T7196]  ? __pfx___might_resched+0x10/0x10
[  132.792970][ T7196]  netlink_rcv_skb+0x206/0x480
[  132.792988][ T7196]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.793009][ T7196]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  132.793036][ T7196]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  132.793067][ T7196]  genl_rcv+0x28/0x40
[  132.793085][ T7196]  netlink_unicast+0x7f6/0x990
[  132.793117][ T7196]  ? __pfx_netlink_unicast+0x10/0x10
[  132.793136][ T7196]  ? __virt_addr_valid+0x45f/0x530
[  132.793153][ T7196]  ? __phys_addr_symbol+0x2f/0x70
[  132.793174][ T7196]  ? __check_object_size+0x47a/0x730
[  132.793199][ T7196]  netlink_sendmsg+0x8de/0xcb0
[  132.793228][ T7196]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.793249][ T7196]  ? aa_sock_msg_perm+0x91/0x160
[  132.793277][ T7196]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.793292][ T7196]  __sock_sendmsg+0x221/0x270
[  132.793315][ T7196]  ____sys_sendmsg+0x53a/0x860
[  132.793346][ T7196]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.793367][ T7196]  ? __fget_files+0x2a/0x410
[  132.793401][ T7196]  ? __fget_files+0x2a/0x410
[  132.793431][ T7196]  __sys_sendmsg+0x269/0x350
[  132.793459][ T7196]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.793495][ T7196]  ? do_sys_openat2+0x17a/0x1d0
[  132.793542][ T7196]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  132.793566][ T7196]  ? do_syscall_64+0x100/0x230
[  132.793590][ T7196]  ? do_syscall_64+0xb6/0x230
[  132.793613][ T7196]  do_syscall_64+0xf3/0x230
[  132.793634][ T7196]  ? clear_bhb_loop+0x35/0x90
[  132.793658][ T7196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.793678][ T7196] RIP: 0033:0x7ff6f7f8d169
[  132.793693][ T7196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.793707][ T7196] RSP: 002b:00007ff6f8e47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.793725][ T7196] RAX: ffffffffffffffda RBX: 00007ff6f81a5fa0 RCX: 00007ff6f7f8d169
[  132.793737][ T7196] RDX: 0000000000000000 RSI: 00004000000001c0 RDI: 0000000000000003
[  132.793747][ T7196] RBP: 00007ff6f8e47090 R08: 0000000000000000 R09: 0000000000000000
[  132.793757][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.793766][ T7196] R13: 0000000000000000 R14: 00007ff6f81a5fa0 R15: 00007ff6f82cfa28
[  132.793793][ T7196]  </TASK>
[  133.201485][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  133.208226][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  133.736689][ T5911] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  133.996638][ T5911] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.022167][ T5911] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.058793][ T5911] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  134.107192][ T5911] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  134.116377][ T5911] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.270153][ T5911] usb 7-1: config 0 descriptor??
[  134.368379][ T7241] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.378866][ T7241] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.756612][ T3802] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  134.792062][ T5911] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  134.812013][ T5911] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  134.981164][ T3802] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  135.000883][ T3802] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.021190][ T3802] usb 10-1: Product: syz
[  135.037943][ T3802] usb 10-1: Manufacturer: syz
[  135.045209][ T7258] FAULT_INJECTION: forcing a failure.
[  135.045209][ T7258] name failslab, interval 1, probability 0, space 0, times 0
[  135.066671][ T3802] usb 10-1: SerialNumber: syz
[  135.084790][ T7258] CPU: 1 UID: 0 PID: 7258 Comm: syz.8.298 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  135.084819][ T7258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  135.084829][ T7258] Call Trace:
[  135.084835][ T7258]  <TASK>
[  135.084843][ T7258]  dump_stack_lvl+0x241/0x360
[  135.084868][ T7258]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.084886][ T7258]  ? __pfx__printk+0x10/0x10
[  135.084916][ T7258]  ? __kmalloc_noprof+0xb5/0x4c0
[  135.084937][ T7258]  ? __pfx___might_resched+0x10/0x10
[  135.084962][ T7258]  should_fail_ex+0x40a/0x550
[  135.084989][ T7258]  should_failslab+0xac/0x100
[  135.085011][ T7258]  __kmalloc_noprof+0xdd/0x4c0
[  135.085030][ T7258]  ? io_cache_alloc_new+0x44/0x100
[  135.085052][ T7258]  ? __asan_memset+0x23/0x50
[  135.085070][ T7258]  io_cache_alloc_new+0x44/0x100
[  135.085095][ T7258]  io_msg_alloc_async+0x217/0x390
[  135.085117][ T7258]  io_sendmsg_prep+0x301/0x9f0
[  135.085143][ T7258]  io_submit_sqes+0x94c/0x1d20
[  135.085189][ T7258]  __se_sys_io_uring_enter+0x2c8/0x3390
[  135.085217][ T7258]  ? ksys_write+0x22a/0x2b0
[  135.085234][ T7258]  ? __pfx_lock_release+0x10/0x10
[  135.085262][ T7258]  ? sb_end_write+0xe9/0x1c0
[  135.085283][ T7258]  ? vfs_write+0x7fa/0xd10
[  135.085302][ T7258]  ? __mutex_unlock_slowpath+0x227/0x800
[  135.085325][ T7258]  ? __pfx___se_sys_io_uring_enter+0x10/0x10
[  135.085344][ T7258]  ? do_sys_openat2+0x17a/0x1d0
[  135.085367][ T7258]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  135.085387][ T7258]  ? __fget_files+0x2a/0x410
[  135.085410][ T7258]  ? __fget_files+0x2a/0x410
[  135.085437][ T7258]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  135.085462][ T7258]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  135.085486][ T7258]  ? do_syscall_64+0x100/0x230
[  135.085507][ T7258]  ? __x64_sys_io_uring_enter+0x21/0xf0
[  135.085527][ T7258]  do_syscall_64+0xf3/0x230
[  135.085548][ T7258]  ? clear_bhb_loop+0x35/0x90
[  135.085571][ T7258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.085592][ T7258] RIP: 0033:0x7f3b88d8d169
[  135.085606][ T7258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.085619][ T7258] RSP: 002b:00007f3b89b0d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  135.085637][ T7258] RAX: ffffffffffffffda RBX: 00007f3b88fa5fa0 RCX: 00007f3b88d8d169
[  135.085649][ T7258] RDX: 0000000000000000 RSI: 0000000000007f5f RDI: 0000000000000003
[  135.085659][ T7258] RBP: 00007f3b89b0d090 R08: 0000000000000000 R09: 0000000000000000
[  135.085670][ T7258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.085679][ T7258] R13: 0000000000000000 R14: 00007f3b88fa5fa0 R15: 00007f3b890cfa28
[  135.085704][ T7258]  </TASK>
[  135.431299][ T3802] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  135.453858][ T7267] netlink: 80 bytes leftover after parsing attributes in process `syz.6.288'.
[  135.466246][ T7267] ip6_vti0: entered promiscuous mode
[  135.474822][ T5888] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  135.507354][ T7267] ip6_vti0: entered allmulticast mode
[  135.554083][ T7267] netlink: 80 bytes leftover after parsing attributes in process `syz.6.288'.
[  135.563186][    C0] vcan0: j1939_tp_rxtimer: 0xffff88803250cc00: rx timeout, send abort
[  135.565032][    C0] vcan0: j1939_tp_rxtimer: 0xffff88803250e000: rx timeout, send abort
[  135.574486][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88803250cc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  135.575968][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88803250e000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  136.105559][ T7284] netlink: 56 bytes leftover after parsing attributes in process `syz.8.304'.
[  136.115298][ T7284] netlink: 24 bytes leftover after parsing attributes in process `syz.8.304'.
[  136.193600][    T8] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  136.376619][    T8] usb 5-1: Using ep0 maxpacket: 16
[  136.378669][    T8] usb 5-1: unable to get BOS descriptor or descriptor too short
[  136.383225][    T8] usb 5-1: config 5 has an invalid interface number: 225 but max is 0
[  136.383254][    T8] usb 5-1: config 5 has no interface number 0
[  136.383270][    T8] usb 5-1: config 5 interface 225 has no altsetting 0
[  136.385011][    T8] usb 5-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice=89.94
[  136.385040][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.385059][    T8] usb 5-1: Product: syz
[  136.385073][    T8] usb 5-1: Manufacturer: syz
[  136.385087][    T8] usb 5-1: SerialNumber: syz
[  136.546758][ T5888] ath9k_htc 10-1:1.0: ath9k_htc: Target is unresponsive
[  136.559826][ T5911] usb 10-1: USB disconnect, device number 2
[  136.577908][ T5888] ath9k_htc: Failed to initialize the device
[  136.596222][ T5911] usb 10-1: ath9k_htc: USB layer deinitialized
[  136.661204][    T8] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:5.225/input/input9
[  136.696044][ T5195] bcm5974 5-1:5.225: could not read from device
[  136.732395][ T5195] bcm5974 5-1:5.225: could not read from device
[  136.746512][    T8] usb 5-1: USB disconnect, device number 24
[  136.907520][    T9] usb 7-1: USB disconnect, device number 9
[  137.076887][ T5888] usb 6-1: new low-speed USB device number 14 using dummy_hcd
[  137.216668][ T5888] usb 6-1: device descriptor read/64, error -71
[  137.466585][ T5888] usb 6-1: new low-speed USB device number 15 using dummy_hcd
[  137.622850][ T5888] usb 6-1: device descriptor read/64, error -71
[  137.725563][ T7346] FAULT_INJECTION: forcing a failure.
[  137.725563][ T7346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.738850][    T8] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  137.749540][ T7346] CPU: 0 UID: 0 PID: 7346 Comm: syz.9.314 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  137.749565][ T7346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.749576][ T7346] Call Trace:
[  137.749581][ T7346]  <TASK>
[  137.749589][ T7346]  dump_stack_lvl+0x241/0x360
[  137.749614][ T7346]  ? __pfx_dump_stack_lvl+0x10/0x10
[  137.749632][ T7346]  ? __pfx__printk+0x10/0x10
[  137.749664][ T7346]  ? snprintf+0xda/0x120
[  137.749685][ T7346]  should_fail_ex+0x40a/0x550
[  137.749711][ T7346]  _copy_to_user+0x31/0xb0
[  137.749733][ T7346]  simple_read_from_buffer+0xca/0x150
[  137.749757][ T7346]  proc_fail_nth_read+0x1e9/0x250
[  137.749780][ T7346]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  137.749804][ T7346]  ? rw_verify_area+0x243/0x630
[  137.749819][ T7346]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  137.749841][ T7346]  vfs_read+0x1f8/0xb40
[  137.749857][ T7346]  ? fdget_pos+0x254/0x320
[  137.749880][ T7346]  ? __pfx___mutex_lock+0x10/0x10
[  137.749899][ T7346]  ? __pfx_vfs_read+0x10/0x10
[  137.749918][ T7346]  ? __fget_files+0x2a/0x410
[  137.749940][ T7346]  ? __fget_files+0x395/0x410
[  137.749959][ T7346]  ? __fget_files+0x2a/0x410
[  137.749988][ T7346]  ksys_read+0x18f/0x2b0
[  137.750009][ T7346]  ? __pfx_ksys_read+0x10/0x10
[  137.750026][ T7346]  ? do_syscall_64+0x100/0x230
[  137.750050][ T7346]  ? do_syscall_64+0xb6/0x230
[  137.750073][ T7346]  do_syscall_64+0xf3/0x230
[  137.750093][ T7346]  ? clear_bhb_loop+0x35/0x90
[  137.750117][ T7346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.750137][ T7346] RIP: 0033:0x7f8bd4f8bb7c
[  137.750151][ T7346] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  137.750165][ T7346] RSP: 002b:00007f8bd5d39030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  137.750183][ T7346] RAX: ffffffffffffffda RBX: 00007f8bd51a5fa0 RCX: 00007f8bd4f8bb7c
[  137.750195][ T7346] RDX: 000000000000000f RSI: 00007f8bd5d390a0 RDI: 0000000000000004
[  137.750206][ T7346] RBP: 00007f8bd5d39090 R08: 0000000000000000 R09: 0000000000000000
[  137.750216][ T7346] R10: 9200000024040010 R11: 0000000000000246 R12: 0000000000000001
[  137.750226][ T7346] R13: 0000000000000000 R14: 00007f8bd51a5fa0 R15: 00007f8bd52cfa28
[  137.750253][ T7346]  </TASK>
[  137.757398][ T5888] usb usb6-port1: attempt power cycle
[  137.916950][    T8] usb 9-1: Using ep0 maxpacket: 32
[  137.998767][    T8] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.006659][   T25] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  138.012775][    T8] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[  138.030253][    T8] usb 9-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  138.044456][    T8] usb 9-1: config 0 interface 0 has no altsetting 1
[  138.061316][    T8] usb 9-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  138.070936][    T8] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.086523][    T8] usb 9-1: Product: syz
[  138.090749][    T8] usb 9-1: Manufacturer: syz
[  138.095590][    T8] usb 9-1: SerialNumber: syz
[  138.108396][    T8] usb 9-1: config 0 descriptor??
[  138.116722][ T5911] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  138.177388][   T25] usb 5-1: Using ep0 maxpacket: 32
[  138.190144][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.209501][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  138.242555][   T25] usb 5-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  138.269642][   T25] usb 5-1: config 0 interface 0 has no altsetting 1
[  138.305888][   T25] usb 5-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  138.314010][ T5911] usb 10-1: Using ep0 maxpacket: 32
[  138.326522][ T5888] usb 6-1: new low-speed USB device number 16 using dummy_hcd
[  138.349115][   T29] kauditd_printk_skb: 85 callbacks suppressed
[  138.349132][   T29] audit: type=1326 audit(1740719085.685:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.352631][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.357465][   T29] audit: type=1326 audit(1740719085.685:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.409467][ T5888] usb 6-1: device descriptor read/8, error -71
[  138.419418][ T5911] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.438562][ T5911] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 2
[  138.476493][ T5911] usb 10-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  138.476616][   T25] usb 5-1: Product: syz
[  138.496802][    T8] usb 9-1: USB disconnect, device number 3
[  138.533277][   T25] usb 5-1: Manufacturer: syz
[  138.544362][ T5911] usb 10-1: config 0 interface 0 has no altsetting 1
[  138.558427][   T25] usb 5-1: SerialNumber: syz
[  138.575584][   T29] audit: type=1326 audit(1740719085.685:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.600921][   T25] usb 5-1: config 0 descriptor??
[  138.613744][ T5911] usb 10-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  138.628789][ T5911] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.645269][ T5911] usb 10-1: Product: syz
[  138.656557][ T5888] usb 6-1: new low-speed USB device number 17 using dummy_hcd
[  138.660221][ T5911] usb 10-1: Manufacturer: syz
[  138.676723][   T29] audit: type=1326 audit(1740719085.685:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.687238][ T5888] usb 6-1: device descriptor read/8, error -71
[  138.700610][ T5911] usb 10-1: SerialNumber: syz
[  138.723278][ T5911] usb 10-1: config 0 descriptor??
[  138.747239][   T29] audit: type=1326 audit(1740719085.685:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.807267][   T29] audit: type=1326 audit(1740719085.685:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  138.846844][ T5888] usb usb6-port1: unable to enumerate USB device
[  138.906191][   T29] audit: type=1326 audit(1740719085.685:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  139.037846][   T29] audit: type=1326 audit(1740719085.685:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7332 comm="syz.8.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b88d8d169 code=0x7ffc0000
[  139.141269][   T29] audit: type=1326 audit(1740719086.475:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="syz.4.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  139.266616][   T29] audit: type=1326 audit(1740719086.515:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="syz.4.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f98c818d169 code=0x7ffc0000
[  139.296325][ T5911] usb 5-1: USB disconnect, device number 25
[  139.434149][    T9] usb 10-1: USB disconnect, device number 3
[  141.124364][ T7407] netlink: 4 bytes leftover after parsing attributes in process `syz.8.325'.
[  141.233849][ T7407] FAULT_INJECTION: forcing a failure.
[  141.233849][ T7407] name failslab, interval 1, probability 0, space 0, times 0
[  141.303595][ T7407] CPU: 0 UID: 0 PID: 7407 Comm: syz.8.325 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  141.303623][ T7407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.303634][ T7407] Call Trace:
[  141.303640][ T7407]  <TASK>
[  141.303649][ T7407]  dump_stack_lvl+0x241/0x360
[  141.303674][ T7407]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.303692][ T7407]  ? __pfx__printk+0x10/0x10
[  141.303711][ T7407]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  141.303734][ T7407]  ? __pfx___might_resched+0x10/0x10
[  141.303758][ T7407]  should_fail_ex+0x40a/0x550
[  141.303785][ T7407]  should_failslab+0xac/0x100
[  141.303807][ T7407]  kmem_cache_alloc_node_noprof+0x77/0x380
[  141.303828][ T7407]  ? __alloc_skb+0x1c3/0x440
[  141.303848][ T7407]  ? br_get_link_af_size_filtered+0xdb/0xd30
[  141.303870][ T7407]  __alloc_skb+0x1c3/0x440
[  141.303897][ T7407]  ? __pfx___alloc_skb+0x10/0x10
[  141.303922][ T7407]  ? if_nlmsg_size+0x540/0x7a0
[  141.303949][ T7407]  rtmsg_ifinfo_build_skb+0x84/0x260
[  141.303980][ T7407]  rtnetlink_event+0x1b1/0x260
[  141.304002][ T7407]  notifier_call_chain+0x1a5/0x3f0
[  141.304030][ T7407]  __netdev_upper_dev_unlink+0x2ba/0x8e0
[  141.304058][ T7407]  ? __pfx___netdev_upper_dev_unlink+0x10/0x10
[  141.304083][ T7407]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  141.304101][ T7407]  ? netdev_upper_dev_unlink+0x84/0xd0
[  141.304126][ T7407]  netdev_upper_dev_unlink+0x92/0xd0
[  141.304146][ T7407]  ? __pfx_netdev_upper_dev_unlink+0x10/0x10
[  141.304176][ T7407]  virt_wifi_dellink+0x30c/0x3e0
[  141.304197][ T7407]  ? __pfx_virt_wifi_dellink+0x10/0x10
[  141.304233][ T7407]  ? __mutex_trylock_common+0x183/0x2e0
[  141.304251][ T7407]  ? __pfx___might_resched+0x10/0x10
[  141.304274][ T7407]  ? __pfx___mutex_trylock_common+0x10/0x10
[  141.304295][ T7407]  ? rcu_is_watching+0x15/0xb0
[  141.304313][ T7407]  ? trace_contention_end+0x3c/0x120
[  141.304331][ T7407]  ? __mutex_lock+0x397/0x1010
[  141.304356][ T7407]  ? stack_trace_save+0x118/0x1d0
[  141.304380][ T7407]  ? rtnl_dellink+0x394/0x8d0
[  141.304397][ T7407]  ? __pfx___mutex_lock+0x10/0x10
[  141.304429][ T7407]  ? __nla_parse+0x40/0x60
[  141.304445][ T7407]  ? __pfx_virt_wifi_dellink+0x10/0x10
[  141.304464][ T7407]  rtnl_dellink+0x518/0x8d0
[  141.304487][ T7407]  ? __pfx_rtnl_dellink+0x10/0x10
[  141.304515][ T7407]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  141.304552][ T7407]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.304642][ T7407]  ? __pfx_rtnl_dellink+0x10/0x10
[  141.304663][ T7407]  rtnetlink_rcv_msg+0x791/0xcf0
[  141.304679][ T7407]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  141.304702][ T7407]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  141.304727][ T7407]  ? ref_tracker_free+0x643/0x7e0
[  141.304756][ T7407]  netlink_rcv_skb+0x206/0x480
[  141.304775][ T7407]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  141.304794][ T7407]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  141.304833][ T7407]  ? netlink_deliver_tap+0x2e/0x1b0
[  141.304849][ T7407]  netlink_unicast+0x7f6/0x990
[  141.304877][ T7407]  ? __pfx_netlink_unicast+0x10/0x10
[  141.304895][ T7407]  ? __virt_addr_valid+0x45f/0x530
[  141.304911][ T7407]  ? __phys_addr_symbol+0x2f/0x70
[  141.304931][ T7407]  ? __check_object_size+0x47a/0x730
[  141.304955][ T7407]  netlink_sendmsg+0x8de/0xcb0
[  141.304983][ T7407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.305004][ T7407]  ? aa_sock_msg_perm+0x91/0x160
[  141.305031][ T7407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.305046][ T7407]  __sock_sendmsg+0x221/0x270
[  141.305068][ T7407]  ____sys_sendmsg+0x53a/0x860
[  141.305100][ T7407]  ? __pfx_____sys_sendmsg+0x10/0x10
[  141.305121][ T7407]  ? __fget_files+0x2a/0x410
[  141.305145][ T7407]  ? __fget_files+0x2a/0x410
[  141.305174][ T7407]  __sys_sendmsg+0x269/0x350
[  141.305203][ T7407]  ? __pfx___sys_sendmsg+0x10/0x10
[  141.305238][ T7407]  ? do_sys_openat2+0x17a/0x1d0
[  141.305285][ T7407]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.305308][ T7407]  ? do_syscall_64+0x100/0x230
[  141.305331][ T7407]  ? do_syscall_64+0xb6/0x230
[  141.305354][ T7407]  do_syscall_64+0xf3/0x230
[  141.305375][ T7407]  ? clear_bhb_loop+0x35/0x90
[  141.305400][ T7407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.305420][ T7407] RIP: 0033:0x7f3b88d8d169
[  141.305436][ T7407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.305449][ T7407] RSP: 002b:00007f3b89b0d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.305467][ T7407] RAX: ffffffffffffffda RBX: 00007f3b88fa5fa0 RCX: 00007f3b88d8d169
[  141.305480][ T7407] RDX: 0000000000000000 RSI: 0000400000000280 RDI: 0000000000000003
[  141.305490][ T7407] RBP: 00007f3b89b0d090 R08: 0000000000000000 R09: 0000000000000000
[  141.305501][ T7407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.305511][ T7407] R13: 0000000000000000 R14: 00007f3b88fa5fa0 R15: 00007f3b890cfa28
[  141.305537][ T7407]  </TASK>
[  143.365683][    T8] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  143.593022][ T7437] netlink: 8 bytes leftover after parsing attributes in process `syz.9.331'.
[  143.773698][    T8] usb 5-1: Using ep0 maxpacket: 32
[  144.055927][    T8] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  144.127628][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.496178][ T5911] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  145.348987][    T8] usb 5-1: config 0 descriptor??
[  145.603825][    T8] gspca_main: nw80x-2.14.0 probing 055f:d001
[  148.704817][    T8] gspca_nw80x: reg_w err -110
[  148.738135][    T8] nw80x 5-1:0.0: probe with driver nw80x failed with error -110
[  149.706433][    C1] sched: DL replenish lagged too much
[  155.232125][ T5911] usb 10-1: unable to read config index 0 descriptor/start: -110
[  155.268048][ T5911] usb 10-1: can't read configurations, error -110
[  186.509685][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  278.246482][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  278.253476][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P7444/1:b..l P25/1:b..l P5192/1:b..l
[  278.264012][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=19825, q=1484139 ncpus=2)
[  278.272114][    C1] task:syslogd         state:R  running task     stack:22320 pid:5192  tgid:5192  ppid:1      task_flags:0x400000 flags:0x00000002
[  278.286892][    C1] Call Trace:
[  278.290196][    C1]  <TASK>
[  278.293160][    C1]  __schedule+0x190e/0x4c90
[  278.297808][    C1]  ? __pfx___schedule+0x10/0x10
[  278.302680][    C1]  ? validate_chain+0x11e/0x5920
[  278.307650][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  278.313661][    C1]  ? preempt_schedule+0xe1/0xf0
[  278.318541][    C1]  preempt_schedule_common+0x84/0xd0
[  278.323855][    C1]  preempt_schedule+0xe1/0xf0
[  278.328557][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  278.333958][    C1]  ? __reset_page_owner+0x76/0x430
[  278.339122][    C1]  preempt_schedule_thunk+0x1a/0x30
[  278.344456][    C1]  unwind_next_frame+0x18f8/0x22d0
[  278.349604][    C1]  ? save_stack+0xfb/0x1f0
[  278.354044][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  278.360237][    C1]  arch_stack_walk+0x11c/0x150
[  278.365042][    C1]  ? __reset_page_owner+0x76/0x430
[  278.370187][    C1]  stack_trace_save+0x118/0x1d0
[  278.375077][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  278.380588][    C1]  save_stack+0xfb/0x1f0
[  278.384946][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  278.389999][    C1]  ? __pfx_save_stack+0x10/0x10
[  278.394894][    C1]  ? page_ext_get+0x20/0x2a0
[  278.399512][    C1]  __reset_page_owner+0x76/0x430
[  278.404469][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  278.409701][    C1]  free_frozen_pages+0xe0d/0x10e0
[  278.414770][    C1]  __put_partials+0x160/0x1c0
[  278.419482][    C1]  put_cpu_partial+0x17c/0x250
[  278.424268][    C1]  ? put_cpu_partial+0x70/0x250
[  278.429147][    C1]  __slab_free+0x290/0x380
[  278.433595][    C1]  ? __phys_addr+0xba/0x170
[  278.438143][    C1]  qlist_free_all+0x9a/0x140
[  278.442765][    C1]  kasan_quarantine_reduce+0x14f/0x170
[  278.448356][    C1]  __kasan_slab_alloc+0x23/0x80
[  278.453242][    C1]  __kmalloc_noprof+0x236/0x4c0
[  278.458131][    C1]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  278.463890][    C1]  tomoyo_realpath_from_path+0xcf/0x5e0
[  278.469478][    C1]  tomoyo_check_open_permission+0x258/0x4f0
[  278.475411][    C1]  ? tomoyo_check_open_permission+0x207/0x4f0
[  278.481513][    C1]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  278.488017][    C1]  ? mnt_get_write_access+0x68/0x2b0
[  278.493339][    C1]  ? mnt_get_write_access+0x68/0x2b0
[  278.498670][    C1]  ? tomoyo_file_open+0x165/0x220
[  278.503725][    C1]  ? mnt_get_write_access+0x226/0x2b0
[  278.509133][    C1]  security_file_open+0xac/0x250
[  278.514107][    C1]  do_dentry_open+0x320/0x1960
[  278.518996][    C1]  ? vfs_open+0x31/0x370
[  278.523276][    C1]  vfs_open+0x3b/0x370
[  278.527377][    C1]  path_openat+0x2c81/0x3590
[  278.532044][    C1]  ? __pfx_path_openat+0x10/0x10
[  278.537023][    C1]  do_filp_open+0x27f/0x4e0
[  278.541573][    C1]  ? __pfx_do_filp_open+0x10/0x10
[  278.546632][    C1]  ? do_raw_spin_lock+0x14f/0x370
[  278.551721][    C1]  do_sys_openat2+0x13e/0x1d0
[  278.556423][    C1]  ? call_rcu+0x799/0xac0
[  278.560788][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  278.566018][    C1]  ? __pfx_do_sys_openat2+0x10/0x10
[  278.571263][    C1]  __x64_sys_openat+0x247/0x2a0
[  278.576236][    C1]  ? __pfx___x64_sys_openat+0x10/0x10
[  278.581642][    C1]  ? do_syscall_64+0x100/0x230
[  278.586538][    C1]  ? do_syscall_64+0xb6/0x230
[  278.591252][    C1]  do_syscall_64+0xf3/0x230
[  278.595797][    C1]  ? clear_bhb_loop+0x35/0x90
[  278.600508][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.606433][    C1] RIP: 0033:0x7ff5bd0239a4
[  278.610882][    C1] RSP: 002b:00007ffc604eb1f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  278.619329][    C1] RAX: ffffffffffffffda RBX: 00005569f2eec910 RCX: 00007ff5bd0239a4
[  278.627328][    C1] RDX: 0000000000000d41 RSI: 00007ff5bd1c2443 RDI: 00000000ffffff9c
[  278.635332][    C1] RBP: 00007ff5bd1c2443 R08: 0000000000000001 R09: 0000000000000000
[  278.643389][    C1] R10: 00000000000001b6 R11: 0000000000000246 R12: 0000000000000d41
[  278.651387][    C1] R13: 0000000067c1440f R14: 0000000000000003 R15: 00005569f2eeca60
[  278.659401][    C1]  </TASK>
[  278.662441][    C1] task:kworker/1:0     state:R  running task     stack:18904 pid:25    tgid:25    ppid:2      task_flags:0x4208060 flags:0x00004000
[  278.676056][    C1] Workqueue: events nsim_fib_event_work
[  278.681649][    C1] Call Trace:
[  278.684946][    C1]  <TASK>
[  278.687897][    C1]  __schedule+0x190e/0x4c90
[  278.692436][    C1]  ? mark_lock+0x90/0x360
[  278.696800][    C1]  ? __pfx___schedule+0x10/0x10
[  278.701688][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  278.707717][    C1]  ? preempt_schedule+0xe1/0xf0
[  278.712594][    C1]  preempt_schedule_common+0x84/0xd0
[  278.717915][    C1]  preempt_schedule+0xe1/0xf0
[  278.722708][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  278.728115][    C1]  preempt_schedule_thunk+0x1a/0x30
[  278.733348][    C1]  unwind_next_frame+0x18f8/0x22d0
[  278.738497][    C1]  ? free_frozen_pages+0xe0d/0x10e0
[  278.743739][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  278.750009][    C1]  arch_stack_walk+0x11c/0x150
[  278.754806][    C1]  ? __put_partials+0x160/0x1c0
[  278.759690][    C1]  stack_trace_save+0x118/0x1d0
[  278.764576][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  278.769996][    C1]  save_stack+0xfb/0x1f0
[  278.774271][    C1]  ? __pfx_save_stack+0x10/0x10
[  278.779141][    C1]  ? free_frozen_pages+0xe0d/0x10e0
[  278.784392][    C1]  ? page_ext_get+0x20/0x2a0
[  278.789019][    C1]  __reset_page_owner+0x76/0x430
[  278.793991][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  278.799227][    C1]  free_frozen_pages+0xe0d/0x10e0
[  278.804304][    C1]  __put_partials+0x160/0x1c0
[  278.809024][    C1]  put_cpu_partial+0x17c/0x250
[  278.813824][    C1]  ? put_cpu_partial+0x70/0x250
[  278.818708][    C1]  __slab_free+0x290/0x380
[  278.823165][    C1]  ? __phys_addr+0xba/0x170
[  278.827702][    C1]  qlist_free_all+0x9a/0x140
[  278.832347][    C1]  kasan_quarantine_reduce+0x14f/0x170
[  278.837835][    C1]  __kasan_slab_alloc+0x23/0x80
[  278.842759][    C1]  __kmalloc_cache_noprof+0x1d9/0x390
[  278.848166][    C1]  ? nsim_fib_event_work+0xe02/0x3f00
[  278.853574][    C1]  nsim_fib_event_work+0xe02/0x3f00
[  278.858838][    C1]  ? __pfx_validate_chain+0x10/0x10
[  278.864064][    C1]  ? mark_lock+0x9a/0x360
[  278.868445][    C1]  ? __pfx_nsim_fib_event_work+0x10/0x10
[  278.874113][    C1]  ? mark_lock+0x9a/0x360
[  278.878467][    C1]  ? debug_object_deactivate+0x2d5/0x390
[  278.884133][    C1]  ? __lock_acquire+0x1397/0x2100
[  278.889206][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  278.894450][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  278.899594][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  278.905612][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  278.911983][    C1]  ? process_scheduled_works+0x9c6/0x18e0
[  278.917742][    C1]  process_scheduled_works+0xabe/0x18e0
[  278.923345][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  278.929361][    C1]  ? assign_work+0x364/0x3d0
[  278.934002][    C1]  worker_thread+0x870/0xd30
[  278.938635][    C1]  ? __kthread_parkme+0x169/0x1d0
[  278.943703][    C1]  ? __pfx_worker_thread+0x10/0x10
[  278.948853][    C1]  kthread+0x7a9/0x920
[  278.952945][    C1]  ? __pfx_kthread+0x10/0x10
[  278.957571][    C1]  ? __pfx_worker_thread+0x10/0x10
[  278.962735][    C1]  ? __pfx_kthread+0x10/0x10
[  278.967361][    C1]  ? __pfx_kthread+0x10/0x10
[  278.971983][    C1]  ? __pfx_kthread+0x10/0x10
[  278.976601][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  278.981840][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  278.987065][    C1]  ? __pfx_kthread+0x10/0x10
[  278.991691][    C1]  ret_from_fork+0x4b/0x80
[  278.996141][    C1]  ? __pfx_kthread+0x10/0x10
[  279.000768][    C1]  ret_from_fork_asm+0x1a/0x30
[  279.005572][    C1]  </TASK>
[  279.008619][    C1] task:syz.8.333       state:R  running task     stack:25792 pid:7444  tgid:7441  ppid:6750   task_flags:0x400040 flags:0x00004006
[  279.022148][    C1] Call Trace:
[  279.025445][    C1]  <TASK>
[  279.028397][    C1]  __schedule+0x190e/0x4c90
[  279.032926][    C1]  ? finish_task_switch+0x1e5/0x870
[  279.038163][    C1]  ? notifier_call_chain+0x1a5/0x3f0
[  279.043493][    C1]  ? sock_close+0xbc/0x240
[  279.047938][    C1]  ? __pfx___schedule+0x10/0x10
[  279.052822][    C1]  ? mark_lock+0x9a/0x360
[  279.057181][    C1]  ? __lock_acquire+0x1397/0x2100
[  279.062243][    C1]  ? preempt_schedule+0xe1/0xf0
[  279.067125][    C1]  preempt_schedule_common+0x84/0xd0
[  279.072437][    C1]  preempt_schedule+0xe1/0xf0
[  279.077149][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  279.082552][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  279.088567][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  279.094923][    C1]  preempt_schedule_thunk+0x1a/0x30
[  279.100153][    C1]  ? mark_lock+0x9a/0x360
[  279.104505][    C1]  __local_bh_enable_ip+0x179/0x200
[  279.109738][    C1]  ? cfg80211_mlme_unregister_socket+0x2c0/0x6a0
[  279.116098][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  279.121840][    C1]  ? cfg80211_mlme_unregister_socket+0x2c0/0x6a0
[  279.128197][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  279.133434][    C1]  ? cfg80211_mlme_unregister_socket+0x5b/0x6a0
[  279.139722][    C1]  cfg80211_mlme_unregister_socket+0x2c0/0x6a0
[  279.145909][    C1]  ? nl80211_netlink_notify+0x54a/0x840
[  279.151497][    C1]  nl80211_netlink_notify+0x339/0x840
[  279.156904][    C1]  ? nl80211_netlink_notify+0x7a/0x840
[  279.162398][    C1]  notifier_call_chain+0x1a5/0x3f0
[  279.167559][    C1]  blocking_notifier_call_chain+0x69/0x90
[  279.173310][    C1]  netlink_release+0x11ce/0x1b20
[  279.178332][    C1]  ? netlink_release+0x10c/0x1b20
[  279.183382][    C1]  ? __pfx_netlink_release+0x10/0x10
[  279.188784][    C1]  ? down_write+0x18c/0x220
[  279.193319][    C1]  ? __pfx_down_write+0x10/0x10
[  279.198215][    C1]  sock_close+0xbc/0x240
[  279.202534][    C1]  ? __pfx_sock_close+0x10/0x10
[  279.207502][    C1]  __fput+0x3e9/0x9f0
[  279.211519][    C1]  __x64_sys_close+0x7f/0x110
[  279.216228][    C1]  do_syscall_64+0xf3/0x230
[  279.220789][    C1]  ? clear_bhb_loop+0x35/0x90
[  279.225500][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.231431][    C1] RIP: 0033:0x7f3b88d8bdca
[  279.235868][    C1] RSP: 002b:00007f3b86bd3f90 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  279.244312][    C1] RAX: ffffffffffffffda RBX: 0000000000000023 RCX: 00007f3b88d8bdca
[  279.252316][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  279.260319][    C1] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
[  279.268318][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.276315][    C1] R13: 0000000000000000 R14: 00007f3b88fa6160 R15: 00007f3b890cfa28
[  279.284325][    C1]  </TASK>
[  279.287374][    C1] rcu: rcu_preempt kthread starved for 9555 jiffies! g19825 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  279.298501][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  279.308492][    C1] rcu: RCU grace-period kthread stack dump:
[  279.314397][    C1] task:rcu_preempt     state:R  running task     stack:26104 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[  279.327933][    C1] Call Trace:
[  279.331231][    C1]  <TASK>
[  279.334358][    C1]  __schedule+0x190e/0x4c90
[  279.338912][    C1]  ? __pfx___schedule+0x10/0x10
[  279.343802][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  279.349838][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[  279.355162][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  279.360324][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  279.366102][    C1]  irqentry_exit+0x5e/0x90
[  279.370566][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  279.376677][    C1] RIP: 0010:schedule+0x0/0x320
[  279.381476][    C1] Code: 8b 44 24 30 48 89 18 49 89 45 00 e9 d9 f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 55 41 57 41 56 41 55 41 54 53 65 48 8b 2c 25 80 d6 03
[  279.401207][    C1] RSP: 0018:ffffc90000167af8 EFLAGS: 00000246
[  279.407310][    C1] RAX: 0000000000000000 RBX: ffff88801da80000 RCX: 0000000000000001
[  279.415309][    C1] RDX: dffffc0000000000 RSI: ffffffff8c2aa4a0 RDI: 0000000000000001
[  279.423315][    C1] RBP: ffffc90000167bf0 R08: ffffffff903ced77 R09: 1ffffffff2079dae
[  279.431409][    C1] R10: dffffc0000000000 R11: fffffbfff2079daf R12: dffffc0000000000
[  279.439412][    C1] R13: 1ffff9200002cf60 R14: ffffc90000167b20 R15: 00000000ffffd1bd
[  279.447520][    C1]  schedule_timeout+0x15a/0x290
[  279.452406][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  279.457819][    C1]  ? __pfx_process_timeout+0x10/0x10
[  279.463143][    C1]  ? prepare_to_swait_event+0x330/0x350
[  279.468770][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  279.473663][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  279.478911][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  279.485101][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  279.490514][    C1]  ? finish_swait+0xd4/0x1e0
[  279.495151][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  279.500444][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  279.505085][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  279.510315][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  279.516258][    C1]  ? __kthread_parkme+0x169/0x1d0
[  279.521416][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  279.526653][    C1]  kthread+0x7a9/0x920
[  279.530842][    C1]  ? __pfx_kthread+0x10/0x10
[  279.535475][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  279.540704][    C1]  ? __pfx_kthread+0x10/0x10
[  279.545327][    C1]  ? __pfx_kthread+0x10/0x10
[  279.549958][    C1]  ? __pfx_kthread+0x10/0x10
[  279.554584][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  279.559869][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  279.565112][    C1]  ? __pfx_kthread+0x10/0x10
[  279.569742][    C1]  ret_from_fork+0x4b/0x80
[  279.574279][    C1]  ? __pfx_kthread+0x10/0x10
[  279.578921][    C1]  ret_from_fork_asm+0x1a/0x30
[  279.583724][    C1]  </TASK>
[  279.586762][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  279.593114][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  279.603463][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  279.613547][    C1] RIP: 0010:acpi_safe_halt+0x21/0x30
[  279.618881][    C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 d6 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d c5 00 82 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[  279.638524][    C1] RSP: 0018:ffffc900001a7d08 EFLAGS: 00000246
[  279.644731][    C1] RAX: ffff88801da98000 RBX: ffff8881442b4064 RCX: 000000000006ce49
[  279.652753][    C1] RDX: 0000000000000001 RSI: ffff8881442b4000 RDI: ffff8881442b4064
[  279.660766][    C1] RBP: 000000000003aab8 R08: ffff8880b873799b R09: 1ffff110170e6f33
[  279.668774][    C1] R10: dffffc0000000000 R11: ffffffff8c088010 R12: ffff88801eb73800
[  279.676777][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff8f337b20
[  279.684787][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  279.693842][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  279.700459][    C1] CR2: 00005642d6916008 CR3: 000000000e938000 CR4: 00000000003526f0
[  279.708482][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  279.716481][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  279.724500][    C1] Call Trace:
[  279.727808][    C1]  <IRQ>
[  279.730671][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  279.737047][    C1]  ? print_other_cpu_stall+0x1481/0x15c0
[  279.742731][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  279.748591][    C1]  ? timekeeping_advance+0x5e8/0x770
[  279.753932][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  279.760232][    C1]  ? rcu_sched_clock_irq+0xa26/0x10e0
[  279.765738][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  279.771416][    C1]  ? update_process_times+0x242/0x2f0
[  279.776857][    C1]  ? tick_nohz_handler+0x37c/0x500
[  279.782012][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  279.787509][    C1]  ? __hrtimer_run_queues+0x551/0xd30
[  279.792924][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  279.798671][    C1]  ? read_tsc+0x9/0x20
[  279.802863][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  279.808974][    C1]  ? hrtimer_interrupt+0x403/0xa40
[  279.814138][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  279.820338][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  279.826178][    C1]  </IRQ>
[  279.829128][    C1]  <TASK>
[  279.832076][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  279.838265][    C1]  ? __pfx_acpi_idle_enter+0x10/0x10
[  279.843586][    C1]  ? acpi_safe_halt+0x21/0x30
[  279.848301][    C1]  acpi_idle_enter+0xe4/0x140
[  279.853012][    C1]  cpuidle_enter_state+0x109/0x470
[  279.858150][    C1]  ? __pfx_menu_select+0x10/0x10
[  279.863136][    C1]  cpuidle_enter+0x5d/0xa0
[  279.867582][    C1]  do_idle+0x372/0x5c0
[  279.871693][    C1]  ? __pfx_do_idle+0x10/0x10
[  279.876320][    C1]  cpu_startup_entry+0x42/0x60
[  279.881156][    C1]  start_secondary+0x102/0x110
[  279.885958][    C1]  common_startup_64+0x13e/0x147
[  279.890935][    C1]  </TASK>
[  280.422245][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  280.438575][ T1297] ieee802154 phy1 wpan1: encryption failed: -22