last executing test programs:

5m12.921038463s ago: executing program 32 (id=34):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x8800)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
io_setup(0x8, 0x0)

5m10.759560056s ago: executing program 4 (id=58):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$audio(0xffffff9c, 0x0, 0x1052c0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
pwritev2(r2, 0x0, 0x0, 0x0, 0x0, 0x3)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ppp={{0x8}, {0xc, 0x2, 0x0, 0x1, {0x8, 0x1, r4}}}}]}, 0x38}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0bfe6ecd77084f21c01e020000000900010073797a30000000000900020073797a320000000018000480140001800b0001006c6f6f6b757000000400028007000740effafa001400000011000100000000000000000003"], 0x74}}, 0x10)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r7 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r8, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000440)={r9, 0x0, 0x0, 0x0, 0x0, [<r10=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000080)={r10, 0x0, <r11=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r11})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r11, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0xa, 0x2, 0x4})
ioctl$DRM_IOCTL_MODE_ATOMIC(r7, 0xc03864bc, &(0x7f0000000640)={0x1, 0x5, &(0x7f0000000500)=[r8, r12, r8, r8, r8], &(0x7f0000000540)=[0x335, 0xffffff98, 0xd9d0, 0xfff, 0x8], &(0x7f0000000580), &(0x7f00000005c0)=[0xa, 0x9, 0x9, 0xffffffffffff0001, 0x5, 0x1, 0x8, 0x5], 0x0, 0x4a07})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r7, 0xc00c642d, &(0x7f0000000040))
close_range(r0, 0xffffffffffffffff, 0x0)

5m9.007518636s ago: executing program 4 (id=61):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"a2e3ad099b0d09451b5e090987f70e06d038e7ff7fc6e5539b0d3d0e8b089b3f323063090810e0879b0f0ac6e70a9b334d959b669a240d5b0af3988f7ef31952010affe8d178708c523c921b1b5b07070d073e0936cd3b78130daa61d8e81a0006005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397273ce1766769f0c91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b7638354a1236e80f6a8abadea7662496bddbc42be6bfb2f17959d1faf6e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc3609aa24b7d520fb29d095083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130bb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d858647a6526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710000000000000039f00bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f80800000000000000bdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f19d684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4a1b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3493e03f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a4f0492d48604675fde2b34cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827955e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb9754fb4b55668dda93aec92a5de203717a284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb189fb135c695a2de3a340047228032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d0676d95f160ec97b1ad94e7475cb74642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c022babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd72ea4998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5ff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c58b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035953faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1d97ba02fc42939dde3d4a3339a65d507dc59c51097b50517705da56e9ebf0afa53282bff6235734352c19966eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864af090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d885b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1a85ae7e69fd1a47a284f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b344340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcb7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c2e14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ec00000000000000b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a52830052fcc460db043afe525629b48d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72a0f4b5482b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec685f068ea88067d905ea917bb03eefdaebdeabf2d0dce81204c915c8949de992587c2cb5fe36d7d3e5db21b094b8b7794cb5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7fb6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f49010c0000002c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000", 0x1000}}, 0x1006)

5m1.01250315s ago: executing program 33 (id=48):
r0 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60044884)

5m0.929155884s ago: executing program 4 (id=69):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket(0x10, 0x2, 0x0)
unshare(0x42000000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="3400000014000b032bbd7000fcdbdf250a281000", @ANYRES32=r4, @ANYBLOB="080008000604000014000100ff"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

4m58.994727273s ago: executing program 4 (id=71):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f0000000080)={0xfb, 0x2})
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(r2, 0x0, 0x8040)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x90)
recvmsg(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000002c0)=""/127, 0x7f}, {&(0x7f0000000340)=""/90, 0x5a}], 0x2}, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
ioctl$KDGKBDIACR(r3, 0x4b4a, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000580)=ANY=[], 0x114}], 0x1}, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x201, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000300)=0x1)

4m54.349114564s ago: executing program 4 (id=75):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
write(r0, &(0x7f0000000280)="e8bd8a4c56281ba2ba42cfa5b9fe5fc6dcde2ee431f5595ceadb9a2c95e57f15ee4a83f9e7d78ea996f78bd588bedcdbc730d6d15df6d2a26ca4e55e97ed0522a190ce241a37bad3317fba7e4be3dbbfec5e2f401b5658cc8fda", 0xffffffe5)

4m53.507193112s ago: executing program 4 (id=76):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x87)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b750009058389b5"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

4m46.149497225s ago: executing program 34 (id=66):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2e, &(0x7f0000000340)={@local, @random="fad1e048716e", @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp_addr={0x44, 0x4, 0xa, 0x1, 0x8}]}}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003680)=""/27, 0x1b}}], 0x39, 0x2, 0x0)

4m38.18544385s ago: executing program 35 (id=76):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x87)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b750009058389b5"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

4m30.10997559s ago: executing program 5 (id=55):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file2\x00', 0xa00010, &(0x7f00000001c0), 0x21, 0x4bf, &(0x7f00000009c0)="$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")
creat(&(0x7f0000000140)='./bus\x00', 0xa6)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000480)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

4m28.840572714s ago: executing program 5 (id=86):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"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", 0x1000}}, 0x1006)

4m19.012725484s ago: executing program 5 (id=91):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000900))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
preadv2(r0, &(0x7f0000000480)=[{0x0}], 0x1, 0xffff, 0x44, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="050000000500000001096d70ce6052d5327e00000004", @ANYRES64=r1], 0x48)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21}, &(0x7f0000000300)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000040), 0x0)
close(0x3)

4m15.076026157s ago: executing program 36 (id=91):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000900))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
preadv2(r0, &(0x7f0000000480)=[{0x0}], 0x1, 0xffff, 0x44, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="050000000500000001096d70ce6052d5327e00000004", @ANYRES64=r1], 0x48)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21}, &(0x7f0000000300)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000040), 0x0)
close(0x3)

4m3.838030391s ago: executing program 6 (id=100):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000b80))
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup(r1)
r5 = fcntl$dupfd(r0, 0x406, r3)
openat$rdma_cm(0xffffff9c, &(0x7f0000000340), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000080)={0x0, r4})

4m2.738127345s ago: executing program 6 (id=102):
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000002140), 0x200, 0x0)
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000000)='./file2\x00', 0x2004009, &(0x7f00000004c0)=ANY=[], 0xfe, 0x22f, &(0x7f00000006c0)="$eJzsmb1rFEEYxp/Z25u7jSLapEhjYcCI5i63adIEP0Cxskn8qvQwa4h3ycllBXMgGmxstLMQbCz8BywCprKwE3tBCxUECwNa2NiMvDtze5Ps3u2xZ+f7K4Zn5p2v98nsW+TAMMx/y9cvvz8/PjO3eALAfkyiZMa/FwAhtHas+Z+e3Tn+dP7s81cfX75dO3Bve+9+tESp3QPlAee7AN6cLuB+fFK8+g+JSdNZhBPri3BwzOjLEKgYfR0OLhkdQOCq0bcs3aL5lcrNlWZQudFqLpGYoaZGjU/N7N777WwKLJm+UkoJK76+0WnUm82gbQnXxFJCuUR8WGM84V8REucmen26H7l45dHDTep3vZmx/KvBwU8BvDd/7AUzPodS1xttiZX/hNvbv5DIPzVbmkqBrCTLWsz/MiMY2T4JLQ5N5zN9ik4/lQwdRJ77YPeqInohctKEPIz+UNKeTiTcbDNPGtdznHVBZyEGfBJaPPEA/NsEU0WuLLpifGf7XTL0LWu5Epk7vx4b/v2Uh71z92vJ75iHTsMZxbF+F/uwpeuHeiFw1KpPrlU/quHq7er6Rmd6ZbW+HCwHa74/W9qnY1EhqkZtou716rMX1acxa/9in7nSkbhbD8N2TbdSSHgIw7Yf9X3rs1nYav24ZpaFOA/giO7QI5fxjroSlqwzhNRznGguqalC+m1E35wYhmEYhmEYhmEYhmEYhmHSOQwR/Rd0EAJ4oH+e+RsAAP//ihBbkQ==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)={0x80000011})

4m1.718642705s ago: executing program 6 (id=104):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r1}, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2080, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0xc048aec8, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r4, 0x29, 0xd0, &(0x7f0000000000)=0x9, 0x4)

4m0.858558363s ago: executing program 6 (id=107):
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)
syz_pidfd_open(0x0, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f29, 0x0, 0xc139, 0x4, 0x5, 0xafa0, 0x0, 0x4, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x9, 0x6, 0x101, 0xfffffffe, 0xffff, 0x3, 0x40000003, 0x89, 0xcaa3, 0x1000, 0x20001e5b, 0x8000003, 0xe69, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]})
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x40000000000000, 0x88}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
setpgid(r1, 0x0)
setpgid(0x0, r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)

3m59.342264344s ago: executing program 6 (id=109):
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))

3m57.954630386s ago: executing program 6 (id=110):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_open_dev$audion(&(0x7f0000000040), 0x1ff, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x80000000, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1cf)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)

3m55.283250094s ago: executing program 37 (id=110):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_open_dev$audion(&(0x7f0000000040), 0x1ff, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x80000000, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1cf)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)

3m4.48083944s ago: executing program 8 (id=165):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
futex(0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r4 = openat$sysfs(0xffffff9c, &(0x7f00000003c0)='/sys/power/pm_trace_dev_match', 0x20800, 0x2)
read$msr(r4, &(0x7f00000002c0)=""/4096, 0x1000)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r4, 0x4068aea3, &(0x7f0000000180))
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

3m2.103085706s ago: executing program 8 (id=169):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x42}}, 0x801}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x4000041)
recvmmsg(0xffffffffffffffff, &(0x7f0000007680)=[{{0x0, 0x0, 0x0}, 0x315b}], 0x1, 0x40000041, 0x0)
recvmmsg(r0, &(0x7f0000001800)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x20061, 0x0)

2m56.521600345s ago: executing program 8 (id=175):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
pidfd_send_signal(0xffffffffffffffff, 0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)

2m51.450908257s ago: executing program 8 (id=182):
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)
syz_pidfd_open(0x0, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f29, 0x0, 0xc139, 0x4, 0x5, 0xafa0, 0x0, 0x4, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x9, 0x6, 0x101, 0xfffffffe, 0xffff, 0x3, 0x40000003, 0x89, 0xcaa3, 0x1000, 0x20001e5b, 0x8000003, 0xe69, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]})
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x40000000000000, 0x88}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
setpgid(r1, 0x0)
setpgid(0x0, r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r2, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000003700)}}], 0x1, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0800019e1c000000"], 0x20}}, 0x0)
mount$afs(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x88, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x800000000000001)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m49.387315282s ago: executing program 8 (id=190):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

2m41.146313017s ago: executing program 8 (id=207):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fanotify_init(0x4000, 0x0)

2m38.763998711s ago: executing program 38 (id=207):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fanotify_init(0x4000, 0x0)

2m2.617726903s ago: executing program 9 (id=286):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newaddr={0x18, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x17, 0x0, 0xff}}, 0x18}, 0x1, 0x0, 0x0, 0x2004c040}, 0x0)

2m1.966938826s ago: executing program 9 (id=289):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x2bc2, 0x20003, 0x7fffffff, 0x0, [{}, {}, {}, {0x0, 0x35, 0x0, '\x00', 0xfc}, {0x20}, {0x5}, {0x0, 0x0, 0x1}, {0x0, 0x6}, {0x0, 0x1}, {0xb, 0x1, 0x2, '\x00', 0x1}, {0x3b, 0x0, 0xfe}, {0xa}, {0xfe}, {0x0, 0x0, 0x2}, {0x7, 0x0, 0x0, '\x00', 0x39}, {0x0, 0xa, 0x0, '\x00', 0x8}, {0x3, 0x0, 0x0, '\x00', 0xfe}, {0x3, 0x0, 0xfa}, {0x0, 0x2}, {0x0, 0x9}, {0x0, 0x0, 0x0, '\x00', 0x1}, {0x0, 0x3}, {0x0, 0x0, 0x0, '\x00', 0x1}, {0x88}]}})

2m0.890390259s ago: executing program 9 (id=292):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="98030000", @ANYRES16=r0, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

2m0.27090775s ago: executing program 9 (id=294):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8, 0x0, 0xffffffffffffffff, 0x5a}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x18000000000002a0, 0x7, 0x0, &(0x7f00000000c0)="b9ff0300600d69", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000))
syz_open_dev$loop(&(0x7f0000000100), 0xd5d1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000340)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x400c00, 0x0, 0xffff, 0xc, 0x0, 0x0, 0x0, 0x20}}, 0x50)
setreuid(0x0, 0xee00)
syz_fuse_handle_req(r4, &(0x7f0000006380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea2105600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88, {0x0, 0x15}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)

1m57.278473376s ago: executing program 9 (id=298):
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x3, &(0x7f0000000c80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004440)=[{{&(0x7f00000004c0)={0xa, 0x4e22, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x8001}, 0x1c, 0x0}}], 0x1, 0x4004080)

1m56.488743389s ago: executing program 9 (id=303):
r0 = socket(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(0x0, &(0x7f00000001c0)='./file0/../file0/../file0\x00')
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

1m40.591399856s ago: executing program 39 (id=303):
r0 = socket(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(0x0, &(0x7f00000001c0)='./file0/../file0/../file0\x00')
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

9.359532049s ago: executing program 7 (id=619):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx\x00'}, 0x58)
r1 = accept(r0, 0x0, 0x0)
sendmmsg$inet(r1, &(0x7f0000001580)=[{{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000200)="9d5890c9b0a07382f09529ed5ecf8bec0728bf173b59ef7aa73189fd3724dbf486963d3a45c702d6aa2d08ba6ec57ee3a27f79be1fef10ca013da5131ccf6967004c5394b9f83ad6d86eb7f821294b12f07f0d4ccebdf6bbb1886336f6496053642328e7544300cd1f2e9fdcd2d83ea825fe2fe5ee2d3b7f3c5667a50f16014f44fbadcf33feb765832feded181a8d7ff81f16abf3bfb520aea7e26e248408d736fde53ca8e62565c2356bc1bc2ef7cc033e201799e9035f", 0xb8}], 0x1}}], 0x1, 0x4080)

8.526964551s ago: executing program 0 (id=622):
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_emit_ethernet(0xd2, &(0x7f0000001840)=ANY=[@ANYBLOB="0180c2000000ffffffffffff86dd6a01a604009c110000000000000000000000ffffe0000002ff0200000000000000000000000000014e234e20009c90"], 0x0)

7.850373649s ago: executing program 2 (id=624):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_khugepaged_scan_pmd\x00', r1}, 0x18)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

7.782304047s ago: executing program 7 (id=625):
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)
syz_pidfd_open(0x0, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f29, 0x0, 0xc139, 0x4, 0x5, 0xafa0, 0x0, 0x4, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x9, 0x6, 0x101, 0xfffffffe, 0xffff, 0x3, 0x40000003, 0x89, 0xcaa3, 0x1000, 0x20001e5b, 0x8000003, 0xe69, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]})
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x40000000000000, 0x88}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
setpgid(0x0, r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r2, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000003700)}}], 0x1, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0800019e1c000000"], 0x20}}, 0x0)
mount$afs(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x88, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x800000000000001)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a00000004000000dd0000000a0000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00004eae000000000000000000000000000000000000000000000000417643f1dcf055ebfb4e7e91b566fc60a1136453171e4c8d895307cc65dc4f7fb3987ea51c9b5b5928ff34f3"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

7.376865477s ago: executing program 1 (id=626):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000001c0)='./control\x00', 0x810, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYRES8, @ANYRESDEC, @ANYRESDEC], 0xfd, 0x1502, &(0x7f00000002c0)="$eJzs3Au0TlX3MPA511qb4+TyJLnvuebmSS6LJAklySVJkpA7CUmSJEnikFsSkpDrSXIPuZN03O+X3JNOXkmShIQk6xuny+ffe/l73/fr/+n/nvkbY4+z5rP3XHuuM8dznr33GOf5usvQqg2qVarLzPDv0L8N8JcfSQCQAAADACAbAAQAUDp76exp+zNpTPq3TiL+h9SbfrUrEFeT9D99k/6nb9L/9E36n75J/9M36X/6Jv1P36T/QqRrM/NcK1v63eT5//9y6v8lWT7/0wX8Rzuk//9p9L90tPQ/fZP+p2/S//RN+p+eBVe7AHGVyfs/fZP+C5Gu/eHPlDeev9rPtGX7FzYhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEOL/g/P+MgMAv42vdl1CCCGEEEIIIYT44/j3rnYFQgghhBBCCCGE+J+HoECDgQAyQEZIgEyQCNdAZsgCWSEbxOBayA7XQQ64HnJCLsgNeSAv5IP8EAKBBYYICkBBiMMNUAhuhMJQBIpCMXBQHErATVASboZScAuUhluhDNwGZaHcz+dMcydUhLugEtwNlaEKVIVqcA9Uh3uhBtwHNeF+qAUPQG14EOrAQ1AX6kF9eBgaQENoBI2hCTSFZtAcWlwhPznb38t/AbrDi9ADekIS9ILe8BL0gb7QD/rDAHgZBsIrMAhehcEwBIbCazAMXofh8AaMgJEwCt6E0TAGxsI4GA8TIBnegonwNkyCdxpmgSkwFabBdJgBM+FdmAWzYQ68B3NhHsyH5EwLYREshiWwFN6HZfABLIcPIQVWwEpYBathDayFdbAeNsBG2ASbYQtshW2wHT6CHbATdsFu2AN7YR98DPvhEzgAn0IqfvYv5p/7fT50RUBAhQoNGsyAGTABEzAREzEzZsasmBVjGMPsmB1zYA7MiTkxN+bGJMyL+TE/EhIyMhbAAhjHOBbCQlgYC2NRLIoOHZbAElgSb8ZSWApLY2ksg2WwLJbDcng73o4VsAJWxIpYCSthZayMVbEq3oP34L1YA2tgTayJtbAW1sbaWAfrYF2si/WxPjbABtgIG2ETbILNsBm2wBbYEltiK2yFbbANtsW22A7bYXtsjx2wA3bEjtgJO2Fn7IxdsAt2xefxeXwBX8AX8UXsiZVVL+yNvbEP9sF+2B/748s4EF/BV/BVHIxDcCi+hq/h6zgcz+IIHImjcBRWUGNwLI5DVhMwGZMxI0zESTgJJ+MUnILTcDrOwJk4E2fhbJyN7+FcnIfzcAEuwEW4GBfrtDfAMlyGy/EcpuAKXImrcDWuwdW4DtfjOtyIm3AjbsEtuA234Uf4Ee7Enbgbd+Ne3Isf48f4CX6CgzEVU/EgHsRDeAgP42E8gkfwKB7FY3gMj+NxPIEn8CSewtN4Cs/gGTyL5/A8AFzAC3gRL+IlvJT25ldpjDIqg8qgElSCSlSJKrPKrLKqrCqmYiq7yq5yqBwqp8qpcqvcKq/Kq/Kr/IoUKVaRKqAKqLiKq0KqkCqsCquiqqhyyqkSqoQqqUqqUqqUKq1uVWXUbaqsKqdau9vV7aqCauMqqrtUJVVJVVZVVFVVTVVT1VV1VUPVUDVVTVVL1VK11YOqjuqF/bCeSutMAzUEG6mh2EQ1Vc1Uc/U6PqJaquHYSrVWbdRjaiSOwHaqpWuvnlQd1FjsqJ5W4/AZ1VlNwC7qOdVVPa+6qRdUd9XK9VA91WTspXqradhH9VX9VH81C6uotI5VVa+qFzIOUUPVa2oRvq6GqzfUCDVSjVJvqtFqjBqrxqnxaoJKVm+pieptNUm9oyarKWqqmqamqxlqpnpXzVKz1Rz1npqr5qn5aoFaqBapxWqJWqreV8vUB2q5+lClqBVqpVqlVqs1aq1ap9arDWqj2qQ2qy1qq9qmtquP1A61U+1Su9UetVftUx+r/eoTdUB9qlLVZ+qg+os6pD5Xh9UX6oj6Uh1VX6lj6mt1XH2jTqhv1Ul1Sp1W36kz6nt1Vp1T59UP6oL6UV1UP6lLyivQqJXW2uhAZ9AZdYLOpBP1NTqzzqKz6mw6pq/V2fV1Ooe+XufUuXRuk0fn1fl0fh1q0lazjnQBXVDH9Q26kL5RF9ZFdFFdTDtdXJfQN+mS+mZdSt+iS+tbdRl9my6ry+nyHvQduoK+U1fUd+lK+m5dWVfRVXU1fY+uru/VNfR9uqa+X9fSD+ja+kFdRz+k6+p6ur5+WDfQDXUj3Vg30U11M91ct9CP6Jb6Ud1Kt9Zt9GO6rX5ct9NP6Pb6Sd1BP6U76qd1J/2M7qyf1V30c7qrfl530z/pS9rrHrqnTtK9dG/9ku6j++p+ur8eoF/WA/UrepB+VQ/WQ/RQ/Zoepl/Xw/UbeoQeqUfpN/VoPUaP1eP0eD1BJ+u39ET9tp6k39GT9RQ9VU/T0/UM3e/Xmeb8E/lv/538QT+ffZverj/SO/ROvUvv1nv0Xr1P79P79X59QB/QqTpVH9QH9SF9SB/Wh/URfUQf1Uf1MX1MH9fH9Ql9Qp/Up/QP+jt9Rn+vz+pz+pz+QV/QF/TFX38HYNAoo40xgclgMpoEk8kkmmtMZpPFZDXZTMxca7Kb60wOc73JaXKZ3CaPyWvymfwmNGSsYROZAqagiZsbTCFzoylsipiixoMzxU0Jc9O/mV/M/JZ/pfpamBampWlpWplWpo1pY9qatqadaWfam/amg+lgOpqOppPpZDqbzqaL6WK6mq6mm+lmupvupofpYZJMkultXjJ9TF/Tz/Q3AwDMQDPQDDKDzGAz2Axd8pQZZoaZ4Wa4GWFGmFFmlBltRpuxZqwZb8abZJ/NTDQTzSQzyUw2k83UAdnMdDPdzDQzzSwzy8wxc8xcM9fMN/PNQrPQLDaLzVKz1Cwzy8xys9ykmBVmhVllVpk1Zo1ZZ9aZDWaD2WQ2mS1mi0kx2812s8PsMLvMLrPH7DH7zD6z3+w3B8wBk2pSzUFz0Bwyh8xhc9gcMUfMUXPUHDPHzHFz3JwwJ8xJc9KcNqfNGXPGnDVnzXlz3lwwF8xFc9FcMpfSLvsCFajABCbIEGQIEoKEIDFIDDIHmYOsQdYgFsSC7EH2IEdwfZAzyBXkDvIEeYN8Qf4gDCiwAQdRUCAoGMSDG4JCwY1B4aBIUDQoFrigeFAiuCkoGdwclApuCUoHtwZlgtuCskG5oHxwe3BHUCG4M6gY3BVUCu4OKgdVgqpBteCeoHpwb1AjuC+oGdwf1AoeCGoHDwZ1goeCukG9oH7wcNAgaBg0ChoHTYKmQbOgedDiD53f+7O5HnU9wp5hUtgr7B2+FPYJ+4b9wv7hgPDlcGD4SjgofDUcHA4Jh4avhcPC18Ph4RvhiHBkOCp8MxwdjgnHhuPC8eGEMDl8K5wYvh1OCt8JJ4dTwqnBtHB6OCOcGb4bzgpnh3PC98K54bxwfrggXBguCvGXS2JYFn4QLg8/DFPCFeHKcFW4OlwTrg3XhevDDeHGcFO4OdxSeuAvh4Y7wp3hrnB3uCfcG+4LPw73h5+EB8JPw9Tws/Bg+JfwUPh5eDj8IjwSfhkeDb8Kj4Vfh8fDb8IT4bfhyfBUeDr8LjwTfh+eDc+F58Mfwgvhj+HF8KfwUujTLu7TPt7JkKEMlIESKIESKZEyU2bKSlkpRjHKTtkpB+WgnJSTclNuykt5KT/lpzRMTAWoAMUpToWoEBWmwlSUipIjRyWoBJWkklSKSlFpKk1lqAyVpbJUnsrTHXQH3Ul30l10F91Nd1MVqkLVqBpVp+pUg2pQTapJtagW1abaVIfqUF2qS/WpPjWgBtSIGlETakLNqBm1oBbUklpSK2pFbagNtaW21I7aUXtqTx2oA3WkjtSJOlFn6kxdqAt1pa7UjbpRd+pOPagHJVES9abe1If6UD/qRwNoAA2kgTSIBtFgGkxDaSgNo2E0nIbTCBpJo+hNGk1jaCyNo/E0gZIpmSbSRJpEk2gyTaapNJWm03SaSTNpFs2iOTSH5tJcmk/zaSEtpMW0mJbSUlpGy2g5LacUSqGVtJJW02paS2tpPa2njbSRNtNm2kpbaTttpx20g3bRLtpDe2gf7aP9tJ8O0AFKpVQ6SAfpEB2iw3SYjtAROkpH6Rgdo+N0nE7QCTpJJ+k0naYzdIbO0lk6T+fpAv1IF+knukSeEmwmm2ivsZltFpvVZrN/Hee2eWxem8/mt6HNaXP9LiZrbWFbxBa1xayzxW0Je9PfxGVtOVve3m7vsBXsnbaiLWszwX+Nq9t7bQ17n61p77fV7D2/i2vZB2xt29DWsY1tXdvU1rfNbQPb0DayjW0T29Q2s81tW/u4bWefsO3tk7aDfepv4qX2fbvebrAb7Sa7335iz9sf7DH7tb1gf7Q9bE87wL5sB9pX7CD7qh1sh/w+BrCj7Jt2tB1jx9pxdryd8DfxVDvNTrcz7Ez7rp1lZ/9NvNgusXPtMjvfLrAL7aKf47SaltkP7HL7oU2xK+xKu8qutmvsWrvu/9a6ym6xW+02u89+bHfYnXaX3W332L0/x2nrOGA/tan2M3vUfmUP2c/tYXvcHrFf/hynre+4/caesN/ak/aUPW2/s2fs9/asPffz+tPW/p39yV6y3gIjK9ZsOOAMnJETOBMn8jWcmbNwVs7GMb6Ws/N1nIOv55yci3NzHs7L+Tg/h0xsmTniAlyQ43wDF+IbuTAX4aJcjB0X5xJ8E5fkm7kU38Kl+VYuw7dxWS7H5fl2voMr8J1cke/iSnw3V+YqXJWr8T1cne/lGnwf1+T7uRY/wLX5Qa7DD3Fdrsf1+WFuwA25ETfmJtyUm3FzbsGPcEt+lFtxa27Dj3Fbfpzb8RPcnp/kDvwUd+SnuRM/w535We7Cz3FXfp678QvcnV/kHtyTk7gX9+aXuA/35X7cnwfwyzyQX+FB/CoP5iE8lF/jYfw6D+c3eASP5FH8Jo/mMTyWx/F4nsDJ/BZP5Ld5Er/Dk3kKT+VpPJ1n8Ex+l2fxbJ7D7/FcnsfzeQEv5EW8mJfwUn6fl/EHvJw/5BRewSt5Fa/mNbyW1/F63sAbeRNv5i28lbfxdv6Id/BO3sW7eQ/v5X38Me/nT/gAf8qp/Bkf5L/wIf6cD/MXfIS/5KP8FR/jr/k4f8Mn+Fs+yaf4NH/HZ/h7Psvn+Dz/wBf4R77IP/El9gwRRirSkYmCKEOUMUqIMkWJ0TVR5ihLlDXKFsWia6Ps0XVRjuj6KGeUK8od5YnyRvmi/FEYUWQjjqKoQFQwikc3RIWiG6PCUZGoaFQsclHxqER0U1QyujkqFd0SlY5ujcpEt0Vlo3JR+ej26I6oQnRnVDG6K6oU3R1VjqpEVaNq0T1R9ejeqEZ0X1Qzuj8qFT0Q1Y4ejOpED0V1o3pR/ejhqEHUMGoUNY6aRE2jZlHzqEX0SNQyejRqFbWO2kSPRW2jx6N20RNR++jJqEP01OX9RYJfPk3/an9S1CvSvz4hu08vjC+KL44viS+Nvx9v2OWXV1PiK+Ir46viq+Nr4mvj6+Lr4xviG+Ob4pvjW+Jb49vi3lfLCA7TboTBuMBlcBldgsvkEt01LrPL4rK6bC7mrnXZ3XUuh7ve5XS5XG6Xx+V1+Vx+Fzpy1rGLXAFX0MXdDa6Qu9EVdkVcUVfMOVfclXDNXQvXwrV0j7pWrrVr4x5zj7nH3ePuiYRfC3cd3dOuk3vGdXbPumfdc66re951cy+47u5F18P1dEkuyfV2vV0f18f1c/3cADfADXQD3SA3yA12g91QN9QNc8PccDfcjXAj3Cg3yo12o91YN9aNd+Ndskt2E91EN8lNcpPdZDfVTXXT3XQ30810s9wsN8fNcXPdXDffzXcL3UK32C12S91St8wtc8vdcpfiUtxKt9KtdqvdWrfWrXfr3Ua30W12m91Wt9Vtd9vdDrfD7XK73B63x+1z+9x+t98dcAdcqkt1B91Bd8gdcofdF+6I+9IddV+5Y+5rd9x94064b91Jd8qddl6fcd+7s+6cO+9+cBfcj+6i+8ldct4lx96KTYy9HZsUeyc2OTYlNjU2LTY9NiM2M/ZubFZsdmxO7L3Y3Ni82PzYgtjC2KLY4tiS2NLY+7FlsQ9iy2MfxlJiK2IrY6tiq2NrYt7n2xH5Ar6gj/sbfCF/oy/si/iivph3vrgv4W/yJf3NvpS/xZf2t/oy/jZf1pfz5X1j38Q39c18c9/CP+Jb+kd9K9/at/GP+bb+cd/OP+Hb+yd9B/+U7+if9p38M76zf9Z38c/N+7XLvrt/0ffwPX2S7+V7+5d8H9/X9/P9/QD/sh/oX/GD/Kt+sB/ih/rX/DD/uh/u3/Aj/Eg/yr/pR/sxfqwf58f7CT7Zv+Un+rf9JP+On+yn+Kl+mp/uZ/iZ/l0/y8/2c/x7fq6f5+f7BX6hX+QX+yV+qX/fL/Mf+OX+Q5/iV/iVfpVf7df4tX6dX+83+I1+k9/st/itfpvf7j/yO/xOv8vv9nv8Xr/Pf+z3+0/8Af+pT/Wf+YP+L/6Q/9wf9l/4I/5Lf9R/5Y/5r/1x/40/4b/1J/0pf9p/58/47/1Zf86f9z/4C/5Hf9H/5C/J/6wJIYQQQvxT9BX29/o7r6lftzS9ASDLzjxH/nrOzTl/GfdV+zvEAODJnl3q/bbVq5eUlPTrsSkagoILACB2Of/n7x/4NV4BbeBxaA+toeTfra+vKv/zdd9/N3/8VoBEgEy/5aTdHiXCX89/8z+Yv/ESvtL8CwAKF7yck3ai3+LL85f6B/PvbXuF+TN9ngzQ6r/kZIbL8eX5S8Cj8BS0/92RQgghhBBCCCHEL/qqC12vdH+bdn+e11zOyQiX4yvdn19BxT9iDUIIIYQQQgghhPjvPfN8tycead++daf/5EHGP0cZf4IBAsCfoAwZ/PkHV/svkxBCCCGEEOKPdvmi/2pXIoQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCpF///jeEqX/64Ku9RiGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEOJq+z8BAAD//1zoUn8=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0xffa1, 0x2007bb})
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc2604110, 0x0)

7.288770891s ago: executing program 3 (id=627):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)='\x00', 0x1}], 0x1}, 0x4048043)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x5}}, 0x20)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x2, 0x10}, 0xc)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x13f, 0x8}}, 0x20)

6.822708282s ago: executing program 0 (id=628):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='mnt/encrypted_dir\x00', 0x120)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc7104133aadc6813)
madvise(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x15)
read$FUSE(0xffffffffffffffff, &(0x7f0000003380)={0x2020}, 0x2020)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = dup(r3)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty}], 0x1c)
sendmsg$inet6(r3, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r5 = dup(r3)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0x1, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xeffffff2, @empty, 0x5}}, 0x10001fc, 0x6, 0xffff1896, 0x3, 0x26, 0xffffffb9, 0x1a}, 0x9c)
semop(0x0, 0x0, 0x0)

6.737365949s ago: executing program 2 (id=629):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socket$rxrpc(0x21, 0x2, 0x2)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
io_uring_setup(0x1148, &(0x7f0000000300)={0x0, 0xc95e, 0x80, 0x2, 0x30f})
syz_open_procfs(0x0, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})

5.365074002s ago: executing program 7 (id=630):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x60b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xc8, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

5.247110614s ago: executing program 3 (id=631):
socket(0x23, 0x1, 0x0)
r0 = socket(0x28, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x9b00})

4.844304839s ago: executing program 1 (id=632):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000003740)={0x0, 0x0, &(0x7f0000003700)={&(0x7f0000000480)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fddbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="38003300c0100000ffffffffffff"], 0x54}, 0x1, 0x0, 0x0, 0x20040080}, 0x28008004)

3.854933388s ago: executing program 0 (id=633):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x42}}, 0x801}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$FOU_CMD_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x4000041)
recvmmsg(r1, &(0x7f0000007680), 0x0, 0x40000041, 0x0)
recvmmsg(r0, &(0x7f0000001800)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x20061, 0x0)

3.763066166s ago: executing program 3 (id=634):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

3.429594409s ago: executing program 1 (id=635):
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x8]}, 0x8, 0x800)
r0 = syz_usb_connect(0x0, 0x36, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000080)=ANY=[])

3.06547575s ago: executing program 3 (id=636):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x102, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x2, 0x12)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xffffffed, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x6}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, 0x0, {0x0, 0xd}, {0xb, 0xb}, {0xa, 0xb}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x9}, @TCA_FQ_CE_THRESHOLD={0x8, 0xc, 0x9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x2001c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

2.754906132s ago: executing program 2 (id=637):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44000}, 0x0)

2.623427981s ago: executing program 7 (id=638):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0x1, 0x0)
vmsplice(r3, 0x0, 0x0, 0x0)
vmsplice(r4, &(0x7f0000000540)=[{&(0x7f0000000100)="9d", 0x1}], 0x1, 0x8)

2.507042809s ago: executing program 0 (id=639):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_khugepaged_scan_pmd\x00', r1}, 0x18)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

2.327196938s ago: executing program 1 (id=640):
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)
syz_pidfd_open(0x0, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f29, 0x0, 0xc139, 0x4, 0x5, 0xafa0, 0x0, 0x4, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x9, 0x6, 0x101, 0xfffffffe, 0xffff, 0x3, 0x40000003, 0x89, 0xcaa3, 0x1000, 0x20001e5b, 0x8000003, 0xe69, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]})
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x40000000000000, 0x88}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
setpgid(0x0, r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r2, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000003700)}}], 0x1, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0800019e1c000000"], 0x20}}, 0x0)
mount$afs(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x88, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x800000000000001)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a00000004000000dd0000000a0000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00004eae000000000000000000000000000000000000000000000000417643f1dcf055ebfb4e7e91b566fc60a1136453171e4c8d895307cc65dc4f7fb3987ea51c9b5b5928ff34f3"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.189563077s ago: executing program 2 (id=641):
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
openat$dir(0xffffffffffffff9c, 0x0, 0x42, 0x90)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2401, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r1 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0x43403d0e, &(0x7f0000000040))

1.988542626s ago: executing program 3 (id=642):
r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioprio_set$pid(0xe0270c24413e9fe9, r2, 0x4007)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, &(0x7f00000001c0))
clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000100)={0x77359400}, 0x0)
rt_sigqueueinfo(0x0, 0x21, 0x0)
preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/12, 0xc}], 0x1, 0x86, 0x3)

1.669101322s ago: executing program 0 (id=643):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18418, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4b1, &(0x7f0000001d00)="$eJzs201sVNUbx/HfM3c6TIf+/5YXCxgCTTSxgkBfsEBqYnix0YQXLVQj8SWVTrHSdkinKCUgLNWdC5Yu3bpwZdwaEpfGhcEYFibIxs2sxB3m3LlvM5TOjG1nKP1+CJx7zzx3OOc8c+ecM5kRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQjrx6uLfPWt0KAADQTCdPj/QOMP8DALCmnGH/DwAAsJaYPP0u054LJTvhn5dlj0/OXLo8emx44cvaTaaUPD/e/c329Q/sf2nwwMGwXPz65bZNp06fOdx9tDB9cTZfLObHu0dnJs8VxvN1P8NSr6+2yx+A7ukLl8YnJord/XsHKh6+3Hlv3fquzqHB945mwtjRY8PDpxMx6bb//L8/5FEr/Iw8vSDTx99/ayclpbT0sajx2llp7X4ndvmdGD027HdkanJsZs49aKkgKlU5JplwjJqQiyVJSa5dllmePVubPP0g05F9JTslyQvHYbf/wXBd7WmFtNu6SurRKsjZY2ydPH0g0619nXojGFc//xnpaqsbhxWXDu7/gpXsTf/9wN1P7m3z+Fvdr89MFBKxlgruqNU+PzTTY/7elJWnU/4dX7IR7Wx1c9Bk7fI0LVPmq0/8dYX8delTQwd27DyUXGFsqfE8LnZvcHPVMye3BUsHS7k/y98v1Cdrnv6U6f5vWf+8J5wDpBsPFrvwj6Y0DyvNPE3J9M+1klnVvtRL7O8jq33uX9n2t2ePFi7Oz06e/2huwcdz2cMfFudmx84t/HB57+ola2rtY6ulGtuS5ay84/v801J0XbAH+F/5LG7NN1fj10JPVRlKvn7qOa57F9vAOsq1yczTXZkm3t9anmeUa3hs1gKX/2GZiqWfLcx0kP90+SyR/5fj8ctaZRnxc/v/8uda4Vpi29nNj6pfify7Nrn8vyPTkb+3Bp9plPPvVcW6uC6Z3r25PYhLZVxcOuxO+RknJqfyvS72gUwbfwpj5cfmgthNcWyfiy3K9MWtytj1QezmOLbfxd6W6c6vC8c+HccOuNh5l6873WFszsXuCGK74ti95wpT47WG1eW/X6a3r79mYZ8fmf/E/X+jqow8lPPFj5cr/52JuhtBXs8G+U/XyP+XMs3/tT3stz/24ctqg/9vnH+3Vv7uZmVsuKHcGMf21dutVnP53yDTvVduR30O+hacxhlK5v+ZdGUZjWuL8r8hUdcZtCvT4FisRcX5KxfGpqbysxxwwAEH0UGr35nQDG7+H3Gz+qBn4TommP87ymfxiun+Z/H8P1RVRlo0/29M1A0Fq5a2tJSdm77YtkXKFuev7JmcHjufP5+fGdg/2Nt/aH/vwMG2TLi4i4/qHrsngcv/bpmu/fhLtI+pXP8tvP7PVZWRFuV/U7JPFeuauodiTXL575Bp8O7taL+52Po/3P/3PFtZRvdfi/K/OVHXGbSro8GxAAAAAAAAAAAAAAAAAIDVJGeenpPp8siLFv6GqJ7v/41XlZHl//5X+YfJNb7/1ZWoG2/S7xoaGmgAAAAAAAAAAIAmScnT1zI9r5JddxUd0olkiSfavwEAAP//G6xIAA==")
setrlimit(0x1, &(0x7f0000000140)={0xfffffffffffffffb, 0xffffffffffffffff})
truncate(&(0x7f0000000100)='./file1\x00', 0x20fdfffffe)
truncate(&(0x7f0000000000)='./file2\x00', 0xfe)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f003)

1.586803977s ago: executing program 2 (id=644):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
munmap(&(0x7f0000006000/0x4000)=nil, 0x4000)
mkdir(0x0, 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
io_setup(0x5ff, &(0x7f0000000400)=<r2=>0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), 0x8)
io_submit(r2, 0x1ffffff0, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xffffff20}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

1.233585117s ago: executing program 7 (id=645):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000003740)={0x0, 0x0, &(0x7f0000003700)={&(0x7f0000000480)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fddbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="38003300c0100000ffffffffffff"], 0x54}, 0x1, 0x0, 0x0, 0x20040080}, 0x28008004)

947.196096ms ago: executing program 1 (id=646):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfd, 0x0, 0x0, 0xff}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000000240))
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000540), 0x4)

707.011352ms ago: executing program 0 (id=647):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(0x0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x18d, &(0x7f00000001c0)="$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")
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockname(r0, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000180)=""/49, 0x2d)
getdents(r1, 0xfffffffffffffffd, 0x58)

539.385554ms ago: executing program 7 (id=648):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x44004)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801, 0x1303}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}]}}}]}, 0x3c}}, 0x0)

369.12859ms ago: executing program 3 (id=649):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0x11, 0x6e4, &(0x7f0000000d00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

146.902171ms ago: executing program 1 (id=650):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, 0x0, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

0s ago: executing program 2 (id=651):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x42}}, 0x801}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$FOU_CMD_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x4000041)
recvmmsg(r1, &(0x7f0000007680), 0x0, 0x40000041, 0x0)
recvmmsg(r0, &(0x7f0000001800)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x20061, 0x0)

kernel console output (not intermixed with test programs):

003e syscall=257 compat=0 ip=0x7f7cb3b8d710 code=0x7ffc0000
[  337.079269][   T30] audit: type=1326 audit(1758825007.203:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.0.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb3b8eec9 code=0x7ffc0000
[  338.283930][ T6677] 8021q: adding VLAN 0 to HW filter on device batadv0
[  339.329471][ T6861] loop9: detected capacity change from 0 to 128
[  339.665249][ T6861] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  339.741092][ T6861] ext4 filesystem being mounted at /0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  342.354366][ T6874] loop7: detected capacity change from 0 to 40427
[  342.432963][ T6874] F2FS-fs (loop7): Wrong SSA boundary, start(3584) end(4096) blocks(0)
[  342.441522][ T6874] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  342.493128][ T6874] F2FS-fs (loop7): build fault injection type: 0x6
[  342.508277][ T6874] F2FS-fs (loop7): invalid crc value
[  342.638164][ T6677] veth0_vlan: entered promiscuous mode
[  342.774530][ T6874] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  342.787899][ T6874] F2FS-fs (loop7): Start checkpoint disabled!
[  342.820367][ T6874] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  342.827721][ T6874] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  342.845002][ T6521] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  342.918030][ T6677] veth1_vlan: entered promiscuous mode
[  343.322480][ T6677] veth0_macvtap: entered promiscuous mode
[  343.439985][ T6677] veth1_macvtap: entered promiscuous mode
[  343.689435][ T6677] batman_adv: batadv0: Interface activated: batadv_slave_0
[  344.229367][ T6677] batman_adv: batadv0: Interface activated: batadv_slave_1
[  345.230960][ T3667] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  345.260280][ T3667] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  345.280548][ T3667] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  345.706284][ T3667] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  346.461498][ T6899] loop8: detected capacity change from 0 to 512
[  346.794612][ T6899] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  347.382041][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  347.392058][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  347.683771][ T6917] overlayfs: failed to clone upperpath
[  349.848265][ T6387] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.556751][ T6947] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  351.565101][ T6947] batadv_slave_0: entered promiscuous mode
[  357.999155][ T6985] overlayfs: overlapping lowerdir path
[  359.732271][ T6990] loop9: detected capacity change from 0 to 128
[  361.341833][ T7005] netlink: 4 bytes leftover after parsing attributes in process `syz.7.179'.
[  365.443637][ T5816] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  365.455581][ T5816] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  365.480410][ T5816] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  365.504408][ T5816] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  365.524354][ T5816] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  366.694675][ T7050] loop9: detected capacity change from 0 to 128
[  367.375248][ T7031] chnl_net:caif_netlink_parms(): no params data found
[  367.622818][ T5816] Bluetooth: hci4: command tx timeout
[  368.080568][ T4688] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.312918][ T4688] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.574477][ T4688] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.744015][ T4688] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  369.262704][ T7031] bridge0: port 1(bridge_slave_0) entered blocking state
[  369.270483][ T7031] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.278006][ T7031] bridge_slave_0: entered allmulticast mode
[  369.286885][ T7031] bridge_slave_0: entered promiscuous mode
[  369.599379][ T7031] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.613262][ T7031] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.620963][ T7031] bridge_slave_1: entered allmulticast mode
[  369.629422][ T7031] bridge_slave_1: entered promiscuous mode
[  369.659769][ T4688] bridge_slave_1: left allmulticast mode
[  369.665725][ T4688] bridge_slave_1: left promiscuous mode
[  369.672522][ T4688] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.687351][ T5816] Bluetooth: hci4: command tx timeout
[  369.698292][ T4688] bridge_slave_0: left allmulticast mode
[  369.704319][ T4688] bridge_slave_0: left promiscuous mode
[  369.713241][ T4688] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.090812][ T4688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  371.175758][ T4688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  371.203855][ T4688] bond0 (unregistering): Released all slaves
[  371.749938][ T5816] Bluetooth: hci4: command tx timeout
[  371.762210][ T4688] hsr_slave_0: left promiscuous mode
[  371.839252][ T4688] hsr_slave_1: left promiscuous mode
[  371.847066][ T4688] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  371.854814][ T4688] batman_adv: batadv0: Removing interface: batadv_slave_0
[  371.992973][ T4688] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  372.001336][ T4688] batman_adv: batadv0: Removing interface: batadv_slave_1
[  372.144744][ T4688] veth1_macvtap: left promiscuous mode
[  372.150747][ T4688] veth0_macvtap: left promiscuous mode
[  372.156590][ T4688] veth1_vlan: left promiscuous mode
[  372.162278][ T4688] veth0_vlan: left promiscuous mode
[  372.274071][ T7094] mmap: syz.7.201 (7094) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  372.687628][ T7098] fuse: Bad value for 'fd'
[  373.495282][ T4688] team0 (unregistering): Port device team_slave_1 removed
[  373.532417][ T4688] team0 (unregistering): Port device team_slave_0 removed
[  373.689680][ T7031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  373.782360][ T7031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  373.879246][ T5816] Bluetooth: hci4: command tx timeout
[  374.058005][ T7031] team0: Port device team_slave_0 added
[  374.157790][ T7031] team0: Port device team_slave_1 added
[  374.527412][ T7031] batman_adv: batadv0: Adding interface: batadv_slave_0
[  374.536296][ T7031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  374.562881][ T7031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  374.774495][ T4688] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.871977][ T7031] batman_adv: batadv0: Adding interface: batadv_slave_1
[  374.879442][ T7031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  374.906165][ T7031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  375.013506][ T4688] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.197894][ T4688] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.425789][ T4688] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.761593][ T7031] hsr_slave_0: entered promiscuous mode
[  375.771532][ T7031] hsr_slave_1: entered promiscuous mode
[  375.922568][ T7124] loop7: detected capacity change from 0 to 2048
[  376.081988][ T7128] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  376.102810][ T7124] NILFS error (device loop7): nilfs_lookup: deleted inode referenced: 12
[  376.179699][ T7124] Remounting filesystem read-only
[  376.430382][ T4688] bridge_slave_1: left allmulticast mode
[  376.436239][ T4688] bridge_slave_1: left promiscuous mode
[  376.442932][ T4688] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.532763][ T4688] bridge_slave_0: left allmulticast mode
[  376.539229][ T4688] bridge_slave_0: left promiscuous mode
[  376.545742][ T4688] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.156888][ T4688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.181662][ T4688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.211696][ T4688] bond0 (unregistering): Released all slaves
[  377.754784][ T7140] loop7: detected capacity change from 0 to 128
[  377.910965][ T4688] hsr_slave_0: left promiscuous mode
[  377.941773][ T4688] hsr_slave_1: left promiscuous mode
[  377.951171][ T4688] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  377.958795][ T4688] batman_adv: batadv0: Removing interface: batadv_slave_0
[  377.991802][ T4688] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  377.999570][ T4688] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.139328][ T4688] veth1_macvtap: left promiscuous mode
[  378.145142][ T4688] veth0_macvtap: left promiscuous mode
[  378.151171][ T4688] veth1_vlan: left promiscuous mode
[  378.156677][ T4688] veth0_vlan: left promiscuous mode
[  378.220791][ T7144] fuse: Bad value for 'fd'
[  378.804144][ T5823] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  378.826623][ T5823] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  378.840597][ T5823] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  378.909000][ T5823] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  379.081058][ T5823] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  379.280433][ T4688] team0 (unregistering): Port device team_slave_1 removed
[  379.307186][ T4688] team0 (unregistering): Port device team_slave_0 removed
[  379.520419][ T7158] netlink: 4 bytes leftover after parsing attributes in process `syz.9.216'.
[  379.703523][ T7157] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  380.148662][ T5823] Bluetooth: hci6: command 0x0406 tx timeout
[  380.541465][ T7165] loop9: detected capacity change from 0 to 2048
[  380.719266][ T7173] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  380.822978][ T7165] NILFS error (device loop9): nilfs_lookup: deleted inode referenced: 12
[  380.866463][ T7165] Remounting filesystem read-only
[  381.165879][ T7031] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  381.268954][ T5816] Bluetooth: hci1: command tx timeout
[  381.293332][ T7031] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  381.443596][ T7031] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  381.537846][ T7031] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  381.575659][ T7183] fuse: Bad value for 'fd'
[  381.575980][ T7151] chnl_net:caif_netlink_parms(): no params data found
[  382.469811][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.9.226'.
[  382.536924][ T7199] warning: `syz.9.226' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  382.748749][ T7031] 8021q: adding VLAN 0 to HW filter on device bond0
[  382.911221][ T7031] 8021q: adding VLAN 0 to HW filter on device team0
[  382.997323][ T3970] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.004928][ T3970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.080861][ T7207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.227'.
[  383.176304][ T3970] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.183941][ T3970] bridge0: port 2(bridge_slave_1) entered forwarding state
[  383.349526][ T5816] Bluetooth: hci1: command tx timeout
[  383.645415][ T7151] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.653193][ T7151] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.661028][ T7151] bridge_slave_0: entered allmulticast mode
[  383.670284][ T7151] bridge_slave_0: entered promiscuous mode
[  383.751355][ T7031] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  383.839439][ T7151] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.847665][ T7151] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.855560][ T7151] bridge_slave_1: entered allmulticast mode
[  383.865244][ T7151] bridge_slave_1: entered promiscuous mode
[  384.522667][ T7151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.565373][ T7225] loop9: detected capacity change from 0 to 2048
[  384.630812][ T7151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  384.796562][ T7151] team0: Port device team_slave_0 added
[  384.815205][ T7151] team0: Port device team_slave_1 added
[  384.874221][ T7233] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  385.355175][ T7151] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.363732][ T7151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.391898][ T7151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  385.432053][ T5816] Bluetooth: hci1: command tx timeout
[  385.504885][ T7151] batman_adv: batadv0: Adding interface: batadv_slave_1
[  385.512221][ T7151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.541133][ T7151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  386.230233][ T7151] hsr_slave_0: entered promiscuous mode
[  386.240589][ T7151] hsr_slave_1: entered promiscuous mode
[  386.249284][ T7151] debugfs: 'hsr0' already exists in 'hsr'
[  386.255165][ T7151] Cannot create hsr debugfs directory
[  386.304171][ T7031] 8021q: adding VLAN 0 to HW filter on device batadv0
[  387.009696][ T7031] veth0_vlan: entered promiscuous mode
[  387.242605][ T7031] veth1_vlan: entered promiscuous mode
[  387.513329][ T5816] Bluetooth: hci1: command tx timeout
[  387.938287][ T7031] veth0_macvtap: entered promiscuous mode
[  388.170251][ T7031] veth1_macvtap: entered promiscuous mode
[  388.183296][ T7279] loop9: detected capacity change from 0 to 2048
[  388.370377][ T7284] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  388.408730][ T7151] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  388.443930][ T7151] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  388.468565][ T7151] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  388.544061][ T7031] batman_adv: batadv0: Interface activated: batadv_slave_0
[  388.588706][ T7151] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  388.707996][ T7031] batman_adv: batadv0: Interface activated: batadv_slave_1
[  388.785679][ T3970] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  388.818959][ T3970] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  388.888636][ T1889] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  388.924024][ T1889] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  389.850579][ T7151] 8021q: adding VLAN 0 to HW filter on device bond0
[  390.024264][ T7151] 8021q: adding VLAN 0 to HW filter on device team0
[  390.102585][ T3763] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.110154][ T3763] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.269871][ T3763] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.277367][ T3763] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.437776][ T5816] Bluetooth: hci0: unexpected event for opcode 0x0411
[  392.857286][ T7322] loop7: detected capacity change from 0 to 128
[  393.014460][ T7322] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  393.932820][ T5816] Bluetooth: hci3: unexpected event 0x09 length: 4 > 3
[  394.014590][ T7151] 8021q: adding VLAN 0 to HW filter on device batadv0
[  394.882129][ T7151] veth0_vlan: entered promiscuous mode
[  394.971100][ T7342] netlink: 8 bytes leftover after parsing attributes in process `syz.7.258'.
[  395.174003][ T7151] veth1_vlan: entered promiscuous mode
[  395.712461][ T7151] veth0_macvtap: entered promiscuous mode
[  395.870190][ T7151] veth1_macvtap: entered promiscuous mode
[  396.223330][ T7151] batman_adv: batadv0: Interface activated: batadv_slave_0
[  396.399699][ T7151] batman_adv: batadv0: Interface activated: batadv_slave_1
[  396.707829][ T3970] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  396.845241][ T3970] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  396.998744][ T3970] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.007732][ T3970] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.385313][ T7361] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[  400.283510][ T7374] loop7: detected capacity change from 0 to 128
[  400.425331][ T7374] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  403.739903][ T7408] loop9: detected capacity change from 0 to 1024
[  404.136630][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.145199][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.602064][ T7415] overlayfs: failed to clone upperpath
[  404.640565][ T7415] 9pnet_fd: p9_fd_create_unix (7415): problem connecting socket: ./bus/file0: -2
[  404.932486][ T7418] usb usb9: usbfs: process 7418 (syz.9.272) did not claim interface 0 before use
[  405.199288][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.207280][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.991774][ T5816] Bluetooth: hci3: command 0x0406 tx timeout
[  408.533262][ T7433] loop2: detected capacity change from 0 to 16
[  408.549275][ T7434] loop7: detected capacity change from 0 to 128
[  408.633062][ T7433] erofs (device loop2): mounted with root inode @ nid 36.
[  408.713040][ T7434] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  408.864114][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  408.871168][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  413.091840][ T7461] loop2: detected capacity change from 0 to 2048
[  413.270588][ T7461] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  413.379271][ T7461] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  413.387271][ T7461] UDF-fs: Scanning with blocksize 512 failed
[  413.670809][ T7461] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  414.944450][ T3604] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  414.952606][ T3604] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  415.127251][ T3604] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  415.135619][ T3604] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  419.897369][ T7528] fuse: Bad value for 'user_id'
[  419.902800][ T7528] fuse: Bad value for 'user_id'
[  422.569531][ T7557] loop3: detected capacity change from 0 to 512
[  422.667496][ T7557] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  422.704077][ T7557] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  422.731402][ T7557] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.309: corrupted in-inode xattr: e_value size too large
[  422.887567][ T7557] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.309: couldn't read orphan inode 15 (err -117)
[  422.983401][ T7557] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.276212][ T7569] fuse: Bad value for 'fd'
[  425.089390][ T7151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.618088][ T7605] fuse: Bad value for 'fd'
[  428.619500][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  428.819519][    T9] usb 8-1: Using ep0 maxpacket: 16
[  428.855402][    T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  428.866261][    T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  428.877664][    T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  428.887824][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  429.110412][    T9] usb 8-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  429.120211][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.128634][    T9] usb 8-1: Product: syz
[  429.132948][    T9] usb 8-1: Manufacturer: syz
[  429.137696][    T9] usb 8-1: SerialNumber: syz
[  429.371672][    T9] usb 8-1: config 0 descriptor??
[  429.804703][    T9] input: syz syz as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input6
[  429.823149][ T5154] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  429.863705][ T5154] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  429.932081][ T5154] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  430.020349][ T7610] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  430.170274][ T5154] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  430.171842][    T9] usb 8-1: USB disconnect, device number 2
[  431.522254][ T7640] netlink: 'syz.2.335': attribute type 1 has an invalid length.
[  431.530332][ T7640] netlink: 'syz.2.335': attribute type 2 has an invalid length.
[  431.681958][ T7640] netlink: 'syz.2.335': attribute type 1 has an invalid length.
[  431.689927][ T7640] netlink: 'syz.2.335': attribute type 2 has an invalid length.
[  431.769846][ T7644] netlink: 4 bytes leftover after parsing attributes in process `syz.0.336'.
[  432.912469][ T7653] fuse: Bad value for 'fd'
[  436.283338][ T7677] netlink: 'syz.7.348': attribute type 1 has an invalid length.
[  436.291483][ T7677] netlink: 'syz.7.348': attribute type 2 has an invalid length.
[  436.409289][ T7681] netlink: 4 bytes leftover after parsing attributes in process `syz.3.349'.
[  436.706250][ T7684] netlink: 24 bytes leftover after parsing attributes in process `syz.0.350'.
[  437.507036][ T5816] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  437.519974][ T5816] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  437.532760][ T5816] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  437.552440][ T5816] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  437.565916][ T5816] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  438.940632][ T7702] sctp: failed to load transform for md5: -2
[  439.829740][ T5816] Bluetooth: hci2: command tx timeout
[  441.908684][ T5816] Bluetooth: hci2: command tx timeout
[  443.765396][ T7723] netlink: 'syz.7.355': attribute type 13 has an invalid length.
[  443.890947][ T7718] infiniband syz1: set active
[  443.895842][ T7718] infiniband syz1: added bond0
[  444.001223][ T5816] Bluetooth: hci2: command tx timeout
[  444.324903][ T7718] RDS/IB: syz1: added
[  444.329563][ T7718] smc: adding ib device syz1 with port count 1
[  444.335890][ T7718] smc:    ib device syz1 port 1 has pnetid 
[  444.661068][ T7723] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  444.732878][ T7698] chnl_net:caif_netlink_parms(): no params data found
[  446.139961][ T5823] Bluetooth: hci2: command tx timeout
[  447.413580][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.363'.
[  449.011358][ T7698] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.019064][ T7698] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.026773][ T7698] bridge_slave_0: entered allmulticast mode
[  449.202307][ T7698] bridge_slave_0: entered promiscuous mode
[  449.266187][ T7698] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.276494][ T7698] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.284678][ T7698] bridge_slave_1: entered allmulticast mode
[  449.294163][ T7698] bridge_slave_1: entered promiscuous mode
[  449.834788][ T7698] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.967669][ T7698] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  450.356245][ T7783] ------------[ cut here ]------------
[  450.362545][ T7783] WARNING: CPU: 0 PID: 7783 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  450.373166][ T7783] Modules linked in:
[  450.377366][ T7783] CPU: 0 UID: 0 PID: 7783 Comm: syz.3.373 Not tainted syzkaller #0 PREEMPT(none) 
[  450.386540][ T7698] team0: Port device team_slave_0 added
[  450.387304][ T7783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  450.410377][ T7783] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  450.420341][ T7783] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  450.442007][ T7783] RSP: 0018:ffff888060b1f190 EFLAGS: 00010283
[  450.448289][ T7783] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  450.456645][ T7783] RDX: ffffc90008401000 RSI: 0000000000000278 RDI: 0000000000000279
[  450.464911][ T7783] RBP: ffff888060b1f218 R08: ffffea000000000f R09: 0000000000000000
[  450.473183][ T7783] R10: ffff88804e02a0e0 R11: 0000000000000002 R12: 0000000000000000
[  450.481338][ T7783] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  450.489517][ T7783] FS:  00007f452a7526c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  450.498674][ T7783] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  450.507353][ T7783] CR2: 0000555571086808 CR3: 0000000030ba4000 CR4: 00000000003526f0
[  450.516133][ T7783] Call Trace:
[  450.519582][ T7783]  <TASK>
[  450.522605][ T7783]  rate_control_rate_init_all_links+0x60/0x6f0
[  450.529073][ T7783]  sta_apply_auth_flags+0x2a6/0x6e0
[  450.534445][ T7783]  sta_apply_parameters+0x1b18/0x21a0
[  450.540102][ T7783]  ieee80211_add_station+0x72e/0x9f0
[  450.545543][ T7783]  ? __pfx_ieee80211_add_station+0x10/0x10
[  450.551629][ T7783]  rdev_add_station+0x80/0x3d0
[  450.556553][ T7783]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  450.562609][ T7783]  nl80211_new_station+0x360c/0x36d0
[  450.568056][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  450.573495][ T7783]  ? __pfx_nl80211_new_station+0x10/0x10
[  450.579380][ T7783]  genl_family_rcv_msg_doit+0x338/0x3f0
[  450.585073][ T7783]  genl_rcv_msg+0xacf/0xc10
[  450.589832][ T7783]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  450.595336][ T7783]  ? __pfx_nl80211_new_station+0x10/0x10
[  450.601211][ T7783]  ? __pfx_nl80211_post_doit+0x10/0x10
[  450.608983][ T7783]  netlink_rcv_skb+0x54a/0x680
[  450.613910][ T7783]  ? __pfx_genl_rcv_msg+0x10/0x10
[  450.619758][ T7783]  genl_rcv+0x41/0x60
[  450.623846][ T7783]  ? __pfx_genl_rcv+0x10/0x10
[  450.629618][ T7783]  netlink_unicast+0xf01/0x12b0
[  450.634630][ T7783]  netlink_sendmsg+0x10b3/0x1250
[  450.639828][ T7783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.645247][ T7783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.650842][ T7783]  __sock_sendmsg+0x330/0x3d0
[  450.655639][ T7783]  ____sys_sendmsg+0x7e0/0xd80
[  450.660637][ T7783]  ___sys_sendmsg+0x271/0x3b0
[  450.665462][ T7783]  ? __rcu_read_unlock+0x6d/0xd0
[  450.670590][ T7783]  ? __fget_files+0x3b4/0x4a0
[  450.675400][ T7783]  ? __fget_files+0x3b9/0x4a0
[  450.680290][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  450.685520][ T7783]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  450.691524][ T7783]  __x64_sys_sendmsg+0x211/0x3e0
[  450.696620][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  450.701939][ T7783]  x64_sys_call+0x1dfd/0x3e20
[  450.709266][ T7783]  do_syscall_64+0xd9/0x210
[  450.713920][ T7783]  ? irqentry_exit+0x16/0x60
[  450.719373][ T7783]  ? clear_bhb_loop+0x40/0x90
[  450.724173][ T7783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.730279][ T7783] RIP: 0033:0x7f452998eec9
[  450.734793][ T7783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.754616][ T7783] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  450.763264][ T7783] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  450.771413][ T7783] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  450.779594][ T7783] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  450.787647][ T7783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.795798][ T7783] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  450.803960][ T7783]  </TASK>
[  450.807040][ T7783] ---[ end trace 0000000000000000 ]---
[  450.816736][ T7783] ------------[ cut here ]------------
[  450.822900][ T7783] WARNING: CPU: 0 PID: 7783 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  450.832965][ T7783] Modules linked in:
[  450.836985][ T7783] CPU: 0 UID: 0 PID: 7783 Comm: syz.3.373 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  450.848025][ T7783] Tainted: [W]=WARN
[  450.851953][ T7783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  450.862196][ T7783] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  450.868602][ T7783] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  450.888588][ T7783] RSP: 0018:ffff888060b1f2e0 EFLAGS: 00010287
[  450.894861][ T7783] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  450.903547][ T7783] RDX: ffffc90008401000 RSI: 00000000000494ed RDI: 00000000000494ee
[  450.913810][ T7783] RBP: ffff888060b1f368 R08: ffffea000000000f R09: 0000000000000000
[  450.922488][ T7783] R10: ffff88804e02a0e0 R11: ffffffff817f4990 R12: 0000000000000000
[  450.930724][ T7783] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  450.938873][ T7783] FS:  00007f452a7526c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  450.947902][ T7783] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  450.954652][ T7783] CR2: 0000555571086808 CR3: 0000000030ba4000 CR4: 00000000003526f0
[  450.962864][ T7783] Call Trace:
[  450.966337][ T7783]  <TASK>
[  450.969531][ T7783]  rate_control_rate_init_all_links+0x60/0x6f0
[  450.975833][ T7783]  ieee80211_add_station+0x98d/0x9f0
[  450.981367][ T7783]  ? __pfx_ieee80211_add_station+0x10/0x10
[  450.987334][ T7783]  rdev_add_station+0x80/0x3d0
[  450.992369][ T7783]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  450.998315][ T7783]  nl80211_new_station+0x360c/0x36d0
[  451.003898][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  451.009290][ T7783]  ? __pfx_nl80211_new_station+0x10/0x10
[  451.017056][ T7783]  genl_family_rcv_msg_doit+0x338/0x3f0
[  451.023367][ T7783]  genl_rcv_msg+0xacf/0xc10
[  451.027985][ T7783]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  451.035087][ T7783]  ? __pfx_nl80211_new_station+0x10/0x10
[  451.042925][ T7783]  ? __pfx_nl80211_post_doit+0x10/0x10
[  451.048743][ T7783]  netlink_rcv_skb+0x54a/0x680
[  451.053655][ T7783]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.058969][ T7783]  genl_rcv+0x41/0x60
[  451.063044][ T7783]  ? __pfx_genl_rcv+0x10/0x10
[  451.067815][ T7783]  netlink_unicast+0xf01/0x12b0
[  451.072895][ T7783]  netlink_sendmsg+0x10b3/0x1250
[  451.077978][ T7783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.083471][ T7783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.088968][ T7783]  __sock_sendmsg+0x330/0x3d0
[  451.093758][ T7783]  ____sys_sendmsg+0x7e0/0xd80
[  451.098754][ T7783]  ___sys_sendmsg+0x271/0x3b0
[  451.103576][ T7783]  ? __rcu_read_unlock+0x6d/0xd0
[  451.108794][ T7783]  ? __fget_files+0x3b4/0x4a0
[  451.113601][ T7783]  ? __fget_files+0x3b9/0x4a0
[  451.120471][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  451.125711][ T7783]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  451.132288][ T7783]  __x64_sys_sendmsg+0x211/0x3e0
[  451.137376][ T7783]  ? kmsan_get_metadata+0xfb/0x160
[  451.142701][ T7783]  x64_sys_call+0x1dfd/0x3e20
[  451.147514][ T7783]  do_syscall_64+0xd9/0x210
[  451.152216][ T7783]  ? irqentry_exit+0x16/0x60
[  451.156933][ T7783]  ? clear_bhb_loop+0x40/0x90
[  451.161803][ T7783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.167807][ T7783] RIP: 0033:0x7f452998eec9
[  451.172440][ T7783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.192349][ T7783] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.200956][ T7783] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  451.209191][ T7783] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  451.217257][ T7783] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  451.229376][ T7783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.237446][ T7783] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  451.245632][ T7783]  </TASK>
[  451.248793][ T7783] ---[ end trace 0000000000000000 ]---
[  451.346179][ T7698] team0: Port device team_slave_1 added
[  451.696667][ T7795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.376'.
[  451.901711][ T7698] batman_adv: batadv0: Adding interface: batadv_slave_0
[  451.909319][ T7698] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.937967][ T7698] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  452.230678][ T7698] batman_adv: batadv0: Adding interface: batadv_slave_1
[  452.237894][ T7698] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  452.266374][ T7698] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  452.910170][ T7698] hsr_slave_0: entered promiscuous mode
[  452.920614][ T7698] hsr_slave_1: entered promiscuous mode
[  452.929320][ T7698] debugfs: 'hsr0' already exists in 'hsr'
[  452.935214][ T7698] Cannot create hsr debugfs directory
[  453.832587][ T7820] netlink: 'syz.3.385': attribute type 1 has an invalid length.
[  453.843327][ T7820] netlink: 'syz.3.385': attribute type 2 has an invalid length.
[  454.937100][ T7830] netlink: 4 bytes leftover after parsing attributes in process `syz.3.389'.
[  455.213647][ T7826] ------------[ cut here ]------------
[  455.219955][ T7826] WARNING: CPU: 0 PID: 7826 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  455.230230][ T7826] Modules linked in:
[  455.234317][ T7826] CPU: 0 UID: 0 PID: 7826 Comm: syz.0.387 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  455.245541][ T7826] Tainted: [W]=WARN
[  455.249642][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  455.260087][ T7826] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  455.266458][ T7826] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  455.286472][ T7826] RSP: 0018:ffff888060b13190 EFLAGS: 00010283
[  455.292873][ T7826] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  455.301815][ T7826] RDX: ffffc90008802000 RSI: 0000000000000288 RDI: 0000000000000289
[  455.310125][ T7826] RBP: ffff888060b13218 R08: ffffea000000000f R09: 0000000000000000
[  455.320596][ T7826] R10: ffff888109aaa0e0 R11: 0000000000000002 R12: 0000000000000000
[  455.329343][ T7826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  455.337425][ T7826] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  455.346579][ T7826] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  455.353387][ T7826] CR2: 000000110c35dfa9 CR3: 0000000016700000 CR4: 00000000003526f0
[  455.361610][ T7826] Call Trace:
[  455.365039][ T7826]  <TASK>
[  455.368042][ T7826]  rate_control_rate_init_all_links+0x60/0x6f0
[  455.374518][ T7826]  sta_apply_auth_flags+0x2a6/0x6e0
[  455.379996][ T7826]  sta_apply_parameters+0x1b18/0x21a0
[  455.385570][ T7826]  ieee80211_add_station+0x72e/0x9f0
[  455.391237][ T7826]  ? __pfx_ieee80211_add_station+0x10/0x10
[  455.397367][ T7826]  rdev_add_station+0x80/0x3d0
[  455.402378][ T7826]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  455.408321][ T7826]  nl80211_new_station+0x360c/0x36d0
[  455.413953][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.420714][ T7826]  ? __pfx_nl80211_new_station+0x10/0x10
[  455.426510][ T7826]  genl_family_rcv_msg_doit+0x338/0x3f0
[  455.433071][ T7826]  genl_rcv_msg+0xacf/0xc10
[  455.437692][ T7826]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  455.443332][ T7826]  ? __pfx_nl80211_new_station+0x10/0x10
[  455.449291][ T7826]  ? __pfx_nl80211_post_doit+0x10/0x10
[  455.454921][ T7826]  netlink_rcv_skb+0x54a/0x680
[  455.460008][ T7826]  ? __pfx_genl_rcv_msg+0x10/0x10
[  455.465173][ T7826]  genl_rcv+0x41/0x60
[  455.469388][ T7826]  ? __pfx_genl_rcv+0x10/0x10
[  455.474279][ T7826]  netlink_unicast+0xf01/0x12b0
[  455.479385][ T7826]  netlink_sendmsg+0x10b3/0x1250
[  455.484475][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.490011][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.495482][ T7826]  __sock_sendmsg+0x330/0x3d0
[  455.500420][ T7826]  ____sys_sendmsg+0x7e0/0xd80
[  455.505348][ T7826]  ___sys_sendmsg+0x271/0x3b0
[  455.510953][ T7826]  ? __rcu_read_unlock+0x6d/0xd0
[  455.516049][ T7826]  ? __fget_files+0x3b4/0x4a0
[  455.523108][ T7826]  ? __fget_files+0x3b9/0x4a0
[  455.527957][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.533711][ T7826]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  455.539770][ T7826]  __x64_sys_sendmsg+0x211/0x3e0
[  455.544866][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.550213][ T7826]  x64_sys_call+0x1dfd/0x3e20
[  455.555029][ T7826]  do_syscall_64+0xd9/0x210
[  455.559753][ T7826]  ? irqentry_exit+0x16/0x60
[  455.564470][ T7826]  ? clear_bhb_loop+0x40/0x90
[  455.569448][ T7826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.575456][ T7826] RIP: 0033:0x7f7cb3b8eec9
[  455.580199][ T7826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.600048][ T7826] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  455.608777][ T7826] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  455.616875][ T7826] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  455.626468][ T7826] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  455.635131][ T7826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  455.643319][ T7826] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  455.651501][ T7826]  </TASK>
[  455.654578][ T7826] ---[ end trace 0000000000000000 ]---
[  455.662450][ T7826] ------------[ cut here ]------------
[  455.667978][ T7826] WARNING: CPU: 0 PID: 7826 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  455.678107][ T7826] Modules linked in:
[  455.682203][ T7826] CPU: 0 UID: 0 PID: 7826 Comm: syz.0.387 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  455.693270][ T7826] Tainted: [W]=WARN
[  455.697136][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  455.707370][ T7826] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  455.713752][ T7826] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  455.734996][ T7826] RSP: 0018:ffff888060b132e0 EFLAGS: 00010283
[  455.741690][ T7826] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  455.750774][ T7826] RDX: ffffc90008802000 RSI: 0000000000040348 RDI: 0000000000040349
[  455.758941][ T7826] RBP: ffff888060b13368 R08: ffffea000000000f R09: 0000000000000000
[  455.767013][ T7826] R10: ffff888109aaa0e0 R11: ffffffff817f4990 R12: 0000000000000000
[  455.775212][ T7826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  455.783448][ T7826] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  455.792592][ T7826] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  455.799355][ T7826] CR2: 000000110c35dfa9 CR3: 0000000016700000 CR4: 00000000003526f0
[  455.807415][ T7826] Call Trace:
[  455.810915][ T7826]  <TASK>
[  455.813927][ T7826]  rate_control_rate_init_all_links+0x60/0x6f0
[  455.820306][ T7826]  ieee80211_add_station+0x98d/0x9f0
[  455.827714][ T7826]  ? __pfx_ieee80211_add_station+0x10/0x10
[  455.834190][ T7826]  rdev_add_station+0x80/0x3d0
[  455.839157][ T7826]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  455.845101][ T7826]  nl80211_new_station+0x360c/0x36d0
[  455.850655][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.855940][ T7826]  ? __pfx_nl80211_new_station+0x10/0x10
[  455.861810][ T7826]  genl_family_rcv_msg_doit+0x338/0x3f0
[  455.867499][ T7826]  genl_rcv_msg+0xacf/0xc10
[  455.872280][ T7826]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  455.877789][ T7826]  ? __pfx_nl80211_new_station+0x10/0x10
[  455.883688][ T7826]  ? __pfx_nl80211_post_doit+0x10/0x10
[  455.889392][ T7826]  netlink_rcv_skb+0x54a/0x680
[  455.894302][ T7826]  ? __pfx_genl_rcv_msg+0x10/0x10
[  455.899559][ T7826]  genl_rcv+0x41/0x60
[  455.903636][ T7826]  ? __pfx_genl_rcv+0x10/0x10
[  455.908556][ T7826]  netlink_unicast+0xf01/0x12b0
[  455.913558][ T7826]  netlink_sendmsg+0x10b3/0x1250
[  455.918766][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.924183][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.931197][ T7826]  __sock_sendmsg+0x330/0x3d0
[  455.936015][ T7826]  ____sys_sendmsg+0x7e0/0xd80
[  455.941429][ T7826]  ___sys_sendmsg+0x271/0x3b0
[  455.946266][ T7826]  ? __rcu_read_unlock+0x6d/0xd0
[  455.951480][ T7826]  ? __fget_files+0x3b4/0x4a0
[  455.956402][ T7826]  ? __fget_files+0x3b9/0x4a0
[  455.961350][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.966653][ T7826]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  455.972703][ T7826]  __x64_sys_sendmsg+0x211/0x3e0
[  455.977789][ T7826]  ? kmsan_get_metadata+0xfb/0x160
[  455.983170][ T7826]  x64_sys_call+0x1dfd/0x3e20
[  455.987989][ T7826]  do_syscall_64+0xd9/0x210
[  455.992762][ T7826]  ? irqentry_exit+0x16/0x60
[  455.997488][ T7826]  ? clear_bhb_loop+0x40/0x90
[  456.002401][ T7826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.008536][ T7826] RIP: 0033:0x7f7cb3b8eec9
[  456.013040][ T7826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.034319][ T7826] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  456.043376][ T7826] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  456.051631][ T7826] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  456.059798][ T7826] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  456.067856][ T7826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  456.076058][ T7826] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  456.084244][ T7826]  </TASK>
[  456.087323][ T7826] ---[ end trace 0000000000000000 ]---
[  456.626835][ T7698] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  456.786715][ T7698] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  456.906049][ T7698] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  457.005040][ T7840] netlink: 4 bytes leftover after parsing attributes in process `syz.2.392'.
[  457.190342][ T7698] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  458.240859][ T7867] netlink: 'syz.3.398': attribute type 1 has an invalid length.
[  458.253058][ T7867] netlink: 'syz.3.398': attribute type 2 has an invalid length.
[  458.981651][ T7877] syz_tun: entered allmulticast mode
[  459.009905][ T7698] 8021q: adding VLAN 0 to HW filter on device bond0
[  459.082416][ T7877] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  459.215956][ T7873] syz_tun: left allmulticast mode
[  459.298828][ T7698] 8021q: adding VLAN 0 to HW filter on device team0
[  459.405097][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.412558][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  459.548067][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.555596][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  459.576980][ T5870] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  459.788811][ T5870] usb 4-1: Using ep0 maxpacket: 32
[  459.839121][ T5870] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  459.847432][ T5870] usb 4-1: config 0 has no interface number 0
[  459.854882][ T5870] usb 4-1: config 0 interface 12 has no altsetting 0
[  460.062606][ T5870] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  460.072893][ T5870] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.082217][ T5870] usb 4-1: Product: syz
[  460.086478][ T5870] usb 4-1: Manufacturer: syz
[  460.091496][ T5870] usb 4-1: SerialNumber: syz
[  460.240623][ T7885] netlink: 4 bytes leftover after parsing attributes in process `syz.0.403'.
[  460.251847][ T5870] usb 4-1: config 0 descriptor??
[  462.008147][ T5870] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  462.016055][ T5870] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  462.023856][ T5870] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  462.032086][ T5870] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  462.301902][ T5870] usb 4-1: USB disconnect, device number 2
[  462.519386][ T7698] 8021q: adding VLAN 0 to HW filter on device batadv0
[  462.870271][ T7912] netlink: 'syz.0.411': attribute type 1 has an invalid length.
[  462.878094][ T7912] netlink: 'syz.0.411': attribute type 2 has an invalid length.
[  463.347351][ T3763] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.542294][ T3763] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.643323][ T7698] veth0_vlan: entered promiscuous mode
[  463.717088][ T3763] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.768078][ T7926] netlink: 4 bytes leftover after parsing attributes in process `syz.0.414'.
[  463.825525][ T7924] netlink: 'syz.0.414': attribute type 11 has an invalid length.
[  463.930179][ T3763] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.134279][ T7698] veth1_vlan: entered promiscuous mode
[  464.528439][ T7698] veth0_macvtap: entered promiscuous mode
[  464.572612][ T3763] bridge_slave_1: left allmulticast mode
[  464.578561][ T3763] bridge_slave_1: left promiscuous mode
[  464.585134][ T3763] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.720847][ T3763] bridge_slave_0: left allmulticast mode
[  464.726676][ T3763] bridge_slave_0: left promiscuous mode
[  464.736596][ T3763] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.605464][ T3763] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  465.663620][ T3763] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  465.717696][ T3763] bond0 (unregistering): Released all slaves
[  465.830254][ T7698] veth1_macvtap: entered promiscuous mode
[  466.292846][ T7698] batman_adv: batadv0: Interface activated: batadv_slave_0
[  466.499756][ T7698] batman_adv: batadv0: Interface activated: batadv_slave_1
[  466.632419][   T57] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  466.763020][   T57] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  466.856767][   T57] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  466.967435][ T3737] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  467.363586][ T3763] hsr_slave_0: left promiscuous mode
[  467.395991][ T3763] hsr_slave_1: left promiscuous mode
[  467.405526][ T3763] batman_adv: batadv0: Removing interface: batadv_slave_0
[  467.477681][ T3763] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  467.485519][ T3763] batman_adv: batadv0: Removing interface: batadv_slave_1
[  467.649572][ T3763] veth1_macvtap: left promiscuous mode
[  467.655458][ T3763] veth0_macvtap: left promiscuous mode
[  467.661480][ T3763] veth1_vlan: left promiscuous mode
[  467.666992][ T3763] veth0_vlan: left promiscuous mode
[  468.994679][ T3763] team0 (unregistering): Port device team_slave_1 removed
[  469.030300][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  469.067778][ T3763] team0 (unregistering): Port device team_slave_0 removed
[  469.393951][ T7973] ------------[ cut here ]------------
[  469.400098][ T7973] WARNING: CPU: 1 PID: 7973 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  469.410473][ T7973] Modules linked in:
[  469.414600][ T7973] CPU: 1 UID: 0 PID: 7973 Comm: syz.0.428 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  469.425780][ T7973] Tainted: [W]=WARN
[  469.430544][ T7973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  469.440938][ T7973] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  469.449164][ T7973] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  469.470898][ T7973] RSP: 0018:ffff888060b2f190 EFLAGS: 00010287
[  469.477217][ T7973] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  469.485502][ T7973] RDX: ffffc90008802000 RSI: 00000000000002ba RDI: 00000000000002bb
[  469.486402][    T9] usb 4-1: Using ep0 maxpacket: 32
[  469.493755][ T7973] RBP: ffff888060b2f218 R08: ffffea000000000f R09: 0000000000000000
[  469.493859][ T7973] R10: ffff8881461d50e0 R11: 0000000000000002 R12: 0000000000000000
[  469.493948][ T7973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  469.494028][ T7973] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  469.532977][ T7973] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  469.539875][ T7973] CR2: 00007f685fc38286 CR3: 000000001671c000 CR4: 00000000003526f0
[  469.541790][    T9] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  469.549846][ T7973] Call Trace:
[  469.557613][    T9] usb 4-1: config 0 has no interface number 0
[  469.561425][ T7973]  <TASK>
[  469.561513][ T7973]  rate_control_rate_init_all_links+0x60/0x6f0
[  469.561709][ T7973]  sta_apply_auth_flags+0x2a6/0x6e0
[  469.561882][ T7973]  sta_apply_parameters+0x1b18/0x21a0
[  469.567996][    T9] usb 4-1: config 0 interface 12 has no altsetting 0
[  469.571458][ T7973]  ieee80211_add_station+0x72e/0x9f0
[  469.601601][ T7973]  ? __pfx_ieee80211_add_station+0x10/0x10
[  469.607690][ T7973]  rdev_add_station+0x80/0x3d0
[  469.612798][ T7973]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  469.619014][ T7973]  nl80211_new_station+0x360c/0x36d0
[  469.624576][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  469.630123][ T7973]  ? __pfx_nl80211_new_station+0x10/0x10
[  469.636029][ T7973]  genl_family_rcv_msg_doit+0x338/0x3f0
[  469.642000][ T7973]  genl_rcv_msg+0xacf/0xc10
[  469.646721][ T7973]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  469.654175][ T7973]  ? __pfx_nl80211_new_station+0x10/0x10
[  469.660792][ T7973]  ? __pfx_nl80211_post_doit+0x10/0x10
[  469.666567][ T7973]  netlink_rcv_skb+0x54a/0x680
[  469.671804][ T7973]  ? __pfx_genl_rcv_msg+0x10/0x10
[  469.677077][ T7973]  genl_rcv+0x41/0x60
[  469.681415][ T7973]  ? __pfx_genl_rcv+0x10/0x10
[  469.686295][ T7973]  netlink_unicast+0xf01/0x12b0
[  469.691691][ T7973]  netlink_sendmsg+0x10b3/0x1250
[  469.696912][ T7973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  469.702604][ T7973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  469.708188][ T7973]  __sock_sendmsg+0x330/0x3d0
[  469.713219][ T7973]  ____sys_sendmsg+0x7e0/0xd80
[  469.718288][ T7973]  ___sys_sendmsg+0x271/0x3b0
[  469.723423][ T7973]  ? __rcu_read_unlock+0x6d/0xd0
[  469.728744][ T7973]  ? __fget_files+0x3b4/0x4a0
[  469.733675][ T7973]  ? __fget_files+0x3b9/0x4a0
[  469.738768][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  469.744121][ T7973]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  469.750685][ T7973]  __x64_sys_sendmsg+0x211/0x3e0
[  469.757576][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  469.763420][ T7973]  x64_sys_call+0x1dfd/0x3e20
[  469.768468][ T7973]  do_syscall_64+0xd9/0x210
[  469.773177][ T7973]  ? irqentry_exit+0x16/0x60
[  469.778015][ T7973]  ? clear_bhb_loop+0x40/0x90
[  469.783153][ T7973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.789381][ T7973] RIP: 0033:0x7f7cb3b8eec9
[  469.793985][ T7973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.814007][ T7973] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  469.822798][ T7973] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  469.831129][ T7973] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  469.839498][ T7973] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  469.847648][ T7973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  469.857664][ T7973] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  469.866324][ T7973]  </TASK>
[  469.869621][ T7973] ---[ end trace 0000000000000000 ]---
[  469.878666][ T7973] ------------[ cut here ]------------
[  469.884279][ T7973] WARNING: CPU: 1 PID: 7973 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  469.890815][    T9] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  469.894455][ T7973] Modules linked in:
[  469.903762][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.907710][ T7973] CPU: 1 UID: 0 PID: 7973 Comm: syz.0.428 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  469.915975][    T9] usb 4-1: Product: syz
[  469.926792][ T7973] Tainted: [W]=WARN
[  469.931121][    T9] usb 4-1: Manufacturer: syz
[  469.934917][ T7973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  469.939861][    T9] usb 4-1: SerialNumber: syz
[  469.949886][ T7973] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  469.962734][ T7973] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  469.983064][ T7973] RSP: 0018:ffff888060b2f2e0 EFLAGS: 00010283
[  469.989504][ T7973] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  469.997637][ T7973] RDX: ffffc90008802000 RSI: 000000000006aaf0 RDI: 000000000006aaf1
[  470.005925][ T7973] RBP: ffff888060b2f368 R08: ffffea000000000f R09: 0000000000000000
[  470.014308][ T7973] R10: ffff8881461d50e0 R11: ffffffff817f4990 R12: 0000000000000000
[  470.023011][ T7973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.031253][ T7973] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  470.040536][ T7973] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  470.047297][ T7973] CR2: 00007f685fc38286 CR3: 000000001671c000 CR4: 00000000003526f0
[  470.055660][ T7973] Call Trace:
[  470.060871][ T7973]  <TASK>
[  470.063966][ T7973]  rate_control_rate_init_all_links+0x60/0x6f0
[  470.070823][ T7973]  ieee80211_add_station+0x98d/0x9f0
[  470.076403][ T7973]  ? __pfx_ieee80211_add_station+0x10/0x10
[  470.082639][ T7973]  rdev_add_station+0x80/0x3d0
[  470.087634][ T7973]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  470.093839][ T7973]  nl80211_new_station+0x360c/0x36d0
[  470.099537][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  470.104994][ T7973]  ? __pfx_nl80211_new_station+0x10/0x10
[  470.111148][ T7973]  genl_family_rcv_msg_doit+0x338/0x3f0
[  470.116993][ T7973]  genl_rcv_msg+0xacf/0xc10
[  470.121938][ T7973]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  470.127561][ T7973]  ? __pfx_nl80211_new_station+0x10/0x10
[  470.133571][ T7973]  ? __pfx_nl80211_post_doit+0x10/0x10
[  470.139551][ T7973]  netlink_rcv_skb+0x54a/0x680
[  470.140181][    T9] usb 4-1: config 0 descriptor??
[  470.144551][ T7973]  ? __pfx_genl_rcv_msg+0x10/0x10
[  470.154761][ T7973]  genl_rcv+0x41/0x60
[  470.159825][ T7973]  ? __pfx_genl_rcv+0x10/0x10
[  470.167220][ T7973]  netlink_unicast+0xf01/0x12b0
[  470.172806][ T7973]  netlink_sendmsg+0x10b3/0x1250
[  470.178021][ T7973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  470.183732][ T7973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  470.189376][ T7973]  __sock_sendmsg+0x330/0x3d0
[  470.194283][ T7973]  ____sys_sendmsg+0x7e0/0xd80
[  470.199798][ T7973]  ___sys_sendmsg+0x271/0x3b0
[  470.204765][ T7973]  ? __rcu_read_unlock+0x6d/0xd0
[  470.210044][ T7973]  ? __fget_files+0x3b4/0x4a0
[  470.214974][ T7973]  ? __fget_files+0x3b9/0x4a0
[  470.220045][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  470.225388][ T7973]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  470.264332][ T7973]  __x64_sys_sendmsg+0x211/0x3e0
[  470.273237][ T7973]  ? kmsan_get_metadata+0xfb/0x160
[  470.279352][ T7973]  x64_sys_call+0x1dfd/0x3e20
[  470.284305][ T7973]  do_syscall_64+0xd9/0x210
[  470.289120][ T7973]  ? irqentry_exit+0x16/0x60
[  470.292776][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  470.293928][ T7973]  ? clear_bhb_loop+0x40/0x90
[  470.300796][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  470.305086][ T7973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.317569][ T7973] RIP: 0033:0x7f7cb3b8eec9
[  470.323620][ T7973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  470.343647][ T7973] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  470.352630][ T7973] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  470.360949][ T7973] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  470.370905][ T7973] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  470.379551][ T7973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  470.387702][ T7973] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  470.396131][ T7973]  </TASK>
[  470.399425][ T7973] ---[ end trace 0000000000000000 ]---
[  471.901080][    T9] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  471.910371][    T9] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  471.919981][    T9] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  471.927912][    T9] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  471.941667][ T8021] veth0_virt_wifi: renamed from veth0_macvtap
[  472.126518][    T9] usb 4-1: USB disconnect, device number 3
[  474.875389][ T8071] netlink: 20 bytes leftover after parsing attributes in process `syz.2.453'.
[  476.320487][ T3970] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  476.328760][ T3970] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  476.370387][ T8089] ------------[ cut here ]------------
[  476.376145][ T8089] WARNING: CPU: 1 PID: 8089 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  476.386435][ T8089] Modules linked in:
[  476.390653][ T8089] CPU: 1 UID: 0 PID: 8089 Comm: syz.3.460 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  476.401792][ T8089] Tainted: [W]=WARN
[  476.405712][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  476.418550][ T8089] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  476.425000][ T8089] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  476.445518][ T8089] RSP: 0018:ffff888115613190 EFLAGS: 00010287
[  476.451943][ T8089] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  476.460300][ T8089] RDX: ffffc90008401000 RSI: 000000000000027c RDI: 000000000000027d
[  476.468657][ T8089] RBP: ffff888115613218 R08: ffffea000000000f R09: 0000000000000000
[  476.476816][ T8089] R10: ffff8881461d50e0 R11: 0000000000000002 R12: 0000000000000000
[  476.485153][ T8089] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.493458][ T8089] FS:  00007f452a7526c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  476.503017][ T8089] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  476.509903][ T8089] CR2: 0000200000001080 CR3: 000000011562c000 CR4: 00000000003526f0
[  476.520471][ T8089] Call Trace:
[  476.523896][ T8089]  <TASK>
[  476.527063][ T8089]  rate_control_rate_init_all_links+0x60/0x6f0
[  476.533932][ T8089]  sta_apply_auth_flags+0x2a6/0x6e0
[  476.539512][ T8089]  sta_apply_parameters+0x1b18/0x21a0
[  476.545180][ T8089]  ieee80211_add_station+0x72e/0x9f0
[  476.550988][ T8089]  ? __pfx_ieee80211_add_station+0x10/0x10
[  476.557052][ T8089]  rdev_add_station+0x80/0x3d0
[  476.562491][ T8089]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  476.568781][ T8089]  nl80211_new_station+0x360c/0x36d0
[  476.574341][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  476.579904][ T8089]  ? __pfx_nl80211_new_station+0x10/0x10
[  476.585822][ T8089]  genl_family_rcv_msg_doit+0x338/0x3f0
[  476.591970][ T8089]  genl_rcv_msg+0xacf/0xc10
[  476.596712][ T8089]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  476.602468][ T8089]  ? __pfx_nl80211_new_station+0x10/0x10
[  476.608520][ T8089]  ? __pfx_nl80211_post_doit+0x10/0x10
[  476.616507][ T8089]  netlink_rcv_skb+0x54a/0x680
[  476.622125][ T8089]  ? __pfx_genl_rcv_msg+0x10/0x10
[  476.627408][ T8089]  genl_rcv+0x41/0x60
[  476.631945][ T8089]  ? __pfx_genl_rcv+0x10/0x10
[  476.636913][ T8089]  netlink_unicast+0xf01/0x12b0
[  476.642208][ T8089]  netlink_sendmsg+0x10b3/0x1250
[  476.647434][ T8089]  ? __pfx_netlink_sendmsg+0x10/0x10
[  476.653320][ T8089]  ? __pfx_netlink_sendmsg+0x10/0x10
[  476.658968][ T8089]  __sock_sendmsg+0x330/0x3d0
[  476.663875][ T8089]  ____sys_sendmsg+0x7e0/0xd80
[  476.669178][ T8089]  ___sys_sendmsg+0x271/0x3b0
[  476.674141][ T8089]  ? __rcu_read_unlock+0x6d/0xd0
[  476.679509][ T8089]  ? __fget_files+0x3b4/0x4a0
[  476.684430][ T8089]  ? __fget_files+0x3b9/0x4a0
[  476.689497][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  476.694840][ T8089]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  476.701002][ T8089]  __x64_sys_sendmsg+0x211/0x3e0
[  476.706209][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  476.711809][ T8089]  x64_sys_call+0x1dfd/0x3e20
[  476.719104][ T8089]  do_syscall_64+0xd9/0x210
[  476.723834][ T8089]  ? irqentry_exit+0x16/0x60
[  476.729146][ T8089]  ? clear_bhb_loop+0x40/0x90
[  476.734058][ T8089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.740409][ T8089] RIP: 0033:0x7f452998eec9
[  476.747138][ T8089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.767114][ T8089] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  476.775887][ T8089] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  476.784192][ T8089] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  476.792516][ T8089] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  476.800899][ T8089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.809160][ T8089] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  476.820193][ T8089]  </TASK>
[  476.823378][ T8089] ---[ end trace 0000000000000000 ]---
[  476.832619][ T8089] ------------[ cut here ]------------
[  476.838232][ T8089] WARNING: CPU: 1 PID: 8089 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  476.848545][ T8089] Modules linked in:
[  476.852658][ T8089] CPU: 1 UID: 0 PID: 8089 Comm: syz.3.460 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  476.864051][ T8089] Tainted: [W]=WARN
[  476.867986][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  476.879250][ T8089] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  476.885656][ T8089] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  476.908873][ T8089] RSP: 0018:ffff8881156132e0 EFLAGS: 00010283
[  476.918730][ T8089] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  476.929187][ T8089] RDX: ffffc90008401000 RSI: 0000000000038cee RDI: 0000000000038cef
[  476.937358][ T8089] RBP: ffff888115613368 R08: ffffea000000000f R09: 0000000000000000
[  476.946292][ T8089] R10: ffff8881461d50e0 R11: ffffffff817f4990 R12: 0000000000000000
[  476.954578][ T8089] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.963080][ T8089] FS:  00007f452a7526c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  476.972422][ T8089] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  476.979382][ T8089] CR2: 0000200000001080 CR3: 000000011562c000 CR4: 00000000003526f0
[  476.987547][ T8089] Call Trace:
[  476.991149][ T8089]  <TASK>
[  476.994254][ T8089]  rate_control_rate_init_all_links+0x60/0x6f0
[  477.000859][ T8089]  ieee80211_add_station+0x98d/0x9f0
[  477.006420][ T8089]  ? __pfx_ieee80211_add_station+0x10/0x10
[  477.012664][ T8089]  rdev_add_station+0x80/0x3d0
[  477.017654][ T8089]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  477.026190][ T8089]  nl80211_new_station+0x360c/0x36d0
[  477.032367][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  477.037818][ T8089]  ? __pfx_nl80211_new_station+0x10/0x10
[  477.043919][ T8089]  genl_family_rcv_msg_doit+0x338/0x3f0
[  477.049886][ T8089]  genl_rcv_msg+0xacf/0xc10
[  477.054603][ T8089]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  477.060442][ T8089]  ? __pfx_nl80211_new_station+0x10/0x10
[  477.066348][ T8089]  ? __pfx_nl80211_post_doit+0x10/0x10
[  477.072217][ T8089]  netlink_rcv_skb+0x54a/0x680
[  477.077264][ T8089]  ? __pfx_genl_rcv_msg+0x10/0x10
[  477.082714][ T8089]  genl_rcv+0x41/0x60
[  477.086899][ T8089]  ? __pfx_genl_rcv+0x10/0x10
[  477.092203][ T8089]  netlink_unicast+0xf01/0x12b0
[  477.097324][ T8089]  netlink_sendmsg+0x10b3/0x1250
[  477.102722][ T8089]  ? __pfx_netlink_sendmsg+0x10/0x10
[  477.108257][ T8089]  ? __pfx_netlink_sendmsg+0x10/0x10
[  477.113897][ T8089]  __sock_sendmsg+0x330/0x3d0
[  477.119004][ T8089]  ____sys_sendmsg+0x7e0/0xd80
[  477.124052][ T8089]  ___sys_sendmsg+0x271/0x3b0
[  477.131273][ T8089]  ? __rcu_read_unlock+0x6d/0xd0
[  477.136434][ T8089]  ? __fget_files+0x3b4/0x4a0
[  477.141928][ T8089]  ? __fget_files+0x3b9/0x4a0
[  477.146871][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  477.152335][ T8089]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  477.158563][ T8089]  __x64_sys_sendmsg+0x211/0x3e0
[  477.163776][ T8089]  ? kmsan_get_metadata+0xfb/0x160
[  477.169254][ T8089]  x64_sys_call+0x1dfd/0x3e20
[  477.174187][ T8089]  do_syscall_64+0xd9/0x210
[  477.179147][ T8089]  ? irqentry_exit+0x16/0x60
[  477.183982][ T8089]  ? clear_bhb_loop+0x40/0x90
[  477.189012][ T8089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  477.195125][ T8089] RIP: 0033:0x7f452998eec9
[  477.199850][ T8089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  477.219915][ T8089] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  477.230908][ T8089] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  477.239553][ T8089] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  477.249954][ T8089] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  477.258144][ T8089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.266445][ T8089] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  477.274785][ T8089]  </TASK>
[  477.277946][ T8089] ---[ end trace 0000000000000000 ]---
[  477.503304][ T3970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.511599][ T3970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.639820][ T8102] netlink: 180 bytes leftover after parsing attributes in process `syz.0.464'.
[  479.083120][ T5869] IPVS: starting estimator thread 0...
[  479.181147][ T8130] IPVS: using max 240 ests per chain, 12000 per kthread
[  479.319222][    T9] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  479.529069][    T9] usb 8-1: Using ep0 maxpacket: 16
[  479.603781][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  479.605973][ T8134] ------------[ cut here ]------------
[  479.614825][    T9] usb 8-1: config 0 interface 0 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  479.620155][ T8134] WARNING: CPU: 1 PID: 8134 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  479.620342][ T8134] Modules linked in:
[  479.633545][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  479.643451][ T8134] CPU: 1 UID: 0 PID: 8134 Comm: syz.0.476 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  479.647437][    T9] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  479.654203][ T8134] Tainted: [W]=WARN
[  479.665074][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.674446][ T8134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  479.699972][ T8134] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  479.706382][ T8134] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  479.726386][ T8134] RSP: 0018:ffff888117a3f190 EFLAGS: 00010287
[  479.732967][ T8134] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  479.741295][ T8134] RDX: ffffc90008802000 RSI: 000000000000028a RDI: 000000000000028b
[  479.749635][ T8134] RBP: ffff888117a3f218 R08: ffffea000000000f R09: 0000000000000000
[  479.757802][ T8134] R10: ffff8881461d50e0 R11: 0000000000000002 R12: 0000000000000000
[  479.768291][ T8134] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  479.776535][ T8134] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  479.785885][ T8134] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  479.795835][ T8134] CR2: 0000200000001080 CR3: 00000001184f6000 CR4: 00000000003526f0
[  479.804833][ T8134] Call Trace:
[  479.808254][ T8134]  <TASK>
[  479.811469][ T8134]  rate_control_rate_init_all_links+0x60/0x6f0
[  479.817869][ T8134]  sta_apply_auth_flags+0x2a6/0x6e0
[  479.823572][ T8134]  sta_apply_parameters+0x1b18/0x21a0
[  479.830042][ T8134]  ieee80211_add_station+0x72e/0x9f0
[  479.835626][ T8134]  ? __pfx_ieee80211_add_station+0x10/0x10
[  479.841879][ T8134]  rdev_add_station+0x80/0x3d0
[  479.846860][ T8134]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  479.853094][ T8134]  nl80211_new_station+0x360c/0x36d0
[  479.858819][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  479.864259][ T8134]  ? __pfx_nl80211_new_station+0x10/0x10
[  479.870309][ T8134]  genl_family_rcv_msg_doit+0x338/0x3f0
[  479.876121][ T8134]  genl_rcv_msg+0xacf/0xc10
[  479.881236][ T8134]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  479.886865][ T8134]  ? __pfx_nl80211_new_station+0x10/0x10
[  479.895602][ T8134]  ? __pfx_nl80211_post_doit+0x10/0x10
[  479.902116][ T8134]  netlink_rcv_skb+0x54a/0x680
[  479.907158][ T8134]  ? __pfx_genl_rcv_msg+0x10/0x10
[  479.912668][ T8134]  genl_rcv+0x41/0x60
[  479.916854][ T8134]  ? __pfx_genl_rcv+0x10/0x10
[  479.921884][ T8134]  netlink_unicast+0xf01/0x12b0
[  479.927012][ T8134]  netlink_sendmsg+0x10b3/0x1250
[  479.932369][ T8134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  479.937920][ T8134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  479.943598][ T8134]  __sock_sendmsg+0x330/0x3d0
[  479.948641][ T8134]  ____sys_sendmsg+0x7e0/0xd80
[  479.953695][ T8134]  ___sys_sendmsg+0x271/0x3b0
[  479.958784][ T8134]  ? __rcu_read_unlock+0x6d/0xd0
[  479.963942][ T8134]  ? __fget_files+0x3b4/0x4a0
[  479.969122][ T8134]  ? __fget_files+0x3b9/0x4a0
[  479.974061][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  479.979560][ T8134]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  479.985640][ T8134]  __x64_sys_sendmsg+0x211/0x3e0
[  479.990989][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  479.999217][ T8134]  x64_sys_call+0x1dfd/0x3e20
[  480.002510][    T9] usb 8-1: config 0 descriptor??
[  480.004151][ T8134]  do_syscall_64+0xd9/0x210
[  480.014563][ T8134]  ? irqentry_exit+0x16/0x60
[  480.019556][ T8134]  ? clear_bhb_loop+0x40/0x90
[  480.024468][ T8134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.030728][ T8134] RIP: 0033:0x7f7cb3b8eec9
[  480.035331][ T8134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.055320][ T8134] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  480.064098][ T8134] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  480.072471][ T8134] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  480.080752][ T8134] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  480.082774][    T9] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  480.089006][ T8134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  480.089092][ T8134] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  480.116373][ T8134]  </TASK>
[  480.119664][ T8134] ---[ end trace 0000000000000000 ]---
[  480.129043][ T8134] ------------[ cut here ]------------
[  480.134651][ T8134] WARNING: CPU: 1 PID: 8134 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  480.144829][ T8134] Modules linked in:
[  480.149087][ T8134] CPU: 1 UID: 0 PID: 8134 Comm: syz.0.476 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  480.160482][ T8134] Tainted: [W]=WARN
[  480.164415][ T8134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  480.174804][ T8134] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  480.181345][ T8134] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  480.204073][ T8134] RSP: 0018:ffff888117a3f2e0 EFLAGS: 00010246
[  480.211139][ T8134] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  480.219429][ T8134] RDX: ffffc90008802000 RSI: 000000000007ffff RDI: 0000000000080000
[  480.227585][ T8134] RBP: ffff888117a3f368 R08: ffffea000000000f R09: 0000000000000000
[  480.235912][ T8134] R10: ffff8881461d50e0 R11: ffffffff817f4990 R12: 0000000000000000
[  480.244212][ T8134] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  480.252475][ T8134] FS:  00007f7cb49a26c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  480.262238][ T8134] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  480.269114][ T8134] CR2: 0000200000001080 CR3: 00000001184f6000 CR4: 00000000003526f0
[  480.277272][ T8134] Call Trace:
[  480.280853][ T8134]  <TASK>
[  480.283952][ T8134]  rate_control_rate_init_all_links+0x60/0x6f0
[  480.290594][ T8134]  ieee80211_add_station+0x98d/0x9f0
[  480.296170][ T8134]  ? __pfx_ieee80211_add_station+0x10/0x10
[  480.305003][ T8134]  rdev_add_station+0x80/0x3d0
[  480.310841][ T8134]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  480.316916][ T8134]  nl80211_new_station+0x360c/0x36d0
[  480.322621][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  480.328062][ T8134]  ? __pfx_nl80211_new_station+0x10/0x10
[  480.334097][ T8134]  genl_family_rcv_msg_doit+0x338/0x3f0
[  480.340096][ T8134]  genl_rcv_msg+0xacf/0xc10
[  480.344829][ T8134]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  480.350699][ T8134]  ? __pfx_nl80211_new_station+0x10/0x10
[  480.356614][ T8134]  ? __pfx_nl80211_post_doit+0x10/0x10
[  480.362508][ T8134]  netlink_rcv_skb+0x54a/0x680
[  480.367550][ T8134]  ? __pfx_genl_rcv_msg+0x10/0x10
[  480.372988][ T8134]  genl_rcv+0x41/0x60
[  480.377181][ T8134]  ? __pfx_genl_rcv+0x10/0x10
[  480.385397][ T8134]  netlink_unicast+0xf01/0x12b0
[  480.393655][ T8134]  netlink_sendmsg+0x10b3/0x1250
[  480.399071][ T8134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  480.407201][ T8134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  480.413683][ T8134]  __sock_sendmsg+0x330/0x3d0
[  480.418770][ T8134]  ____sys_sendmsg+0x7e0/0xd80
[  480.423861][ T8134]  ___sys_sendmsg+0x271/0x3b0
[  480.429032][ T8134]  ? __rcu_read_unlock+0x6d/0xd0
[  480.434200][ T8134]  ? __fget_files+0x3b4/0x4a0
[  480.439261][ T8134]  ? __fget_files+0x3b9/0x4a0
[  480.444187][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  480.449640][ T8134]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  480.455703][ T8134]  __x64_sys_sendmsg+0x211/0x3e0
[  480.461079][ T8134]  ? kmsan_get_metadata+0xfb/0x160
[  480.466444][ T8134]  x64_sys_call+0x1dfd/0x3e20
[  480.472616][ T8134]  do_syscall_64+0xd9/0x210
[  480.477347][ T8134]  ? irqentry_exit+0x16/0x60
[  480.482804][ T8134]  ? clear_bhb_loop+0x40/0x90
[  480.487726][ T8134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.494056][ T8134] RIP: 0033:0x7f7cb3b8eec9
[  480.498853][ T8134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.521927][ T8134] RSP: 002b:00007f7cb49a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  480.534591][ T8134] RAX: ffffffffffffffda RBX: 00007f7cb3de5fa0 RCX: 00007f7cb3b8eec9
[  480.545983][ T8134] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  480.554271][ T8134] RBP: 00007f7cb3c11f91 R08: 0000000000000000 R09: 0000000000000000
[  480.562652][ T8134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  480.570948][ T8134] R13: 00007f7cb3de6038 R14: 00007f7cb3de5fa0 R15: 00007ffca2662258
[  480.579303][ T8134]  </TASK>
[  480.582453][ T8134] ---[ end trace 0000000000000000 ]---
[  480.753664][ T8145] netlink: 180 bytes leftover after parsing attributes in process `syz.1.480'.
[  481.220190][ T8152] netlink: 8 bytes leftover after parsing attributes in process `syz.0.483'.
[  481.870151][ T5875] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  482.083020][ T5875] usb 4-1: Using ep0 maxpacket: 32
[  482.128195][ T5875] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  482.136611][ T5875] usb 4-1: config 0 has no interface number 0
[  482.145180][ T5875] usb 4-1: config 0 interface 12 has no altsetting 0
[  482.221146][ T5875] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  482.231894][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.240534][ T5875] usb 4-1: Product: syz
[  482.247055][ T5875] usb 4-1: Manufacturer: syz
[  482.252573][ T5875] usb 4-1: SerialNumber: syz
[  482.841302][    T9] usb 8-1: USB disconnect, device number 3
[  482.911341][ T5875] usb 4-1: config 0 descriptor??
[  484.302479][ T8181] netlink: 180 bytes leftover after parsing attributes in process `syz.0.494'.
[  485.444649][ T5875] f81534 4-1:0.12: f81534_set_register: reg: 1002 data: 2f failed: -71
[  485.453441][ T5875] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  485.463132][ T5875] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  485.471213][ T5875] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  485.636321][ T5875] usb 4-1: USB disconnect, device number 4
[  485.678958][ T8187] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  485.888897][ T8187] usb 2-1: Using ep0 maxpacket: 8
[  485.941328][ T8187] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  485.950333][ T8187] usb 2-1: config 179 has no interface number 0
[  485.956794][ T8187] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  485.968599][ T8187] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  485.980220][ T8187] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  485.991732][ T8187] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  486.003556][ T8187] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  486.017305][ T8187] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  486.026785][ T8187] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.433550][ T8192] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  486.994341][ T5875] usb 2-1: USB disconnect, device number 2
[  486.994351][    C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  486.994825][    C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  487.668857][ T5823] Bluetooth: hci4: command 0x0406 tx timeout
[  487.764585][ T8219] netlink: 180 bytes leftover after parsing attributes in process `syz.2.506'.
[  487.876019][ T8219] netlink: 180 bytes leftover after parsing attributes in process `syz.2.506'.
[  488.522539][ T8226] ------------[ cut here ]------------
[  488.528552][ T8226] WARNING: CPU: 0 PID: 8226 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  488.539002][ T8226] Modules linked in:
[  488.543119][ T8226] CPU: 0 UID: 0 PID: 8226 Comm: syz.3.508 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  488.554327][ T8226] Tainted: [W]=WARN
[  488.558265][ T8226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  488.569190][ T8226] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  488.575613][ T8226] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  488.597915][ T8226] RSP: 0018:ffff888068e8b190 EFLAGS: 00010287
[  488.605051][ T8226] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  488.613397][ T8226] RDX: ffffc90008401000 RSI: 000000000000027c RDI: 000000000000027d
[  488.621712][ T8226] RBP: ffff888068e8b218 R08: ffffea000000000f R09: 0000000000000000
[  488.630076][ T8226] R10: ffff88801eee30e0 R11: 0000000000000002 R12: 0000000000000000
[  488.638231][ T8226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  488.646538][ T8226] FS:  00007f452a7526c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  488.655891][ T8226] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  488.662840][ T8226] CR2: 0000200000001080 CR3: 000000006176e000 CR4: 00000000003526f0
[  488.671315][ T8226] Call Trace:
[  488.674735][ T8226]  <TASK>
[  488.677840][ T8226]  rate_control_rate_init_all_links+0x60/0x6f0
[  488.684438][ T8226]  sta_apply_auth_flags+0x2a6/0x6e0
[  488.690046][ T8226]  sta_apply_parameters+0x1b18/0x21a0
[  488.695701][ T8226]  ieee80211_add_station+0x72e/0x9f0
[  488.704299][ T8226]  ? __pfx_ieee80211_add_station+0x10/0x10
[  488.710545][ T8226]  rdev_add_station+0x80/0x3d0
[  488.715524][ T8226]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  488.721761][ T8226]  nl80211_new_station+0x360c/0x36d0
[  488.727333][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  488.733001][ T8226]  ? __pfx_nl80211_new_station+0x10/0x10
[  488.739079][ T8226]  genl_family_rcv_msg_doit+0x338/0x3f0
[  488.744902][ T8226]  genl_rcv_msg+0xacf/0xc10
[  488.749754][ T8226]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  488.755382][ T8226]  ? __pfx_nl80211_new_station+0x10/0x10
[  488.761501][ T8226]  ? __pfx_nl80211_post_doit+0x10/0x10
[  488.767255][ T8226]  netlink_rcv_skb+0x54a/0x680
[  488.772607][ T8226]  ? __pfx_genl_rcv_msg+0x10/0x10
[  488.777885][ T8226]  genl_rcv+0x41/0x60
[  488.782270][ T8226]  ? __pfx_genl_rcv+0x10/0x10
[  488.787243][ T8226]  netlink_unicast+0xf01/0x12b0
[  488.792567][ T8226]  netlink_sendmsg+0x10b3/0x1250
[  488.797810][ T8226]  ? __pfx_netlink_sendmsg+0x10/0x10
[  488.805680][ T8226]  ? __pfx_netlink_sendmsg+0x10/0x10
[  488.811983][ T8226]  __sock_sendmsg+0x330/0x3d0
[  488.816895][ T8226]  ____sys_sendmsg+0x7e0/0xd80
[  488.822124][ T8226]  ___sys_sendmsg+0x271/0x3b0
[  488.827167][ T8226]  ? __rcu_read_unlock+0x6d/0xd0
[  488.832541][ T8226]  ? __fget_files+0x3b4/0x4a0
[  488.837483][ T8226]  ? __fget_files+0x3b9/0x4a0
[  488.842777][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  488.848127][ T8226]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  488.854393][ T8226]  __x64_sys_sendmsg+0x211/0x3e0
[  488.860237][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  488.865607][ T8226]  x64_sys_call+0x1dfd/0x3e20
[  488.870724][ T8226]  do_syscall_64+0xd9/0x210
[  488.875434][ T8226]  ? irqentry_exit+0x16/0x60
[  488.880444][ T8226]  ? clear_bhb_loop+0x40/0x90
[  488.885354][ T8226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.891760][ T8226] RIP: 0033:0x7f452998eec9
[  488.896369][ T8226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.918683][ T8226] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  488.927363][ T8226] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  488.936348][ T8226] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  488.944659][ T8226] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  488.953108][ T8226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  488.961498][ T8226] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  488.969871][ T8226]  </TASK>
[  488.973027][ T8226] ---[ end trace 0000000000000000 ]---
[  488.982064][ T8226] ------------[ cut here ]------------
[  488.987672][ T8226] WARNING: CPU: 0 PID: 8226 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  488.997960][ T8226] Modules linked in:
[  489.002230][ T8226] CPU: 0 UID: 0 PID: 8226 Comm: syz.3.508 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  489.015475][ T8226] Tainted: [W]=WARN
[  489.020174][ T8226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  489.031887][ T8226] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  489.038307][ T8226] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  489.058571][ T8226] RSP: 0018:ffff888068e8b2e0 EFLAGS: 00010283
[  489.064874][ T8226] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  489.073307][ T8226] RDX: ffffc90008401000 RSI: 00000000000387e5 RDI: 00000000000387e6
[  489.086535][ T8226] RBP: ffff888068e8b368 R08: ffffea000000000f R09: 0000000000000000
[  489.095027][ T8226] R10: ffff88801eee30e0 R11: ffffffff817f4990 R12: 0000000000000000
[  489.103318][ T8226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  489.113605][ T8226] FS:  00007f452a7526c0(0000) GS:ffff8881aa690000(0000) knlGS:0000000000000000
[  489.123502][ T8226] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  489.130931][ T8226] CR2: 0000200000001080 CR3: 000000006176e000 CR4: 00000000003526f0
[  489.139245][ T8226] Call Trace:
[  489.142658][ T8226]  <TASK>
[  489.145776][ T8226]  rate_control_rate_init_all_links+0x60/0x6f0
[  489.152421][ T8226]  ieee80211_add_station+0x98d/0x9f0
[  489.157999][ T8226]  ? __pfx_ieee80211_add_station+0x10/0x10
[  489.164364][ T8226]  rdev_add_station+0x80/0x3d0
[  489.169490][ T8226]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  489.175567][ T8226]  nl80211_new_station+0x360c/0x36d0
[  489.181329][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  489.186774][ T8226]  ? __pfx_nl80211_new_station+0x10/0x10
[  489.192864][ T8226]  genl_family_rcv_msg_doit+0x338/0x3f0
[  489.198920][ T8226]  genl_rcv_msg+0xacf/0xc10
[  489.203645][ T8226]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  489.211433][ T8226]  ? __pfx_nl80211_new_station+0x10/0x10
[  489.217355][ T8226]  ? __pfx_nl80211_post_doit+0x10/0x10
[  489.223992][ T8226]  netlink_rcv_skb+0x54a/0x680
[  489.229185][ T8226]  ? __pfx_genl_rcv_msg+0x10/0x10
[  489.234449][ T8226]  genl_rcv+0x41/0x60
[  489.238914][ T8226]  ? __pfx_genl_rcv+0x10/0x10
[  489.243802][ T8226]  netlink_unicast+0xf01/0x12b0
[  489.249123][ T8226]  netlink_sendmsg+0x10b3/0x1250
[  489.254345][ T8226]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.260029][ T8226]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.265565][ T8226]  __sock_sendmsg+0x330/0x3d0
[  489.270713][ T8226]  ____sys_sendmsg+0x7e0/0xd80
[  489.275771][ T8226]  ___sys_sendmsg+0x271/0x3b0
[  489.280973][ T8226]  ? __rcu_read_unlock+0x6d/0xd0
[  489.286128][ T8226]  ? __fget_files+0x3b4/0x4a0
[  489.291200][ T8226]  ? __fget_files+0x3b9/0x4a0
[  489.296144][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  489.301694][ T8226]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  489.307757][ T8226]  __x64_sys_sendmsg+0x211/0x3e0
[  489.315230][ T8226]  ? kmsan_get_metadata+0xfb/0x160
[  489.321365][ T8226]  x64_sys_call+0x1dfd/0x3e20
[  489.326325][ T8226]  do_syscall_64+0xd9/0x210
[  489.331291][ T8226]  ? irqentry_exit+0x16/0x60
[  489.336143][ T8226]  ? clear_bhb_loop+0x40/0x90
[  489.341388][ T8226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.347522][ T8226] RIP: 0033:0x7f452998eec9
[  489.352501][ T8226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.372565][ T8226] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  489.381478][ T8226] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  489.389856][ T8226] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  489.398645][ T8226] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  489.406801][ T8226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  489.417277][ T8226] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  489.426261][ T8226]  </TASK>
[  489.429902][ T8226] ---[ end trace 0000000000000000 ]---
[  490.222760][ T5875] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  490.470073][ T5875] usb 3-1: Using ep0 maxpacket: 32
[  490.530589][ T5875] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  490.541249][ T5875] usb 3-1: config 0 has no interface number 0
[  490.547540][ T5875] usb 3-1: config 0 interface 12 has no altsetting 0
[  490.795110][ T5875] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  490.804775][ T5875] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.813186][ T5875] usb 3-1: Product: syz
[  490.817503][ T5875] usb 3-1: Manufacturer: syz
[  490.822346][ T5875] usb 3-1: SerialNumber: syz
[  491.215855][ T5875] usb 3-1: config 0 descriptor??
[  492.030005][   T42] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  492.206543][ T8263] netlink: 180 bytes leftover after parsing attributes in process `syz.3.520'.
[  492.264133][ T8263] netlink: 180 bytes leftover after parsing attributes in process `syz.3.520'.
[  492.838738][   T42] usb 8-1: Using ep0 maxpacket: 16
[  493.124355][   T42] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  493.134865][   T42] usb 8-1: config 0 interface 0 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  493.148295][   T42] usb 8-1: config 0 interface 0 has no altsetting 0
[  493.155278][   T42] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  493.164749][   T42] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.428011][ T5875] f81534 3-1:0.12: f81534_set_register: reg: 1002 data: 2f failed: -71
[  493.436948][ T5875] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[  493.444790][ T5875] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  493.452979][ T5875] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[  493.539912][   T42] usb 8-1: config 0 descriptor??
[  493.622547][   T42] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  493.789958][ T5875] usb 3-1: USB disconnect, device number 3
[  494.264323][ T8275] ------------[ cut here ]------------
[  494.270429][ T8275] WARNING: CPU: 1 PID: 8275 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  494.280840][ T8275] Modules linked in:
[  494.284971][ T8275] CPU: 1 UID: 0 PID: 8275 Comm: syz.3.524 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  494.296179][ T8275] Tainted: [W]=WARN
[  494.300241][ T8275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  494.310889][ T8275] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  494.317287][ T8275] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  494.340126][ T8275] RSP: 0018:ffff88802c13f190 EFLAGS: 00010283
[  494.346439][ T8275] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  494.355382][ T8275] RDX: ffffc90008401000 RSI: 000000000000027e RDI: 000000000000027f
[  494.363687][ T8275] RBP: ffff88802c13f218 R08: ffffea000000000f R09: 0000000000000000
[  494.372005][ T8275] R10: ffff8881461d70e0 R11: 0000000000000002 R12: 0000000000000000
[  494.380404][ T8275] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  494.389334][ T8275] FS:  00007f452a7526c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  494.398544][ T8275] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  494.405296][ T8275] CR2: 0000200000001080 CR3: 0000000030ba4000 CR4: 00000000003526f0
[  494.413639][ T8275] Call Trace:
[  494.417037][ T8275]  <TASK>
[  494.420226][ T8275]  rate_control_rate_init_all_links+0x60/0x6f0
[  494.426636][ T8275]  sta_apply_auth_flags+0x2a6/0x6e0
[  494.434889][ T8275]  sta_apply_parameters+0x1b18/0x21a0
[  494.441228][ T8275]  ieee80211_add_station+0x72e/0x9f0
[  494.446796][ T8275]  ? __pfx_ieee80211_add_station+0x10/0x10
[  494.452991][ T8275]  rdev_add_station+0x80/0x3d0
[  494.457957][ T8275]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.464089][ T8275]  nl80211_new_station+0x360c/0x36d0
[  494.469768][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  494.475186][ T8275]  ? __pfx_nl80211_new_station+0x10/0x10
[  494.481322][ T8275]  genl_family_rcv_msg_doit+0x338/0x3f0
[  494.487252][ T8275]  genl_rcv_msg+0xacf/0xc10
[  494.492253][ T8275]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  494.497897][ T8275]  ? __pfx_nl80211_new_station+0x10/0x10
[  494.503897][ T8275]  ? __pfx_nl80211_post_doit+0x10/0x10
[  494.509779][ T8275]  netlink_rcv_skb+0x54a/0x680
[  494.514850][ T8275]  ? __pfx_genl_rcv_msg+0x10/0x10
[  494.520202][ T8275]  genl_rcv+0x41/0x60
[  494.524368][ T8275]  ? __pfx_genl_rcv+0x10/0x10
[  494.529365][ T8275]  netlink_unicast+0xf01/0x12b0
[  494.537171][ T8275]  netlink_sendmsg+0x10b3/0x1250
[  494.543097][ T8275]  ? __pfx_netlink_sendmsg+0x10/0x10
[  494.548851][ T8275]  ? __pfx_netlink_sendmsg+0x10/0x10
[  494.554478][ T8275]  __sock_sendmsg+0x330/0x3d0
[  494.559516][ T8275]  ____sys_sendmsg+0x7e0/0xd80
[  494.564565][ T8275]  ___sys_sendmsg+0x271/0x3b0
[  494.569645][ T8275]  ? __rcu_read_unlock+0x6d/0xd0
[  494.574794][ T8275]  ? __fget_files+0x3b4/0x4a0
[  494.580005][ T8275]  ? __fget_files+0x3b9/0x4a0
[  494.584935][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  494.590423][ T8275]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.596481][ T8275]  __x64_sys_sendmsg+0x211/0x3e0
[  494.601819][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  494.607179][ T8275]  x64_sys_call+0x1dfd/0x3e20
[  494.612248][ T8275]  do_syscall_64+0xd9/0x210
[  494.616955][ T8275]  ? irqentry_exit+0x16/0x60
[  494.621898][ T8275]  ? clear_bhb_loop+0x40/0x90
[  494.626799][ T8275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.633072][ T8275] RIP: 0033:0x7f452998eec9
[  494.640598][ T8275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  494.661315][ T8275] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  494.670137][ T8275] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  494.678303][ T8275] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  494.686829][ T8275] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  494.695096][ T8275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  494.703374][ T8275] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  494.711677][ T8275]  </TASK>
[  494.714821][ T8275] ---[ end trace 0000000000000000 ]---
[  494.723777][ T8275] ------------[ cut here ]------------
[  494.729473][ T8275] WARNING: CPU: 1 PID: 8275 at net/mac80211/rate.c:53 rate_control_rate_init+0x38a/0x640
[  494.742158][ T8275] Modules linked in:
[  494.746265][ T8275] CPU: 1 UID: 0 PID: 8275 Comm: syz.3.524 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  494.757997][ T8275] Tainted: [W]=WARN
[  494.762090][ T8275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  494.774739][ T8275] RIP: 0010:rate_control_rate_init+0x38a/0x640
[  494.781423][ T8275] Code: e4 8a f2 e9 aa fd ff ff 8b 3a e8 c1 e4 8a f2 e9 bc fd ff ff 89 df e8 b5 e4 8a f2 4d 85 f6 0f 85 54 fe ff ff e8 27 11 e8 f1 90 <0f> 0b 90 e8 0e ff be f1 e9 3a 01 00 00 8b 7d d4 e8 91 e4 8a f2 e9
[  494.801433][ T8275] RSP: 0018:ffff88802c13f2e0 EFLAGS: 00010283
[  494.807744][ T8275] RAX: ffffffff900ced79 RBX: 0000000000000000 RCX: 0000000000080000
[  494.816035][ T8275] RDX: ffffc90008401000 RSI: 0000000000038950 RDI: 0000000000038951
[  494.824349][ T8275] RBP: ffff88802c13f368 R08: ffffea000000000f R09: 0000000000000000
[  494.832641][ T8275] R10: ffff8881461d70e0 R11: ffffffff817f4990 R12: 0000000000000000
[  494.843645][ T8275] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  494.852465][ T8275] FS:  00007f452a7526c0(0000) GS:ffff8881aa790000(0000) knlGS:0000000000000000
[  494.861745][ T8275] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  494.868674][ T8275] CR2: 0000200000001080 CR3: 0000000030ba4000 CR4: 00000000003526f0
[  494.876830][ T8275] Call Trace:
[  494.880497][ T8275]  <TASK>
[  494.883581][ T8275]  rate_control_rate_init_all_links+0x60/0x6f0
[  494.890085][ T8275]  ieee80211_add_station+0x98d/0x9f0
[  494.895680][ T8275]  ? __pfx_ieee80211_add_station+0x10/0x10
[  494.901874][ T8275]  rdev_add_station+0x80/0x3d0
[  494.906845][ T8275]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.912993][ T8275]  nl80211_new_station+0x360c/0x36d0
[  494.918669][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  494.924453][ T8275]  ? __pfx_nl80211_new_station+0x10/0x10
[  494.930480][ T8275]  genl_family_rcv_msg_doit+0x338/0x3f0
[  494.936291][ T8275]  genl_rcv_msg+0xacf/0xc10
[  494.941158][ T8275]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  494.949518][ T8275]  ? __pfx_nl80211_new_station+0x10/0x10
[  494.956223][ T8275]  ? __pfx_nl80211_post_doit+0x10/0x10
[  494.962131][ T8275]  netlink_rcv_skb+0x54a/0x680
[  494.967158][ T8275]  ? __pfx_genl_rcv_msg+0x10/0x10
[  494.972505][ T8275]  genl_rcv+0x41/0x60
[  494.976681][ T8275]  ? __pfx_genl_rcv+0x10/0x10
[  494.981783][ T8275]  netlink_unicast+0xf01/0x12b0
[  494.986909][ T8275]  netlink_sendmsg+0x10b3/0x1250
[  494.992245][ T8275]  ? __pfx_netlink_sendmsg+0x10/0x10
[  494.997783][ T8275]  ? __pfx_netlink_sendmsg+0x10/0x10
[  495.003469][ T8275]  __sock_sendmsg+0x330/0x3d0
[  495.011063][ T8275]  ____sys_sendmsg+0x7e0/0xd80
[  495.016119][ T8275]  ___sys_sendmsg+0x271/0x3b0
[  495.021209][ T8275]  ? __rcu_read_unlock+0x6d/0xd0
[  495.026380][ T8275]  ? __fget_files+0x3b4/0x4a0
[  495.031437][ T8275]  ? __fget_files+0x3b9/0x4a0
[  495.036410][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  495.041881][ T8275]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  495.050661][ T8275]  __x64_sys_sendmsg+0x211/0x3e0
[  495.055883][ T8275]  ? kmsan_get_metadata+0xfb/0x160
[  495.061975][ T8275]  x64_sys_call+0x1dfd/0x3e20
[  495.066924][ T8275]  do_syscall_64+0xd9/0x210
[  495.071745][ T8275]  ? irqentry_exit+0x16/0x60
[  495.076585][ T8275]  ? clear_bhb_loop+0x40/0x90
[  495.081725][ T8275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.087857][ T8275] RIP: 0033:0x7f452998eec9
[  495.092582][ T8275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.112610][ T8275] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  495.121392][ T8275] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  495.129701][ T8275] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000008
[  495.137850][ T8275] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  495.146111][ T8275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.157046][ T8275] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  495.165954][ T8275]  </TASK>
[  495.169247][ T8275] ---[ end trace 0000000000000000 ]---
[  495.564211][ T8222] usb 8-1: USB disconnect, device number 4
[  496.895845][ T8302] netlink: 8 bytes leftover after parsing attributes in process `syz.3.533'.
[  498.102949][   T42] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  498.199343][ T5875] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  498.310122][   T42] usb 8-1: Using ep0 maxpacket: 32
[  498.362182][   T42] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  498.370796][   T42] usb 8-1: config 0 has no interface number 0
[  498.377205][   T42] usb 8-1: config 0 interface 12 has no altsetting 0
[  498.439251][ T5875] usb 2-1: Using ep0 maxpacket: 16
[  498.470879][ T5875] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  498.481531][ T5875] usb 2-1: config 0 interface 0 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  498.494904][ T5875] usb 2-1: config 0 interface 0 has no altsetting 0
[  498.502650][ T5875] usb 2-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  498.512121][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.574586][   T42] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  498.584265][   T42] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  498.592649][   T42] usb 8-1: Product: syz
[  498.596987][   T42] usb 8-1: Manufacturer: syz
[  498.601879][   T42] usb 8-1: SerialNumber: syz
[  498.734567][   T42] usb 8-1: config 0 descriptor??
[  498.803627][ T5875] usb 2-1: config 0 descriptor??
[  498.849137][ T5875] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  499.908784][ T8336] netlink: 60 bytes leftover after parsing attributes in process `syz.2.544'.
[  500.285779][   T42] f81534 8-1:0.12: f81534_set_register: reg: 1002 data: 2f failed: -71
[  500.296608][   T42] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  500.304568][   T42] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  500.313927][   T42] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  500.439348][   T42] usb 8-1: USB disconnect, device number 5
[  501.097884][ T8222] usb 2-1: USB disconnect, device number 3
[  502.944001][ T8376] netlink: 60 bytes leftover after parsing attributes in process `syz.3.556'.
[  503.041197][ T5823] Bluetooth: hci1: command 0x0406 tx timeout
[  504.720529][   T42] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  504.829900][ T8397] netlink: 180 bytes leftover after parsing attributes in process `syz.0.563'.
[  504.926433][ T8398] netlink: 180 bytes leftover after parsing attributes in process `syz.0.563'.
[  504.945914][   T42] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  504.957847][   T42] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  504.968095][   T42] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  504.979886][   T42] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.990439][ T5875] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  505.121082][   T42] usb 8-1: config 0 descriptor??
[  505.178728][ T5875] usb 3-1: Using ep0 maxpacket: 16
[  505.206763][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  505.218542][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  505.228976][ T5875] usb 3-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  505.238568][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.254781][ T8222] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  505.343028][ T5875] usb 3-1: config 0 descriptor??
[  505.509107][ T8222] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  505.520899][ T8222] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  505.531087][ T8222] usb 2-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  505.540630][ T8222] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.668081][ T8222] usb 2-1: config 0 descriptor??
[  505.811622][ T5875] playstation 0003:054C:05C4.0003: hidraw0: USB HID v0.00 Device [HID 054c:05c4] on usb-dummy_hcd.2-1/input0
[  506.215277][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve feature with reportID 163: -71
[  506.225378][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve DualShock4 firmware info: -71
[  506.235506][ T5875] playstation 0003:054C:05C4.0003: Failed to get firmware info from DualShock4
[  506.244869][ T5875] playstation 0003:054C:05C4.0003: HW/FW version data in sysfs will be invalid.
[  506.318281][ T8222] ryos 0003:1E7D:3138.0004: hidraw1: USB HID v0.00 Device [HID 1e7d:3138] on usb-dummy_hcd.1-1/input0
[  506.407756][ T8400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  506.414171][   T42] uclogic 0003:256C:006D.0002: v1 frame probing failed: -71
[  506.419905][ T8400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  506.424059][   T42] uclogic 0003:256C:006D.0002: failed probing parameters: -71
[  506.439464][   T42] uclogic 0003:256C:006D.0002: probe with driver uclogic failed with error -71
[  506.455713][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve feature with reportID 2: -71
[  506.465814][ T5875] playstation 0003:054C:05C4.0003: Retrying DualShock 4 get calibration report (0x02) request
[  506.680537][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve feature with reportID 2: -71
[  506.690877][ T5875] playstation 0003:054C:05C4.0003: Retrying DualShock 4 get calibration report (0x02) request
[  506.710622][ T8400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  506.723045][ T8400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  506.836988][   T42] usb 8-1: USB disconnect, device number 6
[  506.856203][ T8222] usb 2-1: USB disconnect, device number 4
[  506.943954][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve feature with reportID 2: -71
[  506.953774][ T5875] playstation 0003:054C:05C4.0003: Failed to retrieve DualShock4 calibration info: -71
[  506.966211][ T5875] playstation 0003:054C:05C4.0003: Invalid gyro calibration data for axis (3), disabling calibration.
[  506.977744][ T5875] playstation 0003:054C:05C4.0003: Invalid gyro calibration data for axis (4), disabling calibration.
[  506.989197][ T5875] playstation 0003:054C:05C4.0003: Invalid gyro calibration data for axis (5), disabling calibration.
[  507.000455][ T5875] playstation 0003:054C:05C4.0003: Invalid accelerometer calibration data for axis (0), disabling calibration.
[  507.012583][ T5875] playstation 0003:054C:05C4.0003: Invalid accelerometer calibration data for axis (1), disabling calibration.
[  507.024628][ T5875] playstation 0003:054C:05C4.0003: Invalid accelerometer calibration data for axis (2), disabling calibration.
[  507.040049][ T5875] playstation 0003:054C:05C4.0003: Failed to get calibration data from DualShock4
[  507.050309][ T5875] playstation 0003:054C:05C4.0003: Gyroscope and accelerometer will be inaccurate.
[  507.064886][ T5875] input: HID 054c:05c4 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:054C:05C4.0003/input/input7
[  507.177914][ T8422] netlink: 60 bytes leftover after parsing attributes in process `syz.0.569'.
[  507.529395][ T8417] fido_id[8417]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  507.608272][ T5875] input: HID 054c:05c4 Motion Sensors as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:054C:05C4.0003/input/input8
[  508.000070][ T8222] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  508.214459][ T8222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  508.226230][ T8222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.236420][ T8222] usb 8-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  508.245927][ T8222] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.286278][ T5875] input: HID 054c:05c4 Touchpad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:054C:05C4.0003/input/input9
[  508.329200][ T5875] playstation 0003:054C:05C4.0003: Registered DualShock4 controller hw_version=0x00000000 fw_version=0x00000000
[  508.941832][ T5875] usb 3-1: USB disconnect, device number 4
[  509.183493][ T8444] netlink: 180 bytes leftover after parsing attributes in process `syz.0.576'.
[  509.297498][ T8444] netlink: 180 bytes leftover after parsing attributes in process `syz.0.576'.
[  509.302039][ T8222] usb 8-1: config 0 descriptor??
[  510.412661][ T8222] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  510.421075][ T8222] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  510.429265][ T8222] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  510.436746][ T8222] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  510.444445][ T8222] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  510.452098][ T8450] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  510.453386][ T8450] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  510.750486][ T8456] netlink: 56 bytes leftover after parsing attributes in process `syz.0.577'.
[  510.789747][ T8222] cm6533_jd 0003:0D8C:0022.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.7-1/input0
[  510.935632][ T8222] usb 8-1: USB disconnect, device number 7
[  511.168840][ T5875] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  511.179611][ T8461] loop1: detected capacity change from 0 to 512
[  511.261548][ T8461] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  511.307039][ T8461] EXT4-fs (loop1): invalid journal inode
[  511.313238][ T8461] EXT4-fs (loop1): can't get journal size
[  511.356690][ T8463] loop2: detected capacity change from 0 to 256
[  511.402854][ T8461] EXT4-fs (loop1): 1 truncate cleaned up
[  511.411108][ T8461] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  511.424244][ T5875] usb 4-1: Using ep0 maxpacket: 32
[  511.537427][ T5875] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  511.546040][ T5875] usb 4-1: config 0 has no interface number 0
[  511.552785][ T5875] usb 4-1: config 0 interface 12 has no altsetting 0
[  511.623391][ T8463] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  511.681971][ T5875] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  511.691818][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  511.700184][ T5875] usb 4-1: Product: syz
[  511.704522][ T5875] usb 4-1: Manufacturer: syz
[  511.709554][ T5875] usb 4-1: SerialNumber: syz
[  511.831342][ T5875] usb 4-1: config 0 descriptor??
[  511.873461][ T8473] netlink: 60 bytes leftover after parsing attributes in process `syz.7.583'.
[  512.293651][ T7698] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.885231][ T8475] fido_id[8475]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  516.030174][ T5875] f81534 4-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71
[  516.041887][ T5875] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  516.050153][ T5875] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  516.058092][ T5875] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  516.277102][ T8507] netlink: 56 bytes leftover after parsing attributes in process `syz.3.592'.
[  516.292808][ T5875] usb 4-1: USB disconnect, device number 5
[  517.374991][ T8518] loop3: detected capacity change from 0 to 2048
[  517.378972][ T8222] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  517.444772][ T8518] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  517.495873][ T8522] netlink: 60 bytes leftover after parsing attributes in process `syz.0.597'.
[  517.578791][ T5875] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  517.579044][ T8222] usb 2-1: Using ep0 maxpacket: 16
[  517.666709][ T8222] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  517.679875][ T8222] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  517.690897][ T8222] usb 2-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00
[  517.700310][ T8222] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.784496][ T8222] usb 2-1: config 0 descriptor??
[  517.831537][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  517.842902][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  517.853097][ T5875] usb 3-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01
[  517.862451][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.074760][ T5875] usb 3-1: config 0 descriptor??
[  518.261688][ T8526] netlink: 12 bytes leftover after parsing attributes in process `syz.0.598'.
[  518.505225][ T8526] vlan2: entered allmulticast mode
[  518.510753][ T8526] bridge0: entered allmulticast mode
[  518.586930][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.594605][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.605063][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.612817][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.620171][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.627201][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.634398][ T5875] arvo 0003:1E7D:30D4.0006: unknown main item tag 0x0
[  518.682725][ T8222] macally 0003:060B:0001.0007: fixing up Macally ikey keyboard report descriptor
[  518.775738][ T8222] macally 0003:060B:0001.0007: unexpected long global item
[  518.786478][ T5875] arvo 0003:1E7D:30D4.0006: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.2-1/input0
[  518.835694][ T8222] macally 0003:060B:0001.0007: probe with driver macally failed with error -22
[  518.951051][ T8222] usb 2-1: USB disconnect, device number 5
[  519.024787][ T5875] usb 3-1: USB disconnect, device number 5
[  519.455017][ T8532] fido_id[8532]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  519.655508][ T8536] tipc: Started in network mode
[  519.660921][ T8536] tipc: Node identity 66b9377ff452, cluster identity 4711
[  519.669317][ T8536] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  519.815884][ T8536] syzkaller0: entered promiscuous mode
[  519.823039][ T8536] syzkaller0: entered allmulticast mode
[  520.025845][ T8540] tipc: Resetting bearer <eth:syzkaller0>
[  520.180295][ T8533] tipc: Resetting bearer <eth:syzkaller0>
[  520.240734][ T8533] tipc: Disabling bearer <eth:syzkaller0>
[  521.415381][   T57] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  521.504644][ T3604] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  521.550060][ T3604] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  521.629066][ T3737] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  522.808280][ T8572] loop2: detected capacity change from 0 to 40427
[  522.924985][ T8572] F2FS-fs (loop2): invalid crc value
[  523.230939][ T8572] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  523.748737][ T5875] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  523.769052][ T8572] F2FS-fs (loop2): Start checkpoint disabled!
[  523.890063][ T8572] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  524.688645][ T5875] usb 4-1: Using ep0 maxpacket: 16
[  524.701493][ T5875] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  524.713141][ T5875] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  524.723592][ T5875] usb 4-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00
[  524.733285][ T5875] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.952627][ T5875] usb 4-1: config 0 descriptor??
[  525.471628][ T3737] kworker/u8:17: attempt to access beyond end of device
[  525.471628][ T3737] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  525.486160][ T3737] CPU: 0 UID: 0 PID: 3737 Comm: kworker/u8:17 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  525.486320][ T3737] Tainted: [W]=WARN
[  525.486369][ T3737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  525.486485][ T3737] Workqueue: writeback wb_workfn (flush-7:2)
[  525.486724][ T3737] Call Trace:
[  525.486771][ T3737]  <TASK>
[  525.486818][ T3737]  __dump_stack+0x26/0x30
[  525.486975][ T3737]  dump_stack_lvl+0x1df/0x270
[  525.487139][ T3737]  dump_stack+0x1e/0x25
[  525.487287][ T3737]  f2fs_handle_critical_error+0xa6f/0xc20
[  525.487500][ T3737]  f2fs_stop_checkpoint+0x65/0x80
[  525.487692][ T3737]  f2fs_write_end_io+0x101c/0x1bc0
[  525.487865][ T3737]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  525.487992][ T3737]  bio_endio+0xeb4/0x1010
[  525.488149][ T3737]  submit_bio_noacct+0x213/0x2750
[  525.488354][ T3737]  submit_bio+0x57c/0x630
[  525.488508][ T3737]  f2fs_submit_write_bio+0x92/0x250
[  525.488691][ T3737]  __submit_merged_bio+0x16f/0x6a0
[  525.488863][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.489028][ T3737]  __submit_merged_write_cond+0x458/0x9a0
[  525.489226][ T3737]  f2fs_write_data_pages+0x4bb2/0x5480
[  525.489485][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.489673][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.489816][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.489963][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.490093][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.490228][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.490351][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.490486][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.490629][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.490764][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.490901][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.491037][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.491184][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.491333][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.491486][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.491639][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.491788][ T3737]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  525.491974][ T3737]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  525.492157][ T3737]  do_writepages+0x3f2/0x860
[  525.492288][ T3737]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  525.492446][ T3737]  ? writeback_sb_inodes+0x11/0x1cb0
[  525.492589][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.492752][ T3737]  __writeback_single_inode+0x101/0x1190
[  525.492899][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.493056][ T3737]  writeback_sb_inodes+0xac1/0x1cb0
[  525.493275][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.493460][ T3737]  wb_writeback+0x4ce/0xc00
[  525.493614][ T3737]  ? queue_io+0x4b1/0x790
[  525.493753][ T3737]  wb_workfn+0x397/0x1910
[  525.493929][ T3737]  ? kmsan_get_metadata+0xfb/0x160
[  525.494102][ T3737]  ? __pfx_wb_workfn+0x10/0x10
[  525.494272][ T3737]  process_scheduled_works+0xb8e/0x1d80
[  525.494509][ T3737]  worker_thread+0xedf/0x1590
[  525.494718][ T3737]  kthread+0xd59/0xf00
[  525.494834][ T3737]  ? __pfx_worker_thread+0x10/0x10
[  525.495029][ T3737]  ? __pfx_kthread+0x10/0x10
[  525.495150][ T3737]  ret_from_fork+0x233/0x380
[  525.495276][ T3737]  ? __pfx_kthread+0x10/0x10
[  525.495404][ T3737]  ret_from_fork_asm+0x1a/0x30
[  525.495602][ T3737]  </TASK>
[  525.818933][ T3737] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  525.925239][ T5875] usbhid 4-1:0.0: can't add hid device: -71
[  525.932417][ T5875] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  526.018871][   T42] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  526.040394][ T5875] usb 4-1: USB disconnect, device number 6
[  527.055125][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  527.066521][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.076770][   T42] usb 2-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01
[  527.086162][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.221939][   T42] usb 2-1: config 0 descriptor??
[  527.724276][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.731547][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.738987][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.746037][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.754745][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.762635][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.769786][   T42] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0
[  527.880036][   T42] arvo 0003:1E7D:30D4.0008: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.1-1/input0
[  527.923165][   T42] arvo 0003:1E7D:30D4.0008: couldn't init struct arvo_device
[  527.931085][   T42] arvo 0003:1E7D:30D4.0008: couldn't install keyboard
[  527.952949][   T42] arvo 0003:1E7D:30D4.0008: probe with driver arvo failed with error -71
[  528.061715][   T42] usb 2-1: USB disconnect, device number 6
[  528.818032][ T8610] fido_id[8610]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  529.251244][ T8625] loop1: detected capacity change from 0 to 256
[  529.607870][ T8625] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  531.698574][ T8222] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  531.721285][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  531.727881][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  532.019730][ T8222] usb 8-1: Using ep0 maxpacket: 16
[  532.091830][ T8222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  532.104687][ T8222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  532.117090][ T8222] usb 8-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00
[  532.127362][ T8222] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.378015][ T8222] usb 8-1: config 0 descriptor??
[  532.876891][ T8222] usbhid 8-1:0.0: can't add hid device: -71
[  532.884467][ T8222] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  532.924573][ T8222] usb 8-1: USB disconnect, device number 8
[  533.480590][ T8657] tipc: Started in network mode
[  533.485826][ T8657] tipc: Node identity 0e245f76719a, cluster identity 4711
[  533.494144][ T8657] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  533.550935][ T8657] syzkaller0: entered promiscuous mode
[  533.556738][ T8657] syzkaller0: entered allmulticast mode
[  533.687578][ T8657] tipc: Resetting bearer <eth:syzkaller0>
[  533.789397][ T8656] tipc: Resetting bearer <eth:syzkaller0>
[  533.831110][ T8656] tipc: Disabling bearer <eth:syzkaller0>
[  534.901308][ T8682] loop2: detected capacity change from 0 to 128
[  535.352487][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  535.352564][   T30] audit: type=1800 audit(1758825205.623:44): pid=8682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.644" name="bus" dev="loop2" ino=1048638 res=0 errno=0
[  535.707147][ T8682] syz.2.644: attempt to access beyond end of device
[  535.707147][ T8682] loop2: rw=0, sector=121, nr_sectors = 40 limit=128
[  536.259077][ T8698] loop3: detected capacity change from 0 to 1024
[  536.428232][ T8698] =====================================================
[  536.435745][ T8698] BUG: KMSAN: uninit-value in hfsplus_attr_bin_cmp_key+0xd9/0x190
[  536.443976][ T8698]  hfsplus_attr_bin_cmp_key+0xd9/0x190
[  536.449815][ T8698]  hfs_find_rec_by_key+0xae/0x240
[  536.455004][ T8698]  __hfsplus_brec_find+0x271/0x840
[  536.460549][ T8698]  hfsplus_brec_find+0x4df/0x9f0
[  536.465628][ T8698]  hfsplus_find_attr+0x1eb/0x260
[  536.471072][ T8698]  __hfsplus_getxattr+0x401/0x1020
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  536.476350][ T8698]  hfsplus_getxattr+0x240/0x3f0
[  536.481705][ T8698]  hfsplus_security_getxattr+0x53/0x70
[  536.487334][ T8698]  vfs_getxattr_alloc+0x72e/0xc00
[  536.493158][ T8698]  ima_read_xattr+0x51/0xe0
[  536.497826][ T8698]  process_measurement+0x26fd/0x40e0
[  536.503525][ T8698]  ima_file_check+0x8e/0xd0
[  536.508762][ T8698]  security_file_post_open+0xbf/0x530
[  536.514301][ T8698]  path_openat+0x5ac3/0x6760
[  536.521902][ T8698]  do_filp_open+0x280/0x660
[  536.526575][ T8698]  do_sys_openat2+0x1bb/0x2f0
[  536.533244][ T8698]  __x64_sys_openat+0x240/0x300
[  536.538601][ T8698]  x64_sys_call+0x3bcc/0x3e20
[  536.543482][ T8698]  do_syscall_64+0xd9/0x210
[  536.548117][ T8698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.555866][ T8698] 
[  536.558259][ T8698] Uninit was created at:
[  536.562949][ T8698]  __kmalloc_noprof+0x95f/0x1310
[  536.568053][ T8698]  hfsplus_find_init+0x90/0x1d0
[  536.573268][ T8698]  __hfsplus_getxattr+0x355/0x1020
[  536.578745][ T8698]  hfsplus_getxattr+0x240/0x3f0
[  536.583752][ T8698]  hfsplus_security_getxattr+0x53/0x70
[  536.589531][ T8698]  vfs_getxattr_alloc+0x72e/0xc00
[  536.594725][ T8698]  ima_read_xattr+0x51/0xe0
[  536.599782][ T8698]  process_measurement+0x26fd/0x40e0
[  536.605250][ T8698]  ima_file_check+0x8e/0xd0
[  536.610132][ T8698]  security_file_post_open+0xbf/0x530
[  536.615661][ T8698]  path_openat+0x5ac3/0x6760
[  536.623028][ T8698]  do_filp_open+0x280/0x660
[  536.627696][ T8698]  do_sys_openat2+0x1bb/0x2f0
[  536.633420][ T8698]  __x64_sys_openat+0x240/0x300
[  536.638583][ T8698]  x64_sys_call+0x3bcc/0x3e20
[  536.643535][ T8698]  do_syscall_64+0xd9/0x210
[  536.648179][ T8698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.654428][ T8698] 
[  536.656849][ T8698] CPU: 1 UID: 0 PID: 8698 Comm: syz.3.649 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  536.667966][ T8698] Tainted: [W]=WARN
[  536.671963][ T8698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  536.682284][ T8698] =====================================================
[  536.689759][ T8698] Disabling lock debugging due to kernel taint
[  536.696008][ T8698] Kernel panic - not syncing: kmsan.panic set ...
[  536.702536][ T8698] CPU: 1 UID: 0 PID: 8698 Comm: syz.3.649 Tainted: G    B   W           syzkaller #0 PREEMPT(none) 
[  536.713483][ T8698] Tainted: [B]=BAD_PAGE, [W]=WARN
[  536.718583][ T8698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  536.728745][ T8698] Call Trace:
[  536.732109][ T8698]  <TASK>
[  536.735117][ T8698]  __dump_stack+0x26/0x30
[  536.739628][ T8698]  dump_stack_lvl+0x53/0x270
[  536.744414][ T8698]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  536.750409][ T8698]  dump_stack+0x1e/0x25
[  536.754732][ T8698]  vpanic+0x361/0xc50
[  536.758885][ T8698]  panic+0x15d/0x160
[  536.762992][ T8698]  kmsan_report+0x31c/0x320
[  536.767653][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  536.772918][ T8698]  ? __msan_warning+0x1b/0x30
[  536.777747][ T8698]  ? hfsplus_attr_bin_cmp_key+0xd9/0x190
[  536.783533][ T8698]  ? hfs_find_rec_by_key+0xae/0x240
[  536.788971][ T8698]  ? __hfsplus_brec_find+0x271/0x840
[  536.794430][ T8698]  ? hfsplus_brec_find+0x4df/0x9f0
[  536.799683][ T8698]  ? hfsplus_find_attr+0x1eb/0x260
[  536.804948][ T8698]  ? __hfsplus_getxattr+0x401/0x1020
[  536.810394][ T8698]  ? hfsplus_getxattr+0x240/0x3f0
[  536.815651][ T8698]  ? hfsplus_security_getxattr+0x53/0x70
[  536.821467][ T8698]  ? vfs_getxattr_alloc+0x72e/0xc00
[  536.826852][ T8698]  ? ima_read_xattr+0x51/0xe0
[  536.831712][ T8698]  ? process_measurement+0x26fd/0x40e0
[  536.837375][ T8698]  ? ima_file_check+0x8e/0xd0
[  536.842216][ T8698]  ? security_file_post_open+0xbf/0x530
[  536.847916][ T8698]  ? path_openat+0x5ac3/0x6760
[  536.852852][ T8698]  ? do_filp_open+0x280/0x660
[  536.857700][ T8698]  ? do_sys_openat2+0x1bb/0x2f0
[  536.862704][ T8698]  ? __x64_sys_openat+0x240/0x300
[  536.867882][ T8698]  ? x64_sys_call+0x3bcc/0x3e20
[  536.872912][ T8698]  ? do_syscall_64+0xd9/0x210
[  536.877733][ T8698]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.883969][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  536.889259][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  536.894539][ T8698]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  536.900988][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  536.906265][ T8698]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  536.912651][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  536.917913][ T8698]  __msan_warning+0x1b/0x30
[  536.922541][ T8698]  hfsplus_attr_bin_cmp_key+0xd9/0x190
[  536.928150][ T8698]  hfs_find_rec_by_key+0xae/0x240
[  536.933308][ T8698]  ? __pfx_hfsplus_attr_bin_cmp_key+0x10/0x10
[  536.939532][ T8698]  __hfsplus_brec_find+0x271/0x840
[  536.944764][ T8698]  ? __pfx_hfs_find_rec_by_key+0x10/0x10
[  536.950598][ T8698]  hfsplus_brec_find+0x4df/0x9f0
[  536.955661][ T8698]  ? __pfx_hfs_find_rec_by_key+0x10/0x10
[  536.961764][ T8698]  hfsplus_find_attr+0x1eb/0x260
[  536.966827][ T8698]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  536.972787][ T8698]  __hfsplus_getxattr+0x401/0x1020
[  536.978048][ T8698]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  536.984445][ T8698]  ? __msan_memcpy+0x108/0x1c0
[  536.989337][ T8698]  hfsplus_getxattr+0x240/0x3f0
[  536.994331][ T8698]  hfsplus_security_getxattr+0x53/0x70
[  536.999931][ T8698]  ? __pfx_hfsplus_security_getxattr+0x10/0x10
[  537.006231][ T8698]  vfs_getxattr_alloc+0x72e/0xc00
[  537.011461][ T8698]  ima_read_xattr+0x51/0xe0
[  537.016122][ T8698]  process_measurement+0x26fd/0x40e0
[  537.021620][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  537.026878][ T8698]  ? security_file_post_open+0xbf/0x530
[  537.032558][ T8698]  ? __msan_warning+0x1b/0x30
[  537.037399][ T8698]  ? filter_irq_stacks+0x13f/0x190
[  537.042645][ T8698]  ? stack_depot_save_flags+0x35/0x7b0
[  537.048323][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  537.053582][ T8698]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  537.059545][ T8698]  ? kmsan_get_metadata+0xfb/0x160
[  537.064797][ T8698]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  537.070765][ T8698]  ima_file_check+0x8e/0xd0
[  537.075426][ T8698]  security_file_post_open+0xbf/0x530
[  537.080933][ T8698]  path_openat+0x5ac3/0x6760
[  537.085742][ T8698]  do_filp_open+0x280/0x660
[  537.090435][ T8698]  do_sys_openat2+0x1bb/0x2f0
[  537.095338][ T8698]  __x64_sys_openat+0x240/0x300
[  537.100332][ T8698]  x64_sys_call+0x3bcc/0x3e20
[  537.105176][ T8698]  do_syscall_64+0xd9/0x210
[  537.109810][ T8698]  ? irqentry_exit+0x16/0x60
[  537.114552][ T8698]  ? clear_bhb_loop+0x40/0x90
[  537.119362][ T8698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.125381][ T8698] RIP: 0033:0x7f452998eec9
[  537.129883][ T8698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.149629][ T8698] RSP: 002b:00007f452a752038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  537.158191][ T8698] RAX: ffffffffffffffda RBX: 00007f4529be5fa0 RCX: 00007f452998eec9
[  537.166283][ T8698] RDX: 0000000000008042 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  537.174357][ T8698] RBP: 00007f4529a11f91 R08: 0000000000000000 R09: 0000000000000000
[  537.182421][ T8698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  537.190483][ T8698] R13: 00007f4529be6038 R14: 00007f4529be5fa0 R15: 00007ffc29581fc8
[  537.198593][ T8698]  </TASK>
[  537.201954][ T8698] Kernel Offset: disabled
[  537.206340][ T8698] Rebooting in 86400 seconds..