last executing test programs:

10.129408412s ago: executing program 0 (id=255):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0}) (async, rerun: 64)
r5 = socket(0x400000000010, 0x3, 0x0) (rerun: 64)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e) (async, rerun: 32)
r11 = syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00') (rerun: 32)
write$tun(r11, &(0x7f0000000000)=ANY=[@ANYRESOCT], 0xfce)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000140)={0x0, 0x0, <r12=>0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r11, 0xc06864a1, &(0x7f0000000180)={&(0x7f00000000c0)=[0x0], 0x1, r12}) (async, rerun: 64)
sendmmsg$unix(r10, &(0x7f00000bd000), 0x318, 0x0) (rerun: 64)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r13 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r13, r13, 0x0, 0x40000f63c) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
socket$tipc(0x1e, 0x2, 0x0) (async)
ioctl$sock_netdev_private(r9, 0x89f2, &(0x7f00000002c0)) (async)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_tcp_TCP_CONGESTION(r8, 0x6, 0xd, &(0x7f0000000100)='vegas\x00', 0x6) (async)
shutdown(r8, 0x2)

9.642480126s ago: executing program 0 (id=256):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r1 = dup2(r0, r0)
setsockopt$inet6_int(r1, 0x29, 0x4a, &(0x7f0000000580)=0x7ff, 0x4)
write$tun(r1, &(0x7f0000000240)=ANY=[], 0x46)
recvmmsg(r1, &(0x7f00000049c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2000, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000000c0)=ANY=[], 0x118)
socket$igmp(0x2, 0x3, 0x2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000300)={0xa, 0x0, 0xaeb, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7}, 0xffffffffffffff3d)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, &(0x7f0000000280)={&(0x7f00000005c0)={{@host, 0x4}, {@host, 0x9950}, 0x400, "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"}, 0x418, 0xfffffffd})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r7, &(0x7f00000015c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="ffca88b09c8bff54bd1c00b6aed260408eeeaf9b9f837889191306b45de660062f1c08d8c6d22f2de6226adf6f6477e425a94bc96d17eb39d621c8b0ba4504147c00000000000000", 0xfffffd2a}], 0x1}, 0x48093)
sendmmsg(r5, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000480)="ec398e5a9e69d1581e5d9f132cd21e3f280c155fed9c6605dea65c", 0x1b}], 0x1}}], 0x1, 0x9200000000000080)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0900000000000000000002000000140001"], 0x28}}, 0x0)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r8, 0x4008af60, &(0x7f0000000040)={@host})
openat$cgroup_ro(r1, &(0x7f0000000100)='blkio.bfq.group_wait_time\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r2, 0xc0984124, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
syz_usb_connect(0x1, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r3, 0x8400941f, &(0x7f0000000a00))
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

9.379942203s ago: executing program 3 (id=258):
socket(0x11, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x1a1300)
poll(&(0x7f00000020c0)=[{r0, 0x9012}], 0x1, 0x0)
read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020)
r1 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec23, 0x0, 0x0, 0x40000331}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000022"])
syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

9.231937383s ago: executing program 3 (id=260):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000014c0)={0x2020}, 0x2020)
r1 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x28de, 0x1102, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xd0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1, 0xf9, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0x50}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x458}}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x200000d0}, 0x20044004)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000140)=@ccm_128={{0x304}, "68c4502393926b50", "09f600000015ccba7f514728b11b8d00", "e2f5cde0"}, 0x28)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r6, 0x4008ae9c, &(0x7f0000000740)={0xf, 0x4})
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000006c0)=ANY=[@ANYBLOB="01000000000000009102"])
syz_usb_control_io(r1, &(0x7f00000004c0)={0x2c, &(0x7f0000000300)={0x20, 0xc, 0x16, {0x16, 0x3, "1ddd9f067b889c9428f8d35ef3d4a4cdd9f8232a"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

7.155975197s ago: executing program 3 (id=265):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
vmsplice(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)='wi', 0x2}], 0x1, 0x1)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=ANY=[@ANYBLOB='T\x00', @ANYRES16, @ANYBLOB="0101000000", @ANYRES32], 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xb8}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

7.041418243s ago: executing program 3 (id=266):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000016038308c5109a8146e40102230109022d0001000000000904000003030000000905be3b"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000bc0)={0x84, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000400)={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = io_uring_setup(0x664c, &(0x7f0000000480)={0x0, 0x0, 0x1880, 0x5})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_setup(0x35a8, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
r7 = syz_io_uring_setup(0x4337, &(0x7f0000000000)={0x0, 0x2642, 0x400, 0x2, 0x1d5}, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x13, r7, 0x0)
io_uring_enter(r4, 0x47f6, 0x0, 0x0, 0x0, 0x0)

6.564172342s ago: executing program 0 (id=267):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x10, 0x323, &(0x7f0000006680))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x3, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
io_setup(0x6, &(0x7f0000001380)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000080)={0x1000000, 0x0, 0x0, 0x0, 0x7ffe, r2, 0x0, 0x0, 0x400000000}])
sendmsg$nl_route(r2, 0x0, 0x240088c5)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00'/14])
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x4e21, 0xfffff79e, @mcast1, 0xfffffdfc}}, 0x0, 0x0, 0x9, 0x0, "0c9e089c01860b471037f43d223b3c1b324debec40e55a07f709417eb48821996aff1c7154e746be4d7686455261c425a7519cc269d04e6205abaabde24a2b12440b329ad5bd35f21907c7988d1300"}, 0xd8)
sysinfo(&(0x7f0000000280)=""/81)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f0000000300)="2f6b05000000eff3983834e807f718fbce8e83bdc26a7ad2000000", 0x14, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={'sha1-ni\x00'}})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/config', 0x0, 0x0)
fchown(r5, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, &(0x7f0000000000)={'veth0_to_bridge\x00', {0x2, 0x4e23, @private=0xa010102}})
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0x1, 0x0, 0x0)
write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x40)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000004700)={'team0\x00', <r8=>0x0})
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x25dfdbff, {0x0, 0x0, 0x74, r8, {}, {0x0, 0x1}, {0x3, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x40)

6.525566598s ago: executing program 1 (id=268):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x0, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0x65, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1a}, {[@timestamp={0x44, 0x4, 0x1c, 0x0, 0x6}]}}, {0x4e20, 0x4e22, 0x4d, 0x0, @wg=@data={0x4, 0x2, 0x8, "e8771ac366586e56f446dcd22ec94c672f1cd650516a2fbeddd0cb5cffc4ef63a1c2be9551171e48bb8559ac9077c099289048d76d"}}}}, 0x73) (fail_nth: 3)

5.868109504s ago: executing program 1 (id=269):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0xe, 0x4400)
ioctl$USBDEVFS_GET_CAPABILITIES(r2, 0x8004551a, &(0x7f00000000c0))
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = socket$kcm(0x2, 0x3, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000400)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c)
recvmmsg(r5, &(0x7f0000000f80)=[{{0x0, 0xfffffffffffffdba, &(0x7f0000000980)=[{&(0x7f0000000300)=""/122}, {&(0x7f0000000780)=""/126}, {&(0x7f00000004c0)=""/68}, {&(0x7f0000000540)=""/195}, {&(0x7f0000000640)=""/182}, {&(0x7f0000000700)=""/102}, {&(0x7f0000000180)=""/56}, {&(0x7f0000001000)=""/193}, {&(0x7f0000000880)=""/242}], 0x0, &(0x7f0000000a40)=""/126}, 0xe4}, {{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000440), 0x14}, {&(0x7f0000000ac0)=""/166}, {&(0x7f0000000b80)=""/173}, {&(0x7f0000000c40)=""/221}, {&(0x7f0000000d40)=""/236}, {&(0x7f0000000e40)=""/60}], 0x24, &(0x7f0000000800)=""/73}, 0x1}], 0x2a, 0x40012020, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x0, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0xfc0, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1a}, {[@timestamp={0x44, 0x4, 0x1c, 0x0, 0x6}]}}, {0x4e20, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x2, 0x8, "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"}}}}, 0xfce)

5.867667543s ago: executing program 4 (id=270):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f00000014c0)={0xfffffffd, 0xffffffcb, 0x1c02, 0xc8e9, 0x1b, "cc33101d3f0000002000"})
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "000080f100df000000a7d9de16c708db7200"})
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket(0x18, 0x3, 0x0)
write(r3, 0x0, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000001880)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x120, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x218, 0x20a, 0x278, 0x218, 0x278, 0x3, 0x0, {[{{@ipv6={@private2, @empty, [], [], 'veth1\x00', 'team_slave_0\x00', {}, {}, 0x6, 0x0, 0x0, 0x22}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@socket2={{0x28}, 0x6}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x4}}]}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x365)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
preadv(r4, &(0x7f0000000480)=[{&(0x7f00000001c0)=""/122, 0x7a}, {&(0x7f0000000240)=""/42, 0x2a}, {&(0x7f0000001c00)=""/4096, 0x1000}, {&(0x7f0000000380)=""/216, 0xd8}, {&(0x7f0000000280)=""/51, 0x33}, {&(0x7f00000002c0)=""/53, 0x35}], 0x6, 0x4, 0x1)
r6 = socket$kcm(0x2, 0x200000000000001, 0x0)
socket$inet(0x2, 0x3, 0x6)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
openat$zero(0xffffffffffffff9c, &(0x7f0000000f40), 0x101002, 0x0)
r7 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x18})
io_uring_enter(r7, 0x5370, 0x0, 0x0, 0x0, 0x4e)
r10 = syz_open_pts(0xffffffffffffffff, 0x42)
getsockopt$TIPC_NODE_RECVQ_DEPTH(0xffffffffffffffff, 0x10f, 0x83, &(0x7f0000001300), &(0x7f0000001340)=0x4)
dup3(r10, 0xffffffffffffffff, 0x0)

3.852602751s ago: executing program 4 (id=275):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_open_dev$usbfs(&(0x7f00000002c0), 0x8, 0x600000)
r2 = accept4(r1, 0x0, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="5c000000020605000000000000000000000000000c00078005001500267d00000500010007000000050005000a000000050004"], 0x5c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r3)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)='wi', 0x2}], 0x1, 0x1)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xb8}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3.781223205s ago: executing program 1 (id=276):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
vmsplice(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)='wi', 0x2}], 0x1, 0x1)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=ANY=[@ANYBLOB='T\x00', @ANYRES16, @ANYBLOB="0101000000", @ANYRES32], 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xb8}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3.575995179s ago: executing program 2 (id=277):
ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f0000000000)={0xb, 0x3, 0x7, 0xf4d, 0x7, 0x4, 0xc1})
r0 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x5, 0x18812, r0, 0xaa6f8000)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000040)={0x3, 0x0, {<r1=>0x0}, {0xee01}, 0xf})
sched_setscheduler(r1, 0x5, &(0x7f0000000080)=0x2)
syz_usb_connect$uac1(0x5, 0xa5, &(0x7f0000000a00)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x93, 0x3, 0x1, 0xfc, 0xc0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{}, [@feature_unit={0x13, 0x24, 0x6, 0x0, 0x0, 0x6, [0x0, 0x0, 0x9, 0x0, 0x0, 0x0]}, @output_terminal={0x9}, @selector_unit={0x9, 0x24, 0x5, 0x0, 0x0, "f8431cfd"}, @output_terminal={0x9, 0x24, 0x3, 0x0, 0x304, 0xfc, 0x4, 0xff}, @selector_unit={0x6, 0x24, 0x5, 0x4, 0x0, "fd"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x2, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0)

3.564294179s ago: executing program 1 (id=278):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r3 = syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, &(0x7f0000000000)={0x2c, &(0x7f0000000040)=ANY=[@ANYRESHEX=r3], 0x0, 0x0, 0x0, 0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x2d, &(0x7f00000000c0)={&(0x7f0000000200)=@newlink={0x6c, 0x10, 0x403, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x34, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xfffffffffffffee1, 0x1, {0x53, 0x6}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x60a}}]}]}}}, @IFLA_LINK={0x8}]}, 0x6c}, 0x1, 0xba01}, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, &(0x7f0000000600)={0x84, &(0x7f0000000200)={0x0, 0xa, 0x4, "141f8eba"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r3, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r2], 0x74}}, 0x4000000)

3.543363637s ago: executing program 4 (id=279):
syz_open_dev$sg(0x0, 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x18b801, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x1, 0x1, 0x7ffffffc}})
ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000002340)=""/4105)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_setup(0x8, &(0x7f00000000c0))
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r3 = semget$private(0x0, 0x3, 0x591)
semtimedop(r3, &(0x7f0000000040)=[{0x0, 0x88b5, 0x1000}], 0x1, &(0x7f0000000740)={0x0, 0x3938700})
r4 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x27, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e28, @empty}, 0x10)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000000))
r6 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r6, 0xc0045002, &(0x7f0000000080)=0xf7e)
read$dsp(r6, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r5, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
io_setup(0x3ff, &(0x7f0000000500))
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3.29962772s ago: executing program 0 (id=280):
socket$pppl2tp(0x18, 0x1, 0x1)
msgget$private(0x0, 0x100)
syz_open_dev$sndpcmc(0x0, 0xb, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, 0x0)
userfaultfd(0x80001)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$FBIOGET_FSCREENINFO(0xffffffffffffffff, 0x4602, &(0x7f0000000100))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x0)
mbind(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x7, 0x1)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0xffffffff, @empty}, 0x1c)
syz_emit_vhci(0x0, 0xcb)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x37}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x4e20, 0x6000, @empty}}, 0x0, 0x1, 0x3bf8580d, 0x0, 0xb3550aa4ba878396, 0x2}, 0x9c)
socket$nl_route(0x10, 0x3, 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x4, 0x3f, 0x3202, @vifc_lcl_addr=@private=0xa010101, @private=0xa010101}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

3.198412056s ago: executing program 3 (id=281):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x9b, 0xfffffffffffffffc}, 0x10)
syz_usb_control_io$printer(r0, 0x0, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f00000000c0), 0xfdef)
syz_usb_control_io(r0, 0x0, &(0x7f0000000600)={0x44, &(0x7f0000000340)={0x40, 0xf, 0x1, 'V'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000540)={0x18, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f00000000c0)={0x40, 0xd, 0x59, {0x59, 0xc, "936d51b653bb827615d0de2b2dffa69c029265611d333cd6790c884cb7baa86ebc5e5016b19c014d83df9196a6006d6adf49a16d9df0012f741459d0d1e71dda2ab2115440b3b633cd7d789c42e28f3fd77d58cbb8fc5f"}}, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x427}}, &(0x7f00000001c0)={0x0, 0x22, 0x12, {[@global=@item_4={0x3, 0x1, 0x9, "d408fc18"}, @main=@item_4={0x3, 0x0, 0x8, "fa4fa49d"}, @global=@item_012={0x2, 0x1, 0x0, "9ff7"}, @main=@item_4={0x3, 0x0, 0x9, "a91434cd"}]}}, &(0x7f0000000200)={0x0, 0x21, 0x9, {0x9, 0x21, 0x101, 0x7, 0x1, {0x22, 0x22c}}}}, &(0x7f0000000480)={0x2c, &(0x7f0000000280)={0x40, 0xb, 0x1d, "99605f3ed093a60aaa8eab562a33382a95c945a0999973f83a22b300e8"}, &(0x7f00000002c0)={0x0, 0xa, 0x1}, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x6}, &(0x7f0000000380)={0x20, 0x1, 0x6a, "50bc0c72f7e95ef99f8fae7016fe923c5794a8815bb13f81315e0420da0cd5829a0af3b5958ae3959f55f2e556bd2b648b0bb73a29c0e333f5188b70f71b327b4d481ec7157ebf8e104065a3f3a01bba24ec966156098eb662f66792834d4d906d21ccee8edd616cacc0"}, &(0x7f0000000400)={0x20, 0x3, 0x1, 0x41}})

2.83606426s ago: executing program 2 (id=282):
socket(0x11, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x1a1300)
poll(&(0x7f00000020c0)=[{r0, 0x9012}], 0x1, 0x0)
read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020)
r1 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec23, 0x0, 0x0, 0x40000331}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000022"])
syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

2.729139096s ago: executing program 2 (id=283):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000b80), 0x80540, 0x0)
ioctl(r1, 0x5, &(0x7f0000000bc0)="032d6e017e28dde74b27d7fbd96b2842daf75094730f5233587e2220f4d7b1872756d06a5867657174d15e862099999a8cbe172b763d0328aebf083b6325fcdc0a496de78f7ca3bf23ae8e4eaa78ce90d5aea6b8b17b9afade89ee86e989582680c2712d3c1c9e58246dbe2cf4351c9899620d2ebe968c99bad34978449983a87e03321e82a25e13")
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001580)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f0000000340)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000001280)=[{&(0x7f0000000240)="5825be57aff9352b35d100000000000000e6caa7", 0x14}], 0x1}}], 0x2, 0x4)
clock_gettime(0x0, &(0x7f0000000b00)={<r2=>0x0, <r3=>0x0})
recvmmsg(r0, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)=""/43, 0x2b}, {&(0x7f0000000080)=""/84, 0x54}, {&(0x7f0000000100)=""/154, 0x9a}, {&(0x7f0000000280)=""/21, 0x15}, {&(0x7f0000000500)=""/200, 0xc8}], 0x5, &(0x7f0000000380)=""/125, 0x7d}, 0xfffffffc}, {{&(0x7f0000000600)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000400)=""/5, 0x5}], 0x1, &(0x7f00000006c0)=""/141, 0x8d}, 0x80000001}, {{&(0x7f0000000780)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000800)=""/240, 0xf0}, {&(0x7f0000000900)=""/31, 0x1f}, {&(0x7f0000000940)=""/188, 0xbc}], 0x3}, 0x357}], 0x3, 0x21, &(0x7f0000000b40)={r2, r3+10000000})

2.577030222s ago: executing program 2 (id=284):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x10000000)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001040)=ANY=[@ANYBLOB="440000000b0601020000000000000000000000000900020073797a310000000005000100070000001c0007800c0001"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

1.987704429s ago: executing program 2 (id=285):
syz_usb_connect(0x2, 0x6b, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201000385352608f20446b76e8e01020301090259000104e9000909049300000e0100ff0a2401020005028a010209240603040001a53011240606040508000400050006000100050924030506030501f9092407"], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0})
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000240)={"0e00", 0x0, 0x5, 0x1, 0x0, 0x0, "f70099000000000000000004963e00", '\x00\x00\a\x00', "178000", "e859ad13", ["d5c2a7cdaeea2c6f8e00b600", "808e8889dc7fb3eacf821b00", "2971088d5453005a4e5200", "ff812500004000"]})
socket$inet6_udp(0xa, 0x2, 0x0)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x280, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40000)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000240)='net/sctp\x00')
syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x22, 0x2, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0], 0x20)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/config', 0xebffffff, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r1, 0x7a9, &(0x7f00000003c0)={{@host}, 0xfff, 0x3, 0x0, 0x0, 0x80000, 0x0, 0x1000000000ff8})
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000044199610b906614088010102030109021200010000000009040000009cbefb00"], 0x0)
syz_usb_control_io$printer(r2, &(0x7f0000000200)={0x14, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="a95e564dd988cd30609ad7abb9329463661793d74afaa0b690a9a95b22066711ddf0b1817833214b3bfb241b46def2e2f3452fab8000"/63]}, 0x0)

1.693976961s ago: executing program 4 (id=286):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f00000014c0)={0xfffffffd, 0xffffffcb, 0x1c02, 0xc8e9, 0x1b, "cc33101d3f0000002000"})
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "000080f100df000000a7d9de16c708db7200"})
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket(0x18, 0x3, 0x0)
write(r3, 0x0, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000001880)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x120, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x218, 0x20a, 0x278, 0x218, 0x278, 0x3, 0x0, {[{{@ipv6={@private2, @empty, [], [], 'veth1\x00', 'team_slave_0\x00', {}, {}, 0x6, 0x0, 0x0, 0x22}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@socket2={{0x28}, 0x6}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x4}}]}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x365)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
preadv(r4, &(0x7f0000000480)=[{&(0x7f00000001c0)=""/122, 0x7a}, {&(0x7f0000000240)=""/42, 0x2a}, {&(0x7f0000001c00)=""/4096, 0x1000}, {&(0x7f0000000380)=""/216, 0xd8}, {&(0x7f0000000280)=""/51, 0x33}, {&(0x7f00000002c0)=""/53, 0x35}], 0x6, 0x4, 0x1)
r6 = socket$kcm(0x2, 0x200000000000001, 0x0)
socket$inet(0x2, 0x3, 0x6)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
openat$zero(0xffffffffffffff9c, &(0x7f0000000f40), 0x101002, 0x0)
r7 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x18})
io_uring_enter(r7, 0x5370, 0x0, 0x0, 0x0, 0x4e)
r10 = syz_open_pts(0xffffffffffffffff, 0x42)
getsockopt$TIPC_NODE_RECVQ_DEPTH(0xffffffffffffffff, 0x10f, 0x83, &(0x7f0000001300), &(0x7f0000001340)=0x4)
dup3(r10, 0xffffffffffffffff, 0x0)

801.196288ms ago: executing program 0 (id=287):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340), 0x20400)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000000600010017f223"], 0x1c}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x1000, 0x1000}], 0x1, 0x0)
unshare(0x2c040000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="34000000010701020f000000000000000100000308000540cfc148370900010073797a310000e587831a94757118211200000c00"], 0x34}, 0x1, 0x0, 0x0, 0x4044}, 0x40880)
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000300)={0xffffffffffffffff, 0x7, 0xffffffff80000001, 0x4})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2502, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket(0x11, 0x800000003, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800060000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r4], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f0000000300)='/dev/kvm\x00', 0x0, r2)
r7 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
unshare(0x48040d00)
dup(r8)

716.105899ms ago: executing program 1 (id=288):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
vmsplice(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)='wi', 0x2}], 0x1, 0x1)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=ANY=[@ANYBLOB='T\x00', @ANYRES16, @ANYBLOB="0101000000", @ANYRES32], 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xb8}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

585.816336ms ago: executing program 1 (id=289):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0x4}, {0x6}]})
syz_open_dev$dri(&(0x7f0000000100), 0x5, 0x200)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000000)={{0x5, 0xe}, {0x5f}, 0x0, 0x5})

405.468151ms ago: executing program 0 (id=290):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000240)) (async)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r1, 0xc0884123, &(0x7f0000000000)={0x5, "37dc3b931b2760c0041b297ae9e3701ab245a6c8099295e8cf07b5b73cd57a807cca6ddcf8b102ff43af1a8df591fc1991a7067352e9c87bf87808c03a7a6dc3", {0x8, 0x4}}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) (async)
syz_clone(0x42080000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x90d02, 0x0) (async)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) (async)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) (async)
pipe2(&(0x7f0000000040), 0x4000) (async)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0) (async)
io_setup(0x6, &(0x7f0000000080)=<r4=>0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = accept$alg(r5, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000001a00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x10) (async)
io_submit(r4, 0x2, &(0x7f0000000180)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfffc, r6, &(0x7f00000009c0)="cc9f5560ae200be5427740f1e672ba344cc125af95374c0a618273068a0f58e243eee2ce9affc807e6340f833d46625cd76da26e651343cf709edb85cdf977264d8c828965ca3eaac88cca96cfc1cefcabb8975adb4eb6fed7c2974a5149c6dbda5e6941ee556132608792f4d8ed155e6fab95e18b374d0e0ad74988267bf17c867b66", 0x83}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xa, 0x7f2, r1, &(0x7f0000000900)="ea8fb8905a1c5465e54b545521fec1a341a7f5b89408831c892c4e93622abfc686b0306c9cc71b55ae6b1837c153ef1d472267cce73b0870a7ff8284d4b324827700159ff8fddef94e9bd47e20333724c29098b6a0ede2fe568d789fa7ff3e6a45f2d330175833a2bdf67e246f504f906d376f71147f7f6bad36022966e35cc3847942deabb7cc3242d6db4035bb69900e5d2936fae7076396bda70f8fd630fc389a8bf977a92f9857770c2f9d0f38", 0xaf, 0x6, 0x0, 0x5, r0}]) (async)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xd) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) (async)
syz_usb_connect(0x5, 0x64b, &(0x7f0000000280)={{0x12, 0x1, 0x300, 0x94, 0xc4, 0xe9, 0x40, 0x5cc, 0x3363, 0x5c91, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x639, 0x4, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0xc1, 0x6, 0x1, 0x6c, 0x7b, 0x88, 0x1, [], [{{0x9, 0x5, 0x2, 0x0, 0x8, 0xe, 0x41, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x5, 0x6}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x1}]}}]}}, {{0x9, 0x4, 0x5, 0x5, 0xa, 0xe2, 0xe1, 0xcf, 0x7, [], [{{0x9, 0x5, 0x1, 0x0, 0x200, 0x0, 0x5, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x2, 0x7}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0xe, 0xb6}]}}, {{0x9, 0x5, 0x5, 0x0, 0x400, 0x7f, 0x5, 0xf9}}, {{0x9, 0x5, 0xf, 0x0, 0x3df, 0xff, 0x2, 0xd, [@generic={0x25, 0x4, "b0d663135f650013985895a0a8a6387e81cf6d6f3e67d46c9afcfdb2a98d08f5658a43"}]}}, {{0x9, 0x5, 0x6, 0x1, 0x40, 0xe, 0x3, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x1, 0x40}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x81, 0x1}]}}, {{0x9, 0x5, 0x3, 0x10, 0x20, 0x7, 0x9, 0x5}}, {{0x9, 0x5, 0xd, 0x0, 0x200, 0x4, 0x1, 0xf5, [@generic={0x83, 0xbc32afebe86d0f5b, "bed3513929c2ba838e80c7a4fe6ee3b19ce6b2020b399f74a2c5c9644cd2c19ca7bf76ea09b59bf972fc6f5064a0150406debe0bf21fda8ddc86d429fc60f2827cc1dd0b6911de8b5ffaeec9732d081a2014a8f7b3e7909cb1280afe3070008e2f61bcf69641e75a85be4eb5db154d8651e48f2ad2dc0b495b94e457c0c67312cc"}]}}, {{0x9, 0x5, 0x6, 0x3, 0x0, 0x5, 0x9, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x5, 0x70}]}}, {{0x9, 0x5, 0xf, 0x8, 0x3ff, 0x1, 0x2, 0xfc, [@generic={0xdb, 0x2, "9480254e86781d2aad5a0b41c9c65a78e9e3e3105394f3bf261f7a5cf68d58130becca6857dda2b9b9d18e3e885bfbdd464b597e5d3b6c0b79431f2752536a976e04a21c2b7d26607d8825cd2ef55511321290ff01ff6882caffc19c1298aac26d49de330cc302189905f2676a913c2ef20940b8ca8d21f00b2d02ab422326956082683a177fa3ff3705a4f44b2e0c8c83a25b30eadd5a7c4ab276a1dfc97007498fe9f904d0efeeb6dc59a280caceb594b8bf973bcf030ba53f49ea8eb9961af0fa3a741443ab1103c3b749064e51127e3250ffded4073b71"}, @generic={0x5a, 0x10, "3a576f8911d4c8ea15b3b5a6ac3b25a14d9b529109f517db541ddca20e62dd3d262e09b4f1c8d65e0bd4ff6fda6774890ce046b97854949a7c659e9fd4d0c6ae86520a79fe64fc46fbcbff39186b3f9a3574cf530c94c5bc"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x400, 0x40, 0xdf, 0x4, [@generic={0x44, 0x9, "6f0e838f86f5cb58338704d22f5bef39f9d7bd5e91137204beb20be8df86e8fa3a2faf657c768d9ddc0b44e18c01f677ce8a4422bea6006aa3367388a5e814be8e8e"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x4, 0x5}]}}, {{0x9, 0x5, 0x1, 0x10, 0x3ff, 0x4, 0xff}}]}}, {{0x9, 0x4, 0xc6, 0xf1, 0xc, 0xe6, 0x49, 0xd1, 0xfc, [@uac_control={{0xa, 0x24, 0x1, 0x0, 0x6}, [@feature_unit={0x11, 0x24, 0x6, 0x6, 0x1, 0x5, [0x7, 0x9, 0x9, 0xa, 0x1], 0x6}, @mixer_unit={0x8, 0x24, 0x4, 0x5, 0x4c, "13a575"}, @selector_unit={0x8, 0x24, 0x5, 0x2, 0x0, "9e4bcb"}, @input_terminal={0xc, 0x24, 0x2, 0x1, 0x200, 0x5, 0x5, 0xffff, 0x5, 0x98}, @mixer_unit={0x5, 0x24, 0x4, 0x2}]}], [{{0x9, 0x5, 0x2, 0x10, 0x20, 0x2, 0x9, 0x4}}, {{0x9, 0x5, 0x5, 0x10, 0x218, 0xd, 0x8, 0x6}}, {{0x9, 0x5, 0x6, 0x8, 0x3ff, 0x1, 0xdb, 0x3, [@generic={0x7f, 0x7, "6c3cee6fb2e69c666205bef70d47c3b14304f3861e1aabffd2810fb9fd85ffd767accb0bad24830f0b6576a0f84418b986a94b8589865efe208330388b6e36b03eda52317a5f799f1379214f4c54c8cefd8afd512f68cc97c4a89f335dad32520072c06324f50461a600f219da1d0582f349fb224e41b7952d61752524"}]}}, {{0x9, 0x5, 0x0, 0x3, 0x20, 0x4, 0x7, 0x6}}, {{0x9, 0x5, 0x2, 0x0, 0x10, 0xf, 0x6, 0x9}}, {{0x9, 0x5, 0x6, 0x10, 0x40, 0x1, 0x81, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x2, 0x7}]}}, {{0x9, 0x5, 0xa, 0x0, 0x20, 0x1, 0x8, 0x2}}, {{0x9, 0x5, 0x0, 0x1, 0x20, 0x40, 0x1, 0x9}}, {{0x9, 0x5, 0xd, 0x8, 0x400, 0x7, 0xb, 0x4}}, {{0x9, 0x5, 0x7, 0x0, 0x0, 0x9, 0xd, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x9, 0x400}]}}, {{0x9, 0x5, 0x1, 0x0, 0x0, 0x6, 0xa, 0x4f, [@generic={0x5e, 0xb, "dd5fb73740da26a40ffa0c0dfd1c9679d879ef5f4ebbd5c952306bded9f10e0734b1885a9c169a685e5c0513ca82ec90c3f69db43ab427291ba5778dcc0e45d99e1a9541d7cdaee01b393d4b772872ddce7f7a7053e0ecb367a3049f"}, @generic={0xad, 0x22, "180b870a3e7443ebb9af777330d5bc2d99a51446b857d51d67838e5c9f84b75663815ea1a70eda33c615e73bd259371ddaf9ea9a5a0eeee742f1f533556f3e23392e8b5fb6a69d8b08aa00bb752cd28d88b6dcf0d924d5eb60bb48060d046b4c32e7cf9b09055e3dd01822827a5307a49bbac4e0a1e14ed07cba87e00eab5137d01800e0afb4870c1d4aff6003555a13a1ce409010deb969d5719fe1f341ccba88447d6d226446f0e8112e"}]}}, {{0x9, 0x5, 0x0, 0xc, 0x8, 0xb3, 0x98, 0x10}}]}}, {{0x9, 0x4, 0x87, 0x0, 0x7, 0xd9, 0x7e, 0x11, 0x5, [], [{{0x9, 0x5, 0x4, 0xc, 0x10, 0x9, 0x3, 0x9}}, {{0x9, 0x5, 0xf, 0x3, 0x400, 0x8, 0x24, 0xff, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0xffff}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x101}]}}, {{0x9, 0x5, 0x0, 0x8, 0x400, 0x5, 0x7, 0xf, [@generic={0xbd, 0x4, "9ef837a0b369ece49aa1263c45bbe7f0b6ccc8e2bee83df75d4a5ed39fdc78700fdfab97064ff03a7be4ea62427d91e731c84ca61886a1530e17282078e4c3690573d07a8a173f8e110ba687b3d75eee8883d12fcdd8dd75d9a617845a6a9bc77f0d7faa92c50b2befc7584ad0829082ee64876240f30f414bfa2a9fc305426c20ba7e6708ce5508c9d8c2c45ff195d3f9e93e93e088210e2ca6114b5b13bbc3f9347f2562f2f74f282ea322c4cb36f63d03e7ce9571107b8bdbd4"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x400, 0x7, 0xb4, 0x6}}, {{0x9, 0x5, 0xa, 0x3, 0x200, 0x8, 0x10, 0xb}}, {{0x9, 0x5, 0x3, 0x8, 0x10, 0x1f, 0x8, 0x4}}, {{0x9, 0x5, 0xe, 0x0, 0x7ff, 0x5, 0x8, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x9, 0xff}]}}]}}]}}]}}, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x20c083, 0x0)

263.136805ms ago: executing program 4 (id=291):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_dev$usbmon(&(0x7f0000000280), 0x80000000000000, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r1, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
r2 = socket(0x40000000015, 0x5, 0x0)
ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000180)={'ip6gre0\x00', 0x10000})
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="b801000016000100fcffffff0000000000000000000000000000000000000000fc0200000000000000000000000000004e200000000000000000008000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc020000000000000000000000000000000000003300000000000000000000000000000000000000050000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000a00000000000000fe8000000000000000000000000000aa0a"], 0x1b8}, 0x1, 0x0, 0x0, 0x1}, 0x8880)

146.785099ms ago: executing program 2 (id=292):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x10, 0x0)
landlock_restrict_self(r0, 0x1) (fail_nth: 10)

118.078244ms ago: executing program 4 (id=293):
socket(0x11, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x1a1300)
poll(&(0x7f00000020c0)=[{r0, 0x9012}], 0x1, 0x0)
read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020)
r1 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec23, 0x0, 0x0, 0x40000331}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000022"])
syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

0s ago: executing program 3 (id=294):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x10, &(0x7f00000001c0), 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r3 = socket(0x2, 0x80805, 0x0)
socket$inet(0x2, 0x80001, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000003f01f00810000007f000000010000007921c107ecb97f8d50357a8e1a9e2350ab86daec"], 0x48)
getsockopt$inet_sctp_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x1, 0x6, 0xf098, 0x4, 0x5, 0x8, 0x8, {0x0, @in={{0x2, 0x4e23, @private=0xa010101}}, 0x7255e9e7, 0x5, 0x6, 0x80000001, 0x6}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB='\"'], 0x7)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xfe80, &(0x7f0000000180)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848350000005e120602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20000800)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r5, 0x3ba0, &(0x7f0000000440)={0x48, 0x2, r6})
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f0000000100)={0x28, 0x6, r6, 0xffef, &(0x7f0000c00000/0x400000)=nil, 0x400000, 0x51e})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, 0x0, 0x0, 0x1}, {{@in=@private=0xa010101, 0x0, 0x33}, 0x0, @in=@dev, 0x200, 0x0, 0x0, 0x7}}, 0xe8)
sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0)

kernel console output (not intermixed with test programs):

[ T5857] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   74.406047][ T5856] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.490406][ T5856] 8021q: adding VLAN 0 to HW filter on device team0
[   74.508311][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.523029][ T3509] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.530671][ T3509] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.540484][ T5850] Bluetooth: hci1: command tx timeout
[   74.553677][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.592535][ T2983] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.599742][ T2983] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.611510][ T5850] Bluetooth: hci3: command tx timeout
[   74.616973][ T5850] Bluetooth: hci0: command tx timeout
[   74.622773][ T5841] Bluetooth: hci4: command tx timeout
[   74.622826][ T5840] Bluetooth: hci2: command tx timeout
[   74.655588][ T5855] 8021q: adding VLAN 0 to HW filter on device team0
[   74.676270][ T1327] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.683933][ T1327] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.705279][ T5854] 8021q: adding VLAN 0 to HW filter on device team0
[   74.734359][ T2955] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.741754][ T2955] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.753542][ T2955] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.761099][ T2955] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.792535][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.852626][ T3509] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.859807][ T3509] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.898284][ T5857] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.923560][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   74.967993][ T2955] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.975196][ T2955] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.012399][ T5857] 8021q: adding VLAN 0 to HW filter on device team0
[   75.039661][  T288] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.047101][  T288] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.079452][ T5856] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.105848][ T3509] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.113058][ T3509] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.168885][ T2983] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.176857][ T2983] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.202981][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.229901][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.246522][ T5853] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   75.315303][ T5856] veth0_vlan: entered promiscuous mode
[   75.380147][ T5856] veth1_vlan: entered promiscuous mode
[   75.444502][ T5855] veth0_vlan: entered promiscuous mode
[   75.455296][ T5854] veth0_vlan: entered promiscuous mode
[   75.486798][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.498410][ T5854] veth1_vlan: entered promiscuous mode
[   75.509558][ T5856] veth0_macvtap: entered promiscuous mode
[   75.538060][ T5857] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.547323][ T5855] veth1_vlan: entered promiscuous mode
[   75.556457][ T5856] veth1_macvtap: entered promiscuous mode
[   75.631806][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.672623][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.685920][ T5854] veth0_macvtap: entered promiscuous mode
[   75.708296][ T5856] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.717479][ T5856] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.726879][ T5856] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.736701][ T5856] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.758851][ T5853] veth0_vlan: entered promiscuous mode
[   75.765683][ T5854] veth1_macvtap: entered promiscuous mode
[   75.789895][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.803249][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.816997][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.829641][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.840491][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.854763][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.881433][ T5854] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.890861][ T5854] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.899573][ T5854] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.909622][ T5854] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.922118][ T5855] veth0_macvtap: entered promiscuous mode
[   75.939138][ T5853] veth1_vlan: entered promiscuous mode
[   75.954764][ T5857] veth0_vlan: entered promiscuous mode
[   76.004782][ T5855] veth1_macvtap: entered promiscuous mode
[   76.039065][ T5857] veth1_vlan: entered promiscuous mode
[   76.103676][ T5853] veth0_macvtap: entered promiscuous mode
[   76.124493][ T5853] veth1_macvtap: entered promiscuous mode
[   76.136754][ T5855] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.151643][ T2983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.154966][ T5855] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.166052][ T2983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.178470][ T5855] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.194692][ T5855] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.207436][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.264671][ T5855] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.277467][ T5855] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.288391][ T5855] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.301587][ T5855] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.314020][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.374056][ T5855] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.388049][ T5855] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.398336][ T5855] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.407610][ T5855] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.420762][  T288] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.426111][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.429125][  T288] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.444736][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.461636][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.472340][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.482430][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.493419][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.505810][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.518430][ T5857] veth0_macvtap: entered promiscuous mode
[   76.535790][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.550570][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.562281][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.572699][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.583474][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.594338][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.604487][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.616140][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.621148][ T5840] Bluetooth: hci1: command tx timeout
[   76.628144][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.644903][ T5853] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.654652][ T5853] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.666489][ T5853] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.675628][ T5853] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.692361][ T5850] Bluetooth: hci4: command tx timeout
[   76.698140][ T5841] Bluetooth: hci3: command tx timeout
[   76.698449][ T5845] Bluetooth: hci2: command tx timeout
[   76.705152][ T5840] Bluetooth: hci0: command tx timeout
[   76.721950][ T5857] veth1_macvtap: entered promiscuous mode
[   76.723640][ T5856] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.882206][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.905778][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.976944][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.988495][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.014911][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.026568][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.036886][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.050438][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.060797][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   77.198775][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.209685][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.232475][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.250772][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.316304][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.328186][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.342263][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.353249][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.368863][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.381149][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.392956][ T5857] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.404089][ T5857] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.425693][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.434632][ T2955] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.446721][ T2955] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.477047][ T5857] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.509814][ T5857] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.527783][ T5857] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.569519][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   77.589347][ T5857] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.824337][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.856072][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.910565][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.918889][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.989125][ T1327] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.010686][ T1327] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.038134][ T3509] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.148478][ T3509] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.200487][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.286745][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   78.419250][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.434730][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.456724][ T2955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.580617][ T2955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.593715][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   78.701084][ T5840] Bluetooth: hci1: command tx timeout
[   78.771965][ T5840] Bluetooth: hci2: command tx timeout
[   78.773898][ T5845] Bluetooth: hci0: command tx timeout
[   78.778070][ T5840] Bluetooth: hci3: command tx timeout
[   78.783488][ T5845] Bluetooth: hci4: command tx timeout
[   79.010326][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   79.330560][ T5926] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'.
[   79.373841][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   79.480873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.884323][ T5837] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   80.132329][ T5837] usb 2-1: Using ep0 maxpacket: 8
[   80.250074][ T5837] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   80.301243][ T5837] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   80.335807][ T5837] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   80.402565][ T5837] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   80.493459][ T5935] xt_socket: unknown flags 0x4
[   80.634493][ T5936] xt_socket: unknown flags 0x4
[   80.654838][ T5837] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   80.705454][ T5837] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.098435][ T5942] xt_socket: unknown flags 0x4
[   81.113953][ T5942] Zero length message leads to an empty skb
[   82.158282][ T5837] usb 2-1: usb_control_msg returned -71
[   82.166701][ T5837] usbtmc 2-1:16.0: can't read capabilities
[   82.209858][ T5837] usb 2-1: USB disconnect, device number 2
[   83.560056][ T5837] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   83.748384][ T5964] xt_socket: unknown flags 0x4
[   84.168806][ T5837] usb 3-1: config 0 has no interfaces?
[   84.230471][ T5837] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[   84.536736][ T5837] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.598360][ T5837] usb 3-1: Product: syz
[   84.623400][ T5837] usb 3-1: Manufacturer: syz
[   84.655381][ T5837] usb 3-1: SerialNumber: syz
[   84.692617][ T5837] usb 3-1: config 0 descriptor??
[   85.053022][ T5957] netlink: 32 bytes leftover after parsing attributes in process `syz.2.11'.
[   85.595151][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16'.
[   86.397365][ T5990] team0 (unregistering): Port device team_slave_0 removed
[   86.426542][ T5990] team0 (unregistering): Port device team_slave_1 removed
[   86.490135][ T5898] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[   86.647482][ T5898] usb 2-1: unable to get BOS descriptor or descriptor too short
[   86.659391][ T5898] usb 2-1: not running at top speed; connect to a high speed hub
[   86.671927][ T5898] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[   86.680941][ T5898] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[   86.693383][ T5898] usb 2-1: config 4 has no interface number 0
[   86.704255][ T5898] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[   86.713911][ T5898] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.722301][ T5898] usb 2-1: Product: syz
[   86.727073][ T5898] usb 2-1: Manufacturer: syz
[   86.732026][ T5898] usb 2-1: SerialNumber: syz
[   86.872324][    T9] cfg80211: failed to load regulatory.db
[   86.938887][ T5995] xfrm0: entered promiscuous mode
[   86.949828][ T5995] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[   87.120998][ T5914] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   87.188962][ T5996] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.226333][ T5996] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.311965][ T5914] usb 1-1: Using ep0 maxpacket: 32
[   87.323938][ T5898] usb 2-1: USB disconnect, device number 3
[   87.338488][ T5914] usb 1-1: config 0 interface 0 has no altsetting 0
[   87.368705][ T5914] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[   87.396660][ T5914] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.428808][ T5914] usb 1-1: Product: syz
[   87.446406][ T5914] usb 1-1: Manufacturer: syz
[   87.452798][ T5914] usb 1-1: SerialNumber: syz
[   87.462155][  T976] usb 3-1: USB disconnect, device number 2
[   87.483091][ T5914] usb 1-1: config 0 descriptor??
[   87.942213][ T5914] gs_usb 1-1:0.0: Configuring for 1 interfaces
[   88.800793][ T5914] usb 1-1: USB disconnect, device number 2
[   88.840148][    T9] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   88.918086][ T6032] xt_socket: unknown flags 0x4
[   89.190185][    T9] usb 2-1: Using ep0 maxpacket: 32
[   89.259271][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 0, changing to 7
[   89.310001][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   89.388072][    T9] usb 2-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[   89.425133][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.453271][    T9] usb 2-1: Product: syz
[   89.485353][ T6041] netlink: 'syz.3.25': attribute type 29 has an invalid length.
[   89.494391][    T9] usb 2-1: Manufacturer: syz
[   89.499000][    T9] usb 2-1: SerialNumber: syz
[   89.516259][ T6041] netlink: 'syz.3.25': attribute type 29 has an invalid length.
[   89.543837][    T9] usb 2-1: config 0 descriptor??
[   89.574750][ T6041] netlink: 'syz.3.25': attribute type 29 has an invalid length.
[   89.585870][    T9] usb 2-1: no audio or video endpoints found
[   89.668970][ T6044] FAULT_INJECTION: forcing a failure.
[   89.668970][ T6044] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   89.764725][ T6044] CPU: 0 UID: 0 PID: 6044 Comm: syz.0.24 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[   89.764750][ T6044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   89.764764][ T6044] Call Trace:
[   89.764771][ T6044]  <TASK>
[   89.764778][ T6044]  dump_stack_lvl+0x241/0x360
[   89.764814][ T6044]  ? __pfx_dump_stack_lvl+0x10/0x10
[   89.764833][ T6044]  ? __pfx__printk+0x10/0x10
[   89.764864][ T6044]  should_fail_ex+0x424/0x570
[   89.764888][ T6044]  _copy_from_user+0x2d/0xb0
[   89.764905][ T6044]  kstrtouint_from_user+0xce/0x1a0
[   89.764928][ T6044]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   89.764951][ T6044]  ? __lock_acquire+0xad5/0xd80
[   89.764978][ T6044]  proc_fail_nth_write+0xac/0x2d0
[   89.764998][ T6044]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   89.765017][ T6044]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   89.765043][ T6044]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   89.765062][ T6044]  vfs_write+0x2bc/0xd10
[   89.765089][ T6044]  ? fdget_pos+0x247/0x310
[   89.765110][ T6044]  ? __pfx_vfs_write+0x10/0x10
[   89.765134][ T6044]  ? __fget_files+0x2a/0x420
[   89.765155][ T6044]  ? __fget_files+0x39d/0x420
[   89.765170][ T6044]  ? __fget_files+0x2a/0x420
[   89.765198][ T6044]  ksys_write+0x19d/0x2d0
[   89.765221][ T6044]  ? __pfx_ksys_write+0x10/0x10
[   89.765247][ T6044]  ? do_syscall_64+0xb6/0x230
[   89.765276][ T6044]  do_syscall_64+0xf3/0x230
[   89.765293][ T6044]  ? clear_bhb_loop+0x45/0xa0
[   89.765312][ T6044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.765331][ T6044] RIP: 0033:0x7fb0a178bc1f
[   89.765350][ T6044] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   89.765363][ T6044] RSP: 002b:00007fb09f5d5030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   89.765381][ T6044] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb0a178bc1f
[   89.765393][ T6044] RDX: 0000000000000001 RSI: 00007fb09f5d50a0 RDI: 0000000000000004
[   89.765402][ T6044] RBP: 00007fb09f5d5090 R08: 0000000000000000 R09: 0000000000000000
[   89.765412][ T6044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   89.765421][ T6044] R13: 0000000000000000 R14: 00007fb0a19a6080 R15: 00007fb0a1acfa28
[   89.765449][ T6044]  </TASK>
[   90.036321][ T6052] xt_socket: unknown flags 0x4
[   90.936506][ T5898] usb 2-1: USB disconnect, device number 4
[   91.044145][ T6059] FAULT_INJECTION: forcing a failure.
[   91.044145][ T6059] name failslab, interval 1, probability 0, space 0, times 0
[   91.092642][ T6059] CPU: 1 UID: 0 PID: 6059 Comm: syz.0.28 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[   91.092667][ T6059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.092677][ T6059] Call Trace:
[   91.092683][ T6059]  <TASK>
[   91.092691][ T6059]  dump_stack_lvl+0x241/0x360
[   91.092721][ T6059]  ? __pfx_dump_stack_lvl+0x10/0x10
[   91.092742][ T6059]  ? __pfx__printk+0x10/0x10
[   91.092769][ T6059]  ? __pfx___might_resched+0x10/0x10
[   91.092793][ T6059]  should_fail_ex+0x424/0x570
[   91.092817][ T6059]  should_failslab+0xac/0x100
[   91.092838][ T6059]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[   91.092857][ T6059]  ? __alloc_skb+0x1c2/0x480
[   91.092871][ T6059]  ? tcp_current_mss+0x29d/0x4d0
[   91.092896][ T6059]  __alloc_skb+0x1c2/0x480
[   91.092918][ T6059]  ? __pfx___alloc_skb+0x10/0x10
[   91.092944][ T6059]  tcp_stream_alloc_skb+0x3d/0x310
[   91.092966][ T6059]  tcp_sendmsg_locked+0xd96/0x5030
[   91.093036][ T6059]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[   91.093058][ T6059]  ? tcp_sendmsg+0x22/0x50
[   91.093075][ T6059]  ? do_raw_spin_unlock+0x13c/0x8b0
[   91.093106][ T6059]  tcp_sendmsg+0x30/0x50
[   91.093125][ T6059]  __sock_sendmsg+0x1a6/0x270
[   91.093149][ T6059]  ____sys_sendmsg+0x523/0x860
[   91.093176][ T6059]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.093191][ T6059]  ? __fget_files+0x2a/0x420
[   91.093217][ T6059]  ? __fget_files+0x2a/0x420
[   91.093249][ T6059]  __sys_sendmsg+0x271/0x360
[   91.093272][ T6059]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.093342][ T6059]  ? do_syscall_64+0xb6/0x230
[   91.093363][ T6059]  do_syscall_64+0xf3/0x230
[   91.093381][ T6059]  ? clear_bhb_loop+0x45/0xa0
[   91.093400][ T6059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.093415][ T6059] RIP: 0033:0x7fb0a178d169
[   91.093430][ T6059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.093444][ T6059] RSP: 002b:00007fb09f5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.093462][ T6059] RAX: ffffffffffffffda RBX: 00007fb0a19a5fa0 RCX: 00007fb0a178d169
[   91.093474][ T6059] RDX: 0000000000000000 RSI: 00002000000015c0 RDI: 0000000000000003
[   91.093484][ T6059] RBP: 00007fb09f5f6090 R08: 0000000000000000 R09: 0000000000000000
[   91.093493][ T6059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.093503][ T6059] R13: 0000000000000000 R14: 00007fb0a19a5fa0 R15: 00007fb0a1acfa28
[   91.093531][ T6059]  </TASK>
[   91.714512][ T6068] netlink: 'syz.2.30': attribute type 29 has an invalid length.
[   91.724752][ T6068] netlink: 'syz.2.30': attribute type 29 has an invalid length.
[   91.750487][ T6068] netlink: 'syz.2.30': attribute type 29 has an invalid length.
[   92.522388][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   92.530238][ T5837] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[   92.581845][ T5914] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   92.773151][ T5914] usb 3-1: config 1 has an invalid descriptor of length 32, skipping remainder of the config
[   92.783665][ T5914] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[   92.797444][ T5914] usb 3-1: config 1 has no interface number 1
[   92.826585][ T5914] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[   92.830487][    T9] usb 5-1: Using ep0 maxpacket: 8
[   92.879017][ T5837] usb 1-1: unable to get BOS descriptor or descriptor too short
[   92.886952][ T5914] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x6 has an invalid bInterval 0, changing to 7
[   92.932141][ T5914] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   92.946772][ T5914] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.975131][ T5914] usb 3-1: Product: syz
[   93.000047][ T5914] usb 3-1: Manufacturer: syz
[   93.014725][ T5837] usb 1-1: not running at top speed; connect to a high speed hub
[   93.017962][ T5914] usb 3-1: SerialNumber: syz
[   93.028497][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   93.063847][ T5837] usb 1-1: config 4 has an invalid interface number: 147 but max is 0
[   93.106657][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   93.113893][ T6077] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[   93.126329][ T5837] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[   93.247508][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   93.275176][ T5837] usb 1-1: config 4 has no interface number 0
[   93.331774][ T5837] usb 1-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[   93.358969][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   93.390007][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.440676][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   93.453612][ T5837] usb 1-1: Product: syz
[   93.457822][ T5837] usb 1-1: Manufacturer: syz
[   93.477014][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.494227][ T5837] usb 1-1: SerialNumber: syz
[   93.755742][ T6075] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.767888][ T6075] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.049590][ T5837] usb 1-1: USB disconnect, device number 3
[   94.799561][ T6108] xfrm0: entered promiscuous mode
[   94.888640][    T9] usb 5-1: usb_control_msg returned -71
[   94.917292][ T6108] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[   94.951817][    T9] usbtmc 5-1:16.0: can't read capabilities
[   95.019454][    T9] usb 5-1: USB disconnect, device number 2
[   95.268533][  T976] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   95.460163][  T976] usb 4-1: Using ep0 maxpacket: 32
[   95.478466][  T976] usb 4-1: config 0 interface 0 has no altsetting 0
[   95.523094][  T976] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[   95.540842][  T976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.560482][  T976] usb 4-1: Product: syz
[   95.578957][ T6122] xt_socket: unknown flags 0x4
[   95.700439][  T976] usb 4-1: Manufacturer: syz
[   95.716633][  T976] usb 4-1: SerialNumber: syz
[   95.743311][  T976] usb 4-1: config 0 descriptor??
[   96.018316][ T5914] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor
[   96.046019][ T5914] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor
[   96.157369][  T976] gs_usb 4-1:0.0: Configuring for 1 interfaces
[   96.199580][ T5914] usb 3-1: USB disconnect, device number 3
[   96.669094][ T6138] netlink: 40 bytes leftover after parsing attributes in process `syz.2.41'.
[   96.769900][  T976] usb 4-1: USB disconnect, device number 2
[   96.788448][ T5835] udevd[5835]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   96.910069][ T5914] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   97.093317][ T5914] usb 5-1: Using ep0 maxpacket: 32
[   97.117533][ T5914] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 0, changing to 7
[   97.139194][ T5914] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   97.174571][ T5914] usb 5-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[   97.190084][ T5914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.218503][ T5914] usb 5-1: Product: syz
[   97.244201][ T6152] xt_socket: unknown flags 0x4
[   97.278631][ T5914] usb 5-1: Manufacturer: syz
[   97.303771][ T5914] usb 5-1: SerialNumber: syz
[   97.366767][ T5914] usb 5-1: config 0 descriptor??
[   97.404460][ T5914] usb 5-1: no audio or video endpoints found
[   97.489778][ T6156] xt_socket: unknown flags 0x4
[   97.604019][ T5914] usb 5-1: USB disconnect, device number 3
[   97.652074][ T5837] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   98.073281][ T5837] usb 1-1: config 3 has an invalid interface number: 161 but max is 0
[   98.090333][ T5837] usb 1-1: config 3 has no interface number 0
[   98.110068][ T5837] usb 1-1: config 3 interface 161 has no altsetting 0
[   98.129484][ T5837] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.08
[   98.157298][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.179095][ T5837] usb 1-1: Product: syz
[   98.189330][ T5837] usb 1-1: Manufacturer: syz
[   98.194130][ T5837] usb 1-1: SerialNumber: syz
[   98.560268][ T5837] go7007 1-1:3.161: probe with driver go7007 failed with error -12
[   98.611150][ T5837] usb 1-1: USB disconnect, device number 4
[  100.065650][ T6181] FAULT_INJECTION: forcing a failure.
[  100.065650][ T6181] name failslab, interval 1, probability 0, space 0, times 0
[  100.150046][ T6181] CPU: 1 UID: 0 PID: 6181 Comm: syz.4.51 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  100.150073][ T6181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.150082][ T6181] Call Trace:
[  100.150088][ T6181]  <TASK>
[  100.150094][ T6181]  dump_stack_lvl+0x241/0x360
[  100.150122][ T6181]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.150143][ T6181]  ? __pfx__printk+0x10/0x10
[  100.150167][ T6181]  ? __pfx___might_resched+0x10/0x10
[  100.150188][ T6181]  should_fail_ex+0x424/0x570
[  100.150211][ T6181]  should_failslab+0xac/0x100
[  100.150231][ T6181]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  100.150251][ T6181]  ? __alloc_skb+0x1c2/0x480
[  100.150271][ T6181]  __alloc_skb+0x1c2/0x480
[  100.150357][ T6181]  ? __pfx___alloc_skb+0x10/0x10
[  100.150374][ T6181]  ? netlink_autobind+0xd6/0x2f0
[  100.150394][ T6181]  ? netlink_autobind+0x2b0/0x2f0
[  100.150419][ T6181]  netlink_sendmsg+0x638/0xcd0
[  100.150452][ T6181]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.150477][ T6181]  ? aa_sock_msg_perm+0x91/0x160
[  100.150497][ T6181]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.150516][ T6181]  __sock_sendmsg+0x221/0x270
[  100.150538][ T6181]  ____sys_sendmsg+0x523/0x860
[  100.150564][ T6181]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.150579][ T6181]  ? __fget_files+0x2a/0x420
[  100.150601][ T6181]  ? __fget_files+0x2a/0x420
[  100.150628][ T6181]  __sys_sendmsg+0x271/0x360
[  100.150650][ T6181]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.150720][ T6181]  ? do_syscall_64+0xb6/0x230
[  100.150741][ T6181]  do_syscall_64+0xf3/0x230
[  100.150759][ T6181]  ? clear_bhb_loop+0x45/0xa0
[  100.150779][ T6181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.150794][ T6181] RIP: 0033:0x7f2f43d8d169
[  100.150808][ T6181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.150822][ T6181] RSP: 002b:00007f2f44c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.150840][ T6181] RAX: ffffffffffffffda RBX: 00007f2f43fa5fa0 RCX: 00007f2f43d8d169
[  100.150852][ T6181] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  100.150862][ T6181] RBP: 00007f2f44c1e090 R08: 0000000000000000 R09: 0000000000000000
[  100.150871][ T6181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.150880][ T6181] R13: 0000000000000000 R14: 00007f2f43fa5fa0 R15: 00007f2f440cfa28
[  100.150902][ T6181]  </TASK>
[  100.420832][ T5837] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  100.617720][ T5837] usb 2-1: unable to get BOS descriptor or descriptor too short
[  100.659672][ T5837] usb 2-1: not running at top speed; connect to a high speed hub
[  100.712551][ T5837] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[  100.731776][ T5837] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  100.760239][ T5914] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  100.783287][ T5837] usb 2-1: config 4 has no interface number 0
[  100.794558][ T5837] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  100.815117][ T5837] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.824718][ T5837] usb 2-1: Product: syz
[  100.829334][ T5837] usb 2-1: Manufacturer: syz
[  100.834557][ T5837] usb 2-1: SerialNumber: syz
[  100.922310][ T5914] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 31, changing to 8
[  100.954648][ T5914] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  100.984313][ T5914] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  101.010542][  T976] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  101.044451][ T5914] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.062807][ T5914] usb 1-1: config 0 descriptor??
[  101.066074][ T6178] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.089367][ T6178] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.136320][ T5837] usb 2-1: USB disconnect, device number 5
[  101.172424][  T976] usb 4-1: config 3 has an invalid interface number: 161 but max is 0
[  101.181471][  T976] usb 4-1: config 3 has no interface number 0
[  101.189161][  T976] usb 4-1: config 3 interface 161 has no altsetting 0
[  101.208947][  T976] usb 4-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.08
[  101.225043][  T976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.234309][  T976] usb 4-1: Product: syz
[  101.238883][  T976] usb 4-1: Manufacturer: syz
[  101.244497][   T47] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  101.258306][  T976] usb 4-1: SerialNumber: syz
[  101.410039][   T47] usb 3-1: Using ep0 maxpacket: 8
[  101.423464][   T47] usb 3-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  101.434031][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.445092][   T47] usb 3-1: Product: syz
[  101.449620][   T47] usb 3-1: Manufacturer: syz
[  101.454821][   T47] usb 3-1: SerialNumber: syz
[  101.465776][   T47] usb 3-1: config 0 descriptor??
[  101.477993][ T5914] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0
[  101.487777][ T5914] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  101.508232][   T47] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  101.531361][ T5914] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  101.593813][  T976] go7007 4-1:3.161: probe with driver go7007 failed with error -12
[  101.613284][  T976] usb 4-1: USB disconnect, device number 3
[  102.606400][ T6207] xt_socket: unknown flags 0x4
[  102.971404][ T6213] netlink: 'syz.3.60': attribute type 4 has an invalid length.
[  103.023671][ T6214] netlink: 'syz.3.60': attribute type 4 has an invalid length.
[  103.030779][ T6193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.065894][ T6193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.121835][   T47] gspca_sonixj: i2c_w8 err -71
[  103.168490][ T5914] usb 1-1: USB disconnect, device number 5
[  103.212018][   T47] sonixj 3-1:0.0: probe with driver sonixj failed with error -71
[  103.234735][   T47] usb 3-1: USB disconnect, device number 4
[  103.261751][ T6216] netlink: 4 bytes leftover after parsing attributes in process `syz.0.62'.
[  103.610046][ T5837] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  103.740026][ T5837] usb 1-1: device descriptor read/64, error -71
[  104.310137][ T5837] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  104.499220][ T5837] usb 1-1: device descriptor read/64, error -71
[  104.526418][ T6228] xt_socket: unknown flags 0x4
[  104.910121][ T5837] usb usb1-port1: attempt power cycle
[  105.730344][ T5837] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  105.771468][ T5837] usb 1-1: device descriptor read/8, error -71
[  105.859851][ T6242] xt_socket: unknown flags 0x4
[  106.061644][ T5837] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  106.062618][   T47] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  106.099854][ T5837] usb 1-1: device descriptor read/8, error -71
[  106.173408][ T6248] netlink: 12 bytes leftover after parsing attributes in process `syz.1.70'.
[  106.196080][ T6248] netlink: 'syz.1.70': attribute type 11 has an invalid length.
[  106.242207][   T47] usb 3-1: unable to get BOS descriptor or descriptor too short
[  106.242516][ T5837] usb usb1-port1: unable to enumerate USB device
[  106.251285][   T47] usb 3-1: not running at top speed; connect to a high speed hub
[  106.296945][   T47] usb 3-1: config 4 has an invalid interface number: 147 but max is 0
[  106.309277][   T47] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  106.345155][   T47] usb 3-1: config 4 has no interface number 0
[  106.433438][   T47] usb 3-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  106.518992][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.626152][   T47] usb 3-1: Product: syz
[  106.631710][   T47] usb 3-1: Manufacturer: syz
[  106.636805][   T47] usb 3-1: SerialNumber: syz
[  106.839342][ T6259] CIFS: iocharset name too long
[  106.871873][ T6237] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.880710][ T6237] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.888549][ T5837] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  106.938307][   T47] usb 3-1: USB disconnect, device number 5
[  107.063770][ T5837] usb 1-1: Using ep0 maxpacket: 32
[  107.112875][ T5837] usb 1-1: config 0 interface 0 has no altsetting 0
[  107.126623][ T5837] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  107.140216][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.148335][ T5837] usb 1-1: Product: syz
[  107.159744][ T5837] usb 1-1: Manufacturer: syz
[  107.191421][ T5837] usb 1-1: SerialNumber: syz
[  107.241887][ T5837] usb 1-1: config 0 descriptor??
[  107.400504][ T6268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.76'.
[  107.409744][ T6268] netlink: 36 bytes leftover after parsing attributes in process `syz.3.76'.
[  107.431177][ T6268] vlan2: entered promiscuous mode
[  107.436407][ T6268] macvtap0: entered promiscuous mode
[  107.443591][ T6268] vlan2: entered allmulticast mode
[  107.450392][ T6268] macvtap0: entered allmulticast mode
[  107.456014][ T6268] veth0_macvtap: entered allmulticast mode
[  107.658823][ T5837] gs_usb 1-1:0.0: Configuring for 1 interfaces
[  107.850236][  T976] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  108.018487][  T976] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  108.055612][  T976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.077986][  T976] usb 3-1: Product: syz
[  108.095332][  T976] usb 3-1: Manufacturer: syz
[  108.107003][  T976] usb 3-1: SerialNumber: syz
[  108.136931][  T976] usb 3-1: config 0 descriptor??
[  108.300435][ T5837] usb 1-1: USB disconnect, device number 10
[  108.589628][  T976] usb 3-1: Firmware version (0.0) predates our first public release.
[  108.616049][  T976] usb 3-1: Please update to version 0.2 or newer
[  108.890102][    T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  108.909682][  T976] usb 3-1: USB disconnect, device number 6
[  109.050034][    T9] usb 4-1: Using ep0 maxpacket: 8
[  109.117757][    T9] usb 4-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 25, changing to 8
[  109.170181][    T9] usb 4-1: config 0 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  109.236990][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  109.275563][    T9] usb 4-1: New USB device found, idVendor=046e, idProduct=5578, bcdDevice= 0.00
[  109.298460][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.315048][    T9] usb 4-1: config 0 descriptor??
[  109.324743][    T9] usbhid 4-1:0.0: can't add hid device: -22
[  109.352417][ T6306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.83'.
[  109.473500][    T9] usbhid 4-1:0.0: probe with driver usbhid failed with error -22
[  109.645962][ T6308] FAULT_INJECTION: forcing a failure.
[  109.645962][ T6308] name failslab, interval 1, probability 0, space 0, times 0
[  109.787816][ T6310] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  109.867016][ T6312] netlink: 3 bytes leftover after parsing attributes in process `syz.1.85'.
[  109.906327][ T6308] CPU: 0 UID: 0 PID: 6308 Comm: syz.2.84 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  109.906352][ T6308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  109.906360][ T6308] Call Trace:
[  109.906366][ T6308]  <TASK>
[  109.906374][ T6308]  dump_stack_lvl+0x241/0x360
[  109.906399][ T6308]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.906412][ T6308]  ? __pfx__printk+0x10/0x10
[  109.906428][ T6308]  ? __pfx___might_resched+0x10/0x10
[  109.906442][ T6308]  should_fail_ex+0x424/0x570
[  109.906456][ T6308]  should_failslab+0xac/0x100
[  109.906468][ T6308]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  109.906480][ T6308]  ? __alloc_skb+0x1c2/0x480
[  109.906492][ T6308]  __alloc_skb+0x1c2/0x480
[  109.906503][ T6308]  ? __pfx___alloc_skb+0x10/0x10
[  109.906513][ T6308]  ? netlink_autobind+0xd6/0x2f0
[  109.906526][ T6308]  ? netlink_autobind+0x2b0/0x2f0
[  109.906546][ T6308]  netlink_sendmsg+0x638/0xcd0
[  109.906566][ T6308]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.906581][ T6308]  ? aa_sock_msg_perm+0x91/0x160
[  109.906592][ T6308]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.906604][ T6308]  __sock_sendmsg+0x221/0x270
[  109.906619][ T6308]  ____sys_sendmsg+0x523/0x860
[  109.906634][ T6308]  ? __pfx_____sys_sendmsg+0x10/0x10
[  109.906642][ T6308]  ? __fget_files+0x2a/0x420
[  109.906656][ T6308]  ? __fget_files+0x2a/0x420
[  109.906671][ T6308]  __sys_sendmsg+0x271/0x360
[  109.906684][ T6308]  ? __pfx___sys_sendmsg+0x10/0x10
[  109.906720][ T6308]  ? do_syscall_64+0xb6/0x230
[  109.906733][ T6308]  do_syscall_64+0xf3/0x230
[  109.906744][ T6308]  ? clear_bhb_loop+0x45/0xa0
[  109.906755][ T6308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.906765][ T6308] RIP: 0033:0x7f579e58d169
[  109.906774][ T6308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.906782][ T6308] RSP: 002b:00007f579f486038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.906793][ T6308] RAX: ffffffffffffffda RBX: 00007f579e7a5fa0 RCX: 00007f579e58d169
[  109.906801][ T6308] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  109.906807][ T6308] RBP: 00007f579f486090 R08: 0000000000000000 R09: 0000000000000000
[  109.906812][ T6308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.906818][ T6308] R13: 0000000000000000 R14: 00007f579e7a5fa0 R15: 00007f579e8cfa28
[  109.906832][ T6308]  </TASK>
[  110.253961][ T6315] input: syz0 as /devices/virtual/input/input5
[  110.349989][ T6310] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  110.363371][ T6310] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  110.621232][    T9] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  110.762311][ T6317] netlink: 'syz.2.86': attribute type 72 has an invalid length.
[  110.861647][    T9] usb 2-1: Using ep0 maxpacket: 16
[  110.869093][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.886756][    T9] usb 2-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.00
[  110.970333][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.982996][    T9] usb 2-1: config 0 descriptor??
[  111.434401][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.448018][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.456519][  T979] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  111.494213][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.501882][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.510074][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.521005][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.529559][    T9] cypress 0003:04B4:0001.0002: unknown main item tag 0x0
[  111.552463][    T9] cypress 0003:04B4:0001.0002: hidraw0: USB HID v10.03 Device [HID 04b4:0001] on usb-dummy_hcd.1-1/input0
[  111.642207][    T9] usb 2-1: USB disconnect, device number 6
[  111.670065][  T979] usb 3-1: Using ep0 maxpacket: 8
[  111.727969][ T5891] usb 4-1: USB disconnect, device number 4
[  111.776446][  T979] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  111.807804][  T979] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  111.828225][  T979] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  111.869718][  T979] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  111.953838][   T47] IPVS: starting estimator thread 0...
[  112.010178][   T30] audit: type=1326 audit(1743531349.594:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.016053][  T979] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  112.079128][   T30] audit: type=1326 audit(1743531349.604:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.101759][ T6327] IPVS: using max 52 ests per chain, 124800 per kthread
[  112.168019][   T30] audit: type=1326 audit(1743531349.604:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.216261][   T30] audit: type=1326 audit(1743531349.604:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.242258][   T30] audit: type=1326 audit(1743531349.604:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.283951][   T30] audit: type=1326 audit(1743531349.604:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.306839][  T979] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.334301][   T30] audit: type=1326 audit(1743531349.604:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.370564][   T30] audit: type=1326 audit(1743531349.604:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.3.89" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  112.590509][ T6328] loop8: detected capacity change from 0 to 1
[  112.639812][ T6328] Dev loop8: unable to read RDB block 1
[  112.645733][ T6328]  loop8: unable to read partition table
[  112.651981][ T6328] loop8: partition table beyond EOD, truncated
[  112.658216][ T6328] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[  113.843175][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  113.861590][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  113.889082][  T979] usb 3-1: usb_control_msg returned -71
[  113.950055][  T979] usbtmc 3-1:16.0: can't read capabilities
[  114.031683][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.034485][  T979] usb 3-1: USB disconnect, device number 7
[  114.105119][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.175704][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.187634][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.198721][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.209506][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.226244][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.265694][ T6344] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  114.600351][  T979] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  114.779017][ T6340] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  114.812936][  T979] usb 4-1: unable to get BOS descriptor or descriptor too short
[  114.821380][  T979] usb 4-1: not running at top speed; connect to a high speed hub
[  114.830360][  T979] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[  114.840937][  T979] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  114.889401][  T979] usb 4-1: config 4 has no interface number 0
[  114.965405][  T979] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  114.987046][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.995991][  T979] usb 4-1: Product: syz
[  115.001113][ T6355] netlink: 'syz.1.98': attribute type 72 has an invalid length.
[  115.004426][  T979] usb 4-1: Manufacturer: syz
[  115.055386][  T979] usb 4-1: SerialNumber: syz
[  115.337576][ T6358] netlink: 4 bytes leftover after parsing attributes in process `syz.1.99'.
[  115.452050][  T979] usb 4-1: USB disconnect, device number 5
[  115.488291][ T6361] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.100'.
[  115.830683][ T6371] netlink: 4 bytes leftover after parsing attributes in process `syz.1.101'.
[  116.156000][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.103'.
[  117.463079][ T6389] FAULT_INJECTION: forcing a failure.
[  117.463079][ T6389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.511308][ T6388] FAULT_INJECTION: forcing a failure.
[  117.511308][ T6388] name failslab, interval 1, probability 0, space 0, times 0
[  117.528228][ T6388] CPU: 1 UID: 0 PID: 6388 Comm: syz.4.108 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  117.528244][ T6388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.528250][ T6388] Call Trace:
[  117.528256][ T6388]  <TASK>
[  117.528261][ T6388]  dump_stack_lvl+0x241/0x360
[  117.528281][ T6388]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.528295][ T6388]  ? __pfx__printk+0x10/0x10
[  117.528312][ T6388]  ? __pfx___might_resched+0x10/0x10
[  117.528326][ T6388]  should_fail_ex+0x424/0x570
[  117.528341][ T6388]  should_failslab+0xac/0x100
[  117.528354][ T6388]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  117.528366][ T6388]  ? __alloc_skb+0x1c2/0x480
[  117.528378][ T6388]  __alloc_skb+0x1c2/0x480
[  117.528389][ T6388]  ? __pfx___alloc_skb+0x10/0x10
[  117.528399][ T6388]  ? netlink_autobind+0xd6/0x2f0
[  117.528412][ T6388]  ? netlink_autobind+0x2b0/0x2f0
[  117.528428][ T6388]  netlink_sendmsg+0x638/0xcd0
[  117.528447][ T6388]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.528462][ T6388]  ? aa_sock_msg_perm+0x91/0x160
[  117.528474][ T6388]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.528486][ T6388]  __sock_sendmsg+0x221/0x270
[  117.528500][ T6388]  ____sys_sendmsg+0x523/0x860
[  117.528515][ T6388]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.528524][ T6388]  ? __fget_files+0x2a/0x420
[  117.528537][ T6388]  ? __fget_files+0x2a/0x420
[  117.528552][ T6388]  __sys_sendmsg+0x271/0x360
[  117.528565][ T6388]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.528602][ T6388]  ? do_syscall_64+0xb6/0x230
[  117.528615][ T6388]  do_syscall_64+0xf3/0x230
[  117.528626][ T6388]  ? clear_bhb_loop+0x45/0xa0
[  117.528637][ T6388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.528646][ T6388] RIP: 0033:0x7f2f43d8d169
[  117.528655][ T6388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.528663][ T6388] RSP: 002b:00007f2f44c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.528674][ T6388] RAX: ffffffffffffffda RBX: 00007f2f43fa5fa0 RCX: 00007f2f43d8d169
[  117.528680][ T6388] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  117.528686][ T6388] RBP: 00007f2f44c1e090 R08: 0000000000000000 R09: 0000000000000000
[  117.528692][ T6388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.528697][ T6388] R13: 0000000000000000 R14: 00007f2f43fa5fa0 R15: 00007f2f440cfa28
[  117.528711][ T6388]  </TASK>
[  117.816747][ T6389] CPU: 0 UID: 0 PID: 6389 Comm: syz.0.109 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  117.816768][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.816777][ T6389] Call Trace:
[  117.816781][ T6389]  <TASK>
[  117.816786][ T6389]  dump_stack_lvl+0x241/0x360
[  117.816807][ T6389]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.816821][ T6389]  ? __pfx__printk+0x10/0x10
[  117.816840][ T6389]  should_fail_ex+0x424/0x570
[  117.816854][ T6389]  _copy_from_user+0x2d/0xb0
[  117.816865][ T6389]  move_addr_to_kernel+0x7f/0x170
[  117.816879][ T6389]  copy_msghdr_from_user+0x477/0x580
[  117.816895][ T6389]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  117.816906][ T6389]  ? __fget_files+0x2a/0x420
[  117.816920][ T6389]  ? __fget_files+0x2a/0x420
[  117.816935][ T6389]  __sys_sendmsg+0x20a/0x360
[  117.816948][ T6389]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.816985][ T6389]  ? do_syscall_64+0xb6/0x230
[  117.816998][ T6389]  do_syscall_64+0xf3/0x230
[  117.817009][ T6389]  ? clear_bhb_loop+0x45/0xa0
[  117.817020][ T6389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.817029][ T6389] RIP: 0033:0x7fb0a178d169
[  117.817044][ T6389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.817052][ T6389] RSP: 002b:00007fb09f5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.817063][ T6389] RAX: ffffffffffffffda RBX: 00007fb0a19a5fa0 RCX: 00007fb0a178d169
[  117.817070][ T6389] RDX: 0000000000000800 RSI: 0000200000000280 RDI: 0000000000000003
[  117.817075][ T6389] RBP: 00007fb09f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  117.817081][ T6389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.817086][ T6389] R13: 0000000000000000 R14: 00007fb0a19a5fa0 R15: 00007fb0a1acfa28
[  117.817100][ T6389]  </TASK>
[  118.457848][ T6392] netlink: 48 bytes leftover after parsing attributes in process `syz.4.110'.
[  118.592935][ T6400] FAULT_INJECTION: forcing a failure.
[  118.592935][ T6400] name failslab, interval 1, probability 0, space 0, times 0
[  118.620469][ T6396] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.112'.
[  118.630803][ T6400] CPU: 0 UID: 0 PID: 6400 Comm: syz.4.113 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  118.630831][ T6400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  118.630841][ T6400] Call Trace:
[  118.630847][ T6400]  <TASK>
[  118.630853][ T6400]  dump_stack_lvl+0x241/0x360
[  118.630881][ T6400]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.630900][ T6400]  ? __pfx__printk+0x10/0x10
[  118.630921][ T6400]  ? __pfx___might_resched+0x10/0x10
[  118.630940][ T6400]  should_fail_ex+0x424/0x570
[  118.630962][ T6400]  should_failslab+0xac/0x100
[  118.630981][ T6400]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  118.630997][ T6400]  ? __alloc_skb+0x1c2/0x480
[  118.631016][ T6400]  __alloc_skb+0x1c2/0x480
[  118.631034][ T6400]  ? __pfx___alloc_skb+0x10/0x10
[  118.631052][ T6400]  ? netlink_autobind+0xd6/0x2f0
[  118.631070][ T6400]  ? netlink_autobind+0x2b0/0x2f0
[  118.631094][ T6400]  netlink_sendmsg+0x638/0xcd0
[  118.631126][ T6400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.631158][ T6400]  ? aa_sock_msg_perm+0x91/0x160
[  118.631177][ T6400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.631194][ T6400]  __sock_sendmsg+0x221/0x270
[  118.631216][ T6400]  ____sys_sendmsg+0x523/0x860
[  118.631242][ T6400]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.631271][ T6400]  ? __fget_files+0x2a/0x420
[  118.631292][ T6400]  ? __fget_files+0x2a/0x420
[  118.631316][ T6400]  __sys_sendmsg+0x271/0x360
[  118.631337][ T6400]  ? __pfx___sys_sendmsg+0x10/0x10
[  118.631402][ T6400]  ? do_syscall_64+0xb6/0x230
[  118.631423][ T6400]  do_syscall_64+0xf3/0x230
[  118.631439][ T6400]  ? clear_bhb_loop+0x45/0xa0
[  118.631457][ T6400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.631472][ T6400] RIP: 0033:0x7f2f43d8d169
[  118.631488][ T6400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.631500][ T6400] RSP: 002b:00007f2f44c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.631518][ T6400] RAX: ffffffffffffffda RBX: 00007f2f43fa5fa0 RCX: 00007f2f43d8d169
[  118.631529][ T6400] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  118.631538][ T6400] RBP: 00007f2f44c1e090 R08: 0000000000000000 R09: 0000000000000000
[  118.631548][ T6400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.631557][ T6400] R13: 0000000000000000 R14: 00007f2f43fa5fa0 R15: 00007f2f440cfa28
[  118.631582][ T6400]  </TASK>
[  118.921264][ T6402] FAULT_INJECTION: forcing a failure.
[  118.921264][ T6402] name failslab, interval 1, probability 0, space 0, times 0
[  118.944568][ T6402] CPU: 1 UID: 0 PID: 6402 Comm: syz.0.114 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  118.944586][ T6402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  118.944592][ T6402] Call Trace:
[  118.944597][ T6402]  <TASK>
[  118.944601][ T6402]  dump_stack_lvl+0x241/0x360
[  118.944622][ T6402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.944636][ T6402]  ? __pfx__printk+0x10/0x10
[  118.944651][ T6402]  ? __pfx___might_resched+0x10/0x10
[  118.944665][ T6402]  should_fail_ex+0x424/0x570
[  118.944680][ T6402]  should_failslab+0xac/0x100
[  118.944693][ T6402]  __kmalloc_noprof+0xdf/0x4d0
[  118.944705][ T6402]  ? tomoyo_encode+0x26f/0x540
[  118.944717][ T6402]  tomoyo_encode+0x26f/0x540
[  118.944730][ T6402]  tomoyo_realpath_from_path+0x59e/0x5e0
[  118.944746][ T6402]  tomoyo_path_number_perm+0x245/0x790
[  118.944762][ T6402]  ? tomoyo_path_number_perm+0x215/0x790
[  118.944776][ T6402]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  118.944793][ T6402]  ? ksys_write+0x24e/0x2d0
[  118.944810][ T6402]  ? __lock_acquire+0xad5/0xd80
[  118.944830][ T6402]  ? __fget_files+0x2a/0x420
[  118.944841][ T6402]  ? __fget_files+0x2a/0x420
[  118.944853][ T6402]  ? __fget_files+0x2a/0x420
[  118.944867][ T6402]  security_file_ioctl+0xc6/0x2a0
[  118.944881][ T6402]  __se_sys_ioctl+0x46/0x160
[  118.944897][ T6402]  do_syscall_64+0xf3/0x230
[  118.944909][ T6402]  ? clear_bhb_loop+0x45/0xa0
[  118.944927][ T6402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.944936][ T6402] RIP: 0033:0x7fb0a178d169
[  118.944946][ T6402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.944953][ T6402] RSP: 002b:00007fb09f5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  118.944965][ T6402] RAX: ffffffffffffffda RBX: 00007fb0a19a5fa0 RCX: 00007fb0a178d169
[  118.944971][ T6402] RDX: 0000200000000300 RSI: 00000000c00c643c RDI: 0000000000000005
[  118.944977][ T6402] RBP: 00007fb09f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  118.944983][ T6402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.944988][ T6402] R13: 0000000000000000 R14: 00007fb0a19a5fa0 R15: 00007fb0a1acfa28
[  118.945002][ T6402]  </TASK>
[  118.945016][ T6402] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.249363][ T6404] tipc: Started in network mode
[  119.259453][ T6404] tipc: Node identity ac14142f, cluster identity 4711
[  119.276136][ T6404] tipc: New replicast peer: 0.0.0.0
[  119.302555][ T6404] tipc: Enabled bearer <udp:syz2>, priority 10
[  119.777780][ T6423] xfrm0: entered promiscuous mode
[  119.792709][ T6423] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  120.101027][   T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  120.101026][  T979] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  120.265830][  T979] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  120.280022][   T24] usb 3-1: Using ep0 maxpacket: 32
[  120.311697][  T976] tipc: Node number set to 2886997039
[  120.328545][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  120.342716][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.347742][   T24] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  120.388339][  T979] usb 4-1: Product: syz
[  120.389397][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.414139][   T24] usb 3-1: Product: syz
[  120.424008][   T24] usb 3-1: Manufacturer: syz
[  120.434412][   T24] usb 3-1: SerialNumber: syz
[  120.453994][   T24] usb 3-1: config 0 descriptor??
[  120.468819][  T979] usb 4-1: Manufacturer: syz
[  120.478231][  T979] usb 4-1: SerialNumber: syz
[  120.501420][  T979] usb 4-1: config 0 descriptor??
[  120.889773][   T24] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  121.047011][  T979] usb 4-1: Firmware version (0.0) predates our first public release.
[  121.072891][  T979] usb 4-1: Please update to version 0.2 or newer
[  121.123049][ T6446] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.126'.
[  121.142417][  T979] usb 4-1: USB disconnect, device number 6
[  121.300768][   T24] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  121.328522][   T24] usb 3-1: USB disconnect, device number 8
[  121.928615][ T6460] sctp_transport_update_pmtu: 49 callbacks suppressed
[  121.928636][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  121.946436][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  121.957405][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  121.970355][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  121.982230][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  121.993189][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  122.003975][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  122.014998][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  122.025893][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  122.036665][ T6460] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  122.373377][ T6464] netlink: 4 bytes leftover after parsing attributes in process `syz.4.132'.
[  122.632839][ T6457] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  122.724341][ T6468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.133'.
[  123.370054][  T979] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  123.599018][  T979] usb 2-1: config 0 has no interfaces?
[  123.611742][  T979] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  123.623031][  T979] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.750650][  T979] usb 2-1: Product: syz
[  123.791512][  T979] usb 2-1: Manufacturer: syz
[  123.807575][  T979] usb 2-1: SerialNumber: syz
[  123.848592][  T979] usb 2-1: config 0 descriptor??
[  125.447272][ T6481] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.137'.
[  125.601149][   T24] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  125.687648][ T6487] FAULT_INJECTION: forcing a failure.
[  125.687648][ T6487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.704155][ T6487] CPU: 1 UID: 0 PID: 6487 Comm: syz.4.141 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  125.704181][ T6487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.704195][ T6487] Call Trace:
[  125.704203][ T6487]  <TASK>
[  125.704211][ T6487]  dump_stack_lvl+0x241/0x360
[  125.704258][ T6487]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.704279][ T6487]  ? __pfx__printk+0x10/0x10
[  125.704313][ T6487]  should_fail_ex+0x424/0x570
[  125.704337][ T6487]  _copy_from_user+0x2d/0xb0
[  125.704355][ T6487]  copy_from_sockptr+0x57/0xb0
[  125.704375][ T6487]  memdup_sockptr_noprof+0x44/0x90
[  125.704395][ T6487]  do_ip_setsockopt+0x231e/0x39c0
[  125.704421][ T6487]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  125.704438][ T6487]  ? aa_sk_perm+0x96f/0xac0
[  125.704464][ T6487]  ? ksys_write+0x24e/0x2d0
[  125.704486][ T6487]  ? __pfx_aa_sk_perm+0x10/0x10
[  125.704515][ T6487]  ip_setsockopt+0x63/0x100
[  125.704540][ T6487]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  125.704561][ T6487]  do_sock_setsockopt+0x3b1/0x710
[  125.704585][ T6487]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  125.704605][ T6487]  ? __fget_files+0x2a/0x420
[  125.704627][ T6487]  ? __fget_files+0x39d/0x420
[  125.704644][ T6487]  ? __fget_files+0x2a/0x420
[  125.704694][ T6487]  __x64_sys_setsockopt+0x1ee/0x280
[  125.704719][ T6487]  do_syscall_64+0xf3/0x230
[  125.704738][ T6487]  ? clear_bhb_loop+0x45/0xa0
[  125.704757][ T6487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.704773][ T6487] RIP: 0033:0x7f2f43d8d169
[  125.704793][ T6487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.704805][ T6487] RSP: 002b:00007f2f44c1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  125.704827][ T6487] RAX: ffffffffffffffda RBX: 00007f2f43fa5fa0 RCX: 00007f2f43d8d169
[  125.704839][ T6487] RDX: 0000000000000029 RSI: 0000000000000000 RDI: 0000000000000003
[  125.704849][ T6487] RBP: 00007f2f44c1e090 R08: 000000000000001c R09: 0000000000000000
[  125.704858][ T6487] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  125.704867][ T6487] R13: 0000000000000000 R14: 00007f2f43fa5fa0 R15: 00007f2f440cfa28
[  125.704895][ T6487]  </TASK>
[  125.932122][    C1] vkms_vblank_simulate: vblank timer overrun
[  125.952020][   T47] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  125.980180][   T24] usb 4-1: Using ep0 maxpacket: 16
[  125.992471][   T24] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  126.006113][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  126.023555][   T24] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  126.036829][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.045864][   T24] usb 4-1: Product: syz
[  126.050664][   T24] usb 4-1: Manufacturer: syz
[  126.055588][   T24] usb 4-1: SerialNumber: syz
[  126.068956][   T24] usb 4-1: config 0 descriptor??
[  126.084092][   T24] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  126.103014][   T24] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class)
[  126.132417][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 31, changing to 8
[  126.143650][   T47] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  126.156636][   T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  126.165935][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.175966][   T47] usb 1-1: config 0 descriptor??
[  126.285412][ T5914] usb 2-1: USB disconnect, device number 7
[  126.597522][   T47] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  126.607438][   T47] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  126.631132][   T47] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  126.818685][   T24] em28xx 4-1:0.0: unknown em28xx chip ID (0)
[  126.828748][   T24] em28xx 4-1:0.0: Config register raw data: 0xfffffffb
[  127.480115][   T24] em28xx 4-1:0.0: AC97 command still being executed: not handled properly!
[  127.488995][   T24] em28xx 4-1:0.0: Unknown AC97 audio processor detected!
[  127.580163][  T979] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  127.668111][   T24] em28xx 4-1:0.0: couldn't setup AC97 register 2
[  127.683860][   T24] em28xx 4-1:0.0: couldn't setup AC97 register 4
[  127.696171][   T24] em28xx 4-1:0.0: couldn't setup AC97 register 6
[  127.725829][   T24] em28xx 4-1:0.0: couldn't setup AC97 register 54
[  127.741987][  T979] usb 5-1: Using ep0 maxpacket: 16
[  127.759401][   T24] em28xx 4-1:0.0: couldn't setup AC97 register 56
[  127.759754][  T979] usb 5-1: config 0 has no interfaces?
[  127.795150][  T979] usb 5-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  127.813027][   T24] usb 4-1: USB disconnect, device number 7
[  127.816994][  T979] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.827676][  T979] usb 5-1: Product: syz
[  127.832183][  T979] usb 5-1: Manufacturer: syz
[  127.836937][  T979] usb 5-1: SerialNumber: syz
[  127.851664][  T979] usb 5-1: config 0 descriptor??
[  128.200054][ T6518] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.149'.
[  128.212428][ T6520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.150'.
[  128.275299][   T24] usb 5-1: USB disconnect, device number 4
[  128.479499][ T6524] netlink: 4 bytes leftover after parsing attributes in process `syz.2.151'.
[  128.962003][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.3.152'.
[  129.227464][ T6530] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  129.337932][ T6524] team0 (unregistering): Port device team_slave_0 removed
[  129.408998][ T6524] team0 (unregistering): Port device team_slave_1 removed
[  129.461614][ T6532] FAULT_INJECTION: forcing a failure.
[  129.461614][ T6532] name failslab, interval 1, probability 0, space 0, times 0
[  129.477780][ T6532] CPU: 0 UID: 0 PID: 6532 Comm: syz.4.153 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  129.477806][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.477816][ T6532] Call Trace:
[  129.477824][ T6532]  <TASK>
[  129.477832][ T6532]  dump_stack_lvl+0x241/0x360
[  129.477854][ T6532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.477868][ T6532]  ? __pfx__printk+0x10/0x10
[  129.477883][ T6532]  ? __pfx___might_resched+0x10/0x10
[  129.477901][ T6532]  should_fail_ex+0x424/0x570
[  129.477924][ T6532]  should_failslab+0xac/0x100
[  129.477945][ T6532]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  129.477964][ T6532]  ? __alloc_skb+0x1c2/0x480
[  129.477984][ T6532]  __alloc_skb+0x1c2/0x480
[  129.477998][ T6532]  ? __pfx___alloc_skb+0x10/0x10
[  129.478008][ T6532]  ? netlink_autobind+0xd6/0x2f0
[  129.478021][ T6532]  ? netlink_autobind+0x2b0/0x2f0
[  129.478036][ T6532]  netlink_sendmsg+0x638/0xcd0
[  129.478063][ T6532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.478088][ T6532]  ? aa_sock_msg_perm+0x91/0x160
[  129.478109][ T6532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.478127][ T6532]  __sock_sendmsg+0x221/0x270
[  129.478151][ T6532]  ____sys_sendmsg+0x523/0x860
[  129.478166][ T6532]  ? __pfx_____sys_sendmsg+0x10/0x10
[  129.478174][ T6532]  ? __fget_files+0x2a/0x420
[  129.478187][ T6532]  ? __fget_files+0x2a/0x420
[  129.478207][ T6532]  __sys_sendmsg+0x271/0x360
[  129.478229][ T6532]  ? __pfx___sys_sendmsg+0x10/0x10
[  129.478295][ T6532]  ? do_syscall_64+0xb6/0x230
[  129.478309][ T6532]  do_syscall_64+0xf3/0x230
[  129.478319][ T6532]  ? clear_bhb_loop+0x45/0xa0
[  129.478331][ T6532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.478340][ T6532] RIP: 0033:0x7f2f43d8d169
[  129.478350][ T6532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.478362][ T6532] RSP: 002b:00007f2f44bdc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  129.478380][ T6532] RAX: ffffffffffffffda RBX: 00007f2f43fa6160 RCX: 00007f2f43d8d169
[  129.478392][ T6532] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 000000000000000e
[  129.478402][ T6532] RBP: 00007f2f44bdc090 R08: 0000000000000000 R09: 0000000000000000
[  129.478412][ T6532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.478421][ T6532] R13: 0000000000000000 R14: 00007f2f43fa6160 R15: 00007f2f440cfa28
[  129.478446][ T6532]  </TASK>
[  131.762163][ T6540] FAULT_INJECTION: forcing a failure.
[  131.762163][ T6540] name failslab, interval 1, probability 0, space 0, times 0
[  131.803693][ T6540] CPU: 1 UID: 0 PID: 6540 Comm: syz.3.157 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  131.803720][ T6540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  131.803733][ T6540] Call Trace:
[  131.803740][ T6540]  <TASK>
[  131.803747][ T6540]  dump_stack_lvl+0x241/0x360
[  131.803776][ T6540]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.803795][ T6540]  ? __pfx__printk+0x10/0x10
[  131.803816][ T6540]  ? __pfx___might_resched+0x10/0x10
[  131.803836][ T6540]  should_fail_ex+0x424/0x570
[  131.803861][ T6540]  should_failslab+0xac/0x100
[  131.803881][ T6540]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  131.803899][ T6540]  ? __alloc_skb+0x1c2/0x480
[  131.803918][ T6540]  __alloc_skb+0x1c2/0x480
[  131.803938][ T6540]  ? __pfx___alloc_skb+0x10/0x10
[  131.803962][ T6540]  netlink_sendmsg+0x638/0xcd0
[  131.803994][ T6540]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.804028][ T6540]  ? aa_sock_msg_perm+0x91/0x160
[  131.804048][ T6540]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.804065][ T6540]  __sock_sendmsg+0x221/0x270
[  131.804085][ T6540]  ____sys_sendmsg+0x523/0x860
[  131.804108][ T6540]  ? __pfx_____sys_sendmsg+0x10/0x10
[  131.804129][ T6540]  ? kasan_check_range+0x86/0x2a0
[  131.804152][ T6540]  __sys_sendmsg+0x271/0x360
[  131.804173][ T6540]  ? __pfx___sys_sendmsg+0x10/0x10
[  131.804242][ T6540]  ? do_syscall_64+0xb6/0x230
[  131.804262][ T6540]  do_syscall_64+0xf3/0x230
[  131.804277][ T6540]  ? clear_bhb_loop+0x45/0xa0
[  131.804295][ T6540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.804309][ T6540] RIP: 0033:0x7f28a6f8d169
[  131.804324][ T6540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.804336][ T6540] RSP: 002b:00007f28a7d0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.804355][ T6540] RAX: ffffffffffffffda RBX: 00007f28a71a5fa0 RCX: 00007f28a6f8d169
[  131.804366][ T6540] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  131.804377][ T6540] RBP: 00007f28a7d0b090 R08: 0000000000000000 R09: 0000000000000000
[  131.804387][ T6540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.804397][ T6540] R13: 0000000000000000 R14: 00007f28a71a5fa0 R15: 00007f28a72cfa28
[  131.804424][ T6540]  </TASK>
[  132.104366][ T6544] netlink: 4 bytes leftover after parsing attributes in process `syz.4.156'.
[  132.503168][ T6558] xt_socket: unknown flags 0x4
[  132.651069][ T6562] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.161'.
[  132.876697][ T6565] netlink: 4 bytes leftover after parsing attributes in process `syz.2.162'.
[  132.983528][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  132.992137][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  133.090926][ T6568] fuse: Bad value for 'fd'
[  133.681477][   T24] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  133.871968][   T24] usb 3-1: unable to get BOS descriptor or descriptor too short
[  133.882617][   T24] usb 3-1: not running at top speed; connect to a high speed hub
[  133.902224][   T24] usb 3-1: config 4 has an invalid interface number: 147 but max is 0
[  133.927277][   T24] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  134.039987][   T24] usb 3-1: config 4 has no interface number 0
[  134.102173][   T24] usb 3-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  134.125777][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.160025][   T24] usb 3-1: Product: syz
[  134.164427][   T24] usb 3-1: Manufacturer: syz
[  134.203881][   T24] usb 3-1: SerialNumber: syz
[  134.260227][ T6577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.165'.
[  134.546848][   T24] usb 3-1: USB disconnect, device number 9
[  134.750092][   T47] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  134.962925][ T6581] netlink: 1624 bytes leftover after parsing attributes in process `syz.4.168'.
[  134.973529][   T47] usb 4-1: config 0 has an invalid interface number: 207 but max is 0
[  134.982306][   T47] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  134.997427][   T47] usb 4-1: config 0 has no interface number 0
[  135.006712][   T47] usb 4-1: New USB device found, idVendor=12d1, idProduct=ed56, bcdDevice=46.dd
[  135.016345][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.024763][   T47] usb 4-1: Product: syz
[  135.042914][   T47] usb 4-1: Manufacturer: syz
[  135.143013][   T47] usb 4-1: SerialNumber: syz
[  135.191844][   T47] usb 4-1: config 0 descriptor??
[  135.211524][   T47] qmi_wwan 4-1:0.207: bogus CDC Union: master=0, slave=1
[  135.295132][   T47] qmi_wwan 4-1:0.207: probe with driver qmi_wwan failed with error -22
[  135.522521][   T30] audit: type=1326 audit(1743531373.144:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  135.586552][   T47] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  135.720349][   T30] audit: type=1326 audit(1743531373.144:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  135.827542][ T6576] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.840973][ T6576] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.851277][ T6576] bond0 (unregistering): Released all slaves
[  135.893990][   T47] usb 5-1: Using ep0 maxpacket: 8
[  135.943837][   T24] usb 4-1: USB disconnect, device number 8
[  135.978150][   T47] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  135.982785][   T30] audit: type=1326 audit(1743531373.144:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.011797][   T47] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  136.032008][   T47] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  136.052539][   T30] audit: type=1326 audit(1743531373.144:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.112315][   T47] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  136.152934][   T47] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  136.178998][   T47] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.180177][   T30] audit: type=1326 audit(1743531373.144:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.305594][   T30] audit: type=1326 audit(1743531373.144:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.474001][   T30] audit: type=1326 audit(1743531373.144:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.604821][   T30] audit: type=1326 audit(1743531373.144:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.711410][   T30] audit: type=1326 audit(1743531373.144:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  136.914985][ T6596] netlink: 4 bytes leftover after parsing attributes in process `syz.3.172'.
[  136.951369][   T30] audit: type=1326 audit(1743531373.144:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f28a6f8d169 code=0x7ffc0000
[  137.447617][   T24] usb 1-1: USB disconnect, device number 11
[  137.581998][ T6603] ipt_ECN: cannot use operation on non-tcp rule
[  137.906541][ T6596] team0 (unregistering): Port device team_slave_0 removed
[  138.039530][ T6596] team0 (unregistering): Port device team_slave_1 removed
[  138.485381][   T47] usb 5-1: usb_control_msg returned -71
[  138.513278][   T47] usbtmc 5-1:16.0: can't read capabilities
[  138.540097][ T5891] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  138.591111][   T47] usb 5-1: USB disconnect, device number 5
[  138.625732][ T6614] netlink: 1624 bytes leftover after parsing attributes in process `syz.1.179'.
[  138.698033][ T5891] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  138.708520][ T5891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.849695][ T5891] usb 3-1: config 0 descriptor??
[  138.867978][ T5891] gspca_main: cpia1-2.14.0 probing 0813:0001
[  139.249499][ T6621] Cannot find set identified by id 0 to match
[  139.272662][ T5891] gspca_cpia1: usb_control_msg 03, error -71
[  139.285347][ T5891] gspca_cpia1: usb_control_msg 01, error -71
[  139.293766][ T5891] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  139.306842][ T5891] usb 3-1: USB disconnect, device number 10
[  139.348695][ T6621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.182'.
[  139.649384][ T6627] netlink: 4 bytes leftover after parsing attributes in process `syz.4.184'.
[  139.985487][ T6632] netlink: 16 bytes leftover after parsing attributes in process `syz.2.186'.
[  140.131981][ T6637] fuse: Unknown parameter ''
[  140.358732][ T6642] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.189'.
[  140.422157][ T6638] netlink: 'syz.0.185': attribute type 29 has an invalid length.
[  140.531299][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  140.570796][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  140.580009][ T5914] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  140.737484][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  140.788864][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  140.820154][ T5914] usb 3-1: Using ep0 maxpacket: 16
[  140.852704][ T5914] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  140.863092][ T5914] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  140.870943][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  140.883619][ T5914] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  140.951646][ T5914] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.960492][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  141.010935][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  141.090236][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  141.120212][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  141.132669][ T5914] usb 3-1: Product: syz
[  141.147136][ T5914] usb 3-1: Manufacturer: syz
[  141.159852][ T5914] usb 3-1: SerialNumber: syz
[  141.236706][  T976] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  141.552689][ T5914] usb 3-1: Audio class v2/v3 interfaces need an interface association
[  141.590903][ T5914] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22
[  141.632090][ T5914] usb 3-1: USB disconnect, device number 11
[  141.822649][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  142.020059][ T5891] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  142.030006][  T979] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  142.176618][ T5891] usb 1-1: unable to get BOS descriptor or descriptor too short
[  142.184755][  T979] usb 2-1: Using ep0 maxpacket: 16
[  142.225678][ T5891] usb 1-1: not running at top speed; connect to a high speed hub
[  142.236611][  T979] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  142.250859][ T5891] usb 1-1: config 4 has an invalid interface number: 147 but max is 0
[  142.261540][  T979] usb 2-1: config 0 has no interface number 0
[  142.270690][ T5891] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  142.284586][  T979] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  142.296976][ T5891] usb 1-1: config 4 has no interface number 0
[  142.303613][  T979] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  142.316008][ T5891] usb 1-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  142.326797][ T5891] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.335162][ T5891] usb 1-1: Product: syz
[  142.335616][  T979] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  142.349091][ T5891] usb 1-1: Manufacturer: syz
[  142.353770][ T5891] usb 1-1: SerialNumber: syz
[  142.358728][  T979] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  142.368156][  T979] usb 2-1: Product: syz
[  142.374631][  T979] usb 2-1: SerialNumber: syz
[  142.383346][  T979] usb 2-1: config 0 descriptor??
[  142.396577][  T979] cm109 2-1:0.8: invalid payload size 0, expected 4
[  142.410355][  T979] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input6
[  142.426879][ T6669] xt_socket: unknown flags 0x4
[  142.594099][ T6660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  142.602774][ T6660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  142.614274][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.622396][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.629542][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.636882][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.644068][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.651352][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.658510][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.669094][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.678019][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.685517][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  142.700087][  T979] usb 2-1: USB disconnect, device number 8
[  142.705934][    C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  142.736721][ T5891] usb 1-1: USB disconnect, device number 12
[  142.746183][  T979] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  143.806630][   T24] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  143.999985][   T24] usb 1-1: Using ep0 maxpacket: 16
[  144.012432][   T24] usb 1-1: config 0 has no interfaces?
[  144.032171][ T5891] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  144.033691][   T24] usb 1-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  144.059180][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.089592][   T24] usb 1-1: Product: syz
[  144.099720][   T24] usb 1-1: Manufacturer: syz
[  144.109854][   T24] usb 1-1: SerialNumber: syz
[  144.128157][   T24] usb 1-1: config 0 descriptor??
[  144.191655][ T6689] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.206'.
[  144.218962][ T6686] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.206'.
[  144.240153][ T5891] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  144.262970][ T6689] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.206'.
[  144.279540][ T5891] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.295465][ T5891] usb 5-1: Product: syz
[  144.302082][ T5891] usb 5-1: Manufacturer: syz
[  144.324506][ T5891] usb 5-1: SerialNumber: syz
[  144.351867][ T5891] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  144.388381][ T5837] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  144.388669][   T24] usb 1-1: USB disconnect, device number 13
[  144.500319][ T5914] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  144.560158][ T5891] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  144.650112][ T5914] usb 2-1: Using ep0 maxpacket: 8
[  144.659155][ T5914] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  144.668723][ T5914] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.677274][ T5914] usb 2-1: Product: syz
[  144.680126][  T979] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  144.682769][ T5914] usb 2-1: Manufacturer: syz
[  144.693843][ T5914] usb 2-1: SerialNumber: syz
[  144.700661][ T5914] usb 2-1: config 0 descriptor??
[  144.710422][ T5891] usb 3-1: Using ep0 maxpacket: 32
[  144.722305][ T5891] usb 3-1: config 0 has an invalid interface number: 61 but max is 1
[  144.730715][ T5891] usb 3-1: config 0 has an invalid interface number: 98 but max is 1
[  144.738982][ T5891] usb 3-1: config 0 has no interface number 0
[  144.745481][ T5891] usb 3-1: config 0 has no interface number 1
[  144.754395][ T5891] usb 3-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  144.765370][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.773624][ T5891] usb 3-1: Product: syz
[  144.777865][ T5891] usb 3-1: Manufacturer: syz
[  144.784565][ T5891] usb 3-1: SerialNumber: syz
[  144.791963][ T5891] usb 3-1: config 0 descriptor??
[  144.842394][  T979] usb 4-1: unable to get BOS descriptor or descriptor too short
[  144.851300][  T979] usb 4-1: not running at top speed; connect to a high speed hub
[  144.864381][  T979] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[  144.872718][  T979] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  144.882928][  T979] usb 4-1: config 4 has no interface number 0
[  144.895684][  T979] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  144.905282][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.913645][ T5891] viperboard 3-1:0.61: version 0.00 found at bus 003 address 012
[  144.925524][  T979] usb 4-1: Product: syz
[  144.927904][ T5914] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  144.929819][  T979] usb 4-1: Manufacturer: syz
[  144.977740][  T979] usb 4-1: SerialNumber: syz
[  145.004792][ T5891] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  145.020731][ T5891] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  145.087761][ T5891] viperboard 3-1:0.98: version 0.00 found at bus 003 address 012
[  145.138609][ T5891] viperboard-i2c viperboard-i2c.5.auto: failure setting i2c_bus_freq to 100
[  145.147877][ T5891] viperboard-i2c viperboard-i2c.5.auto: probe with driver viperboard-i2c failed with error -5
[  145.182888][ T5891] usb 3-1: USB disconnect, device number 12
[  145.314151][ T6693] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.343829][ T6693] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.390713][  T979] usb 4-1: USB disconnect, device number 9
[  145.490280][ T5837] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  145.499079][ T5837] ath9k_htc: Failed to initialize the device
[  145.533425][ T5837] usb 5-1: ath9k_htc: USB layer deinitialized
[  145.733141][ T6691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.743022][ T6691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.753257][   T24] usb 5-1: USB disconnect, device number 6
[  145.763291][ T6703] syz.2.211 uses obsolete (PF_INET,SOCK_PACKET)
[  146.083556][ T6709] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.213'.
[  146.116078][ T6711] netlink: 4 bytes leftover after parsing attributes in process `syz.3.212'.
[  146.397778][ T5914] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  146.417357][ T5914] usb 2-1: USB disconnect, device number 9
[  146.733678][ T6724] xt_socket: unknown flags 0x4
[  147.333349][ T6730] netlink: 12 bytes leftover after parsing attributes in process `syz.1.219'.
[  147.541531][ T6730] netlink: 'syz.1.219': attribute type 11 has an invalid length.
[  147.790091][ T6736] xfrm0: entered promiscuous mode
[  147.795776][ T5914] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  147.970178][ T5914] usb 5-1: Using ep0 maxpacket: 16
[  148.065299][ T6736] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  148.130837][ T5914] usb 5-1: config 0 has no interfaces?
[  148.138215][ T5914] usb 5-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  148.230106][ T5914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.284575][ T5914] usb 5-1: Product: syz
[  148.333592][ T5914] usb 5-1: Manufacturer: syz
[  148.371855][ T5914] usb 5-1: SerialNumber: syz
[  148.386271][ T5914] usb 5-1: config 0 descriptor??
[  148.420131][ T5891] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  148.574175][ T5891] usb 2-1: Using ep0 maxpacket: 32
[  148.581534][ T5891] usb 2-1: config 0 interface 0 has no altsetting 0
[  148.604864][ T5891] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  148.621039][ T5914] usb 5-1: USB disconnect, device number 7
[  148.630114][ T5891] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.683152][ T5891] usb 2-1: Product: syz
[  148.697501][ T5891] usb 2-1: Manufacturer: syz
[  148.704880][ T5891] usb 2-1: SerialNumber: syz
[  148.721805][ T5891] usb 2-1: config 0 descriptor??
[  148.820352][ T6744] sctp_transport_update_pmtu: 48 callbacks suppressed
[  148.820366][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.842684][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.857257][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.868179][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.881834][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.896081][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.916519][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.936631][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.947693][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  148.961855][ T6744] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  149.139061][ T5891] gs_usb 2-1:0.0: Configuring for 1 interfaces
[  149.357841][ T6738] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  149.693532][ T5891] gs_usb 2-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  149.736811][ T5891] usb 2-1: USB disconnect, device number 10
[  149.760196][    T9] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  149.901827][    T9] usb 3-1: device descriptor read/64, error -71
[  150.150018][    T9] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  150.269433][ T6758] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  150.302882][    T9] usb 3-1: device descriptor read/64, error -71
[  150.425116][    T9] usb usb3-port1: attempt power cycle
[  150.606337][ T6767] netlink: 12 bytes leftover after parsing attributes in process `syz.4.231'.
[  150.619206][ T6767] netlink: 'syz.4.231': attribute type 11 has an invalid length.
[  150.700064][   T47] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  150.840109][    T9] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  150.863837][    T9] usb 3-1: device descriptor read/8, error -71
[  150.892887][   T47] usb 1-1: Using ep0 maxpacket: 32
[  150.901920][   T47] usb 1-1: config 0 interface 0 has no altsetting 0
[  150.913314][   T47] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  150.983989][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.129300][   T47] usb 1-1: Product: syz
[  151.133656][   T47] usb 1-1: Manufacturer: syz
[  151.148480][   T47] usb 1-1: SerialNumber: syz
[  151.163787][   T47] usb 1-1: config 0 descriptor??
[  151.212484][    T9] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  151.336437][    T9] usb 3-1: device descriptor read/8, error -71
[  151.464901][    T9] usb usb3-port1: unable to enumerate USB device
[  151.576192][   T47] gs_usb 1-1:0.0: Configuring for 162 interfaces
[  151.588050][   T47] gs_usb 1-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  151.682431][   T47] gs_usb 1-1:0.0: probe with driver gs_usb failed with error -22
[  151.784457][ T6779] tipc: Started in network mode
[  151.868144][ T6783] IPVS: rr: SCTP 127.0.0.1:0 - no destination available
[  151.890702][ T5891] IPVS: starting estimator thread 0...
[  151.930095][ T6779] tipc: Node identity ac1414aa, cluster identity 4711
[  151.952446][ T6779] tipc: Enabled bearer <udp:syz2>, priority 10
[  151.971119][ T6781] tipc: Disabling bearer <udp:syz2>
[  151.993951][ T6786] xt_socket: unknown flags 0x4
[  152.078750][ T6784] IPVS: using max 40 ests per chain, 96000 per kthread
[  152.578299][ T6794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.236'.
[  152.645096][ T6798] syzkaller1: entered promiscuous mode
[  152.650843][ T6798] syzkaller1: entered allmulticast mode
[  152.670384][ T5891] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  152.836447][ T5891] usb 5-1: unable to get BOS descriptor or descriptor too short
[  152.859372][ T5891] usb 5-1: no configurations
[  152.896974][ T5891] usb 5-1: can't read configurations, error -22
[  153.166827][ T6804] sctp: [Deprecated]: syz.2.241 (pid 6804) Use of int in max_burst socket option.
[  153.166827][ T6804] Use struct sctp_assoc_value instead
[  153.185006][ T6803] sctp: [Deprecated]: syz.2.241 (pid 6803) Use of int in max_burst socket option.
[  153.185006][ T6803] Use struct sctp_assoc_value instead
[  153.222445][ T6806] netlink: 12 bytes leftover after parsing attributes in process `syz.3.242'.
[  153.243723][ T6806] netlink: 'syz.3.242': attribute type 11 has an invalid length.
[  153.521623][ T5837] usb 1-1: USB disconnect, device number 14
[  153.874408][ T6818] netlink: 40 bytes leftover after parsing attributes in process `syz.0.248'.
[  154.170157][ T5891] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  154.284087][ T6826] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  154.328584][ T5891] usb 4-1: unable to get BOS descriptor or descriptor too short
[  154.337449][ T5891] usb 4-1: not running at top speed; connect to a high speed hub
[  154.347391][ T5891] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[  154.385417][ T5891] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  154.416332][ T5891] usb 4-1: config 4 has no interface number 0
[  154.436027][ T5891] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  154.445912][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.456046][ T5891] usb 4-1: Product: syz
[  154.516404][ T5891] usb 4-1: Manufacturer: syz
[  154.537240][ T5891] usb 4-1: SerialNumber: syz
[  154.548312][ T6830] FAULT_INJECTION: forcing a failure.
[  154.548312][ T6830] name failslab, interval 1, probability 0, space 0, times 0
[  154.605855][ T6830] CPU: 1 UID: 0 PID: 6830 Comm: syz.0.253 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  154.605880][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  154.605889][ T6830] Call Trace:
[  154.605896][ T6830]  <TASK>
[  154.605903][ T6830]  dump_stack_lvl+0x241/0x360
[  154.605933][ T6830]  ? __pfx_dump_stack_lvl+0x10/0x10
[  154.605952][ T6830]  ? __pfx__printk+0x10/0x10
[  154.605976][ T6830]  ? __pfx___might_resched+0x10/0x10
[  154.605996][ T6830]  should_fail_ex+0x424/0x570
[  154.606020][ T6830]  should_failslab+0xac/0x100
[  154.606040][ T6830]  __kmalloc_noprof+0xdf/0x4d0
[  154.606057][ T6830]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  154.606071][ T6830]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  154.606089][ T6830]  tomoyo_realpath_from_path+0xcf/0x5e0
[  154.606114][ T6830]  tomoyo_path_number_perm+0x245/0x790
[  154.606137][ T6830]  ? tomoyo_path_number_perm+0x215/0x790
[  154.606159][ T6830]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  154.606185][ T6830]  ? ksys_write+0x24e/0x2d0
[  154.606211][ T6830]  ? __lock_acquire+0xad5/0xd80
[  154.606242][ T6830]  ? __fget_files+0x2a/0x420
[  154.606259][ T6830]  ? __fget_files+0x2a/0x420
[  154.606279][ T6830]  ? __fget_files+0x2a/0x420
[  154.606302][ T6830]  security_file_ioctl+0xc6/0x2a0
[  154.606332][ T6830]  __se_sys_ioctl+0x46/0x160
[  154.606355][ T6830]  do_syscall_64+0xf3/0x230
[  154.606372][ T6830]  ? clear_bhb_loop+0x45/0xa0
[  154.606396][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.606411][ T6830] RIP: 0033:0x7fb0a178d169
[  154.606425][ T6830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.606437][ T6830] RSP: 002b:00007fb09f5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  154.606456][ T6830] RAX: ffffffffffffffda RBX: 00007fb0a19a5fa0 RCX: 00007fb0a178d169
[  154.606467][ T6830] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[  154.606475][ T6830] RBP: 00007fb09f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  154.606484][ T6830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.606493][ T6830] R13: 0000000000000000 R14: 00007fb0a19a5fa0 R15: 00007fb0a1acfa28
[  154.606519][ T6830]  </TASK>
[  154.606586][ T6830] ERROR: Out of memory at tomoyo_realpath_from_path.
[  155.007132][ T6835] xt_socket: unknown flags 0x4
[  155.074173][ T6821] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.104723][ T6821] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.120080][  T979] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  155.301658][ T5891] usb 4-1: USB disconnect, device number 10
[  155.323541][  T979] usb 5-1: unable to get BOS descriptor or descriptor too short
[  155.334994][  T979] usb 5-1: no configurations
[  155.345034][  T979] usb 5-1: can't read configurations, error -22
[  155.620658][ T6845] netlink: 16 bytes leftover after parsing attributes in process `syz.0.256'.
[  155.649369][ T6845] netlink: 16 bytes leftover after parsing attributes in process `syz.0.256'.
[  155.840083][ T5891] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  155.960236][  T976] usb 1-1: new low-speed USB device number 15 using dummy_hcd
[  156.020209][ T5891] usb 2-1: Using ep0 maxpacket: 32
[  156.038025][ T5891] usb 2-1: config 0 interface 0 has no altsetting 0
[  156.052912][ T5891] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  156.065053][ T5891] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.084788][ T5891] usb 2-1: Product: syz
[  156.099855][ T5891] usb 2-1: Manufacturer: syz
[  156.112677][ T5891] usb 2-1: SerialNumber: syz
[  156.128674][ T5891] usb 2-1: config 0 descriptor??
[  156.182063][  T976] usb 1-1: config 0 has an invalid interface number: 55 but max is 0
[  156.191393][  T976] usb 1-1: config 0 has no interface number 0
[  156.199089][  T976] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  156.213848][  T976] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  156.225457][  T976] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  156.240516][  T976] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  156.256455][  T976] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  156.268336][  T976] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  156.282007][    T9] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  156.285396][  T976] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  156.299267][  T976] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.314040][  T976] usb 1-1: config 0 descriptor??
[  156.320693][ T6845] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  156.328150][ T6845] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  156.344075][  T976] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  156.442246][    T9] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  156.458106][    T9] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.469422][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  156.476473][  T979] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  156.486071][    T9] usb 4-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  156.496528][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.510296][    T9] usb 4-1: config 0 descriptor??
[  156.572668][ T5891] gs_usb 2-1:0.0: Configuring for 162 interfaces
[  156.579234][ T5891] gs_usb 2-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  156.589592][ T5891] gs_usb 2-1:0.0: probe with driver gs_usb failed with error -22
[  156.620111][  T979] usb 5-1: device descriptor read/64, error -71
[  156.870227][  T979] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  157.028379][  T979] usb 5-1: device descriptor read/64, error -71
[  157.092683][    T9] hid-steam 0003:28DE:1102.0004: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0
[  157.190625][  T979] usb usb5-port1: attempt power cycle
[  157.375133][    T9] usb 4-1: USB disconnect, device number 11
[  157.547240][ T6875] sctp_transport_update_pmtu: 49 callbacks suppressed
[  157.547261][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.565384][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.577509][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.588866][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.599003][  T979] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  157.609688][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.621419][  T979] usb 5-1: device descriptor read/8, error -71
[  157.628567][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.645070][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.657610][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.668760][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.683057][ T6875] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  157.860139][  T979] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  157.880882][  T979] usb 5-1: device descriptor read/8, error -71
[  157.992843][  T979] usb usb5-port1: unable to enumerate USB device
[  158.315550][ T6871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  158.470215][  T976] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  158.551681][   T47] usb 1-1: USB disconnect, device number 15
[  158.567076][   T47] ldusb 1-1:0.55: LD USB Device #0 now disconnected
[  158.603783][ T5902] usb 2-1: USB disconnect, device number 11
[  158.631681][  T976] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.657766][  T976] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  158.678287][  T976] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  158.693917][  T976] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  158.696141][ T6884] syzkaller1: entered promiscuous mode
[  158.708398][  T976] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  158.712339][ T6884] syzkaller1: entered allmulticast mode
[  158.730436][ T6884] FAULT_INJECTION: forcing a failure.
[  158.730436][ T6884] name failslab, interval 1, probability 0, space 0, times 0
[  158.731155][  T976] usb 4-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  158.743331][ T6884] CPU: 0 UID: 0 PID: 6884 Comm: syz.1.268 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  158.743355][ T6884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  158.743363][ T6884] Call Trace:
[  158.743370][ T6884]  <TASK>
[  158.743376][ T6884]  dump_stack_lvl+0x241/0x360
[  158.743405][ T6884]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.743427][ T6884]  ? __pfx__printk+0x10/0x10
[  158.743452][ T6884]  ? __pfx___might_resched+0x10/0x10
[  158.743473][ T6884]  should_fail_ex+0x424/0x570
[  158.743496][ T6884]  should_failslab+0xac/0x100
[  158.743516][ T6884]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  158.743536][ T6884]  ? __alloc_skb+0x1c2/0x480
[  158.743555][ T6884]  __alloc_skb+0x1c2/0x480
[  158.743575][ T6884]  ? __pfx___alloc_skb+0x10/0x10
[  158.743589][ T6884]  ? __lock_acquire+0xad5/0xd80
[  158.743614][ T6884]  alloc_skb_with_frags+0xc3/0x830
[  158.743645][ T6884]  sock_alloc_send_pskb+0x91c/0xa70
[  158.743681][ T6884]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  158.743701][ T6884]  ? is_bpf_text_address+0x288/0x2a0
[  158.743718][ T6884]  ? is_bpf_text_address+0x26/0x2a0
[  158.743736][ T6884]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  158.743759][ T6884]  ? iov_iter_advance+0x8f/0x1e0
[  158.743783][ T6884]  tun_get_user+0xc04/0x47c0
[  158.743817][ T6884]  ? aa_file_perm+0x139/0xf60
[  158.743835][ T6884]  ? aa_file_perm+0x139/0xf60
[  158.743849][ T6884]  ? aa_file_perm+0x3f1/0xf60
[  158.743864][ T6884]  ? __pfx_tun_get_user+0x10/0x10
[  158.743885][ T6884]  ? __lock_acquire+0xad5/0xd80
[  158.743905][ T6884]  ? ref_tracker_alloc+0x316/0x4c0
[  158.743926][ T6884]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  158.743960][ T6884]  ? tun_get+0x1e/0x2f0
[  158.743976][ T6884]  ? tun_get+0x1e/0x2f0
[  158.743990][ T6884]  ? tun_get+0x27d/0x2f0
[  158.744005][ T6884]  tun_chr_write_iter+0x10d/0x1f0
[  158.744024][ T6884]  vfs_write+0x70f/0xd10
[  158.744051][ T6884]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  158.744069][ T6884]  ? __pfx_vfs_write+0x10/0x10
[  158.744091][ T6884]  ? __fget_files+0x2a/0x420
[  158.744113][ T6884]  ? __fget_files+0x2a/0x420
[  158.744139][ T6884]  ksys_write+0x19d/0x2d0
[  158.744161][ T6884]  ? __pfx_ksys_write+0x10/0x10
[  158.744187][ T6884]  ? do_syscall_64+0xb6/0x230
[  158.744207][ T6884]  do_syscall_64+0xf3/0x230
[  158.744224][ T6884]  ? clear_bhb_loop+0x45/0xa0
[  158.744243][ T6884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.744264][ T6884] RIP: 0033:0x7f1b1ff8d169
[  158.744279][ T6884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.744293][ T6884] RSP: 002b:00007f1b20df8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  158.744311][ T6884] RAX: ffffffffffffffda RBX: 00007f1b201a5fa0 RCX: 00007f1b1ff8d169
[  158.744322][ T6884] RDX: 0000000000000073 RSI: 0000200000000240 RDI: 0000000000000003
[  158.744333][ T6884] RBP: 00007f1b20df8090 R08: 0000000000000000 R09: 0000000000000000
[  158.744342][ T6884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.744351][ T6884] R13: 0000000000000000 R14: 00007f1b201a5fa0 R15: 00007f1b202cfa28
[  158.744377][ T6884]  </TASK>
[  159.065033][  T976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  159.073358][  T976] usb 4-1: Product: syz
[  159.078385][  T976] usb 4-1: Manufacturer: syz
[  159.083918][ T6886] netlink: 4 bytes leftover after parsing attributes in process `syz.0.267'.
[  159.105047][  T976] usb 4-1: SerialNumber: syz
[  159.122179][  T976] usb 4-1: config 0 descriptor??
[  159.360182][  T976] radio-si470x 4-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  159.367103][  T976] radio-si470x 4-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  159.421275][ T6897] xt_socket: unknown flags 0x4
[  159.652263][  T976] radio-si470x 4-1:0.0: software version 0, hardware version 0
[  159.660571][  T976] radio-si470x 4-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[  159.743419][  T976] radio-si470x 4-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  159.745475][ T6902] netlink: 64 bytes leftover after parsing attributes in process `syz.2.272'.
[  159.904569][  T976] radio-si470x 4-1:0.0: submitting int urb failed (-90)
[  159.931581][ T6886] team0 (unregistering): Port device team_slave_0 removed
[  159.954779][ T6886] team0 (unregistering): Port device team_slave_1 removed
[  160.021202][ T6898] syzkaller1: entered promiscuous mode
[  160.078059][ T6898] syzkaller1: entered allmulticast mode
[  161.208796][  T976] radio-si470x 4-1:0.0: si470x_set_report: usb_control_msg returned -71
[  161.217811][  T976] radio-si470x 4-1:0.0: si470x_get_report: usb_control_msg returned -71
[  161.313209][  T976] usb 4-1: USB disconnect, device number 12
[  161.344065][ T6909] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.274'.
[  162.010354][ T5902] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  162.300088][ T5902] usb 2-1: Using ep0 maxpacket: 32
[  162.327653][ T5902] usb 2-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  162.337391][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.387980][ T5902] usb 2-1: config 0 descriptor??
[  162.393806][  T979] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  162.427836][ T5902] gspca_main: nw80x-2.14.0 probing 055f:d001
[  162.545908][  T979] usb 4-1: device descriptor read/64, error -71
[  162.777756][ T6923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  162.930354][  T979] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  163.180062][  T979] usb 4-1: device descriptor read/64, error -71
[  163.200252][ T6919] netlink: 24 bytes leftover after parsing attributes in process `syz.1.278'.
[  163.291924][  T979] usb usb4-port1: attempt power cycle
[  163.482510][  T976] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  163.650503][  T979] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  163.697382][ T6944] xt_socket: unknown flags 0x4
[  163.816661][ T6919] netlink: 88 bytes leftover after parsing attributes in process `syz.1.278'.
[  163.838832][  T979] usb 4-1: device descriptor read/8, error -71
[  163.846962][ T5902] gspca_nw80x: reg_w err -71
[  163.852498][ T5902] nw80x 2-1:0.0: probe with driver nw80x failed with error -71
[  163.855432][  T976] usb 3-1: unable to get BOS descriptor or descriptor too short
[  163.877183][ T5902] usb 2-1: USB disconnect, device number 12
[  163.899796][  T976] usb 3-1: not running at top speed; connect to a high speed hub
[  163.949110][  T976] usb 3-1: config 4 has an invalid interface number: 147 but max is 0
[  163.957752][  T976] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  164.010303][  T976] usb 3-1: config 4 has no interface number 0
[  164.082719][  T976] usb 3-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  164.100230][  T976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.110133][  T979] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  164.118372][  T976] usb 3-1: Product: syz
[  164.128014][  T976] usb 3-1: Manufacturer: syz
[  164.138159][  T976] usb 3-1: SerialNumber: syz
[  164.207588][  T979] usb 4-1: device descriptor read/8, error -71
[  164.322288][  T979] usb usb4-port1: unable to enumerate USB device
[  164.366352][ T6940] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  164.394642][ T6940] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  164.474800][  T976] usb 3-1: USB disconnect, device number 17
[  164.484375][ T6948] netlink: 12 bytes leftover after parsing attributes in process `syz.0.287'.
[  164.526743][ T6948] netlink: 'syz.0.287': attribute type 11 has an invalid length.
[  164.623033][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  164.623050][   T30] audit: type=1326 audit(1743531402.244:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6949 comm="syz.1.289" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1b1ff8d169 code=0x0
[  164.650736][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.953463][ T6956] usb usb8: usbfs: process 6956 (syz.4.291) did not claim interface 0 before use
[  164.965349][ T6956] netlink: 180 bytes leftover after parsing attributes in process `syz.4.291'.
[  165.053031][   T30] audit: type=1326 audit(1743531402.674:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579e58d169 code=0x7ffc0000
[  165.055288][ T6958] FAULT_INJECTION: forcing a failure.
[  165.055288][ T6958] name failslab, interval 1, probability 0, space 0, times 0
[  165.109861][   T30] audit: type=1326 audit(1743531402.674:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=444 compat=0 ip=0x7f579e58d169 code=0x7ffc0000
[  165.132008][    C0] vkms_vblank_simulate: vblank timer overrun
[  165.151061][ T6958] CPU: 1 UID: 0 PID: 6958 Comm: syz.2.292 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  165.151088][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.151099][ T6958] Call Trace:
[  165.151105][ T6958]  <TASK>
[  165.151112][ T6958]  dump_stack_lvl+0x241/0x360
[  165.151142][ T6958]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.151163][ T6958]  ? __pfx__printk+0x10/0x10
[  165.151189][ T6958]  ? __pfx___might_resched+0x10/0x10
[  165.151213][ T6958]  should_fail_ex+0x424/0x570
[  165.151237][ T6958]  should_failslab+0xac/0x100
[  165.151257][ T6958]  __kmalloc_cache_noprof+0x73/0x370
[  165.151274][ T6958]  ? landlock_init_hierarchy_log+0xa0/0x640
[  165.151299][ T6958]  landlock_init_hierarchy_log+0xa0/0x640
[  165.151317][ T6958]  ? __kmalloc_cache_noprof+0x236/0x370
[  165.151336][ T6958]  landlock_merge_ruleset+0x66e/0x900
[  165.151354][ T6958]  ? prepare_creds+0x47b/0x640
[  165.151377][ T6958]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[  165.151403][ T6958]  do_syscall_64+0xf3/0x230
[  165.151421][ T6958]  ? clear_bhb_loop+0x45/0xa0
[  165.151438][ T6958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.151452][ T6958] RIP: 0033:0x7f579e58d169
[  165.151466][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.151478][ T6958] RSP: 002b:00007f579f486038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  165.151495][ T6958] RAX: ffffffffffffffda RBX: 00007f579e7a5fa0 RCX: 00007f579e58d169
[  165.151506][ T6958] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  165.151516][ T6958] RBP: 00007f579f486090 R08: 0000000000000000 R09: 0000000000000000
[  165.151525][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.151534][ T6958] R13: 0000000000000000 R14: 00007f579e7a5fa0 R15: 00007f579e8cfa28
[  165.151558][ T6958]  </TASK>
[  165.151925][ T6958] ------------[ cut here ]------------
[  165.215252][   T30] audit: type=1326 audit(1743531402.674:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579e58d169 code=0x7ffc0000
[  165.220659][ T6958] WARNING: CPU: 1 PID: 6958 at security/landlock/domain.h:133 free_ruleset+0x1f3/0x250
[  165.220691][ T6958] Modules linked in:
[  165.220712][ T6958] CPU: 1 UID: 0 PID: 6958 Comm: syz.2.292 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  165.220731][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.220743][ T6958] RIP: 0010:free_ruleset+0x1f3/0x250
[  165.220762][ T6958] Code: 89 ff e8 20 df 6c fd 49 8b 1f 4c 89 ff e8 a5 37 61 fd 48 85 db 74 36 e8 9b c6 03 fd 49 89 df e9 34 ff ff ff e8 8e c6 03 fd 90 <0f> 0b 90 eb c2 e8 83 c6 03 fd eb 1c bf 01 00 00 00 89 ee e8 b5 ca
[  165.268346][   T30] audit: type=1326 audit(1743531402.674:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f579e58bad0 code=0x7ffc0000
[  165.289219][ T6958] RSP: 0018:ffffc90003f17dd8 EFLAGS: 00010293
[  165.289245][ T6958] RAX: ffffffff84bfb812 RBX: 0000000000000000 RCX: ffff888026843c00
[  165.289259][ T6958] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  165.289270][ T6958] RBP: 1ffff11006843954 R08: ffffffff84c0c3af R09: 1ffff11006843951
[  165.289282][ T6958] R10: dffffc0000000000 R11: ffffed1006843952 R12: ffff88803421caa0
[  165.289293][ T6958] R13: dffffc0000000000 R14: ffff8880120b9c00 R15: ffff88803421ca80
[  165.289305][ T6958] FS:  00007f579f4866c0(0000) GS:ffff8881250ac000(0000) knlGS:0000000000000000
[  165.289318][ T6958] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  165.289328][ T6958] CR2: 00007f28a7cd56c0 CR3: 000000002505e000 CR4: 00000000003526f0
[  165.289343][ T6958] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  165.289353][ T6958] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  165.289365][ T6958] Call Trace:
[  165.289373][ T6958]  <TASK>
[  165.289386][ T6958]  landlock_merge_ruleset+0x6d8/0x900
[  165.289412][ T6958]  ? prepare_creds+0x47b/0x640
[  165.289436][ T6958]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[  165.289464][ T6958]  do_syscall_64+0xf3/0x230
[  165.379620][   T30] audit: type=1326 audit(1743531402.674:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f579e58bc1f code=0x7ffc0000
[  165.381366][ T6958]  ? clear_bhb_loop+0x45/0xa0
[  165.381395][ T6958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.381415][ T6958] RIP: 0033:0x7f579e58d169
[  165.386392][   T30] audit: type=1326 audit(1743531402.674:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.2.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=446 compat=0 ip=0x7f579e58d169 code=0x7ffc0000
[  165.396867][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.396890][ T6958] RSP: 002b:00007f579f486038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  165.396910][ T6958] RAX: ffffffffffffffda RBX: 00007f579e7a5fa0 RCX: 00007f579e58d169
[  165.396922][ T6958] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  165.396933][ T6958] RBP: 00007f579f486090 R08: 0000000000000000 R09: 0000000000000000
[  165.396943][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.396953][ T6958] R13: 0000000000000000 R14: 00007f579e7a5fa0 R15: 00007f579e8cfa28
[  165.697043][ T6958]  </TASK>
[  165.697055][ T6958] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  165.697065][ T6958] CPU: 1 UID: 0 PID: 6958 Comm: syz.2.292 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) 
[  165.697077][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.697084][ T6958] Call Trace:
[  165.697090][ T6958]  <TASK>
[  165.697095][ T6958]  dump_stack_lvl+0x241/0x360
[  165.697115][ T6958]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.697130][ T6958]  ? __pfx__printk+0x10/0x10
[  165.697146][ T6958]  ? vscnprintf+0x5d/0x90
[  165.697163][ T6958]  panic+0x349/0x880
[  165.697176][ T6958]  ? __warn+0x174/0x4d0
[  165.697191][ T6958]  ? __pfx_panic+0x10/0x10
[  165.697212][ T6958]  __warn+0x344/0x4d0
[  165.697224][ T6958]  ? free_ruleset+0x1f3/0x250
[  165.697238][ T6958]  report_bug+0x2b3/0x500
[  165.697248][ T6958]  ? free_ruleset+0x1f3/0x250
[  165.697259][ T6958]  ? free_ruleset+0x1f3/0x250
[  165.697269][ T6958]  ? free_ruleset+0x1f5/0x250
[  165.697281][ T6958]  handle_bug+0x89/0x170
[  165.697299][ T6958]  exc_invalid_op+0x1a/0x50
[  165.697315][ T6958]  asm_exc_invalid_op+0x1a/0x20
[  165.697328][ T6958] RIP: 0010:free_ruleset+0x1f3/0x250
[  165.697344][ T6958] Code: 89 ff e8 20 df 6c fd 49 8b 1f 4c 89 ff e8 a5 37 61 fd 48 85 db 74 36 e8 9b c6 03 fd 49 89 df e9 34 ff ff ff e8 8e c6 03 fd 90 <0f> 0b 90 eb c2 e8 83 c6 03 fd eb 1c bf 01 00 00 00 89 ee e8 b5 ca
[  165.697357][ T6958] RSP: 0018:ffffc90003f17dd8 EFLAGS: 00010293
[  165.697372][ T6958] RAX: ffffffff84bfb812 RBX: 0000000000000000 RCX: ffff888026843c00
[  165.697383][ T6958] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  165.697394][ T6958] RBP: 1ffff11006843954 R08: ffffffff84c0c3af R09: 1ffff11006843951
[  165.697404][ T6958] R10: dffffc0000000000 R11: ffffed1006843952 R12: ffff88803421caa0
[  165.697412][ T6958] R13: dffffc0000000000 R14: ffff8880120b9c00 R15: ffff88803421ca80
[  165.697423][ T6958]  ? landlock_log_drop_domain+0x4f/0x1b0
[  165.697437][ T6958]  ? free_ruleset+0x1f2/0x250
[  165.697451][ T6958]  ? free_ruleset+0x1f2/0x250
[  165.697466][ T6958]  landlock_merge_ruleset+0x6d8/0x900
[  165.697482][ T6958]  ? prepare_creds+0x47b/0x640
[  165.697504][ T6958]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[  165.697522][ T6958]  do_syscall_64+0xf3/0x230
[  165.697544][ T6958]  ? clear_bhb_loop+0x45/0xa0
[  165.697556][ T6958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.697565][ T6958] RIP: 0033:0x7f579e58d169
[  165.697575][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.697584][ T6958] RSP: 002b:00007f579f486038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  165.697595][ T6958] RAX: ffffffffffffffda RBX: 00007f579e7a5fa0 RCX: 00007f579e58d169
[  165.697602][ T6958] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  165.697608][ T6958] RBP: 00007f579f486090 R08: 0000000000000000 R09: 0000000000000000
[  165.697614][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.697620][ T6958] R13: 0000000000000000 R14: 00007f579e7a5fa0 R15: 00007f579e8cfa28
[  165.697634][ T6958]  </TASK>
[  165.697909][ T6958] Kernel Offset: disabled