last executing test programs:

23.207134219s ago: executing program 4 (id=1551):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
msgsnd(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT], 0x2000, 0x0) (fail_nth: 4)

13.308535963s ago: executing program 2 (id=1568):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$video4linux(0x0, 0x45c, 0x40103)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xc, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x7fb2)
r3 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000580)={0x0, 0x1, 0x3, 0xffffffffffffffff, 0x0, &(0x7f0000000600)={0xa10905, 0x8000, '\x00', @p_u8=0x0}})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x10008040)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e1c}, {&(0x7f00000000c0)=""/250, 0x4}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2], 0x18}}, 0x0)

10.888418389s ago: executing program 1 (id=1572):
capset(&(0x7f0000000300)={0x20071026}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4, 0xfffffc4c})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000001640)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x34, r4, 0x800, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x10000, 0x3d}}}}, [@NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x60}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000884}, 0x40000)
statx(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)={0x4ec, 0x3e, 0x0, 0xfffffffe, 0x1000000, {0x1, 0x7c}, [@typed={0x8, 0xef, 0x0, 0x0, @pid=r1}, @typed={0x95, 0xcd, 0x0, 0x0, @binary="ddcea7abaa1793c6bf290547a44766a45145fa424e9f15eab4722e951d789d048839ac6075be04c2a4a15186ce9faa7688aef4f3e1c1eab4dd4485a5145830a4f81ee407ad4755bcd0da5552758fa4dd27cacd633c58701bdc8aa15e3144fcb8d6960f31d12881994b9f6d225e2ba3bfd6d2fb57bb947394511c25eda01cac78fd76c219cb9d5960f09ccc001c25096df1"}, @typed={0xd, 0x12e, 0x0, 0x0, @str='/dev/sg#\x00'}, @nested={0x428, 0xfa, 0x0, 0x1, [@typed={0x8, 0x91, 0x0, 0x0, @pid=r1}, @generic="955b24d3ebec4678343997ef0fad9fca3477fd319d37d19efe69dbaca4abce16526b53a366429aadbef70bf9012fa75b", @typed={0xd, 0x5e, 0x0, 0x0, @str='/dev/sg#\x00'}, @nested={0x19d, 0xe9, 0x0, 0x1, [@nested={0x4, 0x11}, @generic="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", @typed={0x8, 0xe7, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x130}, @generic="03181e0cdfd137e895b31f98774ff3f125f8d82b460e3bbd7f98d235233aacfaea1fc1881ee40afdfc445714c4af615f6d29f71e081863cc1c9d11de44813405a879e9fd623fbc0bb372c0742dfc9e62b6a94cc92abdc763e0082628c3de8dc9612b892116be023a5eef1bad7058a03fe202b196f056d5e3e9b4078e2c9c", @typed={0x8, 0x9c, 0x0, 0x0, @uid=r3}, @nested={0x4, 0x126}]}, @typed={0xc, 0xe1, 0x0, 0x0, @u64=0x9}, @typed={0x8, 0xcb, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @nested={0x61, 0xa8, 0x0, 0x1, [@generic="92fce32476a4307e9bd7306a6377f2cb139a97403af69f9f5c182d54e413125572e4183dd75f7a3169e6868502fa7fdf45931161c417ec0fceb80d88a38293766b809906b1553198e6", @typed={0xd, 0x6d, 0x0, 0x0, @str='/dev/sg#\x00'}, @nested={0x4, 0xf7}]}, @nested={0x1c1, 0x50, 0x0, 0x1, [@nested={0x4, 0x5e}, @nested={0x4, 0x1f}, @typed={0x8, 0x7, 0x0, 0x0, @uid=r6}, @typed={0x8, 0xc6, 0x0, 0x0, @u32=0xd6a7}, @typed={0xcc, 0x131, 0x0, 0x0, @binary="4f1080cb1e298b63a5a02a9f044e6664fd38a891ed23e48f2107f31c67f10d9499bfc57fc033bccbec4c3f56a82394d1c64d07dad6320ad89ce039f579363321a6faa00533f7bb90713a40943d23daaec2697cdc42976225bc28518cd3d002ca8c7571a4b51decd26e6a42f63ad69401278da5d3b06b5c02fe2db172bba4a54b03000000373275909ff59684996b3664e50a7c77e54b220264d0450bbe3c9748cdf9bdebf2a420e97f1eceff7409caf7a1b538199ea3a7d20a8031daff7fd03e52d01d995c3cdfc8"}, @typed={0x8, 0xba, 0x0, 0x0, @ipv4=@multicast1}, @generic="120e0cfcfc78c25973d128c93e4f1a73b585072c02ebd97289bcaa1699bc867552edf76ddc67eb879266f356eb2f76b65ac628a9d90f987664116705514ee0413396c95ec59e5554d2a0686421b62e14a7e836b9ccdaaa5a290c32ef17a5e47986a6495e26b68e1f2dee58417d7f85cd9fa7e38308b95eea354ffd04f5f62c9ea79899beef5536ab3ed506ac7e06f9cf05b9cd9548e653c786a851c7c72cf42e", @generic="b3d58482fa92abe79abc98f6e80597825d3e5eafdcda2674b550fbf1e2eee06e4e851426a6e6d8de56d182884ef475c530"]}]}]}, 0x4ec}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x2000c000)
r7 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
timer_settime(r2, 0x0, &(0x7f0000000480)={{0x0, 0x989680}}, &(0x7f00000004c0))
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000740)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="2ff8a81b133d", 0x0, 0x0, 0x34, 0x0, 0x0})

10.574639944s ago: executing program 4 (id=1574):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000007c0)={0xa, 0x2, 0x0, @empty, 0x80000001}, 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="fb", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x8}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x2, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592266c5b98fb19402835fee1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b33eb49c3157f1f370dfd67"}, 0xd8)
r1 = dup(r0)
sendto$inet6(r1, &(0x7f0000000000)="18dc90a7a6d153e64b11c1970b533764780ef498fc0b69ab8110f93aec588508c8e9dc88402776ca5e8648df03b3b488a72231acda5a5c8019d612e76f446530baffdd8262b9e13efe0d09c862804aacc80858d764f118890fe3c8d58da7e971465104700b372067b36f0573aecba20520ff09d0212c420647d7b176cc77727334cb17a6937959000000000000000000", 0xfffffcef, 0x90, 0x0, 0x12)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x200000c, 0x32, 0xffffffffffffffff, 0x0)
connect$inet6(r1, &(0x7f0000000240)={0xa, 0x4e22, 0x5e3, @dev={0xfe, 0x80, '\x00', 0x2f}, 0x3}, 0x1c)

10.497476751s ago: executing program 3 (id=1575):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x80000)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x22400, 0x0)
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000100)={0x1, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r4=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000000)={0x5, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", <r5=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r4, 0xc0303e03, &(0x7f00000000c0)={"3c2486910284ed923431d4c5d5fbf514fd00", r5, <r6=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r6, &(0x7f0000000180)={0x6})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f0000000300)={0x40000001})
syz_usb_connect$uac1(0x1, 0x71, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0xbc, 0x0, 0x6, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x2}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0x5, 0x9, 0x6, {0x7, 0x25, 0x1, 0x102, 0x9, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x8, 0x3, 0x9, 0x2, {0x7, 0x25, 0x1, 0x82, 0xf0, 0x6}}}}}}}]}}, &(0x7f00000005c0)={0x0, 0x0, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="050f0f00020323071002"], 0x1, [{0x0, 0x0}]})
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x101c02, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r7, 0xc0385720, &(0x7f0000000040))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = openat$sw_sync(0xffffffffffffff9c, &(0x7f00000003c0), 0x418780, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)

10.474635409s ago: executing program 1 (id=1576):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000700000000000180000000000000950000b63e0000000075e6f7529733c0dc3ebfefd27a716be81e340e14ed1021122c73706f4285b2d60fb8ca54e8e19de23fe9e2a3e0"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0, 0x0, 0x800}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3a, 0x5, 0x0, 0x5cdd3f48f17d8ad9, 0x0)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000024000280040001001c0003800c000180080001"], 0x50}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001540)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
r5 = socket$caif_seqpacket(0x25, 0x5, 0x1)
sendmsg$inet(r5, &(0x7f0000001340)={0x0, 0x0, 0x0}, 0x4004)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r6, 0x0)
migrate_pages(0x0, 0x3, &(0x7f0000000300)=0x3, &(0x7f0000000340)=0x13e)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f00000005c0), 0x40000000008d82, 0x0)
r8 = syz_io_uring_setup(0xbdc, &(0x7f0000000040)={0x0, 0x2d9b, 0x100, 0x200001, 0x40000333}, &(0x7f00000006c0)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r7, 0x1, &(0x7f0000000140)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r8, 0x847ba, 0x0, 0xe, 0x0, 0x0)

10.342530014s ago: executing program 4 (id=1577):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r2, 0x0, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xb4, r5, 0x4, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x512, 0x35}}}}, [@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "aba88a546b"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "6a88b3d1206eb88c5a10902359"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "5fe7dd0a1dc4f214940c3a979f"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x20, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x28, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4008010}, 0x1)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x2c, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}]}, 0x2c}}, 0x0)

10.172285781s ago: executing program 1 (id=1579):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1400000010f5010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)

9.902591929s ago: executing program 4 (id=1580):
syz_open_dev$loop(&(0x7f0000000280), 0x4005, 0x483962)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x40040, 0x2d)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000180)=[@in={0x2, 0x0, @local}, @in6={0xa, 0x0, 0x0, @empty}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x18}}], 0x3c)
r1 = syz_io_uring_setup(0x24fd, 0x0, &(0x7f0000000240), 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000380)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)=@rxrpc=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e23, @empty}}, 0x80, 0x0}, 0x4049080)
r4 = socket$kcm(0x10, 0x7, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe5538250015000600149b0000001208000313eba96240a8002b000a", 0x35}], 0x1}, 0x80)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfe33)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
setns(r2, 0x4000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x60000, 0x0)
time(0xfffffffffffffffc)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000200)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = shmget(0x1, 0x2000, 0x4, &(0x7f0000ffc000/0x2000)=nil)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
syz_io_uring_setup(0x4e23, &(0x7f00000000c0)={0x0, 0x9f6f, 0x20, 0x0, 0x4e, 0x0, r1}, &(0x7f00000001c0), 0x0)
sendfile(r8, r7, &(0x7f0000002080)=0x64, 0x1)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r7, 0x6, 0x15, 0x0, 0x0)
shmat(r6, &(0x7f0000ffd000/0x2000)=nil, 0x6000)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000040)='udf\x00', 0x208000, 0x0)

8.558483082s ago: executing program 4 (id=1582):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$kcm(0xa, 0x2, 0x88)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mknod$loop(&(0x7f0000000100)='./file0\x00', 0x8, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="66b9800100400f326635010000000f3064660f38828e4258660f086766c744240012e93bf96766c7442402010000006766c744240600000000670f011c2466b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019f09000f01c2", 0x6b}], 0x1, 0x3b, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = accept4$x25(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x80800)
ioctl$SIOCX25GFACILITIES(r5, 0x89e2, &(0x7f0000000240))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000300)={[0x7, 0x800, 0x100, 0x0, 0x5700000000000000, 0x401, 0x6, 0xfffffffffffffff7, 0x0, 0x13f, 0x100000001, 0xba25, 0xfff, 0x3, 0xfffffffffffffe00, 0x4], 0xeeef0000, 0x1c0080})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r4, 0xc080aebe, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101201, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0x4020aeb2, &(0x7f0000000800)={0x0, 0x0, @ioapic={0x8000000, 0xe0000, 0x9, 0x3, 0x0, [{0x2, 0x3, 0x5, '\x00', 0x7}, {0xd, 0x7, 0x96, '\x00', 0x3}, {0xff, 0xf2, 0x3, '\x00', 0xaf}, {0x17, 0xf8, 0x4, '\x00', 0xf4}, {0x6, 0xd, 0x4, '\x00', 0x9}, {0x5b, 0xc, 0xb, '\x00', 0x8}, {0xb0, 0x1, 0x3, '\x00', 0xc9}, {0x7, 0x5, 0x93, '\x00', 0xfd}, {0xfd, 0x1, 0x5}, {0x75, 0x81, 0xd, '\x00', 0x7}, {0x0, 0x6, 0xb, '\x00', 0x4}, {0x0, 0x0, 0x0, '\x00', 0x9}, {0x2, 0x26, 0x7b, '\x00', 0xb}, {0xb, 0x6, 0x3}, {0x5, 0x10, 0x22, '\x00', 0xc}, {0xe, 0x1, 0x8, '\x00', 0x82}, {0x5, 0x2, 0xa6, '\x00', 0x9}, {0xf, 0xd, 0x9, '\x00', 0x68}, {0x8, 0x5, 0xf2, '\x00', 0x1}, {0x5, 0x8, 0x1, '\x00', 0x3}, {0xc, 0x7, 0x0, '\x00', 0x7}, {0x2, 0xa1, 0x4}, {0xf9, 0x70, 0xe, '\x00', 0x1c}, {0x76, 0x1, 0xff, '\x00', 0x10}]}})
syz_clone(0x6102400, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r8 = add_key(&(0x7f0000000000)='id_resolver\x00', 0x0, &(0x7f0000000080), 0x0, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000380)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x80)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000000c0)={'fscrypt:', @desc4}, &(0x7f00000001c0)={0x0, "ed7775e65eafd28c998ed46d479658881ccacd0c245ad4d444213a00202509c5accfa410081d82ce2a4905411dee1154155efeb6111658c4224f35d6d4f57692", 0x33}, 0x48, 0xfffffffffffffffd)
keyctl$KEYCTL_WATCH_KEY(0x20, r8, r9, 0xd0)

8.30073815s ago: executing program 2 (id=1583):
r0 = socket(0x2, 0x3, 0xff)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x49, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x54, 0x0, 0xfffffffffffffd9c)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socket$inet6(0xa, 0x0, 0xfffffffd)
ioctl$KVM_SET_TSC_KHZ_cpu(r3, 0xaea2, 0x0)
getpeername$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev}, 0x0)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r6 = getpid()
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$GETALL(0x0, 0x0, 0xd, 0x0)
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_ifreq(r9, 0x891c, 0x0)
ioctl$IMDELTIMER(r4, 0x80044941, &(0x7f0000000080)=0x2)

8.300280709s ago: executing program 1 (id=1584):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_normal', 0x40040, 0x2d)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x6, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bed109ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x400000000007]}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$xdp(0x2c, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000480)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r2, 0x11b, 0x1, &(0x7f0000000380), &(0x7f0000001500)=0x60)
syz_open_procfs(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r0)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x403, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000140)={0xf0f045})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x5, 0x4, 0x6, 0x4, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r9}, 0x10)
ppoll(&(0x7f0000000080)=[{r6, 0x2046}], 0x1, 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0xb8, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x8}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x3}, @CTA_LABELS={0x24, 0x16, 0x1, 0x0, [0xc1b6, 0xfffffffb, 0x4, 0xd0, 0x7, 0x8, 0xb, 0x9]}, @CTA_SYNPROXY={0x3c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xc01}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x5ed}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0xfffffffd}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0xcd}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_ORIG={0x24, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x20010000}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xd}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x216}]}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20040000}, 0x4008804)

8.239211749s ago: executing program 0 (id=1585):
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0xf, &(0x7f0000000540)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x28000, 0x102)
mount(&(0x7f0000000080)=@nullb, 0x0, &(0x7f0000001640)='debugfs\x00', 0x208000, 0x0)
r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r2)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x421, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PRIMARY={0x8, 0xb, r3}]}}}]}, 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x280100, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)='\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)

6.836342928s ago: executing program 0 (id=1586):
r0 = add_key(&(0x7f0000000000)='dns_resolver\x00', 0x0, &(0x7f0000000040)='\x00\x00', 0x2, 0xfffffffffffffffd)
keyctl$negate(0xd, r0, 0x9, r0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[], &(0x7f0000001700)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r3}, 0x18)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8001)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)
socket$rxrpc(0x21, 0x2, 0xa)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r7, 0x8955, &(0x7f00000035c0)={{0x2, 0xffff, @multicast2}, {0x0, @link_local}, 0x4, {0x2, 0x0, @private}, 'sit0\x00'})

6.746650561s ago: executing program 3 (id=1587):
syz_clone3(&(0x7f0000000480)={0x1c200, 0x0, 0x0, &(0x7f0000000140), {0xf}, &(0x7f0000000180)=""/30, 0x1e, &(0x7f0000000200), &(0x7f0000000240)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x4}, 0x58)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1, 0x70bd2d}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = io_uring_setup(0x5b42, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x159})
ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000000)={0x1})
r4 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r4, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, 0x0, 0x0}, 0x94)
ioctl$sock_inet_SIOCGIFDSTADDR(r2, 0x8917, &(0x7f0000000500)={'caif0\x00', {0x2, 0x0, @loopback}})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r5, 0xc0605345, &(0x7f0000000040))
r6 = add_key$keyring(&(0x7f0000000280), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30807101", 0x1001, r6)

5.775044781s ago: executing program 0 (id=1588):
bind$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xa, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0x2000000000000111, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x40}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = dup(r2)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r2, &(0x7f0000000100)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @remote, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r4 = dup(r2)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000002000010004000000000000000a"], 0x44}}, 0x40000)
writev(r4, &(0x7f0000000540)=[{&(0x7f00000007c0)="12", 0x1}], 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x4000000000002)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
lchown(&(0x7f00000001c0)='./file0\x00', 0xee00, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="08f272f808af"})

4.853963893s ago: executing program 3 (id=1589):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1f, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x9}}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x11}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
chmod(0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000040)='contention_end\x00', r2}, 0x18)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001e000100070008000000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000a000200120004000400000008000f80"], 0x64}, 0x1, 0x0, 0x0, 0x4040840}, 0x20000800)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_FW_DOWNLOAD(r3, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002e00)={0x28, r5, 0xba960a2220112c19, 0x70bd2c, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_FIRMWARE_NAME={0x9, 0x14, '#).-!'}]}, 0x28}, 0x1, 0x0, 0x0, 0x100040c0}, 0x80) (async)
sendmsg$NFC_CMD_FW_DOWNLOAD(r3, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002e00)={0x28, r5, 0xba960a2220112c19, 0x70bd2c, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_FIRMWARE_NAME={0x9, 0x14, '#).-!'}]}, 0x28}, 0x1, 0x0, 0x0, 0x100040c0}, 0x80)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000007540)={&(0x7f0000000980)=ANY=[], 0x50}}, 0x200080d1)
pipe(&(0x7f0000000080)) (async)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r6) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r6)
sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="04002cbd7000ffdbdf25130000000d0013001bc80404378c6086980000000600140110000000060014010600ed00f502000006010001450000000600120003000000060014010300000006001401070000000600120000020000"], 0x64}}, 0x4)
socket$l2tp6(0xa, 0x2, 0x73) (async)
r8 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r8, 0x29, 0x41, &(0x7f0000000180)={'filter\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x74)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0)

4.730767636s ago: executing program 1 (id=1590):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
tee(r0, r3, 0xfffffffffffffc01, 0x0)
tee(r0, r3, 0x60000000700, 0x0)

4.629018011s ago: executing program 2 (id=1591):
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
read$FUSE(0xffffffffffffffff, &(0x7f0000001080)={0x2020}, 0x2020)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e007f0a7eed1168379a3601ffc4910700004f78d4"], 0x1c}}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$phonet(0x23, 0x2, 0x1)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000180)=0xc)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x7c7, 0x7ff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x80, 0x4, 0x0, @loopback, @rand_addr=0x64010101}}}})
recvmmsg$unix(r3, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

4.593526866s ago: executing program 3 (id=1592):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400"], 0x50)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000580)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x4}, 0x50)
sendmmsg$inet6(r4, &(0x7f0000001600)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x9, @mcast2, 0x80000000}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=[@rthdr={{0x28, 0x29, 0x39, {0x2c, 0x2, 0x2, 0x1, 0x0, [@private2]}}}], 0x28}}], 0x1, 0x20000000)
socket$pptp(0x18, 0x1, 0x2)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd08, 0x8000, {0x0, 0x0, 0x0, r8, {0x10, 0xb}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x21, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x40040)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)

3.874594093s ago: executing program 0 (id=1593):
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0xffffffffffffff5b, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x8080, 0x0)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
r2 = openat$smackfs_access(0xffffffffffffff9c, &(0x7f0000000140)='/sys/fs/smackfs/access2\x00', 0x2, 0x0)
write$smackfs_access(r2, &(0x7f0000000240)={'/dev/cpu/#/msr\x00', 0x20, '}.\'$\xaf\\(*\'*)', 0x20, 'xl'}, 0x1f)
r3 = syz_open_procfs(0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
unshare(0x2a020400)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x9, 0x7a8, 0x6}, 0x14)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "db57cda808852139", "252432e72844858a068b92a5a810f4dc", "11802ff5", "5aee41448c84afb7"}, 0x28)
ppoll(&(0x7f0000000100)=[{r4, 0x31}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb0014"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xf, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000", @ANYRES32, @ANYBLOB], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, r3, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r6, &(0x7f0000000200)={0xa, 0x4e20, 0x4000b, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x12}}, 0x80ad}, 0x1c)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)

2.561168998s ago: executing program 4 (id=1594):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$video4linux(0x0, 0x45c, 0x40103)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xc, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x7fb2)
r3 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000580)={0x0, 0x1, 0x3, 0xffffffffffffffff, 0x0, &(0x7f0000000600)={0xa10905, 0x8000, '\x00', @p_u8=0x0}})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x10008040)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e1c}, {&(0x7f00000000c0)=""/250, 0x4}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2], 0x18}}, 0x0)

2.423341725s ago: executing program 3 (id=1595):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000e280)={0x2020, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000000380)={0x50, 0x0, r2, {0x7, 0x27}}, 0x50)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00') (fail_nth: 1)
syz_fuse_handle_req(r1, &(0x7f0000006280)="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", 0x2000, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001200)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x1000000, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfffffffe, 0x0, 0x1000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_generic(r0, 0x0, 0xc000)

2.372594476s ago: executing program 1 (id=1596):
socket$nl_generic(0x10, 0x3, 0x10)
move_pages(0x0, 0xffffffffffffff55, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = socket(0x10, 0x803, 0x0)
write(r3, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b1ffec0e90101c7bb0000b00000000000", 0x26)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000d9bffc), 0x4)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

2.370726739s ago: executing program 0 (id=1597):
r0 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f00000003c0)=@tipc=@id={0x1e, 0x3, 0x22b9e9f797def337, {0x4e21, 0x3}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000580)="80", 0x1}, {&(0x7f0000000700)="82c6da265674a01e7b0cf8ffe2edfa37e1978d0b03921101391e1e9cebbf589611486cdb7a9440e49b481d11c02f1e07f9a948456287e47715e7e5cdfee32688aeafcd895ea76bfb400bc119193b56ac9c7ce5625ad44beed439d118082877940ad34708daaad274f9b6871acae267f3e06eedcf28a49e9e8080d088211dbea1bc7c745760a8ae5335a4f6c2c70274f9b921437097668fdc35d960cbc2707ea571d367d26d", 0xa5}, {0x0}], 0x3}, 0x0)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/219, 0xdb}], 0x1, &(0x7f0000000480)=""/19, 0x13}, 0x40000010)
syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000140)=""/111, 0x6f}, {&(0x7f0000000380)=""/42, 0x2a}], 0x2)
syz_clone3(&(0x7f0000000300)={0x110080000, &(0x7f0000000000), &(0x7f0000000040), 0x0, {0x21}, &(0x7f00000000c0)=""/81, 0x51, &(0x7f00000001c0)=""/36, &(0x7f0000000200)=[0x0, 0x0, 0xffffffffffffffff], 0x3}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1000008, 0x4000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3, 0x34f}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f0000000000)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x141})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x9800d1, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
r6 = socket$netlink(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x38, 0x10, 0x801, 0x4000000, 0xfffffffc, {0x0, 0x0, 0x4c, 0x0, 0x208c9, 0x500}, [@IFLA_GROUP={0x8}, @IFLA_OPERSTATE={0x5, 0x10, 0x5}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0x4529}]}, 0x38}, 0x1, 0xffffa888}, 0x20000880)

1.936201895s ago: executing program 2 (id=1598):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000580)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x4}, 0x50)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001600)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x9, @mcast2, 0x80000000}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=[@rthdr={{0x28, 0x29, 0x39, {0x2c, 0x2, 0x2, 0x1, 0x0, [@private2]}}}], 0x28}}], 0x1, 0x20000000)
socket$pptp(0x18, 0x1, 0x2)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd08, 0x8000, {0x0, 0x0, 0x0, r7, {0x10, 0xb}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x21, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x40040)

810.438695ms ago: executing program 3 (id=1599):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x4000190, 0x0)
r2 = accept$unix(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100)=0x6e)
r3 = syz_open_dev$dmmidi(&(0x7f00000018c0), 0x0, 0x450000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}]}, 0x50}}, 0x0)
r5 = getpgrp(0x0)
statx(0xffffffffffffffff, &(0x7f0000001900)='\x00', 0x400, 0x4, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
statx(0xffffffffffffff9c, &(0x7f000001ba40)='./file0\x00', 0x400, 0x8, &(0x7f000001ba80)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f000001bb80)={<r8=>0x0}, &(0x7f000001bbc0)=0xc)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f000001bc00)={0xef, 0xe1, {0xffffffffffffffff}, {<r9=>0xee01}, 0x86, 0x7})
getgroups(0x3, &(0x7f000001bc40)=[0xffffffffffffffff, 0xee00, <r10=>0xffffffffffffffff])
r11 = openat$snapshot(0xffffffffffffff9c, &(0x7f000001bc80), 0x1, 0x0)
sendmmsg$unix(r2, &(0x7f000001be00)=[{{&(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001800)=[{&(0x7f00000002c0)="fd77cad2eabad9776d83a2996e1fa296d75c6838aac8e6ac6d41003ee62c5b548d17d6b056bd91d7db084e3bf7765e756606ec7f34b2caafc7368da419e0b0a71d97fc3a59eff80aee2c2ff3d28a7d9d1eb507ec1f94f2b606528ea78101a393036f81331906489e87c7c8f298ef0cafe612b2cee1eff9edcad9db24a83f1888aee0f06500fd1560cb6b3d6eca8355c4b783e0077e87dcce4d3e388e1f2128c1ed6bc93acb77686c3b23cba653b8b8d9205323bda0a7037924e1cc7d47a651597cf087b9c19587f074da5dbd8dd453538e8e9920e575a863e0a73dc12d49a124f262e91eaa082fc1af35835719c68b9a4bcb6700e44008", 0xf7}, {&(0x7f00000003c0)="068543b425e80a4fd105819d487c296b25bb97c33716c689a66ce8db6b5a9ba55c23da419358e5ba7e63c4bc6ea6cfcfae54fd4af4db3273f275974449317e7f6e039a88aeabc4435e4a52f8aea7c2c77d83bea974781e6ad1360a378bec0fedce7f15cb4503a66647f41e7332d1ed4489bd8e1a087e949c2b5d1ab2b688028e58a88b2340bce4c24044c4648aec8b67ba780fb6278d30abd3a26193bfa451e72384d5fb0f4736338f553ebbe51f9874ef4d85df0c10c999a369fda3d3f38c35127abbb83afb1fbc9476f3de1cac0691c940823a625d", 0xd6}, {&(0x7f00000004c0)="0cb84c1b575a67503b75b6e27effd61535f2dd96ffdbc183b89a57cccc11c98ff1c4373f6357fbdc6e6ec23e301837a7fe652297414bed7d7cf37ab84c48825b5b8f8552089320f43b0c5612264ea35ad661c36fe179d29e11b6067d1e6c524c003d5e20c39147315bd981244778adeb7eca5a9a8a4ce76779ee1d619e4d2495645f18b5529ba00bea666ba172efe83cbcf0e3aff86fb1863d9eb8621d600e9ef1bd0520a013ed8370ea", 0xaa}, {&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000000180)="04ac9620780ae7276929", 0xa}, {0xffffffffffffffff}, {&(0x7f0000001600)="87c4103dd13dc3741d569547486fc05ee65b7781984dc65a33991b3b701dcb46a49d830b6afb6bcec0e6b3df6b34a6eb04b1c51a41879ac5f0f46706fad828fdecd0b2ea4b781dec2961e4ef3ae162f1020bdfe48fe3d420edb16f77f6891708841812706c3889091dedb8d4c89a82ef00b1ac67d2db6748f398476126c2f8893345b2f1e50f91d8b0329b9f7e5b68c62d5328e322c03603ab8e1003fe5a8bd1b3d97617c3ee9ad74833545f4246f80b622d506caa4a746fa9fe66e184cf6d3723a2843f56c9d1da1b7bc2c3d897cd262852c9c16088fb3285c535a8aec1636f414a9841", 0xe4}, {&(0x7f000001aa40)="27afc93bf2f83bf5e8941c551f15cc56bd8ecd5f4fd6423ea4687153cbaa61852f851d6dfc1d2a4a596a72aaaabde4d1ac6d74ef902004b9f31206c0b8df42dfdcfaab0391e90573f401242e61455a001de790dc51d944a41800c1aa0fe09230f2968561e89edc7262b1607d75d6f1732a25bae2027b7dd5107544dd3b6c96fbc4b6942c5646979b061b82db7688a4ecf99e28a07e9a861cc665efd87ac102d7718aa23432ddb026075881de98a48b58e3798770f68950fb2f7785c2f7efc5db47ee5f65e788dbc93394939baa51e78bc77df69b922cdc6c53a0bddd806cac3f5122c5949e7b9d71d7522495ec82c8b1a36db05811a189425ed937875d056bfc1077596cbd7b48d6142c382f0c7eaa2f25aa6c7c2f931dd3a04e027402f802f10c8d65e6a4a1a9efae2cd8b7d7ef094fd21c45da3454395f9134274582fe7ff86f0a337d9556e478e230b46fff59394877ce9a10a5500faebabd1f9498c4acb24ed9f8a018a48554af1dad58ca87eb7a575cbf4e92f87bc0fa27c29e4fb29a659080bb012b723bdbbb6cecc5768932f12e5ed1d09c7311dd3fa49f8d4572f373addf52080bb3417120782a0a1a025bc7c766f2a92f0b05ae13d80a6b2a11c17882455d76aad7eb42fe3a566a52dbc3e5c8f85ed65b71a0e34e4ba60308e2dbf1a9b535cb632cafcc6d054d25b05cd3f532ea6a27ba607327a41d05167bfc14a061d60850d76d0a506fb2011ba91e3b6ea89e885c6a17071989eea24ff2fa19827759feccbf768c2936cd9f6e1e4d6c729a0af4476a740fe01251b0170da1c0e46a4ddf08b3cb215f87e4fde8a50bfab27d3540dc2b57b954ba2dc8f5d5f48560f8410a8d09e046f842d6123fa9651b6a401c3848775ae229bd207178022c0d1aff75c9bc6bbd42d42b6dd26c5b338446d3056f4c222f2c2fedc12ca5a4b8690eebda6263b9a1e606df64d200d2a073115b3ebba3e250575a72e22339eaac324e5d4cc8db470c7e685f745680421b84ec9e3c275ff228acfcb7421891d6e8d6889c5d24b41df20ca6fed0271d8caccfd590d255b465ea4975315dddc8e6b2334480d51f9d046b877b7f26fb9dba0755f719e846ffd9276839c7f575f90a6ff9825c07036fe545e13aad1c8a4da1da86e0ff6ef591f89ce3e0caf4aa20dacb8cbe95609e92c208e6e73237e79d9ad55264521ba6f0aa3d0d8039bf6b5bee11080a29d6a1fd58742dce80f25cd4748023ab0a64be3a2127b3e647444b1538ac5627f7a602ddea204a915695d749670c7bdf374550fe10a51cd40852b2546bdb2bf451078205a206a80e5fa2302cffde00e0dd86eb07b4c950a0c4fff86bc57f52c1ea53ded34767a406771f3aeec1d6278aab1d9b5bd3c3cc78902212a533dc80146d593e52d22d036868a4078e1b09d905e66e2dc1282fd04c4b9d5d6c9080207db4e2da6167a65c6aed5c67f8ca427afaab727e4ea80a199a548a9125ae7c7fd73d775ff0d6c46966741d5fc7d5ce55c17abade5ee085292f865420922f7dcb2f95353959bea76850e517195a7cadc1bfa8ff8759f2362f8b04384e629aae76b43a5b6b7d5db48d7d323ada15792980b0a9b2330b155f8eb7bd23424fce8d039b0409307db0ae50eab4e6b36a62a41ef132ebed6d52f9015de207ade5ea27f0e62d164e03c93204a4b8063b5860658ea92991e3ae5c5c5b623c28970620843ff921e814f5e7fac19277d73ea2d0e0e992dd239c562e29916227e8983d1acff027ff75d907181697f8e6628f6ed9b7235319dda66082fe5df1299549ac468418c5e049d2e6630f35afb01e9e2f0c03917bbb7085bcb1bf00cf4c109652a4fc91d847734dc65a2773790eaa0ad34133681e1465d7511983c021a98caf36afac57f21e9f6ffc51ec2c28ffad72ac3fff525b01ebea9f43071d9aaec3dfff0daff24194c89d8cc47ab2afb100d50869efa6909d805a45a5c6ee5572a734e58573acdcb8ad221951f6993bd44770e329546e030afa9a291a948e1ade5f068d35ef63b351d07eaf7538e13494c9a447bb3c8c4201d306f841d7b23d64246229696870b780ca8f3b238a2adc5499fc0c8744304a5ddf22351c9be108d7c2ec764e2707e138e001867678bbe7f7ff31ff4a95af286c4f73eaac35eba04a98b7fa4905ac745a9ce249672a0dbd935ac1498b4765f64ccb5086afb3b0f9aea88963af5ec57bce9a44cd2456c678ef87fe5828cc863cf5e2ce2189279f039b21503db0c147d67752b7a97f1ceb28c5b11acb3f88b23e604b61982b213978c65c19022d5f7c073edc4c5246a0710bf615bbaa4288a99eb413174697de14063942268484e9c6e307fd7130090f2d6373d16e0ab4db342697970b029f7b261f90f4d9a060f5840438435358d182e47432f7ba823bf6ae0cb3d92a70e6a4c3e66ce22c3ef631f1c69d6d5164adcf55e4783e3adb53e9191a6ab4d6a59bb141e7ff96e8cb9a8ae034538e5dd3e36d8696ee8a2c4f1b6c1839cd254d538077d59deea5e41c273a7bdc3ebb533d1cb0daa3a786f01760d7aed5063e4b3ea5c28d49e52b61e2ceca4086de60c03881714628d0ed4a594399f1a39f6bf073f7b5b8ed6187c5182719f386b1cfe9e738212085662a8f29f5d31561b31eb33aa7dd0e15be0f5e614f584e92873332c4a860d0e996648c2605beda3877c498fd11476fbe1c8d6760a7d460f11201d9726d0b5823b0441668b8ed07da48de4f8ab4ca30d6ef22081db60ccd53c607935cefcca325cd02a118a0b35186ef23e39760ee1c933812f7c8312e3843d45066efeb985375e741eb962e9dc18e47f7b2f72a9c24c78cad24bf4fffc6d2c78cce279c35ed152e707a1220088eea2eeeb87767728864f5f418623e7f1f6a0a4bd5c28c61ab6a6793ed9f58b37d7db045b39414ceee3ec809af5a80d18f2f9f957a6fc8cf9ee2e2e238e927fe149e660196ddd463791debbd6499804a7a2983a0f266ecb29db0ec93860faed74160d624b9961c23c26a1e1d25d82ea14870fe95671b65b49aa2708058e9a8b44e9a5dd8b9e278585a7e911fc73c85cb3aa9d2bc91bc54d7bf5f461be5902d2e1056d4e02263990d0ff3440081c729ffc37f2d0087cfa7a0f3f5870aee47a6684a2e9f289fbe7d28446982e604ce771dba90633c752937d1fa13a8f4bc3a50dbcdec56eb96fecd009e8db80ec66f80f481c98cb928bb0658ff9799fab7d99a83265d69d38f6da2c2557d0a0811db07a50dc62e824789fa4ce7bb5cb0775459ed8bd24334bcbb675048174d93d2e4d14a7a1bea02a961636ab3677d02e5024399ebfae3753a15200ab79e79caaed2730832672dc3d57a4b5af968a7180d80059984484fd1f473dec14f8c55d0afae4a29b47f1b2961d646f6c66af00f3585b0dd774eaf4ad40cdef2fd80ced26326b3e93b2dfa1e103a54be802b6cdc790ad5766ed914c22f89720cc520e60b340daa20b4c226bec85b85b992751ed32a779a3f61769de13b2facb5b6b105e56c3da0f5fad261d1ed471f4e12dacd0e0d0a8d51553254fb3a8670a79016a11054630eb1ccdfee305d030926234fd1ce767e5d87cfcaa7db43dd86362eefbaa1186de568d7ec65fd307f3a46e7227fac21b28f592cfce91119a77817df1fcd5478a88392306023aa23a754bac52f59392a008193d8c1139cf9d4fd88313f15a1c135020a6cb386b29dd64b0d1fe50ff3ddcedb01f36156e53b3decd3bfef5dc07a4bff25038f93249380d5892cb72043700761c7a665c5cfbe76a435348e74a069b557400c16e329b99ddb7cd4e06206bb8b25c788a12f91fce59dcedb6ce8d075fa5550a0f27a07291b3b0fbcb1b46d1be2e4eb818ae6e054e47e4824b19343ac5818e2af600c05fca0e3475827315dcf15f2ef8f58aa1ab465a079cca4fa944a92d5c7fa27efe6b88e5e3006d63186a182911f08a0bf1194f710191a685053959f7e2007fdca2eaaeb7d792cb6faa8e9bfd62f96761404bbaea87eaf6a09847b98cf4ae98f385e3b5179722a8813898ec983507e874bb9a8f1a7f2477d3d20a9aaf5025c657b3b58002cfd20cb39cc7a5cb82868d58615204098a08a29ee21cfe574e8c822e39d6f3589d38e1c9fd414d4398af847c44fe0fad01da17a4bf2274152dce391676f3121e0589db2915aa3ad4f433af08c1e3fd9a7931b4dab10d82f93582fb565040b474097368384f5507b93da98efc36e7a07dd8b9c1282631b650c986b9db448b69adb45b215c0c8c95d3690305eaae011da93e1c726f9948482fe2e1d8a77bb55082421a43880739f200943a10fea1e6f2b9a2351ece265944ba346e12e5e876c19b1a38e383c7aca30dee097a5de065d57a1342a319c66e689b4d002f748024cdbfcba597d78168e08ea257c3e8b73e5acf80989cc9868ed9c7a502f6cb8a9bcb218cb42194cb39f0632c4cc0340bf19de365becdb6c523a5fc48f14cdd3b6955a8780c20ad50fd35e3ea0e4b234fd44e84c69f35c70187d97666aea1bf1e8f734b5954cfbb375f3a8d52a9df62e61432ea91297b253538fa5b8bbf6c1a22af48ae6c6782b4188dfb43187b9859ba041f81b00869443fe414fa096692c1456ef4f910a42bc56f36b7d2db3fd306d72bf5ad010d326b62a7e219e43a61488637ded5768c1292cb520a94a87cf4c1b73a1f3d6008d8d09f66df470aa351c16143aaa3b57d4055afd48783624d1c80eb26cea61d654227ce9d3e3138e40a3aadba7419ef95b5c8f6b7cd9794429ad12fc67ec54c95e5312c3a963d0e54d6b24430143dcffe0ba5239ea7fbc82f0ef7d4ca1cdcb3233926ce2521e2739c29732ebaa97576311e7845611108f5b0629d28f653dd936eacb8e50a7a3a8282f1d116f4ebe5b76f106e6fee101e8e5f136d499d99e27fd13891b5c1fe8ab318f18318761702ccaddd17eceaf48cd20917dd7c26b8d2a71f0674c106d539cfaa99d230bd5cbcbaa1c266958d37ada98dd2d7cf551bf6d32848dae7d35bd591044659f9e939fb26dc265815ad8ce64d9343332c73d258073b66c3a05e4b3017a3c355127bae18b0d831183597200ce0999f88a911b1735d76a576875635411a2c28510c44d472f14eb15eb4647097344eceb83bcb53b23651f54f013ee7b0796cfa06868058b0ef902dfc6b1e4b3a771f4378a936f9b662decc220e7858dc59db14f77e96652705a6a700c361231febedfa19e90424ccb8295ae4e6ae0c6e192534e2b1e6a61f732b463e21d5892c82566ba90f61b47c7e4428a6fd39b5c511752aae0914cf16a69165f3cba6251ad7734d0d84b6598cb19a54923b92e74d8e2ed64346c1df20eed7cc5761f6fabf380acdd9b67f32135bf068c3fe6f03ae5c5b3ce1573290755b92d3702a2260ae8f70672c6e3cd3db14a1f15b810ff908a5b9ad65e275224ecf99ef7f41ab9163bbb00d8d5921fd5e111a1c710c5a912973835ae4f7ae1ac217893c04ad3f290070fd32ff7cf1f1e57033aa1406a67e54d1a58744e01a90da3e48f4c0911bd3802d7e2eb13095bdc8c9b870bd634a5545ddd8d0b4cc43eaaf33b3246c06860bcb29665bf02e4d4c828c57ce759e01a26bf3f628a7c45d1e04526de2419ca44590a0b3f654b930bbf2a5586c6278b81297715918afe913af746a89f95c45a5357df4207d0f7815e17249dfc83418fd88a8b6f0f66bb82e2bdfcdd0029a034cabed0de0cbff399a9f629f9b80a161ec317d3239ebe4de9264f9827c6ec8b21e8d81fd6fc8868ef12510468434994228ad13b781038", 0x1000}, {&(0x7f0000001700)="f9088f1b9ee46758cdb01cd87199cab47d95dc60ea08616d5510e45923e3ab5eeb80fd380b1fe34083ab7566b1a3a1394edfa505423d7f904ca04c7573cd8b6fd28b1a68bcfc1938ccbe814e8b3c8b262a805a", 0x53}, {&(0x7f0000001780)="eec4bfb23f0c3312ceebe6e90fac0b654835745df7d6189c67dc74815d929bbb23bd725e751c7684502c03dc14db672ea0ea8d6aac2ae6463280f545657bcf3807454cefd9aba7ce511f19b92d354d770b", 0x51}], 0xa, &(0x7f000001bcc0)=[@rights={{0x18, 0x1, 0x1, [r1, r0]}}, @rights={{0x28, 0x1, 0x1, [r1, r0, r0, r0, r3, r0]}}, @rights={{0x24, 0x1, 0x1, [r1, r1, r4, r0, r0]}}, @rights={{0x28, 0x1, 0x1, [r1, r1, r1, r0, r1, r1]}}, @rights={{0x1c, 0x1, 0x1, [r0, r1, r0]}}, @cred={{0x1c, 0x1, 0x2, {r5, r6, r7}}}, @cred={{0x1c, 0x1, 0x2, {r8, r9, r10}}}, @rights={{0x20, 0x1, 0x1, [r0, r11, r0, r1]}}], 0x110, 0xc803}}], 0x1, 0x40000)
write$P9_RSTATu(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="300200007d00000005ef000000000000000000000000000000000000000000000000000000000000000005000000000000001b00046e6f6465767b65766f6f7e0539c60005000037d93a8b920000003800704a86cec602007dfa673effeb09b5351f5bde054000000000187b82", @ANYRES32=0x0], 0x230)
timer_delete(0x0)
socket(0x1d, 0x2, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x119)
close(0x3)

656.348736ms ago: executing program 2 (id=1600):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000))
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
pread64(0xffffffffffffffff, &(0x7f0000001740)=""/4121, 0x1019, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[], 0x4c}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="90000000", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000000c000600000000c0000000000c0002000000000000000000040007"], 0x90}}, 0x64000008)
r3 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, 0x0)
ioctl$IOMMU_IOAS_COPY(r4, 0x3b83, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r6)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x5c, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x48, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "e35c413ba20e85de3d7b4cd07ec3ee89000000007987cca4198999b2"}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x24000014)
sendmsg$TIPC_NL_LINK_GET(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="80000000", @ANYRES16=r7, @ANYBLOB="10002bbd7000ffdbdf25080000004400038008000200040000000800020000020000080001000600000008000300f8e600000800010005000000c32a8ee176f3b3617830080001000600000008000300827e0000080001000200000014000980080002000500000008000200080000001400038008000300a6a11d0a0800010000000100"], 0x80}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

654.754266ms ago: executing program 0 (id=1601):
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES16, @ANYBLOB="050000000000000000", @ANYBLOB="3d000e0080000000ffffffffffff080211000000ffffffffffff0000feffffffffffffff070001000406f0027f0006a7000c006400000008000d000000000073f68ac399765b7ab289a21d254ebf1c30920188d7e0527bff31151da7c57628327841e9134f4b1b378bcbf5a202"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a01010044140503", @ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f10", 0x8, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
set_mempolicy(0x0, 0xfffffffffffffffe, 0x400)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x0, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000500)="b919020000b802000000ba000000000f30440f013ab9c3090000b86c3ea0f5babd9e1e1a0f3064400f01c866b8cf000f00d8c40165dc1500100000c744240038000000c74424020001c0feff2c2466440f6132c46159f520f2440fd6f5", 0x5d}], 0x1, 0x94fd78195c8e082d, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
keyctl$get_persistent(0x16, 0x0, 0x0)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x105042, 0x1d3)
r5 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, &(0x7f0000000140)=0x2000)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
r6 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r6, 0xc0405610, &(0x7f0000000740)={0xe})
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000100)={0x2f5, 0x1, 0xc7a, 0x2, 0x3}, 0x14)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 2 (id=1602):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x3)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1a, &(0x7f0000000580)="324b23a7f5e027", 0x7)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r5, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r6, 0x4008af60, &(0x7f0000000040)={@my=0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000180)={0x3000, 0x0, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000380)={0x2, 0x34000, 0x1})
r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000040)={0x0, 0x12000, 0x1})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
mknodat$loop(r1, &(0x7f0000000040)='./file0\x00', 0x200, 0x0)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r9, 0x0)
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0x0, 0x7, 0x9, 0x200000001, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x100000000, 0x5, 0x7, 0x2], 0xffff3000, 0x8340})
ioctl$KVM_RUN(r9, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  374.275752][   T30] audit: type=1326 audit(1754689612.731:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  374.312046][   T30] audit: type=1326 audit(1754689612.731:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  374.462034][ T8394] tipc: Resetting bearer <eth:vlan0>
[  374.583867][   T30] audit: type=1326 audit(1754689612.761:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  374.844393][   T30] audit: type=1326 audit(1754689612.761:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  374.852144][ T8402] FAULT_INJECTION: forcing a failure.
[  374.852144][ T8402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.870017][   T30] audit: type=1326 audit(1754689612.841:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  375.490525][   T30] audit: type=1326 audit(1754689612.841:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  375.516624][   T30] audit: type=1326 audit(1754689612.861:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  375.664877][ T8402] CPU: 0 UID: 0 PID: 8402 Comm: syz.4.668 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  375.664894][ T8402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  375.664901][ T8402] Call Trace:
[  375.664905][ T8402]  <TASK>
[  375.664910][ T8402]  dump_stack_lvl+0x189/0x250
[  375.664926][ T8402]  ? __pfx____ratelimit+0x10/0x10
[  375.664938][ T8402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.664949][ T8402]  ? __pfx__printk+0x10/0x10
[  375.664964][ T8402]  ? get_sigframe+0x596/0x7d0
[  375.664983][ T8402]  should_fail_ex+0x414/0x560
[  375.664996][ T8402]  _copy_to_user+0x31/0xb0
[  375.665012][ T8402]  copy_siginfo_to_user+0x22/0xc0
[  375.665025][ T8402]  x64_setup_rt_frame+0x777/0xd40
[  375.665051][ T8402]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  375.665072][ T8402]  arch_do_signal_or_restart+0x3dc/0x750
[  375.665086][ T8402]  ? __fget_files+0x2a/0x420
[  375.665097][ T8402]  ? __fget_files+0x3a0/0x420
[  375.665110][ T8402]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  375.665133][ T8402]  ? exit_to_user_mode_loop+0x40/0x110
[  375.665144][ T8402]  exit_to_user_mode_loop+0x75/0x110
[  375.665161][ T8402]  do_syscall_64+0x2bd/0x3b0
[  375.665171][ T8402]  ? lockdep_hardirqs_on+0x9c/0x150
[  375.665189][ T8402]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.665199][ T8402]  ? clear_bhb_loop+0x60/0xb0
[  375.665211][ T8402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.665221][ T8402] RIP: 0033:0x7f552498d5fa
[  375.665231][ T8402] Code: 48 83 ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 <0f> 05 48 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02
[  375.665239][ T8402] RSP: 002b:00007f5525717fb0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  375.665250][ T8402] RAX: 0000000000000000 RBX: 0000200000002a80 RCX: 00007f552498d5fc
[  375.665257][ T8402] RDX: 0000000000002000 RSI: 0000200000002a80 RDI: 0000000000000007
[  375.665263][ T8402] RBP: 00007f5525718090 R08: 0000000000000000 R09: 0000000000000000
[  375.665269][ T8402] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000007
[  375.665275][ T8402] R13: 0000200000005780 R14: 00007f5524bb5fa0 R15: 00007ffe73f1de88
[  375.665290][ T8402]  </TASK>
[  375.886142][   T30] audit: type=1326 audit(1754689612.861:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8391 comm="syz.4.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  375.976309][ T8409] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  375.993671][ T8411] netlink: 24 bytes leftover after parsing attributes in process `syz.1.671'.
[  376.004556][ T8411] FAULT_INJECTION: forcing a failure.
[  376.004556][ T8411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  376.017871][ T8411] CPU: 0 UID: 0 PID: 8411 Comm: syz.1.671 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  376.017903][ T8411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  376.017915][ T8411] Call Trace:
[  376.017922][ T8411]  <TASK>
[  376.017929][ T8411]  dump_stack_lvl+0x189/0x250
[  376.017955][ T8411]  ? __pfx____ratelimit+0x10/0x10
[  376.017976][ T8411]  ? __pfx_dump_stack_lvl+0x10/0x10
[  376.017997][ T8411]  ? __pfx__printk+0x10/0x10
[  376.018034][ T8411]  should_fail_ex+0x414/0x560
[  376.018059][ T8411]  _copy_to_user+0x31/0xb0
[  376.018087][ T8411]  simple_read_from_buffer+0xe1/0x170
[  376.018113][ T8411]  proc_fail_nth_read+0x1df/0x250
[  376.018139][ T8411]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  376.018165][ T8411]  ? rw_verify_area+0x258/0x650
[  376.018192][ T8411]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  376.018214][ T8411]  vfs_read+0x200/0x980
[  376.018244][ T8411]  ? __pfx___mutex_lock+0x10/0x10
[  376.018264][ T8411]  ? __pfx_vfs_read+0x10/0x10
[  376.018290][ T8411]  ? __fget_files+0x2a/0x420
[  376.018313][ T8411]  ? __fget_files+0x3a0/0x420
[  376.018330][ T8411]  ? __fget_files+0x2a/0x420
[  376.018357][ T8411]  ksys_read+0x145/0x250
[  376.018376][ T8411]  ? __pfx_ksys_read+0x10/0x10
[  376.018390][ T8411]  ? rcu_is_watching+0x15/0xb0
[  376.018416][ T8411]  ? do_syscall_64+0xbe/0x3b0
[  376.018440][ T8411]  do_syscall_64+0xfa/0x3b0
[  376.018460][ T8411]  ? lockdep_hardirqs_on+0x9c/0x150
[  376.018480][ T8411]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.018498][ T8411]  ? clear_bhb_loop+0x60/0xb0
[  376.018519][ T8411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.018536][ T8411] RIP: 0033:0x7face8b8d5fc
[  376.018552][ T8411] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  376.018565][ T8411] RSP: 002b:00007face9a81030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  376.018584][ T8411] RAX: ffffffffffffffda RBX: 00007face8db5fa0 RCX: 00007face8b8d5fc
[  376.018596][ T8411] RDX: 000000000000000f RSI: 00007face9a810a0 RDI: 0000000000000006
[  376.018606][ T8411] RBP: 00007face9a81090 R08: 0000000000000000 R09: 0000000000000000
[  376.018617][ T8411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.018628][ T8411] R13: 00007face8db6038 R14: 00007face8db5fa0 R15: 00007ffff0315578
[  376.018661][ T8411]  </TASK>
[  376.304916][ T8413] smc: net device bond0 applied user defined pnetid SYZ2
[  376.750084][ T8416] netlink: 8 bytes leftover after parsing attributes in process `syz.0.674'.
[  377.866052][ T8427] fuse: Bad value for 'user_id'
[  377.881321][ T8427] fuse: Bad value for 'user_id'
[  378.060091][ T8432] 9pnet_fd: p9_fd_create_tcp (8432): problem connecting socket to 127.0.0.1
[  378.625626][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  378.659716][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  378.786919][ T8441] netlink: 16 bytes leftover after parsing attributes in process `syz.2.680'.
[  378.956897][ T8441] lo speed is unknown, defaulting to 1000
[  379.787712][ T8447] netlink: 'syz.2.682': attribute type 1 has an invalid length.
[  380.626753][ T8455] bond4: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  380.671690][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  380.671707][   T30] audit: type=1326 audit(1754689619.271:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  380.804776][   T30] audit: type=1326 audit(1754689619.271:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  380.883367][   T30] audit: type=1326 audit(1754689619.381:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  380.935224][   T30] audit: type=1326 audit(1754689619.381:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  380.973281][   T30] audit: type=1326 audit(1754689619.381:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  380.975870][ T8457] veth3: entered promiscuous mode
[  380.995218][   T30] audit: type=1326 audit(1754689619.381:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8458 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  381.032404][ T8457] bond4: (slave veth3): Enslaving as a backup interface with a down link
[  381.895178][ T8475] veth0_macvtap: left promiscuous mode
[  381.948118][ T8478] fuse: Bad value for 'user_id'
[  381.953669][ T8475] macvtap0: entered allmulticast mode
[  381.955653][ T8478] fuse: Bad value for 'user_id'
[  382.344434][ T8485] netlink: 8 bytes leftover after parsing attributes in process `syz.1.691'.
[  382.635438][ T8492] 9pnet_fd: p9_fd_create_tcp (8492): problem connecting socket to 127.0.0.1
[  386.520936][ T8527] tipc: Resetting bearer <eth:vlan0>
[  386.742482][ T8538] 9pnet_fd: p9_fd_create_tcp (8538): problem connecting socket to 127.0.0.1
[  386.833407][ T8540] netlink: 12 bytes leftover after parsing attributes in process `syz.3.709'.
[  388.161335][ T5900] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  388.371304][ T5900] usb 3-1: Using ep0 maxpacket: 16
[  388.375985][ T8552] netlink: 8 bytes leftover after parsing attributes in process `syz.1.711'.
[  388.398608][ T8552] netlink: 8 bytes leftover after parsing attributes in process `syz.1.711'.
[  388.400512][ T5900] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  389.039798][ T5900] usb 3-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  389.090304][ T5900] usb 3-1: config 0 interface 0 has no altsetting 0
[  389.107524][ T5900] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  389.132163][ T5900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.169120][ T5900] usb 3-1: config 0 descriptor??
[  389.302533][ T5900] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  390.316698][ T8578] bridge_slave_0: left allmulticast mode
[  390.351441][ T8578] bridge_slave_0: left promiscuous mode
[  390.402813][ T8578] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.795702][   T10] usb 3-1: USB disconnect, device number 7
[  390.804657][ T8578] bridge_slave_1: left allmulticast mode
[  390.821567][ T8582] 9pnet_fd: p9_fd_create_tcp (8582): problem connecting socket to 127.0.0.1
[  390.857124][ T8578] bridge_slave_1: left promiscuous mode
[  390.945086][ T8578] bridge0: port 2(bridge_slave_1) entered disabled state
[  391.142746][ T8578] bond0: (slave bond_slave_0): Releasing backup interface
[  391.341989][ T8578] bond0: (slave bond_slave_1): Releasing backup interface
[  391.378534][ T8578] team0: Port device team_slave_0 removed
[  391.532372][ T8578] team0: Port device team_slave_1 removed
[  391.554902][ T8578] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  391.568408][ T8578] batman_adv: batadv0: Removing interface: batadv_slave_0
[  391.590923][ T8578] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  391.608893][ T8578] batman_adv: batadv0: Removing interface: batadv_slave_1
[  391.634562][ T8578] tipc: Resetting bearer <eth:vlan0>
[  392.879860][ T8605] infiniband syz!: set active
[  392.884798][ T8605] infiniband syz!: added team_slave_0
[  392.891820][ T8605] syz!: rxe_create_cq: returned err = -12
[  392.897795][ T8605] infiniband syz!: Couldn't create ib_mad CQ
[  392.985972][ T8605] infiniband syz!: Couldn't open port 1
[  393.614361][ T8605] RDS/IB: syz!: added
[  393.618965][ T8605] smc: adding ib device syz! with port count 1
[  393.625500][ T8605] smc:    ib device syz! port 1 has pnetid 
[  395.426314][ T8619] netlink: 'syz.4.732': attribute type 6 has an invalid length.
[  396.184711][ T8634] netlink: 8 bytes leftover after parsing attributes in process `syz.1.736'.
[  396.811425][ T5899] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  397.373658][ T5899] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  397.450477][ T5899] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  397.479534][ T5899] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  397.515875][ T5899] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.556188][ T8638] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  397.647102][ T5899] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  397.856229][  T977] usb 2-1: USB disconnect, device number 7
[  399.316862][ T8667] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  399.492106][ T8662] tipc: Resetting bearer <eth:vlan0>
[  399.500730][ T8662] veth3: left promiscuous mode
[  400.054960][ T8677] netlink: 8 bytes leftover after parsing attributes in process `syz.3.749'.
[  403.679612][ T8693] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  409.905225][ T8748] process 'syz.2.767' launched '/dev/fd/5/./file0' with NULL argv: empty string added
[  410.018421][ T8755] netlink: 'syz.0.769': attribute type 3 has an invalid length.
[  410.251285][ T8759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.768'.
[  410.851644][ T8759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.768'.
[  411.260817][ T8768] overlayfs: failed to resolve './file0': -2
[  411.347454][ T8771] input: syz1 as /devices/virtual/input/input5
[  413.102926][ T8789] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  413.185376][   T30] audit: type=1326 audit(1754689651.781:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.206689][    C0] vkms_vblank_simulate: vblank timer overrun
[  413.574196][   T30] audit: type=1326 audit(1754689651.781:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.606106][   T30] audit: type=1326 audit(1754689651.781:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.630309][   T30] audit: type=1326 audit(1754689651.791:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.700937][   T30] audit: type=1326 audit(1754689651.791:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.722387][    C0] vkms_vblank_simulate: vblank timer overrun
[  413.738589][   T30] audit: type=1326 audit(1754689651.791:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8790 comm="syz.1.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  413.761562][   T30] audit: type=1326 audit(1754689651.831:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8788 comm="syz.0.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3782d8ebe9 code=0x7ffc0000
[  413.788835][   T30] audit: type=1326 audit(1754689651.831:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8788 comm="syz.0.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3782d8ebe9 code=0x7ffc0000
[  413.825436][   T30] audit: type=1326 audit(1754689651.831:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8788 comm="syz.0.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3782d8ebe9 code=0x7ffc0000
[  413.848510][   T30] audit: type=1326 audit(1754689651.831:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8788 comm="syz.0.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3782d8ebe9 code=0x7ffc0000
[  416.488250][ T8838] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  417.431427][ T8850] netlink: 8 bytes leftover after parsing attributes in process `syz.2.797'.
[  417.443371][ T8850] netlink: 8 bytes leftover after parsing attributes in process `syz.2.797'.
[  418.005652][ T8858] netlink: 8 bytes leftover after parsing attributes in process `syz.3.799'.
[  418.294042][ T8856] loop9: detected capacity change from 0 to 8
[  418.358981][ T8856] Dev loop9: unable to read RDB block 8
[  418.394646][ T8856]  loop9: unable to read partition table
[  418.408887][ T8856] loop9: partition table beyond EOD, truncated
[  418.415399][ T8856] loop_reread_partitions: partition scan of loop9 (�被x�^>�� �) failed (rc=-5)
[  418.615177][ T8861] mmap: syz.3.801 (8861): VmData 37466112 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  418.916717][ T8853] IPv6: sit1: Disabled Multicast RS
[  419.011677][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  419.011695][   T30] audit: type=1326 audit(1754689657.611:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8852 comm="syz.4.798" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x0
[  419.038636][    C0] vkms_vblank_simulate: vblank timer overrun
[  420.164801][ T8890] block device autoloading is deprecated and will be removed.
[  420.254810][ T8886] tipc: Resetting bearer <eth:vlan0>
[  420.281576][ T5899] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  420.300924][ T5899] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  421.921361][  T977] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  421.962957][ T8919] netlink: 8 bytes leftover after parsing attributes in process `syz.0.816'.
[  421.972064][ T8919] netlink: 8 bytes leftover after parsing attributes in process `syz.0.816'.
[  422.114034][  T977] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  422.125107][  T977] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  422.228079][  T977] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  422.367157][  T977] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.378089][  T977] usb 4-1: Product: syz
[  422.383619][  T977] usb 4-1: Manufacturer: syz
[  422.388242][  T977] usb 4-1: SerialNumber: syz
[  422.395083][  T977] usb 4-1: config 0 descriptor??
[  422.400966][ T8909] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  422.412462][ T8909] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  422.635735][ T8909] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  422.652294][ T8909] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  422.839294][   T10] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  423.256408][   T10] usb 5-1: config 0 has no interfaces?
[  423.280990][  T977] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  423.324561][   T10] usb 5-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  423.486141][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.501415][   T10] usb 5-1: Product: syz
[  423.505992][   T10] usb 5-1: Manufacturer: syz
[  423.510754][   T10] usb 5-1: SerialNumber: syz
[  423.624922][   T10] usb 5-1: config 0 descriptor??
[  423.681618][  T977] dm9601 4-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  423.708340][  T977] usb 4-1: USB disconnect, device number 7
[  424.987923][ T8927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.875982][ T8927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  427.107954][   T10] usb 5-1: USB disconnect, device number 6
[  428.596382][ T8977] bridge4: the hash_elasticity option has been deprecated and is always 16
[  428.619063][ T8977] bridge4: entered allmulticast mode
[  430.282156][ T8993] 9pnet_virtio: no channels available for device 127.0.0.1
[  432.324425][ T9012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.842'.
[  432.335139][ T9012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.842'.
[  432.360340][ T9011] netlink: 92 bytes leftover after parsing attributes in process `syz.0.841'.
[  432.380035][ T9011] netem: unknown loss type 0
[  432.391373][ T9011] netem: change failed
[  433.123291][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.3.844'.
[  433.133086][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.3.844'.
[  435.512628][ T9052] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  436.096722][ T9053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  436.098010][ T9060] netlink: 92 bytes leftover after parsing attributes in process `syz.4.855'.
[  436.131742][ T9060] netem: unknown loss type 0
[  436.180095][ T9060] netem: change failed
[  437.108742][   T30] audit: type=1804 audit(1754689675.231:38): pid=9071 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.857" name="/newroot/165/file0" dev="tmpfs" ino=888 res=1 errno=0
[  437.515596][ T9074] netlink: 8 bytes leftover after parsing attributes in process `syz.4.858'.
[  438.760261][ T9089] netlink: 32 bytes leftover after parsing attributes in process `syz.3.864'.
[  440.104760][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  440.113633][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  443.341393][ T5899] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  443.951499][ T5899] usb 3-1: Using ep0 maxpacket: 32
[  443.977637][ T5899] usb 3-1: unable to read config index 0 descriptor/start: -61
[  443.989670][ T5899] usb 3-1: can't read configurations, error -61
[  444.172507][ T5899] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  444.358190][ T5899] usb 3-1: Using ep0 maxpacket: 32
[  444.370619][ T5899] usb 3-1: unable to read config index 0 descriptor/start: -61
[  444.401337][ T5899] usb 3-1: can't read configurations, error -61
[  444.425850][ T5899] usb usb3-port1: attempt power cycle
[  444.500486][ T9148] tipc: Can't bind to reserved service type 1
[  444.699961][ T9152] 9pnet_virtio: no channels available for device 127.0.0.1
[  444.717780][ T9153] FAULT_INJECTION: forcing a failure.
[  444.717780][ T9153] name failslab, interval 1, probability 0, space 0, times 0
[  445.051519][ T9153] CPU: 0 UID: 0 PID: 9153 Comm: syz.0.879 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  445.051548][ T9153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  445.051560][ T9153] Call Trace:
[  445.051567][ T9153]  <TASK>
[  445.051576][ T9153]  dump_stack_lvl+0x189/0x250
[  445.051605][ T9153]  ? __pfx____ratelimit+0x10/0x10
[  445.051626][ T9153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  445.051657][ T9153]  ? __pfx__printk+0x10/0x10
[  445.051687][ T9153]  ? __pfx___might_resched+0x10/0x10
[  445.051706][ T9153]  ? fs_reclaim_acquire+0x7d/0x100
[  445.051734][ T9153]  should_fail_ex+0x414/0x560
[  445.051759][ T9153]  should_failslab+0xa8/0x100
[  445.051781][ T9153]  __kmalloc_cache_noprof+0x70/0x3d0
[  445.051800][ T9153]  ? alloc_fs_context+0x61/0x7d0
[  445.051826][ T9153]  alloc_fs_context+0x61/0x7d0
[  445.051845][ T9153]  ? do_raw_read_unlock+0x3d/0x80
[  445.051871][ T9153]  ? _raw_read_unlock+0x28/0x50
[  445.051887][ T9153]  ? get_fs_type+0x407/0x480
[  445.051911][ T9153]  do_new_mount+0x10e/0xa40
[  445.051939][ T9153]  __se_sys_mount+0x317/0x410
[  445.051966][ T9153]  ? __pfx___se_sys_mount+0x10/0x10
[  445.051990][ T9153]  ? __x64_sys_mount+0x88/0xc0
[  445.052012][ T9153]  ? __x64_sys_mount+0x20/0xc0
[  445.052036][ T9153]  do_syscall_64+0xfa/0x3b0
[  445.052059][ T9153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.052076][ T9153]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  445.052094][ T9153]  ? clear_bhb_loop+0x60/0xb0
[  445.052117][ T9153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.052135][ T9153] RIP: 0033:0x7f3782d8ebe9
[  445.052152][ T9153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.052169][ T9153] RSP: 002b:00007f3783ca3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  445.052188][ T9153] RAX: ffffffffffffffda RBX: 00007f3782fb6090 RCX: 00007f3782d8ebe9
[  445.052203][ T9153] RDX: 00002000000004c0 RSI: 0000200000000300 RDI: 00002000000002c0
[  445.052216][ T9153] RBP: 00007f3783ca3090 R08: 0000200000000080 R09: 0000000000000000
[  445.052229][ T9153] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[  445.052241][ T9153] R13: 00007f3782fb6128 R14: 00007f3782fb6090 R15: 00007fff7bb7e068
[  445.052272][ T9153]  </TASK>
[  445.284537][ T9154] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  446.011455][ T5899] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  446.175052][   T30] audit: type=1326 audit(1754689684.781:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  446.210940][   T30] audit: type=1326 audit(1754689684.781:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  446.238586][   T30] audit: type=1326 audit(1754689684.781:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  446.261854][ T5899] usb 3-1: device not accepting address 10, error -71
[  446.367097][   T30] audit: type=1326 audit(1754689684.781:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  446.759221][   T30] audit: type=1326 audit(1754689684.781:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  446.796762][   T30] audit: type=1326 audit(1754689684.781:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9165 comm="syz.2.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  447.992757][ T9180] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  448.118838][ T9184] Device name cannot be null; rc = [-22]
[  448.376596][ T9184] overlayfs: overlapping lowerdir path
[  448.957573][ T9197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  451.428006][ T5919] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  451.702338][ T5919] usb 2-1: Using ep0 maxpacket: 32
[  451.747793][ T5919] usb 2-1: unable to read config index 0 descriptor/start: -61
[  451.773775][ T5919] usb 2-1: can't read configurations, error -61
[  451.971458][ T5919] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  452.151331][  T977] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  452.161291][ T5919] usb 2-1: Using ep0 maxpacket: 32
[  452.182054][ T5919] usb 2-1: unable to read config index 0 descriptor/start: -61
[  452.199901][ T5919] usb 2-1: can't read configurations, error -61
[  452.233708][ T5919] usb usb2-port1: attempt power cycle
[  452.323497][  T977] usb 1-1: New USB device found, idVendor=2040, idProduct=9301, bcdDevice=5b.81
[  452.375731][  T977] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.387770][  T977] usb 1-1: config 0 descriptor??
[  452.400497][  T977] dvb-usb: found a 'Hauppauge WinTV-NOVA-T usb2' in warm state.
[  452.409390][  T977] dvb-usb: bulk message failed: -22 (3/0)
[  452.435720][  T977] dvb-usb: will use the device's hardware PID filter (table count: 32).
[  452.446103][  T977] dvbdev: DVB: registering new adapter (Hauppauge WinTV-NOVA-T usb2)
[  452.459223][  T977] usb 1-1: media controller created
[  452.481131][  T977] dvb-usb: bulk message failed: -22 (5/0)
[  452.488111][  T977] dvb-usb: MAC address reading failed.
[  452.505170][  T977] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  452.538511][  T977] dvb-usb: bulk message failed: -22 (6/0)
[  452.546010][  T977] dvb-usb: bulk message failed: -22 (6/0)
[  452.557193][  T977] dvb-usb: no frontend was attached by 'Hauppauge WinTV-NOVA-T usb2'
[  452.569640][  T977] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input6
[  452.595874][  T977] dvb-usb: schedule remote query interval to 100 msecs.
[  452.606570][  T977] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully initialized and connected.
[  452.629255][ T5919] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  452.667549][  T977] usb 1-1: USB disconnect, device number 4
[  452.673987][ T5919] usb 2-1: Using ep0 maxpacket: 32
[  452.692366][ T5919] usb 2-1: unable to read config index 0 descriptor/start: -61
[  452.706956][ T5919] usb 2-1: can't read configurations, error -61
[  452.707249][  T977] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully deinitialized and disconnected.
[  452.891521][ T5919] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  452.926213][ T5919] usb 2-1: Using ep0 maxpacket: 32
[  452.937861][ T5919] usb 2-1: unable to read config index 0 descriptor/start: -61
[  452.950905][ T5919] usb 2-1: can't read configurations, error -61
[  452.958098][ T5919] usb usb2-port1: unable to enumerate USB device
[  453.964037][ T9232] netlink: 8 bytes leftover after parsing attributes in process `syz.1.902'.
[  457.183403][ T9247] netlink: 8 bytes leftover after parsing attributes in process `syz.3.906'.
[  457.490942][ T9227] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  457.628872][ T9239] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  459.653274][ T5892] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  459.841601][ T5892] usb 1-1: Using ep0 maxpacket: 32
[  459.861863][ T9272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.913'.
[  460.155971][ T5892] usb 1-1: unable to read config index 0 descriptor/start: -61
[  460.201907][ T5892] usb 1-1: can't read configurations, error -61
[  461.210083][ T5892] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  462.224896][ T5892] usb 1-1: Using ep0 maxpacket: 32
[  462.433539][ T5892] usb 1-1: device descriptor read/all, error -71
[  462.483026][ T5892] usb usb1-port1: attempt power cycle
[  462.598167][ T9290] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  463.001933][ T9297] overlay: Unknown parameter 'mask'
[  463.526501][ T9304] netlink: 'syz.4.922': attribute type 1 has an invalid length.
[  463.535849][ T9304] netlink: 68 bytes leftover after parsing attributes in process `syz.4.922'.
[  469.461497][    T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  470.250184][    T9] usb 5-1: Using ep0 maxpacket: 32
[  470.260216][    T9] usb 5-1: unable to read config index 0 descriptor/start: -61
[  470.466835][    T9] usb 5-1: can't read configurations, error -61
[  470.644443][ T9349] tipc: Resetting bearer <eth:vlan0>
[  470.751613][ T8928] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  470.877171][    T9] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  470.895800][ T9352] netlink: 8 bytes leftover after parsing attributes in process `syz.3.936'.
[  471.044220][ T8928] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  471.191310][    T9] usb 5-1: Using ep0 maxpacket: 32
[  472.380110][    T9] usb 5-1: device descriptor read/all, error -71
[  472.399937][    T9] usb usb5-port1: attempt power cycle
[  472.428864][   T30] audit: type=1400 audit(1754689711.031:45): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=9365 comm="syz.4.939" netif=wpan0
[  474.004385][ T9388] netlink: 32 bytes leftover after parsing attributes in process `syz.0.946'.
[  474.936325][ T9393] FAULT_INJECTION: forcing a failure.
[  474.936325][ T9393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  474.951306][ T9393] CPU: 0 UID: 0 PID: 9393 Comm: syz.3.948 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  474.951331][ T9393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  474.951342][ T9393] Call Trace:
[  474.951349][ T9393]  <TASK>
[  474.951357][ T9393]  dump_stack_lvl+0x189/0x250
[  474.951383][ T9393]  ? __pfx____ratelimit+0x10/0x10
[  474.951404][ T9393]  ? __pfx_dump_stack_lvl+0x10/0x10
[  474.951422][ T9393]  ? __pfx__printk+0x10/0x10
[  474.951436][ T9393]  ? __might_fault+0xb0/0x130
[  474.951452][ T9393]  should_fail_ex+0x414/0x560
[  474.951466][ T9393]  _copy_from_user+0x2d/0xb0
[  474.951481][ T9393]  ___sys_sendmsg+0x158/0x2a0
[  474.951500][ T9393]  ? __pfx____sys_sendmsg+0x10/0x10
[  474.951535][ T9393]  ? __fget_files+0x2a/0x420
[  474.951546][ T9393]  ? __fget_files+0x3a0/0x420
[  474.951562][ T9393]  __x64_sys_sendmsg+0x19b/0x260
[  474.951579][ T9393]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  474.951608][ T9393]  do_syscall_64+0xfa/0x3b0
[  474.951620][ T9393]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.951629][ T9393]  ? asm_sysvec_call_function_single+0x1a/0x20
[  474.951639][ T9393]  ? clear_bhb_loop+0x60/0xb0
[  474.951651][ T9393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.951661][ T9393] RIP: 0033:0x7f6d4298ebe9
[  474.951671][ T9393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.951680][ T9393] RSP: 002b:00007f6d438bb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  474.951692][ T9393] RAX: ffffffffffffffda RBX: 00007f6d42bb6090 RCX: 00007f6d4298ebe9
[  474.951699][ T9393] RDX: 0000000000000000 RSI: 0000200000000780 RDI: 0000000000000008
[  474.951711][ T9393] RBP: 00007f6d438bb090 R08: 0000000000000000 R09: 0000000000000000
[  474.951717][ T9393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  474.951723][ T9393] R13: 00007f6d42bb6128 R14: 00007f6d42bb6090 R15: 00007ffd374dd678
[  474.951739][ T9393]  </TASK>
[  476.671622][    T9] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  476.841382][    T9] usb 2-1: Using ep0 maxpacket: 32
[  477.502916][    T9] usb 2-1: unable to read config index 0 descriptor/start: -61
[  477.516744][    T9] usb 2-1: can't read configurations, error -61
[  477.831437][    T9] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  478.693688][    T9] usb 2-1: Using ep0 maxpacket: 32
[  478.738373][    T9] usb 2-1: device descriptor read/all, error -71
[  478.755648][    T9] usb usb2-port1: attempt power cycle
[  478.872705][   T10] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  478.900734][   T10] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  479.988206][ T9418] tipc: Resetting bearer <eth:vlan0>
[  480.009309][ T9425] tipc: Resetting bearer <eth:vlan0>
[  481.751316][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  481.964455][    T9] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  481.988288][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  481.999927][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  482.015010][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  482.072245][    T9] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  482.231630][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.252305][    T9] usb 4-1: config 0 descriptor??
[  482.258248][ T9448] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  482.303613][ T9460] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  482.380232][ T9460] overlayfs: missing 'lowerdir'
[  482.561588][   T10] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  482.711431][   T10] usb 5-1: Using ep0 maxpacket: 32
[  482.746533][    T9] plantronics 0003:047F:FFFF.000E: reserved main item tag 0xd
[  482.763045][   T10] usb 5-1: unable to read config index 0 descriptor/start: -61
[  482.777725][   T10] usb 5-1: can't read configurations, error -61
[  482.823726][    T9] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  483.067573][   T10] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  483.392791][   T10] usb 5-1: Using ep0 maxpacket: 32
[  483.588166][   T10] usb 5-1: unable to read config index 0 descriptor/start: -61
[  483.597761][   T10] usb 5-1: can't read configurations, error -61
[  483.901923][   T10] usb usb5-port1: attempt power cycle
[  484.266941][   T10] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  484.302107][   T10] usb 5-1: Using ep0 maxpacket: 32
[  484.318619][   T10] usb 5-1: unable to read config index 0 descriptor/start: -61
[  484.321790][ T5919] usb 4-1: reset high-speed USB device number 8 using dummy_hcd
[  484.338435][   T10] usb 5-1: can't read configurations, error -61
[  484.501607][   T10] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  484.530973][   T10] usb 5-1: Using ep0 maxpacket: 32
[  484.555262][   T10] usb 5-1: unable to read config index 0 descriptor/start: -61
[  484.563373][   T10] usb 5-1: can't read configurations, error -61
[  484.570101][   T10] usb usb5-port1: unable to enumerate USB device
[  485.948242][ T5892] usb 4-1: USB disconnect, device number 8
[  486.174565][ T9495] netlink: 12 bytes leftover after parsing attributes in process `syz.0.977'.
[  486.447061][ T9497] Cannot find del_set index 0 as target
[  487.912621][ T9501] netlink: 92 bytes leftover after parsing attributes in process `syz.4.978'.
[  487.938056][ T9501] netem: unknown loss type 0
[  487.943952][ T9501] netem: change failed
[  487.971749][ T9504] netlink: 8 bytes leftover after parsing attributes in process `syz.0.979'.
[  487.980629][ T9504] netlink: 20 bytes leftover after parsing attributes in process `syz.0.979'.
[  488.001798][ T9504] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  488.010870][ T9504] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  488.019676][ T9504] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  488.028460][ T9504] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  488.046269][ T9507] fuse: Unknown parameter 'user_i00000000000000000000'
[  488.057284][ T9504] netlink: 20 bytes leftover after parsing attributes in process `syz.0.979'.
[  488.067987][ T9504] syz.0.979 (9504) used greatest stack depth: 19832 bytes left
[  488.148184][ T9510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.981'.
[  488.178650][ T9510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.981'.
[  488.207666][ T9510] netlink: 32 bytes leftover after parsing attributes in process `syz.3.981'.
[  490.112939][ T9536] netlink: 204 bytes leftover after parsing attributes in process `syz.4.989'.
[  490.140250][ T9526] tipc: Resetting bearer <eth:vlan0>
[  492.141887][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  492.241197][ T9559] mmap: syz.4.993 (9559) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  496.150777][ T9600] 9pnet_fd: p9_fd_create_tcp (9600): problem connecting socket to 127.0.0.1
[  499.124591][ T9629] lo speed is unknown, defaulting to 1000
[  500.159825][ T9639] netlink: 204 bytes leftover after parsing attributes in process `syz.3.1014'.
[  500.179949][ T9636] tipc: Resetting bearer <eth:vlan0>
[  501.081561][ T5900] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  501.433838][ T9655] tipc: Resetting bearer <eth:vlan0>
[  501.563645][    T9] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  501.579625][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  501.586212][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  501.588935][    T9] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  501.602986][ T5900] usb 4-1: config 0 has an invalid interface number: 160 but max is 0
[  501.615552][ T5900] usb 4-1: config 0 has no interface number 0
[  501.621772][ T5900] usb 4-1: config 0 interface 160 altsetting 64 endpoint 0x4 has invalid wMaxPacketSize 0
[  501.651334][ T5900] usb 4-1: config 0 interface 160 has no altsetting 0
[  501.676398][ T5900] usb 4-1: New USB device found, idVendor=3612, idProduct=d032, bcdDevice=56.e4
[  501.841352][ T5900] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.850026][ T5900] usb 4-1: Product: syz
[  501.921151][ T5900] usb 4-1: Manufacturer: syz
[  501.945365][ T5900] usb 4-1: SerialNumber: syz
[  502.468303][ T5900] usb 4-1: config 0 descriptor??
[  502.484328][ T5900] usb-storage 4-1:0.160: USB Mass Storage device detected
[  502.840032][ T9669] FAULT_INJECTION: forcing a failure.
[  502.840032][ T9669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  502.853684][ T9669] CPU: 0 UID: 0 PID: 9669 Comm: syz.4.1020 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  502.853709][ T9669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  502.853725][ T9669] Call Trace:
[  502.853731][ T9669]  <TASK>
[  502.853737][ T9669]  dump_stack_lvl+0x189/0x250
[  502.853753][ T9669]  ? __pfx____ratelimit+0x10/0x10
[  502.853764][ T9669]  ? __pfx_dump_stack_lvl+0x10/0x10
[  502.853776][ T9669]  ? __pfx__printk+0x10/0x10
[  502.853789][ T9669]  ? __might_fault+0xb0/0x130
[  502.853806][ T9669]  should_fail_ex+0x414/0x560
[  502.853819][ T9669]  _copy_from_iter+0x1db/0x16f0
[  502.853835][ T9669]  ? rcu_is_watching+0x15/0xb0
[  502.853847][ T9669]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  502.853858][ T9669]  ? __pfx__copy_from_iter+0x10/0x10
[  502.853872][ T9669]  ? __build_skb_around+0x257/0x3e0
[  502.853888][ T9669]  ? netlink_sendmsg+0x642/0xb30
[  502.853902][ T9669]  ? skb_put+0x11b/0x210
[  502.853918][ T9669]  netlink_sendmsg+0x6b2/0xb30
[  502.853931][ T9669]  ? lockdep_hardirqs_on+0x9c/0x150
[  502.853947][ T9669]  ? __pfx_netlink_sendmsg+0x10/0x10
[  502.853963][ T9669]  ? __pfx_bpf_lsm_socket_sendmsg+0x10/0x10
[  502.853975][ T9669]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  502.853984][ T9669]  ? __pfx_netlink_sendmsg+0x10/0x10
[  502.853999][ T9669]  __sock_sendmsg+0x21c/0x270
[  502.854013][ T9669]  ____sys_sendmsg+0x505/0x830
[  502.854031][ T9669]  ? __pfx_____sys_sendmsg+0x10/0x10
[  502.854051][ T9669]  ? import_iovec+0x74/0xa0
[  502.854067][ T9669]  ___sys_sendmsg+0x21f/0x2a0
[  502.854084][ T9669]  ? __pfx____sys_sendmsg+0x10/0x10
[  502.854118][ T9669]  ? __fget_files+0x2a/0x420
[  502.854129][ T9669]  ? __fget_files+0x3a0/0x420
[  502.854145][ T9669]  __x64_sys_sendmsg+0x19b/0x260
[  502.854159][ T9669]  ? schedule+0x165/0x360
[  502.854170][ T9669]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  502.854194][ T9669]  ? do_syscall_64+0xbe/0x3b0
[  502.854208][ T9669]  do_syscall_64+0xfa/0x3b0
[  502.854220][ T9669]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.854229][ T9669]  ? asm_sysvec_call_function_single+0x1a/0x20
[  502.854241][ T9669]  ? clear_bhb_loop+0x60/0xb0
[  502.854253][ T9669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.854263][ T9669] RIP: 0033:0x7f552498ebe9
[  502.854273][ T9669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.854282][ T9669] RSP: 002b:00007f5522bd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  502.854293][ T9669] RAX: ffffffffffffffda RBX: 00007f5524bb6180 RCX: 00007f552498ebe9
[  502.854300][ T9669] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  502.854307][ T9669] RBP: 00007f5522bd5090 R08: 0000000000000000 R09: 0000000000000000
[  502.854313][ T9669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.854319][ T9669] R13: 00007f5524bb6218 R14: 00007f5524bb6180 R15: 00007ffe73f1de88
[  502.854334][ T9669]  </TASK>
[  503.491016][ T5900] usb 4-1: USB disconnect, device number 9
[  504.530723][ T9678] Cannot find del_set index 0 as target
[  505.212497][ T9683] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1024'.
[  505.254759][ T9687] netlink: 'syz.2.1024': attribute type 21 has an invalid length.
[  505.363812][ T9687] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1024'.
[  505.812296][ T9683] bridge_slave_1: left allmulticast mode
[  505.830661][ T9683] bridge_slave_1: left promiscuous mode
[  505.864700][ T9683] bridge0: port 2(bridge_slave_1) entered disabled state
[  505.896172][ T9683] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  508.292009][ T9716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1032'.
[  509.015674][ T9720] Cannot find del_set index 0 as target
[  513.548019][ T9750] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  513.848980][ T9750] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  514.388794][   T30] audit: type=1326 audit(1754689752.991:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  514.672588][   T30] audit: type=1326 audit(1754689752.991:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  514.811388][   T30] audit: type=1326 audit(1754689752.991:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  514.899638][   T30] audit: type=1326 audit(1754689753.001:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  514.941767][   T10] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  514.968661][ T9750] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.016810][   T30] audit: type=1326 audit(1754689753.001:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  515.072025][   T10] usb 5-1: device descriptor read/64, error -71
[  515.459454][    T9] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  515.577199][   T10] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  515.712997][    T9] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  515.831206][   T30] audit: type=1326 audit(1754689753.021:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9765 comm="syz.2.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  515.851382][   T10] usb 5-1: device descriptor read/64, error -71
[  515.877968][ T9779] tipc: Resetting bearer <eth:vlan0>
[  516.011708][   T10] usb usb5-port1: attempt power cycle
[  516.402277][ T9786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  516.421417][   T10] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  516.429272][ T9786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  516.461347][   T10] usb 5-1: device descriptor read/8, error -71
[  516.463391][ T9750] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.640048][ T9750] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.801332][   T10] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  517.384889][ T9750] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  517.489781][ T9750] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  517.565521][ T9750] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  517.613682][ T9750] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  517.746370][   T10] usb 5-1: device descriptor read/8, error -71
[  517.863108][   T10] usb usb5-port1: unable to enumerate USB device
[  518.997062][ T9809] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  519.003946][ T9809] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  519.012115][ T9809] vhci_hcd vhci_hcd.0: Device attached
[  519.117963][ T9811] vhci_hcd: connection closed
[  519.124720][ T3549] vhci_hcd: stop threads
[  519.160834][ T3549] vhci_hcd: release socket
[  519.233876][ T3549] vhci_hcd: disconnect device
[  519.261705][ T5900] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[  519.270880][ T5900] usb 33-1: enqueue for inactive port 0
[  519.361525][ T5900] vhci_hcd: vhci_device speed not set
[  519.402636][   T30] audit: type=1326 audit(1754689758.011:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  519.746940][   T30] audit: type=1326 audit(1754689758.011:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  519.890090][   T30] audit: type=1326 audit(1754689758.031:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  520.192817][   T30] audit: type=1326 audit(1754689758.031:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  520.260803][   T30] audit: type=1326 audit(1754689758.031:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  520.287528][   T30] audit: type=1326 audit(1754689758.051:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9816 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  521.917505][ T9845] vivid-000: disconnect
[  522.317095][ T9849] trusted_key: syz.4.1065 sent an empty control message without MSG_MORE.
[  522.622642][ T9839] vivid-000: reconnect
[  524.916596][ T9870] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1074'.
[  524.951723][ T9870] nbd: must specify at least one socket
[  525.098973][ T9872] netlink: 'syz.4.1075': attribute type 196 has an invalid length.
[  525.284413][ T9882] netlink: zone id is out of range
[  525.289877][ T9882] netlink: zone id is out of range
[  525.301669][ T9882] netlink: zone id is out of range
[  525.307796][ T9882] netlink: zone id is out of range
[  525.322789][ T9882] netlink: zone id is out of range
[  525.350801][ T9882] netlink: zone id is out of range
[  525.503654][ T9882] netlink: zone id is out of range
[  526.165779][ T9882] netlink: zone id is out of range
[  526.219053][ T9882] netlink: zone id is out of range
[  526.224531][ T9882] netlink: zone id is out of range
[  527.778879][ T9909] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1086'.
[  527.790447][ T9909] netem: unknown loss type 0
[  527.799632][ T9909] netem: change failed
[  529.805589][ T9925] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1090'.
[  529.817328][ T9925] nbd: must specify at least one socket
[  530.203828][ T9926] input: syz0 as /devices/virtual/input/input9
[  531.461613][    T9] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  531.764057][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  531.935505][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  532.311826][ T9940] lo speed is unknown, defaulting to 1000
[  533.543158][    T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  533.552592][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  533.560693][    T9] usb 2-1: Product: syz
[  533.571867][    T9] usb 2-1: Manufacturer: syz
[  533.576597][    T9] usb 2-1: SerialNumber: syz
[  533.765703][    T9] usb 2-1: can't set config #1, error -71
[  533.773767][    T9] usb 2-1: USB disconnect, device number 15
[  537.811408][   T10] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  538.040176][ T9979] tipc: Resetting bearer <eth:vlan0>
[  538.401245][   T10] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  538.426835][   T10] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  538.468166][   T10] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  538.490594][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  538.511619][   T10] usb 4-1: Product: syz
[  538.519271][   T10] usb 4-1: Manufacturer: syz
[  538.533872][   T10] usb 4-1: SerialNumber: syz
[  538.549009][   T10] usb 4-1: config 0 descriptor??
[  538.555541][ T9980] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  538.567975][ T9980] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  538.905097][ T9978] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  539.472052][ T9978] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  540.083037][ T9997] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1110'.
[  541.333004][ T9980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  541.371037][ T9980] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  542.912277][   T10] dm9601 4-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  543.028300][T10031] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1119'.
[  543.716996][   T10] dm9601 4-1:0.0 eth1: register 'dm9601' at usb-dummy_hcd.3-1, Davicom DM96xx USB 10/100 Ethernet, 58:6c:57:16:7e:00
[  543.750726][   T10] usb 4-1: USB disconnect, device number 10
[  543.768662][   T10] dm9601 4-1:0.0 eth1: unregister 'dm9601' usb-dummy_hcd.3-1, Davicom DM96xx USB 10/100 Ethernet
[  543.989427][T10041] FAULT_INJECTION: forcing a failure.
[  543.989427][T10041] name failslab, interval 1, probability 0, space 0, times 0
[  544.002891][T10041] CPU: 0 UID: 0 PID: 10041 Comm: syz.0.1121 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  544.002914][T10041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  544.002922][T10041] Call Trace:
[  544.002930][T10041]  <TASK>
[  544.002937][T10041]  dump_stack_lvl+0x189/0x250
[  544.002955][T10041]  ? lockdep_hardirqs_on+0x9c/0x150
[  544.002968][T10041]  ? __pfx_dump_stack_lvl+0x10/0x10
[  544.002989][T10041]  should_fail_ex+0x414/0x560
[  544.003004][T10041]  should_failslab+0xa8/0x100
[  544.003019][T10041]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  544.003031][T10041]  ? resume_store+0x148/0x460
[  544.003050][T10041]  kstrndup+0x80/0x160
[  544.003066][T10041]  resume_store+0x148/0x460
[  544.003078][T10041]  ? sysfs_file_kobj+0x1a/0x230
[  544.003090][T10041]  ? __pfx_resume_store+0x10/0x10
[  544.003106][T10041]  ? sysfs_file_kobj+0x1a/0x230
[  544.003116][T10041]  ? sysfs_file_kobj+0x1a/0x230
[  544.003125][T10041]  ? sysfs_file_kobj+0x1a/0x230
[  544.003135][T10041]  ? sysfs_file_kobj+0x1e4/0x230
[  544.003152][T10041]  ? sysfs_kf_write+0x166/0x260
[  544.003165][T10041]  ? __pfx_sysfs_kf_write+0x10/0x10
[  544.003175][T10041]  kernfs_fop_write_iter+0x378/0x4f0
[  544.003196][T10041]  vfs_write+0x54b/0xa90
[  544.003208][T10041]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  544.003224][T10041]  ? __pfx_vfs_write+0x10/0x10
[  544.003240][T10041]  ? __fget_files+0x2a/0x420
[  544.003257][T10041]  ksys_write+0x145/0x250
[  544.003269][T10041]  ? __pfx_ksys_write+0x10/0x10
[  544.003276][T10041]  ? rcu_is_watching+0x15/0xb0
[  544.003291][T10041]  ? do_syscall_64+0xbe/0x3b0
[  544.003305][T10041]  do_syscall_64+0xfa/0x3b0
[  544.003317][T10041]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.003327][T10041]  ? asm_sysvec_call_function_single+0x1a/0x20
[  544.003337][T10041]  ? clear_bhb_loop+0x60/0xb0
[  544.003349][T10041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.003359][T10041] RIP: 0033:0x7f3782d8ebe9
[  544.003370][T10041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.003379][T10041] RSP: 002b:00007f3783ca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  544.003392][T10041] RAX: ffffffffffffffda RBX: 00007f3782fb6090 RCX: 00007f3782d8ebe9
[  544.003402][T10041] RDX: 0000000000000012 RSI: 0000200000000000 RDI: 0000000000000003
[  544.003408][T10041] RBP: 00007f3783ca3090 R08: 0000000000000000 R09: 0000000000000000
[  544.003414][T10041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  544.003420][T10041] R13: 00007f3782fb6128 R14: 00007f3782fb6090 R15: 00007fff7bb7e068
[  544.003438][T10041]  </TASK>
[  544.667180][T10040] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1122'.
[  545.042347][T10055] IPVS: set_ctl: invalid protocol: 31 255.255.255.255:20002
[  545.052397][T10053] FAULT_INJECTION: forcing a failure.
[  545.052397][T10053] name failslab, interval 1, probability 0, space 0, times 0
[  545.096690][T10053] CPU: 1 UID: 0 PID: 10053 Comm: syz.4.1126 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  545.096719][T10053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  545.096731][T10053] Call Trace:
[  545.096744][T10053]  <TASK>
[  545.096754][T10053]  dump_stack_lvl+0x189/0x250
[  545.096780][T10053]  ? __pfx____ratelimit+0x10/0x10
[  545.096801][T10053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  545.096824][T10053]  ? __pfx__printk+0x10/0x10
[  545.096851][T10053]  ? __pfx___might_resched+0x10/0x10
[  545.096872][T10053]  ? fs_reclaim_acquire+0x7d/0x100
[  545.096900][T10053]  should_fail_ex+0x414/0x560
[  545.096923][T10053]  ? create_io_worker+0x27/0x5d0
[  545.096943][T10053]  should_failslab+0xa8/0x100
[  545.096966][T10053]  __kmalloc_cache_noprof+0x70/0x3d0
[  545.096985][T10053]  ? create_io_worker+0xac/0x5d0
[  545.097005][T10053]  ? create_io_worker+0x27/0x5d0
[  545.097022][T10053]  create_io_worker+0xac/0x5d0
[  545.097039][T10053]  io_wq_enqueue+0x62c/0x850
[  545.097060][T10053]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  545.097086][T10053]  io_submit_sqes+0x1035/0x1c50
[  545.097146][T10053]  __se_sys_io_uring_enter+0x2df/0x2b20
[  545.097188][T10053]  ? ksys_write+0x1cb/0x250
[  545.097210][T10053]  ? __pfx___se_sys_io_uring_enter+0x10/0x10
[  545.097227][T10053]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  545.097250][T10053]  ? __pfx_vfs_write+0x10/0x10
[  545.097282][T10053]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  545.097309][T10053]  ? __fget_files+0x3a0/0x420
[  545.097338][T10053]  ? fput+0xa0/0xd0
[  545.097363][T10053]  ? ksys_write+0x22a/0x250
[  545.097383][T10053]  ? __pfx_ksys_write+0x10/0x10
[  545.097399][T10053]  ? rcu_is_watching+0x15/0xb0
[  545.097426][T10053]  ? __x64_sys_io_uring_enter+0x21/0xf0
[  545.097449][T10053]  do_syscall_64+0xfa/0x3b0
[  545.097470][T10053]  ? lockdep_hardirqs_on+0x9c/0x150
[  545.097490][T10053]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.097509][T10053]  ? clear_bhb_loop+0x60/0xb0
[  545.097533][T10053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.097552][T10053] RIP: 0033:0x7f552498ebe9
[  545.097569][T10053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.097586][T10053] RSP: 002b:00007f5525718038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  545.097608][T10053] RAX: ffffffffffffffda RBX: 00007f5524bb5fa0 RCX: 00007f552498ebe9
[  545.097623][T10053] RDX: 000000000000e478 RSI: 00000000000075fa RDI: 0000000000000003
[  545.097635][T10053] RBP: 00007f5525718090 R08: 0000000000000000 R09: 0000000000000000
[  545.097648][T10053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  545.097660][T10053] R13: 00007f5524bb6038 R14: 00007f5524bb5fa0 R15: 00007ffe73f1de88
[  545.097693][T10053]  </TASK>
[  549.712547][T10095] Cannot find del_set index 0 as target
[  549.997506][T10096] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1136'.
[  550.121069][T10096] netem: unknown loss type 0
[  550.151638][T10096] netem: change failed
[  553.658608][T10139] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1150'.
[  553.860323][T10143] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1151'.
[  553.891508][T10143] netem: unknown loss type 0
[  553.899693][T10143] netem: change failed
[  554.338363][T10150] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1154'.
[  558.628883][T10182] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1166'.
[  558.674334][T10185] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1167'.
[  558.683482][T10185] nbd: must specify at least one socket
[  558.684299][T10184] xt_socket: unknown flags 0xd0
[  558.693965][T10182] netem: unknown loss type 0
[  558.694033][T10182] netem: change failed
[  558.778359][T10191] netlink: 204 bytes leftover after parsing attributes in process `syz.3.1170'.
[  558.904035][T10184] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1163'.
[  558.915667][T10184] netlink: 'syz.1.1163': attribute type 1 has an invalid length.
[  562.522698][T10225] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1178'.
[  563.046069][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  563.054571][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  563.788377][ T5892] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  563.818097][T10231] tipc: Resetting bearer <eth:vlan0>
[  563.837899][ T5892] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  564.839806][ T5892] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  564.866345][T10240] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1180'.
[  565.663921][T10240] nbd: must specify at least one socket
[  566.322784][ T5892] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  566.331124][ T5892] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  566.371378][ T5892] usb 4-1: config 220 has no interface number 2
[  566.377917][ T5892] usb 4-1: config 220 interface 1 altsetting 5 bulk endpoint 0x82 has invalid maxpacket 32
[  566.381614][   T10] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  566.409604][ T5892] usb 4-1: config 220 interface 1 altsetting 5 bulk endpoint 0x3 has invalid maxpacket 1023
[  566.456524][ T5892] usb 4-1: config 220 interface 1 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 12
[  566.549622][ T5892] usb 4-1: config 220 interface 0 has no altsetting 0
[  566.569540][ T5892] usb 4-1: config 220 interface 76 has no altsetting 0
[  566.656484][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  566.669565][ T5892] usb 4-1: config 220 interface 1 has no altsetting 0
[  566.689929][ T5892] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  566.705093][ T5892] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  566.726092][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  566.832065][ T5892] usb 4-1: Product: syz
[  566.836837][ T5892] usb 4-1: Manufacturer: syz
[  566.841497][ T5892] usb 4-1: SerialNumber: syz
[  566.871045][   T10] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  566.887831][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.492685][ T5892] usb 4-1: selecting invalid altsetting 0
[  567.561045][   T10] usb 3-1: config 0 descriptor??
[  567.617571][ T5892] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  567.663973][ T5892] usb 4-1: No valid video chain found.
[  567.830822][ T5892] usb 4-1: selecting invalid altsetting 0
[  567.850431][ T5892] usbtest 4-1:220.1: probe with driver usbtest failed with error -22
[  568.156426][ T5892] usb 4-1: USB disconnect, device number 11
[  568.172173][   T10] hid-steam 0003:28DE:1142.0012: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0
[  568.271464][   T10] hid-steam 0003:28DE:1142.0012: Steam wireless receiver connected
[  568.321600][   T10] hid-steam 0003:28DE:1142.0013: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0
[  568.378618][   T10] usb 3-1: USB disconnect, device number 12
[  568.438257][   T10] hid-steam 0003:28DE:1142.0012: Steam wireless receiver disconnected
[  568.702135][T10279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1191'.
[  569.236912][T10283] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1194'.
[  569.290957][T10283] nbd: must specify at least one socket
[  575.001588][T10340] veth0: entered promiscuous mode
[  575.023951][T10340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1211'.
[  575.274896][T10345] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1210'.
[  576.031930][T10351] lo speed is unknown, defaulting to 1000
[  578.958686][T10371] fuse: Unknown parameter 'fd00000000000000000000003'
[  580.669050][T10387] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1222'.
[  580.771347][   T10] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  581.022788][T10395] vivid-000: disconnect
[  581.251666][   T10] usb 2-1: Using ep0 maxpacket: 32
[  581.430655][T10385] vivid-000: reconnect
[  581.445218][   T10] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  581.457698][   T10] usb 2-1: config 0 has no interface number 0
[  581.476898][   T10] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  581.494521][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.608527][   T10] usb 2-1: Product: syz
[  581.612890][   T10] usb 2-1: Manufacturer: syz
[  581.617761][   T10] usb 2-1: SerialNumber: syz
[  581.765030][   T10] usb 2-1: config 0 descriptor??
[  581.778699][   T10] usb 2-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  581.811651][   T10] usb 2-1: selecting invalid altsetting 1
[  581.830554][   T10] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  582.099309][T10404] netlink: 'syz.3.1226': attribute type 4 has an invalid length.
[  582.667132][   T10] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  582.693873][   T10] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  582.707558][   T10] usb 2-1: media controller created
[  582.745900][T10407] netlink: 'syz.3.1226': attribute type 4 has an invalid length.
[  582.841116][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  583.190312][ T5948] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  583.288582][   T10] usb 2-1: dvb_usb_ce6230: usb_control_msg() failed=-32
[  583.427796][   T10] zl10353_read_register: readreg error (reg=127, ret==-32)
[  583.436347][ T5948] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  583.497841][T10416] fuse: Unknown parameter 'fd00000000000000000000003'
[  583.643728][T10412] tipc: Resetting bearer <eth:vlan0>
[  583.784708][   T10] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  583.876891][T10422] net_ratelimit: 3 callbacks suppressed
[  583.876938][T10422] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  584.338459][   T10] usb 2-1: USB disconnect, device number 16
[  584.487004][T10426] usb usb8: usbfs: process 10426 (syz.0.1232) did not claim interface 0 before use
[  584.872385][ T5948] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  585.056954][ T5948] usb 1-1: unable to get BOS descriptor or descriptor too short
[  585.116477][ T5948] usb 1-1: not running at top speed; connect to a high speed hub
[  585.146931][ T5948] usb 1-1: config 8 has an invalid interface number: 24 but max is 0
[  585.335655][T10441] vivid-000: disconnect
[  585.431948][ T5948] usb 1-1: config 8 has no interface number 0
[  585.449373][ T5948] usb 1-1: config 8 interface 24 altsetting 2 endpoint 0xE has invalid maxpacket 1535, setting to 64
[  585.946903][ T5948] usb 1-1: config 8 interface 24 altsetting 2 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  585.974303][ T5948] usb 1-1: config 8 interface 24 altsetting 2 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  586.026046][ T5948] usb 1-1: config 8 interface 24 has no altsetting 0
[  586.190595][T10447] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1237'.
[  586.628295][ T5948] usb 1-1: New USB device found, idVendor=10cf, idProduct=5503, bcdDevice=75.af
[  586.637945][ T5948] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  586.649486][ T5948] usb 1-1: Product: syz
[  586.655464][ T5948] usb 1-1: Manufacturer: syz
[  586.660342][ T5948] usb 1-1: SerialNumber: syz
[  586.728385][T10453] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1238'.
[  586.738031][T10426] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  586.746095][T10426] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  587.195213][T10457] lo speed is unknown, defaulting to 1000
[  588.539899][ T5948] comedi comedi5: driver 'vmk80xx' has successfully auto-configured 'K8055 (VM110)'.
[  588.555791][ T5948] usb 1-1: USB disconnect, device number 8
[  588.600163][T10463] fuse: Unknown parameter 'fd00000000000000000000003'
[  589.044952][T10420] vivid-000: reconnect
[  592.336386][T10488] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  592.778409][T10493] Cannot find del_set index 0 as target
[  593.043625][T10494] vivid-000: disconnect
[  593.238428][T10483] vivid-000: reconnect
[  593.499938][T10496] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1251'.
[  593.538800][T10496] nbd: must specify at least one socket
[  593.590381][T10501] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  593.951025][T10507] netlink: 204 bytes leftover after parsing attributes in process `syz.1.1255'.
[  598.292233][T10532] FAULT_INJECTION: forcing a failure.
[  598.292233][T10532] name failslab, interval 1, probability 0, space 0, times 0
[  598.311992][T10532] CPU: 1 UID: 0 PID: 10532 Comm: syz.2.1259 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  598.312022][T10532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  598.312035][T10532] Call Trace:
[  598.312042][T10532]  <TASK>
[  598.312051][T10532]  dump_stack_lvl+0x189/0x250
[  598.312077][T10532]  ? __pfx____ratelimit+0x10/0x10
[  598.312099][T10532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  598.312121][T10532]  ? __pfx__printk+0x10/0x10
[  598.312149][T10532]  ? __pfx___might_resched+0x10/0x10
[  598.312171][T10532]  ? fs_reclaim_acquire+0x7d/0x100
[  598.312200][T10532]  should_fail_ex+0x414/0x560
[  598.312226][T10532]  should_failslab+0xa8/0x100
[  598.312250][T10532]  __kmalloc_noprof+0xcb/0x4f0
[  598.312268][T10532]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  598.312297][T10532]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  598.312328][T10532]  genl_family_rcv_msg_doit+0xb8/0x300
[  598.312358][T10532]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  598.312380][T10532]  ? __pfx___mutex_lock+0x10/0x10
[  598.312403][T10532]  ? __pfx_genl_get_cmd+0x10/0x10
[  598.312420][T10532]  ? __pfx_nfc_genl_llc_get_params+0x10/0x10
[  598.312466][T10532]  genl_rcv_msg+0x60e/0x790
[  598.312495][T10532]  ? __pfx_genl_rcv_msg+0x10/0x10
[  598.312514][T10532]  ? __pfx_nfc_genl_llc_get_params+0x10/0x10
[  598.312559][T10532]  netlink_rcv_skb+0x205/0x470
[  598.312586][T10532]  ? __pfx_genl_rcv_msg+0x10/0x10
[  598.312609][T10532]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  598.312654][T10532]  ? down_read+0x1ad/0x2e0
[  598.312689][T10532]  genl_rcv+0x28/0x40
[  598.312707][T10532]  netlink_unicast+0x75c/0x8e0
[  598.312741][T10532]  netlink_sendmsg+0x805/0xb30
[  598.312776][T10532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  598.312811][T10532]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  598.312829][T10532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  598.312856][T10532]  __sock_sendmsg+0x21c/0x270
[  598.312882][T10532]  ____sys_sendmsg+0x505/0x830
[  598.312918][T10532]  ? __pfx_____sys_sendmsg+0x10/0x10
[  598.312958][T10532]  ? import_iovec+0x74/0xa0
[  598.312988][T10532]  ___sys_sendmsg+0x21f/0x2a0
[  598.313020][T10532]  ? __pfx____sys_sendmsg+0x10/0x10
[  598.313092][T10532]  ? __fget_files+0x2a/0x420
[  598.313112][T10532]  ? __fget_files+0x3a0/0x420
[  598.313147][T10532]  __x64_sys_sendmsg+0x19b/0x260
[  598.313180][T10532]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  598.313220][T10532]  ? __pfx_ksys_write+0x10/0x10
[  598.313236][T10532]  ? rcu_is_watching+0x15/0xb0
[  598.313263][T10532]  ? do_syscall_64+0xbe/0x3b0
[  598.313289][T10532]  do_syscall_64+0xfa/0x3b0
[  598.313310][T10532]  ? lockdep_hardirqs_on+0x9c/0x150
[  598.313330][T10532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.313349][T10532]  ? clear_bhb_loop+0x60/0xb0
[  598.313373][T10532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.313392][T10532] RIP: 0033:0x7fd38bf8ebe9
[  598.313409][T10532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  598.313426][T10532] RSP: 002b:00007fd38ce3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  598.313447][T10532] RAX: ffffffffffffffda RBX: 00007fd38c1b5fa0 RCX: 00007fd38bf8ebe9
[  598.313461][T10532] RDX: 0000000000006004 RSI: 0000200000000180 RDI: 0000000000000004
[  598.313473][T10532] RBP: 00007fd38ce3f090 R08: 0000000000000000 R09: 0000000000000000
[  598.313485][T10532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  598.313496][T10532] R13: 00007fd38c1b6038 R14: 00007fd38c1b5fa0 R15: 00007ffd84053128
[  598.313529][T10532]  </TASK>
[  598.666830][T10534] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1261'.
[  598.711579][T10534] nbd: must specify at least one socket
[  599.377467][T10547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1262'.
[  599.932510][T10551] vivid-000: disconnect
[  600.099336][T10539] vivid-000: reconnect
[  600.149821][T10544] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1266'.
[  600.295698][T10544] nbd: must specify at least one socket
[  601.797999][T10565] capability: warning: `syz.2.1271' uses 32-bit capabilities (legacy support in use)
[  602.586267][T10578] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  604.449774][T10599] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  604.513383][T10602] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1282'.
[  604.542985][T10602] nbd: must specify at least one socket
[  605.452920][T10614] lo speed is unknown, defaulting to 1000
[  605.741545][ T8928] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  606.080647][ T8928] usb 2-1: Using ep0 maxpacket: 32
[  606.210080][ T8928] usb 2-1: config index 0 descriptor too short (expected 8228, got 36)
[  606.371296][ T8928] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  606.431767][ T8928] usb 2-1: config 0 has no interfaces?
[  606.464947][ T8928] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  606.483158][ T8928] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  606.512405][ T8928] usb 2-1: Product: syz
[  606.574532][ T8928] usb 2-1: Manufacturer: syz
[  606.661558][ T8928] usb 2-1: SerialNumber: syz
[  606.999899][ T8928] usb 2-1: config 0 descriptor??
[  607.162059][  T977] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  608.189922][ T8928] usb 2-1: USB disconnect, device number 17
[  608.237096][  T977] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  608.271972][  T977] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  608.311195][  T977] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  608.369247][  T977] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  608.478545][T10632] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  608.778684][  T977] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  610.388251][T10651] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1292'.
[  611.608180][ T5892] usb 3-1: USB disconnect, device number 13
[  612.774698][T10674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1299'.
[  614.717149][T10698] FAULT_INJECTION: forcing a failure.
[  614.717149][T10698] name failslab, interval 1, probability 0, space 0, times 0
[  614.789583][T10698] CPU: 0 UID: 0 PID: 10698 Comm: syz.1.1309 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  614.789612][T10698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  614.789624][T10698] Call Trace:
[  614.789633][T10698]  <TASK>
[  614.789643][T10698]  dump_stack_lvl+0x189/0x250
[  614.789670][T10698]  ? __pfx____ratelimit+0x10/0x10
[  614.789691][T10698]  ? __pfx_dump_stack_lvl+0x10/0x10
[  614.789713][T10698]  ? __pfx__printk+0x10/0x10
[  614.789743][T10698]  ? __pfx___might_resched+0x10/0x10
[  614.789764][T10698]  ? fs_reclaim_acquire+0x7d/0x100
[  614.789792][T10698]  should_fail_ex+0x414/0x560
[  614.789818][T10698]  should_failslab+0xa8/0x100
[  614.789841][T10698]  __kmalloc_noprof+0xcb/0x4f0
[  614.789858][T10698]  ? kfree+0x4d/0x440
[  614.789883][T10698]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  614.789914][T10698]  tomoyo_realpath_from_path+0xe3/0x5d0
[  614.789942][T10698]  ? tomoyo_domain+0xda/0x130
[  614.789979][T10698]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  614.790000][T10698]  tomoyo_path_number_perm+0x1e8/0x5a0
[  614.790024][T10698]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  614.790063][T10698]  ? __lock_acquire+0xab9/0xd20
[  614.790102][T10698]  ? __fget_files+0x2a/0x420
[  614.790128][T10698]  ? __fget_files+0x2a/0x420
[  614.790147][T10698]  ? __fget_files+0x3a0/0x420
[  614.790167][T10698]  ? __fget_files+0x2a/0x420
[  614.790192][T10698]  security_file_ioctl+0xcb/0x2d0
[  614.790217][T10698]  __se_sys_ioctl+0x47/0x170
[  614.790248][T10698]  do_syscall_64+0xfa/0x3b0
[  614.790268][T10698]  ? lockdep_hardirqs_on+0x9c/0x150
[  614.790288][T10698]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.790307][T10698]  ? clear_bhb_loop+0x60/0xb0
[  614.790331][T10698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.790351][T10698] RIP: 0033:0x7face8b8ebe9
[  614.790368][T10698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  614.790385][T10698] RSP: 002b:00007face9a81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  614.790406][T10698] RAX: ffffffffffffffda RBX: 00007face8db5fa0 RCX: 00007face8b8ebe9
[  614.790420][T10698] RDX: 0000200000000000 RSI: 000000000000227d RDI: 0000000000000004
[  614.790433][T10698] RBP: 00007face9a81090 R08: 0000000000000000 R09: 0000000000000000
[  614.790445][T10698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  614.790456][T10698] R13: 00007face8db6038 R14: 00007face8db5fa0 R15: 00007ffff0315578
[  614.790488][T10698]  </TASK>
[  614.790542][T10698] ERROR: Out of memory at tomoyo_realpath_from_path.
[  615.639166][T10695] loop2: detected capacity change from 0 to 7
[  615.656939][    C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.666508][    C0] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.703766][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.712979][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.726514][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.735896][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.810640][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.819843][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.835428][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.844647][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.862294][    C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.871761][    C0] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.894513][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  615.903792][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  615.913341][T10695] ldm_validate_partition_table(): Disk read failed.
[  616.578306][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  616.587541][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  616.599122][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  616.608410][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  616.616616][    C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  616.625819][    C1] Buffer I/O error on dev loop2, logical block 0, async page read
[  616.633870][T10695] Dev loop2: unable to read RDB block 0
[  616.644197][T10695]  loop2: unable to read partition table
[  616.650085][T10695] loop2: partition table beyond EOD, truncated
[  616.657056][T10695] loop_reread_partitions: partition scan of loop2 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  617.004749][T10729] tipc: Resetting bearer <eth:vlan0>
[  617.014471][ T8928] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  617.049504][ T8928] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  617.742464][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  618.533482][T10743] FAULT_INJECTION: forcing a failure.
[  618.533482][T10743] name failslab, interval 1, probability 0, space 0, times 0
[  618.550717][T10743] CPU: 0 UID: 0 PID: 10743 Comm: syz.3.1324 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  618.550766][T10743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  618.550790][T10743] Call Trace:
[  618.550806][T10743]  <TASK>
[  618.550823][T10743]  dump_stack_lvl+0x189/0x250
[  618.550868][T10743]  ? __pfx____ratelimit+0x10/0x10
[  618.550901][T10743]  ? __pfx_dump_stack_lvl+0x10/0x10
[  618.550936][T10743]  ? __pfx__printk+0x10/0x10
[  618.550991][T10743]  ? ref_tracker_alloc+0x318/0x460
[  618.551031][T10743]  should_fail_ex+0x414/0x560
[  618.551073][T10743]  should_failslab+0xa8/0x100
[  618.551109][T10743]  kmem_cache_alloc_noprof+0x73/0x3c0
[  618.551141][T10743]  ? skb_clone+0x212/0x3a0
[  618.551179][T10743]  skb_clone+0x212/0x3a0
[  618.551221][T10743]  __netlink_deliver_tap+0x404/0x850
[  618.551267][T10743]  ? netlink_deliver_tap+0x2e/0x1b0
[  618.551294][T10743]  netlink_deliver_tap+0x19c/0x1b0
[  618.551318][T10743]  netlink_unicast+0x730/0x8e0
[  618.551354][T10743]  netlink_sendmsg+0x805/0xb30
[  618.551390][T10743]  ? __pfx_netlink_sendmsg+0x10/0x10
[  618.551425][T10743]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  618.551441][T10743]  ? __pfx_netlink_sendmsg+0x10/0x10
[  618.551466][T10743]  __sock_sendmsg+0x21c/0x270
[  618.551488][T10743]  ____sys_sendmsg+0x505/0x830
[  618.551522][T10743]  ? __pfx_____sys_sendmsg+0x10/0x10
[  618.551556][T10743]  ? import_iovec+0x74/0xa0
[  618.551584][T10743]  ___sys_sendmsg+0x21f/0x2a0
[  618.551615][T10743]  ? __pfx____sys_sendmsg+0x10/0x10
[  618.551680][T10743]  ? __fget_files+0x2a/0x420
[  618.551698][T10743]  ? __fget_files+0x3a0/0x420
[  618.551728][T10743]  __x64_sys_sendmsg+0x19b/0x260
[  618.551760][T10743]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  618.551799][T10743]  ? __pfx_ksys_write+0x10/0x10
[  618.551815][T10743]  ? rcu_is_watching+0x15/0xb0
[  618.551839][T10743]  ? do_syscall_64+0xbe/0x3b0
[  618.551863][T10743]  do_syscall_64+0xfa/0x3b0
[  618.551880][T10743]  ? lockdep_hardirqs_on+0x9c/0x150
[  618.551898][T10743]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.551915][T10743]  ? clear_bhb_loop+0x60/0xb0
[  618.551939][T10743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.551958][T10743] RIP: 0033:0x7f6d4298ebe9
[  618.551975][T10743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  618.551990][T10743] RSP: 002b:00007f6d438dc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  618.552009][T10743] RAX: ffffffffffffffda RBX: 00007f6d42bb5fa0 RCX: 00007f6d4298ebe9
[  618.552021][T10743] RDX: 0000000004000084 RSI: 0000200000000000 RDI: 0000000000000003
[  618.552030][T10743] RBP: 00007f6d438dc090 R08: 0000000000000000 R09: 0000000000000000
[  618.552037][T10743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  618.552043][T10743] R13: 00007f6d42bb6038 R14: 00007f6d42bb5fa0 R15: 00007ffd374dd678
[  618.552060][T10743]  </TASK>
[  620.864317][T10753] tipc: Resetting bearer <eth:vlan0>
[  621.848417][T10773] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1333'.
[  622.631914][T10784] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1335'.
[  623.875189][  T977] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  624.161714][  T977] usb 3-1: Using ep0 maxpacket: 32
[  624.387900][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  624.412044][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  624.563966][  T977] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  624.714826][  T977] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  624.827233][  T977] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  624.836784][  T977] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.857776][  T977] usb 3-1: config 0 descriptor??
[  624.878757][  T977] hub 3-1:0.0: USB hub found
[  625.268728][  T977] hub 3-1:0.0: 1 port detected
[  626.727583][  T977] hub 3-1:0.0: activate --> -90
[  626.925168][ T5879] usb 3-1: USB disconnect, device number 14
[  626.925257][  T977] hub 3-1:0.0: hub_ext_port_status failed (err = -71)
[  626.971661][T10833] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1350'.
[  628.321392][T10633] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  628.401895][T10633] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  629.215819][T10835] tipc: Resetting bearer <eth:vlan0>
[  631.503198][T10868] unsupported nla_type 52263
[  632.731568][T10881] overlay: Unknown parameter '/'
[  638.657283][T10932] Invalid source name
[  638.661486][T10932] UBIFS error (pid: 10932): cannot open "/dev/sg0", error -22
[  639.128560][T10938] random: crng reseeded on system resumption
[  642.552536][T10966] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1377'.
[  642.598218][T10973] syz.0.1379: attempt to access beyond end of device
[  642.598218][T10973] nbd0: rw=6144, sector=128, nr_sectors = 8 limit=0
[  642.611634][T10973] gfs2: error -5 reading superblock
[  643.847712][T10984] lo speed is unknown, defaulting to 1000
[  649.461693][T11021] netlink: 'syz.1.1391': attribute type 10 has an invalid length.
[  650.815955][T11021] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  651.116341][T11041] xt_TPROXY: Can be used only with -p tcp or -p udp
[  651.547466][   T30] audit: type=1326 audit(1754689890.151:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.1.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  651.615090][   T30] audit: type=1326 audit(1754689890.151:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.1.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  651.742060][T11048] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1399'.
[  652.521588][   T30] audit: type=1326 audit(1754689890.181:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.1.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  652.784824][   T30] audit: type=1326 audit(1754689890.181:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.1.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  652.815560][   T30] audit: type=1326 audit(1754689890.181:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.1.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face8b8ebe9 code=0x7ffc0000
[  652.880155][T11060] Cannot find del_set index 0 as target
[  655.551627][T11082] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1410'.
[  656.345632][T11100] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1413'.
[  658.730619][T11089] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  658.743807][T11091] syzkaller0: entered promiscuous mode
[  658.759532][T11091] syzkaller0: entered allmulticast mode
[  658.798565][T11098] tipc: Resetting bearer <eth:syzkaller0>
[  658.814922][T11098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.853276][T11087] tipc: Resetting bearer <eth:syzkaller0>
[  658.884066][T11118] 9pnet_fd: Insufficient options for proto=fd
[  658.928094][T11087] tipc: Disabling bearer <eth:syzkaller0>
[  659.026928][T11122] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1420'.
[  659.735504][T11130] loop6: detected capacity change from 0 to 63
[  659.766708][T11130] buffer_io_error: 5 callbacks suppressed
[  659.766722][T11130] Buffer I/O error on dev loop6, logical block 0, async page read
[  659.793757][T11130] Buffer I/O error on dev loop6, logical block 1, async page read
[  659.810213][T11130] Buffer I/O error on dev loop6, logical block 2, async page read
[  659.830798][T11130] Buffer I/O error on dev loop6, logical block 3, async page read
[  659.850315][T11130] Buffer I/O error on dev loop6, logical block 0, async page read
[  659.868932][T11130] Buffer I/O error on dev loop6, logical block 1, async page read
[  659.890502][T11130] Buffer I/O error on dev loop6, logical block 2, async page read
[  659.918347][T11130] Buffer I/O error on dev loop6, logical block 3, async page read
[  659.944374][T11130] Buffer I/O error on dev loop6, logical block 0, async page read
[  659.965982][T11130] Buffer I/O error on dev loop6, logical block 1, async page read
[  661.758686][T11147] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1427'.
[  662.259633][T11153] 9pnet_fd: Insufficient options for proto=fd
[  662.812618][T11165] FAULT_INJECTION: forcing a failure.
[  662.812618][T11165] name failslab, interval 1, probability 0, space 0, times 0
[  662.825594][T11165] CPU: 0 UID: 0 PID: 11165 Comm: syz.1.1432 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  662.825619][T11165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  662.825631][T11165] Call Trace:
[  662.825640][T11165]  <TASK>
[  662.825648][T11165]  dump_stack_lvl+0x189/0x250
[  662.825676][T11165]  ? __pfx____ratelimit+0x10/0x10
[  662.825696][T11165]  ? __pfx_dump_stack_lvl+0x10/0x10
[  662.825721][T11165]  ? __pfx__printk+0x10/0x10
[  662.825750][T11165]  ? __pfx___might_resched+0x10/0x10
[  662.825776][T11165]  should_fail_ex+0x414/0x560
[  662.825802][T11165]  should_failslab+0xa8/0x100
[  662.825824][T11165]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  662.825844][T11165]  ? __alloc_skb+0x112/0x2d0
[  662.825873][T11165]  __alloc_skb+0x112/0x2d0
[  662.825904][T11165]  netlink_sendmsg+0x5c6/0xb30
[  662.825949][T11165]  ? __pfx_netlink_sendmsg+0x10/0x10
[  662.825983][T11165]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  662.826002][T11165]  ? __pfx_netlink_sendmsg+0x10/0x10
[  662.826030][T11165]  __sock_sendmsg+0x21c/0x270
[  662.826058][T11165]  ____sys_sendmsg+0x505/0x830
[  662.826094][T11165]  ? __pfx_____sys_sendmsg+0x10/0x10
[  662.826132][T11165]  ? import_iovec+0x74/0xa0
[  662.826164][T11165]  ___sys_sendmsg+0x21f/0x2a0
[  662.826196][T11165]  ? __pfx____sys_sendmsg+0x10/0x10
[  662.826265][T11165]  ? __fget_files+0x2a/0x420
[  662.826287][T11165]  ? __fget_files+0x3a0/0x420
[  662.826320][T11165]  __x64_sys_sendmsg+0x19b/0x260
[  662.826352][T11165]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  662.826393][T11165]  ? __pfx_ksys_write+0x10/0x10
[  662.826409][T11165]  ? rcu_is_watching+0x15/0xb0
[  662.826434][T11165]  ? do_syscall_64+0xbe/0x3b0
[  662.826460][T11165]  do_syscall_64+0xfa/0x3b0
[  662.826480][T11165]  ? lockdep_hardirqs_on+0x9c/0x150
[  662.826500][T11165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.826519][T11165]  ? clear_bhb_loop+0x60/0xb0
[  662.826543][T11165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.826562][T11165] RIP: 0033:0x7face8b8ebe9
[  662.826579][T11165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.826597][T11165] RSP: 002b:00007face9a60038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  662.826618][T11165] RAX: ffffffffffffffda RBX: 00007face8db6090 RCX: 00007face8b8ebe9
[  662.826633][T11165] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000008
[  662.826646][T11165] RBP: 00007face9a60090 R08: 0000000000000000 R09: 0000000000000000
[  662.826659][T11165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  662.826669][T11165] R13: 00007face8db6128 R14: 00007face8db6090 R15: 00007ffff0315578
[  662.826702][T11165]  </TASK>
[  663.091156][    C0] vkms_vblank_simulate: vblank timer overrun
[  663.561904][T11163] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1433'.
[  667.422835][T11194] Bluetooth: hci4: command 0x0405 tx timeout
[  667.888103][T11178] tipc: Resetting bearer <eth:vlan0>
[  667.912495][T11181] syzkaller0: entered promiscuous mode
[  667.918076][T11181] syzkaller0: entered allmulticast mode
[  670.295644][   T30] audit: type=1326 audit(1754689908.901:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  670.327542][   T30] audit: type=1326 audit(1754689908.901:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  670.357121][T11222] netlink: 204 bytes leftover after parsing attributes in process `syz.1.1446'.
[  670.366989][   T30] audit: type=1326 audit(1754689908.901:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  670.448970][   T30] audit: type=1326 audit(1754689908.901:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  671.233213][   T30] audit: type=1326 audit(1754689908.901:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  671.256021][   T30] audit: type=1326 audit(1754689908.931:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11221 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd38bf8ebe9 code=0x7ffc0000
[  671.277549][    C1] vkms_vblank_simulate: vblank timer overrun
[  671.831188][T11236] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1448'.
[  672.727251][T11242] tipc: Resetting bearer <eth:vlan0>
[  673.830878][T11257] Cannot find del_set index 0 as target
[  677.091326][   T30] audit: type=1326 audit(1754689915.681:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  677.430433][   T30] audit: type=1326 audit(1754689915.681:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  677.827499][   T30] audit: type=1326 audit(1754689915.721:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  678.037377][   T30] audit: type=1326 audit(1754689915.731:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  678.225902][T11296] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1463'.
[  678.401454][   T30] audit: type=1326 audit(1754689915.731:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  678.478857][T11279] fuse: Unknown parameter '�Hm�}���U���
[  678.478857][T11279] `%O���ز�}\�*G�
�!Ȇ;�ȤTW����55��S�� �Eyl��'
[  678.505035][   T30] audit: type=1326 audit(1754689915.731:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11276 comm="syz.4.1459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f552498ebe9 code=0x7ffc0000
[  679.189790][T11303] tipc: Resetting bearer <eth:vlan0>
[  679.472314][T11310] Cannot find del_set index 0 as target
[  680.217835][T11311] FAULT_INJECTION: forcing a failure.
[  680.217835][T11311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  680.231442][T11311] CPU: 0 UID: 0 PID: 11311 Comm: syz.1.1467 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  680.231469][T11311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  680.231481][T11311] Call Trace:
[  680.231488][T11311]  <TASK>
[  680.231493][T11311]  dump_stack_lvl+0x189/0x250
[  680.231511][T11311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  680.231532][T11311]  should_fail_ex+0x414/0x560
[  680.231546][T11311]  _copy_from_user+0x2d/0xb0
[  680.231561][T11311]  ___sys_sendmsg+0x158/0x2a0
[  680.231583][T11311]  ? __pfx____sys_sendmsg+0x10/0x10
[  680.231625][T11311]  __sys_sendmmsg+0x227/0x430
[  680.231643][T11311]  ? __pfx___sys_sendmmsg+0x10/0x10
[  680.231657][T11311]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  680.231683][T11311]  ? ksys_write+0x22a/0x250
[  680.231695][T11311]  ? __pfx_ksys_write+0x10/0x10
[  680.231707][T11311]  __x64_sys_sendmmsg+0xa0/0xc0
[  680.231724][T11311]  do_syscall_64+0xfa/0x3b0
[  680.231736][T11311]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.231746][T11311]  ? asm_sysvec_call_function_single+0x1a/0x20
[  680.231756][T11311]  ? clear_bhb_loop+0x60/0xb0
[  680.231768][T11311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.231785][T11311] RIP: 0033:0x7face8b8ebe9
[  680.231796][T11311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  680.231804][T11311] RSP: 002b:00007face9a60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  680.231816][T11311] RAX: ffffffffffffffda RBX: 00007face8db6090 RCX: 00007face8b8ebe9
[  680.231824][T11311] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000006
[  680.231831][T11311] RBP: 00007face9a60090 R08: 0000000000000000 R09: 0000000000000000
[  680.231837][T11311] R10: 0000000000000bb8 R11: 0000000000000246 R12: 0000000000000001
[  680.231844][T11311] R13: 00007face8db6128 R14: 00007face8db6090 R15: 00007ffff0315578
[  680.231859][T11311]  </TASK>
[  680.428747][    C0] vkms_vblank_simulate: vblank timer overrun
[  685.172756][T11361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1477'.
[  685.258931][T11365] Cannot find del_set index 0 as target
[  685.825974][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  685.832419][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  685.997576][T11370] netlink: 'syz.1.1481': attribute type 21 has an invalid length.
[  686.050151][T11371] program syz.4.1480 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  689.146715][T11394] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  689.159467][T11394] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1487'.
[  689.851535][T11409] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1490'.
[  690.490415][T11415] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1492'.
[  691.461387][  T977] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  692.251334][  T977] usb 4-1: Using ep0 maxpacket: 16
[  692.333887][  T977] usb 4-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 0.03
[  692.353734][  T977] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  692.387335][  T977] usb 4-1: SerialNumber: syz
[  692.427629][  T977] usb 4-1: config 0 descriptor??
[  693.991526][T11049] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  694.162264][T11049] usb 1-1: device descriptor read/64, error -71
[  694.446274][T11447] tipc: Resetting bearer <eth:vlan0>
[  694.660617][T11049] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  694.678267][   T30] audit: type=1326 audit(1754689933.281:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11420 comm="syz.3.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d4298ebe9 code=0x7fc00000
[  695.251680][T11049] usb 1-1: device descriptor read/64, error -71
[  695.273844][  T977] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  695.315229][  T977] usb 4-1: Detected SIO
[  695.338778][  T977] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  695.361740][T11049] usb usb1-port1: attempt power cycle
[  695.365424][  T977] usb 4-1: USB disconnect, device number 12
[  695.397363][  T977] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  695.419924][  T977] ftdi_sio 4-1:0.0: device disconnected
[  695.632224][T11458] pim6reg: entered allmulticast mode
[  695.642456][T11458] pim6reg: left allmulticast mode
[  695.761379][T11049] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  695.831807][T11049] usb 1-1: device descriptor read/8, error -71
[  696.001435][T11465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1505'.
[  696.411362][T11049] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  696.467951][T11049] usb 1-1: device descriptor read/8, error -71
[  696.601522][T11049] usb usb1-port1: unable to enumerate USB device
[  700.096852][T11495] netlink: 'syz.2.1513': attribute type 29 has an invalid length.
[  700.152739][T11495] netlink: 'syz.2.1513': attribute type 29 has an invalid length.
[  701.219103][T11503] FAULT_INJECTION: forcing a failure.
[  701.219103][T11503] name failslab, interval 1, probability 0, space 0, times 0
[  701.232283][T11503] CPU: 0 UID: 0 PID: 11503 Comm: syz.1.1515 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  701.232308][T11503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  701.232320][T11503] Call Trace:
[  701.232327][T11503]  <TASK>
[  701.232332][T11503]  dump_stack_lvl+0x189/0x250
[  701.232348][T11503]  ? __pfx____ratelimit+0x10/0x10
[  701.232360][T11503]  ? __pfx_dump_stack_lvl+0x10/0x10
[  701.232378][T11503]  ? __pfx__printk+0x10/0x10
[  701.232407][T11503]  ? __pfx___might_resched+0x10/0x10
[  701.232426][T11503]  ? fs_reclaim_acquire+0x7d/0x100
[  701.232452][T11503]  should_fail_ex+0x414/0x560
[  701.232466][T11503]  should_failslab+0xa8/0x100
[  701.232479][T11503]  kmem_cache_alloc_noprof+0x73/0x3c0
[  701.232488][T11503]  ? alloc_empty_file+0x55/0x1d0
[  701.232503][T11503]  alloc_empty_file+0x55/0x1d0
[  701.232516][T11503]  path_openat+0x107/0x3830
[  701.232533][T11503]  ? rcu_is_watching+0x15/0xb0
[  701.232545][T11503]  ? trace_sched_exit_tp+0x38/0x120
[  701.232561][T11503]  ? __schedule+0x16c8/0x4c90
[  701.232579][T11503]  ? preempt_schedule_common+0x83/0xd0
[  701.232591][T11503]  ? __pfx_path_openat+0x10/0x10
[  701.232605][T11503]  ? __pfx___schedule+0x10/0x10
[  701.232614][T11503]  ? rcu_is_watching+0x15/0xb0
[  701.232627][T11503]  ? irqentry_exit+0x74/0x90
[  701.232644][T11503]  do_filp_open+0x1fa/0x410
[  701.232660][T11503]  ? __pfx_do_filp_open+0x10/0x10
[  701.232673][T11503]  ? preempt_schedule_common+0x83/0xd0
[  701.232694][T11503]  ? _raw_spin_unlock+0x3f/0x50
[  701.232709][T11503]  ? alloc_fd+0x64c/0x6c0
[  701.232725][T11503]  do_sys_openat2+0x121/0x1c0
[  701.232741][T11503]  ? __pfx_do_sys_openat2+0x10/0x10
[  701.232754][T11503]  ? ksys_write+0x22a/0x250
[  701.232765][T11503]  ? __pfx_ksys_write+0x10/0x10
[  701.232776][T11503]  __x64_sys_openat+0x138/0x170
[  701.232792][T11503]  do_syscall_64+0xfa/0x3b0
[  701.232805][T11503]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.232814][T11503]  ? asm_sysvec_call_function_single+0x1a/0x20
[  701.232824][T11503]  ? clear_bhb_loop+0x60/0xb0
[  701.232836][T11503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.232845][T11503] RIP: 0033:0x7face8b8ebe9
[  701.232855][T11503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.232864][T11503] RSP: 002b:00007face9a60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  701.232881][T11503] RAX: ffffffffffffffda RBX: 00007face8db6090 RCX: 00007face8b8ebe9
[  701.232895][T11503] RDX: 00000000000c2d41 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  701.232902][T11503] RBP: 00007face9a60090 R08: 0000000000000000 R09: 0000000000000000
[  701.232908][T11503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  701.232914][T11503] R13: 00007face8db6128 R14: 00007face8db6090 R15: 00007ffff0315578
[  701.232930][T11503]  </TASK>
[  703.928251][T11519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1517'.
[  704.444736][T11530] IPVS: set_ctl: invalid protocol: 44 172.20.20.36:0
[  704.806560][T11535] FAULT_INJECTION: forcing a failure.
[  704.806560][T11535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  704.819796][T11535] CPU: 0 UID: 0 PID: 11535 Comm: syz.3.1522 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  704.819820][T11535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  704.819832][T11535] Call Trace:
[  704.819843][T11535]  <TASK>
[  704.819852][T11535]  dump_stack_lvl+0x189/0x250
[  704.819879][T11535]  ? __pfx____ratelimit+0x10/0x10
[  704.819900][T11535]  ? __pfx_dump_stack_lvl+0x10/0x10
[  704.819922][T11535]  ? __pfx__printk+0x10/0x10
[  704.819960][T11535]  should_fail_ex+0x414/0x560
[  704.819986][T11535]  _copy_to_user+0x31/0xb0
[  704.820015][T11535]  simple_read_from_buffer+0xe1/0x170
[  704.820041][T11535]  proc_fail_nth_read+0x1df/0x250
[  704.820068][T11535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  704.820096][T11535]  ? rw_verify_area+0x258/0x650
[  704.820124][T11535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  704.820149][T11535]  vfs_read+0x200/0x980
[  704.820191][T11535]  ? __pfx___mutex_lock+0x10/0x10
[  704.820213][T11535]  ? __pfx_vfs_read+0x10/0x10
[  704.820244][T11535]  ? __fget_files+0x2a/0x420
[  704.820271][T11535]  ? __fget_files+0x3a0/0x420
[  704.820291][T11535]  ? __fget_files+0x2a/0x420
[  704.820322][T11535]  ksys_read+0x145/0x250
[  704.820342][T11535]  ? __pfx_ksys_read+0x10/0x10
[  704.820366][T11535]  ? do_syscall_64+0xbe/0x3b0
[  704.820392][T11535]  do_syscall_64+0xfa/0x3b0
[  704.820414][T11535]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  704.820432][T11535]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  704.820450][T11535]  ? clear_bhb_loop+0x60/0xb0
[  704.820474][T11535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  704.820493][T11535] RIP: 0033:0x7f6d4298d5fc
[  704.820510][T11535] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  704.820528][T11535] RSP: 002b:00007f6d4389a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  704.820548][T11535] RAX: ffffffffffffffda RBX: 00007f6d42bb6180 RCX: 00007f6d4298d5fc
[  704.820562][T11535] RDX: 000000000000000f RSI: 00007f6d4389a0a0 RDI: 0000000000000007
[  704.820575][T11535] RBP: 00007f6d4389a090 R08: 0000000000000000 R09: 0000000000000000
[  704.820587][T11535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  704.820599][T11535] R13: 00007f6d42bb6218 R14: 00007f6d42bb6180 R15: 00007ffd374dd678
[  704.820632][T11535]  </TASK>
[  706.918753][T11551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1528'.
[  709.051949][T11563] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1530'.
[  710.328863][T11578] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  713.319328][T11608] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1541'.
[  717.661395][ T5899] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  718.031388][ T5899] usb 1-1: Using ep0 maxpacket: 32
[  718.177133][ T5899] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  718.211334][ T5899] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  718.231733][ T5899] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  718.250379][ T5899] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[  719.066170][ T5899] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  719.080636][ T5899] usb 1-1: config 0 interface 0 has no altsetting 0
[  719.090956][ T5899] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  719.111421][ T5899] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  719.119979][ T5899] usb 1-1: Product: syz
[  719.141282][ T5899] usb 1-1: Manufacturer: syz
[  719.145933][ T5899] usb 1-1: SerialNumber: syz
[  719.856299][ T5899] usb 1-1: config 0 descriptor??
[  719.996241][ T5899] usb 1-1: can't set config #0, error -71
[  720.108686][ T5899] usb 1-1: USB disconnect, device number 13
[  722.198061][T11660] FAULT_INJECTION: forcing a failure.
[  722.198061][T11660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  722.321558][T11660] CPU: 1 UID: 0 PID: 11660 Comm: syz.0.1557 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  722.321588][T11660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  722.321600][T11660] Call Trace:
[  722.321608][T11660]  <TASK>
[  722.321616][T11660]  dump_stack_lvl+0x189/0x250
[  722.321644][T11660]  ? __pfx____ratelimit+0x10/0x10
[  722.321673][T11660]  ? __pfx_dump_stack_lvl+0x10/0x10
[  722.321694][T11660]  ? __pfx__printk+0x10/0x10
[  722.321718][T11660]  ? __might_fault+0xb0/0x130
[  722.321749][T11660]  should_fail_ex+0x414/0x560
[  722.321774][T11660]  _copy_from_user+0x2d/0xb0
[  722.321802][T11660]  ___sys_recvmsg+0x12e/0x510
[  722.321827][T11660]  ? __pfx____sys_recvmsg+0x10/0x10
[  722.321872][T11660]  ? __fget_files+0x3a0/0x420
[  722.321905][T11660]  do_recvmmsg+0x307/0x770
[  722.321932][T11660]  ? __pfx_do_recvmmsg+0x10/0x10
[  722.321964][T11660]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  722.322005][T11660]  __x64_sys_recvmmsg+0x190/0x240
[  722.322028][T11660]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  722.322044][T11660]  ? rcu_is_watching+0x15/0xb0
[  722.322070][T11660]  ? do_syscall_64+0xbe/0x3b0
[  722.322095][T11660]  do_syscall_64+0xfa/0x3b0
[  722.322114][T11660]  ? lockdep_hardirqs_on+0x9c/0x150
[  722.322133][T11660]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.322152][T11660]  ? clear_bhb_loop+0x60/0xb0
[  722.322175][T11660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.322193][T11660] RIP: 0033:0x7f3782d8ebe9
[  722.322209][T11660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  722.322226][T11660] RSP: 002b:00007f3783cc4038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  722.322245][T11660] RAX: ffffffffffffffda RBX: 00007f3782fb5fa0 RCX: 00007f3782d8ebe9
[  722.322260][T11660] RDX: 0000000000000001 RSI: 0000200000000480 RDI: 0000000000000003
[  722.322272][T11660] RBP: 00007f3783cc4090 R08: 0000000000000000 R09: 0000000000000000
[  722.322284][T11660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  722.322294][T11660] R13: 00007f3782fb6038 R14: 00007f3782fb5fa0 R15: 00007fff7bb7e068
[  722.322322][T11660]  </TASK>
[  722.325354][T11667] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  722.496158][    C1] vkms_vblank_simulate: vblank timer overrun
[  723.623091][T11681] random: crng reseeded on system resumption
[  723.844372][T11681] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1562'.
[  729.577636][T11720] FAULT_INJECTION: forcing a failure.
[  729.577636][T11720] name failslab, interval 1, probability 0, space 0, times 0
[  729.590994][T11720] CPU: 1 UID: 0 PID: 11720 Comm: syz.3.1571 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  729.591028][T11720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  729.591041][T11720] Call Trace:
[  729.591050][T11720]  <TASK>
[  729.591058][T11720]  dump_stack_lvl+0x189/0x250
[  729.591086][T11720]  ? __pfx____ratelimit+0x10/0x10
[  729.591107][T11720]  ? __pfx_dump_stack_lvl+0x10/0x10
[  729.591129][T11720]  ? __pfx__printk+0x10/0x10
[  729.591156][T11720]  ? fs_reclaim_acquire+0x7d/0x100
[  729.591190][T11720]  should_fail_ex+0x414/0x560
[  729.591216][T11720]  should_failslab+0xa8/0x100
[  729.591239][T11720]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  729.591258][T11720]  ? smk_parse_smack+0x1b1/0x1f0
[  729.591281][T11720]  ? lockdep_hardirqs_on+0x9c/0x150
[  729.591304][T11720]  kstrndup+0x80/0x160
[  729.591330][T11720]  smk_parse_smack+0x1b1/0x1f0
[  729.591361][T11720]  smk_import_entry+0x20/0x1d0
[  729.591398][T11720]  smk_fill_rule+0xb6/0x630
[  729.591432][T11720]  smk_parse_long_rule+0xbc3/0xee0
[  729.591469][T11720]  ? __pfx_smk_parse_long_rule+0x10/0x10
[  729.591515][T11720]  smk_write_rules_list+0x239/0x370
[  729.591556][T11720]  ? __pfx_smk_write_change_rule+0x10/0x10
[  729.591582][T11720]  vfs_write+0x27e/0xa90
[  729.591611][T11720]  ? __pfx_vfs_write+0x10/0x10
[  729.591632][T11720]  ? __fget_files+0x2a/0x420
[  729.591658][T11720]  ? __fget_files+0x3a0/0x420
[  729.591679][T11720]  ? __fget_files+0x2a/0x420
[  729.591710][T11720]  ksys_write+0x145/0x250
[  729.591732][T11720]  ? __pfx_ksys_write+0x10/0x10
[  729.591764][T11720]  do_syscall_64+0xfa/0x3b0
[  729.591788][T11720]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.591805][T11720]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  729.591824][T11720]  ? clear_bhb_loop+0x60/0xb0
[  729.591848][T11720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.591867][T11720] RIP: 0033:0x7f6d4298ebe9
[  729.591884][T11720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.591901][T11720] RSP: 002b:00007f6d4389a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  729.591922][T11720] RAX: ffffffffffffffda RBX: 00007f6d42bb6180 RCX: 00007f6d4298ebe9
[  729.591937][T11720] RDX: 0000000000000111 RSI: 0000200000000140 RDI: 000000000000000a
[  729.591949][T11720] RBP: 00007f6d4389a090 R08: 0000000000000000 R09: 0000000000000000
[  729.591962][T11720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  729.591973][T11720] R13: 00007f6d42bb6218 R14: 00007f6d42bb6180 R15: 00007ffd374dd678
[  729.592007][T11720]  </TASK>
[  730.112297][T11722] FAULT_INJECTION: forcing a failure.
[  730.112297][T11722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  730.128971][T11722] CPU: 1 UID: 0 PID: 11722 Comm: syz.4.1551 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  730.128988][T11722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  730.128995][T11722] Call Trace:
[  730.128999][T11722]  <TASK>
[  730.129004][T11722]  dump_stack_lvl+0x189/0x250
[  730.129021][T11722]  ? __pfx____ratelimit+0x10/0x10
[  730.129033][T11722]  ? __pfx_dump_stack_lvl+0x10/0x10
[  730.129044][T11722]  ? __pfx__printk+0x10/0x10
[  730.129057][T11722]  ? __might_fault+0xb0/0x130
[  730.129073][T11722]  should_fail_ex+0x414/0x560
[  730.129088][T11722]  _copy_from_user+0x2d/0xb0
[  730.129103][T11722]  load_msg+0x1f5/0x3b0
[  730.129122][T11722]  do_msgsnd+0x19a/0x13d0
[  730.129147][T11722]  ? __might_fault+0xb0/0x130
[  730.129157][T11722]  ? fput+0xa0/0xd0
[  730.129175][T11722]  ? __pfx_do_msgsnd+0x10/0x10
[  730.129193][T11722]  ? __might_fault+0xb0/0x130
[  730.129204][T11722]  ? __x64_sys_msgsnd+0xee/0x120
[  730.129222][T11722]  do_syscall_64+0xfa/0x3b0
[  730.129232][T11722]  ? lockdep_hardirqs_on+0x9c/0x150
[  730.129243][T11722]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.129253][T11722]  ? clear_bhb_loop+0x60/0xb0
[  730.129266][T11722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.129275][T11722] RIP: 0033:0x7f552498ebe9
[  730.129285][T11722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  730.129294][T11722] RSP: 002b:00007f5525718038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[  730.129306][T11722] RAX: ffffffffffffffda RBX: 00007f5524bb5fa0 RCX: 00007f552498ebe9
[  730.129314][T11722] RDX: 0000000000002000 RSI: 0000200000000300 RDI: 0000000000000000
[  730.129320][T11722] RBP: 00007f5525718090 R08: 0000000000000000 R09: 0000000000000000
[  730.129327][T11722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  730.129333][T11722] R13: 00007f5524bb6038 R14: 00007f5524bb5fa0 R15: 00007ffe73f1de88
[  730.129349][T11722]  </TASK>
[  730.676001][T11726] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  731.145493][T11049] usb 4-1: new low-speed USB device number 13 using dummy_hcd
[  731.313454][T11049] usb 4-1: descriptor type invalid, skip
[  731.319424][T11049] usb 4-1: No LPM exit latency info found, disabling LPM.
[  731.352541][T11049] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  731.376631][T11049] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  732.373529][T11742] syz.4.1580 (11742): drop_caches: 2
[  732.545139][T11049] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  732.590011][T11049] usb 4-1: string descriptor 0 read error: -22
[  732.730688][T11049] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  732.795137][T11049] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.859850][T11049] usb 4-1: 0:2 : does not exist
[  733.082338][T11752] loop7: detected capacity change from 0 to 7
[  733.089235][T11049] usb 4-1: USB disconnect, device number 13
[  733.110957][    C1] blk_print_req_error: 5 callbacks suppressed
[  733.110970][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.126443][    C1] buffer_io_error: 1258 callbacks suppressed
[  733.126453][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  733.164251][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.173520][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  733.274855][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.284106][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  733.312123][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.321325][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  733.329933][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.339124][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  733.951268][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  733.960453][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  734.018851][T11752] ldm_validate_partition_table(): Disk read failed.
[  734.064013][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  734.073263][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  734.077233][T11756] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  734.094262][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  734.103457][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  734.138885][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  734.148313][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  734.161279][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  734.170632][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  734.178710][T11752] Dev loop7: unable to read RDB block 0
[  734.420743][T11752]  loop7: unable to read partition table
[  734.426836][T11752] loop7: partition table beyond EOD, truncated
[  734.436722][T11752] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  736.466023][T11777] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1588'.
[  736.733302][T11785] veth0_vlan: entered allmulticast mode
[  736.753751][T11785] tipc: Resetting bearer <eth:vlan0>
[  738.387047][T11799] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  738.923033][T11808] FAULT_INJECTION: forcing a failure.
[  738.923033][T11808] name failslab, interval 1, probability 0, space 0, times 0
[  739.055477][T11808] CPU: 1 UID: 0 PID: 11808 Comm: syz.3.1595 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  739.055527][T11808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  739.055550][T11808] Call Trace:
[  739.055565][T11808]  <TASK>
[  739.055581][T11808]  dump_stack_lvl+0x189/0x250
[  739.055612][T11808]  ? __pfx____ratelimit+0x10/0x10
[  739.055634][T11808]  ? __pfx_dump_stack_lvl+0x10/0x10
[  739.055655][T11808]  ? __pfx__printk+0x10/0x10
[  739.055682][T11808]  ? __pfx___might_resched+0x10/0x10
[  739.055703][T11808]  ? fs_reclaim_acquire+0x7d/0x100
[  739.055731][T11808]  should_fail_ex+0x414/0x560
[  739.055758][T11808]  should_failslab+0xa8/0x100
[  739.055779][T11808]  kmem_cache_alloc_noprof+0x73/0x3c0
[  739.055798][T11808]  ? getname_flags+0xb8/0x540
[  739.055824][T11808]  getname_flags+0xb8/0x540
[  739.055858][T11808]  __x64_sys_rename+0x5d/0x90
[  739.055880][T11808]  do_syscall_64+0xfa/0x3b0
[  739.055900][T11808]  ? lockdep_hardirqs_on+0x9c/0x150
[  739.055920][T11808]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.055940][T11808]  ? clear_bhb_loop+0x60/0xb0
[  739.055964][T11808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.055982][T11808] RIP: 0033:0x7f6d4298ebe9
[  739.055999][T11808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.056016][T11808] RSP: 002b:00007f6d438bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  739.056036][T11808] RAX: ffffffffffffffda RBX: 00007f6d42bb6090 RCX: 00007f6d4298ebe9
[  739.056052][T11808] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000200000000100
[  739.056065][T11808] RBP: 00007f6d438bb090 R08: 0000000000000000 R09: 0000000000000000
[  739.056077][T11808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  739.056089][T11808] R13: 00007f6d42bb6128 R14: 00007f6d42bb6090 R15: 00007ffd374dd678
[  739.056121][T11808]  </TASK>
[  740.890458][T11822] random: crng reseeded on system resumption
[  741.121739][T11823] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1600'.
[  741.500072][T11827] ------------[ cut here ]------------
[  741.506142][T11827] WARNING: CPU: 0 PID: 11827 at ./include/linux/memcontrol.h:371 folio_memcg+0x1a8/0x310
[  741.506412][T11830] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  741.516123][T11827] Modules linked in:
[  741.516193][T11827] CPU: 0 UID: 0 PID: 11827 Comm: syz.2.1602 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  741.516220][T11827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  741.516235][T11827] RIP: 0010:folio_memcg+0x1a8/0x310
[  741.516266][T11827] Code: 80 3c 28 00 74 08 4c 89 f7 e8 74 ca 1b 00 4d 8b 36 4c 89 f0 5b 41 5c 41 5d 41 5e 41 5f 5d e9 7f 20 65 09 cc e8 19 e3 bb ff 90 <0f> 0b 90 eb c5 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c fe fe ff ff
[  741.516285][T11827] RSP: 0018:ffffc900034b7250 EFLAGS: 00010287
[  741.516305][T11827] RAX: ffffffff820442a7 RBX: 0000000000000000 RCX: 0000000000080000
[  741.516321][T11827] RDX: ffffc9000cab2000 RSI: 0000000000041b0b RDI: 0000000000041b0c
[  741.516336][T11827] RBP: 0000000000000000 R08: ffffea0000d15987 R09: 1ffffd40001a2b30
[  741.516350][T11827] R10: dffffc0000000000 R11: fffff940001a2b31 R12: ffffea0000d159b0
[  741.516367][T11827] R13: dffffc0000000000 R14: ffff888079221500 R15: 0000000000000002
[  741.516383][T11827] FS:  00007fd38ce3f6c0(0000) GS:ffff888125c57000(0000) knlGS:0000000000000000
[  741.516403][T11827] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  741.516419][T11827] CR2: 0000000000000000 CR3: 000000007e2e0000 CR4: 00000000003526f0
[  741.516438][T11827] Call Trace:
[  741.516451][T11827]  <TASK>
[  741.516467][T11827]  workingset_activation+0x5f/0x4a0
[  741.516494][T11827]  ? folio_mark_accessed+0x361/0x4a0
[  741.516527][T11827]  folio_mark_accessed+0x3b5/0x4a0
[  741.516567][T11827]  kvm_release_page_clean+0x9a/0xe0
[  741.516595][T11827]  kvm_tdp_page_fault+0x2dd/0x370
[  741.516629][T11827]  kvm_mmu_do_page_fault+0x2c5/0x640
[  741.516658][T11827]  ? vmx_vcpu_run+0xd8b/0x25d0
[  741.516683][T11827]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  741.693575][T11827]  ? vmx_handle_exit_irqoff+0x29e/0xad0
[  741.699478][T11827]  ? __pfx_current_save_fsgs+0x10/0x10
[  741.705070][T11827]  kvm_mmu_page_fault+0x22f/0xb70
[  741.710094][T11827]  ? __pfx_handle_ept_violation+0x10/0x10
[  741.715851][T11827]  vmx_handle_exit+0x1090/0x18a0
[  741.720773][T11827]  ? vcpu_run+0x361c/0x6f70
[  741.725300][T11827]  ? rcu_is_watching+0x15/0xb0
[  741.730056][T11827]  vcpu_run+0x432e/0x6f70
[  741.734436][T11827]  ? vcpu_run+0x361c/0x6f70
[  741.738960][T11827]  ? __pfx_vcpu_run+0x10/0x10
[  741.743740][T11827]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  741.749464][T11827]  ? rcu_is_watching+0x15/0xb0
[  741.754278][T11827]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  741.759823][T11827]  ? __bpf_trace_contention_end+0xdc/0x130
[  741.765659][T11827]  ? __pfx___bpf_trace_contention_end+0x10/0x10
[  741.772029][T11827]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  741.777741][T11827]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  741.783742][T11827]  ? rcu_is_watching+0x15/0xb0
[  741.788510][T11827]  ? trace_contention_end+0x39/0x120
[  741.793858][T11827]  ? __mutex_lock+0x330/0xe80
[  741.798544][T11827]  ? kasan_quarantine_put+0xdd/0x220
[  741.804168][T11827]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  741.809018][T11827]  ? __pfx___mutex_lock+0x10/0x10
[  741.814217][T11827]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  741.819844][T11827]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  741.825554][T11827]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  741.831574][T11827]  kvm_vcpu_ioctl+0x95c/0xe90
[  741.836257][T11827]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  741.841476][T11827]  ? __lock_acquire+0xab9/0xd20
[  741.846325][T11827]  ? __asan_memset+0x22/0x50
[  741.850939][T11827]  ? smack_file_ioctl+0x302/0x340
[  741.856109][T11827]  ? __pfx_smack_file_ioctl+0x10/0x10
[  741.861521][T11827]  ? __fget_files+0x2a/0x420
[  741.866112][T11827]  ? __fget_files+0x3a0/0x420
[  741.870782][T11827]  ? __fget_files+0x2a/0x420
[  741.875426][T11827]  ? bpf_lsm_file_ioctl+0x9/0x20
[  741.880361][T11827]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  741.885598][T11827]  __se_sys_ioctl+0xfc/0x170
[  741.890181][T11827]  do_syscall_64+0xfa/0x3b0
[  741.894720][T11827]  ? lockdep_hardirqs_on+0x9c/0x150
[  741.899914][T11827]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.906329][T11827]  ? clear_bhb_loop+0x60/0xb0
[  741.910999][T11827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.917053][T11827] RIP: 0033:0x7fd38bf8ebe9
[  741.921499][T11827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.941162][T11827] RSP: 002b:00007fd38ce3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  741.949606][T11827] RAX: ffffffffffffffda RBX: 00007fd38c1b5fa0 RCX: 00007fd38bf8ebe9
[  741.957728][T11827] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000a
[  741.965729][T11827] RBP: 00007fd38c011e19 R08: 0000000000000000 R09: 0000000000000000
[  741.974012][T11827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.982158][T11827] R13: 00007fd38c1b6038 R14: 00007fd38c1b5fa0 R15: 00007ffd84053128
[  741.990145][T11827]  </TASK>
[  741.993239][T11827] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  742.000535][T11827] CPU: 0 UID: 0 PID: 11827 Comm: syz.2.1602 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  742.010774][T11827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  742.020923][T11827] Call Trace:
[  742.024244][T11827]  <TASK>
[  742.027174][T11827]  dump_stack_lvl+0x99/0x250
[  742.031814][T11827]  ? __asan_memcpy+0x40/0x70
[  742.036411][T11827]  ? __pfx_dump_stack_lvl+0x10/0x10
[  742.041692][T11827]  ? __pfx__printk+0x10/0x10
[  742.046285][T11827]  panic+0x2db/0x790
[  742.050173][T11827]  ? __pfx_panic+0x10/0x10
[  742.054587][T11827]  __warn+0x31b/0x4b0
[  742.058579][T11827]  ? folio_memcg+0x1a8/0x310
[  742.063213][T11827]  ? folio_memcg+0x1a8/0x310
[  742.068148][T11827]  report_bug+0x2be/0x4f0
[  742.072581][T11827]  ? folio_memcg+0x1a8/0x310
[  742.077156][T11827]  ? folio_memcg+0x1a8/0x310
[  742.081732][T11827]  ? folio_memcg+0x1aa/0x310
[  742.086310][T11827]  handle_bug+0x84/0x160
[  742.090547][T11827]  exc_invalid_op+0x1a/0x50
[  742.095038][T11827]  asm_exc_invalid_op+0x1a/0x20
[  742.099873][T11827] RIP: 0010:folio_memcg+0x1a8/0x310
[  742.105057][T11827] Code: 80 3c 28 00 74 08 4c 89 f7 e8 74 ca 1b 00 4d 8b 36 4c 89 f0 5b 41 5c 41 5d 41 5e 41 5f 5d e9 7f 20 65 09 cc e8 19 e3 bb ff 90 <0f> 0b 90 eb c5 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c fe fe ff ff
[  742.124757][T11827] RSP: 0018:ffffc900034b7250 EFLAGS: 00010287
[  742.130813][T11827] RAX: ffffffff820442a7 RBX: 0000000000000000 RCX: 0000000000080000
[  742.138880][T11827] RDX: ffffc9000cab2000 RSI: 0000000000041b0b RDI: 0000000000041b0c
[  742.146840][T11827] RBP: 0000000000000000 R08: ffffea0000d15987 R09: 1ffffd40001a2b30
[  742.154824][T11827] R10: dffffc0000000000 R11: fffff940001a2b31 R12: ffffea0000d159b0
[  742.162784][T11827] R13: dffffc0000000000 R14: ffff888079221500 R15: 0000000000000002
[  742.170758][T11827]  ? folio_memcg+0x1a7/0x310
[  742.175358][T11827]  workingset_activation+0x5f/0x4a0
[  742.180628][T11827]  ? folio_mark_accessed+0x361/0x4a0
[  742.185920][T11827]  folio_mark_accessed+0x3b5/0x4a0
[  742.191024][T11827]  kvm_release_page_clean+0x9a/0xe0
[  742.196238][T11827]  kvm_tdp_page_fault+0x2dd/0x370
[  742.201261][T11827]  kvm_mmu_do_page_fault+0x2c5/0x640
[  742.206557][T11827]  ? vmx_vcpu_run+0xd8b/0x25d0
[  742.211325][T11827]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  742.217217][T11827]  ? vmx_handle_exit_irqoff+0x29e/0xad0
[  742.222753][T11827]  ? __pfx_current_save_fsgs+0x10/0x10
[  742.228202][T11827]  kvm_mmu_page_fault+0x22f/0xb70
[  742.233219][T11827]  ? __pfx_handle_ept_violation+0x10/0x10
[  742.239094][T11827]  vmx_handle_exit+0x1090/0x18a0
[  742.244028][T11827]  ? vcpu_run+0x361c/0x6f70
[  742.248528][T11827]  ? rcu_is_watching+0x15/0xb0
[  742.253294][T11827]  vcpu_run+0x432e/0x6f70
[  742.257627][T11827]  ? vcpu_run+0x361c/0x6f70
[  742.262144][T11827]  ? __pfx_vcpu_run+0x10/0x10
[  742.266810][T11827]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  742.272606][T11827]  ? rcu_is_watching+0x15/0xb0
[  742.277368][T11827]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  742.282900][T11827]  ? __bpf_trace_contention_end+0xdc/0x130
[  742.288688][T11827]  ? __pfx___bpf_trace_contention_end+0x10/0x10
[  742.294913][T11827]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  742.300616][T11827]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  742.306602][T11827]  ? rcu_is_watching+0x15/0xb0
[  742.311629][T11827]  ? trace_contention_end+0x39/0x120
[  742.316916][T11827]  ? __mutex_lock+0x330/0xe80
[  742.321585][T11827]  ? kasan_quarantine_put+0xdd/0x220
[  742.326890][T11827]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  742.331744][T11827]  ? __pfx___mutex_lock+0x10/0x10
[  742.336756][T11827]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  742.342373][T11827]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  742.348004][T11827]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  742.353971][T11827]  kvm_vcpu_ioctl+0x95c/0xe90
[  742.358636][T11827]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  742.363820][T11827]  ? __lock_acquire+0xab9/0xd20
[  742.368677][T11827]  ? __asan_memset+0x22/0x50
[  742.373255][T11827]  ? smack_file_ioctl+0x302/0x340
[  742.378264][T11827]  ? __pfx_smack_file_ioctl+0x10/0x10
[  742.383630][T11827]  ? __fget_files+0x2a/0x420
[  742.388225][T11827]  ? __fget_files+0x3a0/0x420
[  742.392882][T11827]  ? __fget_files+0x2a/0x420
[  742.397455][T11827]  ? bpf_lsm_file_ioctl+0x9/0x20
[  742.402379][T11827]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  742.407579][T11827]  __se_sys_ioctl+0xfc/0x170
[  742.412188][T11827]  do_syscall_64+0xfa/0x3b0
[  742.416682][T11827]  ? lockdep_hardirqs_on+0x9c/0x150
[  742.421868][T11827]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.427918][T11827]  ? clear_bhb_loop+0x60/0xb0
[  742.432582][T11827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.438458][T11827] RIP: 0033:0x7fd38bf8ebe9
[  742.442857][T11827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.462538][T11827] RSP: 002b:00007fd38ce3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  742.470951][T11827] RAX: ffffffffffffffda RBX: 00007fd38c1b5fa0 RCX: 00007fd38bf8ebe9
[  742.478921][T11827] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000a
[  742.486893][T11827] RBP: 00007fd38c011e19 R08: 0000000000000000 R09: 0000000000000000
[  742.494863][T11827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  742.502820][T11827] R13: 00007fd38c1b6038 R14: 00007fd38c1b5fa0 R15: 00007ffd84053128
[  742.511044][T11827]  </TASK>
[  742.514377][T11827] Kernel Offset: disabled
[  742.518758][T11827] Rebooting in 86400 seconds..