last executing test programs:

12.12160676s ago: executing program 0 (id=2082):
getpid()
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r1, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4004}, 0x4000)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0)
r3 = accept4$x25(r2, &(0x7f0000000180), &(0x7f00000001c0)=0x12, 0x80800)
ioctl$SOUND_MIXER_READ_STEREODEVS(r2, 0x80044dfb, &(0x7f0000000200))
getsockopt$inet6_int(r2, 0x29, 0x4a, &(0x7f0000000240), &(0x7f0000000280)=0x4)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r2, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r4, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x4, 0x1b}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x66}]}, 0x34}, 0x1, 0x0, 0x0, 0x4044055}, 0x20000001)
getsockname$packet(r2, &(0x7f0000000480)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000004c0)=0x14)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000500)={{{@in=@local, @in6=@ipv4={""/10, ""/2, @initdev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@dev}}, &(0x7f0000000600)=0xe8)
sendmsg$nl_xfrm(r2, &(0x7f0000000880)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80001}, 0xc, &(0x7f0000000840)={&(0x7f0000000640)=@getsa={0x1d0, 0x12, 0x0, 0x70bd2a, 0x25dfdbfc, {@in=@local, 0x4d3, 0xa, 0x3c}, [@srcaddr={0x14, 0xd, @in=@local}, @sec_ctx={0xde, 0x8, {0xda, 0x8, 0x0, 0x3, 0xd2, "6ebae1a40b5a0667be7361c86f7e08df1e249159cd77b10e0f14977a838028f2b3a449281463caced0c6d226b9761503cabf41b6b44e8312ed79889817dbdfd92241f70ca68ce0995821b3bf1631dbeccca7f6b91610beebc1201fca37c6b4470744da3562be502365630c970097368d3db649e8c37b95a0d40927058a2640732edad994999bc80d45bccb264c310b6f77662627768206748da8b95d48467be18860bec3dde3ba4294cb916247c9c6389ebe56dab74073ce968510472c1ec2e8e68e8d3b6921cc5437a7edb998cc5fcf2b61"}}, @policy={0xac, 0x7, {{@in=@broadcast, @in6=@mcast2, 0x4e22, 0x0, 0x4e20, 0xb2, 0x0, 0x20, 0xa0, 0x5c, r6, r7}, {0x4, 0xffffffff, 0x5, 0x3, 0xfffffffffffffffb, 0x5a, 0x4, 0xc}, {0xa, 0x3ef, 0xffffffffffffff78, 0xe6}, 0xbf3, 0x6e6bba, 0x2, 0x1, 0x1, 0x2}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x4}]}, 0x1d0}, 0x1, 0x0, 0x0, 0x40}, 0x4080)
r8 = openat$nvram(0xffffffffffffff9c, &(0x7f00000008c0), 0x101001, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r8, 0x2, &(0x7f0000000900)={0x1, 0x7ff}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000002ac0)={0x0, <r9=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000002cc0)='./file0\x00', &(0x7f0000002d00)={0x0, 0x0, 0x0, 0x0, <r10=>0x0}, 0x0)
r11 = getegid()
getgroups(0x2, &(0x7f0000002e00)=[<r12=>0xee00, 0xffffffffffffffff])
stat(&(0x7f0000002fc0)='./file0\x00', &(0x7f0000003000)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
read$FUSE(r2, &(0x7f0000003080)={0x2020, 0x0, 0x0, 0x0, <r14=>0x0}, 0x2020)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000050c0)={0x0, 0x0, <r15=>0x0}, &(0x7f0000005100)=0xc)
getresgid(&(0x7f0000005480), &(0x7f00000054c0)=<r16=>0x0, &(0x7f0000005500))
read$FUSE(r2, &(0x7f0000005640)={0x2020, 0x0, 0x0, 0x0, <r17=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f0000000940)="e4c404dabcb49296533b0b188910dd48cd6e6f596495eaee73cd7cba101f6d70b67e9cb7acbdc5d96beacad7e500baa526ac2a92fd94786a4fbb5f6df97721ac09474fa62c963bf245f5961d89c254d27aafa6ea71f15c21199d1d8674605d2f03c919cea0199cb6cc14182d397775b03c444cba4d68a31f942ebaf9ed1a595e2d5abd404085c707ffebf5b8484e60a375204ffba2e10c737bef024b97c5903f557b361ee541dc9992236d5ad096e1567ee2f7fa36837f03df17a0ff034144e89ae60b8293122fc03b0a9f42a0b1842be901cdcb7910265051e486582387ebc09b88dfe85e6b9988548f6061550ee8cdd8facee56f062e5f851c6cbdb9a789314753488319dd7ed66f732519ddbc8070a29502d864e82a86f2d76d2ba1fe0d5cff2ff63863e646261e55ac511faf7ea49dc918e40051616b2848dfbe81294aff7a4fe2fc4feed5de836379c868a706f796893d4836a17a80736c153253647b173be0b936e464bde2d65edca8c5790eabf405dc0424c0a3e27449f3b0296b3c596b4f3a0115942705b18a77230b848c272a535e61c98e829489baabe83d55f6e990e87d3c8d03b9f3dcb3e050bc4d40c141483d76985916e50b327d4b775f1e668c075473d1ae22f4a7c846d098414fd56f147149425638e5533503ca3ce01a0d794d6c209b36422e8f21e6ab1559b5626c932cad971e24295b1398e8fdefc1a478a025e2ed0dbf1e8a02193974f98812f4836b7a2a795ac597ce5894093d141ff6a448da60f5e334560b86267fdc8a4e0ec9cb79ec5cad9a1d5fde6602459ac0dab7da4fe7ff114633c7eaa02cc49072a3895b22f3b51eedd6eaae30432623eabb9b63f9fcc937cdbb7f849e4230ad4886aa3a1ecbce5231b05319ecc833eac42a90bd88c1ea9a0ecc3e20d9b0e410620595e137958dfe76c110f8709a2c31956f7af98af70581c88920d735aa9127719937d2ee2dea24d390fa3954b0197d448a5b16de90350fe3f9235fb6c2ed105aabd8c1a2dc74ceb72361c233ebf29f7c302d55b1cf095e38d148ee4c189d838f2dc8480e02a7a9be1e916d7e70a5980bdda2b112ef73b7b64dc86d687fde4540876f9b5b666c109f352b021d7bb8e122f80005ff8d5a3996d03710f9468d68fd21c46fc2ea87463418dc64a9ae6b9c25d6eeb22ae485e4022a7ec03375eb1272baa99c4a55165f96629f84a447b6f6d8c6ec0c74ff718b8e61fc038bedc397c57fbd74c7e127502aa428aa269d508cac777de29d0412f571865ca4389c46d7888e4275beda2255c257abfca203fbe38bb2e89131266b6c82da3ad86118a023c81eacc2302c7185f4349f522b9a25a96251526eb653ebccfb326ca3fecebec4714a675f3b9e3417832cedd48822ff467baae5dad636037a7f419a84cdb87719cad08e8e1f40529de7f27c312ba10f871478ab04d612bb9b8671fee129cbb167da531b194a6b0559c3e8ca14e5c89e45d247dce26d098861b7677bfb9a5eca8d51376a4a4755c5408cccd3014dd9619ae24a8ee40af92db6d556fe87790264cd08b8039c494808af4015c267be2337908b13e08c8a571434e9997cd8f99dcfc8eb5b326737ee5a37235dba910cc902e38e69c897d5bdc45ba6362a4f2a02279e9b7543f6cefab2ac13d065c3a67d3607b13f69915cbdec68888a424c2867936e87150d0a85e74558436c886b1c873b8bde6382a5bffa643f4174b93d955b476e300d8c713a85a51c7c4e4b596b31b983ee0207f020253843e3c24dc6856d33614c118c1d6f64357a3b8f3a0b1ff9e90d8844c9198624c11a2707cab2dcbdc880204c4b9a32c0368f2b80ab53914349f6f23669f9a97f7be952e74881d7d3d8f8f0aa097fbfe2d73f851929afe68cfe47be7e8d1b1a51b4fd11d5bb1f19eb5df1c8aa939de7b2a3ecd466c37df81f9b6fabab6a158bbd00befc09832be69c697717fbae3bf2f768b36a149b9a54b17ff2c1eb6131f49227f1075a6db3d79a32000552d98b825d04f974839bd4fe959e4c758a286dda54dfb4d6919198399190a8c15adcb4e6721c83cb280fe693df5e6c347322810af672d3ba3f6f1459df1f010b9cd84a87e64a8ee36a1edfdbe5e7f3e6adef29764c7b16a3d9f383f5b20841123177c5cb437bfb9a8fbef0c98050bf1335a3bd44dad0b75476689b23c01cb12c3506fa45f8aab64ec65af54c02672bd272ba02ed1d8c32c19724a9225007ba415995a597de97fe1540bbd1a3d61954a3d685e0b5c25c57811f9ef7675ea6c8174c0dac5b6cef9bef8e06e6c02972726973af6aafa24d295dd347ed48aa8675c2c6c4b4819116c3a7c71d69f384e13bbff4de1c457b591f1be61036f81e3fd02a2b36a987bad2b4bdda5cbb8d3935144a9337e485af13d94f720a14d66263a705782671b6e30320ca99f84fbc70221cbba1e6660cfba7061c4701088363a749c867da596f652d963074d07cde5bc3ad6bd334ad084c42f1c50eb948e1028382692aa3be2428f98ee6089c99002bb9ba807bc2d383b7ac0486dddbe7575deed7d4204028a589331423dde184235f4bfb15aedbc6f4a937eb2a0704ef50937097385fe4f487923a09810cf18fdbdbd3f6bd484ab6cad0217ac06306413ed73866662ff4f444ea3d98e6bc2bbdf0506b2f0ce16693d01c8616a3b940e2a489aa92beb50de22ae63179aa0827d93092a078ab2cbf6d34fc7a69aaef48f53ccc7dd2e6c9739dfe1dbbde394595f6c3f766fd4eb74751fb3bb7e38978f976a6eb2afdbfde301e97289ce73f13f0033471d10e52708eb12eb6a200294dc4dfec25e839176addd95d74af111bb8e155ba035669352999cfeb975635f19e27a817105bc800445fb60a0c46b67460e2b8de804ff80c91977e1304dcd02078a1d52b91d47b155d2fa946a03a772d96c36fc6b6c9234bf6a24b1e175dee5393f13a6443615697edf863ac3f381b5649e6dfd43786574428885a4103a8dde2748fe642e31de527340e15fa46ccbc0a7f53cfc18e964b9c09ed38cf15a2910e4f584f7d0c02976413dbac8c7ad2d5dcfdae8ce40bb47d0579b7faffb719f211ceb24929384ce1d241d1574bcbfb8fa966c0eccb562120a86baa29605b743dfed73cfc556abf7d4a5b63a3bdead7a772905fba9f185d94706e48e0c0e552fabb870039adbbe794d516240f42457a49c747b7b763ce60a82ef5872255b694caf72befda74fad380956cd32089be4c140f4d59b5e14c25a65b3729e4661de596297f75b91a4128557133024e611624a66919c75d464dad901dfbc33ba5eda657bf2e9f47d36eff918a265011b14cae8d622410d09628f0cc2acb9b01b0ee30fd291092c8e258baf081e8e7ad823a918fe57f0d9012fb9e9e61ea0892cca64b5399e666ab2cb0666b6cdc3192c10329c56ff0d37baec908184640d9d056c466fddce1ecff2054a3eddce96d3f8c3ac19aff025e8d25fd2e0a2a1cf89c286d46bcf3afa7fec303bd874f9c60ef149df45bf929952c4dc099cc5eb1ef33bf44007b61b272034349aa1c497e5073c6f25efc03e26031cb4e3493c09584590cbcae2439103cf384e0a04671a29386401095cd0f8c22b2d2daf82238dcbdce5c41a1d58c09c4ffa00c49e5858c55c00d020525a91982a92bec507ac500e4310503174df42df8b3832e87c4fbfad521b054ffc20fa184594b2ad735bb23f53ca908829f2c8acd28e1f2f0f1118a82a50df6a5a55e0cc870483150c7811966fab15e0ab20786543922e776b3fb91944f32071e78ea5d562d61f6d3b1620e2850aa1ef17d59612b38be0f1f9f063fa386108edfbc46c3c1c136a7ace8166543ae423517a30e8fe9a07142e3553e3932f2e3f529503b477f688d594f59903cd53004b62f02aa527813395058fee03a5d7bae9219dd78103f560ff8c6af950079502bdfe56fcbb52c8a69173006d492edd024074c578afafc0749a50049b21cccf3e2b44e93a54b89771c9257437e9b807ab834e81365ecc36318fda0ba54ce6c16a55ffcc0acaa522f6412802691e90f27767f4ddf95ace55c81e3d6b6ba821d2bd8441ff7edfe7cf8541eab6da18e447ffaf51c91ed853faf7407994c283a6fe9c3f28cce24d3c6e2b27186c2fa8467c811d50573cccee49a87cf7793afbfcd393cd95edea789a52a9b61875ed7b320d99c58ac54a26a31c160afdc4a6ba1405375408c09ccd88ca319f1972dd0fd12c5e9d4c4fd221b1ffb9c10e1454047cbff992e48c337a2f2ac18f3c5bb36c1ce96332e7c9ef27ecd26dc41689f3eb90bb4401490f6be650f5fabb3e5a3990340058aec79e4722a43518797225b23cd2e153d6ac3400731f9bf0b072d50e6120be090d60f48bc3a78d638b65eb6f46ecf3fbfb9af49c6d8ef07adc31aea39a5413309045cffa20cdb1d7d98a641bb16421ce425a387efd19f693c222a48584d085d3b6d122f8410b14ed34c41e3495e5da1c09ccba99bb185dfbbbeec1ed97efb7cebc91736e7a67df1ce03eb4bc2dfb66ccc2823faa1c48267c90e94728e85e17d8e3c9b6e7f2be2f05473964281cdefcae11ef8d8de6f9213b451a0edd4ee474d4a1ae6eb169449d5d569b8194637f7c324f386cc83775542e212c3dcd6d496fe06b8a632218dcf54a2eca527ca5e1178b525abd6001eb78c36fce06edee13f1b431fd1d6ba80264607579bfc08dcb2823ba29087735bcab5946bed609456c0110b67bbff87879a86195a60bd8dbb420f97bfd9ba9a344db12691b43ef152ea7dd2d896285a062effff7473afeab2f56d12ef7428b5cf974535ae9f7bd3a9e66723317c2e81ecd9e90f3d6bdc642441eb118a01b77b0d88cee02b8fbf7ec9d916d5a9b031955f159edd5c7840ec4594a1dce889c4e03ad6e2044e297d35d2062ceb1a08b8a68620034b9fc44ff5abb0b9c2ad33896dfc24360fffe037d0c64ceabffdb0e55e1e1e061a4d9ec92843d70b40d7e80abfdc76fb465b2cb39dadff08992966529b6812dc125aa6739ba30ed3d764964ebcc7b76bb5294a7ddaeb38aed1627a4d4031df173c13474c0f1f35b55cd0289dae46233f379e846bf91aa29b56009fb3a3935766c575b02ea860555940542bf2a27a33b37ade16977f5b52763e145ecb38685b2af28f31f3f8fc062a9262cf558d6966dab2e5170cb32bb8805a8cd3e652f8211fdd5709c34802bf24d2e77184607aabe5f03c8d51ee6f05d1c121d2bdf2f3e4c1843fe2842d4d0998cf85f377098566c361f746b2e52e789ea539e82cd1bc57547baa90e59378eeea518fa1f78a45f05d2675e81d9dfe09ec27d4ddb7991e4af88351e22a962e680c878ba74c97e4fedac4066c774723c0c3d4580dd0b13ccd45fe32a7ee92531acb31bc2407171dcfdbeaa6cd34f87c209c0f73d2167a9eb80bde4c6ccc4acab519cdc93a59bdd2449369dd011b3a576c80cf42bb3e32f81bf8a9f0b7cba3f1dec68eddcc232af8d63a79885286023e5f5b11e7874d8072ced6a01f06e0f691d4079beaea5eeaeff59226d3fd0fd538174a49643989d5b4af6d324ee11fe865adf323ea1447421dadb58acab89e190814ca8b8ee7f80bfb01c53f51fa1a0d317f9c919adb6df240a40b52397dd3d617cbdc7066ad4d7d38846538d4a73164db9c8b8d19619dfb68018d021b25638e7adf121ccebe23e4632fff9a91524d41dee91b76288c58c522ed2b23121060f46f443eb537bc3cabad83dc363d4659bcdcc49cab5d1ced0b871fd29428afdcc1998005e53975ca8e38211a7baff6c3e0a836e24a43fc40129ed5c80bbf833c9296b574177eaf9977dbd95fe107a7295f1162ad57b84c7a1ba9f36154d5a35578a2fa78f0f530688b3cd5e8941ffbee2a111236c0a835431438dd8400ea9ce1cb2e40a66916382a90c90732a56d200d2e0aed731a7202e8d0f9f3e60cb7badb3a8a0004f3c29db8db9984722b3bf960fe6f62541eb7818a723fae7ba456e879765fa7bdb0ef6614d54d6a979a832c76cfdd425e3f3fbc3bb6e412374b4fe15a5c1c5cf6176100b4961c87dee50bde6e664d9eb2fa8d531e9d8f48203c28e341bc47afab3d49e67e4baae3716a06963eaefd0714c3a9afc5c11171e4d47cf02c87357a6ad5948aeda962db9a7c240e4355af83d2958731ff107e95479063cd93c1ea945eb727fb965e5c975819ede9196bfaa33c00beca477e76b59e654d7eee4d1fd536056488fdb7e8eef293fbc436a9926e2b3414fd48865b18c08f6254f46b4aae21aa93beafe2cc44bcd06cb6e7ab80480d6fa46ff5fdd45d7010a7895a649b8abcb5d5b134e0ebf19dd7c4825dcc19518fe2c0e6c8b1b2d3fdfb7ec2fc9f5dcb743ca50401fc41164e9baa36de0b4b6743a89a4d5004cbdf916b989301aee6278bc278c992ef655145852c6fcac0090f7fe12ca942d144d212a99da9f8767a182a40e1865f199e5588713643f1723ce3414518b6d8bef0b536aae8d96d5679da777a71f62cfe4577a9b97bad540724c0078437328655abf0ddb6a2889cbd35c2a0a053aa1563407d30d9e2b00e71ab050b874380c1b84c88bb6b294edd88af395974bcfa75f40152ebdcaca63bca12bb809421529385d7ba831b43d886cf29985465aadf8b80a876936f8525359ca12df865a6d3d04eb8954f7b54a9497d60f55f8c1f3ee7d1d6333f78b7d1e86cc648e1740250ccded34d45737b19fa00c691418512297105869a681df76cec0db1948b1c71e91939dac51639388c020d4bf1d159e0c5dd1a0bfd85ff8ba5c20b9b5941fec460998be34c5dfc3f07aa54c10e03427fe485dc55b7fe4da2fea867d9cf36e1c16bf99ec81af9de5ab0ba5019fa9430ac2d8c25298850bad65ea84b98d819b736acac10117dc2f99bd60970641ad86884ebc8a3dd89d5e99510eeea5ce7bc2df47248a5ab60ba59bd246d55215642546dc2cb6b9cbdf2c10268fddb8fc3fc022382bc8765e62668ccd92e70447d91151f0ffcf6607237a729862d3553fc2edc97a9ef0a16f006f73c18e7203100e420603d322de511ae3d656e1444219df51e5766bc5d8674998df7a51e0741fd4d46fd0007b5ccc6e14138b1c28d6ef2c656825bafcd1d4629cb72ebd737bbd33e1eda21cbe57d969682f01f388355596175c8d5c2b2787c0d2c88e6095d96580e17aff940857d8023227e9cd4c3a650f0c428479537b052b37c109e9d06324d0bdce5c3683ab417b5a41539bb06b85ca22e7efc315705baf3e84ed80c8e73249a9281c89b12625602ef6865971380e4fc0411c7bc0d76ef3373928d87690286289eb4538ce7fa34d2f09cae96a939629c5b0a4580bc21d368db9a70bf77b5073e6df84f8002ff0ea0a21520e053314b01c847a564a7e73e28d92fc54463f7f39d8286ac0c2f8847c9e9a74b8a92263c8728a021f67eb5a17cd88c42f7c37d7a11b219cc5bbeaf72504633327031c3c2916f989185df7050e1241abe81ec26c35770350edc5843b1b6aff1a8887965b438e5f2ab6f837acd12ea2b399d9879b5e580b4afa699e6b7f4c4fd7152d0a678cd11677cd714d2c3f39e3b799c9a54e8d503ee9a4d1bd11970aae9fcac4f9bbe6a7dc6fffd4200ca51ed30174707f789b582f45c173d548bba7e8e10e4a8e8b5225ff31a547e5ec05242f713ba582184267be896a411c4743dd5713bf560383967ea0aadf15401f4132ca156feafa3cd934889966baa44718d3f3a42bc574fcfbf7419a560917fc2083b791f91456e09b486b310484131bd27bde91eb0a14bb42191f4ce52b88f42a0860d15a1ace96890f4ea6c8c923ca8627f40891d87877a7d3434d554c1a4d6db1c1f62a3b5af54d7b07e9488e651a7f70aab47f4d5e8559fef1a2518f2484aa8f3c7d8c8b97949d5992224d85594290a77583f7ebe366ed43ce7710c2d0d8044ec6a1c7994cdf4beca116f32a4dab4042b50fe070b8d1a3e585e9e676b61fbe4e296c1346723dadd459e91e57ad9964d410c699b9c6059ff7e57b60e8fba61b84364976e7a00f7ccd25834a0d1fe82e2d1decbd660a911494fc37dcd546478f14d740f4128ae44164dad72e8a66cb79928665c5db70c45fc1145bbed7164385adb1747d12f7cea62403db5b8c3e782b170a0103211296a0ec54e701dbf316430ba4b7087b2277352d5e480b54ded62323c34a4bedb0f85c49b3a6b29ae65a484fcefff01d38ec5e77684b4d854d04579f03c00b5d401b01d1f56e33b7024798127cff0abebc885d7259c2654a0391234503f526beef5007276ba18a28ef6110197ba4f03fc394721ed09422fbca05ec6781eda4e3c575f64575c964ea2f4bcd91eead1eb2ecee48a74663af6aa1c18aad58a1e3b991c5cbfcff10d156048ec80787baa01145246dab32dfe4ff547af26b6b4b76814f3cd08344e2f487394f2201e4a7b662b487e1437ea10999f6dd523db4a205fdce719c1dc4caab4e971bda5ca40ad635440c1c7f06d5cf942fc1fb6e8ecfbefbae49e49555b913316833ac4a9845a69539650e5f65cf282e2336e39a2f540d1c0ec8f5d5c83d6d5b742008fd393335362a8a2ce4d32a6156e20f3e4be3fab5750a34d39011be5455716d880f20fce4524deb537d12f9f256d2d4c366b468091f6a0ea16cbf4eedfe4e3da994265e0fe545786f55ce347abde3759914120d8d68a76b67c55c35e03d4937b7ae5dbc28ffd912e0fe2ebe57d9f4aecc68466dea6d4836ed4a4997f2d3ef5c50b72ae52d8b5e3f2f5e2f4c963aa895263d9b8fa6838832682c1253a2c5d758b9b90d22d4b3609b2981aa480d32327981e701d5187f34587d673d5517bfb9a52b7b99c7e8882b6c45e5f6e31258e7fbeffb233db4ac4ae40401fa77cecb3a4b4621b805a76efb1b171a18afb623298660ba3745abb1264dfa0a9742947e75a25bbadb23769800402dd0bcf6b7c416edb29f530f0ea5fa8a5b4130920177aa67acffb0511dbd33a068e77b6d3a82dd9c849200342df6e8eec7b85414c5e56d15e0781dccd32b869f2bffb4caa3ccd471516cde624bc0dda1b222fc80cf61183bb56814121ac654f5e2c000a9bb2d3190c6cb7e5919790aeae4e65c62756a119cc14967511ca6f595a9370cbee20675129154ac41a41ceb55568b0fb97585abc8ae91e29bbf6a17fa4148c0454f7ccbb3b04ba6b216aa2956d09f5b0f323c8df00b70842088056d8d0fb3daecbfc9813452842d8d817a4de76944f6d84916d7a00377a5c35f09d0a88f36d1ef7713363ca6a16d3e96f69bdbae6c0d1d26ef624b985551fdb86039079178ab90dc9b5bc7d0005ce12135099c5de2ab58455eeff13a56aa394452b2170952270026214995d63bbf7f5cbc072845ce908eaea2c679e71cd7b6c9575bf74e3d777c32f91c40b01fdc2ad8d1e48c74f42d121617ecdd6e9aa01398764b0a86954d5de7a16046779962d987250b3896048e550f3c8ab99ff7c852ab57546e57f7d05eb9484ee4f375a1607086a597026885eabd20341ea6b7b2bc36e9854abb24bf8a6768fb34dcc0af6ff456d57fbf9d8ea08298b483620df7cfa1ffbd1a450f5db2d926eb4a6851de6e8dc03c4ac7594bddb0af25e1fb7d694b08dfb96d4588819d12e1bc0ded9ef74c46d73c38d4a18a84a55e6bffe5a3d441f1f781b55d48a41a5f6958f432aa2a7a6cecb8a67ececdc3509640773379d835694c915f8254c5bdb12d4adfec5d946ee58f36b61903d9f5cb506c9fb79e3166ee57d71e326e6e46b1c83937241e528367efa555f1d5801beaa8ab77fb9b4342b2d922025d31eae4e63cf59f7cc1a9bec992f0a65bc7274ed582191d3637fa7086cad564100171c8e7dcd90f4ba02be65994362c16ac0ca634266e3f5d1132749c0725c186c73329a78191958b752a0e7d149b476db7a58eeb7f94a09ce0d2ca36594cb84fc03749ddb4297b4ed0570138bcda91f0a161c31cfac3ac83cfa2fb057365e581c4182dd435b1b73697cf0d67e4350ff845320712beba5aafc02aa6b66ed17d8194e6d9f161022c4b9c55faec1b4e5254b857d646ed696464b6cab27fca79c85a59bb8d9ce1ca930b50f759bfa7340a94893d0ed488cd5e479210e368b637c5fcfae35109019d033124ccd85d7a23757a3f8b95362413c18c860c0ae3a0f746cead765ca736707b78587c6477cc758ff4f89a2033c62e2ff616faee117bba09f872c74d701f27ef48e5b7473c8de32b22b090107bbe56b01c2366f53db59b74698e284f9f50671e4f294c1b5680839ac5b3d94931946f00203b98c274c81f21dcbb158d304bc61c49ffba69ff3181d2bcde254676587dc973073302689d1b3299d0f02b1b5befb71225301371bb0a785e07bed55e1854587ef953f5f6ed3ee024b7cfa9601de3971b4f302f0d8bee811b10456962a5f4642a435c07eaa9359351a26b210d2227c1c643254872bc153111a6277c3cb2c3b61074ac00296914798326264ff09096aafd4ede57ba94ff0c67877f88af750172b71576becfef3f80ce2e49eafe9f18567ba6f078f79c5776159c60d6e2f7bda3f5508de5b1191c07d4cab64b4d8ea61a8d9a75d07d5821c30dd26892addcaeef7d8a5c959f13ac258980f741e8a4e57ace7ea6cee4e30b8d59e9aa02f83ac852b9826c0ef47882d0dca098cf863733dbc1d9fa5255756e7ae903f9eb1f4968fc5434704124c495a1e43e971d135f67c979aeed8c969ec931dea6773441898b3cd844a9cc2a977c913f81316656ffadefdd98f7d11a9224ac97da36ab2904be7077ee1966784a342e51525a132d9c213344815494c4c54b3644c365782bc0cebb91693e3acbe891970539d40ba1fe7a0a5def8203f45e790ccec52d48feaaeb367b27f584b69c1270915e5170f9a1a15d1f1d0062da0e31843915f490c857f38d1d365970336154b1cfc11a0db8bd9ab904fcaa4d8ce513a08101d99ad41adcedac9e7dee96a51e2ebde12371a43aefe0143a52aa1fc299265505163d760c766200da898a7fdc29ca3ac046414968b640ab35f6e3cb69f887d966d0dc95a45729f2bcb80bde0f7f66eda0516a0a4728a1e20b8bbccf17ffc852744f02cb6a0f83ecd0942b32321322bff6e60684a8a7da661460004cae32424518da62fac5ffde2b765b7c9939b40157bd6766f6ff210870324808a80a2cf0fc7698d07b9b55a44a7783bd31dff7d50744ee80d40b87e0e0c18cbfe5c650ff9eb40f32240646f8f3b1d578f1234e9db48e7e9d56d231f685bb46f310952d2d90e6c7c426ee15cb906b24fb0c1f919326944701c2e029b9c0427edc3c48a27657f73d56c08c73ab2db0fcd3b6a16ea6c6a751ca2b6ac5ca3c8af6388385a185a63d79c2f6b5bda7058ae912894f435744aee014cc8e52e21901438116c7523f66ab973948f71cab91391ba80cd761dd428fa21e5b3bcee4b4789d35540fd28d3956430f46b926a63c3e912ac07b3d794959c637b7a0e4de0283af890e3dbf6d1c5a09ee414d0b516cd2135478df8f0ee2edd8509a2ea1c1a815c8b0f1f7a49d05519876b05feb754ce0837cdd3dac012f9383ac2fe364cf4338042a4bfb1", 0x2000, &(0x7f00000077c0)={&(0x7f0000002940)={0x50, 0x0, 0x4, {0x7, 0x2b, 0x2, 0xc0, 0x822, 0x3, 0x7, 0x8a8, 0x0, 0x0, 0x100, 0x4}}, &(0x7f00000029c0)={0x18, 0x0, 0x8, {0x1}}, &(0x7f0000002a00)={0x18, 0x0, 0x15980000000, {0x7}}, &(0x7f0000002a40)={0x18, 0xfe3d6d54049b3f50, 0x6, {0x2800000}}, &(0x7f0000002a80)={0x18, 0x0, 0x9, {0xc8}}, &(0x7f0000002b40)={0x28, 0x0, 0x3ff, {{0x3, 0xfff, 0x1, r9}}}, &(0x7f0000002b80)={0x60, 0x0, 0xffffffffffffffff, {{0xde, 0x4, 0x7fffffff, 0x7, 0x8, 0x4a1b47b, 0x7, 0xffffffff}}}, &(0x7f0000002c00)={0x18, 0x0, 0x1, {0x800}}, &(0x7f0000002c40)={0x1b, 0x0, 0x3ff, {'/dev/vsock\x00'}}, &(0x7f0000002c80)={0x20, 0x0, 0x2, {0x0, 0x10}}, &(0x7f0000002d80)={0x78, 0x0, 0x10000, {0xfffffffffffffc00, 0xa177, 0x0, {0x6, 0x1ff, 0x18, 0x3, 0xd05a, 0x8f85, 0x8, 0x10001, 0x6, 0xc000, 0x93a, r10, r11, 0x9, 0x1ff}}}, &(0x7f0000002e40)={0x90, 0xffffffffffffffda, 0x5, {0x4, 0x3, 0x9, 0x7, 0xea6, 0x0, {0x4, 0x8dc9, 0xfffffffffffffffd, 0xa688, 0x8, 0x4, 0xf215, 0x101, 0x8, 0x4000, 0x1, r7, r12, 0x7f, 0x3}}}, &(0x7f0000002f00)={0x88, 0x0, 0x6, [{0x2, 0x100000001, 0x0, 0x9}, {0x3, 0x3, 0x3, 0x81, '\\&\''}, {0x6, 0x6, 0xf, 0x1, 'broadcast-link\x00'}, {0x4, 0x31c5, 0x0, 0x4}]}, &(0x7f0000005140)={0x338, 0x0, 0x80000001, [{{0x3, 0x1, 0x7, 0x1, 0x1, 0x2a, {0x3, 0x97, 0x4, 0x8001, 0x5, 0x3, 0x500, 0x3, 0x72, 0x0, 0x0, r7, 0xffffffffffffffff, 0x6}}, {0x1, 0xff, 0xb, 0x1000, '/dev/vsock\x00'}}, {{0x5, 0x0, 0x5, 0x38000000000, 0x0, 0xb, {0x0, 0x86, 0x4, 0x2, 0x9, 0x0, 0x96, 0x3, 0xfffffff5, 0x4000, 0x26d, r7, r13, 0x8, 0x1}}, {0x6, 0x0, 0x5, 0x2, 'TIPC\x00'}}, {{0x2, 0x1, 0x8, 0x0, 0x8, 0x7, {0x4, 0x10000, 0x8000, 0xfffffffffffffffd, 0x7, 0x218, 0x755, 0xf, 0x3, 0x1000, 0x4adc, r7, 0xee01, 0x800, 0x1}}, {0x2, 0x0, 0x8, 0x70997df4, '\'\'\'\'-+\\}'}}, {{0x3, 0x0, 0x9e, 0x6, 0x5, 0x5d4, {0x6, 0x0, 0x7fff, 0x1000000000000, 0x6, 0x1, 0x5, 0x2, 0x866c, 0x1000, 0x9, r7, r14, 0x7, 0x7}}, {0x2, 0x1, 0x1, 0x400, '#'}}, {{0x0, 0x2, 0x4, 0x1, 0x7, 0x3, {0x4, 0x9, 0x3, 0x2, 0xb9, 0x1000, 0x0, 0x6, 0xfffffffa, 0xa000, 0x7, r7, r15, 0x17, 0xd1cf}}, {0x5, 0x7fff, 0x8, 0x7, 'nl80211\x00'}}]}, &(0x7f0000005540)={0xa0, 0x0, 0xffffffffffffffff, {{0x2, 0x0, 0x7, 0x1, 0xfffffffc, 0x3, {0x5, 0x7, 0x5, 0x1, 0x100000001, 0x7, 0x532b, 0x4, 0x3, 0x1000, 0x6, r7, r16, 0x6, 0x2}}, {0x0, 0x1a}}}, &(0x7f0000005600)={0x20, 0x0, 0x6, {0x800d, 0x4, 0x1, 0x9}}, &(0x7f0000007680)={0x130, 0x0, 0x8, {0xffffffffffffff98, 0x5, 0x0, '\x00', {0x4000, 0xffff, 0x5bde5ccc, 0xfffffffb, r7, r17, 0x6000, '\x00', 0x6, 0x5, 0x8000, 0x7, {0x2, 0x3}, {0x5, 0x8}, {0x4, 0xc}, {0x4, 0x10000}, 0xa, 0x1, 0x15d, 0x689}}}})
r18 = getgid()
setgroups(0x6, &(0x7f0000007880)=[0xee00, r15, r14, r14, r14, r18])
accept4(r2, 0x0, &(0x7f00000078c0), 0x800)
getpid()

11.539842688s ago: executing program 0 (id=2085):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e4a44", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H'], 0x48}, 0x1, 0x0, 0x0, 0x4810}, 0xc010)

10.275512012s ago: executing program 0 (id=2089):
socket$xdp(0x2c, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
r2 = openat$comedi(0xffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x0, 0x0)
ioctl$COMEDI_INSN(r2, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92ff, 0x0, 0x0, 0x4})
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xf, @empty, 0x2}, {0xa, 0x4e23, 0x0, @remote, 0x3}, 0xffffffffffffffff, 0x7}}, 0x48)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x4d5, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r4, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000000600)=ANY=[], 0x8)
recvmmsg(r4, &(0x7f0000000480), 0x400000000000341, 0x2, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x4000005, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast2, 0x3}, 0x1c)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
socket$key(0xf, 0x3, 0x2)

8.282284918s ago: executing program 1 (id=2096):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8021, 0x0, 0x3f26, 0x6, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000180))
syz_open_dev$video4linux(0x0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x21, 0x108400)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r2)
r3 = socket(0x22, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r4)
r5 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = syz_open_procfs(r5, &(0x7f0000000140)='personality\x00')
preadv(r7, &(0x7f0000000180)=[{&(0x7f0000000340)=""/230, 0xe6}], 0x1, 0x401, 0x8d7d)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$unix(0x1, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xd, 0xa}, {}, {0xf, 0x1}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xd2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8858}, 0x20004804)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0xc, 0xfffffffffffffffd, 0x59c})

8.269890375s ago: executing program 3 (id=2097):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_open_dev$evdev(&(0x7f0000000b80), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x4010744d, &(0x7f0000000180))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000001000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000d000000850000002d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r4}, 0x15)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000006010010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)

8.232421553s ago: executing program 0 (id=2098):
r0 = socket$netlink(0x10, 0x3, 0x10) (async)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) (async)
r2 = syz_pidfd_open(0x0, 0x0)
r3 = pidfd_getfd(r2, r2, 0x0)
setns(r3, 0x66020000) (async)
mount$9p_fd(0x0, &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x11, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/../file0\x00', 0x262) (async)
bind$netlink(r0, &(0x7f0000000240)={0x10, 0x0, 0x80000, 0x100}, 0x4b) (async)
unshare(0x66000080)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r7=>0x0) (rerun: 64)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) (async)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) (async)
timer_settime(r7, 0x1, &(0x7f0000000040), 0x0) (async)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r8 = userfaultfd(0x1)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000000000)) (async)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000be3000/0x2000)=nil, 0x2000}, 0x1}) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x110, &(0x7f0000000080)=0x80000001, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x100, &(0x7f0000000140)=0x40, 0x0, 0x4)
close(r8)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'netdevsim0\x00'}) (async)
gettid()

6.702251873s ago: executing program 3 (id=2099):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x8, 0x10001, 0x9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r1, 0x0, 0x1000000000000}, 0x10)

6.700775154s ago: executing program 1 (id=2100):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e4a44", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H'], 0x48}, 0x1, 0x0, 0x0, 0x4810}, 0xc010)

6.120924937s ago: executing program 1 (id=2103):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1, 0x1, &(0x7f0000000540)=ANY=[@ANYBLOB="851031e08a233edd94cc1883d96bf1862d3b344c00000000000000001b6d99d718106edfdad795eee53c21a717b2da45d180e310ade5e9048e7456d4dc207970ea32f095118b867899a400756cea17e9fbdb2a978fbb5aa873ab232f05df56b9d60aeade9367709f657c5b58d740ffa462a6439b7d72bf5cc59ecf7c2675c62c7521199332be9f364057ed8667ec7054fc6bd4f537a0b5"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x65, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
get_robust_list(0x0, 0x0, &(0x7f0000000140))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102400, 0x19000)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5c, 0x0, 0xffffffffffffffff, 0xffffffffffffff7f}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r2, 0x18000000000002a0, 0xfd, 0x0, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000, 0x1e, 0xff44, &(0x7f00000002c0)="09000000fe35ceb3558653e3b760a4aec58ecd731ee39ed811a4e2cd8256216bb23317e40e5efd430227b0695b3a5af911658f30378eb4d529b3360464c3c9b4f373288365f0f97bd78c48373ba33338f084a48e2bba7bf4e0467fd69d5725731389697048d9c6e56d8d", &(0x7f0000000680)="69a117e3435b04cdc5409d1b5c5b3f86bf2da7fc5d647fa8d52ed44462467a9f68d5641c9de61c58ec0c637c83ea0d2bc4fa000b6541026e866eb8558b56b02506300edc8aef579cd0b16af8a1c5745ffd8426621d1c66aa9870b21e446ecf4539f7d6ba7981ddb005bfbcfe42d1daf536845eb214605f4047a8bd55f092707c08ceb21658e38ffc23705e0cc777c600aad6f2c8fe74eeb78ee5202c95acf9a136ab175b52ca706b9bbd686f6f72b356b8c2ffab6680fed5cbb91172b739132d1eef69a196462aa2d112c857624e878e7ffc38978a57a5ca2e77e2b636d3f48a202a757970a61a8721803ba13975606fe33800009718cfb2066a1835e48b25e9ab51d153c557a463a1f0541eecc8040165e75f7a465a97b16748ac3ed9cafea9f6a12ff3406fbb23ceeeb6771d3b8a9e6a767b9d2a7327ec2ae97ab3b3a777dfd9ad8291fbd211814b2c77c7804680d5e8703ca2a83c9e0a0416fc3c81c93246812e2a57c9edbfc88c6487b66cab0460df96537765ce983fae4385076c1248191e08731a3f193d3b71956734b088ff2dad2d8565efe355fa48c4c06db922d7c158d968b2e1a4d92508ac29ab3f15e363c724ac9b59862aac66c14bca90a7aca2f2c5b29fdb940613ee35ce5c4b3372a59e392a24d6ac6a4ffd09c82ddd", 0x0, 0x0, 0x4}, 0x50)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000a00), 0x400, 0x0)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1, 0x1, 0x4}})
ioctl$SNDRV_TIMER_IOCTL_INFO(r6, 0x80e85411, &(0x7f0000000340))
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000040)={0xc})
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_CMAP(r7, 0x4b71, &(0x7f0000000140)={0x10003, 0x5, 0x0, 0x7, 0x200000000000000, 0xa})
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(0xffffffffffffffff, 0xc1004110, &(0x7f0000000000)={0xf51b, [0x2, 0xffff133e, 0x2], [{0x0, 0xffffffff}, {0x2, 0xffffffff}, {0x0, 0x400ffff}, {}, {0x1, 0x1}, {0x1}, {0x2adc}, {0x2, 0xfffffffc}, {0x0, 0x5}, {0x0, 0x1}, {0x0, 0xffffffff}], 0x12, 0x0, 0x0, 0x8000000})
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
close_range(r8, 0xffffffffffffffff, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1f, &(0x7f0000000000)=[0xffffffffffffffff], 0x1)

6.067999427s ago: executing program 3 (id=2104):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)={0x1c, r0, 0x1, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x60, 0x20000000}, 0x90)

5.446779555s ago: executing program 3 (id=2105):
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
io_submit(0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f00000083c0)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000300)={0x0, 0x9dc5, 0x0, 0x0, 0xf})
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r6, 0x84, 0x1, &(0x7f0000000080)=""/4050, &(0x7f0000000000)=0xfd2)
fcntl$dupfd(r5, 0x0, r5)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000000)={0x8, 0x4, 0x20b, 0x6, 0x8, 0x4, 0x0, 0x7fffffff}, &(0x7f0000000040)=0x20)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='ntfs3\x00', 0x1000080, 0x0)

5.283900334s ago: executing program 0 (id=2106):
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='nr_inodes=1', @ANYRESOCT=0x0])

4.763626211s ago: executing program 4 (id=2107):
syz_usb_connect(0x0, 0x1a2, &(0x7f00000002c0)=ANY=[@ANYRES64=0x0], 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={<r0=>0x0, 0xac, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0xfff, @ipv4={'\x00', '\xff\xff', @local}, 0x13}, @in6={0xa, 0x4e21, 0x81, @rand_addr=' \x01\x00', 0x4}, @in6={0xa, 0x4e22, 0x8, @local, 0x8}, @in6={0xa, 0x4e21, 0x8000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xd}, @in={0x2, 0x4e21, @remote}, @in={0x2, 0x4e21, @multicast2}, @in6={0xa, 0x4e23, 0xf, @mcast2, 0x3}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={r0, 0x3}, 0x8)

4.715293437s ago: executing program 1 (id=2108):
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@multicast, @empty, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @empty, @remote, @multicast, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000240), 0xffff, 0x8002)
ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000280)=0x6)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xdd906000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r4, &(0x7f0000000000)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)

4.48593543s ago: executing program 3 (id=2109):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000018000380140001007465616d3000000000000000000000005c00000016"], 0xfc}}, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = fanotify_init(0x40, 0x800)
write$binfmt_elf64(r3, &(0x7f0000000840)=ANY=[@ANYBLOB="7f454c46220000"], 0x40)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x0, &(0x7f0000000140), 0x1000000, 0x4)
ioctl$UFFDIO_CONTINUE(r4, 0x8010aa01, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)

3.931982745s ago: executing program 2 (id=2110):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000feffffff850000007300000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe, 0x0, &(0x7f0000002ac0)="09adda0000006dce87b100568f51", 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x50)

3.720176466s ago: executing program 1 (id=2111):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8021, 0x0, 0x3f26, 0x6, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000180))
syz_open_dev$video4linux(0x0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x21, 0x108400)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r2)
r3 = socket(0x22, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r4)
r5 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = syz_open_procfs(r5, &(0x7f0000000140)='personality\x00')
preadv(r7, &(0x7f0000000180)=[{&(0x7f0000000340)=""/230, 0xe6}], 0x1, 0x401, 0x8d7d)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$unix(0x1, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xd, 0xa}, {}, {0xf, 0x1}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xd2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8858}, 0x20004804)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0xc, 0xfffffffffffffffd, 0x59c})

3.399763109s ago: executing program 3 (id=2112):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000000000040bd28050900000000000109022400010000600009041000020300020009210200020122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0xa0042, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r3)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x64, 0x3, 0x300, 0x6e, 0xffffffad, 0x190, 0x190, 0x190, 0x268, 0x268, 0x268, 0x268, 0x268, 0x3, 0x0, {[{{@ip={@remote, @local={0xac, 0x14, 0xd}, 0x0, 0x0, 'caif0\x00', 'ip6tnl0\x00'}, 0x0, 0x130, 0x190, 0xffffffc5, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, 0x0, 0x0, 'team0\x00', 'team0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x360)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000400), 0xc100, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\"\a'], 0x0}, 0x0)

3.275319778s ago: executing program 2 (id=2113):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x1}, 0x8)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000000)={0x209, 0x6, 0x807, 0x2097}, 0x8)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r4=>0x0})
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r6, @ANYBLOB="05"], 0x6c}, 0x1, 0x0, 0x0, 0x10004051}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="780000001000830404000000fedbdf2500007400", @ANYRES32=r4, @ANYBLOB="0008000007500500580012800b0001006272696467650000480002800500190002000000050017"], 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='h'], 0x68}, 0x9}, 0x0)
sendmsg$inet_sctp(r2, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)

2.32745637s ago: executing program 2 (id=2114):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e4a44", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={r1, 0x7, 0x104, 0xfffffffe})
sendmsg$nl_route(r1, 0x0, 0xc010)

1.882889638s ago: executing program 2 (id=2115):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)

1.691260517s ago: executing program 4 (id=2116):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002540)=ANY=[@ANYBLOB="4800000040000100fcff070004000000010000000800cb8004000880200001801c00108018000b8014500100fc0000000000000000000000000000000c0002"], 0x48}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

1.642430262s ago: executing program 4 (id=2117):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000004d40)={0x20, r1, 0x5, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x4}]}, 0x20}}, 0x400c880)

1.525782702s ago: executing program 2 (id=2118):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, 0x0, 0x4000040)
sendmsg$NFC_CMD_START_POLL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="20000010", @ANYRES16=r3, @ANYBLOB="010023010000340200000600000008000100", @ANYRES32=r2, @ANYBLOB="08000300ffffffff"], 0x24}}, 0x0) (async)
sendmsg$NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, 0x0, 0x0) (async, rerun: 32)
pipe2(&(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0) (async, rerun: 32)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r7, 0x891a, &(0x7f0000000200)={'pim6reg0\x00', {0x2, 0x4e23, @empty}}) (async, rerun: 32)
read$FUSE(r5, &(0x7f0000005180)={0x2020}, 0x2020) (async, rerun: 32)
write$FUSE_INIT(r6, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
splice(r1, &(0x7f0000000000)=0x9, r0, &(0x7f0000000080)=0xf, 0x40, 0xa) (async)
fcntl$setpipe(r1, 0x407, 0x1)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000001c0), 0xc7) (async)
prctl$PR_SET_PDEATHSIG(0x1, 0x41) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'veth0_to_bond\x00', <r8=>0x0}) (async, rerun: 64)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYRESHEX=r8, @ANYRES32=0x0, @ANYBLOB="81ffffff03020200180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r8, @ANYRESDEC], 0x40}, 0x1, 0x0, 0x0, 0x8001}, 0x220000c0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e000000090000000800000007000000000000000e32ebbcd22e2162f191b546be21a313d91e9429dec618f59cfe94040000006ccfdd7aec7daf11fac51eefefa6544e75ca080de6c3ac1c214d7d5ba2431d59ef85c658aa795a196443917b79e884eca179586d93b46fc5e43b4a2863cb053d82e597554dd009ed697b50d3d9ea", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESOCT=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.512836485s ago: executing program 4 (id=2119):
pipe(&(0x7f0000000040))
io_submit(0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x120002)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000300)={0x0, 0x9dc5, 0x0, 0x0, 0xf})
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r3, 0x84, 0x1, &(0x7f0000000080)=""/4050, &(0x7f0000000000)=0xfd2)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='ntfs3\x00', 0x1000080, 0x0)

1.166977109s ago: executing program 4 (id=2120):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x120002)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000300)={0x0, 0x9dc5, 0x0, 0x0, 0xf})
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r5, 0x84, 0x1, &(0x7f0000000080)=""/4050, &(0x7f0000000000)=0xfd2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000000)={0x8, 0x4, 0x20b, 0x6, 0x8, 0x4, 0x0, 0x7fffffff}, &(0x7f0000000040)=0x20)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='ntfs3\x00', 0x1000080, 0x0)

311.566951ms ago: executing program 2 (id=2121):
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@multicast, @empty, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @empty, @remote, @multicast, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000240), 0xffff, 0x8002)
ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000280)=0x6)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xdd906000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r4, &(0x7f0000000000)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)

186.083709ms ago: executing program 1 (id=2122):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8021, 0x0, 0x3f26, 0x6, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000180))
syz_open_dev$video4linux(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000100), 0x21, 0x108400)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = socket(0x22, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r3)
r4 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r6 = syz_open_procfs(r4, 0x0)
preadv(r6, &(0x7f0000000180)=[{&(0x7f0000000340)=""/230, 0xe6}], 0x1, 0x401, 0x8d7d)

69.386111ms ago: executing program 4 (id=2123):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x1}, 0x8)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000000)={0x209, 0x6, 0x807, 0x2097}, 0x8)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r4=>0x0})
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r6, @ANYBLOB="05"], 0x6c}, 0x1, 0x0, 0x0, 0x10004051}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="780000001000830404000000fedbdf2500007400", @ANYRES32=r4, @ANYBLOB="0008000007500500580012800b0001006272696467650000480002800500190002000000050017"], 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='h'], 0x68}, 0x9}, 0x0)
sendmsg$inet_sctp(r2, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000740)={'wlan1\x00'})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)

0s ago: executing program 0 (id=2124):
r0 = syz_usb_connect$sierra_net(0x0, 0x3f, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x1199, 0x68a3, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x80, 0xfa, {{0x9, 0x4, 0x7, 0x0, 0x3, 0xff, 0x0, 0x0, 0x0, "", {{0x9, 0x5, 0x43978451d8f6fedb, 0x2, 0x40, 0x2, 0x1b, 0xfe}, {0x9, 0x5, 0x7, 0x2, 0x200, 0xc, 0x77, 0x3}, {0x9, 0x5, 0x81, 0x3, 0x20, 0x0, 0xfd, 0x32}}}}}}]}}, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ode=0x7ffc0000
[  512.200890][   T30] audit: type=1326 audit(1767426532.285:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11465 comm="syz.3.1524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  512.231146][ T5936] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  512.261981][ T5936] usb 2-1: device descriptor read/8, error -71
[  512.321590][   T30] audit: type=1400 audit(1767426533.025:1423): avc:  denied  { open } for  pid=11479 comm="syz.0.1527" path="/dev/ptyq4" dev="devtmpfs" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  512.369900][   T30] audit: type=1400 audit(1767426533.055:1424): avc:  denied  { ioctl } for  pid=11479 comm="syz.0.1527" path="/dev/ptyq4" dev="devtmpfs" ino=123 ioctlcmd=0x4b6a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  512.412922][ T5936] usb usb2-port1: unable to enumerate USB device
[  512.435677][ T5888] usb 3-1: USB disconnect, device number 31
[  512.444775][T11431] vhci_hcd: connection reset by peer
[  512.492641][ T4130] vhci_hcd vhci_hcd.2: stop threads
[  512.501999][ T4130] vhci_hcd vhci_hcd.2: release socket
[  512.516787][ T4130] vhci_hcd vhci_hcd.2: disconnect device
[  512.532716][T11480] IPVS: set_ctl: invalid protocol: 47 0.0.0.0:20004
[  512.875963][ T5888] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  513.221111][T11503] ntfs3(nullb0): Primary boot signature is not NTFS.
[  513.228761][T11503] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  513.269712][T11506] ntfs3(nullb0): Primary boot signature is not NTFS.
[  513.276541][T11506] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  513.421175][ T5888] usb 5-1: Using ep0 maxpacket: 16
[  513.428169][ T5888] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  513.475751][ T5888] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.499612][ T5888] usb 5-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  513.521227][ T6763] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  513.527617][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.585343][ T5888] usb 5-1: config 0 descriptor??
[  514.265057][   T30] audit: type=1400 audit(1767426534.535:1425): avc:  denied  { bind } for  pid=11507 comm="syz.3.1536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  514.579909][T11522] netlink: 'syz.1.1539': attribute type 5 has an invalid length.
[  514.634545][ T5888] nzxt-smart2 0003:1E71:2009.001B: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.4-1/input0
[  515.938636][ T6763] usb 5-1: USB disconnect, device number 32
[  516.818092][T11557] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1544'.
[  516.908209][T11558] ntfs3(nullb0): Primary boot signature is not NTFS.
[  516.915428][T11558] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  516.944676][T11550] netlink: 'syz.2.1548': attribute type 10 has an invalid length.
[  518.041199][ T6763] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  518.420020][ T6763] usb 1-1: Using ep0 maxpacket: 8
[  518.431393][ T6763] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  518.440472][ T6763] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.412691][ T6763] usb 1-1: Product: syz
[  519.416974][ T6763] usb 1-1: Manufacturer: syz
[  519.421590][ T6763] usb 1-1: SerialNumber: syz
[  519.448872][T11579] genirq: Flags mismatch irq 4. 00200000 (das16m1) vs. 00200080 (ttyS0)
[  519.461528][ T6763] usb 1-1: config 0 descriptor??
[  519.562071][T11578] overlayfs: failed to resolve './file1': -2
[  519.600272][T11575] netlink: 'syz.2.1553': attribute type 10 has an invalid length.
[  519.952954][ T6763] gspca_main: se401-2.14.0 probing 047d:5003
[  520.055580][   T30] audit: type=1400 audit(1767426540.755:1426): avc:  denied  { append } for  pid=11570 comm="syz.0.1552" path="socket:[31984]" dev="sockfs" ino=31984 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  520.287236][ T6763] gspca_se401: ExtraFeatures: 187
[  520.315598][ T6763] gspca_se401: Too many frame sizes
[  520.342309][T11586] macvtap1: entered promiscuous mode
[  520.387152][T11586] macvtap1: entered allmulticast mode
[  520.417020][T11586] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  520.871074][ T5922] usb 2-1: new full-speed USB device number 34 using dummy_hcd
[  521.142725][T11598] genirq: Flags mismatch irq 4. 00200000 (das16m1) vs. 00200080 (ttyS0)
[  521.367032][ T5922] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30
[  521.421246][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  521.432588][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  521.445878][ T5922] usb 2-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  521.455990][ T5922] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.472924][ T5922] usb 2-1: config 0 descriptor??
[  521.481120][T11589] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  521.535538][ T5888] usb 1-1: USB disconnect, device number 41
[  521.862237][T11609] Invalid logical block size (768)
[  522.438027][ T5922] petalynx 0003:18B1:0037.001C: unknown main item tag 0x0
[  522.454027][ T5922] petalynx 0003:18B1:0037.001C: unknown main item tag 0x0
[  522.461678][ T5922] petalynx 0003:18B1:0037.001C: unknown main item tag 0x0
[  522.468810][ T5922] petalynx 0003:18B1:0037.001C: unknown main item tag 0x0
[  522.477646][ T5922] petalynx 0003:18B1:0037.001C: unknown main item tag 0x0
[  522.488743][ T5922] petalynx 0003:18B1:0037.001C: hidraw0: USB HID v0.05 Device [HID 18b1:0037] on usb-dummy_hcd.1-1/input0
[  523.062592][T11610] veth1_macvtap: left promiscuous mode
[  523.068271][T11610] macsec0: entered promiscuous mode
[  523.558337][T11635] ntfs3(nullb0): Primary boot signature is not NTFS.
[  523.565556][T11635] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  523.959748][T11633] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1567'.
[  524.520755][   T30] audit: type=1400 audit(1767426545.215:1427): avc:  denied  { connect } for  pid=11639 comm="syz.4.1572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  525.115743][T11650] bridge0: port 2(bridge_slave_1) entered disabled state
[  525.122955][T11650] bridge0: port 1(bridge_slave_0) entered disabled state
[  525.234351][T11654] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1576'.
[  525.816383][T11660] debugfs: '1��^!�l�1�*�$pOc' already exists in 'ieee80211'
[  525.836288][   T24] usb 2-1: USB disconnect, device number 34
[  525.866095][T11662] syzkaller0: entered promiscuous mode
[  525.871887][T11662] syzkaller0: entered allmulticast mode
[  525.925469][T11662] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  525.950277][T11661] tipc: Resetting bearer <eth:syzkaller0>
[  526.177425][T11661] tipc: Disabling bearer <eth:syzkaller0>
[  526.239776][T11673] binder: 11668:11673 ioctl c0306201 200000000c80 returned -14
[  526.561624][ T5888] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  526.606309][   T30] audit: type=1400 audit(1767426547.305:1428): avc:  denied  { bind } for  pid=11678 comm="syz.0.1584" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  526.610038][T11682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1585'.
[  526.899804][ T5888] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  526.919526][ T5888] usb 4-1: config 0 has no interface number 0
[  526.943676][ T5888] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  526.958832][ T5888] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.141116][ T5888] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  527.171100][ T5888] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  527.190326][ T5888] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.211772][ T5888] usb 4-1: config 0 descriptor??
[  527.251110][   T24] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  527.452745][ T5922] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  527.481436][   T24] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  527.492714][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  527.524188][   T24] usb 2-1: Product: syz
[  527.542483][   T24] usb 2-1: Manufacturer: syz
[  527.611102][ T5922] usb 5-1: Using ep0 maxpacket: 16
[  527.629743][   T24] usb 2-1: SerialNumber: syz
[  527.647632][ T5922] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  527.712374][ T5922] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  527.861426][ T5922] usb 5-1: config 0 has no interface number 0
[  527.885104][   T24] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  527.896165][ T5922] usb 5-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  528.523047][ T5922] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  528.600851][ T5888] uclogic 0003:28BD:0905.001D: interface is invalid, ignoring
[  528.609255][ T5922] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  528.619369][ T5922] usb 5-1: Product: syz
[  528.627670][ T5922] usb 5-1: SerialNumber: syz
[  528.634183][ T5936] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  528.674018][ T5922] usb 5-1: config 0 descriptor??
[  528.836220][T11702] netlink: 'syz.2.1590': attribute type 9 has an invalid length.
[  528.844241][T11702] netlink: 'syz.2.1590': attribute type 7 has an invalid length.
[  528.852424][T11702] netlink: 'syz.2.1590': attribute type 8 has an invalid length.
[  529.004195][T11688] virtio-fs: tag </dev/md0> not found
[  529.218527][T11687] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1586'.
[  529.399238][ T5888] usb 4-1: USB disconnect, device number 26
[  530.053101][ T5936] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  530.061528][ T5936] ath9k_htc: Failed to initialize the device
[  530.096011][ T5936] usb 2-1: ath9k_htc: USB layer deinitialized
[  530.590824][ T5922] usbhid 5-1:0.8: couldn't find an input interrupt endpoint
[  530.617044][ T5922] usb 5-1: USB disconnect, device number 33
[  530.634901][   T10] usb 2-1: USB disconnect, device number 35
[  531.277157][T11725] input: syz1 as /devices/virtual/input/input26
[  531.480931][T11734] netlink: 'syz.3.1599': attribute type 1 has an invalid length.
[  531.494844][T11735] 9pnet_virtio: no channels available for device syz
[  531.597581][T11734] 8021q: adding VLAN 0 to HW filter on device bond2
[  531.924737][T11737] bond2: (slave veth5): Enslaving as an active interface with a down link
[  532.115744][   T30] audit: type=1326 audit(1767426552.815:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.207249][   T30] audit: type=1326 audit(1767426552.815:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.240278][   T30] audit: type=1326 audit(1767426552.815:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.556803][T11752] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1603'.
[  532.567126][   T30] audit: type=1326 audit(1767426552.815:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.592604][   T30] audit: type=1326 audit(1767426552.815:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.629008][   T30] audit: type=1326 audit(1767426552.815:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.681149][   T30] audit: type=1326 audit(1767426553.215:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.705284][   T30] audit: type=1326 audit(1767426553.215:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.735645][   T30] audit: type=1326 audit(1767426553.225:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  532.766069][   T30] audit: type=1326 audit(1767426553.225:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11743 comm="syz.2.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  533.006745][T11761] ntfs3(nullb0): Primary boot signature is not NTFS.
[  533.014482][T11761] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  534.334568][T11787] ntfs3(nullb0): Primary boot signature is not NTFS.
[  534.341822][T11787] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  534.794873][T11792] o2cb: This node has not been configured.
[  534.800879][T11792] o2cb: Cluster check failed. Fix errors before retrying.
[  534.810217][T11792] (syz.3.1607,11792,0):user_dlm_register:674 ERROR: status = -22
[  534.820357][T11792] (syz.3.1607,11792,0):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0"
[  535.022353][   T10] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  535.281209][T11796] binder: 11794:11796 ioctl c0306201 200000000c80 returned -14
[  535.478891][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  535.506580][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  535.571117][   T10] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  535.609477][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  535.635377][   T10] usb 5-1: config 0 descriptor??
[  535.941571][T11802] ntfs3(nullb0): Primary boot signature is not NTFS.
[  535.948396][T11802] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  536.993158][T11809] fuse: Unknown parameter '000000000000000000040x0000000000000006'
[  537.897044][T11822] 9p: Bad value for 'rfdno'
[  539.235069][   T30] kauditd_printk_skb: 44 callbacks suppressed
[  539.235085][   T30] audit: type=1326 audit(1767426559.935:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.320955][   T30] audit: type=1326 audit(1767426559.935:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.491636][   T30] audit: type=1326 audit(1767426559.935:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.612448][   T10] usbhid 5-1:0.0: can't add hid device: -71
[  539.631355][   T10] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  539.639181][   T30] audit: type=1326 audit(1767426559.935:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.665460][   T10] usb 5-1: USB disconnect, device number 34
[  539.688625][   T30] audit: type=1326 audit(1767426560.215:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.721095][T11126] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  539.762554][   T30] audit: type=1326 audit(1767426560.215:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  539.919351][   T30] audit: type=1326 audit(1767426560.245:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  540.416731][T11126] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  540.430962][T11126] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  540.451861][   T30] audit: type=1326 audit(1767426560.245:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  540.477621][T11126] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  540.509791][T11126] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  540.545624][T11126] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  540.554691][   T30] audit: type=1326 audit(1767426560.265:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  540.595777][T11126] usb 4-1: config 0 descriptor??
[  540.633288][   T30] audit: type=1326 audit(1767426560.265:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11835 comm="syz.2.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  541.184972][T11126] plantronics 0003:047F:FFFF.001E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  541.585490][T11126] usb 4-1: USB disconnect, device number 27
[  541.896462][T11869] hfsplus: unable to find HFS+ superblock
[  542.385936][T11881] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  542.502719][T11883] xt_CT: You must specify a L4 protocol and not use inversions on it
[  544.667338][T11915] overlayfs: failed to resolve './file1': -2
[  544.739971][T11916] netlink: 'syz.0.1644': attribute type 10 has an invalid length.
[  545.521708][T11926] futex_wake_op: syz.0.1647 tries to shift op by -1; fix this program
[  545.586647][T11927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1647'.
[  545.595672][T11927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1647'.
[  546.141113][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  546.141129][   T30] audit: type=1326 audit(1767426566.825:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  546.334074][   T30] audit: type=1326 audit(1767426566.825:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  546.438735][   T30] audit: type=1326 audit(1767426566.825:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  546.517651][   T30] audit: type=1326 audit(1767426566.825:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  546.577442][   T30] audit: type=1326 audit(1767426567.095:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  546.709180][   T30] audit: type=1326 audit(1767426567.095:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11935 comm="syz.1.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  547.589618][T11963] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  547.597568][T11963] overlayfs: failed to set xattr on upper
[  547.603542][T11963] overlayfs: ...falling back to redirect_dir=nofollow.
[  547.610515][T11963] overlayfs: ...falling back to uuid=null.
[  547.718418][T11967] futex_wake_op: syz.2.1659 tries to shift op by -1; fix this program
[  547.949455][T11970] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1659'.
[  547.958472][T11970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1659'.
[  548.295655][T11981] ntfs3(nullb0): Primary boot signature is not NTFS.
[  548.302453][T11981] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  548.437976][   T30] audit: type=1326 audit(1767426569.125:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11982 comm="syz.2.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  548.477869][   T30] audit: type=1326 audit(1767426569.125:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11982 comm="syz.2.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  548.595261][   T30] audit: type=1326 audit(1767426569.125:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11982 comm="syz.2.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  548.700235][   T30] audit: type=1326 audit(1767426569.125:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11982 comm="syz.2.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  548.980259][T12000] xt_connbytes: Forcing CT accounting to be enabled
[  549.168608][T12003] overlayfs: missing 'lowerdir'
[  549.537614][T12010] FAULT_INJECTION: forcing a failure.
[  549.537614][T12010] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  549.551202][T12010] CPU: 0 UID: 0 PID: 12010 Comm: syz.1.1669 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  549.551226][T12010] Tainted: [L]=SOFTLOCKUP
[  549.551231][T12010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  549.551239][T12010] Call Trace:
[  549.551244][T12010]  <TASK>
[  549.551250][T12010]  dump_stack_lvl+0x16c/0x1f0
[  549.551274][T12010]  should_fail_ex+0x512/0x640
[  549.551299][T12010]  _copy_from_user+0x2e/0xd0
[  549.551322][T12010]  __sys_bpf+0x248/0x4980
[  549.551347][T12010]  ? __pfx___sys_bpf+0x10/0x10
[  549.551368][T12010]  ? find_held_lock+0x2b/0x80
[  549.551395][T12010]  ? find_held_lock+0x2b/0x80
[  549.551424][T12010]  ? __mutex_unlock_slowpath+0x161/0x790
[  549.551460][T12010]  ? fput+0x70/0xf0
[  549.551475][T12010]  ? ksys_write+0x1ac/0x250
[  549.551492][T12010]  ? __pfx_ksys_write+0x10/0x10
[  549.551515][T12010]  __x64_sys_bpf+0x78/0xc0
[  549.551536][T12010]  ? lockdep_hardirqs_on+0x7c/0x110
[  549.551556][T12010]  do_syscall_64+0xcd/0xf80
[  549.551577][T12010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.551593][T12010] RIP: 0033:0x7f947398f749
[  549.551607][T12010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.551621][T12010] RSP: 002b:00007f947483e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  549.551636][T12010] RAX: ffffffffffffffda RBX: 00007f9473be6090 RCX: 00007f947398f749
[  549.551646][T12010] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 000000000000000a
[  549.551656][T12010] RBP: 00007f947483e090 R08: 0000000000000000 R09: 0000000000000000
[  549.551665][T12010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.551673][T12010] R13: 00007f9473be6128 R14: 00007f9473be6090 R15: 00007ffe8fb6fb28
[  549.551706][T12010]  </TASK>
[  549.901253][   T55] usb 5-1: new full-speed USB device number 35 using dummy_hcd
[  550.042336][T12015] binder: 12012:12015 ioctl c0306201 200000000c80 returned -14
[  550.056356][   T55] usb 5-1: config 0 has an invalid interface number: 77 but max is 0
[  550.066212][   T55] usb 5-1: config 0 has no interface number 0
[  550.075195][   T55] usb 5-1: config 0 interface 77 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  550.233395][   T55] usb 5-1: config 0 interface 77 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  550.338483][   T55] usb 5-1: New USB device found, idVendor=1608, idProduct=0301, bcdDevice=49.d0
[  550.379328][   T55] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  550.408614][   T55] usb 5-1: Product: syz
[  550.428737][   T55] usb 5-1: Manufacturer: syz
[  550.445157][   T55] usb 5-1: SerialNumber: syz
[  550.546847][T12021] futex_wake_op: syz.2.1674 tries to shift op by -1; fix this program
[  550.666789][T12023] overlayfs: failed to resolve './file0': -2
[  550.737788][T12024] netlink: 'syz.1.1673': attribute type 10 has an invalid length.
[  551.035586][T12025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1674'.
[  551.044591][T12025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1674'.
[  551.143130][   T55] usb 5-1: config 0 descriptor??
[  551.172378][T12011] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  551.231412][T12011] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  551.734381][T12043] overlayfs: missing 'lowerdir'
[  552.033599][T12049] ntfs3(nullb0): Primary boot signature is not NTFS.
[  552.040639][T12049] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  552.804646][T12062] futex_wake_op: syz.2.1686 tries to shift op by -1; fix this program
[  552.926899][T12064] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1686'.
[  552.936090][T12064] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1686'.
[  553.194667][   T55] io_ti 5-1:0.77: required endpoints missing
[  553.225109][   T55] usb 5-1: USB disconnect, device number 35
[  553.266362][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  553.266372][   T30] audit: type=1326 audit(1767426573.955:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  553.434286][   T30] audit: type=1326 audit(1767426573.955:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  553.969748][   T30] audit: type=1326 audit(1767426573.955:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.184924][   T30] audit: type=1326 audit(1767426573.955:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.267570][T12084] overlayfs: missing 'workdir'
[  554.400818][T12086] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1689'.
[  554.412903][   T30] audit: type=1326 audit(1767426573.955:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.453902][   T30] audit: type=1326 audit(1767426573.955:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.488131][T12086] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  554.495786][   T30] audit: type=1326 audit(1767426574.595:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.532859][   T30] audit: type=1326 audit(1767426574.595:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  554.557682][T12086] team0: Device ipvlan2 is already an upper device of the team interface
[  554.574603][   T30] audit: type=1326 audit(1767426574.605:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  555.184995][ T5924] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  555.296956][   T30] audit: type=1326 audit(1767426574.605:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12059 comm="syz.1.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  555.416606][ T5924] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[  555.424809][ T5924] usb 3-1: config 0 has no interface number 0
[  555.430884][ T5924] usb 3-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  555.491165][ T5924] usb 3-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.501881][ T5924] usb 3-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  555.521189][ T5924] usb 3-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  555.531283][ T5924] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  555.557531][ T5924] usb 3-1: config 0 descriptor??
[  555.711058][   T24] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  555.874523][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  555.902901][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.936740][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  555.980221][   T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  555.990772][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  556.025829][   T24] usb 5-1: config 0 descriptor??
[  556.277806][T12102] ntfs3(nullb0): Primary boot signature is not NTFS.
[  556.285817][T12102] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  556.711619][ T5924] uclogic 0003:28BD:0905.001F: interface is invalid, ignoring
[  556.749551][   T24] plantronics 0003:047F:FFFF.0020: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  557.806301][ T5924] usb 3-1: USB disconnect, device number 32
[  558.180321][T11126] usb 5-1: USB disconnect, device number 36
[  558.577357][T12125] ntfs3(nullb0): Primary boot signature is not NTFS.
[  558.584202][T12125] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  560.427961][T12136] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[  560.437803][T12136] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1703'.
[  560.446781][T12136] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1703'.
[  560.533192][T12142] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1706'.
[  561.131077][ T5924] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  561.804880][ T5924] usb 2-1: config 0 has an invalid interface number: 16 but max is 0
[  561.813100][ T5924] usb 2-1: config 0 has no interface number 0
[  561.819165][ T5924] usb 2-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  561.831778][ T5924] usb 2-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  561.842603][ T5924] usb 2-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  561.855755][ T5924] usb 2-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  561.871270][ T5924] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.886394][ T5924] usb 2-1: config 0 descriptor??
[  562.501558][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  562.508057][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  562.589076][ T5924] uclogic 0003:28BD:0905.0021: interface is invalid, ignoring
[  563.261930][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  563.261942][   T30] audit: type=1326 audit(1767426583.955:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12166 comm="syz.3.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  563.295261][   T30] audit: type=1326 audit(1767426583.955:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12166 comm="syz.3.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  563.357944][   T30] audit: type=1326 audit(1767426583.955:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12166 comm="syz.3.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  563.409813][   T30] audit: type=1326 audit(1767426583.955:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12166 comm="syz.3.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  563.867755][   T30] audit: type=1326 audit(1767426584.565:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12177 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  564.025987][ T5924] usb 2-1: USB disconnect, device number 36
[  564.040158][   T30] audit: type=1326 audit(1767426584.595:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f33b8f749 code=0x7ffc0000
[  564.151047][   T30] audit: type=1326 audit(1767426584.595:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1f33b8f749 code=0x7ffc0000
[  564.225132][   T30] audit: type=1326 audit(1767426584.595:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f33b8f749 code=0x7ffc0000
[  564.309327][   T30] audit: type=1326 audit(1767426584.595:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1f33b8f749 code=0x7ffc0000
[  564.482278][   T30] audit: type=1326 audit(1767426584.595:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12177 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  564.507900][T12194] ntfs3(nullb0): Primary boot signature is not NTFS.
[  564.514672][T12194] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  566.073758][T12226] 9p: Bad value for 'rfdno'
[  566.733152][ T9785] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  567.442694][ T9785] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  567.450808][ T9785] usb 4-1: config 0 has no interface number 0
[  567.467034][ T9785] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  567.521037][ T9785] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  567.542078][ T9785] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  567.611536][ T9785] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  567.621907][ T9785] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.795958][ T9785] usb 4-1: config 0 descriptor??
[  568.830013][ T9785] uclogic 0003:28BD:0905.0022: interface is invalid, ignoring
[  568.857481][T12269] FAULT_INJECTION: forcing a failure.
[  568.857481][T12269] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  568.960913][T12269] CPU: 0 UID: 0 PID: 12269 Comm: syz.1.1736 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  568.960940][T12269] Tainted: [L]=SOFTLOCKUP
[  568.960946][T12269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  568.960955][T12269] Call Trace:
[  568.960961][T12269]  <TASK>
[  568.960967][T12269]  dump_stack_lvl+0x16c/0x1f0
[  568.960995][T12269]  should_fail_ex+0x512/0x640
[  568.961022][T12269]  _copy_to_user+0x32/0xd0
[  568.961048][T12269]  simple_read_from_buffer+0xcb/0x170
[  568.961073][T12269]  proc_fail_nth_read+0x197/0x240
[  568.961091][T12269]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.961109][T12269]  ? rw_verify_area+0xcf/0x6c0
[  568.961127][T12269]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.961144][T12269]  vfs_read+0x1e4/0xcf0
[  568.961164][T12269]  ? __pfx___mutex_lock+0x10/0x10
[  568.961190][T12269]  ? __pfx_vfs_read+0x10/0x10
[  568.961217][T12269]  ? __fget_files+0x20e/0x3c0
[  568.961238][T12269]  ? __fget_files+0x1f0/0x3c0
[  568.961267][T12269]  ksys_read+0x12a/0x250
[  568.961286][T12269]  ? __pfx_ksys_read+0x10/0x10
[  568.961304][T12269]  ? syscall_user_dispatch+0x78/0x140
[  568.961330][T12269]  ? fdget+0x187/0x210
[  568.961356][T12269]  do_syscall_64+0xcd/0xf80
[  568.961379][T12269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.961395][T12269] RIP: 0033:0x7f947398e15c
[  568.961408][T12269] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  568.961422][T12269] RSP: 002b:00007f947485f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  568.961438][T12269] RAX: ffffffffffffffda RBX: 00007f9473be5fa0 RCX: 00007f947398e15c
[  568.961449][T12269] RDX: 000000000000000f RSI: 00007f947485f0a0 RDI: 0000000000000003
[  568.961459][T12269] RBP: 00007f947485f090 R08: 0000000000000000 R09: 0000000000000000
[  568.961469][T12269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.961479][T12269] R13: 00007f9473be6038 R14: 00007f9473be5fa0 R15: 00007ffe8fb6fb28
[  568.961503][T12269]  </TASK>
[  569.894932][ T5888] usb 4-1: USB disconnect, device number 28
[  570.036834][T12303] binder: 12302:12303 ioctl c0306201 200000000c80 returned -14
[  570.169976][   T24] libceph: connect (1)[c::]:6789 error -101
[  570.176318][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  570.199611][T12309] ceph: No mds server is up or the cluster is laggy
[  570.302735][T12315] syzkaller0: entered promiscuous mode
[  570.308580][T12315] syzkaller0: entered allmulticast mode
[  571.736953][T12337] futex_wake_op: syz.0.1751 tries to shift op by -1; fix this program
[  571.803037][T12338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1751'.
[  572.439190][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  572.439203][   T30] audit: type=1804 audit(1767426593.135:1582): pid=12344 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1753" name="/newroot/351/file0" dev="fuse" ino=1 res=1 errno=0
[  572.706247][T12353] binder: 12352:12353 ioctl c0306201 200000000c80 returned -14
[  572.938121][T12357] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1757'.
[  573.014827][ T5888] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  573.148146][T12355] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12355 comm=syz.3.1757
[  573.160660][T12355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1757'.
[  573.169705][T12355] bridge0: port 3(gretap0) entered blocking state
[  573.176156][T12355] bridge0: port 3(gretap0) entered listening state
[  573.182740][T12355] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.189809][T12355] bridge0: port 2(bridge_slave_1) entered listening state
[  573.197002][T12355] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.204105][T12355] bridge0: port 1(bridge_slave_0) entered listening state
[  573.212487][T12355] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1757'.
[  573.223888][T12355] bridge0: port 3(gretap0) entered disabled state
[  573.230409][T12355] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.237508][T12355] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.247459][ T6352] usb 1-1: new low-speed USB device number 42 using dummy_hcd
[  573.263179][ T5888] usb 5-1: config 0 has an invalid interface number: 16 but max is 0
[  573.271419][ T5888] usb 5-1: config 0 has no interface number 0
[  573.279472][ T5888] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  573.307020][ T5888] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  573.327682][ T5888] usb 5-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  573.352224][ T5888] usb 5-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  573.368273][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  573.391371][ T5888] usb 5-1: config 0 descriptor??
[  573.401081][ T6352] usb 1-1: device descriptor read/64, error -71
[  573.641092][ T6352] usb 1-1: new low-speed USB device number 43 using dummy_hcd
[  573.781083][ T6352] usb 1-1: device descriptor read/64, error -71
[  573.927394][ T6352] usb usb1-port1: attempt power cycle
[  574.291109][ T6352] usb 1-1: new low-speed USB device number 44 using dummy_hcd
[  574.350634][ T5888] uclogic 0003:28BD:0905.0023: interface is invalid, ignoring
[  574.394580][ T6352] usb 1-1: device descriptor read/8, error -71
[  574.641078][ T6352] usb 1-1: new low-speed USB device number 45 using dummy_hcd
[  574.664141][ T6352] usb 1-1: device descriptor read/8, error -71
[  574.772242][ T6352] usb usb1-port1: unable to enumerate USB device
[  576.563928][ T5888] usb 5-1: USB disconnect, device number 37
[  577.142041][ T5888] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  577.261058][ T5922] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  577.421082][ T5922] usb 3-1: Using ep0 maxpacket: 32
[  577.427806][ T5922] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  577.441148][ T5888] usb 5-1: Using ep0 maxpacket: 16
[  577.458277][ T5888] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  577.502168][ T5922] usb 3-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=70.f8
[  577.512044][ T5888] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  577.531097][ T5922] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.551414][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.555506][ T5922] usb 3-1: Product: syz
[  577.574207][ T5888] usb 5-1: Product: syz
[  577.584726][ T5888] usb 5-1: Manufacturer: syz
[  577.593489][ T5922] usb 3-1: Manufacturer: syz
[  577.681930][ T5888] usb 5-1: SerialNumber: syz
[  577.711812][ T5888] usb 5-1: config 0 descriptor??
[  577.726952][ T5922] usb 3-1: SerialNumber: syz
[  577.743581][ T5888] hub 5-1:0.0: bad descriptor, ignoring hub
[  577.749560][ T5888] hub 5-1:0.0: probe with driver hub failed with error -5
[  577.751998][ T5922] usb 3-1: config 0 descriptor??
[  577.760142][ T5888] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input30
[  577.849810][T12404] overlayfs: failed to resolve './file1': -2
[  577.921648][T12405] netlink: 'syz.3.1769': attribute type 10 has an invalid length.
[  578.184819][ T5922] net1080 3-1:0.0: probe with driver net1080 failed with error -22
[  578.248236][T12384] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1762'.
[  578.360624][   T30] audit: type=1400 audit(1767426599.055:1583): avc:  denied  { read write } for  pid=12380 comm="syz.4.1762" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  578.494191][   T30] audit: type=1400 audit(1767426599.055:1584): avc:  denied  { open } for  pid=12380 comm="syz.4.1762" path="/dev/input/mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  578.680226][T12420] futex_wake_op: syz.0.1772 tries to shift op by -1; fix this program
[  578.842894][T12421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1772'.
[  579.206464][T12426] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1763'.
[  579.533175][ T5888] usb 5-1: USB disconnect, device number 38
[  579.541064][T12431] ntfs3(nullb0): Primary boot signature is not NTFS.
[  579.547810][T12431] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  579.804938][   T30] audit: type=1400 audit(1767426600.505:1585): avc:  denied  { audit_read } for  pid=12435 comm="syz.1.1776" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  579.971575][ T5888] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  580.014395][ T5922] usb 3-1: USB disconnect, device number 33
[  580.061752][T12443] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1778'.
[  580.096991][T12443] mac80211_hwsim hwsim8 syzkaller0: entered promiscuous mode
[  580.104468][T12443] mac80211_hwsim hwsim8 syzkaller0: entered allmulticast mode
[  580.142544][ T5888] usb 1-1: config 0 has an invalid interface number: 16 but max is 0
[  580.171484][ T5888] usb 1-1: config 0 has no interface number 0
[  580.179588][ T5888] usb 1-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  580.209920][ T5888] usb 1-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  580.230879][ T5888] usb 1-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  580.285514][ T5888] usb 1-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  580.399765][ T5888] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.440232][ T5888] usb 1-1: config 0 descriptor??
[  581.504752][ T5888] uclogic 0003:28BD:0905.0024: interface is invalid, ignoring
[  582.425646][T12470] binder: 12465:12470 ioctl c0306201 200000000c80 returned -14
[  582.672160][ T5888] usb 1-1: USB disconnect, device number 46
[  582.881150][T12480] binder: 12473:12480 ioctl c0306201 200000000c80 returned -14
[  585.673266][T12499] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1795'.
[  586.571377][   T10] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  586.744496][   T10] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  586.781041][   T10] usb 4-1: config 0 has no interface number 0
[  586.797307][   T10] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  586.892375][T12523] ntfs3(nullb0): Primary boot signature is not NTFS.
[  586.899119][T12523] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  587.023564][   T10] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  587.033528][   T10] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  587.066319][   T10] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  587.092645][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.117984][   T10] usb 4-1: config 0 descriptor??
[  587.791278][   T10] uclogic 0003:28BD:0905.0025: interface is invalid, ignoring
[  589.205260][   T10] usb 4-1: USB disconnect, device number 29
[  589.377273][   T30] audit: type=1400 audit(1767426610.075:1586): avc:  denied  { map } for  pid=12547 comm="syz.3.1810" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  590.962950][ T5936] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  590.962971][   T10] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  591.161290][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  591.172431][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  591.183088][ T5936] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  591.193189][ T5936] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  591.203925][ T5936] usb 1-1: config 220 has no interface number 2
[  591.211122][ T5936] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  591.224624][   T10] usb 2-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  591.235557][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  591.236211][ T5936] usb 1-1: config 220 interface 0 has no altsetting 0
[  591.264544][   T10] usb 2-1: config 0 descriptor??
[  591.266584][ T5936] usb 1-1: config 220 interface 76 has no altsetting 0
[  591.287437][ T5936] usb 1-1: config 220 interface 1 has no altsetting 0
[  591.303733][ T5936] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  591.314185][ T5936] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  591.372314][ T5936] usb 1-1: Product: syz
[  591.429893][ T5936] usb 1-1: Manufacturer: syz
[  591.447301][ T5936] usb 1-1: SerialNumber: syz
[  591.715346][   T10] kye 0003:0458:5013.0026: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  591.804363][ T5936] usb 1-1: selecting invalid altsetting 0
[  591.820608][T12575] binder: 12574:12575 ioctl c0306201 200000000c80 returned -14
[  591.820823][   T10] kye 0003:0458:5013.0026: unknown main item tag 0x1
[  591.841129][ T5936] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  591.855414][ T5936] uvcvideo 1-1:220.0: No valid video chain found.
[  591.883065][   T10] kye 0003:0458:5013.0026: hidraw0: USB HID v0.00 Device [HID 0458:5013] on usb-dummy_hcd.1-1/input0
[  591.885666][ T5936] usb 1-1: selecting invalid altsetting 0
[  591.918134][ T5936] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  591.951713][ T5936] usb 1-1: USB disconnect, device number 47
[  592.038200][   T10] kye 0003:0458:5013.0026: tablet-enabling feature report not found
[  592.059815][   T10] kye 0003:0458:5013.0026: tablet enabling failed
[  592.075218][   T10] usb 2-1: USB disconnect, device number 37
[  592.798750][T12580] fido_id[12580]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  592.849293][   T10] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  592.897146][T12593] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1822'.
[  593.033388][T12593] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12593 comm=syz.2.1822
[  593.046851][T12593] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1822'.
[  593.077062][T12593] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1822'.
[  593.129938][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  593.155520][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  593.172517][   T10] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  593.195602][   T10] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  593.231134][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.258783][   T10] usb 5-1: config 0 descriptor??
[  593.522053][T12596] debugfs: '1��^!�l�1�*�$pOc' already exists in 'ieee80211'
[  593.682640][T12603] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=770 sclass=netlink_route_socket pid=12603 comm=syz.2.1825
[  593.922259][   T30] audit: type=1400 audit(1767426614.625:1587): avc:  denied  { write } for  pid=12607 comm="syz.3.1827" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  594.111999][   T30] audit: type=1400 audit(1767426614.645:1588): avc:  denied  { ioctl } for  pid=12607 comm="syz.3.1827" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  594.141990][   T10] plantronics 0003:047F:FFFF.0027: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  594.754482][T12624] binder: 12618:12624 ioctl c0306201 200000000c80 returned -14
[  595.013500][   T30] audit: type=1326 audit(1767426615.715:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.051316][   T30] audit: type=1326 audit(1767426615.735:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.077047][   T30] audit: type=1326 audit(1767426615.735:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.104145][   T30] audit: type=1326 audit(1767426615.735:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.131564][   T30] audit: type=1326 audit(1767426615.735:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.194551][ T5936] usb 5-1: USB disconnect, device number 39
[  595.269960][   T30] audit: type=1326 audit(1767426615.735:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.294683][   T30] audit: type=1326 audit(1767426615.995:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.601209][   T30] audit: type=1326 audit(1767426615.995:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.732621][   T30] audit: type=1326 audit(1767426616.035:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  595.888405][   T30] audit: type=1326 audit(1767426616.035:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  596.203980][T12644] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1835'.
[  596.240768][T12644] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12644 comm=syz.4.1835
[  596.253937][T12644] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1835'.
[  596.263927][T12644] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.271074][T12644] bridge0: port 2(bridge_slave_1) entered listening state
[  596.278267][T12644] bridge0: port 1(bridge_slave_0) entered blocking state
[  596.285312][T12644] bridge0: port 1(bridge_slave_0) entered listening state
[  596.303901][T12644] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1835'.
[  596.521573][T12644] bridge0: port 2(bridge_slave_1) entered disabled state
[  596.528831][T12644] bridge0: port 1(bridge_slave_0) entered disabled state
[  597.408132][T12658] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1839'.
[  597.436299][T12658] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12658 comm=syz.2.1839
[  597.449217][T12658] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1839'.
[  597.465680][T12658] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1839'.
[  597.882982][T12662] netlink: 'syz.4.1841': attribute type 1 has an invalid length.
[  598.031611][T12667] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  598.410292][T12662] 8021q: adding VLAN 0 to HW filter on device bond3
[  598.515788][T12673] bond3: (slave gretap1): making interface the new active one
[  598.536907][T12673] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  599.593067][T12689] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  599.980094][T12698] input: syz0 as /devices/virtual/input/input32
[  600.327209][T12708] binder: 12706:12708 ioctl c0306201 200000000c80 returned -14
[  601.242368][T12731] ntfs3(nullb0): Primary boot signature is not NTFS.
[  601.249525][T12731] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  601.341785][T12735] FAULT_INJECTION: forcing a failure.
[  601.341785][T12735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  601.361143][ T6352] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  601.486735][T12735] CPU: 0 UID: 0 PID: 12735 Comm: syz.4.1864 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  601.486755][T12735] Tainted: [L]=SOFTLOCKUP
[  601.486759][T12735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  601.486765][T12735] Call Trace:
[  601.486769][T12735]  <TASK>
[  601.486773][T12735]  dump_stack_lvl+0x16c/0x1f0
[  601.486790][T12735]  should_fail_ex+0x512/0x640
[  601.486809][T12735]  _copy_from_user+0x2e/0xd0
[  601.486825][T12735]  copy_msghdr_from_user+0x98/0x160
[  601.486836][T12735]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  601.486853][T12735]  ___sys_sendmsg+0xfe/0x1d0
[  601.486864][T12735]  ? __pfx____sys_sendmsg+0x10/0x10
[  601.486891][T12735]  __sys_sendmsg+0x16d/0x220
[  601.486902][T12735]  ? __pfx___sys_sendmsg+0x10/0x10
[  601.486921][T12735]  do_syscall_64+0xcd/0xf80
[  601.486935][T12735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.486946][T12735] RIP: 0033:0x7f1f33b8f749
[  601.486955][T12735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  601.486964][T12735] RSP: 002b:00007f1f31df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  601.486974][T12735] RAX: ffffffffffffffda RBX: 00007f1f33de5fa0 RCX: 00007f1f33b8f749
[  601.486981][T12735] RDX: 0000000004008094 RSI: 0000200000000100 RDI: 0000000000000003
[  601.486987][T12735] RBP: 00007f1f31df6090 R08: 0000000000000000 R09: 0000000000000000
[  601.486992][T12735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  601.486998][T12735] R13: 00007f1f33de6038 R14: 00007f1f33de5fa0 R15: 00007ffcdfa5bdb8
[  601.487011][T12735]  </TASK>
[  602.005683][ T6352] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  602.021328][ T6352] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  602.031435][ T6352] usb 1-1: Product: syz
[  602.035709][ T6352] usb 1-1: Manufacturer: syz
[  602.041344][ T6352] usb 1-1: SerialNumber: syz
[  602.307221][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  602.307232][   T30] audit: type=1400 audit(1767426623.005:1627): avc:  denied  { map } for  pid=12704 comm="syz.0.1855" path="socket:[36423]" dev="sockfs" ino=36423 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  602.463205][ T6352] rtl8150 1-1:1.0: couldn't reset the device
[  602.470415][ T6352] rtl8150 1-1:1.0: probe with driver rtl8150 failed with error -5
[  602.489195][ T6352] usb 1-1: USB disconnect, device number 48
[  602.653057][T12753] netlink: 'syz.3.1867': attribute type 10 has an invalid length.
[  603.259096][T12759] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1868'.
[  603.274487][T12759] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12759 comm=syz.4.1868
[  603.287329][T12759] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1868'.
[  603.299610][T12759] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.306780][T12759] bridge0: port 2(bridge_slave_1) entered listening state
[  603.314423][T12759] bridge0: port 1(bridge_slave_0) entered blocking state
[  603.321658][T12759] bridge0: port 1(bridge_slave_0) entered listening state
[  603.387068][T12759] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1868'.
[  603.451404][T12759] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.458539][T12759] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.478257][   T30] audit: type=1326 audit(1767426624.175:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  603.699499][   T30] audit: type=1326 audit(1767426624.175:1629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  603.740365][   T30] audit: type=1326 audit(1767426624.175:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  603.855478][   T30] audit: type=1326 audit(1767426624.175:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  604.514933][T12776] autofs: Unknown parameter 'fd0xffffffffffffffff'
[  604.581887][T12776] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  604.654891][T12777] ptrace attach of "./syz-executor exec"[12778] was attempted by "./syz-executor exec"[12777]
[  604.903981][T12776] overlayfs: failed to set xattr on upper
[  604.909702][T12776] overlayfs: ...falling back to redirect_dir=nofollow.
[  604.916549][T12776] overlayfs: ...falling back to index=off.
[  604.922342][T12776] overlayfs: ...falling back to uuid=null.
[  604.928168][T12776] overlayfs: maximum fs stacking depth exceeded
[  604.999263][   T30] audit: type=1326 audit(1767426624.175:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  605.022991][   T30] audit: type=1326 audit(1767426624.175:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  605.220844][   T30] audit: type=1326 audit(1767426624.435:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  606.141412][T12773] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  606.148954][T12773] IPv6: NLM_F_CREATE should be set when creating new route
[  606.156203][T12773] IPv6: NLM_F_CREATE should be set when creating new route
[  606.163416][T12773] IPv6: NLM_F_CREATE should be set when creating new route
[  606.716518][   T30] audit: type=1326 audit(1767426624.435:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947398f749 code=0x7ffc0000
[  608.797969][T12805] genirq: Flags mismatch irq 4. 00200000 (das16m1) vs. 00200080 (ttyS0)
[  608.997259][T12819] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1886'.
[  609.471118][ T5922] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  609.651086][ T5985] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  609.661774][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.673180][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  609.683239][ T5922] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  609.692513][ T5922] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.754456][T12838] overlay: ./file0 is not a directory
[  609.768349][ T5922] usb 2-1: config 0 descriptor??
[  609.822801][ T5985] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.845162][ T5985] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  609.856061][ T5985] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  609.870338][ T5985] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  609.879853][ T5985] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.890436][ T5985] usb 3-1: config 0 descriptor??
[  610.065826][T12845] ntfs3(nullb0): Primary boot signature is not NTFS.
[  610.072641][T12845] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  610.245218][T12851] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1899'.
[  610.258928][T12851] bridge0: port 3(gretap0) entered disabled state
[  610.265730][T12851] bridge0: port 2(bridge_slave_1) entered disabled state
[  610.273061][T12851] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.490046][ T5985] plantronics 0003:047F:FFFF.0029: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  610.506026][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  610.535812][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  610.587750][T12852] tmpfs: Bad value for 'mpol'
[  610.591100][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  610.683160][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  610.884424][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  610.983854][   T30] audit: type=1400 audit(1767426631.685:1636): avc:  denied  { listen } for  pid=12855 comm="syz.3.1900" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  611.005758][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  611.013513][ T5922] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  611.022698][ T5922] pyra 0003:1E7D:2CF6.0028: hidraw1: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.1-1/input0
[  611.045645][   T30] audit: type=1400 audit(1767426631.745:1637): avc:  denied  { ioctl } for  pid=12855 comm="syz.3.1900" path="socket:[37010]" dev="sockfs" ino=37010 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  611.242188][ T6352] usb 3-1: USB disconnect, device number 34
[  613.052846][T12884] binder: 12879:12884 ioctl c0306201 200000000c80 returned -14
[  613.572652][T12888] mac80211_hwsim hwsim11 syzkaller0: left promiscuous mode
[  613.581436][T12888] mac80211_hwsim hwsim11 syzkaller0: left allmulticast mode
[  613.686523][T12891] dvmrp0: entered allmulticast mode
[  613.813992][ T5922] pyra 0003:1E7D:2CF6.0028: couldn't init struct pyra_device
[  613.861047][ T5922] pyra 0003:1E7D:2CF6.0028: couldn't install mouse
[  613.875710][ T5922] pyra 0003:1E7D:2CF6.0028: probe with driver pyra failed with error -71
[  613.913173][ T5922] usb 2-1: USB disconnect, device number 38
[  614.070320][T12901] futex_wake_op: syz.4.1911 tries to shift op by -1; fix this program
[  614.222875][T12903] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1911'.
[  615.061091][   T10] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  615.799183][   T10] usb 2-1: Using ep0 maxpacket: 8
[  615.946613][   T10] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  615.965086][   T10] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  615.984980][   T10] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  616.005875][   T10] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  616.070406][   T10] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  616.164754][T12922] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1915'.
[  616.181552][T12922] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12922 comm=syz.4.1915
[  616.194528][T12922] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1915'.
[  616.206598][T12922] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.213897][T12922] bridge0: port 2(bridge_slave_1) entered listening state
[  616.221579][T12922] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.228785][T12922] bridge0: port 1(bridge_slave_0) entered listening state
[  616.243327][T12922] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1915'.
[  616.347780][   T10] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  616.381327][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.551197][T12922] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.558427][T12922] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.775695][   T10] usb 2-1: usb_control_msg returned -32
[  616.782857][   T10] usbtmc 2-1:16.0: can't read capabilities
[  616.815457][T12927] xt_CT: You must specify a L4 protocol and not use inversions on it
[  617.246361][T12940] 9pnet_fd: Insufficient options for proto=fd
[  617.357121][   T10] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  617.581404][ T5922] usb 2-1: USB disconnect, device number 39
[  617.671080][   T10] usb 5-1: Using ep0 maxpacket: 16
[  617.678237][   T10] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  617.731727][ T5985] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  617.769689][   T10] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  617.780621][   T10] usb 5-1: config 0 has no interface number 0
[  617.787099][   T10] usb 5-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  617.801759][   T10] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  617.811110][   T10] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  617.819816][   T10] usb 5-1: Product: syz
[  617.834683][   T10] usb 5-1: SerialNumber: syz
[  617.847665][   T10] usb 5-1: config 0 descriptor??
[  617.981524][T12947] FAULT_INJECTION: forcing a failure.
[  617.981524][T12947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  618.082361][T12929] virtio-fs: tag </dev/md0> not found
[  618.260882][ T5985] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  618.271877][ T5985] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  618.281823][ T5985] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  618.294645][ T5985] usb 3-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[  618.303723][ T5985] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  618.327946][T12947] CPU: 1 UID: 0 PID: 12947 Comm: syz.0.1923 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  618.327971][T12947] Tainted: [L]=SOFTLOCKUP
[  618.327977][T12947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  618.327986][T12947] Call Trace:
[  618.327992][T12947]  <TASK>
[  618.327999][T12947]  dump_stack_lvl+0x16c/0x1f0
[  618.328023][T12947]  should_fail_ex+0x512/0x640
[  618.328050][T12947]  _copy_to_user+0x32/0xd0
[  618.328076][T12947]  simple_read_from_buffer+0xcb/0x170
[  618.328105][T12947]  proc_fail_nth_read+0x197/0x240
[  618.328123][T12947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  618.328140][T12947]  ? rw_verify_area+0xcf/0x6c0
[  618.328157][T12947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  618.328173][T12947]  vfs_read+0x1e4/0xcf0
[  618.328193][T12947]  ? __pfx___mutex_lock+0x10/0x10
[  618.328216][T12947]  ? __pfx_vfs_read+0x10/0x10
[  618.328241][T12947]  ? __fget_files+0x20e/0x3c0
[  618.328271][T12947]  ksys_read+0x12a/0x250
[  618.328290][T12947]  ? __pfx_ksys_read+0x10/0x10
[  618.328307][T12947]  ? rcu_is_watching+0x12/0xc0
[  618.328330][T12947]  do_syscall_64+0xcd/0xf80
[  618.328353][T12947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.328371][T12947] RIP: 0033:0x7fe94238e15c
[  618.328385][T12947] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  618.328400][T12947] RSP: 002b:00007fe943293030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  618.328417][T12947] RAX: ffffffffffffffda RBX: 00007fe9425e6090 RCX: 00007fe94238e15c
[  618.328427][T12947] RDX: 000000000000000f RSI: 00007fe9432930a0 RDI: 0000000000000005
[  618.328437][T12947] RBP: 00007fe943293090 R08: 0000000000000000 R09: 0000000000000000
[  618.328446][T12947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  618.328455][T12947] R13: 00007fe9425e6128 R14: 00007fe9425e6090 R15: 00007ffd5da00e58
[  618.328480][T12947]  </TASK>
[  618.579546][ T5985] usb 3-1: config 0 descriptor??
[  619.047433][T12958] ntfs3(nullb0): Primary boot signature is not NTFS.
[  619.054596][T12958] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  619.693869][ T5985] usbhid 3-1:0.0: can't add hid device: -71
[  619.699868][ T5985] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  619.709786][ T5985] usb 3-1: USB disconnect, device number 35
[  619.968273][T12964] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1927'.
[  620.083015][T12965] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12965 comm=syz.1.1927
[  620.098186][T12965] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1927'.
[  620.155445][   T10] usbhid 5-1:0.8: couldn't find an input interrupt endpoint
[  620.185955][   T10] usb 5-1: USB disconnect, device number 40
[  620.222012][T12965] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1927'.
[  620.342766][T12971] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1928'.
[  620.361241][T12971] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12971 comm=syz.0.1928
[  620.374239][T12971] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1928'.
[  620.384544][T12971] bridge0: port 3(gretap0) entered blocking state
[  620.391246][T12971] bridge0: port 3(gretap0) entered forwarding state
[  620.398395][T12971] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.405668][T12971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.413391][T12971] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.420646][T12971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.442859][T12971] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1928'.
[  620.452629][T12971] bridge0: port 3(gretap0) entered disabled state
[  620.459453][T12971] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.466872][T12971] bridge0: port 1(bridge_slave_0) entered disabled state
[  623.484330][T13002] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  623.484330][T13002]    program syz.0.1936 not setting count and/or reply_len properly
[  623.864800][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  623.871126][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  624.531048][ T5880] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  624.631400][T13017] binder: 13008:13017 ioctl c0306201 200000000c80 returned -14
[  624.658270][T13011] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1944'.
[  624.668161][T13011] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13011 comm=syz.4.1944
[  624.680648][T13011] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1944'.
[  624.689678][T13011] bridge0: port 2(bridge_slave_1) entered blocking state
[  624.696735][T13011] bridge0: port 2(bridge_slave_1) entered listening state
[  624.703937][T13011] bridge0: port 1(bridge_slave_0) entered blocking state
[  624.710993][T13011] bridge0: port 1(bridge_slave_0) entered listening state
[  624.719572][T13011] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1944'.
[  624.732227][T13011] bridge0: port 2(bridge_slave_1) entered disabled state
[  624.739321][T13011] bridge0: port 1(bridge_slave_0) entered disabled state
[  624.747454][ T5880] usb 2-1: Using ep0 maxpacket: 16
[  624.762066][ T5880] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  624.770316][ T5880] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  624.820564][ T5880] usb 2-1: config 0 has no interface number 0
[  624.828126][ T5880] usb 2-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  624.854658][ T5880] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  624.864190][ T5880] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  624.873038][ T5880] usb 2-1: Product: syz
[  624.878117][ T5880] usb 2-1: SerialNumber: syz
[  624.900320][ T5880] usb 2-1: config 0 descriptor??
[  625.124142][T13005] virtio-fs: tag </dev/md0> not found
[  625.173995][T13023] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1946'.
[  625.307139][T13027] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1945'.
[  625.469112][T13031] syzkaller0: entered promiscuous mode
[  625.489435][T13031] syzkaller0: entered allmulticast mode
[  625.529130][T13031] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  625.555099][T13030] tipc: Resetting bearer <eth:syzkaller0>
[  625.632282][T13030] tipc: Disabling bearer <eth:syzkaller0>
[  625.662637][T13032] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1945'.
[  625.757864][T13029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1947'.
[  625.831115][T13029] bridge_slave_1: left allmulticast mode
[  625.845810][T13029] bridge_slave_1: left promiscuous mode
[  625.869788][T13029] bridge0: port 2(bridge_slave_1) entered disabled state
[  625.912348][T13029] bridge_slave_0: left allmulticast mode
[  625.928738][T13029] bridge_slave_0: left promiscuous mode
[  625.968174][T13029] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.088012][T13040] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1950'.
[  626.403257][T13039] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13039 comm=syz.0.1950
[  626.416882][T13039] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1950'.
[  626.469441][T13039] bridge0: port 3(gretap0) entered blocking state
[  626.475937][T13039] bridge0: port 3(gretap0) entered forwarding state
[  626.482658][T13039] bridge0: port 2(bridge_slave_1) entered blocking state
[  626.489702][T13039] bridge0: port 2(bridge_slave_1) entered forwarding state
[  626.496987][T13039] bridge0: port 1(bridge_slave_0) entered blocking state
[  626.504035][T13039] bridge0: port 1(bridge_slave_0) entered forwarding state
[  626.546806][T13039] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1950'.
[  626.573161][T13039] bridge0: port 3(gretap0) entered disabled state
[  626.579779][T13039] bridge0: port 2(bridge_slave_1) entered disabled state
[  626.586977][T13039] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.604038][ T5880] usbhid 2-1:0.8: couldn't find an input interrupt endpoint
[  626.631480][ T5880] usb 2-1: USB disconnect, device number 40
[  626.701223][   T30] audit: type=1400 audit(1767426647.385:1638): avc:  denied  { lock } for  pid=13041 comm="syz.3.1951" path="socket:[38250]" dev="sockfs" ino=38250 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  626.966780][T13050] ntfs3(nullb0): Primary boot signature is not NTFS.
[  626.973592][T13050] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  627.877326][T13060] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13060 comm=syz.0.1956
[  627.890511][T13060] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1956'.
[  627.900674][T13060] bridge0: port 3(gretap0) entered blocking state
[  627.907120][T13060] bridge0: port 3(gretap0) entered forwarding state
[  627.913822][T13060] bridge0: port 2(bridge_slave_1) entered blocking state
[  627.920865][T13060] bridge0: port 2(bridge_slave_1) entered forwarding state
[  627.928135][T13060] bridge0: port 1(bridge_slave_0) entered blocking state
[  627.935184][T13060] bridge0: port 1(bridge_slave_0) entered forwarding state
[  628.086419][T13061] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1955'.
[  628.104343][T13061] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13061 comm=syz.4.1955
[  628.117326][T13061] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1955'.
[  628.127125][T13061] bridge0: port 2(bridge_slave_1) entered blocking state
[  628.134378][T13061] bridge0: port 2(bridge_slave_1) entered listening state
[  628.142040][T13061] bridge0: port 1(bridge_slave_0) entered blocking state
[  628.149278][T13061] bridge0: port 1(bridge_slave_0) entered listening state
[  628.374154][T13061] bridge0: port 2(bridge_slave_1) entered disabled state
[  628.381307][T13061] bridge0: port 1(bridge_slave_0) entered disabled state
[  628.394779][T13065] input: syz0 as /devices/virtual/input/input34
[  628.837178][T13082] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13082 comm=syz.1.1962
[  629.082081][T13084] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13084 comm=syz.4.1961
[  629.485473][T13084] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.492649][T13084] bridge0: port 2(bridge_slave_1) entered listening state
[  629.500002][T13084] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.507170][T13084] bridge0: port 1(bridge_slave_0) entered listening state
[  629.621402][T13084] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.628731][T13084] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.918203][T13111] fuse: Unknown parameter 'g���5 ��C*w�
[  630.918203][T13111] /��-UGz:�g�h��?0�k���
��n�;�9���:4D��m}�|y1
[  630.918203][T13111] 5 ��G�ݗ؈u��>�Y$�S��D8�:��8��y���00000000000000000000'
[  631.201140][ T5922] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  631.292126][T13121] __nla_validate_parse: 8 callbacks suppressed
[  631.292152][T13121] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1972'.
[  631.331557][T13121] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13121 comm=syz.2.1972
[  631.344982][T13121] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1972'.
[  631.367569][T13121] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1972'.
[  631.397612][ T5922] usb 2-1: config 0 has an invalid descriptor of length 241, skipping remainder of the config
[  631.475877][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  631.743179][ T5922] usb 2-1: config 0 has an invalid descriptor of length 241, skipping remainder of the config
[  631.780931][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  631.831531][ T5922] usb 2-1: config 0 has an invalid descriptor of length 241, skipping remainder of the config
[  631.851096][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  631.868685][ T5922] usb 2-1: config 0 has an invalid descriptor of length 241, skipping remainder of the config
[  631.882263][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  631.896927][ T5922] usb 2-1: config 0 has an invalid descriptor of length 241, skipping remainder of the config
[  631.907568][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  631.925342][ T5922] usb 2-1: New USB device found, idVendor=172f, idProduct=0034, bcdDevice= 0.00
[  631.941058][ T5985] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  631.959248][ T5922] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  632.030608][ T5922] usb 2-1: config 0 descriptor??
[  632.270462][ T5985] usb 4-1: config 2 interface 0 has no altsetting 0
[  632.297634][ T5985] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[  632.308023][ T5985] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  632.316342][ T5985] usb 4-1: Product: syz
[  632.320891][ T5985] usb 4-1: Manufacturer: syz
[  632.328136][ T5922] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  632.340284][ T5985] usb 4-1: SerialNumber: syz
[  632.376053][T13111] kvm: user requested TSC rate below hardware speed
[  632.623435][T13138] overlayfs: missing 'lowerdir'
[  632.700399][T13139] netlink: 'syz.2.1978': attribute type 10 has an invalid length.
[  632.921632][ T6352] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  632.945794][T13140] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1979'.
[  632.976585][ T5922] usb 2-1: USB disconnect, device number 41
[  633.003169][ T5985] usb 4-1: USB disconnect, device number 30
[  633.081075][ T6352] usb 1-1: Using ep0 maxpacket: 16
[  633.094831][ T6352] usb 1-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  633.107569][ T6352] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  633.121015][ T6352] usb 1-1: Product: syz
[  633.125155][ T6352] usb 1-1: Manufacturer: syz
[  633.129714][ T6352] usb 1-1: SerialNumber: syz
[  633.344905][   T30] audit: type=1326 audit(1767426654.045:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.373178][   T30] audit: type=1326 audit(1767426654.045:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.399878][ T6352] usb 1-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  633.421029][   T30] audit: type=1326 audit(1767426654.045:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.445804][ T6352] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  633.504406][ T6352] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  633.514948][ T6352] usb 1-1: media controller created
[  633.524636][   T30] audit: type=1326 audit(1767426654.045:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.550800][ T6352] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  633.560428][   T30] audit: type=1326 audit(1767426654.045:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.601101][ T5888] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  633.667007][   T30] audit: type=1326 audit(1767426654.075:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.692432][T13151] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  633.719375][   T30] audit: type=1326 audit(1767426654.075:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.743578][T13151] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  633.774935][   T30] audit: type=1326 audit(1767426654.075:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  633.804713][ T6352] zl10353_read_register: readreg error (reg=127, ret==-110)
[  633.851042][ T5888] usb 5-1: config 0 has an invalid interface number: 16 but max is 0
[  633.887731][T13158] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13158 comm=syz.3.1985
[  633.901372][T13158] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1985'.
[  633.975691][T13158] bridge0: port 3(gretap0) entered blocking state
[  633.982347][T13158] bridge0: port 3(gretap0) entered listening state
[  633.988960][T13158] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.996031][T13158] bridge0: port 2(bridge_slave_1) entered listening state
[  634.003231][T13158] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.010263][T13158] bridge0: port 1(bridge_slave_0) entered listening state
[  634.044172][T13158] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1985'.
[  634.105345][T13158] bridge0: port 3(gretap0) entered disabled state
[  634.111929][T13158] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.119023][T13158] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.174118][ T5888] usb 5-1: config 0 has no interface number 0
[  634.224302][ T5888] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  634.239681][   T30] audit: type=1326 audit(1767426654.075:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  634.265058][ T5888] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  634.280112][ T5888] usb 5-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  634.299240][   T30] audit: type=1326 audit(1767426654.075:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13148 comm="syz.2.1983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  634.325792][ T5888] usb 5-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  634.335747][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  634.354568][ T5888] usb 5-1: config 0 descriptor??
[  634.790768][T13182] FAULT_INJECTION: forcing a failure.
[  634.790768][T13182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  634.999842][ T5888] uclogic 0003:28BD:0905.002A: interface is invalid, ignoring
[  635.010619][T13182] CPU: 0 UID: 0 PID: 13182 Comm: syz.1.1994 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  635.010646][T13182] Tainted: [L]=SOFTLOCKUP
[  635.010652][T13182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  635.010661][T13182] Call Trace:
[  635.010667][T13182]  <TASK>
[  635.010675][T13182]  dump_stack_lvl+0x16c/0x1f0
[  635.010704][T13182]  should_fail_ex+0x512/0x640
[  635.010733][T13182]  _copy_from_iter+0x2a4/0x16c0
[  635.010760][T13182]  ? __alloc_skb+0x220/0x410
[  635.010784][T13182]  ? __alloc_skb+0x35d/0x410
[  635.010807][T13182]  ? __pfx__copy_from_iter+0x10/0x10
[  635.010831][T13182]  ? netlink_autobind.isra.0+0x158/0x370
[  635.010862][T13182]  netlink_sendmsg+0x820/0xdd0
[  635.010886][T13182]  ? __pfx_netlink_sendmsg+0x10/0x10
[  635.010915][T13182]  ____sys_sendmsg+0xa5d/0xc30
[  635.010938][T13182]  ? copy_msghdr_from_user+0x10a/0x160
[  635.010955][T13182]  ? __pfx_____sys_sendmsg+0x10/0x10
[  635.010984][T13182]  ___sys_sendmsg+0x134/0x1d0
[  635.011008][T13182]  ? __pfx____sys_sendmsg+0x10/0x10
[  635.011055][T13182]  __sys_sendmsg+0x16d/0x220
[  635.011072][T13182]  ? __pfx___sys_sendmsg+0x10/0x10
[  635.011105][T13182]  do_syscall_64+0xcd/0xf80
[  635.011128][T13182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.011145][T13182] RIP: 0033:0x7f947398f749
[  635.011159][T13182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.011175][T13182] RSP: 002b:00007f947485f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  635.011191][T13182] RAX: ffffffffffffffda RBX: 00007f9473be5fa0 RCX: 00007f947398f749
[  635.011202][T13182] RDX: 0000000000008840 RSI: 0000200000000740 RDI: 0000000000000003
[  635.011212][T13182] RBP: 00007f947485f090 R08: 0000000000000000 R09: 0000000000000000
[  635.011221][T13182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  635.011230][T13182] R13: 00007f9473be6038 R14: 00007f9473be5fa0 R15: 00007ffe8fb6fb28
[  635.011255][T13182]  </TASK>
[  635.226622][ T5888] usb 5-1: USB disconnect, device number 41
[  635.232673][ T6352] dvb_usb_gl861 1-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[  635.266232][ T6352] usb 1-1: USB disconnect, device number 49
[  635.356681][T13169] Bluetooth: hci1: Opcode 0x0401 failed: -4
[  635.427858][T13191] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13191 comm=syz.1.1996
[  635.755504][ T5985] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  635.811229][ T6352] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  635.820329][T13202] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1999'.
[  635.924759][ T5985] usb 2-1: Using ep0 maxpacket: 8
[  635.943806][ T5985] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  635.961070][ T6352] usb 1-1: device descriptor read/64, error -71
[  635.977628][ T5985] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  636.010264][ T5985] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  636.045902][ T5985] usb 2-1: config 0 descriptor??
[  636.281047][ T6352] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  636.281776][ T5985] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  636.461095][ T6352] usb 1-1: device descriptor read/64, error -71
[  636.585493][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  637.186328][ T6352] usb usb1-port1: attempt power cycle
[  637.561043][ T6352] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  637.581509][ T6352] usb 1-1: device descriptor read/8, error -71
[  637.670728][T13216] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2002'.
[  637.831095][ T6352] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  637.855878][ T6352] usb 1-1: device descriptor read/8, error -71
[  638.144916][ T5880] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  638.153715][ T6352] usb usb1-port1: unable to enumerate USB device
[  638.302582][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  638.314262][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  638.324910][ T5880] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  638.349319][ T5880] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  638.365768][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.378509][ T5880] usb 3-1: config 0 descriptor??
[  638.561353][ T5922] usb 2-1: USB disconnect, device number 42
[  638.645397][T13225] netlink: 'syz.1.2008': attribute type 1 has an invalid length.
[  638.654242][T13225] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  638.675890][T13226] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  638.771681][T13226] gretap1: entered promiscuous mode
[  638.848053][ T5880] plantronics 0003:047F:FFFF.002B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  638.941289][T13231] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13231 comm=syz.0.2007
[  639.890153][ T5922] usb 3-1: USB disconnect, device number 36
[  640.424589][T13264] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  641.158518][T13270] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2019'.
[  641.600023][T13269] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13269 comm=syz.1.2019
[  641.613532][T13269] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2019'.
[  641.623166][T13269] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2019'.
[  642.377558][T13285] futex_wake_op: syz.1.2024 tries to shift op by -1; fix this program
[  642.666361][T13288] netlink: 'syz.4.2022': attribute type 5 has an invalid length.
[  642.677455][T13285] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2024'.
[  643.039169][   T30] kauditd_printk_skb: 61 callbacks suppressed
[  643.039179][   T30] audit: type=1326 audit(1767426663.735:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.110355][   T30] audit: type=1326 audit(1767426663.765:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.138064][T13299] tmpfs: Bad value for 'nr_inodes'
[  643.286007][ T5922] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  643.476858][ T5922] usb 5-1: Using ep0 maxpacket: 8
[  643.484440][T13304] netlink: 212348 bytes leftover after parsing attributes in process `syz.1.2030'.
[  643.504841][   T30] audit: type=1326 audit(1767426663.765:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.505770][ T5922] usb 5-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  643.546739][ T5922] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  643.561078][ T5880] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  643.613483][   T30] audit: type=1326 audit(1767426663.765:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.697101][ T5922] usb 5-1: Product: syz
[  643.709887][ T5922] usb 5-1: Manufacturer: syz
[  643.719996][ T5922] usb 5-1: SerialNumber: syz
[  643.749999][ T5922] usb 5-1: config 0 descriptor??
[  643.758334][ T5922] gspca_main: se401-2.14.0 probing 047d:5003
[  643.758484][ T5880] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  643.779443][   T30] audit: type=1326 audit(1767426663.765:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.820589][ T5880] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  643.840636][ T5880] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  643.854981][   T30] audit: type=1326 audit(1767426663.765:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.878945][ T5880] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  643.888113][ T5880] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.907917][   T30] audit: type=1326 audit(1767426663.775:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  643.933587][ T5880] usb 1-1: config 0 descriptor??
[  643.956284][   T30] audit: type=1326 audit(1767426663.775:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  644.011065][   T30] audit: type=1326 audit(1767426663.775:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  644.044970][   T30] audit: type=1326 audit(1767426663.775:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13293 comm="syz.2.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7fbd7758f749 code=0x7ffc0000
[  644.171350][ T6352] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  644.289780][ T5922] gspca_se401: Wrong descriptor type
[  644.394350][ T6352] usb 2-1: Using ep0 maxpacket: 16
[  644.401294][ T6352] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.412380][ T6352] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  644.422353][ T6352] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  644.458472][ T5888] usb 5-1: USB disconnect, device number 42
[  644.491796][ T6352] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.522843][ T6352] usb 2-1: config 0 descriptor??
[  644.528681][T13319] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  644.719427][ T5880] plantronics 0003:047F:FFFF.002C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  645.123952][ T6352] mcp2221 0003:04D8:00DD.002D: unknown main item tag 0x0
[  645.336534][ T6352] mcp2221 0003:04D8:00DD.002D: unknown main item tag 0x0
[  645.392027][T13323] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2035'.
[  645.409593][ T6352] mcp2221 0003:04D8:00DD.002D: unknown main item tag 0x0
[  645.419960][ T6352] mcp2221 0003:04D8:00DD.002D: unknown main item tag 0x0
[  645.427422][ T6352] mcp2221 0003:04D8:00DD.002D: unknown main item tag 0x0
[  645.429368][T13323] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13323 comm=syz.4.2035
[  645.446972][T13323] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2035'.
[  645.456044][T13323] bridge0: port 2(bridge_slave_1) entered blocking state
[  645.463093][T13323] bridge0: port 2(bridge_slave_1) entered listening state
[  645.470279][T13323] bridge0: port 1(bridge_slave_0) entered blocking state
[  645.477753][T13323] bridge0: port 1(bridge_slave_0) entered listening state
[  645.486889][T13323] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2035'.
[  645.509851][T13323] bridge0: port 2(bridge_slave_1) entered disabled state
[  645.517026][T13323] bridge0: port 1(bridge_slave_0) entered disabled state
[  645.541765][ T6352] mcp2221 0003:04D8:00DD.002D: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  645.711208][T13329] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2036'.
[  645.750135][T13329] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13329 comm=syz.3.2036
[  645.763405][T13329] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2036'.
[  645.773616][T13329] bridge0: port 3(gretap0) entered blocking state
[  645.780200][T13329] bridge0: port 3(gretap0) entered listening state
[  645.787277][T13329] bridge0: port 2(bridge_slave_1) entered blocking state
[  645.794563][T13329] bridge0: port 2(bridge_slave_1) entered listening state
[  645.802230][T13329] bridge0: port 1(bridge_slave_0) entered blocking state
[  645.809453][T13329] bridge0: port 1(bridge_slave_0) entered listening state
[  645.826710][T13329] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2036'.
[  645.889864][ T6352] usb 2-1: USB disconnect, device number 43
[  645.901609][ T5888] usb 1-1: USB disconnect, device number 54
[  646.000945][T13329] bridge0: port 3(gretap0) entered disabled state
[  646.007567][T13329] bridge0: port 2(bridge_slave_1) entered disabled state
[  646.014680][T13329] bridge0: port 1(bridge_slave_0) entered disabled state
[  646.339293][T13335] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2039'.
[  648.894053][T13366] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2046'.
[  648.920222][T13366] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13366 comm=syz.3.2046
[  648.933432][T13366] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2046'.
[  648.945807][T13366] bridge0: port 3(gretap0) entered blocking state
[  648.952538][T13366] bridge0: port 3(gretap0) entered listening state
[  648.959596][T13366] bridge0: port 2(bridge_slave_1) entered blocking state
[  648.966895][T13366] bridge0: port 2(bridge_slave_1) entered listening state
[  648.974618][T13366] bridge0: port 1(bridge_slave_0) entered blocking state
[  648.981949][T13366] bridge0: port 1(bridge_slave_0) entered listening state
[  649.000809][T13366] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2046'.
[  649.397543][T13366] bridge0: port 3(gretap0) entered disabled state
[  649.404154][T13366] bridge0: port 2(bridge_slave_1) entered disabled state
[  649.411335][T13366] bridge0: port 1(bridge_slave_0) entered disabled state
[  649.510198][T13355] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13355 comm=syz.2.2044
[  649.522734][T13355] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2044'.
[  649.562995][T13355] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2044'.
[  650.974013][ T5922] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  651.131074][ T5922] usb 3-1: Using ep0 maxpacket: 16
[  651.142153][ T5922] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  651.182736][ T5922] usb 3-1: config 0 interface 0 has no altsetting 0
[  651.202304][ T5922] usb 3-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  651.295080][T13412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2056'.
[  651.710951][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.721951][ T5922] usb 3-1: config 0 descriptor??
[  652.286894][ T5922] nzxt-smart2 0003:1E71:2009.002E: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[  652.345791][T13424] syzkaller0: entered promiscuous mode
[  652.361281][T13424] syzkaller0: entered allmulticast mode
[  652.436020][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  652.439044][   T30] audit: type=1326 audit(1767426673.115:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.527621][   T30] audit: type=1326 audit(1767426673.115:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.527698][T13432] tipc: Started in network mode
[  652.557066][   T30] audit: type=1326 audit(1767426673.115:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.587932][T13432] tipc: Node identity 16f7d7b4207a, cluster identity 4711
[  652.597548][T13432] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  652.623110][   T30] audit: type=1326 audit(1767426673.115:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.623908][T13433] syzkaller0: entered promiscuous mode
[  652.660704][T13399] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2054'.
[  652.672477][T13433] syzkaller0: entered allmulticast mode
[  652.678134][   T30] audit: type=1326 audit(1767426673.375:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.938996][T11126] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  652.942509][   T30] audit: type=1326 audit(1767426673.375:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.971833][   T30] audit: type=1326 audit(1767426673.405:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  652.997181][   T30] audit: type=1326 audit(1767426673.405:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  653.028593][T13423] tipc: Resetting bearer <eth:syzkaller0>
[  653.042236][T13423] tipc: Disabling bearer <eth:syzkaller0>
[  653.050470][   T30] audit: type=1326 audit(1767426673.405:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  653.075069][   T30] audit: type=1326 audit(1767426673.625:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13421 comm="syz.3.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5df9f8f749 code=0x7ffc0000
[  653.101062][T11126] usb 5-1: Using ep0 maxpacket: 32
[  653.107499][ T5922] usb 3-1: USB disconnect, device number 37
[  653.109300][T11126] usb 5-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50
[  653.123059][T11126] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.220697][T11126] usb 5-1: Product: syz
[  653.226215][T11126] usb 5-1: Manufacturer: syz
[  653.234123][T11126] usb 5-1: SerialNumber: syz
[  653.271451][T11126] usb 5-1: config 0 descriptor??
[  653.286581][T11126] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state.
[  653.296238][T11126] dvb-usb: bulk message failed: -22 (2/0)
[  653.393517][T11126] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  653.438238][T11126] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold)
[  653.458446][T11126] usb 5-1: media controller created
[  653.559289][T11126] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  653.685749][T11126] usb 5-1: selecting invalid altsetting 7
[  653.726237][T11126] cxusb: set interface failed
[  653.736134][T11126] dvb-usb: bulk message failed: -22 (1/0)
[  654.055306][T11126] DVB: Unable to find symbol lgdt330x_attach()
[  654.372630][T11126] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold'
[  654.591036][T11126] rc_core: IR keymap rc-dvico-portable not found
[  654.619811][T11126] Registered IR keymap rc-empty
[  654.663641][T11126] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0
[  654.813093][T11126] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0/input37
[  654.824735][T11126] dvb-usb: schedule remote query interval to 100 msecs.
[  654.832249][T11126] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected.
[  654.856643][T11126] usb 5-1: USB disconnect, device number 43
[  654.997555][T13470] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2070'.
[  655.375927][T11126] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected.
[  655.681051][T11126] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  656.000470][T13476] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2071'.
[  656.144134][T11126] usb 5-1: config 0 has an invalid interface number: 16 but max is 0
[  656.152316][T11126] usb 5-1: config 0 has no interface number 0
[  656.161318][T11126] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  656.185916][T13475] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13475 comm=syz.1.2071
[  656.198447][T13475] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2071'.
[  656.207635][T11126] usb 5-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  656.241369][T11126] usb 5-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  656.281015][T11126] usb 5-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  656.389029][T13479] binder: 13477:13479 ioctl c0306201 200000000c80 returned -14
[  656.558918][T11126] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.586369][T11126] usb 5-1: config 0 descriptor??
[  656.706126][T13481] netlink: 'syz.2.2073': attribute type 3 has an invalid length.
[  656.975589][T13490] SET target dimension over the limit!
[  656.985753][T13493] sctp: [Deprecated]: syz.3.2075 (pid 13493) Use of int in max_burst socket option deprecated.
[  656.985753][T13493] Use struct sctp_assoc_value instead
[  657.268128][T13502] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2076'.
[  658.043864][T11126] uclogic 0003:28BD:0905.002F: interface is invalid, ignoring
[  658.203132][T11126] usb 5-1: USB disconnect, device number 44
[  658.327391][T13513] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  658.336269][T13513] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  658.348031][T13513] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  658.400833][T13514] netlink: 'syz.0.2079': attribute type 10 has an invalid length.
[  658.735992][T13486] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13486 comm=syz.2.2076
[  658.748505][T13486] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2076'.
[  658.757523][T13486] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2076'.
[  659.035234][T13519] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2081'.
[  659.076417][T13519] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13519 comm=syz.1.2081
[  659.089507][T13519] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2081'.
[  659.108524][T13519] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2081'.
[  659.516102][T13526] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=13526 comm=syz.4.2083
[  659.808810][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  659.808849][   T30] audit: type=1400 audit(1767426680.325:1771): avc:  denied  { read write } for  pid=13521 comm="syz.4.2083" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  660.228339][   T30] audit: type=1400 audit(1767426680.325:1772): avc:  denied  { open } for  pid=13521 comm="syz.4.2083" path="/405/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  660.258155][T13530] futex_wake_op: syz.0.2085 tries to shift op by -1; fix this program
[  660.348332][T13531] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2085'.
[  660.405015][   T30] audit: type=1400 audit(1767426680.335:1773): avc:  denied  { ioctl } for  pid=13521 comm="syz.4.2083" path="/405/file0/file0" dev="fuse" ino=64 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  661.956623][T13559] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2092'.
[  662.028913][T13560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13560 comm=syz.4.2092
[  662.042027][T13560] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2092'.
[  662.221552][T13556] bond2 (unregistering): Released all slaves
[  662.298978][T13560] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2092'.
[  662.625619][T13564] tmpfs: Bad value for 'nr_inodes'
[  662.721600][ T5880] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  662.815535][   T30] audit: type=1400 audit(1767426683.515:1774): avc:  denied  { bind } for  pid=13571 comm="syz.0.2098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  662.841373][T11126] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  662.900534][ T5880] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[  662.917556][ T5880] usb 3-1: config 0 has no interface number 0
[  662.950688][ T5880] usb 3-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  662.991084][ T5880] usb 3-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  663.022344][T11126] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  663.030385][T11126] usb 5-1: config 0 has no interface number 0
[  663.039574][ T5880] usb 3-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  663.062574][T11126] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  663.216911][T11126] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.226878][ T5880] usb 3-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  663.238040][T11126] usb 5-1: Product: syz
[  663.242367][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.250593][T11126] usb 5-1: Manufacturer: syz
[  663.260697][T11126] usb 5-1: SerialNumber: syz
[  663.267508][ T5880] usb 3-1: config 0 descriptor??
[  663.281401][T11126] usb 5-1: config 0 descriptor??
[  663.601726][T11126] dvb_usb_ec168 5-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[  663.652132][T11126] usb 5-1: USB disconnect, device number 45
[  664.005539][ T5880] uclogic 0003:28BD:0905.0030: interface is invalid, ignoring
[  664.095313][ T5880] usb 3-1: USB disconnect, device number 38
[  664.340739][T13588] futex_wake_op: syz.1.2100 tries to shift op by -1; fix this program
[  664.427749][T13591] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2100'.
[  664.962384][T13593] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  665.760089][T13610] ntfs3(nullb0): Primary boot signature is not NTFS.
[  665.768186][T13610] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  666.329910][ T3899] smc: removing ib device syz1
[  666.349330][ T5880] syz1: Port: 1 Link DOWN
[  666.491046][ T5888] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  666.981488][ T5888] usb 5-1: device descriptor read/64, error -71
[  667.250378][   T30] audit: type=1400 audit(1767426687.875:1775): avc:  denied  { audit_write } for  pid=13617 comm="syz.3.2109" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  667.418473][ T5888] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  667.562277][ T5888] usb 5-1: device descriptor read/64, error -71
[  667.688952][ T5888] usb usb5-port1: attempt power cycle
[  668.087751][T13634] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2113'.
[  668.117442][T13634] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13634 comm=syz.2.2113
[  668.129981][T13634] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2113'.
[  668.139030][T13634] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2113'.
[  668.148283][ T5936] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  668.161130][ T5888] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  668.199395][ T5888] usb 5-1: device descriptor read/8, error -71
[  668.642566][ T5936] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  668.652936][ T5936] usb 4-1: config 0 has no interface number 0
[  668.718238][ T5936] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  668.745196][T13643] futex_wake_op: syz.2.2114 tries to shift op by -1; fix this program
[  668.764665][ T5888] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  668.770983][ T5936] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  669.021448][ T5888] usb 5-1: device descriptor read/8, error -71
[  669.038769][ T5936] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  669.095938][ T5936] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  669.121185][ T5936] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  669.141311][ T5888] usb usb5-port1: unable to enumerate USB device
[  669.180809][ T5936] usb 4-1: config 0 descriptor??
[  669.657455][T13653] ntfs3(nullb0): Primary boot signature is not NTFS.
[  669.664526][T13653] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  670.146438][ T5936] uclogic 0003:28BD:0905.0031: interface is invalid, ignoring
[  670.240706][T13664] ntfs3(nullb0): Primary boot signature is not NTFS.
[  670.248261][T13664] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  671.616726][T13676] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2123'.
[  671.641772][T13676] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13676 comm=syz.4.2123
[  671.654726][T13676] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2123'.
[  671.664346][T13676] bridge0: port 2(bridge_slave_1) entered blocking state
[  671.671597][T13676] bridge0: port 2(bridge_slave_1) entered listening state
[  671.679171][T13676] bridge0: port 1(bridge_slave_0) entered blocking state
[  671.686426][T13676] bridge0: port 1(bridge_slave_0) entered listening state
[  671.700753][T13676] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2123'.
[  672.008428][ T3899] ------------[ cut here ]------------
[  672.014100][ T3899] GID entry ref leak for dev syz1 index 2 ref=1
[  672.020310][ T3899] WARNING: drivers/infiniband/core/cache.c:806 at gid_table_release_one+0x1ad/0x450, CPU#0: kworker/u8:11/3899
[  672.032113][ T3899] Modules linked in:
[  672.036106][ T3899] CPU: 0 UID: 0 PID: 3899 Comm: kworker/u8:11 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  672.047214][ T3899] Tainted: [L]=SOFTLOCKUP
[  672.051577][ T3899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  672.061652][ T3899] Workqueue: ib-unreg-wq ib_unregister_work
[  672.067537][ T3899] RIP: 0010:gid_table_release_one+0x1b6/0x450
[  672.073618][ T3899] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 8a 77 4d f9 48 8d 3d 33 c1 23 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 70 77 4d f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[  672.093300][ T3899] RSP: 0018:ffffc9000d7a7ac8 EFLAGS: 00010293
[  672.099358][ T3899] RAX: 0000000000000000 RBX: ffff8880751aa000 RCX: 0000000000000001
[  672.107602][ T3899] RDX: 0000000000000002 RSI: ffff8880793c44e0 RDI: ffffffff90953270
[  672.115948][ T3899] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed10288fc800
[  672.123951][ T3899] R10: ffff8881447e4003 R11: ffffffff812ba1ca R12: ffffed100ea3541b
[  672.131952][ T3899] R13: ffff888028cf0000 R14: 0000000000000002 R15: dffffc0000000000
[  672.139897][ T3899] FS:  0000000000000000(0000) GS:ffff8881248f5000(0000) knlGS:0000000000000000
[  672.148832][ T3899] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  672.155425][ T3899] CR2: 000020000005b000 CR3: 000000007ae03000 CR4: 00000000003526f0
[  672.163390][ T3899] Call Trace:
[  672.166642][ T3899]  <TASK>
[  672.169558][ T3899]  ib_device_release+0xef/0x1e0
[  672.174419][ T3899]  ? __pfx_ib_device_release+0x10/0x10
[  672.179853][ T3899]  device_release+0xa4/0x240
[  672.184576][ T3899]  kobject_put+0x1ef/0x6f0
[  672.188970][ T3899]  put_device+0x1f/0x30
[  672.193515][ T3899]  process_one_work+0x9ba/0x1b20
[  672.198436][ T3899]  ? __pfx_process_one_work+0x10/0x10
[  672.203826][ T3899]  ? assign_work+0x1a0/0x250
[  672.208621][ T3899]  worker_thread+0x6c8/0xf10
[  672.213449][ T3899]  ? __pfx_worker_thread+0x10/0x10
[  672.218564][ T3899]  kthread+0x3c5/0x780
[  672.222636][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.227203][ T3899]  ? rcu_is_watching+0x12/0xc0
[  672.231970][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.236536][ T3899]  ret_from_fork+0x983/0xb10
[  672.241122][ T3899]  ? __pfx_ret_from_fork+0x10/0x10
[  672.246208][ T3899]  ? __switch_to+0x7af/0x10d0
[  672.250860][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.255447][ T3899]  ret_from_fork_asm+0x1a/0x30
[  672.260194][ T3899]  </TASK>
[  672.263217][ T3899] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  672.270469][ T3899] CPU: 0 UID: 0 PID: 3899 Comm: kworker/u8:11 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  672.281551][ T3899] Tainted: [L]=SOFTLOCKUP
[  672.285850][ T3899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  672.295873][ T3899] Workqueue: ib-unreg-wq ib_unregister_work
[  672.301743][ T3899] Call Trace:
[  672.305000][ T3899]  <TASK>
[  672.307903][ T3899]  dump_stack_lvl+0x3d/0x1f0
[  672.312469][ T3899]  vpanic+0x640/0x6f0
[  672.316428][ T3899]  ? gid_table_release_one+0x1ad/0x450
[  672.321856][ T3899]  panic+0xca/0xd0
[  672.325547][ T3899]  ? __pfx_panic+0x10/0x10
[  672.329937][ T3899]  ? check_panic_on_warn+0x1f/0xb0
[  672.335017][ T3899]  check_panic_on_warn+0xab/0xb0
[  672.339926][ T3899]  __warn+0x108/0x3c0
[  672.343877][ T3899]  __report_bug+0x2a0/0x520
[  672.348352][ T3899]  ? gid_table_release_one+0x1ad/0x450
[  672.353779][ T3899]  ? __pfx___report_bug+0x10/0x10
[  672.358780][ T3899]  report_bug_entry+0xe1/0x290
[  672.363513][ T3899]  ? gid_table_release_one+0x1b6/0x450
[  672.369373][ T3899]  handle_bug+0x18a/0x260
[  672.373675][ T3899]  exc_invalid_op+0x17/0x50
[  672.378152][ T3899]  asm_exc_invalid_op+0x1a/0x20
[  672.382968][ T3899] RIP: 0010:gid_table_release_one+0x1b6/0x450
[  672.389003][ T3899] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 8a 77 4d f9 48 8d 3d 33 c1 23 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 70 77 4d f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[  672.408578][ T3899] RSP: 0018:ffffc9000d7a7ac8 EFLAGS: 00010293
[  672.414614][ T3899] RAX: 0000000000000000 RBX: ffff8880751aa000 RCX: 0000000000000001
[  672.422556][ T3899] RDX: 0000000000000002 RSI: ffff8880793c44e0 RDI: ffffffff90953270
[  672.430506][ T3899] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed10288fc800
[  672.438445][ T3899] R10: ffff8881447e4003 R11: ffffffff812ba1ca R12: ffffed100ea3541b
[  672.446384][ T3899] R13: ffff888028cf0000 R14: 0000000000000002 R15: dffffc0000000000
[  672.454329][ T3899]  ? ret_from_fork_asm+0x1a/0x30
[  672.459258][ T3899]  ? gid_table_release_one+0x1a6/0x450
[  672.464707][ T3899]  ib_device_release+0xef/0x1e0
[  672.469544][ T3899]  ? __pfx_ib_device_release+0x10/0x10
[  672.474985][ T3899]  device_release+0xa4/0x240
[  672.479565][ T3899]  kobject_put+0x1ef/0x6f0
[  672.483972][ T3899]  put_device+0x1f/0x30
[  672.488110][ T3899]  process_one_work+0x9ba/0x1b20
[  672.493036][ T3899]  ? __pfx_process_one_work+0x10/0x10
[  672.498393][ T3899]  ? assign_work+0x1a0/0x250
[  672.502955][ T3899]  worker_thread+0x6c8/0xf10
[  672.507524][ T3899]  ? __pfx_worker_thread+0x10/0x10
[  672.512608][ T3899]  kthread+0x3c5/0x780
[  672.516668][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.521245][ T3899]  ? rcu_is_watching+0x12/0xc0
[  672.525992][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.530553][ T3899]  ret_from_fork+0x983/0xb10
[  672.535129][ T3899]  ? __pfx_ret_from_fork+0x10/0x10
[  672.540213][ T3899]  ? __switch_to+0x7af/0x10d0
[  672.544870][ T3899]  ? __pfx_kthread+0x10/0x10
[  672.549440][ T3899]  ret_from_fork_asm+0x1a/0x30
[  672.554189][ T3899]  </TASK>
[  672.557450][ T3899] Kernel Offset: disabled
[  672.561748][ T3899] Rebooting in 86400 seconds..