last executing test programs:

21.457850704s ago: executing program 4 (id=1383):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic', 0xff3d)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}], 0x5)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x5a9801, 0x0)
ioctl$KVM_GET_MSRS_sys(r5, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

17.743681495s ago: executing program 4 (id=1390):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r3, 0xc02c563a, &(0x7f00000000c0)={0xe, {0xc1e2, 0x1, 0x0, 0x1ff}, {0xfffffffc, 0x1, 0x7fffffff, 0x2c0000}, {0x4, 0x1dd}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x2, 0xd, 0x9, 0x9}]})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20050840)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.current\x00', 0x275a, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
read$msr(r5, &(0x7f0000000180)=""/174, 0xae)
add_key(0x0, &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe)
write(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4c, 0x0, 0x0)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000001000/0x1000)=nil)
syz_clone(0x20000, 0x0, 0xffffffffffffff99, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x1, 0x2000, 0x1000, &(0x7f0000008000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x3f, 0x0, 0x0)

14.837180987s ago: executing program 0 (id=1400):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic', 0xff3d)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}], 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x5a9801, 0x0)
ioctl$KVM_GET_MSRS_sys(r5, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

14.070804517s ago: executing program 4 (id=1404):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
ioctl$KVM_GET_MSRS_sys(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

12.404829605s ago: executing program 4 (id=1407):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r2 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000), &(0x7f0000000000))
io_uring_enter(r2, 0x48e9, 0x0, 0x2, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000140)={&(0x7f0000001000)={[{&(0x7f0000000200)="177fa8b9f7484a03254a837323dbf0eb9ef3184a1594936dad61f31f083bd2692022bec7703d7dc13e223573a564b683959d138ecff90f9c6e36b6e92750a7e066c27602c87f7cd217e193f9afd27fbe01be7cbcb535a685e443432c3dc52bd89273c51f269c50faf9a4714e270f6d24d2bc43531bd87a06816dcceeb99b4a0844999e3bc4063e2126819c23a77eefee8d255aca7eb72752a601df565eb4c1534cb6ae58da1375708c130ade87579fa2fdef14926585ee2dac87468833", 0xbd, 0x3}, {&(0x7f00000002c0)="85800622bdf0255a8d58589acc2f77d7b91a1873064998e3174eae1fe83d3bdad24896bdafad21ea7604616430a9ff1f73b74ba69bf28951a1d28315b2164e9032a13afd25561856f53e2e00585acc81a1", 0x51, 0x3}, {&(0x7f0000000340)="7c907dc82337997eae2dec0dab640208c453c5fcd196589e3dde7c8455ac911e6eaf899dd9a61bd053a8212e1286c73944fb73760e72adcfa39ab2fabf7daa0e4a75cc7e7d6bc80ca7c6393a8b58a1564d521e5e966b82", 0x57, 0x1}, {&(0x7f00000003c0)="580ed1665d61cceeded4e8f32f514abe0473dcc9f762b682f51a2799b399f95923c5ae8241a3a5104e00f62139c1aa120b3a89af2ffece9d7f309fb77483785d9c8c602931c8fda554f1afa0d9d211deae4de7eccc9390e6d0a7fd1357e96fd450668726ded048cf64e83b84da0e30e1f2aebd431a1ddbd37a2c99bc8418503006d82ee5535ec289897a910043d9824395d36803", 0x94, 0x3}, {&(0x7f0000000040)='H', 0x1, 0x1}]}, 0x5, 0x2}, 0x1)
ioctl$USBDEVFS_DISCSIGNAL(r1, 0x8010550e, 0x0)
sendmsg$IPSET_CMD_SWAP(r0, &(0x7f0000000e00)={0x0, 0xfffffffffffffffe, &(0x7f0000000dc0)={&(0x7f0000000100)={0x1c, 0x6, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4a040)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={<r4=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x25, &(0x7f0000000280)={r4, @in={{0x2, 0x4e21, @empty}}, 0x0, 0x0, 0x0, 0x8}, 0x9c)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r7 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x10000, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000002040)={{r7}, "be818fff98c092e5d0aa938651eed8c8c0a3dee279df708bd047792f595d491f1293ca135d80cbde286c83ff68cab47bc38d67aa409c144af43f86b54fb5a553123d8146f4aa8b5c655575d828573055ae8ec94a93c684cfe2d67ad88895ffe0d1af5c358354a04cf5acec557274b8d694361792e197feb6b6419efaf33a780ed6e5ec6f0e6d69b63865c0958a38b1b3ee8c78b82e27bd26a784263c883b89660af5671f495724fc632b19cf97ab98abb5b5f506db6c99e6f5b6d4474f24e56b8e465325ed84dc80425af19e5d725ae30a9a6e06dddd4268393b6687cff5a41da914180edcb2c8c70fe290f84cabed1170e025cf55171d908f7a1e03acbf219ba9f1b5ddf6b341eb27a6df8e5b78dbbb98194d10a10089f3f786aadd376f5f2f445121a606b179ee39fe3386dbbe6052e46558c7e4f3d9691c07e80855145bd2ea73170584e6b7e59e9c61b4c7d57ddf980eb0f75466575a0000077098a6023f9f245b48c7ff8e9077a90fb564e036552d23cdbbcbeed6a91a717f1af55f694d2ea2087df04263ec958b2a912a4484361249c2b6667123ecac528c594923320ad7b33bfbfad1cdce75a77a477549e59c72457f174e4825c17b94cbd1441a24f64841161e38a36a3f3be76674212135c419db2e3ff28014c250e95805f546e22f33712194e4ad2511cd2177eb62de25851057d15c28fa8e9c423c7c4c7c64fb1d17490f0a22b3d9a619090c1f47864264317d59b9b35437acb86c76f990a4b646b2c73c103b96337bc19b3e51d33530360c785b8cd81011af5d47d3da1288fe97789448b898cee761fece12d5a5dc0b36393638290d72e907acd6019a6182153b61280e49b8e74b28059486585e706ec2e27e07d528388a5fd8f0d96812ad0048e8f8372a3b96cdff159e71e8e4aadb2ddb964d4819058d572c1b417a47d0989774938fb661f2ce8841222ab4b17979e199a0fdcec17fa1afa4ef8002dc7429b74bcf7a026bef951b6e68e93d46fdf1b82d5fd4f7b5365a2180d9e259ae992f0baa064a3dad5b374c27107ee33da7fad0bbab2950bca2d4cc96f35eff26eb44307b78761bb34df6f2c75b0c13f81510b0d30d50eb76bb9ace5cee515c432df1d0ab85a2463d90d47907aa0ad36cea87c1e121cd1aed7efe6cb727230e477753d94a2486383fa0d82192ed401f86ff996f789d649dcfb55e76dc1dd2bf95c677b428ef142edc4f5e10ae8b645d133d3dad55ae39af4a41da43afaf71bdc8be9fb31304240e87a227c45d0b77b4267200e4ae41c01b1e1500e906fea6c7fc407dc5a0f29bd22fd1ea2bf38dcf084fc4af31a5258be41cb84cce884992c35ab3b81906f5e9c5cd4f101858b3a4e4e313c957db198a46f14298af8dee82df9caf4a1f5b35ddc43a1923f0acab6b0c9e32d042556cbdb1aed048e39fb46ac80670b2d183f7a7242189704973103ad4490c87b775fa90c464d90f7286932d512e1c0c58f2e92b888fe0fad5b6c262737d79f20babd9c594c6515325625faf001a4f19ba3202b5b1c71290cb8e2e1285ec6dfd63301b80af32ce3d1a5d0f3abd84811db1b888a78651a85c7880e83c1945d72ba93181a8c78313fb167c2585f401c983f07591bf74457dbd9cdfed0045f3f8f4ab2c6f91fc1f9851840c31e6893d250a7879f6f958ea0576ffb818d34ba30877b7fbd81ba84418d89601f528318a65001059b36e44cc68e151620fa1f033c9769b970dca11fd58afe809321cb792e35bb24f1243c6ddbe41ad4dffd6678977dc25b5a97ef6c9c7714f0bee25b2dc37c944d6e4231ea37d588905c9681b4180514c7281c568a4c3391539f313174872c3d387f0fdfbb4f9f47dda70d1744e1fd439b8c7e1e1bfe9027baf981c100cad849c12f61772effe9e7a35e142eda71420d5665c5272549cdf26bfec2e3971319d78dca73734fc29c005766a2332d39432f0be08731e42eb77b866d244804636a7d72fd3c7e558588d02c087f8f2df888a641142abacf343e974c302fc48bd46d13fd0b3a7d09df7b9e4724d516c89d6948316dd94c90e487c531c8ad769121bbc9fa60f07f7f8a329862266533b6ec81255bf9363b885a6ac9001d4cd69afd37d899fbb1c51b4251d0cf480e7432992c80af40f2d62dbdda847abf4c7d3a8063d7d18517cadc8b4f265dddbf675778b686f6961c93fd6f04be1d3988dc3cff99957415b4693b8b5dc92c9ded8f62a12c99eec1137ee3e4ca9826c5c4f6e23993f306e958b1bfae2daaf271aa4bb43ddf0d908cfa7c64238e23d2fa0a9495d5ae5a4cc0d8074fbc4e55336fac17745f9e813736c6c9b0d0c9b4798a4bb514edfed25daea9103ff3dc12e7bc945c2f9384253b0f4678e37ab7df0616f871341f843bc67c7f473bf830f78a2d688e8b5bbaa025b5162da9eda1217f3ac0bd6eea6884c0bbe64e6716bc1fc3c59a41c403dc5ee214ed78b0bf3b9a6aba75a5405f2b888e77e08a83542438b7e011ac061a47fa9f931b83bea05a9293edb0a2468340a4101ed68176852dc61607f3f6adb1fbd385633fac0c6a04af45b060c81da779cc223d8a595a8b841aef07489c08c459430650c6d44ec679de5c4e5956ada86c519b130d814ad80f9f68243c3d9e500bff4daec8c55e26b32e59d4ccc80f20d21c6be2ced4a439bc2e80797bbebc9afa658259276253835d91f4649110aea09cc700470682095028a75b769180a712318a5ecbccb51ed01b970c698d951707ed55449c867578dd626b3d2a45c2f2761cdaa19ba3948109fa9cf65d00ff919533486aa92855f045edf888116dede6b219747557fdca7d2e92327ce81d9eb53e814f4c2e8342fe399f5792ea49939dd9057c9ca932bfbec1fb6068e7a49d70633e34f5ca0015633a4ea1b768f4793fbfcb7211f96b67760e4a5f9eb37e8528698bf63485e2bf264f0276c5aae427b49edcd5b5586902b3c54494282bdde389409cf34ec825e216909749266ab28befca390b929de92b3f255c7a5ea49166bdf237ed746569a540ad5d110c093c2430c5b7d8b28886bc43a8e7c9580945a8ae46307e7b36c262eda14c7a2fd1e403b1cb3a8b9813b5fa66c3e84f6d207d73ca3b053873a78d7c634c7b0e08a6b531d2f6158de24f18eaa906f1355537bedba890d059ab8992f350df5f2e0c9264855f20266a7f2162e926ba0a5782d3d682dbe58467231e782dce593179ff01343d324963bc5e82a776cda608957e9b5b7db32204dbe90bf07ea7efb9759dd1663ff92b1353ea0bf7b9f3145bbddc88165363a8449c2df847c28e221e0e1528f5429904b87e0b220e937e51d96d314b503476d0175b4da5e2ec66e7fe0c7449d7d3fdc13b2c865a4bd49271332b26d71cf91f307e491a791f6fb06cfb728242ab3f28b9d5bd40b401760f454ca2c16cd149cbba81da063ce1d147c7c3d6d090955e7d079936df421b1129678fa8b8892891bc1e2cd59e95a500c266635073995e0bd3d62a52d73c6ceba3267ac4d2d57eb462b5028160a113bd14552571aec0e66b7692f652b2d2ebf676ae714392ada30325ebf726a185a37c394f5155de24547da50d6fe322efd386fde9e04de38ca65b452f9eb858e4f81044200135bfb46e5df3d00cb6679ca07178a28cbfc2aec0f7c52c737e0d1261e80fe11ce3df4a760d057d1cb9f42bc2c4e120649af622c7ba811a53f49c9e750ccd0da97c477aeeee0d8c4ca3f4705591ae625866e428e758473c0620f6967fbf1ed112fa942b505cb8daa2804285e0956dfabc8a2600d7d3a8a4b01a43337327b501cc124da59485d8988047327f3fa5a69c6bfbf2ae741e9f19fad80ef52421a1b0b0a6136b15185be529bf6387c0d4262ee0b20505001c0e0bb39ec830e1bd89003776de1ef9bf8a1a8db509e76d67660c2e7d7af47994b1a71171998535d997c318a12586b164de60778f4a67701a30119ece864ba82ea8ba35e38ab05c36c378f7f8f498be89415aad70f761cfa1174565566d7e8006eec439a8300a8ff140c7c0994237242027fb86e2af600b88a20a489fb7b5cd41e299d43fc86c59811e12aa639c2a6009f3e4d6b287341542b2c5a32807a2f89210125835bff4ef0d8167e7e6385a58d0836a9ff03cee4072c36a9eff72ba8eb3f4fd76d0789a487ec77c08d1b32b4360d85112cb4c51c6e1798e7efd5d9dda0b65fff3dded156ba68d94a8e045da8271efda4671324ac9b6a2e4ebd78d20642448da3e443882e7713121916304b04428c5d3c90452c9a6e0f2c5a2f8e3bf68c57a1be493f1fbc8a52f39d30f1e0052f6ac4adde0c3a4965f41176bd12a4e186d82fb360624ef684280a3720257d4578bf4d30d1d1ff79c0f6d4e3ddade635d113e53ec1e121b2ed4064cb7042753e9f6a9e526ec8b2bf106afc21b5336f53a5a1c1f22387842dc34d8036026c41c23624f527d071f9bf3576b0e609de04285b529829d2f978f546972c40b52dc65f0ec721cc8bfd2506657a01e27ba9509522dfcf6d89d129ed65053d05e7e39e8b7842101a76afc3b5f29af2c06fef48ad5d48b2c45af59c15e83ff22fab6683c8bd787b2a3e84e42b71a08e60b8d092d22d9adf60b3d07a209d897b5df7002dd7d2d0eeb5a80ca1918457bfdbbc773dc83eccd85ee1c37c5e15bf2cee7f0ae7835416dfa53270331a16f418b25d5ad922ef2009722dcd5e7d6481ff1cd7f3c4f567442acbaa98df5c39e716155771757f05597b861d55e01b5151f94b51be9c822d72bcc18f6058f7284e024ba3208a0e89b9dbb66b061b10588c9b86330d9e85a08ba83ae6c9fe85d1c5676c1e6626c4adc2c853607b77bd2c6c062f75526aedbd71fc703948157207baed81a68c15c7cefb0abc508ba5251b72f70a769e1b9297a2983d987fd1e27885aac601624072aaa2df5417fd745cc7d4c498fa3296484c9c951decce37f040159924af26960deabf9eff853dd3d404871e0dc33e7620da6344de6382b5814cd4326b5523a8181621a75bbd31b0297dfc174cf7ef2c74d5c3de0413a6e0ea76aea61bc359e7883ab3151d8403c6ed83f03ea7b7ba030040ecc47186527afae792cfbd94a9fa0639f4e70e0e32c756704c012d45a275b70c63960ccb49f04e2a7eab29da8cb529d9cf310500ae1ce2491ceb333d8325b9784e67bac2a65081046a025898d8ee255dcf3e099c35c083addbfd88929cac9f83faf399255ff438b30050e3dc5c883b01a2afbd525afa03b26b865ec41bcbb5316d4e7984024bb58f1794ac3ee5f1c1335994bcc41cad9530f8bbac33432477969fc9b0c511bca9d377bacd76ff5af19ae5c6671664c37d876c554f527686a5d40b8b29fcab44394f056a99b614d39900a9d1cdaf8d6f1a8789da194ef3af215b273c1e0b81e7a3c370bd863c3f9c89bc878839faafbcc92a69dd52814722a501b5dd54a2682f378e1150f777498c319b1f4c78420172188463f0c7bdc181cdd728aa901bb0c34bae3027bda4836ab384e4c177d048a8050e566c2b33c110093fb974637633c933d762cf488e16a614d982c195872123b4030387da4c5ccd5569889ae8a27b92fa6bc4f154f9071bb1f8ff8110ef057a4589ad4ca1a179deb5aebd643e1eaa512351b5b7297e4e2a556f0d23ba80a012a4422b9dc8badc6a924cdc937b86c3a27f5a9765da135907d1395ff3292b3dcee815d9a73020e1ec17629755ffaf2bd7cb3875eefcdc683d55a1dfc8dbb5a1d160ac4610e038d2a66b3b98e7694d8070e8a03150db7c8f"})
r8 = dup3(r6, r5, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100}, @flat=@binder={0x73622a85, 0x0, 0x1}}, &(0x7f0000000700)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

11.144728915s ago: executing program 0 (id=1410):
timer_create(0x1, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec774000)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a740000000638f7"], 0x9c}}, 0x24008000)
socket$l2tp(0x2, 0x2, 0x73)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x8480, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r4=>0x0})
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f0000000080)={0x28, 0x4, r4, 0x0, &(0x7f00008ad000/0x3000)=nil, 0x3000, 0x5})
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f0000000000)={0x28, 0x4, r6, 0x0, &(0x7f00004f9000/0x3000)=nil, 0x3000})
ioctl$IOMMU_IOAS_COPY(r5, 0x3b83, &(0x7f0000000040)={0x28, 0x5, r6, r6, 0x7, 0xfffffffffffffffa, 0x3fff})
r7 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r8, &(0x7f0000001740)={'syz0\x00', {0x8000}, 0x0, [0x9, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5, 0x5, 0x0, 0x0, 0x0, 0xfffffffa, 0xc0, 0x0, 0x3, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0xd6, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x2, 0x400, 0x1000, 0x10], [0x0, 0xffffffff, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0xc8ad, 0x0, 0x0, 0xfffffffc, 0x8001, 0x0, 0x0, 0x13, 0xfffffffd, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x7ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x400, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x200, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff, 0x806, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x28000000], [0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x681, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10004, 0x0, 0x0, 0x0, 0xfffffffc, 0xff, 0x9, 0x0, 0x0, 0xfffffffe, 0x0, 0x2]}, 0x45c)
ioctl$UI_DEV_CREATE(r8, 0x5501)
ioctl$UI_DEV_SETUP(r8, 0x405c5503, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000740)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
copy_file_range(0xffffffffffffffff, 0x0, r9, 0x0, 0xe976, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r10 = semget(0x1, 0x4, 0x39c)
semop(r10, &(0x7f00000000c0)=[{0x0, 0x3, 0x1000}, {0x1, 0x1}, {}], 0x3)
semctl$SETALL(r10, 0x0, 0x11, &(0x7f0000000240))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

10.755160268s ago: executing program 1 (id=1412):
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0xfe33)

10.577082984s ago: executing program 1 (id=1413):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x53, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1e)

10.370473212s ago: executing program 1 (id=1414):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2d50, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x33, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xc, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x8, 0x743083)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x7, {0x7, 0x7, "a7ea3163fd"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, &(0x7f0000000080)={0x0, 0x5, 0x11, {0x11, 0x22, "e36612e8f09ddb1508a186c9a242e1"}}, &(0x7f0000000140)={0x0, 0x3, 0xa7, @string={0xa7, 0x3, "85372bf4e41f6673aeadd7ddddd3fb200ee16d1ff0d5696b824d81baf6bd5560fdd9390c2f0d18970be6b706cd0db0576ab67c536d484c5b79da8c3ce8d755de57458d28310f854c56c2aece706479cc22e2422f6ccdce5f1943d2232e1d278bf433703ad69a4cb7310896588f40ed0bbfdab919c55caaf38a6bfff735bc49c151d20d6c3e2d144f26430916e1d8c759bea34800eda4ba7a520fb78f075d59022ab5fbe6a4"}}, &(0x7f00000000c0)={0x0, 0x22, 0x1f, {[@global=@item_012={0x1, 0x1, 0x0, '7'}, @local=@item_012={0x1, 0x2, 0xa, "82"}, @main=@item_4={0x3, 0x0, 0xa, "ad41d6d9"}, @global=@item_4={0x3, 0x1, 0x7, "be309d2d"}, @main=@item_4={0x3, 0x0, 0x8, "e310fa2b"}, @global=@item_012={0x1, 0x1, 0x7, '$'}, @global=@item_012={0x1, 0x1, 0x2, "d1"}, @local=@item_4={0x3, 0x2, 0x9, "bd42db3f"}, @local=@item_012={0x2, 0x2, 0x1, "a35b"}]}}, &(0x7f0000000280)={0x0, 0x21, 0x9, {0x9, 0x21, 0x8, 0x3, 0x1, {0x22, 0xbe}}}}, &(0x7f00000005c0)={0x2c, &(0x7f0000000300)={0x40, 0x18, 0xb9, "38f4a18a7b6217694b0fe85b65fb0e63a83a7011a99f9671995f33b63118b296b0f82bba92d5348e3e356b0663436935bd47f02445d93d581fb8ea3d507d1019821f3d3586a3b5e6d9abc6db68fb5c587deed8386d0230b834172d80715baf291b11b8fc3d3548ddb704a2bb93c16071c7a2dd5beccd8c996b217289304afd7f1d7f05ecfbed3f4a5ada0beae1b4e7b3e75cfabca4878a2bfddab3379deac1cd8497278a3da17c3cd3e60217d9a16e1e992ed1188c4c82db97"}, &(0x7f0000000400)={0x0, 0xa, 0x1, 0x8}, &(0x7f0000000440)={0x0, 0x8, 0x1, 0x6}, &(0x7f0000000480)={0x20, 0x1, 0xcc, "e388bf18a0c03d9ba8705f85bc5cc8eb9837433b1e74093fa8ebefd021d15c4d8bcc384823f81fb88e315ae2b479e6437162751d69f3ec6dbfeb1e846b8790f71a1479a065c245ca508cad703269e576fb675211e14e7cabf496eaec35dc7e48ef3d8afcbf41e3a53545827d41a4a5f3b7018ee9a573d5028ca70a6818fc6c764743de70c1b8e7b4cfd76e3e1cfb4526c6b785b5211422b527e263a36df965747ed97f537fc7ed562f61de40464b2ab57e5d605fdbc14d15821c306ba35d93f7c5239c3e2b31a25bb6c9df9c"}, &(0x7f0000000580)={0x20, 0x3, 0x1, 0x3}})

9.995401829s ago: executing program 3 (id=1415):
r0 = syz_open_dev$vbi(&(0x7f0000007b00), 0x1, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x70, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x38, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_BITWISE_DATA={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x10c}}, 0x0)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0745645, &(0x7f0000007b40)={0x7, [0xb, 0xec7, 0x7, 0x100, 0x6, 0xa86a, 0xaf45, 0xfff, 0x8, 0xff, 0x100, 0xffff, 0xf, 0xe, 0x1, 0x7ff, 0x0, 0x80, 0x47, 0x1, 0xfff, 0x8001, 0xffc0, 0xffff, 0xe3b7, 0x1, 0x5, 0x3, 0x4, 0x2, 0x81, 0x1, 0x800, 0x4200, 0x5, 0x221d, 0x9, 0x3, 0x40a2, 0xfff8, 0x44, 0x6, 0xd91, 0x1, 0xd0d, 0x3, 0x5d3, 0x792], 0x8})

9.826185371s ago: executing program 3 (id=1416):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x40, 0x0)
ioctl$COMEDI_CMDTEST(r0, 0x8050640a, &(0x7f0000000200)={0x0, 0x2ffff, 0x100, 0xd2f, 0x2, 0x1, 0x0, 0x10001, 0x1, 0x101, 0x2, 0x9, &(0x7f0000000080)=[0x9], 0x1, 0x0})

9.72908351s ago: executing program 3 (id=1417):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
ioctl$KVM_GET_MSRS_sys(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

8.154740718s ago: executing program 3 (id=1418):
socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x24060400)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f00000006c0)='net/igmp\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r6 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r6, 0x1, &(0x7f0000000000)={0x210a, r5}, 0x0)

7.559541504s ago: executing program 0 (id=1419):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r0 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='smaps\x00')
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x10c000)
read$FUSE(r1, &(0x7f0000002600)={0x2020}, 0x2020)
preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/7, 0x7}], 0x1, 0xe7, 0xf)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0, <r4=>0x0}, &(0x7f0000000000)=0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="f8000000160085020000000000000000ac1e0001000000000000000000000000e000000200"/64, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001900000000000000000000000000000000000000000000000005"], 0xf8}}, 0x0)
r5 = syz_io_uring_setup(0x239, &(0x7f0000000480)={0x0, 0x8901, 0x400, 0x0, 0x2cf}, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000600)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2007, @fd, 0x800, 0x0, 0x0, 0xd, 0x1, {0x2}})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)
setreuid(r4, 0x0)

7.425628285s ago: executing program 0 (id=1420):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic', 0xff3d)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}], 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x5a9801, 0x0)
ioctl$KVM_GET_MSRS_sys(r5, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

5.966873592s ago: executing program 0 (id=1421):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$cgroup(0x0, &(0x7f0000000600)='.\x00', &(0x7f0000000640), 0x2008000, 0x0) (fail_nth: 3)

5.934044961s ago: executing program 1 (id=1422):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = timerfd_create(0x0, 0x80000)
ioctl$TFD_IOC_SET_TICKS(r5, 0x40085400, &(0x7f0000000040)=0x8004)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newqdisc={0x40, 0x28, 0x4ee4e6a52ff56541, 0x5001, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xe, 0x1}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x7, 0x1}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

5.886564354s ago: executing program 2 (id=1423):
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0xfe33)

5.759463122s ago: executing program 2 (id=1424):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz1\x00', {0x6, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x8, 0x0, 0x80, 0x2, 0x3, 0x8, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0xff, 0x0, 0x5, 0x4, 0xfffffffd, 0x50, 0x3c5b, 0x5, 0x24, 0xd, 0x2, 0x4, 0xffffffff, 0xe661, 0xfffffffe, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x243, 0x3, 0x2e, 0x0, 0x8000806e, 0x7, 0x4, 0x1, 0xffffffda, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x8, 0x0, 0x6, 0x3, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0x2, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bb, 0x6cb, 0x2, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea1, 0x0, 0x4, 0x7, 0x7fff, 0x5, 0x400, 0x3ff, 0x6, 0x9, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x800004, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x4b, 0x8010, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0xd, 0x3, 0x3, 0x9, 0x1, 0x8, 0x0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0x1, 0x4, 0x6f, 0x5, 0x0, 0x1ef, 0x6, 0x8, 0x86, 0x3, 0x3038, 0x3e7, 0xb, 0x5, 0x4, 0x3, 0x3, 0x20000008, 0x4, 0x6d01, 0x1, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfae, 0x1000, 0xa0, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x9, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x9, 0x938, 0x6, 0x40, 0xfffffffc, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x103, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x9, 0x14c, 0x60a7, 0x8000006, 0x16, 0xffffffff, 0x80000000, 0x1005, 0x4, 0xc8, 0x7ff, 0xfffff000, 0x10000, 0x3, 0x3, 0x100, 0xe8a5, 0xa, 0xaf, 0x8, 0x3, 0x226, 0x4, 0x5, 0x8, 0x4, 0xa1f, 0x89, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1b, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(streebog256)\x00'}, 0x58)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in=@private=0xa010100, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x40}, {0x2, 0xfffffffffffffffc, 0x200000000000}, 0x0, 0x0, 0x1, 0x0, 0x7}}, 0xb8}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@ssrr={0x89, 0x7, 0xe9, [@multicast2]}, @generic={0x7, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x20, 0x8000}}}}}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x4804)
write$smackfs_load(0xffffffffffffffff, &(0x7f0000000080)={'noblock_validity', 0x20, 'noblock_validity', 0x20, 'rt'}, 0x25)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000900)={0x2, 0x0, 0x9, 0x7})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
dup(r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000000)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001200)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a8c000000030a0fdb00000000000000000a0000050900030073797a30000000000900010073797a31000000004c0008800c00024000deffff55c3dd9e0c00014000000000000000000c00024000000000000000000c00024000000000000000090c00014000000000000000060c000140000000000000026314000480080002403cb140bb080001400000000314000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0x20)
sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="5000000006060002008000000000000002000001090071dbaece7a30000000000900020073797a30000000000900020073797a30000000010900020073797a3000000000f2ff72797a32000000000000"], 0x50}, 0x1, 0x0, 0x0, 0xd4}, 0x4000040)

5.579397588s ago: executing program 2 (id=1425):
r0 = getpgrp(0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x5, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x3}]}]}, 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=@migrate={0xec, 0x21, 0x1, 0x0, 0xfffffffe, {{@in6=@private0, @in=@remote, 0xfffc, 0x0, 0x0, 0x4, 0xa, 0xe0, 0x80}, 0x2}, [@migrate={0x9c, 0x11, [{@in6=@private2, @in6=@mcast2, @in6=@private2, @in6=@local, 0x3c, 0x3, 0x0, 0x0, 0x2, 0xa}, {@in6=@dev={0xfe, 0x80, '\x00', 0x2a}, @in6=@ipv4={'\x00', '\xff\xff', @private=0xa010102}, @in=@rand_addr=0x64010102, @in6=@private2, 0x3c, 0x0, 0x0, 0x0, 0x8, 0x8}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x800}, 0x42000)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x0, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0xc8)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000380)={0x2, 0x4e20, @local}, 0x10, 0x0}, 0x30004041)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x258, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f70003ff0000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

4.978931721s ago: executing program 2 (id=1426):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000002fc0)={@fallback, 0xffffffffffffffff, 0xc, 0x10}, 0x20)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000400)={'ip6gretap0\x00', &(0x7f0000000880)=@ethtool_sset_info={0x37, 0x3, 0x7fffffff}})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x20000000ec071, 0xffffffffffffffff, 0x4000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x13, 0xffffffffffffffff, 0x3a0000)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x24000000)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x40000095, 0x0, 0xfffffffffffffffd}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000860000850000001b000000b70000000000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newqdisc={0x58, 0x24, 0x20, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xc, 0xffff}, {0xfff1, 0xfff1}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x3ff, 0x1, 0xfffffff8, 0x0, 0x7, 0x7f, 0x8, 0x5, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x90}, 0x44884)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newtfilter={0x104, 0x2c, 0xd27, 0x70bd2d, 0x25dfdffd, {0x0, 0x0, 0x0, 0x0, {0x6}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0xd4, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x2, 0xc}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xf, 0xc}}, @TCA_BASIC_EMATCHES={0x4}, @TCA_BASIC_EMATCHES={0xbc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xb0, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0xfffffffffffffc3e, 0x3, 0x0, 0x0, {{0x8000, 0x7, 0x8}, {{0x1, 0x0, 0x1}, {0x3, 0x0, 0x1}}}}, @TCF_EM_CONTAINER={0xc, 0x2, 0x0, 0x0, {{0x3, 0x0, 0x7}}}, @TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x401, 0x3, 0x8001}, {0x4, 0x4, 0x9, 0x81}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x1577, 0x1, 0xfffc}, {0x4e3b238, 0x7, 0xf566, 0x4, 0x5, 0x1, 0x1}}}, @TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x4, 0x7, 0x1}, {{0x2, 0x1, 0x0, 0x1}, {0x1, 0x0, 0x1}}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x6, 0x8, 0x7fff}, {0x4, 0x5, 0x1}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x4, 0x1, 0x7}, {0xe1d, 0xd, 0x0, 0x1, 0x9, 0x1, 0x2}}}, @TCF_EM_NBYTE={0x1c, 0x3, 0x0, 0x0, {{0x6, 0x2, 0xa}, {0x5, 0x9, 0x1, "abc00e12181f79fbda"}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8a}}]}]}}]}, 0x104}}, 0x2000c800)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.767950238s ago: executing program 4 (id=1427):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="180900000000000000000000030000001ca100000000000085100000fcffffff95"], &(0x7f0000000080)='syzkaller\x00', 0xb, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94) (fail_nth: 3)

4.706732704s ago: executing program 1 (id=1428):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'macvtap0\x00', &(0x7f00000001c0)=@ethtool_link_settings={0x4c, 0x4, 0x0, 0x1, 0x3, 0x0, 0x8, 0x0, 0x0, 0x4, [0x0, 0x0, 0x9, 0x4, 0x6, 0xffffffff, 0xfffffffa]}})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r1, 0x0)
chdir(&(0x7f0000000000)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f00009a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000fef000/0x4000)=nil)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000280)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000580)="02042700ea0e0000000000001eafbcf706e105000000000000001104ee1606d4b8bf4a828bda305775c43824cee8440000", 0x31}, {&(0x7f0000000100)="126873159fca3fa38fb198e9a6b363ceb3e6d803ab766b7a38e451d14e0b3457474fe6a51671e4124fcea96a873b10996816e100ed8a93b0a9053db57d60973369f58551c3091cb88d3b", 0x4a}, {&(0x7f0000000300)="088d85d1f427cc11b21caca442b2a4af8e69b0c132387b8de793ab327e16f27134fe420c1f7a1589836c736d2341f792240f6f79ec9095e2206e7eaa8a8b03fb89682954d08feafc4e009b7ad23f7c18a49c875b5b7266fc799ed90a099cedfe0c5742ce1e39005e2c44947013", 0x6d}, {&(0x7f0000000240)="df3b46a13300"/18, 0x12}, {&(0x7f0000001480)="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", 0xe65}], 0x5}, 0x40000)

2.276868281s ago: executing program 4 (id=1429):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair(0x2c, 0x4, 0x4, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@gettaction={0x24, 0x32, 0x6dd711a25f4cb68b, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_gd=@TCA_ACT_TAB={0x4}]}, 0x24}}, 0x48084)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='gpio_direction\x00', r2, 0x0, 0x6}, 0x18)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_emit_vhci(0x0, 0x7)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x10, 0x803, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0xc, 0x4}, {0x0, 0x9}, {0xfff2, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8848}, @TCA_FLOWER_KEY_MPLS_OPTS={0x18, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x14, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_MPLS_OPT_LSE_DEPTH={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_MPLS_OPT_LSE_TC={0x2d, 0x4, 0x7}]}}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040005}, 0x20040054)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
connect$unix(r1, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x40, 0x0, 0x10, 0x70bd26, 0x21dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x100}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x1d58078da822f49f}, 0x44000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008"], 0x48}}, 0x0)
sendmmsg$inet(r8, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
r9 = dup(r0)
write$UHID_INPUT(r9, &(0x7f00000010c0)={0xb, {"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", 0x1000}}, 0x1006)

2.166357975s ago: executing program 0 (id=1430):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x31, &(0x7f0000000000)=0x7, 0x4)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
bind$inet(r0, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0xcd}}]}, &(0x7f00000003c0)='syzkaller\x00', 0x8}, 0x94)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000001c0)={'bond0\x00', &(0x7f0000000100)=@ethtool_test={0x1a, 0x6, 0x3}})
sendmmsg$alg(r2, 0x0, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000180)=0x4a9a, 0x4)

1.874688579s ago: executing program 3 (id=1431):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x400000afb5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x2)
semget$private(0x0, 0x6, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic', 0xff3d)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}], 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x92, 0x92, 0x6, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xffff}}, @type_tag={0x4, 0x0, 0x0, 0x12, 0x5}, @datasec={0xe, 0x8, 0x0, 0xf, 0x2, [{0x1, 0x1ff, 0x3ff}, {0x4, 0xd3, 0xf5}, {0x5, 0x200, 0x3}, {0x2, 0x800, 0x7f44}, {0x2, 0x8001, 0x4}, {0x5, 0x81, 0x9}, {0x1, 0x401, 0xf62e}, {0x3, 0xfffffff9, 0xef5}], "8a06"}]}, {0x0, [0x61, 0x0, 0x0, 0x5f]}}, &(0x7f0000000140)=""/20, 0xb2, 0x14, 0x1, 0x8}, 0x28)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x5a9801, 0x0)
ioctl$KVM_GET_MSRS_sys(r5, 0xc008ae88, &(0x7f0000000380)={0x1, 0x0, [{0xabd, 0x0, 0xdc5}]})
recvfrom$inet(r0, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

1.854654806s ago: executing program 2 (id=1432):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000"], 0x0, 0x26}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r4=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1c, 0x3, &(0x7f0000000640)=@framed={{0x18, 0x2, 0x0, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x3b}}, &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xe, 0x0, &(0x7f00000001c0)="0101000871a7832e6b7303c3cd59", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f0000000100)={0x0, 0x0, <r5=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r5, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYRESOCT=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r5}, 0x94)

1.775096229s ago: executing program 1 (id=1433):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2d50, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x33, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xc, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x8, 0x743083)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x7, {0x7, 0x7, "a7ea3163fd"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, &(0x7f0000000080)={0x0, 0x5, 0x11, {0x11, 0x22, "e36612e8f09ddb1508a186c9a242e1"}}, &(0x7f0000000140)={0x0, 0x3, 0xa7, @string={0xa7, 0x3, "85372bf4e41f6673aeadd7ddddd3fb200ee16d1ff0d5696b824d81baf6bd5560fdd9390c2f0d18970be6b706cd0db0576ab67c536d484c5b79da8c3ce8d755de57458d28310f854c56c2aece706479cc22e2422f6ccdce5f1943d2232e1d278bf433703ad69a4cb7310896588f40ed0bbfdab919c55caaf38a6bfff735bc49c151d20d6c3e2d144f26430916e1d8c759bea34800eda4ba7a520fb78f075d59022ab5fbe6a4"}}, &(0x7f00000000c0)={0x0, 0x22, 0x1f, {[@global=@item_012={0x1, 0x1, 0x0, '7'}, @local=@item_012={0x1, 0x2, 0xa, "82"}, @main=@item_4={0x3, 0x0, 0xa, "ad41d6d9"}, @global=@item_4={0x3, 0x1, 0x7, "be309d2d"}, @main=@item_4={0x3, 0x0, 0x8, "e310fa2b"}, @global=@item_012={0x1, 0x1, 0x7, '$'}, @global=@item_012={0x1, 0x1, 0x2, "d1"}, @local=@item_4={0x3, 0x2, 0x9, "bd42db3f"}, @local=@item_012={0x2, 0x2, 0x1, "a35b"}]}}, &(0x7f0000000280)={0x0, 0x21, 0x9, {0x9, 0x21, 0x8, 0x3, 0x1, {0x22, 0xbe}}}}, &(0x7f00000005c0)={0x2c, &(0x7f0000000300)={0x40, 0x18, 0xb9, "38f4a18a7b6217694b0fe85b65fb0e63a83a7011a99f9671995f33b63118b296b0f82bba92d5348e3e356b0663436935bd47f02445d93d581fb8ea3d507d1019821f3d3586a3b5e6d9abc6db68fb5c587deed8386d0230b834172d80715baf291b11b8fc3d3548ddb704a2bb93c16071c7a2dd5beccd8c996b217289304afd7f1d7f05ecfbed3f4a5ada0beae1b4e7b3e75cfabca4878a2bfddab3379deac1cd8497278a3da17c3cd3e60217d9a16e1e992ed1188c4c82db97"}, &(0x7f0000000400)={0x0, 0xa, 0x1, 0x8}, &(0x7f0000000440)={0x0, 0x8, 0x1, 0x6}, &(0x7f0000000480)={0x20, 0x1, 0xcc, "e388bf18a0c03d9ba8705f85bc5cc8eb9837433b1e74093fa8ebefd021d15c4d8bcc384823f81fb88e315ae2b479e6437162751d69f3ec6dbfeb1e846b8790f71a1479a065c245ca508cad703269e576fb675211e14e7cabf496eaec35dc7e48ef3d8afcbf41e3a53545827d41a4a5f3b7018ee9a573d5028ca70a6818fc6c764743de70c1b8e7b4cfd76e3e1cfb4526c6b785b5211422b527e263a36df965747ed97f537fc7ed562f61de40464b2ab57e5d605fdbc14d15821c306ba35d93f7c5239c3e2b31a25bb6c9df9c"}, &(0x7f0000000580)={0x20, 0x3, 0x1, 0x3}})

142.015463ms ago: executing program 2 (id=1434):
syz_open_dev$usbmon(0x0, 0x0, 0x40)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
open(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1e, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000091102f000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 3 (id=1435):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz1\x00', {0x6, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x8, 0x0, 0x80, 0x2, 0x3, 0x8, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0xff, 0x0, 0x5, 0x4, 0xfffffffd, 0x50, 0x3c5b, 0x5, 0x24, 0xd, 0x2, 0x4, 0xffffffff, 0xe661, 0xfffffffe, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x243, 0x3, 0x2e, 0x0, 0x8000806e, 0x7, 0x4, 0x1, 0xffffffda, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x8, 0x0, 0x6, 0x3, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0x2, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bb, 0x6cb, 0x2, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea1, 0x0, 0x4, 0x7, 0x7fff, 0x5, 0x400, 0x3ff, 0x6, 0x9, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x800004, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x4b, 0x8010, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0xd, 0x3, 0x3, 0x9, 0x1, 0x8, 0x0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0x1, 0x4, 0x6f, 0x5, 0x0, 0x1ef, 0x6, 0x8, 0x86, 0x3, 0x3038, 0x3e7, 0xb, 0x5, 0x4, 0x3, 0x3, 0x20000008, 0x4, 0x6d01, 0x1, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfae, 0x1000, 0xa0, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x9, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x9, 0x938, 0x6, 0x40, 0xfffffffc, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x103, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x9, 0x14c, 0x60a7, 0x8000006, 0x16, 0xffffffff, 0x80000000, 0x1005, 0x4, 0xc8, 0x7ff, 0xfffff000, 0x10000, 0x3, 0x3, 0x100, 0xe8a5, 0xa, 0xaf, 0x8, 0x3, 0x226, 0x4, 0x5, 0x8, 0x4, 0xa1f, 0x89, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1b, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(streebog256)\x00'}, 0x58)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in=@private=0xa010100, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x40}, {0x2, 0xfffffffffffffffc, 0x200000000000}, 0x0, 0x0, 0x1, 0x0, 0x7}}, 0xb8}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@ssrr={0x89, 0x7, 0xe9, [@multicast2]}, @generic={0x7, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x20, 0x8000}}}}}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x4804)
write$smackfs_load(0xffffffffffffffff, &(0x7f0000000080)={'noblock_validity', 0x20, 'noblock_validity', 0x20, 'rt'}, 0x25)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000900)={0x2, 0x0, 0x9, 0x7})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
dup(r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000000)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001200)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a8c000000030a0fdb00000000000000000a0000050900030073797a30000000000900010073797a31000000004c0008800c00024000deffff55c3dd9e0c00014000000000000000000c00024000000000000000000c00024000000000000000090c00014000000000000000060c000140000000000000026314000480080002403cb140bb080001400000000314000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0x20)
sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="5000000006060002008000000000000002000001090071dbaece7a30000000000900020073797a30000000000900020073797a30000000010900020073797a3000000000f2ff72797a32000000000000"], 0x50}, 0x1, 0x0, 0x0, 0xd4}, 0x4000040)

kernel console output (not intermixed with test programs):

pid=9708 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  668.707984][   T37] audit: type=1326 audit(1768872337.126:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9708 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  670.108593][ T9709] bridge3: the hash_elasticity option has been deprecated and is always 16
[  670.108862][ T9712] netlink: 'syz.2.1034': attribute type 12 has an invalid length.
[  670.108878][ T9712] netlink: 'syz.2.1034': attribute type 29 has an invalid length.
[  670.108890][ T9712] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1034'.
[  670.841403][ T6002] kernel read not supported for file /video37 (pid: 6002 comm: kworker/0:9)
[  670.845265][ T9741] FAULT_INJECTION: forcing a failure.
[  670.845265][ T9741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  670.845297][ T9741] CPU: 1 UID: 0 PID: 9741 Comm: syz.3.1044 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  670.845318][ T9741] Tainted: [L]=SOFTLOCKUP
[  670.845323][ T9741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  670.845334][ T9741] Call Trace:
[  670.845340][ T9741]  <TASK>
[  670.845347][ T9741]  dump_stack_lvl+0xe8/0x150
[  670.845375][ T9741]  should_fail_ex+0x46c/0x600
[  670.845401][ T9741]  _copy_from_user+0x2d/0xb0
[  670.845419][ T9741]  bpf_test_init+0xd8/0x150
[  670.845444][ T9741]  bpf_prog_test_run_skb+0x376/0x1d50
[  670.845470][ T9741]  ? __fget_files+0x2a/0x420
[  670.845488][ T9741]  ? __fget_files+0x2a/0x420
[  670.845504][ T9741]  ? __fget_files+0x3a6/0x420
[  670.845519][ T9741]  ? __fget_files+0x2a/0x420
[  670.845540][ T9741]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  670.845562][ T9741]  bpf_prog_test_run+0x2cd/0x340
[  670.845585][ T9741]  __sys_bpf+0x562/0x860
[  670.845601][ T9741]  ? __pfx___sys_bpf+0x10/0x10
[  670.845615][ T9741]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  670.845647][ T9741]  ? ksys_write+0x230/0x260
[  670.845669][ T9741]  ? __pfx_ksys_write+0x10/0x10
[  670.845693][ T9741]  __x64_sys_bpf+0x7c/0x90
[  670.845708][ T9741]  do_syscall_64+0xec/0xf80
[  670.845723][ T9741]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.845738][ T9741]  ? trace_irq_disable+0x37/0x100
[  670.845754][ T9741]  ? clear_bhb_loop+0x60/0xb0
[  670.845772][ T9741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.845785][ T9741] RIP: 0033:0x7efd750df749
[  670.845800][ T9741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.845812][ T9741] RSP: 002b:00007efd73346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  670.845830][ T9741] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750df749
[  670.845840][ T9741] RDX: 0000000000000050 RSI: 0000200000000800 RDI: 000000000000000a
[  670.845850][ T9741] RBP: 00007efd73346090 R08: 0000000000000000 R09: 0000000000000000
[  670.845859][ T9741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.845868][ T9741] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  670.845895][ T9741]  </TASK>
[  674.222134][ T9770] syzkaller1: entered promiscuous mode
[  675.588282][   T37] audit: type=1326 audit(1768872343.376:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9782 comm="syz.0.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  675.588349][   T37] audit: type=1326 audit(1768872343.376:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9782 comm="syz.0.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  675.588388][   T37] audit: type=1326 audit(1768872343.376:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9782 comm="syz.0.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  675.588426][   T37] audit: type=1326 audit(1768872343.376:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9782 comm="syz.0.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x7ffc0000
[  675.984817][ T9783] bridge4: the hash_elasticity option has been deprecated and is always 16
[  677.358922][ T5894] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  677.517091][ T5894] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  677.517132][ T5894] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  677.517144][ T5894] usb 4-1: Product: syz
[  677.517152][ T5894] usb 4-1: Manufacturer: syz
[  677.517160][ T5894] usb 4-1: SerialNumber: syz
[  677.529857][ T9811] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  677.529914][ T9811] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  677.553653][ T5894] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  678.633287][ T5990] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  678.786462][ T9819] tipc: Withdrawal distribution failure
[  678.940975][ T9822] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1063'.
[  679.800684][ T5990] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  679.801064][ T5990] ath9k_htc: Failed to initialize the device
[  679.902822][ T5990] usb 4-1: ath9k_htc: USB layer deinitialized
[  681.087443][ T7971] usb 4-1: USB disconnect, device number 32
[  681.302953][ T9835] tipc: Started in network mode
[  681.302987][ T9835] tipc: Node identity caaf1cfa2b75, cluster identity 4711
[  681.303393][ T9835] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  681.851516][   T37] audit: type=1326 audit(1768872350.276:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9842 comm="syz.2.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b41f6f749 code=0x7ffc0000
[  681.851569][   T37] audit: type=1326 audit(1768872350.276:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9842 comm="syz.2.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7f0b41f6f749 code=0x7ffc0000
[  681.851609][   T37] audit: type=1326 audit(1768872350.276:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9842 comm="syz.2.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b41f6f749 code=0x7ffc0000
[  681.851648][   T37] audit: type=1326 audit(1768872350.276:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9842 comm="syz.2.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b41f6f749 code=0x7ffc0000
[  682.246281][ T9843] bridge3: the hash_elasticity option has been deprecated and is always 16
[  682.266762][ T9846] tipc: Resetting bearer <eth:syzkaller0>
[  682.363949][ T9832] tipc: Resetting bearer <eth:syzkaller0>
[  682.565031][ T9832] tipc: Disabling bearer <eth:syzkaller0>
[  682.678619][ T7971] tipc: Node number set to 3789167866
[  682.684097][ T9864] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1074'.
[  685.087946][ T9881] FAULT_INJECTION: forcing a failure.
[  685.087946][ T9881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  685.087987][ T9881] CPU: 1 UID: 0 PID: 9881 Comm: syz.1.1080 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  685.088036][ T9881] Tainted: [L]=SOFTLOCKUP
[  685.088041][ T9881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  685.088051][ T9881] Call Trace:
[  685.088059][ T9881]  <TASK>
[  685.088068][ T9881]  dump_stack_lvl+0xe8/0x150
[  685.088098][ T9881]  should_fail_ex+0x46c/0x600
[  685.088127][ T9881]  _copy_to_user+0x31/0xb0
[  685.088148][ T9881]  copy_siginfo_to_user+0x22/0xc0
[  685.088169][ T9881]  x64_setup_rt_frame+0x777/0xd40
[  685.088196][ T9881]  ? rt_spin_unlock+0x150/0x200
[  685.088241][ T9881]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  685.088277][ T9881]  arch_do_signal_or_restart+0x3d6/0x7a0
[  685.088307][ T9881]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  685.088341][ T9881]  ? ksys_write+0x230/0x260
[  685.088374][ T9881]  exit_to_user_mode_loop+0x87/0x4e0
[  685.088399][ T9881]  ? rcu_is_watching+0x15/0xb0
[  685.088428][ T9881]  do_syscall_64+0x2c1/0xf80
[  685.088447][ T9881]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.088466][ T9881]  ? trace_irq_disable+0x37/0x100
[  685.088485][ T9881]  ? clear_bhb_loop+0x60/0xb0
[  685.088508][ T9881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.088526][ T9881] RIP: 0033:0x7fa13c16f749
[  685.088543][ T9881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  685.088560][ T9881] RSP: 002b:00007fa13a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  685.088582][ T9881] RAX: ffffffffffffffea RBX: 00007fa13c3c5fa0 RCX: 00007fa13c16f749
[  685.088596][ T9881] RDX: 0000000000000020 RSI: 00002000000002c0 RDI: 0000000000000009
[  685.088609][ T9881] RBP: 00007fa13a3d6090 R08: 0000000000000000 R09: 0000000000000000
[  685.088621][ T9881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  685.088633][ T9881] R13: 00007fa13c3c6038 R14: 00007fa13c3c5fa0 R15: 00007ffebcc8bc28
[  685.088660][ T9881]  </TASK>
[  686.614351][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  686.614428][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  686.898228][ T5990] usb 2-1: new full-speed USB device number 41 using dummy_hcd
[  687.050287][ T5990] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  687.050344][ T5990] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF9, changing to 0x89
[  687.050372][ T5990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 10
[  687.050400][ T5990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 65535, setting to 64
[  687.050428][ T5990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  687.050450][ T5990] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  687.052818][ T5990] usb 2-1: New USB device found, idVendor=0bc7, idProduct=0008, bcdDevice=4f.c8
[  687.052850][ T5990] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.052872][ T5990] usb 2-1: Product: syz
[  687.052888][ T5990] usb 2-1: Manufacturer: syz
[  687.052902][ T5990] usb 2-1: SerialNumber: syz
[  687.159431][ T5990] usb 2-1: config 0 descriptor??
[  687.178689][ T9887] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  687.186861][ T5990] ati_remote 2-1:0.0: ati_remote_probe: Unexpected endpoint_out
[  688.888211][   T51] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  688.975428][ T9905] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  688.975600][ T9905] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  689.028876][ T5922] usb 2-1: USB disconnect, device number 41
[  689.041444][   T51] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  689.041473][   T51] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  689.041513][   T51] usb 1-1: New USB device found, idVendor=1b1c, idProduct=0a1d, bcdDevice= 0.00
[  689.041535][   T51] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  689.093387][   T51] usb 1-1: config 0 descriptor??
[  689.404081][   T37] audit: type=1326 audit(1768872357.826:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9906 comm="syz.3.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd750df749 code=0x7ffc0000
[  689.404193][   T37] audit: type=1326 audit(1768872357.826:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9906 comm="syz.3.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7efd750df749 code=0x7ffc0000
[  689.404237][   T37] audit: type=1326 audit(1768872357.826:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9906 comm="syz.3.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd750df749 code=0x7ffc0000
[  689.404283][   T37] audit: type=1326 audit(1768872357.826:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9906 comm="syz.3.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd750df749 code=0x7ffc0000
[  689.569496][   T51] hid-corsair-void 0003:1B1C:0A1D.0015: reserved main item tag 0xe
[  689.738920][   T51] hid-corsair-void 0003:1B1C:0A1D.0015: hidraw0: USB HID v0.00 Device [HID 1b1c:0a1d] on usb-dummy_hcd.0-1/input0
[  689.742921][ T9907] bridge4: the hash_elasticity option has been deprecated and is always 16
[  689.782525][   T51] usb 1-1: USB disconnect, device number 25
[  690.200996][ T9914] fido_id[9914]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  690.939841][   T51] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  691.053583][ T9926] FAULT_INJECTION: forcing a failure.
[  691.053583][ T9926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  691.053619][ T9926] CPU: 0 UID: 0 PID: 9926 Comm: syz.0.1093 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  691.053645][ T9926] Tainted: [L]=SOFTLOCKUP
[  691.053652][ T9926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  691.053662][ T9926] Call Trace:
[  691.053670][ T9926]  <TASK>
[  691.053677][ T9926]  dump_stack_lvl+0xe8/0x150
[  691.053708][ T9926]  should_fail_ex+0x46c/0x600
[  691.053739][ T9926]  _copy_from_user+0x2d/0xb0
[  691.053761][ T9926]  kstrtouint_from_user+0xc4/0x170
[  691.053788][ T9926]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  691.053824][ T9926]  proc_fail_nth_write+0x88/0x200
[  691.053848][ T9926]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  691.053877][ T9926]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  691.053901][ T9926]  vfs_write+0x287/0xb40
[  691.053930][ T9926]  ? __pfx_vfs_write+0x10/0x10
[  691.053949][ T9926]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  691.053962][ T9926]  ? lockdep_hardirqs_on+0x7b/0x110
[  691.053974][ T9926]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  691.053985][ T9926]  ? mutex_lock_nested+0x154/0x1d0
[  691.053999][ T9926]  ? fdget_pos+0x253/0x320
[  691.054015][ T9926]  ksys_write+0x14b/0x260
[  691.054030][ T9926]  ? __pfx_ksys_write+0x10/0x10
[  691.054051][ T9926]  do_syscall_64+0xec/0xf80
[  691.054062][ T9926]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.054072][ T9926]  ? trace_irq_disable+0x37/0x100
[  691.054083][ T9926]  ? clear_bhb_loop+0x60/0xb0
[  691.054103][ T9926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.054113][ T9926] RIP: 0033:0x7f88c6bfe1ff
[  691.054123][ T9926] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  691.054132][ T9926] RSP: 002b:00007f88c4e5e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  691.054144][ T9926] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f88c6bfe1ff
[  691.054152][ T9926] RDX: 0000000000000001 RSI: 00007f88c4e5e0a0 RDI: 0000000000000004
[  691.054159][ T9926] RBP: 00007f88c4e5e090 R08: 0000000000000000 R09: 0000000000000000
[  691.054165][ T9926] R10: 0000000000008124 R11: 0000000000000293 R12: 0000000000000001
[  691.054171][ T9926] R13: 00007f88c6e56038 R14: 00007f88c6e55fa0 R15: 00007fff7fe36028
[  691.054188][ T9926]  </TASK>
[  691.088240][   T51] usb 3-1: Using ep0 maxpacket: 32
[  691.095803][   T51] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  691.095832][   T51] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  691.095863][   T51] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  691.095883][   T51] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  691.095905][   T51] usb 3-1: config 1 has no interface number 0
[  691.095953][   T51] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  691.095979][   T51] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  691.386552][   T51] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  693.770723][ T9937] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1092'.
[  693.846550][ T9937] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1092'.
[  693.882754][ T9922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  693.883294][ T9922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  693.942498][   T51] snd_usb_pod 3-1:1.1: set_interface failed
[  693.943283][   T51] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  693.946963][   T51] snd_usb_pod 3-1:1.1: probe with driver snd_usb_pod failed with error -71
[  693.978755][   T51] usb 3-1: USB disconnect, device number 28
[  694.589456][ T9941] nfs: Deprecated parameter 'nointr'
[  696.203918][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.203958][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.203985][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204011][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204037][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204063][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204090][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204115][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204142][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.204168][ T5824] hid-generic 0005:5B44:0004.0016: unknown main item tag 0x0
[  696.508518][ T5824] hid-generic 0005:5B44:0004.0016: hidraw0: BLUETOOTH HID v0.00 Device [syz1] on syz1
[  696.776049][ T9963] fido_id[9963]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  698.737049][ T9977] FAULT_INJECTION: forcing a failure.
[  698.737049][ T9977] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.737075][ T9977] CPU: 1 UID: 0 PID: 9977 Comm: syz.4.1109 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  698.737090][ T9977] Tainted: [L]=SOFTLOCKUP
[  698.737094][ T9977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  698.737100][ T9977] Call Trace:
[  698.737105][ T9977]  <TASK>
[  698.737109][ T9977]  dump_stack_lvl+0xe8/0x150
[  698.737131][ T9977]  should_fail_ex+0x46c/0x600
[  698.737150][ T9977]  _copy_from_iter+0x1cd/0x1630
[  698.737171][ T9977]  ? __pfx__copy_from_iter+0x10/0x10
[  698.737186][ T9977]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  698.737199][ T9977]  ? __lock_acquire+0x6b6/0x2cf0
[  698.737213][ T9977]  ? skb_put+0x11b/0x210
[  698.737228][ T9977]  hci_sock_sendmsg+0x41c/0xf30
[  698.737244][ T9977]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  698.737258][ T9977]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  698.737275][ T9977]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  698.737288][ T9977]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  698.737303][ T9977]  __sock_sendmsg+0x21c/0x270
[  698.737315][ T9977]  sock_write_iter+0x27f/0x370
[  698.737332][ T9977]  ? __pfx_sock_write_iter+0x10/0x10
[  698.737357][ T9977]  vfs_write+0x5d5/0xb40
[  698.737382][ T9977]  ? __pfx_sock_write_iter+0x10/0x10
[  698.737397][ T9977]  ? __pfx_vfs_write+0x10/0x10
[  698.737416][ T9977]  ? __fget_files+0x2a/0x420
[  698.737432][ T9977]  ksys_write+0x14b/0x260
[  698.737447][ T9977]  ? __pfx_ksys_write+0x10/0x10
[  698.737466][ T9977]  do_syscall_64+0xec/0xf80
[  698.737477][ T9977]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.737491][ T9977]  ? trace_irq_disable+0x37/0x100
[  698.737502][ T9977]  ? clear_bhb_loop+0x60/0xb0
[  698.737515][ T9977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.737525][ T9977] RIP: 0033:0x7f97d488f749
[  698.737535][ T9977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  698.737545][ T9977] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  698.737557][ T9977] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  698.737565][ T9977] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000005
[  698.737572][ T9977] RBP: 00007f97d2af6090 R08: 0000000000000000 R09: 0000000000000000
[  698.737578][ T9977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.737585][ T9977] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  698.737601][ T9977]  </TASK>
[  698.895928][ T9981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1110'.
[  698.963237][ T9983] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1111'.
[  700.588282][ T5922] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  700.679724][ T9996] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1118'.
[  700.760523][ T5922] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  700.760559][ T5922] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  700.761675][ T5922] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  700.761704][ T5922] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  700.761721][ T5922] usb 5-1: Manufacturer: syz
[  700.765456][ T5922] usb 5-1: config 0 descriptor??
[  701.078447][ T5824] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  701.233381][ T5824] usb 3-1: config 0 has an invalid interface number: 119 but max is 0
[  701.233412][ T5824] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  701.233433][ T5824] usb 3-1: config 0 has no interface number 0
[  701.233482][ T5824] usb 3-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  701.233512][ T5824] usb 3-1: config 0 interface 119 has no altsetting 0
[  701.233545][ T5824] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  701.233570][ T5824] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.245389][ T5824] usb 3-1: config 0 descriptor??
[  701.316634][ T5824] usb 3-1: NFC: intf ffff888049870000 id ffffffff8deca180
[  701.531955][ T6065] usb 3-1: USB disconnect, device number 29
[  701.670977][ T5922] input: syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0017/input/input30
[  701.767834][ T5922] input: syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0017/input/input31
[  701.797867][ T5922] input: syz Touch Strip as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0017/input/input32
[  701.845773][ T5922] input: syz Dial as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0017/input/input33
[  701.909902][ T5922] uclogic 0003:256C:006D.0017: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.4-1/input0
[  702.836608][ T5922] usb 5-1: USB disconnect, device number 39
[  703.069148][T10012] fido_id[10012]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  703.098155][ T5812] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  703.258751][ T5812] usb 2-1: Using ep0 maxpacket: 32
[  703.263585][ T5812] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  703.266598][ T5812] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  703.266630][ T5812] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  703.266652][ T5812] usb 2-1: Product: syz
[  703.266668][ T5812] usb 2-1: Manufacturer: syz
[  703.266683][ T5812] usb 2-1: SerialNumber: syz
[  703.322175][ T5812] usb 2-1: config 0 descriptor??
[  703.323189][T10015] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  703.442218][ T6045] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  706.761059][ T6045] usb 1-1: device descriptor read/all, error -71
[  708.290843][   T31] usb 2-1: USB disconnect, device number 42
[  711.758237][ T5894] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  711.990485][ T5894] usb 1-1: config 0 has an invalid interface number: 119 but max is 0
[  711.990517][ T5894] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  711.990537][ T5894] usb 1-1: config 0 has no interface number 0
[  711.990587][ T5894] usb 1-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  711.990617][ T5894] usb 1-1: config 0 interface 119 has no altsetting 0
[  711.990649][ T5894] usb 1-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  711.990673][ T5894] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.058596][T10069] ntfs3(nullb0): Primary boot signature is not NTFS.
[  712.061953][T10069] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  712.080282][ T5894] usb 1-1: config 0 descriptor??
[  712.100689][ T5894] usb 1-1: NFC: intf ffff88805e0b2000 id ffffffff8deca180
[  712.180143][T10071] syzkaller0: entered promiscuous mode
[  712.180161][T10071] syzkaller0: entered allmulticast mode
[  712.292205][ T5922] usb 1-1: USB disconnect, device number 28
[  713.278201][ T7971] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  713.430789][ T7971] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  713.430821][ T7971] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  713.430864][ T7971] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  713.430887][ T7971] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  713.435797][ T7971] usb 1-1: config 0 descriptor??
[  713.548161][ T5894] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  713.608729][T10096] FAULT_INJECTION: forcing a failure.
[  713.608729][T10096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  713.608760][T10096] CPU: 1 UID: 0 PID: 10096 Comm: syz.3.1143 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  713.608781][T10096] Tainted: [L]=SOFTLOCKUP
[  713.608786][T10096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  713.608795][T10096] Call Trace:
[  713.608801][T10096]  <TASK>
[  713.608807][T10096]  dump_stack_lvl+0xe8/0x150
[  713.608832][T10096]  should_fail_ex+0x46c/0x600
[  713.608856][T10096]  _copy_to_user+0x31/0xb0
[  713.608874][T10096]  simple_read_from_buffer+0xe1/0x170
[  713.608892][T10096]  proc_fail_nth_read+0x1b6/0x220
[  713.608915][T10096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  713.608946][T10096]  ? rw_verify_area+0x2ac/0x4e0
[  713.608964][T10096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  713.608988][T10096]  vfs_read+0x206/0xa30
[  713.609012][T10096]  ? __pfx_vfs_read+0x10/0x10
[  713.609032][T10096]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  713.609049][T10096]  ? lockdep_hardirqs_on+0x7b/0x110
[  713.609064][T10096]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  713.609080][T10096]  ? mutex_lock_nested+0x154/0x1d0
[  713.609098][T10096]  ? fdget_pos+0x253/0x320
[  713.609120][T10096]  ksys_read+0x14b/0x260
[  713.609139][T10096]  ? __pfx_ksys_read+0x10/0x10
[  713.609157][T10096]  ? arch_syscall_is_vdso_sigreturn+0x120/0x1a0
[  713.609174][T10096]  ? syscall_user_dispatch+0x4f/0x90
[  713.609200][T10096]  do_syscall_64+0xec/0xf80
[  713.609215][T10096]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.609228][T10096]  ? trace_irq_disable+0x37/0x100
[  713.609242][T10096]  ? clear_bhb_loop+0x60/0xb0
[  713.609259][T10096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.609272][T10096] RIP: 0033:0x7efd750de15c
[  713.609285][T10096] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  713.609297][T10096] RSP: 002b:00007efd73346030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  713.609313][T10096] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750de15c
[  713.609323][T10096] RDX: 000000000000000f RSI: 00007efd733460a0 RDI: 0000000000000003
[  713.609332][T10096] RBP: 00007efd73346090 R08: 0000000000000000 R09: 0000000000000000
[  713.609340][T10096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  713.609348][T10096] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  713.609371][T10096]  </TASK>
[  713.785090][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  713.785126][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  713.790269][ T5894] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  713.790302][ T5894] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  713.790320][ T5894] usb 3-1: Manufacturer: syz
[  713.924517][ T5894] usb 3-1: config 0 descriptor??
[  714.029126][ T7971] kovaplus 0003:1E7D:2D50.0018: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.0-1/input0
[  714.365695][ T7971] kovaplus 0003:1E7D:2D50.0018: couldn't init struct kovaplus_device
[  714.365753][ T7971] kovaplus 0003:1E7D:2D50.0018: couldn't install mouse
[  715.709721][ T7971] kovaplus 0003:1E7D:2D50.0018: probe with driver kovaplus failed with error -71
[  715.738333][ T7971] usb 1-1: USB disconnect, device number 29
[  715.963475][ T5894] input: syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0019/input/input34
[  716.025019][ T5894] input: syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0019/input/input35
[  716.061588][ T5894] input: syz Touch Strip as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0019/input/input36
[  716.085574][ T5894] input: syz Dial as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0019/input/input37
[  716.118639][ T5894] uclogic 0003:256C:006D.0019: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.2-1/input0
[  717.168178][ T7971] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  717.333457][ T7971] usb 4-1: config 0 has an invalid interface number: 119 but max is 0
[  717.333485][ T7971] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  717.333505][ T7971] usb 4-1: config 0 has no interface number 0
[  717.333549][ T7971] usb 4-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  717.333585][ T7971] usb 4-1: config 0 interface 119 has no altsetting 0
[  717.333617][ T7971] usb 4-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  717.333641][ T7971] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  717.377356][ T7971] usb 4-1: config 0 descriptor??
[  717.426462][ T7971] usb 4-1: NFC: intf ffff88804958f000 id ffffffff8deca180
[  717.578189][ T5881] usb 3-1: reset high-speed USB device number 30 using dummy_hcd
[  717.586114][T10114] FAULT_INJECTION: forcing a failure.
[  717.586114][T10114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  717.586145][T10114] CPU: 1 UID: 0 PID: 10114 Comm: syz.0.1149 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  717.586166][T10114] Tainted: [L]=SOFTLOCKUP
[  717.586172][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  717.586181][T10114] Call Trace:
[  717.586187][T10114]  <TASK>
[  717.586195][T10114]  dump_stack_lvl+0xe8/0x150
[  717.586222][T10114]  should_fail_ex+0x46c/0x600
[  717.586249][T10114]  _copy_from_user+0x2d/0xb0
[  717.586266][T10114]  ___sys_recvmsg+0x12e/0x510
[  717.586291][T10114]  ? __pfx____sys_recvmsg+0x10/0x10
[  717.586316][T10114]  ? __fget_files+0x2a/0x420
[  717.586354][T10114]  do_recvmmsg+0x30d/0x770
[  717.586379][T10114]  ? __pfx_do_recvmmsg+0x10/0x10
[  717.586407][T10114]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  717.586441][T10114]  __x64_sys_recvmmsg+0x190/0x240
[  717.586463][T10114]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  717.586490][T10114]  do_syscall_64+0xec/0xf80
[  717.586505][T10114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.586518][T10114]  ? trace_irq_disable+0x37/0x100
[  717.586533][T10114]  ? clear_bhb_loop+0x60/0xb0
[  717.586559][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.586572][T10114] RIP: 0033:0x7f88c6bff749
[  717.586586][T10114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.586599][T10114] RSP: 002b:00007f88c4e5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  717.586616][T10114] RAX: ffffffffffffffda RBX: 00007f88c6e55fa0 RCX: 00007f88c6bff749
[  717.586627][T10114] RDX: 03ffffffffffff67 RSI: 0000200000002440 RDI: 0000000000000004
[  717.586638][T10114] RBP: 00007f88c4e5e090 R08: 0000000000000000 R09: 0000000000000000
[  717.586647][T10114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.586657][T10114] R13: 00007f88c6e56038 R14: 00007f88c6e55fa0 R15: 00007fff7fe36028
[  717.586682][T10114]  </TASK>
[  717.597180][ T7971] usb 4-1: USB disconnect, device number 33
[  718.536801][    T9] usb 3-1: USB disconnect, device number 30
[  723.880162][T10148] can: request_module (can-proto-0) failed.
[  723.918156][    T9] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  724.088213][    T9] usb 4-1: Using ep0 maxpacket: 8
[  724.103815][    T9] usb 4-1: too many endpoints for config 0 interface 0 altsetting 250: 255, using maximum allowed: 30
[  724.103862][    T9] usb 4-1: config 0 interface 0 altsetting 250 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  724.103878][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  724.103898][    T9] usb 4-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  724.103910][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  724.107408][    T9] usb 4-1: config 0 descriptor??
[  724.580411][    T9] hid_parser_main: 159 callbacks suppressed
[  724.580441][    T9] gt683r_led 0003:1770:FF00.001A: unknown main item tag 0x0
[  724.580476][    T9] gt683r_led 0003:1770:FF00.001A: unknown main item tag 0x0
[  724.580504][    T9] gt683r_led 0003:1770:FF00.001A: unknown main item tag 0x0
[  724.580531][    T9] gt683r_led 0003:1770:FF00.001A: unknown main item tag 0x0
[  724.580559][    T9] gt683r_led 0003:1770:FF00.001A: unknown main item tag 0x0
[  724.589514][    T9] gt683r_led 0003:1770:FF00.001A: hidraw0: USB HID vf4.f6 Device [HID 1770:ff00] on usb-dummy_hcd.3-1/input0
[  724.772518][    T9] usb 4-1: USB disconnect, device number 34
[  724.777110][ T5881] gt683r_led 0003:1770:FF00.001A: failed to send set report request: -19
[  724.840072][ T5881] gt683r_led 0003:1770:FF00.001A: failed to send set report request: -19
[  724.847969][ T5881] gt683r_led 0003:1770:FF00.001A: failed to send set report request: -19
[  724.935293][T10166] fido_id[10166]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  725.283880][T10169] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1164'.
[  727.260414][    T9] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  727.413924][    T9] usb 3-1: config 0 has an invalid interface number: 119 but max is 0
[  727.413953][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  727.413972][    T9] usb 3-1: config 0 has no interface number 0
[  727.414019][    T9] usb 3-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  727.414047][    T9] usb 3-1: config 0 interface 119 has no altsetting 0
[  727.414081][    T9] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  727.414105][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  727.419338][    T9] usb 3-1: config 0 descriptor??
[  727.467841][    T9] usb 3-1: NFC: intf ffff888028e67000 id ffffffff8deca180
[  727.691009][ T7753] usb 3-1: USB disconnect, device number 31
[  731.580536][T10223] netlink: 'syz.4.1173': attribute type 11 has an invalid length.
[  733.548163][ T7753] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  733.727679][ T7753] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  733.727708][ T7753] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  733.764540][ T7753] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  733.764572][ T7753] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  733.764593][ T7753] usb 5-1: SerialNumber: syz
[  734.183582][ T7753] usb 5-1: 0:2 : does not exist
[  734.205576][ T7753] usb 5-1: USB disconnect, device number 40
[  735.621626][T10235] udevd[10235]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  735.772327][T10252] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1179'.
[  735.773161][T10251] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1179'.
[  738.744684][ T5990] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  738.932725][ T5990] usb 5-1: config 0 has an invalid interface number: 119 but max is 0
[  738.932755][ T5990] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  738.932775][ T5990] usb 5-1: config 0 has no interface number 0
[  738.932829][ T5990] usb 5-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  738.932856][ T5990] usb 5-1: config 0 interface 119 has no altsetting 0
[  738.932887][ T5990] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  738.932908][ T5990] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  738.938292][ T5990] usb 5-1: config 0 descriptor??
[  738.941355][ T5990] usb 5-1: NFC: intf ffff88802d59b000 id ffffffff8deca180
[  739.073215][ T5990] usb 5-1: USB disconnect, device number 41
[  739.115584][T10271] FAULT_INJECTION: forcing a failure.
[  739.115584][T10271] name failslab, interval 1, probability 0, space 0, times 0
[  739.115621][T10271] CPU: 0 UID: 0 PID: 10271 Comm: syz.1.1176 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  739.115647][T10271] Tainted: [L]=SOFTLOCKUP
[  739.115655][T10271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  739.115667][T10271] Call Trace:
[  739.115674][T10271]  <TASK>
[  739.115682][T10271]  dump_stack_lvl+0xe8/0x150
[  739.115712][T10271]  should_fail_ex+0x46c/0x600
[  739.115743][T10271]  should_failslab+0xa8/0x100
[  739.115763][T10271]  __kvmalloc_node_noprof+0x181/0x940
[  739.115790][T10271]  ? seq_read_iter+0x203/0xe20
[  739.115814][T10271]  ? mutex_lock_nested+0x154/0x1d0
[  739.115839][T10271]  ? seq_read_iter+0xb8/0xe20
[  739.115866][T10271]  seq_read_iter+0x203/0xe20
[  739.115892][T10271]  ? kstrtoull+0x12f/0x1d0
[  739.115921][T10271]  ? __asan_memset+0x22/0x50
[  739.115950][T10271]  seq_read+0x36c/0x480
[  739.115983][T10271]  ? __pfx_seq_read+0x10/0x10
[  739.116020][T10271]  ? rw_verify_area+0x2ac/0x4e0
[  739.116043][T10271]  ? __pfx_seq_read+0x10/0x10
[  739.116069][T10271]  vfs_read+0x206/0xa30
[  739.116101][T10271]  ? __pfx_vfs_read+0x10/0x10
[  739.116128][T10271]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  739.116148][T10271]  ? lockdep_hardirqs_on+0x7b/0x110
[  739.116167][T10271]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  739.116187][T10271]  ? mutex_lock_nested+0x154/0x1d0
[  739.116209][T10271]  ? fdget_pos+0x253/0x320
[  739.116238][T10271]  ksys_read+0x14b/0x260
[  739.116264][T10271]  ? __pfx_ksys_read+0x10/0x10
[  739.116298][T10271]  do_syscall_64+0xec/0xf80
[  739.116324][T10271]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.116342][T10271]  ? trace_irq_disable+0x37/0x100
[  739.116361][T10271]  ? clear_bhb_loop+0x60/0xb0
[  739.116383][T10271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.116402][T10271] RIP: 0033:0x7fa13c16f749
[  739.116422][T10271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.116437][T10271] RSP: 002b:00007fa13a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  739.116457][T10271] RAX: ffffffffffffffda RBX: 00007fa13c3c5fa0 RCX: 00007fa13c16f749
[  739.116471][T10271] RDX: 0000000000002020 RSI: 00002000000040c0 RDI: 0000000000000004
[  739.116483][T10271] RBP: 00007fa13a3d6090 R08: 0000000000000000 R09: 0000000000000000
[  739.116495][T10271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  739.116505][T10271] R13: 00007fa13c3c6038 R14: 00007fa13c3c5fa0 R15: 00007ffebcc8bc28
[  739.116538][T10271]  </TASK>
[  742.516152][T10285] FAULT_INJECTION: forcing a failure.
[  742.516152][T10285] name failslab, interval 1, probability 0, space 0, times 0
[  742.516213][T10285] CPU: 0 UID: 0 PID: 10285 Comm: syz.0.1187 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  742.516247][T10285] Tainted: [L]=SOFTLOCKUP
[  742.516254][T10285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  742.516264][T10285] Call Trace:
[  742.516270][T10285]  <TASK>
[  742.516277][T10285]  dump_stack_lvl+0xe8/0x150
[  742.516297][T10285]  should_fail_ex+0x46c/0x600
[  742.516316][T10285]  should_failslab+0xa8/0x100
[  742.516327][T10285]  __kmalloc_noprof+0xe0/0x7e0
[  742.516342][T10285]  ? kfree+0x4d/0x900
[  742.516354][T10285]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  742.516368][T10285]  tomoyo_realpath_from_path+0xe3/0x5d0
[  742.516380][T10285]  ? tomoyo_domain+0xd9/0x130
[  742.516394][T10285]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  742.516409][T10285]  tomoyo_path_number_perm+0x1e8/0x5a0
[  742.516425][T10285]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  742.516442][T10285]  ? preempt_schedule_thunk+0x16/0x30
[  742.516474][T10285]  ? __rcu_read_unlock+0x84/0xe0
[  742.516488][T10285]  ? __fget_files+0x2a/0x420
[  742.516499][T10285]  ? __fget_files+0x3a6/0x420
[  742.516509][T10285]  ? __fget_files+0x2a/0x420
[  742.516521][T10285]  security_file_ioctl+0xcb/0x2d0
[  742.516539][T10285]  __se_sys_ioctl+0x47/0x170
[  742.516554][T10285]  do_syscall_64+0xec/0xf80
[  742.516567][T10285]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.516577][T10285]  ? clear_bhb_loop+0x60/0xb0
[  742.516590][T10285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.516600][T10285] RIP: 0033:0x7f88c6bff749
[  742.516610][T10285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.516620][T10285] RSP: 002b:00007f88c4e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  742.516632][T10285] RAX: ffffffffffffffda RBX: 00007f88c6e56090 RCX: 00007f88c6bff749
[  742.516640][T10285] RDX: 00002000000000c0 RSI: 00000000c008ae88 RDI: 0000000000000006
[  742.516647][T10285] RBP: 00007f88c4e3d090 R08: 0000000000000000 R09: 0000000000000000
[  742.516653][T10285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  742.516659][T10285] R13: 00007f88c6e56128 R14: 00007f88c6e56090 R15: 00007fff7fe36028
[  742.516675][T10285]  </TASK>
[  742.516700][T10285] ERROR: Out of memory at tomoyo_realpath_from_path.
[  744.382604][T10289] FAULT_INJECTION: forcing a failure.
[  744.382604][T10289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  744.382665][T10289] CPU: 0 UID: 0 PID: 10289 Comm: syz.2.1178 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  744.382692][T10289] Tainted: [L]=SOFTLOCKUP
[  744.382699][T10289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  744.382710][T10289] Call Trace:
[  744.382721][T10289]  <TASK>
[  744.382730][T10289]  dump_stack_lvl+0xe8/0x150
[  744.382758][T10289]  should_fail_ex+0x46c/0x600
[  744.382777][T10289]  _copy_from_user+0x2d/0xb0
[  744.382790][T10289]  __sys_bpf+0x1e3/0x860
[  744.382803][T10289]  ? __pfx___sys_bpf+0x10/0x10
[  744.382830][T10289]  __x64_sys_bpf+0x7c/0x90
[  744.382841][T10289]  do_syscall_64+0xec/0xf80
[  744.382861][T10289]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.382871][T10289]  ? clear_bhb_loop+0x60/0xb0
[  744.382884][T10289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.382895][T10289] RIP: 0033:0x7f0b41f6f749
[  744.382905][T10289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  744.382915][T10289] RSP: 002b:00007f0b401ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  744.382928][T10289] RAX: ffffffffffffffda RBX: 00007f0b421c6090 RCX: 00007f0b41f6f749
[  744.382936][T10289] RDX: 0000000000000028 RSI: 0000200000000000 RDI: 0000000000000012
[  744.382943][T10289] RBP: 00007f0b401ad090 R08: 0000000000000000 R09: 0000000000000000
[  744.382949][T10289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  744.382956][T10289] R13: 00007f0b421c6128 R14: 00007f0b421c6090 R15: 00007ffdcf304b58
[  744.382971][T10289]  </TASK>
[  745.858214][ T5881] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  746.010409][ T5881] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  746.010447][ T5881] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  746.010487][ T5881] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  746.010530][ T5881] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  746.020788][T10292] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  746.133356][ T5881] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  747.670274][ T5881] usb 4-1: USB disconnect, device number 35
[  747.780099][T10303] udevd[10303]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  747.951076][T10309] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1189'.
[  749.114265][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  749.114901][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  750.838220][ T5881] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  751.006598][ T5881] usb 4-1: config 0 has an invalid interface number: 119 but max is 0
[  751.006629][ T5881] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  751.006650][ T5881] usb 4-1: config 0 has no interface number 0
[  751.006779][ T5881] usb 4-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  751.006809][ T5881] usb 4-1: config 0 interface 119 has no altsetting 0
[  751.006844][ T5881] usb 4-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  751.006868][ T5881] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  751.012180][ T5881] usb 4-1: config 0 descriptor??
[  751.015393][ T5881] usb 4-1: NFC: intf ffff88805e690000 id ffffffff8deca180
[  751.221751][ T5881] usb 4-1: USB disconnect, device number 36
[  753.378312][ T5881] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  753.402088][T10341] warning: `syz.0.1204' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  753.529503][ T5881] usb 3-1: Using ep0 maxpacket: 16
[  753.533710][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  753.533747][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  753.533788][ T5881] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  753.533813][ T5881] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  753.578206][ T5990] usb 2-1: new full-speed USB device number 43 using dummy_hcd
[  753.599757][ T5881] usb 3-1: config 0 descriptor??
[  753.669994][ T5824] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  753.708161][ T5990] usb 2-1: device descriptor read/64, error -71
[  755.238795][ T5990] usb 2-1: new full-speed USB device number 44 using dummy_hcd
[  755.248192][ T5824] usb 1-1: device descriptor read/64, error -71
[  755.329365][ T5881] usbhid 3-1:0.0: can't add hid device: -71
[  755.331334][ T5881] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  755.359580][ T5881] usb 3-1: USB disconnect, device number 32
[  755.368264][ T5990] usb 2-1: device descriptor read/64, error -71
[  755.488827][ T5990] usb usb2-port1: attempt power cycle
[  755.519553][ T5824] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  755.668322][ T5824] usb 1-1: device descriptor read/64, error -71
[  755.778482][ T5824] usb usb1-port1: attempt power cycle
[  755.828228][ T5990] usb 2-1: new full-speed USB device number 45 using dummy_hcd
[  755.857598][ T5990] usb 2-1: device descriptor read/8, error -71
[  756.090998][ T5990] usb 2-1: new full-speed USB device number 46 using dummy_hcd
[  756.120084][ T5990] usb 2-1: device descriptor read/8, error -71
[  756.128261][ T5824] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  756.159818][ T5824] usb 1-1: device descriptor read/8, error -71
[  756.228756][ T5990] usb usb2-port1: unable to enumerate USB device
[  756.418328][ T5824] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  759.106247][ T5824] usb 1-1: device descriptor read/8, error -71
[  760.673423][ T5824] usb usb1-port1: unable to enumerate USB device
[  762.116748][T10377] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1207'.
[  764.570503][T10382] FAULT_INJECTION: forcing a failure.
[  764.570503][T10382] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  764.570539][T10382] CPU: 1 UID: 0 PID: 10382 Comm: syz.3.1213 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  764.570565][T10382] Tainted: [L]=SOFTLOCKUP
[  764.570572][T10382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  764.570583][T10382] Call Trace:
[  764.570591][T10382]  <TASK>
[  764.570600][T10382]  dump_stack_lvl+0xe8/0x150
[  764.570629][T10382]  should_fail_ex+0x46c/0x600
[  764.570660][T10382]  _copy_from_user+0x2d/0xb0
[  764.570681][T10382]  video_usercopy+0x349/0x13f0
[  764.570707][T10382]  ? smk_tskacc+0x2fc/0x370
[  764.570730][T10382]  ? __pfx___video_do_ioctl+0x10/0x10
[  764.570751][T10382]  ? __pfx_video_usercopy+0x10/0x10
[  764.570769][T10382]  ? smack_file_ioctl+0x2ac/0x340
[  764.570806][T10382]  ? __fget_files+0x2a/0x420
[  764.570826][T10382]  ? __fget_files+0x3a6/0x420
[  764.570849][T10382]  v4l2_ioctl+0x190/0x1e0
[  764.570870][T10382]  ? __pfx_v4l2_ioctl+0x10/0x10
[  764.570889][T10382]  __se_sys_ioctl+0xff/0x170
[  764.570916][T10382]  do_syscall_64+0xec/0xf80
[  764.570943][T10382]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.570962][T10382]  ? trace_irq_disable+0x37/0x100
[  764.570981][T10382]  ? clear_bhb_loop+0x60/0xb0
[  764.571003][T10382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.571021][T10382] RIP: 0033:0x7efd750df749
[  764.571039][T10382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  764.571056][T10382] RSP: 002b:00007efd73346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  764.571079][T10382] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750df749
[  764.571093][T10382] RDX: 0000200000000040 RSI: 00000000c02c564a RDI: 0000000000000003
[  764.571106][T10382] RBP: 00007efd73346090 R08: 0000000000000000 R09: 0000000000000000
[  764.571118][T10382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  764.571130][T10382] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  764.571160][T10382]  </TASK>
[  764.811714][T10386] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1218'.
[  765.114586][T10396] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1221'.
[  769.015466][T10414] fuse: Unknown parameter 'group_i00000000000000000000'
[  771.672709][   T37] audit: type=1326 audit(1768872440.096:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10428 comm="syz.0.1224" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f88c6bff749 code=0x0
[  775.655776][T10457] fuse: Unknown parameter 'group_id00000000000000000000'
[  776.078187][ T5922] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  776.228169][ T5922] usb 1-1: Using ep0 maxpacket: 8
[  776.230270][ T5922] usb 1-1: config 0 has an invalid interface number: 151 but max is 1
[  776.230301][ T5922] usb 1-1: config 0 has no interface number 1
[  776.230359][ T5922] usb 1-1: config 0 interface 151 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  776.230381][ T5922] usb 1-1: config 0 interface 151 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  776.230410][ T5922] usb 1-1: config 0 interface 151 altsetting 0 endpoint 0x83 has invalid maxpacket 64466, setting to 1024
[  776.230439][ T5922] usb 1-1: config 0 interface 151 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  776.230464][ T5922] usb 1-1: config 0 interface 151 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  776.230509][ T5922] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC9, changing to 0x89
[  776.230534][ T5922] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  776.230556][ T5922] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  776.233529][ T5922] usb 1-1: New USB device found, idVendor=0499, idProduct=500a, bcdDevice=e7.b7
[  776.233561][ T5922] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  776.233583][ T5922] usb 1-1: Product: syz
[  776.233598][ T5922] usb 1-1: Manufacturer: syz
[  776.233613][ T5922] usb 1-1: SerialNumber: syz
[  776.248864][ T5922] usb 1-1: config 0 descriptor??
[  776.250162][T10460] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  776.350015][ T5922] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  776.387982][ T5922] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  776.579707][ T5922] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -12
[  776.621806][ T5922] usb 1-1: USB disconnect, device number 34
[  776.708292][ T5881] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  776.865559][T10479] udevd[10479]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  776.870532][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  776.870566][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  776.872725][ T5881] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  776.872753][ T5881] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  776.872772][ T5881] usb 3-1: Manufacturer: syz
[  776.915244][ T5881] usb 3-1: config 0 descriptor??
[  777.112520][T10482] FAULT_INJECTION: forcing a failure.
[  777.112520][T10482] name failslab, interval 1, probability 0, space 0, times 0
[  777.112545][T10482] CPU: 1 UID: 0 PID: 10482 Comm: syz.4.1239 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  777.112567][T10482] Tainted: [L]=SOFTLOCKUP
[  777.112575][T10482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  777.112586][T10482] Call Trace:
[  777.112593][T10482]  <TASK>
[  777.112602][T10482]  dump_stack_lvl+0xe8/0x150
[  777.112633][T10482]  should_fail_ex+0x46c/0x600
[  777.112664][T10482]  should_failslab+0xa8/0x100
[  777.112681][T10482]  __kmalloc_cache_noprof+0x84/0x6d0
[  777.112697][T10482]  ? sctp_sched_prio_set+0x400/0x9d0
[  777.112716][T10482]  sctp_sched_prio_set+0x400/0x9d0
[  777.112746][T10482]  sctp_setsockopt+0x7e2/0x12c0
[  777.112773][T10482]  ? sock_common_setsockopt+0x36/0xc0
[  777.112794][T10482]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  777.112816][T10482]  do_sock_setsockopt+0x17c/0x1b0
[  777.112844][T10482]  __x64_sys_setsockopt+0x145/0x1b0
[  777.112863][T10482]  do_syscall_64+0xec/0xf80
[  777.112875][T10482]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  777.112885][T10482]  ? trace_irq_disable+0x37/0x100
[  777.112896][T10482]  ? clear_bhb_loop+0x60/0xb0
[  777.112917][T10482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  777.112935][T10482] RIP: 0033:0x7f97d488f749
[  777.112952][T10482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.112966][T10482] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  777.112983][T10482] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  777.112996][T10482] RDX: 000000000000007c RSI: 0000000000000084 RDI: 0000000000000004
[  777.113006][T10482] RBP: 00007f97d2af6090 R08: 0000000000000008 R09: 0000000000000000
[  777.113016][T10482] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  777.113027][T10482] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  777.113054][T10482]  </TASK>
[  778.878170][ T9519] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  778.904002][ T5881] uclogic 0003:256C:006D.001B: failed retrieving string descriptor #200: -71
[  778.904070][ T5881] uclogic 0003:256C:006D.001B: failed retrieving pen parameters: -71
[  778.904088][ T5881] uclogic 0003:256C:006D.001B: failed probing pen v2 parameters: -71
[  778.904141][ T5881] uclogic 0003:256C:006D.001B: failed probing parameters: -71
[  778.904250][ T5881] uclogic 0003:256C:006D.001B: probe with driver uclogic failed with error -71
[  778.964002][ T5881] usb 3-1: USB disconnect, device number 33
[  779.027697][T10498] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1248'.
[  779.042382][ T9519] usb 1-1: Using ep0 maxpacket: 32
[  779.058125][ T9519] usb 1-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  779.058155][ T9519] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.058175][ T9519] usb 1-1: Product: syz
[  779.058189][ T9519] usb 1-1: Manufacturer: syz
[  779.058203][ T9519] usb 1-1: SerialNumber: syz
[  779.065602][ T9519] usb 1-1: config 0 descriptor??
[  780.084210][ T9519] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  780.445186][T10502] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1250'.
[  780.480579][T10502] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1250'.
[  780.637836][ T9519] gspca_ov534_9: reg_w failed -71
[  780.859586][T10505] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  780.861676][T10505] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  780.928208][ T9519] gspca_ov534_9: Unknown sensor 0000
[  780.928301][ T9519] ov534_9 1-1:0.0: probe with driver ov534_9 failed with error -22
[  780.936216][ T9519] usb 1-1: USB disconnect, device number 35
[  781.492875][T10519] FAULT_INJECTION: forcing a failure.
[  781.492875][T10519] name failslab, interval 1, probability 0, space 0, times 0
[  781.492912][T10519] CPU: 1 UID: 0 PID: 10519 Comm: syz.0.1257 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  781.492938][T10519] Tainted: [L]=SOFTLOCKUP
[  781.492945][T10519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  781.492955][T10519] Call Trace:
[  781.492962][T10519]  <TASK>
[  781.492969][T10519]  dump_stack_lvl+0xe8/0x150
[  781.492999][T10519]  should_fail_ex+0x46c/0x600
[  781.493029][T10519]  ? skb_clone+0x212/0x3a0
[  781.493053][T10519]  should_failslab+0xa8/0x100
[  781.493073][T10519]  ? skb_clone+0x212/0x3a0
[  781.493095][T10519]  kmem_cache_alloc_noprof+0x84/0x6c0
[  781.493122][T10519]  ? run_filter+0x23/0x270
[  781.493144][T10519]  skb_clone+0x212/0x3a0
[  781.493167][T10519]  ? packet_rcv+0x567/0x1730
[  781.493195][T10519]  packet_rcv+0x65b/0x1730
[  781.493231][T10519]  __netif_receive_skb_core+0x25f3/0x2f90
[  781.493266][T10519]  ? __pfx___skb_flow_dissect+0x10/0x10
[  781.493299][T10519]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  781.493324][T10519]  ? __lock_acquire+0x6b6/0x2cf0
[  781.493349][T10519]  ? stack_trace_save+0x9c/0xe0
[  781.493371][T10519]  ? __pfx_stack_trace_save+0x10/0x10
[  781.493399][T10519]  ? netif_receive_skb+0x105/0x750
[  781.493417][T10519]  ? netif_receive_skb+0x105/0x750
[  781.493439][T10519]  __netif_receive_skb+0x72/0x380
[  781.493456][T10519]  ? __local_bh_disable_ip+0x3c/0x420
[  781.493483][T10519]  ? netif_receive_skb+0x105/0x750
[  781.493501][T10519]  netif_receive_skb+0x1bb/0x750
[  781.493523][T10519]  ? __pfx_netif_receive_skb+0x10/0x10
[  781.493541][T10519]  ? rcu_is_watching+0x15/0xb0
[  781.493557][T10519]  ? __local_bh_disable_ip+0x3c/0x420
[  781.493579][T10519]  ? tun_rx_batched+0x166/0x730
[  781.493602][T10519]  ? tun_rx_batched+0x166/0x730
[  781.493628][T10519]  tun_rx_batched+0x1bf/0x730
[  781.493665][T10519]  ? __pfx_tun_rx_batched+0x10/0x10
[  781.493700][T10519]  ? tun_get_user+0x266d/0x3de0
[  781.493724][T10519]  ? tun_get_user+0x266d/0x3de0
[  781.493751][T10519]  ? __local_bh_enable_ip+0x1af/0x2c0
[  781.493772][T10519]  ? lockdep_hardirqs_on+0x7b/0x110
[  781.493795][T10519]  ? tun_get_user+0x266d/0x3de0
[  781.493819][T10519]  tun_get_user+0x2abd/0x3de0
[  781.493847][T10519]  ? tun_get_user+0x6fc/0x3de0
[  781.493885][T10519]  ? __pfx_tun_get_user+0x10/0x10
[  781.493911][T10519]  ? __lock_acquire+0x6b6/0x2cf0
[  781.493937][T10519]  ? kstrtoull+0x12f/0x1d0
[  781.493970][T10519]  ? ref_tracker_alloc+0x2fe/0x450
[  781.493993][T10519]  ? get_pid_task+0x20/0x1f0
[  781.494018][T10519]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  781.494043][T10519]  ? tun_get+0x1c/0x2f0
[  781.494066][T10519]  ? tun_get+0x1c/0x2f0
[  781.494093][T10519]  ? tun_get+0x1c/0x2f0
[  781.494114][T10519]  ? tun_get+0x1c/0x2f0
[  781.494141][T10519]  tun_chr_write_iter+0x119/0x200
[  781.494168][T10519]  vfs_write+0x5d5/0xb40
[  781.494197][T10519]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  781.494221][T10519]  ? __pfx_vfs_write+0x10/0x10
[  781.494255][T10519]  ? __fget_files+0x2a/0x420
[  781.494282][T10519]  ksys_write+0x14b/0x260
[  781.494307][T10519]  ? __pfx_ksys_write+0x10/0x10
[  781.494342][T10519]  do_syscall_64+0xec/0xf80
[  781.494361][T10519]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.494377][T10519]  ? trace_irq_disable+0x37/0x100
[  781.494395][T10519]  ? clear_bhb_loop+0x60/0xb0
[  781.494416][T10519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.494432][T10519] RIP: 0033:0x7f88c6bfe1ff
[  781.494449][T10519] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  781.494465][T10519] RSP: 002b:00007f88c4e5e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  781.494485][T10519] RAX: ffffffffffffffda RBX: 00007f88c6e55fa0 RCX: 00007f88c6bfe1ff
[  781.494499][T10519] RDX: 000000000000004a RSI: 0000200000000000 RDI: 00000000000000c8
[  781.494511][T10519] RBP: 00007f88c4e5e090 R08: 0000000000000000 R09: 0000000000000000
[  781.494523][T10519] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  781.494534][T10519] R13: 00007f88c6e56038 R14: 00007f88c6e55fa0 R15: 00007fff7fe36028
[  781.494567][T10519]  </TASK>
[  781.543093][T10521] qrtr: Invalid version 255
[  782.625028][ T5922] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  784.260716][ T5922] usb 3-1: config 0 has an invalid interface number: 119 but max is 0
[  784.260746][ T5922] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  784.260766][ T5922] usb 3-1: config 0 has no interface number 0
[  784.260815][ T5922] usb 3-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  784.260843][ T5922] usb 3-1: config 0 interface 119 has no altsetting 0
[  784.260876][ T5922] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  784.260900][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  784.328865][ T5922] usb 3-1: config 0 descriptor??
[  784.334065][ T5922] usb 3-1: NFC: intf ffff888028f97000 id ffffffff8deca180
[  784.543206][ T5922] usb 3-1: USB disconnect, device number 34
[  784.737831][T10551] FAULT_INJECTION: forcing a failure.
[  784.737831][T10551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  784.737872][T10551] CPU: 1 UID: 0 PID: 10551 Comm: syz.0.1267 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  784.737900][T10551] Tainted: [L]=SOFTLOCKUP
[  784.737907][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  784.737919][T10551] Call Trace:
[  784.737926][T10551]  <TASK>
[  784.737934][T10551]  dump_stack_lvl+0xe8/0x150
[  784.737965][T10551]  should_fail_ex+0x46c/0x600
[  784.737997][T10551]  _copy_to_user+0x31/0xb0
[  784.738017][T10551]  copy_siginfo_to_user+0x22/0xc0
[  784.738038][T10551]  x64_setup_rt_frame+0x777/0xd40
[  784.738063][T10551]  ? rt_spin_unlock+0x150/0x200
[  784.738103][T10551]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  784.738136][T10551]  arch_do_signal_or_restart+0x3d6/0x7a0
[  784.738164][T10551]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  784.738196][T10551]  ? ksys_write+0x230/0x260
[  784.738230][T10551]  exit_to_user_mode_loop+0x87/0x4e0
[  784.738255][T10551]  ? rcu_is_watching+0x15/0xb0
[  784.738277][T10551]  do_syscall_64+0x2c1/0xf80
[  784.738297][T10551]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.738324][T10551]  ? trace_irq_disable+0x37/0x100
[  784.738343][T10551]  ? clear_bhb_loop+0x60/0xb0
[  784.738365][T10551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.738382][T10551] RIP: 0033:0x7f88c6bff749
[  784.738399][T10551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.738415][T10551] RSP: 002b:00007f88c4e5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  784.738435][T10551] RAX: ffffffffffffffea RBX: 00007f88c6e55fa0 RCX: 00007f88c6bff749
[  784.738449][T10551] RDX: 0000000000000020 RSI: 0000200000000040 RDI: 0000000000000008
[  784.738462][T10551] RBP: 00007f88c4e5e090 R08: 0000000000000000 R09: 0000000000000000
[  784.738474][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  784.738486][T10551] R13: 00007f88c6e56038 R14: 00007f88c6e55fa0 R15: 00007fff7fe36028
[  784.738516][T10551]  </TASK>
[  784.953389][T10554] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1268'.
[  784.987513][T10554] netlink: 15678 bytes leftover after parsing attributes in process `syz.3.1268'.
[  785.068998][ T5881] IPVS: starting estimator thread 0...
[  785.119086][T10560] FAULT_INJECTION: forcing a failure.
[  785.119086][T10560] name failslab, interval 1, probability 0, space 0, times 0
[  785.119121][T10560] CPU: 1 UID: 0 PID: 10560 Comm: syz.3.1272 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  785.119148][T10560] Tainted: [L]=SOFTLOCKUP
[  785.119154][T10560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  785.119164][T10560] Call Trace:
[  785.119171][T10560]  <TASK>
[  785.119180][T10560]  dump_stack_lvl+0xe8/0x150
[  785.119210][T10560]  should_fail_ex+0x46c/0x600
[  785.119242][T10560]  should_failslab+0xa8/0x100
[  785.119262][T10560]  __kmalloc_cache_noprof+0x84/0x6d0
[  785.119293][T10560]  ? _copy_from_user+0x94/0xb0
[  785.119314][T10560]  ? __se_sys_mount+0x166/0x410
[  785.119332][T10560]  ? memdup_user+0x99/0xd0
[  785.119356][T10560]  __se_sys_mount+0x166/0x410
[  785.119381][T10560]  ? __pfx___se_sys_mount+0x10/0x10
[  785.119406][T10560]  ? __x64_sys_mount+0x20/0xc0
[  785.119427][T10560]  do_syscall_64+0xec/0xf80
[  785.119446][T10560]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.119463][T10560]  ? trace_irq_disable+0x37/0x100
[  785.119482][T10560]  ? clear_bhb_loop+0x60/0xb0
[  785.119504][T10560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.119523][T10560] RIP: 0033:0x7efd750df749
[  785.119539][T10560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  785.119556][T10560] RSP: 002b:00007efd73346038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  785.119577][T10560] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750df749
[  785.119590][T10560] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 0000000000000000
[  785.119604][T10560] RBP: 00007efd73346090 R08: 00002000000001c0 R09: 0000000000000000
[  785.119617][T10560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  785.119628][T10560] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  785.119659][T10560]  </TASK>
[  785.198695][T10557] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1269'.
[  785.245286][T10558] IPVS: using max 9 ests per chain, 21600 per kthread
[  785.597883][T10565] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1269'.
[  785.666903][T10575] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  785.987907][T10583] FAULT_INJECTION: forcing a failure.
[  785.987907][T10583] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  785.987944][T10583] CPU: 1 UID: 0 PID: 10583 Comm: syz.4.1279 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  785.987971][T10583] Tainted: [L]=SOFTLOCKUP
[  785.987977][T10583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  785.987991][T10583] Call Trace:
[  785.987998][T10583]  <TASK>
[  785.988005][T10583]  dump_stack_lvl+0xe8/0x150
[  785.988044][T10583]  should_fail_ex+0x46c/0x600
[  785.988074][T10583]  _copy_from_iter+0x1cd/0x1630
[  785.988102][T10583]  ? kmalloc_reserve+0xbd/0x290
[  785.988123][T10583]  ? rcu_is_watching+0x15/0xb0
[  785.988147][T10583]  ? __pfx__copy_from_iter+0x10/0x10
[  785.988173][T10583]  ? __build_skb_around+0x22d/0x3c0
[  785.988195][T10583]  ? __alloc_skb+0x198/0x3a0
[  785.988215][T10583]  ? netlink_sendmsg+0x642/0xb30
[  785.988237][T10583]  ? skb_put+0x11b/0x210
[  785.988261][T10583]  netlink_sendmsg+0x6b2/0xb30
[  785.988283][T10583]  ? unwind_next_frame+0xa5/0x23d0
[  785.988313][T10583]  ? __pfx_netlink_sendmsg+0x10/0x10
[  785.988346][T10583]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  785.988369][T10583]  ? __pfx_netlink_sendmsg+0x10/0x10
[  785.988394][T10583]  __sock_sendmsg+0x21c/0x270
[  785.988415][T10583]  ____sys_sendmsg+0x534/0x810
[  785.988444][T10583]  ? __pfx_____sys_sendmsg+0x10/0x10
[  785.988476][T10583]  ? import_iovec+0x74/0xa0
[  785.988500][T10583]  ___sys_sendmsg+0x21f/0x2a0
[  785.988525][T10583]  ? __pfx____sys_sendmsg+0x10/0x10
[  785.988554][T10583]  ? kstrtouint+0x6e/0xe0
[  785.988602][T10583]  ? __fget_files+0x2a/0x420
[  785.988620][T10583]  ? __fget_files+0x3a6/0x420
[  785.988650][T10583]  __sys_sendmmsg+0x22d/0x430
[  785.988679][T10583]  ? __pfx___sys_sendmmsg+0x10/0x10
[  785.988712][T10583]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  785.988750][T10583]  ? ksys_write+0x230/0x260
[  785.988777][T10583]  ? __pfx_ksys_write+0x10/0x10
[  785.988807][T10583]  __x64_sys_sendmmsg+0xa0/0xc0
[  785.988833][T10583]  do_syscall_64+0xec/0xf80
[  785.988852][T10583]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.988870][T10583]  ? clear_bhb_loop+0x60/0xb0
[  785.988893][T10583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.988910][T10583] RIP: 0033:0x7f97d488f749
[  785.988928][T10583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  785.988945][T10583] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  785.988966][T10583] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  785.988980][T10583] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  785.988992][T10583] RBP: 00007f97d2af6090 R08: 0000000000000000 R09: 0000000000000000
[  785.989004][T10583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  785.989024][T10583] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  785.989054][T10583]  </TASK>
[  786.248201][ T5881] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  786.465822][ T5881] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  786.465858][ T5881] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  786.465882][ T5881] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  786.465927][ T5881] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  786.465951][ T5881] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  786.502451][ T5881] usb 1-1: config 0 descriptor??
[  787.230923][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.230954][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.230970][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.230987][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231003][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231018][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231034][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231050][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231065][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.231081][ T5881] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0
[  787.747300][T10599] openvswitch: netlink: IP tunnel dst address not specified
[  787.773930][ T5881] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  787.808270][ T5922] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  787.808353][T10596] netlink: 15678 bytes leftover after parsing attributes in process `syz.3.1283'.
[  787.852624][ T5824] usb 1-1: USB disconnect, device number 36
[  787.973805][T10602] fido_id[10602]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  788.063712][ T5922] usb 5-1: config 0 has an invalid interface number: 119 but max is 0
[  788.063742][ T5922] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  788.063762][ T5922] usb 5-1: config 0 has no interface number 0
[  788.063812][ T5922] usb 5-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  788.063840][ T5922] usb 5-1: config 0 interface 119 has no altsetting 0
[  788.063875][ T5922] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  788.063899][ T5922] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  788.071235][ T5922] usb 5-1: config 0 descriptor??
[  788.165737][ T5922] usb 5-1: NFC: intf ffff88802176b000 id ffffffff8deca180
[  788.244793][T10608] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  788.245625][T10608] syzkaller0: entered promiscuous mode
[  788.245648][T10608] syzkaller0: entered allmulticast mode
[  788.384706][ T5922] usb 5-1: USB disconnect, device number 42
[  788.457404][T10612] tipc: Resetting bearer <eth:syzkaller0>
[  788.531817][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ddfe800: rx timeout, send abort
[  788.604382][T10607] tipc: Resetting bearer <eth:syzkaller0>
[  788.648382][T10617] FAULT_INJECTION: forcing a failure.
[  788.648382][T10617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  788.648418][T10617] CPU: 1 UID: 0 PID: 10617 Comm: syz.0.1289 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  788.648443][T10617] Tainted: [L]=SOFTLOCKUP
[  788.648450][T10617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  788.648460][T10617] Call Trace:
[  788.648467][T10617]  <TASK>
[  788.648475][T10617]  dump_stack_lvl+0xe8/0x150
[  788.648503][T10617]  should_fail_ex+0x46c/0x600
[  788.648533][T10617]  _copy_from_user+0x2d/0xb0
[  788.648553][T10617]  memdup_user+0x5e/0xd0
[  788.648574][T10617]  strndup_user+0x68/0xd0
[  788.648594][T10617]  bpf_uprobe_multi_link_attach+0x31c/0xee0
[  788.648625][T10617]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  788.648643][T10617]  ? __fget_files+0x2a/0x420
[  788.648664][T10617]  ? __fget_files+0x2a/0x420
[  788.648679][T10617]  ? __fget_files+0x3a6/0x420
[  788.648695][T10617]  ? __fget_files+0x2a/0x420
[  788.648715][T10617]  ? bpf_prog_attach_check_attach_type+0x453/0x540
[  788.648743][T10617]  link_create+0x67c/0x850
[  788.648766][T10617]  __sys_bpf+0x6be/0x860
[  788.648788][T10617]  ? __pfx___sys_bpf+0x10/0x10
[  788.648804][T10617]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  788.648843][T10617]  ? ksys_write+0x230/0x260
[  788.648868][T10617]  ? __pfx_ksys_write+0x10/0x10
[  788.648897][T10617]  __x64_sys_bpf+0x7c/0x90
[  788.648916][T10617]  do_syscall_64+0xec/0xf80
[  788.648944][T10617]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  788.648962][T10617]  ? trace_irq_disable+0x37/0x100
[  788.648980][T10617]  ? clear_bhb_loop+0x60/0xb0
[  788.649000][T10617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  788.649016][T10617] RIP: 0033:0x7f88c6bff749
[  788.649033][T10617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  788.649049][T10617] RSP: 002b:00007f88c4e5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  788.649068][T10617] RAX: ffffffffffffffda RBX: 00007f88c6e55fa0 RCX: 00007f88c6bff749
[  788.649081][T10617] RDX: 0000000000000040 RSI: 0000200000000500 RDI: 000000000000001c
[  788.649093][T10617] RBP: 00007f88c4e5e090 R08: 0000000000000000 R09: 0000000000000000
[  788.649102][T10617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  788.649113][T10617] R13: 00007f88c6e56038 R14: 00007f88c6e55fa0 R15: 00007fff7fe36028
[  788.649141][T10617]  </TASK>
[  789.031695][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ddfcc00: rx timeout, send abort
[  789.034099][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ddfe800: abort rx timeout. Force session deactivation
[  789.061739][T10607] tipc: Disabling bearer <eth:syzkaller0>
[  789.531767][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ddfcc00: abort rx timeout. Force session deactivation
[  790.884364][T10638] C: renamed from team_slave_0 (while UP)
[  792.760129][T10638] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1294'.
[  792.760164][T10638] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  793.311149][T10661] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1298'.
[  794.653767][ T5990] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  794.826360][ T5990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  794.826380][ T5990] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  794.826405][ T5990] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  794.826424][ T5990] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  794.833227][ T5990] usb 2-1: config 0 descriptor??
[  794.978168][   T31] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  795.001923][T10669] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1304'.
[  795.029042][T10669] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  795.029054][T10669] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  795.029060][T10669] overlayfs: missing 'lowerdir'
[  795.131532][   T31] usb 3-1: config 0 has an invalid interface number: 119 but max is 0
[  795.131561][   T31] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  795.131581][   T31] usb 3-1: config 0 has no interface number 0
[  795.131649][   T31] usb 3-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  795.131666][   T31] usb 3-1: config 0 interface 119 has no altsetting 0
[  795.131685][   T31] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  795.131698][   T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  795.140884][   T31] usb 3-1: config 0 descriptor??
[  795.253163][   T31] usb 3-1: NFC: intf ffff88805dff3000 id ffffffff8deca180
[  795.317805][ T5990] kovaplus 0003:1E7D:2D50.001D: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.1-1/input0
[  795.369596][T10672] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1304'.
[  795.480445][ T5948] usb 3-1: USB disconnect, device number 35
[  795.647429][ T5990] kovaplus 0003:1E7D:2D50.001D: couldn't init struct kovaplus_device
[  795.647487][ T5990] kovaplus 0003:1E7D:2D50.001D: couldn't install mouse
[  795.744290][ T5990] kovaplus 0003:1E7D:2D50.001D: probe with driver kovaplus failed with error -71
[  796.095219][T10680] FAULT_INJECTION: forcing a failure.
[  796.095219][T10680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  796.095245][T10680] CPU: 1 UID: 0 PID: 10680 Comm: syz.2.1305 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  796.095261][T10680] Tainted: [L]=SOFTLOCKUP
[  796.095265][T10680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  796.095272][T10680] Call Trace:
[  796.095276][T10680]  <TASK>
[  796.095281][T10680]  dump_stack_lvl+0xe8/0x150
[  796.095300][T10680]  should_fail_ex+0x46c/0x600
[  796.095319][T10680]  _copy_from_user+0x2d/0xb0
[  796.095331][T10680]  bpf_test_init+0xd8/0x150
[  796.095348][T10680]  bpf_prog_test_run_xdp+0x4dc/0x1110
[  796.095370][T10680]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  796.095386][T10680]  ? __fget_files+0x2a/0x420
[  796.095400][T10680]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  796.095414][T10680]  bpf_prog_test_run+0x2cd/0x340
[  796.095429][T10680]  __sys_bpf+0x562/0x860
[  796.095441][T10680]  ? __pfx___sys_bpf+0x10/0x10
[  796.095451][T10680]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  796.095475][T10680]  ? ksys_write+0x230/0x260
[  796.095490][T10680]  ? __pfx_ksys_write+0x10/0x10
[  796.095508][T10680]  __x64_sys_bpf+0x7c/0x90
[  796.095518][T10680]  do_syscall_64+0xec/0xf80
[  796.095529][T10680]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.095539][T10680]  ? trace_irq_disable+0x37/0x100
[  796.095550][T10680]  ? clear_bhb_loop+0x60/0xb0
[  796.095562][T10680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.095572][T10680] RIP: 0033:0x7f0b41f6f749
[  796.095582][T10680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  796.095591][T10680] RSP: 002b:00007f0b401ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  796.095602][T10680] RAX: ffffffffffffffda RBX: 00007f0b421c5fa0 RCX: 00007f0b41f6f749
[  796.095610][T10680] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  796.095616][T10680] RBP: 00007f0b401ce090 R08: 0000000000000000 R09: 0000000000000000
[  796.095623][T10680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  796.095629][T10680] R13: 00007f0b421c6038 R14: 00007f0b421c5fa0 R15: 00007ffdcf304b58
[  796.095645][T10680]  </TASK>
[  796.257309][ T5990] usb 2-1: USB disconnect, device number 47
[  796.278315][T10674] comedi: valid board names for 8255 driver are:
[  796.278333][T10674]  8255
[  796.278340][T10674] comedi: valid board names for vmk80xx driver are:
[  796.278350][T10674]  vmk80xx
[  796.278357][T10674] comedi: valid board names for usbduxsigma driver are:
[  796.278366][T10674]  usbduxsigma
[  796.278373][T10674] comedi: valid board names for usbduxfast driver are:
[  796.278383][T10674]  usbduxfast
[  796.278389][T10674] comedi: valid board names for usbdux driver are:
[  796.278399][T10674]  usbdux
[  796.278405][T10674] comedi: valid board names for ni6501 driver are:
[  796.278414][T10674]  ni6501
[  796.278421][T10674] comedi: valid board names for dt9812 driver are:
[  796.278429][T10674]  dt9812
[  796.278435][T10674] comedi: valid board names for ni_labpc_cs driver are:
[  796.278444][T10674]  ni_labpc_cs
[  796.278451][T10674] comedi: valid board names for ni_daq_700 driver are:
[  796.278460][T10674]  ni_daq_700
[  796.278466][T10674] comedi: valid board names for labpc_pci driver are:
[  796.278475][T10674]  labpc_pci
[  796.278481][T10674] comedi: valid board names for adl_pci9118 driver are:
[  796.278490][T10674]  pci9118dg
[  796.278497][T10674]  pci9118hg
[  796.278503][T10674]  pci9118hr
[  796.278510][T10674] comedi: valid board names for 8255_pci driver are:
[  796.278519][T10674]  8255_pci
[  796.278525][T10674] comedi: valid board names for s526 driver are:
[  796.278533][T10674]  s526
[  796.278540][T10674] comedi: valid board names for multiq3 driver are:
[  796.278549][T10674]  multiq3
[  796.278555][T10674] comedi: valid board names for pcmuio driver are:
[  796.278563][T10674]  pcmuio48
[  796.278570][T10674]  pcmuio96
[  796.278576][T10674] comedi: valid board names for pcmmio driver are:
[  796.278585][T10674]  pcmmio
[  796.278591][T10674] comedi: valid board names for pcmda12 driver are:
[  796.278600][T10674]  pcmda12
[  796.278606][T10674] comedi: valid board names for pcmad driver are:
[  796.278615][T10674]  pcmad12
[  796.278621][T10674]  pcmad16
[  796.278627][T10674] comedi: valid board names for ni_labpc driver are:
[  796.278635][T10674]  lab-pc-1200
[  796.278642][T10674]  lab-pc-1200ai
[  796.278648][T10674]  lab-pc+
[  796.278655][T10674] comedi: valid board names for atmio16 driver are:
[  796.278664][T10674]  atmio16
[  796.278670][T10674]  atmio16d
[  796.278677][T10674] comedi: valid board names for ni_at_ao driver are:
[  796.278685][T10674]  at-ao-6
[  796.278691][T10674]  at-ao-10
[  796.278698][T10674] comedi: valid board names for ni_at_a2150 driver are:
[  796.278706][T10674]  ni_at_a2150
[  796.278713][T10674] comedi: valid board names for adq12b driver are:
[  796.278722][T10674]  adq12b
[  796.278728][T10674] comedi: valid board names for mpc624 driver are:
[  796.278736][T10674]  mpc624
[  796.278742][T10674] comedi: valid board names for c6xdigio driver are:
[  796.278751][T10674]  c6xdigio
[  796.278757][T10674] comedi: valid board names for aio_iiro_16 driver are:
[  796.278767][T10674]  aio_iiro_16
[  796.278773][T10674] comedi: valid board names for aio_aio12_8 driver are:
[  796.278783][T10674]  aio_aio12_8
[  796.278789][T10674]  aio_ai12_8
[  796.278795][T10674]  aio_ao12_4
[  796.278802][T10674] comedi: valid board names for fl512 driver are:
[  796.278810][T10674]  fl512
[  796.278816][T10674] comedi: valid board names for dmm32at driver are:
[  796.278825][T10674]  dmm32at
[  796.278831][T10674] comedi: valid board names for dt282x driver are:
[  796.278840][T10674]  dt2821
[  796.278850][T10674]  dt2821-f
[  796.278856][T10674]  dt2821-g
[  796.278863][T10674]  dt2823
[  796.278869][T10674]  dt2824-pgh
[  796.278876][T10674]  dt2824-pgl
[  796.278882][T10674]  dt2825
[  796.278889][T10674]  dt2827
[  796.278895][T10674]  dt2828
[  796.278902][T10674]  dt2829
[  796.278908][T10674]  dt21-ez
[  796.278915][T10674]  dt23-ez
[  796.278922][T10674]  dt24-ez
[  796.278928][T10674]  dt24-ez-pgl
[  796.278935][T10674] comedi: valid board names for dt2817 driver are:
[  796.278944][T10674]  dt2817
[  796.278951][T10674] comedi: valid board names for dt2815 driver are:
[  796.278959][T10674]  dt2815
[  796.278966][T10674] comedi: valid board names for dt2814 driver are:
[  796.278975][T10674]  dt2814
[  796.278981][T10674] comedi: valid board names for dt2811 driver are:
[  796.278990][T10674]  dt2811-pgh
[  796.279005][T10674]  dt2811-pgl
[  796.279012][T10674] comedi: valid board names for dt2801 driver are:
[  796.279021][T10674]  dt2801
[  796.279027][T10674] comedi: valid board names for das6402 driver are:
[  796.279037][T10674]  das6402-12
[  796.279043][T10674]  das6402-16
[  796.279049][T10674] comedi: valid board names for das1800 driver are:
[  796.279058][T10674]  das-1701st
[  796.279064][T10674]  das-1701st-da
[  796.279071][T10674]  das-1702st
[  796.279077][T10674]  das-1702st-da
[  796.279084][T10674]  das-1702hr
[  796.279090][T10674]  das-1702hr-da
[  796.279097][T10674]  das-1701ao
[  796.279104][T10674]  das-1702ao
[  796.279111][T10674]  das-1801st
[  796.279117][T10674]  das-1801st-da
[  796.279124][T10674]  das-1802st
[  796.279130][T10674]  das-1802st-da
[  796.279137][T10674]  das-1802hr
[  796.279143][T10674]  das-1802hr-da
[  796.279150][T10674]  das-1801hc
[  796.279157][T10674]  das-1802hc
[  796.279163][T10674]  das-1801ao
[  796.279170][T10674]  das-1802ao
[  796.279177][T10674] comedi: valid board names for das800 driver are:
[  796.279186][T10674]  das-800
[  796.279192][T10674]  cio-das800
[  796.279199][T10674]  das-801
[  796.279205][T10674]  cio-das801
[  796.279211][T10674]  das-802
[  796.279217][T10674]  cio-das802
[  796.279224][T10674]  cio-das802/16
[  796.279231][T10674] comedi: valid board names for isa-das08 driver are:
[  796.279239][T10674]  isa-das08
[  796.279246][T10674]  das08-pgm
[  796.279251][T10674]  das08-pgh
[  796.279257][T10674]  das08-pgl
[  796.279263][T10674]  das08-aoh
[  796.279271][T10674]  das08-aol
[  796.279277][T10674]  das08-aom
[  796.279283][T10674]  das08/jr-ao
[  796.279290][T10674]  das08jr-16-ao
[  796.279296][T10674]  pc104-das08
[  796.279302][T10674]  das08jr/16
[  796.279309][T10674] comedi: valid board names for das16m1 driver are:
[  796.279317][T10674]  das16m1
[  796.279323][T10674] comedi: valid board names for dac02 driver are:
[  796.279332][T10674]  dac02
[  796.279338][T10674] comedi: valid board names for rti802 driver are:
[  796.279347][T10674]  rti802
[  796.279353][T10674] comedi: valid board names for rti800 driver are:
[  796.279362][T10674]  rti800
[  796.279368][T10674]  rti815
[  796.279374][T10674] comedi: valid board names for pcm3724 driver are:
[  796.279382][T10674]  pcm3724
[  796.279388][T10674] comedi: valid board names for pcl818 driver are:
[  796.279397][T10674]  pcl818l
[  796.279403][T10674]  pcl818h
[  796.279410][T10674]  pcl818hd
[  796.279416][T10674]  pcl818hg
[  796.279422][T10674]  pcl818
[  796.279429][T10674]  pcl718
[  796.279435][T10674]  pcm3718
[  796.279442][T10674] comedi: valid board names for pcl816 driver are:
[  796.279450][T10674]  pcl816
[  796.279456][T10674]  pcl814b
[  796.279462][T10674] comedi: valid board names for pcl812 driver are:
[  796.279471][T10674]  pcl812
[  796.279477][T10674]  pcl812pg
[  796.279483][T10674]  acl8112pg
[  796.279489][T10674]  acl8112dg
[  796.279495][T10674]  acl8112hg
[  796.279502][T10674]  a821pgl
[  796.279508][T10674]  a821pglnda
[  796.279514][T10674]  a821pgh
[  796.279521][T10674]  a822pgl
[  796.279527][T10674]  a822pgh
[  796.279533][T10674]  a823pgl
[  796.279540][T10674]  a823pgh
[  796.279546][T10674]  pcl813
[  796.279552][T10674]  pcl813b
[  796.279558][T10674]  acl8113
[  796.279565][T10674]  iso813
[  796.279570][T10674]  acl8216
[  796.279576][T10674]  a826pg
[  796.279583][T10674] comedi: valid board names for pcl730 driver are:
[  796.279592][T10674]  pcl730
[  796.279598][T10674]  iso730
[  796.279603][T10674]  acl7130
[  796.279610][T10674]  pcm3730
[  796.279616][T10674]  pcl725
[  796.279622][T10674]  p8r8dio
[  796.279628][T10674]  acl7225b
[  796.279635][T10674]  p16r16dio
[  796.279641][T10674]  pcl733
[  796.279647][T10674]  pcl734
[  796.279653][T10674]  opmm-1616-xt
[  796.279660][T10674]  pearl-mm-p
[  796.279667][T10674]  ir104-pbf
[  796.279672][T10674] comedi: valid board names for pcl726 driver are:
[  796.279681][T10674]  pcl726
[  796.279687][T10674]  pcl727
[  796.279693][T10674]  pcl728
[  796.279700][T10674]  acl6126
[  796.279706][T10674]  acl6128
[  796.279712][T10674] comedi: valid board names for pcl724 driver are:
[  796.279721][T10674]  pcl724
[  796.279727][T10674]  pcl722
[  796.279733][T10674]  pcl731
[  796.279739][T10674]  acl7122
[  796.279745][T10674]  acl7124
[  796.279751][T10674]  pet48dio
[  796.279758][T10674]  pcmio48
[  796.279764][T10674]  onyx-mm-dio
[  796.279771][T10674] comedi: valid board names for pcl711 driver are:
[  796.279780][T10674]  pcl711
[  796.279786][T10674]  pcl711b
[  796.279792][T10674]  acl8112hg
[  796.279799][T10674]  acl8112dg
[  796.279805][T10674] comedi: valid board names for amplc_pc263 driver are:
[  796.279814][T10674]  pc263
[  796.279820][T10674] comedi: valid board names for amplc_pc236 driver are:
[  796.279830][T10674]  pc36at
[  796.279836][T10674] comedi: valid board names for amplc_dio200 driver are:
[  796.279845][T10674]  pc212e
[  796.279851][T10674]  pc214e
[  796.279857][T10674]  pc215e
[  796.279864][T10674]  pc218e
[  796.279870][T10674]  pc272e
[  796.279876][T10674] comedi: valid board names for comedi_parport driver are:
[  796.279885][T10674]  comedi_parport
[  796.279892][T10674] comedi: valid board names for comedi_test driver are:
[  796.279901][T10674]  comedi_test
[  796.279908][T10674] comedi: valid board names for comedi_bond driver are:
[  796.279916][T10674]  comedi_bond
[  800.266349][ T5814] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  800.699811][ T5814] usb 2-1: config 0 has an invalid interface number: 119 but max is 0
[  800.699838][ T5814] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  800.699853][ T5814] usb 2-1: config 0 has no interface number 0
[  800.699896][ T5814] usb 2-1: config 0 interface 119 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  800.699919][ T5814] usb 2-1: config 0 interface 119 has no altsetting 0
[  800.699945][ T5814] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=51.96
[  800.699965][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  800.708362][ T5814] usb 2-1: config 0 descriptor??
[  800.919391][ T5814] usb 2-1: NFC: intf ffff888028381000 id ffffffff8deca180
[  801.160464][ T5990] usb 2-1: USB disconnect, device number 48
[  801.509737][ T5814] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  801.738179][ T5814] usb 5-1: Using ep0 maxpacket: 32
[  801.780205][ T5814] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  801.780226][ T5814] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  801.780237][ T5814] usb 5-1: Product: syz
[  801.780245][ T5814] usb 5-1: Manufacturer: syz
[  801.780252][ T5814] usb 5-1: SerialNumber: syz
[  801.791467][ T5814] usb 5-1: config 0 descriptor??
[  801.860046][ T5990] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  801.910759][ T5814] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  802.284525][ T5990] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  802.284612][ T5990] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  802.284657][ T5990] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  802.284682][ T5990] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  802.393244][ T5990] usb 4-1: config 0 descriptor??
[  802.983352][ T5814] gspca_ov534_9: reg_w failed -71
[  802.991303][ T5990] kovaplus 0003:1E7D:2D50.001E: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.3-1/input0
[  803.278171][ T5814] gspca_ov534_9: Unknown sensor 0000
[  803.278330][ T5814] ov534_9 5-1:0.0: probe with driver ov534_9 failed with error -22
[  803.281119][ T5814] usb 5-1: USB disconnect, device number 43
[  803.317641][ T5990] kovaplus 0003:1E7D:2D50.001E: couldn't init struct kovaplus_device
[  803.317677][ T5990] kovaplus 0003:1E7D:2D50.001E: couldn't install mouse
[  803.320445][ T5990] kovaplus 0003:1E7D:2D50.001E: probe with driver kovaplus failed with error -71
[  803.442940][ T5990] usb 4-1: USB disconnect, device number 37
[  803.554461][T10729] fido_id[10729]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  805.008299][   T37] audit: type=1326 audit(1768872473.426:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10754 comm="syz.4.1330" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97d488f749 code=0x0
[  805.373106][T10762] 9p: Unknown Cache mode or invalid value f
[  806.668141][   T31] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  806.818506][   T31] usb 4-1: Using ep0 maxpacket: 32
[  806.820361][   T31] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  806.820387][   T31] usb 4-1: config 0 has no interface number 0
[  806.820436][   T31] usb 4-1: config 0 interface 184 has no altsetting 0
[  806.822770][   T31] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  806.822801][   T31] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  806.822821][   T31] usb 4-1: Product: syz
[  806.822830][   T31] usb 4-1: Manufacturer: syz
[  806.822838][   T31] usb 4-1: SerialNumber: syz
[  806.825939][   T31] usb 4-1: config 0 descriptor??
[  806.905409][   T31] smsc75xx v1.0.0
[  807.959127][T10783] faux_driver vgem: [drm] Unknown color mode 17; guessing buffer size.
[  808.171845][   T31] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  808.172049][   T31] smsc75xx 4-1:0.184: probe with driver smsc75xx failed with error -71
[  808.196957][   T31] usb 4-1: USB disconnect, device number 38
[  808.760574][ T5948] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  808.908208][ T5948] usb 2-1: Using ep0 maxpacket: 16
[  808.911033][ T5948] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  808.911073][ T5948] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  808.911113][ T5948] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  808.911138][ T5948] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  808.916932][ T5948] usb 2-1: config 0 descriptor??
[  809.430340][ T5948] hid_parser_main: 5 callbacks suppressed
[  809.430368][ T5948] corsair 0003:1B1C:1B02.001F: unknown main item tag 0x4
[  809.444243][ T5948] corsair 0003:1B1C:1B02.001F: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.1-1/input0
[  809.505600][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  809.505642][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  809.613719][ T5948] corsair 0003:1B1C:1B02.001F: Failed to get K90 initial state (error -71).
[  809.723102][ T5948] usb 2-1: USB disconnect, device number 49
[  810.060822][T10807] fido_id[10807]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  814.509389][T10858] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  814.515958][T10858] FAULT_INJECTION: forcing a failure.
[  814.515958][T10858] name failslab, interval 1, probability 0, space 0, times 0
[  814.515984][T10858] CPU: 1 UID: 0 PID: 10858 Comm: syz.4.1364 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  814.515999][T10858] Tainted: [L]=SOFTLOCKUP
[  814.516003][T10858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  814.516010][T10858] Call Trace:
[  814.516015][T10858]  <TASK>
[  814.516020][T10858]  dump_stack_lvl+0xe8/0x150
[  814.516039][T10858]  should_fail_ex+0x46c/0x600
[  814.516059][T10858]  should_failslab+0xa8/0x100
[  814.516070][T10858]  __kmalloc_cache_noprof+0x84/0x6d0
[  814.516086][T10858]  ? ovl_iterate+0xddc/0x2330
[  814.516102][T10858]  ovl_iterate+0xddc/0x2330
[  814.516122][T10858]  ? look_up_lock_class+0x57/0x110
[  814.516136][T10858]  ? __pfx_ovl_iterate+0x10/0x10
[  814.516149][T10858]  ? __lock_acquire+0x6b6/0x2cf0
[  814.516165][T10858]  ? __lock_acquire+0x6b6/0x2cf0
[  814.516181][T10858]  ? __lock_acquire+0x6b6/0x2cf0
[  814.516199][T10858]  ? do_raw_spin_lock+0x121/0x290
[  814.516217][T10858]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  814.516229][T10858]  ? lockdep_hardirqs_on+0x7b/0x110
[  814.516241][T10858]  ? rwbase_write_lock+0x56f/0x750
[  814.516258][T10858]  ? __pfx_ovl_iterate+0x10/0x10
[  814.516271][T10858]  wrap_directory_iterator+0x99/0xe0
[  814.516288][T10858]  iterate_dir+0x3a5/0x580
[  814.516305][T10858]  __se_sys_getdents64+0xe4/0x260
[  814.516321][T10858]  ? __pfx___se_sys_getdents64+0x10/0x10
[  814.516334][T10858]  ? ksys_write+0x230/0x260
[  814.516356][T10858]  ? __pfx_filldir64+0x10/0x10
[  814.516371][T10858]  ? __pfx_ksys_write+0x10/0x10
[  814.516391][T10858]  do_syscall_64+0xec/0xf80
[  814.516402][T10858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.516413][T10858]  ? trace_irq_disable+0x37/0x100
[  814.516424][T10858]  ? clear_bhb_loop+0x60/0xb0
[  814.516436][T10858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.516449][T10858] RIP: 0033:0x7f97d488f749
[  814.516460][T10858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  814.516470][T10858] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  814.516482][T10858] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  814.516489][T10858] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000004
[  814.516497][T10858] RBP: 00007f97d2af6090 R08: 0000000000000000 R09: 0000000000000000
[  814.516503][T10858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  814.516509][T10858] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  814.516527][T10858]  </TASK>
[  817.488196][ T5922] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  817.648207][ T5922] usb 4-1: Using ep0 maxpacket: 16
[  817.650562][ T5922] usb 4-1: config 0 has an invalid interface number: 34 but max is 0
[  817.650591][ T5922] usb 4-1: config 0 has no interface number 0
[  817.650660][ T5922] usb 4-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  817.650688][ T5922] usb 4-1: config 0 interface 34 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024
[  817.650716][ T5922] usb 4-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[  817.653861][ T5922] usb 4-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  817.653893][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  817.653914][ T5922] usb 4-1: Product: syz
[  817.653929][ T5922] usb 4-1: Manufacturer: syz
[  817.653945][ T5922] usb 4-1: SerialNumber: syz
[  817.754551][ T5922] usb 4-1: config 0 descriptor??
[  817.755735][T10881] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  817.755915][T10881] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  817.981924][T10881] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  817.982055][T10881] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  818.183175][ T5922] asix 4-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  818.183469][ T5922] asix 4-1:0.34: probe with driver asix failed with error -71
[  818.228524][ T5922] usb 4-1: USB disconnect, device number 39
[  820.918216][ T5812] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  821.049531][T10910] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1380'.
[  821.080726][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  821.080749][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  821.080762][ T5812] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  821.080787][ T5812] usb 4-1: New USB device found, idVendor=056e, idProduct=019b, bcdDevice= 0.00
[  821.080800][ T5812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  821.088997][ T5812] usb 4-1: config 0 descriptor??
[  821.808918][ T5812] usbhid 4-1:0.0: can't add hid device: -71
[  821.809049][ T5812] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  821.829813][ T5812] usb 4-1: USB disconnect, device number 40
[  822.478142][ T5812] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  822.717424][ T5812] usb 4-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  822.717444][ T5812] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  822.717456][ T5812] usb 4-1: Product: syz
[  822.717464][ T5812] usb 4-1: Manufacturer: syz
[  822.717489][ T5812] usb 4-1: SerialNumber: syz
[  822.722436][ T5812] usb 4-1: config 0 descriptor??
[  822.763243][ T5812] gspca_main: sunplus-2.14.0 probing 055f:c230
[  823.353960][ T5812] gspca_sunplus: reg_r err -71
[  823.354060][ T5812] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  823.395038][ T5812] usb 4-1: USB disconnect, device number 41
[  824.929930][T10933] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1388'.
[  825.049479][T10940] tipc: Enabled bearer <udp:syz2>, priority 10
[  826.248138][ T5812] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  826.251874][T10946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  826.252394][T10946] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  826.398190][ T5812] usb 3-1: Using ep0 maxpacket: 16
[  826.401891][ T5812] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  826.401927][ T5812] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  826.401950][ T5812] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  826.405235][ T5812] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  826.405268][ T5812] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  826.470842][ T5812] usb 3-1: config 0 descriptor??
[  826.510534][T10951] binder_alloc: 10950: binder_alloc_buf, no vma
[  826.893790][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893830][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893858][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893886][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893914][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893942][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.893970][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  826.894051][ T5812] microsoft 0003:045E:07DA.0020: unknown main item tag 0x4
[  826.894187][ T5812] microsoft 0003:045E:07DA.0020: unbalanced collection at end of report description
[  826.895087][ T5812] microsoft 0003:045E:07DA.0020: parse failed
[  826.895199][ T5812] microsoft 0003:045E:07DA.0020: probe with driver microsoft failed with error -22
[  827.101236][ T5812] usb 3-1: USB disconnect, device number 36
[  827.399189][ T5922] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  827.555076][ T5922] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  827.555107][ T5922] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  827.555127][ T5922] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  827.555176][ T5922] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  827.555204][ T5922] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  827.565690][ T5922] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  827.565720][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  827.565740][ T5922] usb 4-1: Product: syz
[  827.565753][ T5922] usb 4-1: Manufacturer: syz
[  827.590986][ T5922] cdc_wdm 4-1:1.0: skipping garbage
[  827.591461][ T5922] cdc_wdm 4-1:1.0: skipping garbage
[  827.634515][ T5922] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  827.634547][ T5922] cdc_wdm 4-1:1.0: Unknown control protocol
[  827.976566][T10976] FAULT_INJECTION: forcing a failure.
[  827.976566][T10976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  827.976602][T10976] CPU: 1 UID: 0 PID: 10976 Comm: syz.2.1402 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  827.976629][T10976] Tainted: [L]=SOFTLOCKUP
[  827.976635][T10976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  827.976647][T10976] Call Trace:
[  827.976655][T10976]  <TASK>
[  827.976665][T10976]  dump_stack_lvl+0xe8/0x150
[  827.976695][T10976]  should_fail_ex+0x46c/0x600
[  827.976726][T10976]  _copy_to_user+0x31/0xb0
[  827.976748][T10976]  simple_read_from_buffer+0xe1/0x170
[  827.976773][T10976]  proc_fail_nth_read+0x1b6/0x220
[  827.976802][T10976]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  827.976830][T10976]  ? rw_verify_area+0x2ac/0x4e0
[  827.976853][T10976]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  827.976879][T10976]  vfs_read+0x206/0xa30
[  827.976910][T10976]  ? __pfx_vfs_read+0x10/0x10
[  827.976936][T10976]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  827.976958][T10976]  ? lockdep_hardirqs_on+0x7b/0x110
[  827.976977][T10976]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  827.976997][T10976]  ? mutex_lock_nested+0x154/0x1d0
[  827.977020][T10976]  ? fdget_pos+0x253/0x320
[  827.977046][T10976]  ksys_read+0x14b/0x260
[  827.977071][T10976]  ? __pfx_ksys_read+0x10/0x10
[  827.977105][T10976]  do_syscall_64+0xec/0xf80
[  827.977119][T10976]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.977129][T10976]  ? trace_irq_disable+0x37/0x100
[  827.977144][T10976]  ? clear_bhb_loop+0x60/0xb0
[  827.977167][T10976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.977185][T10976] RIP: 0033:0x7f0b41f6e15c
[  827.977202][T10976] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  827.977218][T10976] RSP: 002b:00007f0b401ce030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  827.977239][T10976] RAX: ffffffffffffffda RBX: 00007f0b421c5fa0 RCX: 00007f0b41f6e15c
[  827.977253][T10976] RDX: 000000000000000f RSI: 00007f0b401ce0a0 RDI: 0000000000000003
[  827.977265][T10976] RBP: 00007f0b401ce090 R08: 0000000000000000 R09: 0000000000000000
[  827.977278][T10976] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  827.977287][T10976] R13: 00007f0b421c6038 R14: 00007f0b421c5fa0 R15: 00007ffdcf304b58
[  827.977311][T10976]  </TASK>
[  828.408457][ T5990] usb 4-1: USB disconnect, device number 42
[  831.749268][T11000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1411'.
[  831.800126][T11001] libceph: resolve '4.' (ret=-3): failed
[  832.428142][ T5922] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  832.580372][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  832.580402][ T5922] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  832.580443][ T5922] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  832.580467][ T5922] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  832.589778][ T5922] usb 2-1: config 0 descriptor??
[  832.729870][T11015] comedi comedi4: bad chanlist[0]=0x00000009 chan=9 range length=2
[  834.343111][ T5922] kovaplus 0003:1E7D:2D50.0021: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.1-1/input0
[  834.734322][ T5922] kovaplus 0003:1E7D:2D50.0021: couldn't init struct kovaplus_device
[  834.734377][ T5922] kovaplus 0003:1E7D:2D50.0021: couldn't install mouse
[  834.737217][ T5922] kovaplus 0003:1E7D:2D50.0021: probe with driver kovaplus failed with error -71
[  834.782102][T11017] input: syz0 as /devices/virtual/input/input39
[  834.841988][ T5922] usb 2-1: USB disconnect, device number 50
[  836.813542][T11033] netlink: 'syz.1.1422': attribute type 1 has an invalid length.
[  837.090632][T11041] binder_alloc: 11040: binder_alloc_buf, no vma
[  837.842243][T11049] FAULT_INJECTION: forcing a failure.
[  837.842243][T11049] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  837.842282][T11049] CPU: 0 UID: 0 PID: 11049 Comm: syz.4.1427 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  837.842309][T11049] Tainted: [L]=SOFTLOCKUP
[  837.842317][T11049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  837.842328][T11049] Call Trace:
[  837.842336][T11049]  <TASK>
[  837.842344][T11049]  dump_stack_lvl+0xe8/0x150
[  837.842376][T11049]  should_fail_ex+0x46c/0x600
[  837.842406][T11049]  prepare_alloc_pages+0x22b/0x6c0
[  837.842432][T11049]  __alloc_frozen_pages_noprof+0x123/0x370
[  837.842455][T11049]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  837.842484][T11049]  ? policy_nodemask+0x27c/0x720
[  837.842510][T11049]  ? lockdep_hardirqs_on+0x7b/0x110
[  837.842534][T11049]  alloc_pages_mpol+0xd1/0x380
[  837.842556][T11049]  alloc_pages_noprof+0xcf/0x1e0
[  837.842577][T11049]  get_free_pages_noprof+0xf/0x80
[  837.842597][T11049]  __kasan_populate_vmalloc+0x38/0x1d0
[  837.842621][T11049]  ? rt_spin_unlock+0x161/0x200
[  837.842648][T11049]  alloc_vmap_area+0xdc4/0x14e0
[  837.842689][T11049]  ? __pfx_alloc_vmap_area+0x10/0x10
[  837.842714][T11049]  ? __kmalloc_cache_node_noprof+0x2aa/0x700
[  837.842741][T11049]  ? __get_vm_area_node+0x172/0x350
[  837.842763][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.842787][T11049]  __get_vm_area_node+0x227/0x350
[  837.842815][T11049]  __vmalloc_node_range_noprof+0x371/0x16a0
[  837.842839][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.842877][T11049]  ? is_bpf_text_address+0x26/0x2b0
[  837.842901][T11049]  ? kernel_text_address+0xa5/0xe0
[  837.842931][T11049]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  837.842960][T11049]  ? __lock_acquire+0x6b6/0x2cf0
[  837.842991][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.843011][T11049]  __vmalloc_noprof+0xd2/0x120
[  837.843035][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.843059][T11049]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.843084][T11049]  bpf_prog_alloc+0x3c/0x1a0
[  837.843107][T11049]  bpf_prog_load+0x735/0x1a10
[  837.843136][T11049]  ? get_pid_task+0x20/0x1f0
[  837.843168][T11049]  ? __pfx_bpf_prog_load+0x10/0x10
[  837.843189][T11049]  ? __might_fault+0xb0/0x130
[  837.843233][T11049]  ? bpf_lsm_bpf+0x9/0x20
[  837.843248][T11049]  ? security_bpf+0x7e/0x300
[  837.843268][T11049]  __sys_bpf+0x507/0x860
[  837.843290][T11049]  ? __pfx___sys_bpf+0x10/0x10
[  837.843308][T11049]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  837.843347][T11049]  ? ksys_write+0x230/0x260
[  837.843374][T11049]  ? __pfx_ksys_write+0x10/0x10
[  837.843404][T11049]  __x64_sys_bpf+0x7c/0x90
[  837.843423][T11049]  do_syscall_64+0xec/0xf80
[  837.843442][T11049]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.843460][T11049]  ? trace_irq_disable+0x37/0x100
[  837.843478][T11049]  ? clear_bhb_loop+0x60/0xb0
[  837.843500][T11049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.843518][T11049] RIP: 0033:0x7f97d488f749
[  837.843535][T11049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.843552][T11049] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  837.843573][T11049] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  837.843586][T11049] RDX: 0000000000000094 RSI: 0000200000000280 RDI: 0000000000000005
[  837.843599][T11049] RBP: 00007f97d2af6090 R08: 0000000000000000 R09: 0000000000000000
[  837.843611][T11049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  837.843623][T11049] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  837.843653][T11049]  </TASK>
[  837.843687][T11049] syz.4.1427: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  837.843748][T11049] CPU: 0 UID: 0 PID: 11049 Comm: syz.4.1427 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  837.843773][T11049] Tainted: [L]=SOFTLOCKUP
[  837.843780][T11049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  837.843791][T11049] Call Trace:
[  837.843798][T11049]  <TASK>
[  837.843805][T11049]  dump_stack_lvl+0xe8/0x150
[  837.843829][T11049]  warn_alloc+0x22e/0x3b0
[  837.843858][T11049]  ? kasan_quarantine_put+0xbb/0x1f0
[  837.843884][T11049]  ? __pfx_warn_alloc+0x10/0x10
[  837.843911][T11049]  ? __get_vm_area_node+0x240/0x350
[  837.843932][T11049]  ? __get_vm_area_node+0x172/0x350
[  837.843956][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.843978][T11049]  ? __get_vm_area_node+0x240/0x350
[  837.844009][T11049]  __vmalloc_node_range_noprof+0x396/0x16a0
[  837.844052][T11049]  ? is_bpf_text_address+0x26/0x2b0
[  837.844077][T11049]  ? kernel_text_address+0xa5/0xe0
[  837.844106][T11049]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  837.844133][T11049]  ? __lock_acquire+0x6b6/0x2cf0
[  837.844170][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.844190][T11049]  __vmalloc_noprof+0xd2/0x120
[  837.844215][T11049]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.844238][T11049]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  837.844264][T11049]  bpf_prog_alloc+0x3c/0x1a0
[  837.844287][T11049]  bpf_prog_load+0x735/0x1a10
[  837.844315][T11049]  ? get_pid_task+0x20/0x1f0
[  837.844340][T11049]  ? __pfx_bpf_prog_load+0x10/0x10
[  837.844361][T11049]  ? __might_fault+0xb0/0x130
[  837.844403][T11049]  ? bpf_lsm_bpf+0x9/0x20
[  837.844417][T11049]  ? security_bpf+0x7e/0x300
[  837.844437][T11049]  __sys_bpf+0x507/0x860
[  837.844459][T11049]  ? __pfx___sys_bpf+0x10/0x10
[  837.844476][T11049]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  837.844515][T11049]  ? ksys_write+0x230/0x260
[  837.844542][T11049]  ? __pfx_ksys_write+0x10/0x10
[  837.844572][T11049]  __x64_sys_bpf+0x7c/0x90
[  837.844591][T11049]  do_syscall_64+0xec/0xf80
[  837.844610][T11049]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.844628][T11049]  ? trace_irq_disable+0x37/0x100
[  837.844646][T11049]  ? clear_bhb_loop+0x60/0xb0
[  837.844668][T11049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.844686][T11049] RIP: 0033:0x7f97d488f749
[  837.844701][T11049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.844717][T11049] RSP: 002b:00007f97d2af6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  837.844735][T11049] RAX: ffffffffffffffda RBX: 00007f97d4ae5fa0 RCX: 00007f97d488f749
[  837.844749][T11049] RDX: 0000000000000094 RSI: 0000200000000280 RDI: 0000000000000005
[  837.844761][T11049] RBP: 00007f97d2af6090 R08: 0000000000000000 R09: 0000000000000000
[  837.844774][T11049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  837.844785][T11049] R13: 00007f97d4ae6038 R14: 00007f97d4ae5fa0 R15: 00007ffffdc3f2a8
[  837.844815][T11049]  </TASK>
[  837.844823][T11049] Mem-Info:
[  837.844832][T11049] active_anon:265 inactive_anon:43011 isolated_anon:0
[  837.844832][T11049]  active_file:27564 inactive_file:40269 isolated_file:0
[  837.844832][T11049]  unevictable:768 dirty:274 writeback:0
[  837.844832][T11049]  slab_reclaimable:12912 slab_unreclaimable:103639
[  837.844832][T11049]  mapped:40318 shmem:38759 pagetables:1256
[  837.844832][T11049]  sec_pagetables:0 bounce:0
[  837.844832][T11049]  kernel_misc_reclaimable:0
[  837.844832][T11049]  free:1265973 free_pcp:8596 free_cma:0
[  837.844884][T11049] Node 0 active_anon:1060kB inactive_anon:171944kB active_file:110056kB inactive_file:161076kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:161272kB dirty:1092kB writeback:0kB shmem:153500kB kernel_stack:13568kB pagetables:4892kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  837.844930][T11049] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB kernel_stack:32kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  837.844972][T11049] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  837.845029][T11049] lowmem_reserve[]: 0 2514 2515 2515 2515
[  837.845062][T11049] Node 0 DMA32 free:1145336kB boost:0kB min:3944kB low:6492kB high:9040kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1060kB inactive_anon:171944kB active_file:110056kB inactive_file:161076kB unevictable:1536kB writepending:1092kB zspages:0kB present:3129332kB managed:2574652kB mlocked:0kB bounce:0kB free_pcp:34384kB local_pcp:17100kB free_cma:0kB
[  837.845123][T11049] lowmem_reserve[]: 0 0 1 1 1
[  837.845160][T11049] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  837.845217][T11049] lowmem_reserve[]: 0 0 0 0 0
[  837.845248][T11049] Node 1 Normal free:3903196kB boost:0kB min:6360kB low:10468kB high:14576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  837.845307][T11049] lowmem_reserve[]: 0 0 0 0 0
[  837.845338][T11049] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  837.845449][T11049] Node 0 DMA32: 2194*4kB (UME) 2169*8kB (UME) 1599*16kB (UME) 917*32kB (UME) 642*64kB (UME) 427*128kB (UME) 142*256kB (UME) 110*512kB (UM) 42*1024kB (UM) 11*2048kB (UM) 198*4096kB (UM) = 1146016kB
[  837.845640][T11049] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  837.845735][T11049] Node 1 Normal: 173*4kB (UME) 31*8kB (UME) 33*16kB (UME) 245*32kB (UME) 92*64kB (UME) 31*128kB (UME) 14*256kB (UME) 3*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 945*4096kB (M) = 3903196kB
[  837.845899][T11049] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  837.845916][T11049] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=1 hugepages_size=2048kB
[  837.845933][T11049] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  837.845949][T11049] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  837.845965][T11049] 106539 total pagecache pages
[  837.845973][T11049] 0 pages in swap cache
[  837.845981][T11049] Free swap  = 124996kB
[  837.845988][T11049] Total swap = 124996kB
[  837.845997][T11049] 2097051 pages RAM
[  837.846004][T11049] 0 pages HighMem/MovableOnly
[  837.846012][T11049] 421362 pages reserved
[  837.846019][T11049] 0 pages cma reserved
[  839.506922][T11058] FAULT_INJECTION: forcing a failure.
[  839.506922][T11058] name failslab, interval 1, probability 0, space 0, times 0
[  839.506979][T11058] CPU: 0 UID: 0 PID: 11058 Comm: syz.0.1421 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  839.507009][T11058] Tainted: [L]=SOFTLOCKUP
[  839.507017][T11058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  839.507029][T11058] Call Trace:
[  839.507037][T11058]  <TASK>
[  839.507043][T11058]  dump_stack_lvl+0xe8/0x150
[  839.507062][T11058]  should_fail_ex+0x46c/0x600
[  839.507080][T11058]  ? getname_flags+0xb8/0x540
[  839.507091][T11058]  should_failslab+0xa8/0x100
[  839.507103][T11058]  ? getname_flags+0xb8/0x540
[  839.507112][T11058]  kmem_cache_alloc_noprof+0x84/0x6c0
[  839.507131][T11058]  getname_flags+0xb8/0x540
[  839.507141][T11058]  ? _copy_from_user+0x94/0xb0
[  839.507154][T11058]  user_path_at+0x24/0x60
[  839.507174][T11058]  __se_sys_mount+0x2d4/0x410
[  839.507188][T11058]  ? __pfx___se_sys_mount+0x10/0x10
[  839.507202][T11058]  ? __x64_sys_mount+0x20/0xc0
[  839.507214][T11058]  do_syscall_64+0xec/0xf80
[  839.507226][T11058]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.507237][T11058]  ? clear_bhb_loop+0x60/0xb0
[  839.507250][T11058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.507260][T11058] RIP: 0033:0x7f88c6bff749
[  839.507271][T11058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.507280][T11058] RSP: 002b:00007f88c4e3d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  839.507292][T11058] RAX: ffffffffffffffda RBX: 00007f88c6e56090 RCX: 00007f88c6bff749
[  839.507300][T11058] RDX: 0000200000000640 RSI: 0000200000000600 RDI: 0000000000000000
[  839.507307][T11058] RBP: 00007f88c4e3d090 R08: 0000000000000000 R09: 0000000000000000
[  839.507314][T11058] R10: 0000000002008000 R11: 0000000000000246 R12: 0000000000000001
[  839.507321][T11058] R13: 00007f88c6e56128 R14: 00007f88c6e56090 R15: 00007fff7fe36028
[  839.507338][T11058]  </TASK>
[  840.761511][T11062] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1429'.
[  842.448261][   T31] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  842.631287][   T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  842.631319][   T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  842.631364][   T31] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  842.631389][   T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  842.641293][   T31] usb 2-1: config 0 descriptor??
[  842.891999][T11075] ------------[ cut here ]------------
[  842.892020][T11075] WARNING: net/ipv4/route.c:1275 at ip_rt_bug+0x2d/0x150, CPU#0: syz.3.1435/11075
[  842.892067][T11075] Modules linked in:
[  842.892092][T11075] CPU: 0 UID: 0 PID: 11075 Comm: syz.3.1435 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  842.892122][T11075] Tainted: [L]=SOFTLOCKUP
[  842.892131][T11075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  842.892145][T11075] RIP: 0010:ip_rt_bug+0x2d/0x150
[  842.892192][T11075] Code: fa 55 41 57 41 56 41 55 41 54 53 48 89 d3 e8 3a fb 81 f8 66 90 e8 33 fb 81 f8 31 ff 48 89 de ba 02 00 00 00 e8 14 79 6e ff 90 <0f> 0b 90 31 c0 5b 41 5c 41 5d 41 5e 41 5f 5d e9 0f 38 98 01 cc f3
[  842.892214][T11075] RSP: 0018:ffffc9000509f118 EFLAGS: 00010282
[  842.892234][T11075] RAX: 17e9f04eeceb9000 RBX: ffff88806ac578c0 RCX: 0000000000000046
[  842.892251][T11075] RDX: 0000000000000002 RSI: ffffffff8ce0d62c RDI: ffffffff8b3f5960
[  842.892268][T11075] RBP: 0000000000000001 R08: ffffffff8edb4077 R09: 1ffffffff1db680e
[  842.892285][T11075] R10: dffffc0000000000 R11: fffffbfff1db680f R12: dffffc0000000000
[  842.892302][T11075] R13: dffffc0000000000 R14: ffff88806ac578c0 R15: ffff8881442ba600
[  842.892321][T11075] FS:  00007efd733466c0(0000) GS:ffff888126ceb000(0000) knlGS:0000000000000000
[  842.892341][T11075] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  842.892358][T11075] CR2: 000000110c2cb166 CR3: 00000000413a8000 CR4: 00000000003526f0
[  842.892378][T11075] Call Trace:
[  842.892387][T11075]  <TASK>
[  842.892403][T11075]  ip_push_pending_frames+0xbe/0x150
[  842.892433][T11075]  __icmp_send+0x101e/0x13c0
[  842.892477][T11075]  ? __icmp_send+0x1b9/0x13c0
[  842.892514][T11075]  ? __pfx___icmp_send+0x10/0x10
[  842.892570][T11075]  ? ip_route_input_noref+0x98/0x250
[  842.892602][T11075]  ? __pfx_ip_route_input_noref+0x10/0x10
[  842.892635][T11075]  ? tcp_v4_early_demux+0x4b3/0x9a0
[  842.892670][T11075]  ip_options_compile+0x80/0xb0
[  842.892695][T11075]  ip_rcv_finish_core+0xaa2/0x1c00
[  842.892739][T11075]  ip_rcv_finish+0x14c/0x2f0
[  842.892772][T11075]  NF_HOOK+0x30c/0x3a0
[  842.892800][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  842.892829][T11075]  ? NF_HOOK+0x9a/0x3a0
[  842.892856][T11075]  ? __pfx_NF_HOOK+0x10/0x10
[  842.892882][T11075]  ? ip_rcv_core+0x7f7/0xd00
[  842.892920][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  842.892959][T11075]  ? __pfx_ip_rcv+0x10/0x10
[  842.892987][T11075]  __netif_receive_skb+0x143/0x380
[  842.893011][T11075]  ? __local_bh_disable_ip+0x3c/0x420
[  842.893034][T11075]  ? netif_receive_skb+0x105/0x750
[  842.893046][T11075]  netif_receive_skb+0x1bb/0x750
[  842.893062][T11075]  ? __pfx_netif_receive_skb+0x10/0x10
[  842.893081][T11075]  ? rcu_is_watching+0x15/0xb0
[  842.893100][T11075]  ? __local_bh_disable_ip+0x3c/0x420
[  842.893128][T11075]  ? tun_rx_batched+0x166/0x730
[  842.893157][T11075]  ? tun_rx_batched+0x166/0x730
[  842.893188][T11075]  tun_rx_batched+0x1bf/0x730
[  842.893209][T11075]  ? __pfx_tun_rx_batched+0x10/0x10
[  842.893229][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.893253][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.893284][T11075]  ? __local_bh_enable_ip+0x1af/0x2c0
[  842.893310][T11075]  ? lockdep_hardirqs_on+0x7b/0x110
[  842.893337][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.893362][T11075]  tun_get_user+0x2abd/0x3de0
[  842.893380][T11075]  ? tun_get_user+0x6fc/0x3de0
[  842.893403][T11075]  ? __pfx_tun_get_user+0x10/0x10
[  842.893432][T11075]  ? __lock_acquire+0x6b6/0x2cf0
[  842.893465][T11075]  ? preempt_schedule_thunk+0x16/0x30
[  842.893492][T11075]  ? preempt_schedule_common+0x83/0xd0
[  842.893519][T11075]  ? ref_tracker_alloc+0x2fe/0x450
[  842.893539][T11075]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  842.893555][T11075]  ? tun_get+0x1c/0x2f0
[  842.893569][T11075]  ? tun_get+0x1c/0x2f0
[  842.893602][T11075]  ? tun_get+0x1c/0x2f0
[  842.893631][T11075]  ? tun_get+0x1c/0x2f0
[  842.893664][T11075]  tun_chr_write_iter+0x119/0x200
[  842.893693][T11075]  vfs_write+0x5d5/0xb40
[  842.893712][T11075]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  842.893728][T11075]  ? __pfx_vfs_write+0x10/0x10
[  842.893759][T11075]  ? __fget_files+0x2a/0x420
[  842.893793][T11075]  ksys_write+0x14b/0x260
[  842.893826][T11075]  ? __pfx_ksys_write+0x10/0x10
[  842.893855][T11075]  ? __secure_computing+0xe2/0x2a0
[  842.893875][T11075]  do_syscall_64+0xec/0xf80
[  842.893887][T11075]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.893898][T11075]  ? trace_irq_disable+0x37/0x100
[  842.893923][T11075]  ? clear_bhb_loop+0x60/0xb0
[  842.893950][T11075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.893972][T11075] RIP: 0033:0x7efd750de1ff
[  842.893993][T11075] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  842.894012][T11075] RSP: 002b:00007efd73346000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  842.894030][T11075] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750de1ff
[  842.894038][T11075] RDX: 0000000000000042 RSI: 0000200000000000 RDI: 00000000000000c8
[  842.894045][T11075] RBP: 00007efd75163f91 R08: 0000000000000000 R09: 0000000000000000
[  842.894053][T11075] R10: 0000000000000042 R11: 0000000000000293 R12: 0000000000000000
[  842.894060][T11075] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  842.894089][T11075]  </TASK>
[  842.894108][T11075] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  842.894128][T11075] CPU: 0 UID: 0 PID: 11075 Comm: syz.3.1435 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  842.894159][T11075] Tainted: [L]=SOFTLOCKUP
[  842.894168][T11075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  842.894183][T11075] Call Trace:
[  842.894191][T11075]  <TASK>
[  842.894196][T11075]  vpanic+0x1e0/0x670
[  842.894215][T11075]  panic+0xb9/0xc0
[  842.894229][T11075]  ? __pfx_panic+0x10/0x10
[  842.894273][T11075]  __warn+0x317/0x4b0
[  842.894301][T11075]  ? ip_rt_bug+0x2d/0x150
[  842.894330][T11075]  ? ip_rt_bug+0x2d/0x150
[  842.894353][T11075]  __report_bug+0x288/0x500
[  842.894366][T11075]  ? NF_HOOK+0x30c/0x3a0
[  842.894379][T11075]  ? __netif_receive_skb+0x143/0x380
[  842.894391][T11075]  ? netif_receive_skb+0x1bb/0x750
[  842.894401][T11075]  ? ip_rt_bug+0x2d/0x150
[  842.894431][T11075]  ? __pfx___report_bug+0x10/0x10
[  842.894472][T11075]  ? ip_rt_bug+0x2d/0x150
[  842.894497][T11075]  report_bug+0x16a/0x220
[  842.894520][T11075]  ? ip_rt_bug+0x2d/0x150
[  842.894532][T11075]  ? ip_rt_bug+0x2f/0x150
[  842.894544][T11075]  handle_bug+0x98/0x200
[  842.894558][T11075]  exc_invalid_op+0x1a/0x50
[  842.894574][T11075]  asm_exc_invalid_op+0x1a/0x20
[  842.894594][T11075] RIP: 0010:ip_rt_bug+0x2d/0x150
[  842.894619][T11075] Code: fa 55 41 57 41 56 41 55 41 54 53 48 89 d3 e8 3a fb 81 f8 66 90 e8 33 fb 81 f8 31 ff 48 89 de ba 02 00 00 00 e8 14 79 6e ff 90 <0f> 0b 90 31 c0 5b 41 5c 41 5d 41 5e 41 5f 5d e9 0f 38 98 01 cc f3
[  842.894637][T11075] RSP: 0018:ffffc9000509f118 EFLAGS: 00010282
[  842.894657][T11075] RAX: 17e9f04eeceb9000 RBX: ffff88806ac578c0 RCX: 0000000000000046
[  842.894673][T11075] RDX: 0000000000000002 RSI: ffffffff8ce0d62c RDI: ffffffff8b3f5960
[  842.894688][T11075] RBP: 0000000000000001 R08: ffffffff8edb4077 R09: 1ffffffff1db680e
[  842.894696][T11075] R10: dffffc0000000000 R11: fffffbfff1db680f R12: dffffc0000000000
[  842.894706][T11075] R13: dffffc0000000000 R14: ffff88806ac578c0 R15: ffff8881442ba600
[  842.894725][T11075]  ? ip_rt_bug+0x2c/0x150
[  842.894744][T11075]  ip_push_pending_frames+0xbe/0x150
[  842.894773][T11075]  __icmp_send+0x101e/0x13c0
[  842.894816][T11075]  ? __icmp_send+0x1b9/0x13c0
[  842.894852][T11075]  ? __pfx___icmp_send+0x10/0x10
[  842.894881][T11075]  ? ip_route_input_noref+0x98/0x250
[  842.894897][T11075]  ? __pfx_ip_route_input_noref+0x10/0x10
[  842.894930][T11075]  ? tcp_v4_early_demux+0x4b3/0x9a0
[  842.894967][T11075]  ip_options_compile+0x80/0xb0
[  842.894993][T11075]  ip_rcv_finish_core+0xaa2/0x1c00
[  842.895028][T11075]  ip_rcv_finish+0x14c/0x2f0
[  842.895046][T11075]  NF_HOOK+0x30c/0x3a0
[  842.895062][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  842.895086][T11075]  ? NF_HOOK+0x9a/0x3a0
[  842.895114][T11075]  ? __pfx_NF_HOOK+0x10/0x10
[  842.895140][T11075]  ? ip_rcv_core+0x7f7/0xd00
[  842.895172][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  842.895199][T11075]  ? __pfx_ip_rcv+0x10/0x10
[  842.895213][T11075]  __netif_receive_skb+0x143/0x380
[  842.895225][T11075]  ? __local_bh_disable_ip+0x3c/0x420
[  842.895246][T11075]  ? netif_receive_skb+0x105/0x750
[  842.895268][T11075]  netif_receive_skb+0x1bb/0x750
[  842.895295][T11075]  ? __pfx_netif_receive_skb+0x10/0x10
[  842.895318][T11075]  ? rcu_is_watching+0x15/0xb0
[  842.895338][T11075]  ? __local_bh_disable_ip+0x3c/0x420
[  842.895358][T11075]  ? tun_rx_batched+0x166/0x730
[  842.895373][T11075]  ? tun_rx_batched+0x166/0x730
[  842.895389][T11075]  tun_rx_batched+0x1bf/0x730
[  842.895414][T11075]  ? __pfx_tun_rx_batched+0x10/0x10
[  842.895454][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.895485][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.895517][T11075]  ? __local_bh_enable_ip+0x1af/0x2c0
[  842.895529][T11075]  ? lockdep_hardirqs_on+0x7b/0x110
[  842.895543][T11075]  ? tun_get_user+0x266d/0x3de0
[  842.895559][T11075]  tun_get_user+0x2abd/0x3de0
[  842.895588][T11075]  ? tun_get_user+0x6fc/0x3de0
[  842.895633][T11075]  ? __pfx_tun_get_user+0x10/0x10
[  842.895665][T11075]  ? __lock_acquire+0x6b6/0x2cf0
[  842.895689][T11075]  ? preempt_schedule_thunk+0x16/0x30
[  842.895704][T11075]  ? preempt_schedule_common+0x83/0xd0
[  842.895718][T11075]  ? ref_tracker_alloc+0x2fe/0x450
[  842.895741][T11075]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  842.895774][T11075]  ? tun_get+0x1c/0x2f0
[  842.895803][T11075]  ? tun_get+0x1c/0x2f0
[  842.895838][T11075]  ? tun_get+0x1c/0x2f0
[  842.895857][T11075]  ? tun_get+0x1c/0x2f0
[  842.895874][T11075]  tun_chr_write_iter+0x119/0x200
[  842.895891][T11075]  vfs_write+0x5d5/0xb40
[  842.895930][T11075]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  842.895960][T11075]  ? __pfx_vfs_write+0x10/0x10
[  842.896003][T11075]  ? __fget_files+0x2a/0x420
[  842.896025][T11075]  ksys_write+0x14b/0x260
[  842.896042][T11075]  ? __pfx_ksys_write+0x10/0x10
[  842.896058][T11075]  ? __secure_computing+0xe2/0x2a0
[  842.896096][T11075]  do_syscall_64+0xec/0xf80
[  842.896121][T11075]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.896142][T11075]  ? trace_irq_disable+0x37/0x100
[  842.896165][T11075]  ? clear_bhb_loop+0x60/0xb0
[  842.896184][T11075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.896195][T11075] RIP: 0033:0x7efd750de1ff
[  842.896206][T11075] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  842.896216][T11075] RSP: 002b:00007efd73346000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  842.896229][T11075] RAX: ffffffffffffffda RBX: 00007efd75335fa0 RCX: 00007efd750de1ff
[  842.896247][T11075] RDX: 0000000000000042 RSI: 0000200000000000 RDI: 00000000000000c8
[  842.896262][T11075] RBP: 00007efd75163f91 R08: 0000000000000000 R09: 0000000000000000
[  842.896276][T11075] R10: 0000000000000042 R11: 0000000000000293 R12: 0000000000000000
[  842.896292][T11075] R13: 00007efd75336038 R14: 00007efd75335fa0 R15: 00007fff42862be8
[  842.896331][T11075]  </TASK>
[  842.896810][T11075] Kernel Offset: disabled