last executing test programs:

51.465691615s ago: executing program 1 (id=289):
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000140)={'sit0\x00', &(0x7f0000000040)={'syztnl1\x00', 0x0, 0x1, 0x0, 0xff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x4, 0x0, @rand_addr=0x64010102, @rand_addr=0x64010100}}}}) (fail_nth: 1)

48.935917108s ago: executing program 1 (id=292):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r3, &(0x7f00000002c0)='./file1\x00', 0xc000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)

47.670408265s ago: executing program 1 (id=298):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r3 = open(0x0, 0x0, 0x0)
mknodat$loop(r3, &(0x7f00000002c0)='./file1\x00', 0xc000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)

45.045220002s ago: executing program 1 (id=301):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
socket$unix(0x1, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910faa9d6dc7b6ef915d564c90c2000000000000", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000001800)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r2, &(0x7f000000c940)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)=""/13, 0xd}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2}}], 0x1, 0x40000101, 0x0)

13.134604628s ago: executing program 4 (id=369):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='oom_adj\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = epoll_create1(0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f00000002c0)={0x70000000})
setsockopt$sock_attach_bpf(r1, 0x1, 0x42, &(0x7f0000000400)=r0, 0x4)
preadv(r0, &(0x7f0000000600)=[{&(0x7f0000000280)=""/164, 0xa4}, {0x0}], 0x2, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = getpgrp(0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f00000003c0)={0xffffffff, 0x3122, {<r6=>0x0}, {0xffffffffffffffff}, 0x2, 0x3})
setpgid(r5, r6)
syz_open_dev$loop(0x0, 0x0, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r7, 0x80045301, &(0x7f0000000100))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r11, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r10}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r11, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112)
sendmsg$DEVLINK_CMD_RATE_GET(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="44000000b1eba35643734f0953d25b99fcc27b18e0f4297a40b8a8c8ecd0b5fc3607067a6a854eda152c69a2344e600c1e5894de039d74fc1c3544967aea7719e53e788b7f52afd16bfd9548bae33b0f433892cafb87ae5f621c51ef05ce361ea256893209639a4b449c7e512db1b19264b75244779b98650979cab0fb684add6a4d1a493b705daa0e2eaedec54e89ee65fd4542d98c9cf1775bb182d0e790c549aa62c6116e8b31d4fe8dec66ecd8ce151cafdbb956327e5cdaadadb1ef323e3519bfca3674eb619fcb44d1b628eb45e80183629b8d7995a05926592d3f9fb8250d82e7e05acd2dca0f8fc3aa36fb58ee14f286d880", @ANYRES16=r9, @ANYBLOB="010000000000000000003700000008007300000000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000300fcffffff"], 0x44}}, 0x0)
sendmsg$inet(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000040)="c6866afa75cfb8009851f6a5a3f1048de1e036d2e9cca6bdcdd7ea0f97f3f5aa796629cc70cea7620ac6c7391f983fd047c602449995a3df60a3924e2bfc69a834acae053f58a01a07a6542ffa7a636184a8f41e7ac91b447460d9b46be74c3b06662face817789bab8f3a0fe2ec0d9a5f4c27e96ac11a4924700fb9912667aab1dc2badd19e033a082a3d5aeb340e9b41245320c44a9a7a731737a54881acab0ab03692804674cda969c662560ade207c699fbbec45ec89c28fb165d33e0099c4977cf46882eef89d192d000000", 0xce}, {&(0x7f0000000140)="c8692cea694219e1cde2a530ce", 0xd}, {&(0x7f0000000180)="84275f995714f93165cefe57195926cc3d0eea68bff86eefc710478496f8eb4d09ec63439918dd7b12e012501b5425786049296fdb38cfd8295cb072c737854d70450c84054a8154f10b584eaa46213ef4d609482f3fe3e086a3b6b85cfa0551e6268bbc9f2a538d33c69fe647ea5d32d7f2ab06c22226636aa9b26829869801cce46c486a5f5d62657a13930e6d8e357a90647bbe44d71ca45930b2c812d4307a4514675c46d5afd411a1abea0c5d482aa29553fdd9e568f2eda6faf4e35dd149656798087ed2", 0xc7}, {&(0x7f0000000280)="a08591b9231e97bf66a2a87b4af026052435b77eba554afba59e7564df2762f3e87ec10620854dada353c72523578ddd72d9e8b7fde4f87443f6c9b29f08bf51776205944e08d5bf2f188a888731b67b296bc5f57500cf0034808cb35f78ac80ae375432f99622e08809e4fdf8313ddae82d4bbbf347e7a2793d32479bb151c5a9dc3535cde2849388bd839aad2887065753fdd530d6ec02e15c0445edcc8f8e2d05516b757f5968bbf63e08ece235d0d470adce5457a8a6abac9f1419cb065cad3f4909bd6aeb998b2a15424a6cf95c8528860317089ca35dd44a65a6e2e26b92504b07e21bf67d89adfd002635526660cca854b592f4", 0xf7}], 0x4, 0x0, 0x0, 0x1f000801}, 0x4080)

12.974797547s ago: executing program 4 (id=370):
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000430000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000280)="0f01c90f350f20e035010000000f22e0b8070000000f23c00f21f835020007000f23f866b8c8008ec80fc7fd66ba210066edc4c1fd5b7a00c4c2cd9ce3660fe065bd", 0x42}], 0x1, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0500000004000000ff0f00000200000000000000", @ANYBLOB="b660136eb941f68c09f2141ad228ecdd4ed8af7bc1d03b7200b3390c986bc1fc6d68917200ebf186396e5cf92bcbe2220ca518298e2b30f259209467782ac792ee13cfbe711ee86c82d3a93ceed951739085d7ecbe4573e6064bab19d94484ba93a2b894a7035e404f5ebb47dcbc3dfd550359192fbc3c1ac675affef3a42bfe0182b310c0df9cc093581b3dd155e160b6a7733aa2666f70016e50846dc3ac63eb177a554393736886d5c404f49b2a2ed996e785a9267cd39cbfa564b47fa55399018ffd9921", @ANYBLOB="007e9c2ffe00"/17, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d000018000000000000000000000005000600000000000a00000000000000fc010000000000000000000000000000000000000000000005000500000000000a000000000000000000000000000000000000000000000000000000000000000800120002000200000000000000000010002b00020300000000000000000000fe880000000000000000000000000001fc01000000000000000000000000000004000400af"], 0xc0}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = memfd_create(&(0x7f0000000340)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\xcaZa]\xeen\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x86}djq\xed\'\xe6\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x6)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r6, 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

10.728267918s ago: executing program 4 (id=379):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r3, &(0x7f00000002c0)='./file1\x00', 0xc000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)

10.438437944s ago: executing program 3 (id=382):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
readv(r0, &(0x7f0000000600)=[{&(0x7f0000000300)=""/225, 0xe1}, {0x0}], 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000005c0), 0x10)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000000)=0x4, 0x4)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000200)={&(0x7f00000007c0)=@can={{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "f97003b8750e5566"}, 0x10}}, 0x0)

9.582202307s ago: executing program 4 (id=383):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x30000000})

9.129521836s ago: executing program 4 (id=384):
r0 = open(0x0, 0x0, 0x0)
openat$cgroup_subtree(r0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0xc)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
shutdown(r2, 0x1)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x1c, 0x0, "3f114438efdaca16d374b49a365be44d5e860ea3ba676c0b5047b80e2c3535d5bd9db3c8572560f4d1be5cd41f7716082ee3589f099942e6f1c395ddb8160381baadf27900"}, 0xd8)
sendto$inet6(r2, 0x0, 0x0, 0x20000003, &(0x7f0000b63fe4)={0xa, 0x2, 0xf5}, 0x1c)
r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x7)
getsockname$ax25(r3, 0x0, &(0x7f0000000040))

8.844744079s ago: executing program 3 (id=386):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="13000000100000000100"/20, @ANYRES32, @ANYBLOB="000000000000000000000000000000ddff000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x17, 0xa, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="000000000000001f6c0800000000000018100000", @ANYRES32=r2, @ANYBLOB="000000000000000095000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x4, 0xfdcb, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x21)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x0, @local}, 0x2}}, 0x26)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe050000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f0000000000)=@get={0x1, 0x0, 0x1})
ioctl$IOMMU_HWPT_ALLOC$TEST(0xffffffffffffffff, 0x3b89, &(0x7f00000025c0)={0x28, 0x4, 0x0, 0x0, 0x0, 0x0, 0xdead, 0x0, 0x0})
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x5)
creat(&(0x7f0000000440)='./file0\x00', 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x400000000000000, 0x2)
link(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='./file1\x00')
mount(&(0x7f0000000240)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)='ocfs2\x00', 0x0, 0x0)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010013bd70100400000005000000080009000200000008000c00a80a0000060001000b00000008000b"], 0x34}}, 0x20)

7.619711831s ago: executing program 1 (id=326):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0) (async)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) (async)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff) (async)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0x40286608, &(0x7f0000000180)={@desc={0x39d, 0x2000000, @desc3}}) (async)
dup(0xffffffffffffffff)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
ioctl$HIDIOCGUSAGE(0xffffffffffffffff, 0x400c4807, &(0x7f0000000040)={0x1}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f000021b000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
r7 = dup(r6)
ioctl$KVM_SET_MSRS(r7, 0x4048aecb, &(0x7f0000000040)=ANY=[]) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

7.582699703s ago: executing program 3 (id=387):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000407d1ad430000000000001090224000100000000090400000103000000092100000001"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0900000004000000060000000b00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000004b820000ef907e0891995296f0e3357614bcceb8c26e5f686df2911060d21ed6a65e05d00df2bdd4c8d1e580c3a404c76fa8f02a5887e6d4c85e2bd5fc5b11eae064d3261bea192f00"/98], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000c0702e6f17e82ee0830b621e18a354018ed06a050d7adb52acbb4f38cb0df3fc941943655609ff2ca7a0f1fdc933f56647fbc3890975e08ac36978ae17b5837e05368c93a77f3dee605bf2704db94e181efa6ac0daf46af44848fad15814cda235cf"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000540)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, &(0x7f00000007c0)={[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='sched_switch\x00', &(0x7f0000000600)='.(-!/.\x00', &(0x7f0000000640)='sched_switch\x00', &(0x7f0000000680)='\x00', &(0x7f00000006c0)='\x00', &(0x7f0000000700)='sched_switch\x00', &(0x7f0000000740)='^!\x00', &(0x7f0000000780)='\'--\x00']}, 0x0, 0x1000)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000200)={0x5, 0x5, 0x5, 0x8, 0x6, "8bd5a5140ef785c86cff3bda593e2fd9956f67"})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="78010000100013070000000000000000e0000002000000000000000000000000fc0100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x178}}, 0x0)

5.545514491s ago: executing program 1 (id=392):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
ppoll(&(0x7f0000001240)=[{r3}, {r3}], 0x2, 0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@cgroup=r3, 0x14, 0x0, 0x81, &(0x7f0000000000)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)

5.244372203s ago: executing program 0 (id=393):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x30000000})

3.713494107s ago: executing program 0 (id=395):
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xffffffe5}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r1 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000140)={0x5, @sdr={0x35315241, 0xd93f}})

3.329689964s ago: executing program 0 (id=398):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
syz_clone(0xa9080, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000240)={'veth1_to_bond\x00', 0x400}) (async)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000240)={'veth1_to_bond\x00', 0x400})

2.676512708s ago: executing program 3 (id=399):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000300)='}\'S\x9c\x9a\xc6\xbe\xd3^\xa7\x9f1\x87\xcc\xe4 \'P.\xc7\x9a\x80XC\xf8\xcf|\x1a5\xc0\xd1jK\x02\xe0\xb3*<d\x99\xf5\'\xe1\x16\xc9%{\x17X\xbf\x8b\xec\x10\x99/~-P\x8e\x13\r\x16\xd5\xa2i8\x9f\x9a\xa2\x17\x1b\x86\xc6\xb1\xf1\xb0\x7f\x16\xcf\x04(cR\x91\xbd\xdf\xab\xfc\x82r\xd3Ox#V\xb4R\xaf\xe2\xde\xee\xf5')
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x8000, 0x200, 0x80, 0x20000}, 0x1c)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000000)=@req={0x5, 0x100, 0x5, 0x9}, 0x10)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, &(0x7f0000000240)='}\x00')
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r3, 0x4004aec2, &(0x7f00000001c0))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r5, 0x29, 0x41, &(0x7f0000000080)=ANY=[@ANYBLOB="6d616e676c65000000000000000000002200000000000000000000000000000004000000d1a2d6e7"], &(0x7f0000000180)=0x2c)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$alg(0x26, 0x5, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r6, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2)
sendto$inet(r6, 0x0, 0x0, 0xb, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r7, 0x9)

2.59819756s ago: executing program 2 (id=400):
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10) (async)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0) (async)
gettid() (async)
r1 = socket$inet(0xa, 0x801, 0x8c)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r1, 0x8) (async, rerun: 32)
r2 = accept4(r1, 0x0, 0x0, 0x0) (rerun: 32)
write$binfmt_elf64(r2, &(0x7f0000000240)=ANY=[], 0x78) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000100)={0x1, 0x4, 0x1, 0x20}, 0x10) (async, rerun: 64)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x2}, 0x8) (async, rerun: 64)
sendto$inet(r2, &(0x7f0000000400)="a7", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000380)={0x0, 0xad}, 0xe) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000200)={0x10, 0x2, 0x0, "11010100001400000100b64c0000005c4b7c1500"}) (async, rerun: 64)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async, rerun: 64)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x34, r5, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}]}]}, 0x34}}, 0x0) (async)
write$nci(r4, 0x0, 0x5)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})
rt_sigtimedwait(&(0x7f0000004900)={[0x1]}, 0x0, &(0x7f00000049c0)={0x77359400}, 0x8) (async)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x6, &(0x7f0000000000)={0x0, 0x13, 0x0, @thr={&(0x7f0000000500)="b9e8d13f82137ca08daf3f220d6ca98f7242d044a2c34e677a8596622e3063cbdb2843d20134bf66b42010faa7b6e7afee26b672f985fa6d4d85c453c7a4372f4c51a627489e8850248e336c8fee5b086ccab937ed853cea48efd582e737301d7cf7a33f1b590f5d094ca65d8ead97563a2b8c4c61c37446224be49d76debe6174c0e7a1fbe2fa69a630e605e74bede72e1bd546e53032e75a49d21ae9d568f1203926e6a9ea05c1cb9d67af53584f501315bcb60d01a0d7c32649236d", &(0x7f0000000440)="7cf7c9e3e18027693963e518f6204613f68a0c310295868ac6360ac9a1b72ea618171831a0e7dc2275a609822685c5cb6d5939effb64686d73c6cfa50f3b2d266d0598159e71f91277f8a0526b74f95b6713"}}, &(0x7f0000000240)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) (async, rerun: 64)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6) (rerun: 64)
sendmsg$nl_xfrm(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x50, 0x27, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0x50}}, 0x0)

2.313365349s ago: executing program 2 (id=401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
r4 = io_uring_setup(0x354a, &(0x7f0000000480))
socket$pppoe(0x18, 0x1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020002000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
syz_emit_ethernet(0x16, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='cpuset\x00', 0x2210000, &(0x7f0000000380)='%\x00')
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

2.200344792s ago: executing program 3 (id=402):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
setsockopt$inet_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)=@ccm_128={{}, "c04d831721b66c43", "7e50992d53face4acb591d981848b3d9", "a7844c4e", "6c25c0284645e18b"}, 0x28)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000280)={0x0, 0xd000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.359976726s ago: executing program 2 (id=403):
r0 = accept4$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000280)=0x14, 0x800)
r1 = accept$packet(r0, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
getsockopt$packet_buf(r1, 0x107, 0xa, &(0x7f0000000100)=""/159, &(0x7f00000001c0)=0x9f)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW2(r2, 0x5408, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000040))
io_setup(0x1, &(0x7f0000000200))

933.587415ms ago: executing program 2 (id=404):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6fc40b5d175e86ac0b7a9fd7f1748af98902340eb", 0xa4}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247", 0x1f}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000001080)='c', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6bb3", 0x2b}, {&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc487553859348d48e6fc49d81c71590cd542e796cc2669e2af442a", 0x3f}, {&(0x7f0000000940)="5be3b011e12323e4ab88c0472f0700000000000000e71ba62334303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf648c91", 0x73}], 0x3}}], 0x3, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

834.513062ms ago: executing program 0 (id=405):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x30000000})

819.626843ms ago: executing program 3 (id=406):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce2200182f00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = syz_io_uring_setup(0x5914, &(0x7f0000000440)={0x0, 0x0, 0x800, 0x0, 0x2f6}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000500)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000340)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x9}})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)

669.60639ms ago: executing program 0 (id=407):
r0 = open(0x0, 0x0, 0x0)
openat$cgroup_subtree(r0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
shutdown(r1, 0x1)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x1c, 0x0, "3f114438efdaca16d374b49a365be44d5e860ea3ba676c0b5047b80e2c3535d5bd9db3c8572560f4d1be5cd41f7716082ee3589f099942e6f1c395ddb8160381baadf27900"}, 0xd8)
sendto$inet6(r1, 0x0, 0x0, 0x20000003, &(0x7f0000b63fe4)={0xa, 0x2, 0xf5}, 0x1c)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x7)
getsockname$ax25(r2, 0x0, &(0x7f0000000040))

582.081723ms ago: executing program 2 (id=408):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rename(&(0x7f0000000280)='./file0/../file0/file0/file0\x00', 0x0)
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x28, 0x2, 0x105240, 0x0, 0x0, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x7ff}}, './file0\x00'})
r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000001c0)={0x3, 0x4, 0x4, 0xa, 0x0, r4, 0xac6, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x0, @void, @value, @void, @value}, 0xfffffffffffffde7)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_CT_DIRECTION={0x5}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r7 = socket$unix(0x1, 0x5, 0x0)
r8 = dup2(r7, r6)
close_range(r8, 0xffffffffffffffff, 0x0)
r9 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r9, &(0x7f0000001fc0)=""/184, 0xb8)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="210000000a000000131c00000500000000020000", @ANYRES32=r3, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="030000000200000002000000000000000000006526dade20664cc44050f0000000000000000000"], 0x50)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000039000900000000000000000001000000040000000c000180060000000547000008000200", @ANYRES32, @ANYBLOB="100005"], 0x3c}}, 0x4)

141.194344ms ago: executing program 2 (id=409):
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000340)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000880)="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", 0x6dc}], 0x1}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b03d25a806f8c6394f90524fc60040f030047000068053582c137153e3702c00e8000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x16da)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
getdents(0xffffffffffffffff, 0x0, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
rmdir(&(0x7f0000000380)='./file0/../file0\x00')
r4 = socket(0x1e, 0x805, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x2}}, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000700)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000006c0)={&(0x7f0000000540)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x20040094}, 0x4)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c000080", @ANYRES16=0x0, @ANYBLOB="080027bd7000ffdbdf250c00000005003300030000000500290001000000050038000000000006002800040000000500290001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x20044000}, 0x8051)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mount(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='smb3\x00', 0x0, &(0x7f0000000400))

80.188128ms ago: executing program 0 (id=410):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = gettid()
prlimit64(r1, 0xe, &(0x7f0000000000)={0x5, 0x100008d}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, r1, 0xe5, 0x2003)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffffcb8}]})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
linkat(r3, &(0x7f0000000100)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000001100)=0x1, 0x4)
modify_ldt$read(0x0, &(0x7f00000000c0)=""/4122, 0x101a)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
rt_sigprocmask(0x0, &(0x7f0000001200)={[0xffffffffffffffff]}, 0xffffffffffffffff, 0x8)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x56, &(0x7f0000001140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08004b0000480000000000019078ac1e0001ac1414aa8617000000030111f806abe67ceb64e79eceabc088137897b8b9dca655dfed43d091f8e9370003009078030000004500000000000000000000007f000001ac1414bb"], 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000012c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000001300)='./file0/../file0/../file0/../file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000000)={0x2, 0x0, 0x7, {0xe7ff, 0x4000, 0x4, 0x870}})

0s ago: executing program 4 (id=411):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000407d1ad430000000000001090224000100000000090400000103000000092100000001"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0900000004000000060000000b00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000004b820000ef907e0891995296f0e3357614bcceb8c26e5f686df2911060d21ed6a65e05d00df2bdd4c8d1e580c3a404c76fa8f02a5887e6d4c85e2bd5fc5b11eae064d3261bea192f00"/98], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000c0702e6f17e82ee0830b621e18a354018ed06a050d7adb52acbb4f38cb0df3fc941943655609ff2ca7a0f1fdc933f56647fbc3890975e08ac36978ae17b5837e05368c93a77f3dee605bf2704db94e181efa6ac0daf46af44848fad15814cda235cf"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000540)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, &(0x7f00000007c0)={[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='sched_switch\x00', &(0x7f0000000600)='.(-!/.\x00', &(0x7f0000000640)='sched_switch\x00', &(0x7f0000000680)='\x00', &(0x7f00000006c0)='\x00', &(0x7f0000000700)='sched_switch\x00', &(0x7f0000000740)='^!\x00', &(0x7f0000000780)='\'--\x00']}, 0x0, 0x1000)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000200)={0x5, 0x5, 0x5, 0x8, 0x6, "8bd5a5140ef785c86cff3bda593e2fd9956f67"})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="78010000100013070000000000000000e0000002000000000000000000000000fc0100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x178}}, 0x0)

kernel console output (not intermixed with test programs):

] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  126.187786][ T5439] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.206972][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.217499][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.227426][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.237924][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.247985][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.258499][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.269101][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.280313][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.291715][ T5439] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.304436][ T5439] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.314363][ T5439] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.323946][ T5439] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.332979][ T5439] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.710452][ T5807] FAULT_INJECTION: forcing a failure.
[  126.710452][ T5807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.723922][ T5807] CPU: 1 UID: 0 PID: 5807 Comm: syz.0.105 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  126.734653][ T5807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  126.744750][ T5807] Call Trace:
[  126.748055][ T5807]  <TASK>
[  126.751008][ T5807]  dump_stack_lvl+0x241/0x360
[  126.755728][ T5807]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.760959][ T5807]  ? __pfx__printk+0x10/0x10
[  126.765611][ T5807]  ? snprintf+0xda/0x120
[  126.769895][ T5807]  should_fail_ex+0x3b0/0x4e0
[  126.774623][ T5807]  _copy_to_user+0x2f/0xb0
[  126.779088][ T5807]  simple_read_from_buffer+0xca/0x150
[  126.784513][ T5807]  proc_fail_nth_read+0x1e9/0x250
[  126.789584][ T5807]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  126.795169][ T5807]  ? rw_verify_area+0x55e/0x6f0
[  126.800157][ T5807]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  126.805740][ T5807]  vfs_read+0x201/0xbc0
[  126.809929][ T5807]  ? __pfx_lock_release+0x10/0x10
[  126.815004][ T5807]  ? __pfx_vfs_read+0x10/0x10
[  126.819730][ T5807]  ? __fget_files+0x3f3/0x470
[  126.824462][ T5807]  ? fdget_pos+0x24e/0x320
[  126.828917][ T5807]  ksys_read+0x183/0x2b0
[  126.833216][ T5807]  ? __pfx_ksys_read+0x10/0x10
[  126.838024][ T5807]  ? do_syscall_64+0x100/0x230
[  126.842820][ T5807]  ? do_syscall_64+0xb6/0x230
[  126.847527][ T5807]  do_syscall_64+0xf3/0x230
[  126.852057][ T5807]  ? clear_bhb_loop+0x35/0x90
[  126.856763][ T5807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.862698][ T5807] RIP: 0033:0x7f2ac4f7ca3c
[  126.867140][ T5807] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  126.886950][ T5807] RSP: 002b:00007f2ac49de030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  126.895401][ T5807] RAX: ffffffffffffffda RBX: 00007f2ac5136130 RCX: 00007f2ac4f7ca3c
[  126.903402][ T5807] RDX: 000000000000000f RSI: 00007f2ac49de0a0 RDI: 0000000000000007
[  126.911399][ T5807] RBP: 00007f2ac49de090 R08: 0000000000000000 R09: 0000000000000000
[  126.919417][ T5807] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  126.927414][ T5807] R13: 0000000000000000 R14: 00007f2ac5136130 R15: 00007fff59f697d8
[  126.935428][ T5807]  </TASK>
[  127.147871][ T5806] FAULT_INJECTION: forcing a failure.
[  127.147871][ T5806] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.161228][ T5806] CPU: 0 UID: 0 PID: 5806 Comm: syz.4.107 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  127.171947][ T5806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  127.182031][ T5806] Call Trace:
[  127.185318][ T5806]  <TASK>
[  127.188262][ T5806]  dump_stack_lvl+0x241/0x360
[  127.192957][ T5806]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.198193][ T5806]  ? __pfx__printk+0x10/0x10
[  127.202805][ T5806]  ? __pfx_lock_release+0x10/0x10
[  127.207862][ T5806]  should_fail_ex+0x3b0/0x4e0
[  127.212560][ T5806]  _copy_from_user+0x2f/0xe0
[  127.217166][ T5806]  copy_msghdr_from_user+0xae/0x680
[  127.222411][ T5806]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  127.228250][ T5806]  __sys_sendmsg+0x22d/0x380
[  127.232852][ T5806]  ? __pfx___sys_sendmsg+0x10/0x10
[  127.237982][ T5806]  ? __pfx_vfs_write+0x10/0x10
[  127.242785][ T5806]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  127.249129][ T5806]  ? do_syscall_64+0x100/0x230
[  127.253903][ T5806]  ? do_syscall_64+0xb6/0x230
[  127.258588][ T5806]  do_syscall_64+0xf3/0x230
[  127.263100][ T5806]  ? clear_bhb_loop+0x35/0x90
[  127.267785][ T5806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.273694][ T5806] RIP: 0033:0x7f032897dff9
[  127.278119][ T5806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.297768][ T5806] RSP: 002b:00007f0329691038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.306213][ T5806] RAX: ffffffffffffffda RBX: 00007f0328b35f80 RCX: 00007f032897dff9
[  127.314205][ T5806] RDX: 0000000010000000 RSI: 0000000020000a80 RDI: 0000000000000003
[  127.322191][ T5806] RBP: 00007f0329691090 R08: 0000000000000000 R09: 0000000000000000
[  127.330172][ T5806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.338240][ T5806] R13: 0000000000000000 R14: 00007f0328b35f80 R15: 00007ffccfa729c8
[  127.346234][ T5806]  </TASK>
[  127.379403][ T4610] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  128.585149][ T5822] netlink: zone id is out of range
[  128.668582][ T5822] netlink: set zone limit has 4 unknown bytes
[  129.306533][ T5545] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.315136][ T5598] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.336404][ T5598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.344826][ T5545] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.352321][ T4632] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  129.559744][ T4632] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.576002][ T4632] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  130.127162][ T4632] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  130.209693][ T4632] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.222479][ T4632] usb 3-1: config 0 descriptor??
[  130.252160][ T4632] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  130.477980][ T4632] usb 3-1: USB disconnect, device number 7
[  130.959673][ T5853] bridge: RTM_NEWNEIGH with invalid ether address
[  131.680071][ T5855] FAULT_INJECTION: forcing a failure.
[  131.680071][ T5855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.721084][ T5855] CPU: 1 UID: 0 PID: 5855 Comm: syz.4.115 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  131.731756][ T5855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  131.741948][ T5855] Call Trace:
[  131.746111][ T5855]  <TASK>
[  131.746128][ T5855]  dump_stack_lvl+0x241/0x360
[  131.746162][ T5855]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.746187][ T5855]  ? __pfx__printk+0x10/0x10
[  131.746221][ T5855]  ? __pfx_lock_release+0x10/0x10
[  131.746267][ T5855]  should_fail_ex+0x3b0/0x4e0
[  131.746303][ T5855]  _copy_from_user+0x2f/0xe0
[  131.746333][ T5855]  copy_msghdr_from_user+0xae/0x680
[  131.746371][ T5855]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  131.746416][ T5855]  __sys_sendmsg+0x22d/0x380
[  131.746446][ T5855]  ? __pfx___sys_sendmsg+0x10/0x10
[  131.746481][ T5855]  ? __pfx_vfs_write+0x10/0x10
[  131.746528][ T5855]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  131.746559][ T5855]  ? do_syscall_64+0x100/0x230
[  131.746582][ T5855]  ? do_syscall_64+0xb6/0x230
[  131.746604][ T5855]  do_syscall_64+0xf3/0x230
[  131.746624][ T5855]  ? clear_bhb_loop+0x35/0x90
[  131.746646][ T5855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.746675][ T5855] RIP: 0033:0x7f032897dff9
[  131.746695][ T5855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.746712][ T5855] RSP: 002b:00007f0329691038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.746735][ T5855] RAX: ffffffffffffffda RBX: 00007f0328b35f80 RCX: 00007f032897dff9
[  131.746751][ T5855] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003
[  131.746764][ T5855] RBP: 00007f0329691090 R08: 0000000000000000 R09: 0000000000000000
[  131.746778][ T5855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.746792][ T5855] R13: 0000000000000000 R14: 00007f0328b35f80 R15: 00007ffccfa729c8
[  131.746822][ T5855]  </TASK>
[  132.573687][ T5860] tty tty3: ldisc open failed (-12), clearing slot 2
[  133.234058][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  133.240874][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  134.577095][ T5227] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  134.589145][ T5227] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  134.601731][ T5227] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  134.616066][ T5227] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  134.627515][ T5227] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  134.703569][ T5227] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  135.004777][ T5280] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  135.482633][ T5280] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  135.493242][ T5280] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  135.673274][ T5280] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  135.731235][   T29] audit: type=1326 audit(1728602607.104:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.754165][ T5915] bridge: RTM_NEWNEIGH with invalid ether address
[  135.834444][ T5280] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.879864][   T29] audit: type=1326 audit(1728602607.144:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.902512][   T29] audit: type=1326 audit(1728602607.144:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.925961][   T29] audit: type=1326 audit(1728602607.144:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.947658][   T29] audit: type=1326 audit(1728602607.144:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.969034][   T29] audit: type=1326 audit(1728602607.144:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  135.990379][   T29] audit: type=1326 audit(1728602607.144:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  136.012386][   T29] audit: type=1326 audit(1728602607.144:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  136.034255][   T29] audit: type=1326 audit(1728602607.144:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  136.049274][ T5280] usb 4-1: config 0 descriptor??
[  136.055974][   T29] audit: type=1326 audit(1728602607.184:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5916 comm="syz.2.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  136.104743][ T5280] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  136.253422][ T5895] chnl_net:caif_netlink_parms(): no params data found
[  137.259537][ T4610] Bluetooth: hci2: command tx timeout
[  137.368561][ T5225] usb 4-1: USB disconnect, device number 2
[  137.666215][ T5895] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.676572][ T5895] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.718215][ T5895] bridge_slave_0: entered allmulticast mode
[  137.770297][ T5895] bridge_slave_0: entered promiscuous mode
[  137.810705][ T5895] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.844597][ T5895] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.871447][ T5895] bridge_slave_1: entered allmulticast mode
[  137.899398][ T5895] bridge_slave_1: entered promiscuous mode
[  137.921688][ T5945] FAULT_INJECTION: forcing a failure.
[  137.921688][ T5945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.965024][ T5945] CPU: 0 UID: 0 PID: 5945 Comm: syz.4.131 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  137.975656][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  137.985720][ T5945] Call Trace:
[  137.989004][ T5945]  <TASK>
[  137.991964][ T5945]  dump_stack_lvl+0x241/0x360
[  137.996667][ T5945]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.001897][ T5945]  ? __pfx__printk+0x10/0x10
[  138.006524][ T5945]  ? __pfx_lock_release+0x10/0x10
[  138.011579][ T5945]  should_fail_ex+0x3b0/0x4e0
[  138.016290][ T5945]  _copy_from_user+0x2f/0xe0
[  138.020923][ T5945]  copy_msghdr_from_user+0xae/0x680
[  138.026165][ T5945]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  138.032009][ T5945]  __sys_sendmsg+0x22d/0x380
[  138.036612][ T5945]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.041754][ T5945]  ? __pfx_vfs_write+0x10/0x10
[  138.046574][ T5945]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  138.052916][ T5945]  ? do_syscall_64+0x100/0x230
[  138.057708][ T5945]  ? do_syscall_64+0xb6/0x230
[  138.062391][ T5945]  do_syscall_64+0xf3/0x230
[  138.066899][ T5945]  ? clear_bhb_loop+0x35/0x90
[  138.071581][ T5945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.077486][ T5945] RIP: 0033:0x7f032897dff9
[  138.081907][ T5945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.101535][ T5945] RSP: 002b:00007f0329691038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.110000][ T5945] RAX: ffffffffffffffda RBX: 00007f0328b35f80 RCX: 00007f032897dff9
[  138.117989][ T5945] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  138.125967][ T5945] RBP: 00007f0329691090 R08: 0000000000000000 R09: 0000000000000000
[  138.133974][ T5945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.141954][ T5945] R13: 0000000000000000 R14: 00007f0328b35f80 R15: 00007ffccfa729c8
[  138.149948][ T5945]  </TASK>
[  139.306837][ T4610] Bluetooth: hci2: command tx timeout
[  140.521160][ T5949] netlink: 20 bytes leftover after parsing attributes in process `syz.2.133'.
[  140.521672][ T5962] usb usb7: usbfs: process 5962 (syz.0.137) did not claim interface 0 before use
[  140.530476][ T5949] netlink: 8 bytes leftover after parsing attributes in process `syz.2.133'.
[  140.570660][ T5949] netlink: 8 bytes leftover after parsing attributes in process `syz.2.133'.
[  140.682718][ T5895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.742677][ T5895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.907325][ T5972] x_tables: unsorted underflow at hook 1
[  141.679351][ T4610] Bluetooth: hci2: command tx timeout
[  141.743708][ T5598] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.103490][ T5895] team0: Port device team_slave_0 added
[  142.151381][ T4632] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  142.776738][ T5895] team0: Port device team_slave_1 added
[  143.255422][ T5985] FAULT_INJECTION: forcing a failure.
[  143.255422][ T5985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.269664][ T4632] usb 5-1: Using ep0 maxpacket: 32
[  143.318638][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz.3.143 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  143.329323][ T5985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  143.339427][ T5985] Call Trace:
[  143.342734][ T5985]  <TASK>
[  143.345694][ T5985]  dump_stack_lvl+0x241/0x360
[  143.350424][ T5985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.355657][ T5985]  ? __pfx__printk+0x10/0x10
[  143.360301][ T5985]  ? __pfx_lock_release+0x10/0x10
[  143.365389][ T5985]  should_fail_ex+0x3b0/0x4e0
[  143.370127][ T5985]  _copy_from_user+0x2f/0xe0
[  143.374766][ T5985]  copy_msghdr_from_user+0xae/0x680
[  143.380017][ T5985]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  143.385884][ T5985]  __sys_sendmsg+0x22d/0x380
[  143.390520][ T5985]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.395678][ T5985]  ? __pfx_vfs_write+0x10/0x10
[  143.400510][ T5985]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  143.406885][ T5985]  ? do_syscall_64+0x100/0x230
[  143.411685][ T5985]  ? do_syscall_64+0xb6/0x230
[  143.416400][ T5985]  do_syscall_64+0xf3/0x230
[  143.420939][ T5985]  ? clear_bhb_loop+0x35/0x90
[  143.425637][ T5985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.431561][ T5985] RIP: 0033:0x7fe75b57dff9
[  143.435995][ T5985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.455623][ T5985] RSP: 002b:00007fe75c44a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.460635][ T4632] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  143.464084][ T5985] RAX: ffffffffffffffda RBX: 00007fe75b735f80 RCX: 00007fe75b57dff9
[  143.472935][ T4632] usb 5-1: config 0 has no interface number 0
[  143.480028][ T5985] RDX: 00000000000009fc RSI: 0000000020001180 RDI: 0000000000000003
[  143.480049][ T5985] RBP: 00007fe75c44a090 R08: 0000000000000000 R09: 0000000000000000
[  143.480063][ T5985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.480077][ T5985] R13: 0000000000000000 R14: 00007fe75b735f80 R15: 00007ffe2c5849a8
[  143.480110][ T5985]  </TASK>
[  143.488618][ T4632] usb 5-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  143.539380][ T4632] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.612799][ T4632] usb 5-1: Product: syz
[  143.617013][ T4632] usb 5-1: Manufacturer: syz
[  143.637084][ T4632] usb 5-1: SerialNumber: syz
[  143.846874][ T4610] Bluetooth: hci2: command tx timeout
[  143.875155][ T4632] usb 5-1: config 0 descriptor??
[  144.154494][ T5225] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  144.766378][ T5598] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.930410][ T5225] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.964416][ T5225] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  144.989430][ T4632] usb 5-1: can't set config #0, error -71
[  145.006736][ T5994] capability: warning: `syz.0.146' uses deprecated v2 capabilities in a way that may be insecure
[  145.028019][ T4632] usb 5-1: USB disconnect, device number 3
[  145.042791][ T5225] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  145.088627][ T5225] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.171164][ T5225] usb 3-1: config 0 descriptor??
[  145.191380][ T5598] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.254115][ T5225] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  149.163852][ T5991] bridge: RTM_NEWNEIGH with invalid ether address
[  149.332093][ T5225] usb 3-1: USB disconnect, device number 8
[  149.864642][ T5598] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.951022][ T5997] erspan0: entered promiscuous mode
[  150.021083][ T5997] erspan0: entered allmulticast mode
[  150.027770][ T5997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'.
[  150.059048][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.074643][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.115689][ T5895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.141201][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.148348][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.295845][ T5895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.236626][ T5895] hsr_slave_0: entered promiscuous mode
[  151.314866][ T6023] FAULT_INJECTION: forcing a failure.
[  151.314866][ T6023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.328752][ T5895] hsr_slave_1: entered promiscuous mode
[  151.335472][ T6023] CPU: 0 UID: 0 PID: 6023 Comm: syz.2.154 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  151.346120][ T6023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  151.356221][ T6023] Call Trace:
[  151.359533][ T6023]  <TASK>
[  151.362494][ T6023]  dump_stack_lvl+0x241/0x360
[  151.367222][ T6023]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.372468][ T6023]  ? __pfx__printk+0x10/0x10
[  151.377192][ T6023]  ? __pfx_lock_release+0x10/0x10
[  151.382268][ T6023]  should_fail_ex+0x3b0/0x4e0
[  151.386997][ T6023]  _copy_from_user+0x2f/0xe0
[  151.391631][ T6023]  copy_msghdr_from_user+0xae/0x680
[  151.396871][ T6023]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  151.402718][ T6023]  __sys_sendmsg+0x22d/0x380
[  151.407326][ T6023]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.412474][ T6023]  ? __pfx_vfs_write+0x10/0x10
[  151.417282][ T6023]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  151.423739][ T6023]  ? do_syscall_64+0x100/0x230
[  151.428512][ T6023]  ? do_syscall_64+0xb6/0x230
[  151.433196][ T6023]  do_syscall_64+0xf3/0x230
[  151.437724][ T6023]  ? clear_bhb_loop+0x35/0x90
[  151.442414][ T6023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.448325][ T6023] RIP: 0033:0x7f2fb257dff9
[  151.452745][ T6023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.472372][ T6023] RSP: 002b:00007f2fb3291038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.480801][ T6023] RAX: ffffffffffffffda RBX: 00007f2fb2736058 RCX: 00007f2fb257dff9
[  151.488885][ T6023] RDX: 0000000000044004 RSI: 00000000200000c0 RDI: 0000000000000007
[  151.497044][ T6023] RBP: 00007f2fb3291090 R08: 0000000000000000 R09: 0000000000000000
[  151.505021][ T6023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.513009][ T6023] R13: 0000000000000000 R14: 00007f2fb2736058 R15: 00007ffeaebbd7b8
[  151.521002][ T6023]  </TASK>
[  151.630680][ T5895] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  151.641783][ T5895] Cannot create hsr debugfs directory
[  151.729972][ T5598] bridge_slave_1: left allmulticast mode
[  151.735890][ T5598] bridge_slave_1: left promiscuous mode
[  151.743047][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.755370][ T5598] bridge_slave_0: left allmulticast mode
[  151.761939][ T5598] bridge_slave_0: left promiscuous mode
[  151.769145][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.912851][ T6028] usb usb7: usbfs: process 6028 (syz.3.151) did not claim interface 0 before use
[  152.173773][ T6033] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  152.183366][ T6033] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  153.319376][ T5277] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  153.532310][ T5277] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  153.568306][ T5277] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  153.568714][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  153.581347][ T5277] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  153.581379][ T5277] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.583963][ T5277] usb 4-1: config 0 descriptor??
[  153.649585][ T5277] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  153.667938][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  153.686631][ T5598] bond0 (unregistering): Released all slaves
[  155.430379][ T5273] usb 4-1: USB disconnect, device number 3
[  156.146382][ T6046] bridge: RTM_NEWNEIGH with invalid ether address
[  157.482963][ T6070] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:20003
[  157.514496][ T6070] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  157.548844][ T6064] netlink: 47 bytes leftover after parsing attributes in process `syz.2.164'.
[  157.694013][ T6070] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.165'.
[  157.782904][ T6070] openvswitch: netlink: VXLAN extension message has 13 unknown bytes.
[  158.818268][ T5598] hsr_slave_0: left promiscuous mode
[  158.894964][ T5598] hsr_slave_1: left promiscuous mode
[  158.912018][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  158.940148][ T6078] usb usb7: usbfs: process 6078 (syz.0.167) did not claim interface 0 before use
[  158.970878][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.017207][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.034351][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.066732][ T5598] veth1_macvtap: left promiscuous mode
[  159.072492][ T5598] veth0_macvtap: left promiscuous mode
[  159.078133][ T5598] veth1_vlan: left promiscuous mode
[  159.083614][ T5598] veth0_vlan: left promiscuous mode
[  159.151178][ T5280] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  159.333653][ T5280] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  159.345099][ T5280] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  159.356657][ T5280] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  159.367766][ T5280] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  159.460279][ T6102] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  160.137128][ T5280] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  160.146710][ T5280] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.154910][ T5280] usb 4-1: Product: syz
[  160.159119][ T5280] usb 4-1: Manufacturer: syz
[  160.171810][ T5280] usb 4-1: SerialNumber: syz
[  160.181941][ T5280] usb 4-1: config 0 descriptor??
[  160.191226][ T5280] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  160.744906][ T6109] overlayfs: failed to resolve './file1': -2
[  162.076965][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  162.088306][ T6116] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  162.133522][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  162.531230][ T5225] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  162.677675][ T6112] bridge: RTM_NEWNEIGH with invalid ether address
[  162.692028][ T5225] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  162.734067][ T5225] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  162.786319][ T5225] usb 1-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  162.841381][ T5225] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.850587][ T5280] scsi host1: usb-storage 4-1:0.0
[  162.870250][ T5280] usb 4-1: USB disconnect, device number 4
[  162.915163][ T5225] usb 1-1: config 0 descriptor??
[  162.961244][ T5225] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  163.727796][ T5895] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  164.867669][    T8] usb 1-1: USB disconnect, device number 3
[  164.989161][ T6148] FAULT_INJECTION: forcing a failure.
[  164.989161][ T6148] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.355330][ T6148] CPU: 0 UID: 0 PID: 6148 Comm: syz.2.180 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  165.366090][ T6148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  165.376190][ T6148] Call Trace:
[  165.379511][ T6148]  <TASK>
[  165.382473][ T6148]  dump_stack_lvl+0x241/0x360
[  165.387197][ T6148]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.392465][ T6148]  ? __pfx__printk+0x10/0x10
[  165.397116][ T6148]  ? __pfx_lock_release+0x10/0x10
[  165.402280][ T6148]  should_fail_ex+0x3b0/0x4e0
[  165.407104][ T6148]  _copy_from_user+0x2f/0xe0
[  165.411745][ T6148]  do_sock_getsockopt+0x1d1/0x7e0
[  165.416818][ T6148]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  165.422573][ T6148]  ? __fget_files+0x3f3/0x470
[  165.427307][ T6148]  ? __fget_files+0x29/0x470
[  165.431953][ T6148]  __sys_getsockopt+0x267/0x330
[  165.435726][ T5895] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  165.436830][ T6148]  ? __pfx___sys_getsockopt+0x10/0x10
[  165.436864][ T6148]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  165.455369][ T6148]  ? do_syscall_64+0x100/0x230
[  165.460177][ T6148]  __x64_sys_getsockopt+0xb5/0xd0
[  165.465227][ T6148]  do_syscall_64+0xf3/0x230
[  165.469745][ T6148]  ? clear_bhb_loop+0x35/0x90
[  165.474464][ T6148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.480377][ T6148] RIP: 0033:0x7f2fb257dff9
[  165.484809][ T6148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.504453][ T6148] RSP: 002b:00007f2fb3291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  165.512893][ T6148] RAX: ffffffffffffffda RBX: 00007f2fb2736058 RCX: 00007f2fb257dff9
[  165.520890][ T6148] RDX: 000000000000271d RSI: 0000000000000114 RDI: 0000000000000003
[  165.529041][ T6148] RBP: 00007f2fb3291090 R08: 0000000020000008 R09: 0000000000000000
[  165.537017][ T6148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.544989][ T6148] R13: 0000000000000000 R14: 00007f2fb2736058 R15: 00007ffeaebbd7b8
[  165.552992][ T6148]  </TASK>
[  165.556167][    C0] vkms_vblank_simulate: vblank timer overrun
[  165.717614][ T5895] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  165.876393][ T5895] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  166.416555][ T6158] overlayfs: missing 'lowerdir'
[  166.876778][ T6163] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  167.400066][ T6165] overlayfs: failed to resolve './file1': -2
[  167.817402][ T5895] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.863958][ T5895] 8021q: adding VLAN 0 to HW filter on device team0
[  167.896869][ T5895] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  167.907365][ T5895] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  168.034175][  T939] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.041402][  T939] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.101518][  T939] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.108693][  T939] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.399835][ T5273] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  168.493904][ T6185] bridge: RTM_NEWNEIGH with invalid ether address
[  168.538534][ T6184] xt_TCPMSS: Only works on TCP SYN packets
[  169.221409][ T5273] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.237540][ T5273] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.278156][ T5273] usb 5-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  169.320240][ T5895] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.339618][ T5273] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.397504][ T5273] usb 5-1: config 0 descriptor??
[  169.483755][ T5895] veth0_vlan: entered promiscuous mode
[  169.496017][ T6192] netlink: 20 bytes leftover after parsing attributes in process `syz.3.191'.
[  169.525173][ T5895] veth1_vlan: entered promiscuous mode
[  169.618714][ T5895] veth0_macvtap: entered promiscuous mode
[  169.668834][ T6198] FAULT_INJECTION: forcing a failure.
[  169.668834][ T6198] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.694904][ T6198] CPU: 0 UID: 0 PID: 6198 Comm: syz.0.192 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  169.705656][ T6198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  169.715823][ T6198] Call Trace:
[  169.719100][ T6198]  <TASK>
[  169.722031][ T6198]  dump_stack_lvl+0x241/0x360
[  169.726735][ T6198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.731935][ T6198]  ? __pfx__printk+0x10/0x10
[  169.736564][ T6198]  ? __pfx_lock_release+0x10/0x10
[  169.741696][ T6198]  should_fail_ex+0x3b0/0x4e0
[  169.746392][ T6198]  _copy_from_user+0x2f/0xe0
[  169.750991][ T6198]  copy_msghdr_from_user+0xae/0x680
[  169.756305][ T6198]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  169.762152][ T6198]  __sys_sendmmsg+0x36d/0x730
[  169.766858][ T6198]  ? __pfx___sys_sendmmsg+0x10/0x10
[  169.772096][ T6198]  ? __pfx_lock_release+0x10/0x10
[  169.777155][ T6198]  ? kstrtouint_from_user+0x128/0x190
[  169.782558][ T6198]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  169.788467][ T6198]  ? ksys_write+0x229/0x2b0
[  169.793079][ T6198]  ? __pfx_lock_release+0x10/0x10
[  169.798141][ T6198]  ? vfs_write+0x7bf/0xc90
[  169.802572][ T6198]  ? kmem_cache_free+0x1a2/0x420
[  169.807611][ T6198]  ? __mutex_unlock_slowpath+0x21d/0x750
[  169.813262][ T6198]  ? __fget_files+0x3f3/0x470
[  169.817977][ T6198]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  169.823978][ T6198]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  169.830324][ T6198]  ? do_syscall_64+0x100/0x230
[  169.835188][ T6198]  __x64_sys_sendmmsg+0xa0/0xb0
[  169.840058][ T6198]  do_syscall_64+0xf3/0x230
[  169.844574][ T6198]  ? clear_bhb_loop+0x35/0x90
[  169.849263][ T6198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.855175][ T6198] RIP: 0033:0x7f2ac4f7dff9
[  169.859604][ T6198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.879220][ T6198] RSP: 002b:00007f2ac49ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  169.887656][ T6198] RAX: ffffffffffffffda RBX: 00007f2ac5136058 RCX: 00007f2ac4f7dff9
[  169.895642][ T6198] RDX: 0000000000000001 RSI: 0000000020001ac0 RDI: 0000000000000004
[  169.903728][ T6198] RBP: 00007f2ac49ff090 R08: 0000000000000000 R09: 0000000000000000
[  169.911708][ T6198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.919693][ T6198] R13: 0000000000000000 R14: 00007f2ac5136058 R15: 00007fff59f697d8
[  169.927692][ T6198]  </TASK>
[  169.941546][ T6199] fuse: Bad value for 'fd'
[  169.948987][ T5280] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  169.967324][ T5895] veth1_macvtap: entered promiscuous mode
[  170.047634][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.080624][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.118005][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.129400][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.131472][ T5280] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  170.140410][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.169045][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.192286][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.205767][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.219962][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_0
[  170.245533][ T5280] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  170.260938][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.287981][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.299396][ T5280] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  170.317472][ T5280] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.332663][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.339450][ T5280] usb 3-1: config 0 descriptor??
[  170.364676][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.383636][ T5280] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  170.397357][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.437187][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.454375][ T5895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.469384][ T5895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.488367][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.524356][ T5895] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.534879][ T5895] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.545351][ T5895] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.555309][ T5895] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.069706][ T6210] overlayfs: failed to resolve './file1': -2
[  171.675649][ T5280] usb 3-1: USB disconnect, device number 9
[  172.708890][ T5273] usbhid 5-1:0.0: can't add hid device: -71
[  172.718116][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.721278][ T5273] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  172.742995][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.764084][ T5273] usb 5-1: USB disconnect, device number 4
[  172.787311][ T6217] FAULT_INJECTION: forcing a failure.
[  172.787311][ T6217] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.807586][ T6217] CPU: 0 UID: 0 PID: 6217 Comm: syz.4.197 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  172.818255][ T6217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  172.828431][ T6217] Call Trace:
[  172.828443][ T6217]  <TASK>
[  172.828454][ T6217]  dump_stack_lvl+0x241/0x360
[  172.839410][ T6217]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.844653][ T6217]  ? __pfx__printk+0x10/0x10
[  172.849315][ T6217]  ? __pfx_lock_release+0x10/0x10
[  172.854408][ T6217]  should_fail_ex+0x3b0/0x4e0
[  172.859146][ T6217]  _copy_from_user+0x2f/0xe0
[  172.863794][ T6217]  __sys_bpf+0x1a4/0x810
[  172.868083][ T6217]  ? __pfx___sys_bpf+0x10/0x10
[  172.872904][ T6217]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  172.878940][ T6217]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  172.885339][ T6217]  ? do_syscall_64+0x100/0x230
[  172.890153][ T6217]  __x64_sys_bpf+0x7c/0x90
[  172.894612][ T6217]  do_syscall_64+0xf3/0x230
[  172.899240][ T6217]  ? clear_bhb_loop+0x35/0x90
[  172.903958][ T6217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.909911][ T6217] RIP: 0033:0x7f032897dff9
[  172.914372][ T6217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.934199][ T6217] RSP: 002b:00007f0329691038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  172.942679][ T6217] RAX: ffffffffffffffda RBX: 00007f0328b35f80 RCX: 00007f032897dff9
[  172.950697][ T6217] RDX: 0000000000000020 RSI: 0000000020004200 RDI: 0000000000000009
[  172.958710][ T6217] RBP: 00007f0329691090 R08: 0000000000000000 R09: 0000000000000000
[  172.966724][ T6217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.974753][ T6217] R13: 0000000000000001 R14: 00007f0328b35f80 R15: 00007ffccfa729c8
[  172.982783][ T6217]  </TASK>
[  172.999527][ T5598] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.007420][ T5598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.322557][ T6222] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  173.468100][ T6230] bridge: RTM_NEWNEIGH with invalid ether address
[  176.994048][ T5273] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  177.189461][ T5273] usb 1-1: Using ep0 maxpacket: 8
[  177.198780][ T5273] usb 1-1: unable to get BOS descriptor or descriptor too short
[  177.849029][ T5273] usb 1-1: config 3 has an invalid interface number: 235 but max is 2
[  177.859944][ T5273] usb 1-1: config 3 has an invalid interface number: 76 but max is 2
[  177.874141][ T5273] usb 1-1: config 3 has no interface number 0
[  177.888097][ T5273] usb 1-1: config 3 has no interface number 1
[  177.906777][ T5273] usb 1-1: config 3 interface 235 has no altsetting 0
[  177.926487][ T5273] usb 1-1: config 3 interface 76 has no altsetting 0
[  177.938718][ T5273] usb 1-1: config 3 interface 2 has no altsetting 0
[  178.351555][ T5273] usb 1-1: New USB device found, idVendor=05c6, idProduct=9203, bcdDevice=b8.93
[  178.362074][ T5273] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.370246][ T5273] usb 1-1: Product: syz
[  178.374473][ T5273] usb 1-1: Manufacturer: syz
[  178.379107][ T5273] usb 1-1: SerialNumber: syz
[  178.441555][ T6243] FAULT_INJECTION: forcing a failure.
[  178.441555][ T6243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.456349][ T6243] CPU: 0 UID: 0 PID: 6243 Comm: syz.1.205 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  178.467015][ T6243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  178.477097][ T6243] Call Trace:
[  178.480406][ T6243]  <TASK>
[  178.483366][ T6243]  dump_stack_lvl+0x241/0x360
[  178.488106][ T6243]  ? __pfx_dump_stack_lvl+0x10/0x10
[  178.493364][ T6243]  ? __pfx__printk+0x10/0x10
[  178.498014][ T6243]  ? __pfx_lock_release+0x10/0x10
[  178.503164][ T6243]  ? vfs_write+0x7bf/0xc90
[  178.507637][ T6243]  should_fail_ex+0x3b0/0x4e0
[  178.512365][ T6243]  _copy_from_user+0x2f/0xe0
[  178.516995][ T6243]  get_timespec64+0x97/0x280
[  178.521623][ T6243]  ? __fget_files+0x3f3/0x470
[  178.526349][ T6243]  ? __pfx_get_timespec64+0x10/0x10
[  178.531601][ T6243]  __x64_sys_recvmmsg+0x140/0x250
[  178.536662][ T6243]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  178.542331][ T6243]  ? do_syscall_64+0x100/0x230
[  178.547129][ T6243]  ? do_syscall_64+0xb6/0x230
[  178.551838][ T6243]  do_syscall_64+0xf3/0x230
[  178.556382][ T6243]  ? clear_bhb_loop+0x35/0x90
[  178.561096][ T6243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.567033][ T6243] RIP: 0033:0x7f2968b7dff9
[  178.571490][ T6243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.591125][ T6243] RSP: 002b:00007f296993d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  178.599588][ T6243] RAX: ffffffffffffffda RBX: 00007f2968d35f80 RCX: 00007f2968b7dff9
[  178.607592][ T6243] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  178.615594][ T6243] RBP: 00007f296993d090 R08: 0000000020003700 R09: 0000000000000000
[  178.623592][ T6243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.631591][ T6243] R13: 0000000000000000 R14: 00007f2968d35f80 R15: 00007ffd32e62b38
[  178.639605][ T6243]  </TASK>
[  179.234330][ T6256] block device autoloading is deprecated and will be removed.
[  179.937903][ T6264] overlayfs: failed to resolve './file1': -2
[  181.430435][ T5273] usb 1-1: selecting invalid altsetting 0
[  181.436223][ T5273] usb 1-1: Could not set interface, error -22
[  181.480821][ T5273] usb 1-1: USB disconnect, device number 4
[  181.826397][ T6277] bridge: RTM_NEWNEIGH with invalid ether address
[  182.423208][ T6273] netlink: 4 bytes leftover after parsing attributes in process `syz.0.214'.
[  182.979597][    T8] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  183.008125][ T6273] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  183.150692][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  183.170065][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  183.183183][    T8] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  183.192485][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.236091][    T8] usb 4-1: config 0 descriptor??
[  183.287768][    T8] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  183.325086][ T6273] batman_adv: batadv0: Removing interface: batadv_slave_0
[  183.532121][ T6293] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  183.714681][ T5225] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  183.761542][ T6297] ip6_tunnel: non-ECT from fc02:0000:0000:0000:0000:0000:0000:0000 with DS=0x1
[  183.844389][ T5277] usb 4-1: USB disconnect, device number 5
[  183.879558][ T5225] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  183.956747][ T5225] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.366087][ T5225] usb 2-1: config 0 descriptor??
[  184.509389][ T5225] cp210x 2-1:0.0: cp210x converter detected
[  184.753575][ T5225] cp210x 2-1:0.0: failed to get vendor val 0x370c size 13: -71
[  184.988776][ T5225] cp210x 2-1:0.0: GPIO initialisation failed: -71
[  185.000896][ T5225] usb 2-1: cp210x converter now attached to ttyUSB0
[  185.028370][ T5225] usb 2-1: USB disconnect, device number 3
[  185.122101][ T6312] overlayfs: failed to resolve './file1': -2
[  185.993816][ T6317] FAULT_INJECTION: forcing a failure.
[  185.993816][ T6317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.999861][ T6316] capability: warning: `syz.3.225' uses 32-bit capabilities (legacy support in use)
[  186.049502][ T6317] CPU: 1 UID: 0 PID: 6317 Comm: syz.2.224 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  186.060165][ T6317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  186.070249][ T6317] Call Trace:
[  186.073628][ T6317]  <TASK>
[  186.076566][ T6317]  dump_stack_lvl+0x241/0x360
[  186.081276][ T6317]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.086480][ T6317]  ? __pfx__printk+0x10/0x10
[  186.091096][ T6317]  ? __pfx_lock_release+0x10/0x10
[  186.096152][ T6317]  should_fail_ex+0x3b0/0x4e0
[  186.100854][ T6317]  _copy_from_user+0x2f/0xe0
[  186.105462][ T6317]  __sys_bpf+0x1a4/0x810
[  186.109719][ T6317]  ? __pfx___sys_bpf+0x10/0x10
[  186.114519][ T6317]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  186.120517][ T6317]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  186.126867][ T6317]  ? do_syscall_64+0x100/0x230
[  186.131647][ T6317]  __x64_sys_bpf+0x7c/0x90
[  186.136162][ T6317]  do_syscall_64+0xf3/0x230
[  186.140676][ T6317]  ? clear_bhb_loop+0x35/0x90
[  186.145363][ T6317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.151274][ T6317] RIP: 0033:0x7f2fb257dff9
[  186.155708][ T6317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.175847][ T6317] RSP: 002b:00007f2fb32b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  186.184391][ T6317] RAX: ffffffffffffffda RBX: 00007f2fb2735f80 RCX: 00007f2fb257dff9
[  186.192377][ T6317] RDX: 0000000000000020 RSI: 0000000020001680 RDI: 000000000000001c
[  186.200362][ T6317] RBP: 00007f2fb32b2090 R08: 0000000000000000 R09: 0000000000000000
[  186.208341][ T6317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.216319][ T6317] R13: 0000000000000000 R14: 00007f2fb2735f80 R15: 00007ffeaebbd7b8
[  186.224314][ T6317]  </TASK>
[  186.242744][ T6319] netlink: 20 bytes leftover after parsing attributes in process `syz.1.227'.
[  186.282203][ T5225] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  186.290714][ T5225] cp210x 2-1:0.0: device disconnected
[  186.465865][ T6329] FAULT_INJECTION: forcing a failure.
[  186.465865][ T6329] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.500234][ T6329] CPU: 0 UID: 0 PID: 6329 Comm: syz.2.231 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  186.510904][ T6329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  186.520961][ T6329] Call Trace:
[  186.524238][ T6329]  <TASK>
[  186.527166][ T6329]  dump_stack_lvl+0x241/0x360
[  186.531850][ T6329]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.537048][ T6329]  ? __pfx__printk+0x10/0x10
[  186.541647][ T6329]  ? __pfx_lock_release+0x10/0x10
[  186.546677][ T6329]  ? vfs_write+0x7bf/0xc90
[  186.551106][ T6329]  should_fail_ex+0x3b0/0x4e0
[  186.555823][ T6329]  _copy_from_user+0x2f/0xe0
[  186.560423][ T6329]  get_timespec64+0x97/0x280
[  186.565022][ T6329]  ? __fget_files+0x3f3/0x470
[  186.569708][ T6329]  ? __pfx_get_timespec64+0x10/0x10
[  186.575008][ T6329]  __x64_sys_recvmmsg+0x140/0x250
[  186.580059][ T6329]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  186.585613][ T6329]  ? do_syscall_64+0x100/0x230
[  186.590401][ T6329]  ? do_syscall_64+0xb6/0x230
[  186.595080][ T6329]  do_syscall_64+0xf3/0x230
[  186.599581][ T6329]  ? clear_bhb_loop+0x35/0x90
[  186.604259][ T6329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.610243][ T6329] RIP: 0033:0x7f2fb257dff9
[  186.614657][ T6329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.634373][ T6329] RSP: 002b:00007f2fb32b2038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  186.642879][ T6329] RAX: ffffffffffffffda RBX: 00007f2fb2735f80 RCX: 00007f2fb257dff9
[  186.650859][ T6329] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  186.658843][ T6329] RBP: 00007f2fb32b2090 R08: 0000000020003700 R09: 0000000000000000
[  186.666811][ T6329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.675026][ T6329] R13: 0000000000000000 R14: 00007f2fb2735f80 R15: 00007ffeaebbd7b8
[  186.683037][ T6329]  </TASK>
[  187.330356][ T6350] FAULT_INJECTION: forcing a failure.
[  187.330356][ T6350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.343625][ T6350] CPU: 1 UID: 0 PID: 6350 Comm: syz.1.234 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  187.354252][ T6350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  187.364351][ T6350] Call Trace:
[  187.367655][ T6350]  <TASK>
[  187.370612][ T6350]  dump_stack_lvl+0x241/0x360
[  187.375353][ T6350]  ? __pfx_dump_stack_lvl+0x10/0x10
[  187.380582][ T6350]  ? __pfx__printk+0x10/0x10
[  187.385217][ T6350]  ? __pfx_lock_release+0x10/0x10
[  187.390294][ T6350]  should_fail_ex+0x3b0/0x4e0
[  187.395018][ T6350]  _copy_from_user+0x2f/0xe0
[  187.399669][ T6350]  copy_msghdr_from_user+0xae/0x680
[  187.404917][ T6350]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  187.410782][ T6350]  __sys_sendmsg+0x22d/0x380
[  187.415431][ T6350]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.420621][ T6350]  ? __pfx_vfs_write+0x10/0x10
[  187.425447][ T6350]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  187.431816][ T6350]  ? do_syscall_64+0x100/0x230
[  187.436612][ T6350]  ? do_syscall_64+0xb6/0x230
[  187.441331][ T6350]  do_syscall_64+0xf3/0x230
[  187.445894][ T6350]  ? clear_bhb_loop+0x35/0x90
[  187.450619][ T6350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.456568][ T6350] RIP: 0033:0x7f2968b7dff9
[  187.461017][ T6350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.480651][ T6350] RSP: 002b:00007f29698fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.489101][ T6350] RAX: ffffffffffffffda RBX: 00007f2968d36130 RCX: 00007f2968b7dff9
[  187.497117][ T6350] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000005
[  187.505128][ T6350] RBP: 00007f29698fb090 R08: 0000000000000000 R09: 0000000000000000
[  187.513138][ T6350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.521146][ T6350] R13: 0000000000000000 R14: 00007f2968d36130 R15: 00007ffd32e62b38
[  187.529164][ T6350]  </TASK>
[  188.446182][ T6366] FAULT_INJECTION: forcing a failure.
[  188.446182][ T6366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.459617][ T6366] CPU: 1 UID: 0 PID: 6366 Comm: syz.2.236 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  188.470249][ T6366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  188.480352][ T6366] Call Trace:
[  188.483670][ T6366]  <TASK>
[  188.486638][ T6366]  dump_stack_lvl+0x241/0x360
[  188.491361][ T6366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.496595][ T6366]  ? __pfx__printk+0x10/0x10
[  188.501229][ T6366]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  188.507251][ T6366]  ? __pfx_lock_release+0x10/0x10
[  188.512328][ T6366]  should_fail_ex+0x3b0/0x4e0
[  188.517059][ T6366]  _copy_from_user+0x2f/0xe0
[  188.521694][ T6366]  lowpan_control_write+0x141/0x850
[  188.526945][ T6366]  ? __pfx_lowpan_control_write+0x10/0x10
[  188.532713][ T6366]  ? lockdep_hardirqs_on+0x99/0x150
[  188.537971][ T6366]  ? __pfx_lowpan_control_write+0x10/0x10
[  188.543735][ T6366]  full_proxy_write+0x119/0x1d0
[  188.548627][ T6366]  ? __pfx_full_proxy_write+0x10/0x10
[  188.554049][ T6366]  vfs_write+0x29c/0xc90
[  188.558326][ T6366]  ? kmem_cache_free+0x1a2/0x420
[  188.563307][ T6366]  ? __pfx_vfs_write+0x10/0x10
[  188.568115][ T6366]  ? __fget_files+0x3f3/0x470
[  188.572841][ T6366]  ? fdget_pos+0x24e/0x320
[  188.577321][ T6366]  ksys_write+0x183/0x2b0
[  188.581685][ T6366]  ? __pfx_ksys_write+0x10/0x10
[  188.586569][ T6366]  ? do_syscall_64+0x100/0x230
[  188.591367][ T6366]  ? do_syscall_64+0xb6/0x230
[  188.596082][ T6366]  do_syscall_64+0xf3/0x230
[  188.600655][ T6366]  ? clear_bhb_loop+0x35/0x90
[  188.605387][ T6366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.611337][ T6366] RIP: 0033:0x7f2fb257dff9
[  188.615793][ T6366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.635442][ T6366] RSP: 002b:00007f2fb1fff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  188.643897][ T6366] RAX: ffffffffffffffda RBX: 00007f2fb2736130 RCX: 00007f2fb257dff9
[  188.651999][ T6366] RDX: 000000000000001e RSI: 0000000020000000 RDI: 0000000000000005
[  188.660018][ T6366] RBP: 00007f2fb1fff090 R08: 0000000000000000 R09: 0000000000000000
[  188.668014][ T6366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.676014][ T6366] R13: 0000000000000000 R14: 00007f2fb2736130 R15: 00007ffeaebbd7b8
[  188.684032][ T6366]  </TASK>
[  188.765050][ T6367] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  188.774471][ T6367] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  188.954861][ T5225] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  189.661818][ T5225] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  189.734797][ T5225] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  189.750360][ T5225] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  189.759903][ T5225] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.774667][ T5225] usb 4-1: config 0 descriptor??
[  189.873638][ T5225] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  191.460104][  T938] usb 4-1: USB disconnect, device number 6
[  191.908268][ T6396] FAULT_INJECTION: forcing a failure.
[  191.908268][ T6396] name failslab, interval 1, probability 0, space 0, times 0
[  191.969989][ T6396] CPU: 0 UID: 0 PID: 6396 Comm: syz.1.247 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  191.980632][ T6396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  191.990700][ T6396] Call Trace:
[  191.993997][ T6396]  <TASK>
[  191.996938][ T6396]  dump_stack_lvl+0x241/0x360
[  192.001625][ T6396]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.006839][ T6396]  ? __pfx__printk+0x10/0x10
[  192.011464][ T6396]  ? fs_reclaim_acquire+0x93/0x130
[  192.016605][ T6396]  ? __pfx___might_resched+0x10/0x10
[  192.021901][ T6396]  should_fail_ex+0x3b0/0x4e0
[  192.026619][ T6396]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  192.032347][ T6396]  should_failslab+0xac/0x100
[  192.037042][ T6396]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  192.042785][ T6396]  __kmalloc_noprof+0xd8/0x400
[  192.047555][ T6396]  tomoyo_realpath_from_path+0xcf/0x5e0
[  192.053138][ T6396]  tomoyo_path_number_perm+0x23a/0x880
[  192.058619][ T6396]  ? tomoyo_path_number_perm+0x208/0x880
[  192.064254][ T6396]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  192.070262][ T6396]  ? __fget_files+0x29/0x470
[  192.074862][ T6396]  ? __fget_files+0x3f3/0x470
[  192.079554][ T6396]  security_file_ioctl+0xc6/0x2a0
[  192.084598][ T6396]  __se_sys_ioctl+0x47/0x170
[  192.089195][ T6396]  do_syscall_64+0xf3/0x230
[  192.093717][ T6396]  ? clear_bhb_loop+0x35/0x90
[  192.098406][ T6396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.104313][ T6396] RIP: 0033:0x7f2968b7dff9
[  192.108742][ T6396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.128372][ T6396] RSP: 002b:00007f296993d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  192.136795][ T6396] RAX: ffffffffffffffda RBX: 00007f2968d35f80 RCX: 00007f2968b7dff9
[  192.144764][ T6396] RDX: 00000000200002c0 RSI: 0000000000008946 RDI: 0000000000000003
[  192.152731][ T6396] RBP: 00007f296993d090 R08: 0000000000000000 R09: 0000000000000000
[  192.160700][ T6396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.168665][ T6396] R13: 0000000000000000 R14: 00007f2968d35f80 R15: 00007ffd32e62b38
[  192.176647][ T6396]  </TASK>
[  192.179754][    C0] vkms_vblank_simulate: vblank timer overrun
[  192.535390][ T6396] ERROR: Out of memory at tomoyo_realpath_from_path.
[  193.062472][ T6414] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.573704][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  194.580343][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  194.827560][ T6427] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  194.836638][ T6427] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  195.236858][ T6432] FAULT_INJECTION: forcing a failure.
[  195.236858][ T6432] name failslab, interval 1, probability 0, space 0, times 0
[  195.278757][ T6432] CPU: 0 UID: 0 PID: 6432 Comm: syz.1.258 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  195.289439][ T6432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  195.299500][ T6432] Call Trace:
[  195.302795][ T6432]  <TASK>
[  195.305740][ T6432]  dump_stack_lvl+0x241/0x360
[  195.310430][ T6432]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.315628][ T6432]  ? __pfx__printk+0x10/0x10
[  195.320241][ T6432]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  195.326235][ T6432]  ? __pfx___might_resched+0x10/0x10
[  195.331556][ T6432]  should_fail_ex+0x3b0/0x4e0
[  195.336285][ T6432]  should_failslab+0xac/0x100
[  195.340997][ T6432]  ? __alloc_skb+0x1c3/0x440
[  195.345623][ T6432]  kmem_cache_alloc_node_noprof+0x71/0x320
[  195.351489][ T6432]  __alloc_skb+0x1c3/0x440
[  195.355935][ T6432]  ? __lock_acquire+0x1384/0x2050
[  195.361003][ T6432]  ? __pfx___alloc_skb+0x10/0x10
[  195.365982][ T6432]  alloc_skb_with_frags+0xc3/0x820
[  195.371133][ T6432]  ? validate_chain+0x11e/0x5920
[  195.376145][ T6432]  ? __pfx_lock_acquire+0x10/0x10
[  195.381218][ T6432]  sock_alloc_send_pskb+0x91a/0xa60
[  195.386471][ T6432]  ? __lock_acquire+0x1384/0x2050
[  195.392328][ T6432]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  195.398107][ T6432]  tun_get_user+0xcf3/0x47e0
[  195.402751][ T6432]  ? __lock_acquire+0x1384/0x2050
[  195.407831][ T6432]  ? __pfx_tun_get_user+0x10/0x10
[  195.412938][ T6432]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  195.418435][ T6432]  ? tun_get+0x1e/0x2f0
[  195.422628][ T6432]  ? __pfx_lock_release+0x10/0x10
[  195.427715][ T6432]  ? tun_get+0x1e/0x2f0
[  195.431910][ T6432]  ? tun_get+0x27d/0x2f0
[  195.436209][ T6432]  tun_chr_write_iter+0x10d/0x1f0
[  195.441278][ T6432]  vfs_write+0xa6d/0xc90
[  195.445562][ T6432]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  195.451145][ T6432]  ? __pfx_vfs_write+0x10/0x10
[  195.455965][ T6432]  ? fdget_pos+0x19a/0x320
[  195.460421][ T6432]  ksys_write+0x183/0x2b0
[  195.464796][ T6432]  ? __pfx_ksys_write+0x10/0x10
[  195.469711][ T6432]  ? do_syscall_64+0x100/0x230
[  195.474520][ T6432]  ? do_syscall_64+0xb6/0x230
[  195.479226][ T6432]  do_syscall_64+0xf3/0x230
[  195.483766][ T6432]  ? clear_bhb_loop+0x35/0x90
[  195.488487][ T6432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.494454][ T6432] RIP: 0033:0x7f2968b7cadf
[  195.498906][ T6432] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  195.518574][ T6432] RSP: 002b:00007f296993d000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  195.527034][ T6432] RAX: ffffffffffffffda RBX: 00007f2968d35f80 RCX: 00007f2968b7cadf
[  195.535049][ T6432] RDX: 000000000000ff51 RSI: 0000000020000000 RDI: 00000000000000c8
[  195.543064][ T6432] RBP: 00007f296993d090 R08: 0000000000000000 R09: 0000000000000000
[  195.551067][ T6432] R10: 000000000000ff51 R11: 0000000000000293 R12: 0000000000000001
[  195.559084][ T6432] R13: 0000000000000000 R14: 00007f2968d35f80 R15: 00007ffd32e62b38
[  195.567124][ T6432]  </TASK>
[  195.570381][    C0] vkms_vblank_simulate: vblank timer overrun
[  195.603187][ T6425] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  195.761055][ T6437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.260'.
[  195.849341][ T5225] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  196.385815][ T6451] syz.1.262: attempt to access beyond end of device
[  196.385815][ T6451] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  196.399117][ T6451] (syz.1.262,6451,1):ocfs2_get_sector:1769 ERROR: status = -5
[  196.406809][ T6451] (syz.1.262,6451,1):ocfs2_sb_probe:749 ERROR: status = -5
[  196.414535][ T6451] (syz.1.262,6451,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  196.423513][ T6451] (syz.1.262,6451,1):ocfs2_fill_super:1178 ERROR: status = -5
[  197.073169][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  197.079475][   T54] Bluetooth: hci3: command 0x0406 tx timeout
[  197.085545][   T54] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  197.094859][   T54] Bluetooth: hci2: Injecting HCI hardware error event
[  197.102365][   T54] Bluetooth: hci2: hardware error 0x00
[  197.179314][ T5225] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  197.196716][ T5225] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  197.227576][ T5225] usb 5-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  197.257754][ T5225] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.310584][ T5225] usb 5-1: config 0 descriptor??
[  197.365209][ T5225] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  197.856595][ T5225] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  197.984181][ T5277] usb 5-1: USB disconnect, device number 5
[  198.019427][ T5225] usb 2-1: Using ep0 maxpacket: 8
[  198.305137][ T5225] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  198.519068][ T5225] usb 2-1: config 0 has no interface number 0
[  198.646091][ T5225] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  198.686338][ T5225] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  198.696570][ T5225] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.758363][ T5225] usb 2-1: config 0 descriptor??
[  198.803887][ T5225] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  199.359417][   T54] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  200.110028][ T5225] usb 2-1: USB disconnect, device number 4
[  200.118893][ T5225] iowarrior 2-1:0.1: I/O-Warror #0 now disconnected
[  200.249363][   T46] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  200.562149][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  200.562167][   T29] audit: type=1326 audit(1728602671.974:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  200.646573][ T6481] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  200.655589][ T6481] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  201.240493][   T29] audit: type=1326 audit(1728602672.654:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.263777][   T29] audit: type=1326 audit(1728602672.654:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.285336][   T29] audit: type=1326 audit(1728602672.654:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.301138][ T6484] FAULT_INJECTION: forcing a failure.
[  201.301138][ T6484] name failslab, interval 1, probability 0, space 0, times 0
[  201.373999][ T6484] CPU: 0 UID: 0 PID: 6484 Comm: syz.2.273 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  201.384680][ T6484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  201.394776][ T6484] Call Trace:
[  201.398082][ T6484]  <TASK>
[  201.401037][ T6484]  dump_stack_lvl+0x241/0x360
[  201.405751][ T6484]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.410981][ T6484]  ? __pfx__printk+0x10/0x10
[  201.415053][   T29] audit: type=1326 audit(1728602672.654:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.415600][ T6484]  ? fs_reclaim_acquire+0x93/0x130
[  201.437357][   T29] audit: type=1326 audit(1728602672.654:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.441953][ T6484]  ? __pfx___might_resched+0x10/0x10
[  201.441994][ T6484]  should_fail_ex+0x3b0/0x4e0
[  201.442030][ T6484]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  201.442060][ T6484]  should_failslab+0xac/0x100
[  201.442082][ T6484]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  201.442110][ T6484]  __kmalloc_noprof+0xd8/0x400
[  201.442138][ T6484]  tomoyo_realpath_from_path+0xcf/0x5e0
[  201.442181][ T6484]  tomoyo_path_number_perm+0x23a/0x880
[  201.442214][ T6484]  ? tomoyo_path_number_perm+0x208/0x880
[  201.442248][ T6484]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  201.442314][ T6484]  ? __fget_files+0x29/0x470
[  201.463690][   T29] audit: type=1326 audit(1728602672.654:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.468881][ T6484]  ? __fget_files+0x3f3/0x470
[  201.473607][   T29] audit: type=1326 audit(1728602672.654:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.479264][ T6484]  security_file_ioctl+0xc6/0x2a0
[  201.483981][   T29] audit: type=1326 audit(1728602672.654:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.489699][ T6484]  __se_sys_ioctl+0x47/0x170
[  201.489735][ T6484]  do_syscall_64+0xf3/0x230
[  201.489760][ T6484]  ? clear_bhb_loop+0x35/0x90
[  201.489799][ T6484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.489833][ T6484] RIP: 0033:0x7f2fb257dff9
[  201.489854][ T6484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.489872][ T6484] RSP: 002b:00007f2fb32b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  201.494762][   T29] audit: type=1326 audit(1728602672.654:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6479 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75b57dff9 code=0x7ffc0000
[  201.500255][ T6484] RAX: ffffffffffffffda RBX: 00007f2fb2735f80 RCX: 00007f2fb257dff9
[  201.500276][ T6484] RDX: 0000000020000040 RSI: 00000000c0745645 RDI: 0000000000000003
[  201.500292][ T6484] RBP: 00007f2fb32b2090 R08: 0000000000000000 R09: 0000000000000000
[  201.522438][   T46] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  201.543297][ T6484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.543322][ T6484] R13: 0000000000000000 R14: 00007f2fb2735f80 R15: 00007ffeaebbd7b8
[  201.543355][ T6484]  </TASK>
[  201.556357][ T6486] FAULT_INJECTION: forcing a failure.
[  201.556357][ T6486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.610418][   T46] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.610453][   T46] usb 5-1: Product: syz
[  201.618596][ T6486] CPU: 0 UID: 0 PID: 6486 Comm: syz.0.274 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  201.620812][   T46] usb 5-1: Manufacturer: syz
[  201.640348][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  201.640369][ T6486] Call Trace:
[  201.640380][ T6486]  <TASK>
[  201.640390][ T6486]  dump_stack_lvl+0x241/0x360
[  201.640422][ T6486]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.640445][ T6486]  ? __pfx__printk+0x10/0x10
[  201.640482][ T6486]  ? __pfx_lock_release+0x10/0x10
[  201.640523][ T6486]  should_fail_ex+0x3b0/0x4e0
[  201.640563][ T6486]  _copy_from_user+0x2f/0xe0
[  201.640596][ T6486]  copy_msghdr_from_user+0xae/0x680
[  201.640636][ T6486]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  201.640685][ T6486]  __sys_sendmsg+0x22d/0x380
[  201.640714][ T6486]  ? __pfx___sys_sendmsg+0x10/0x10
[  201.649146][   T46] usb 5-1: SerialNumber: syz
[  201.670489][ T6486]  ? __pfx_vfs_write+0x10/0x10
[  201.670555][ T6486]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  201.670589][ T6486]  ? do_syscall_64+0x100/0x230
[  201.670616][ T6486]  ? do_syscall_64+0xb6/0x230
[  201.670641][ T6486]  do_syscall_64+0xf3/0x230
[  201.670663][ T6486]  ? clear_bhb_loop+0x35/0x90
[  201.670685][ T6486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.670718][ T6486] RIP: 0033:0x7f2ac4f7dff9
[  201.670740][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.670759][ T6486] RSP: 002b:00007f2ac5c93038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.670786][ T6486] RAX: ffffffffffffffda RBX: 00007f2ac5135f80 RCX: 00007f2ac4f7dff9
[  201.670804][ T6486] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  201.670820][ T6486] RBP: 00007f2ac5c93090 R08: 0000000000000000 R09: 0000000000000000
[  201.670835][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.670850][ T6486] R13: 0000000000000000 R14: 00007f2ac5135f80 R15: 00007fff59f697d8
[  201.670882][ T6486]  </TASK>
[  201.777911][ T6484] ERROR: Out of memory at tomoyo_realpath_from_path.
[  201.870537][   T46] usb 5-1: config 0 descriptor??
[  202.223934][   T46] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 006
[  203.329260][ T6501] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  204.240364][   T46]  (null): failure setting delay to 10us
[  204.246119][   T46] i2c-tiny-usb 5-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  204.399664][ T5276] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  204.467067][    T8] usb 5-1: USB disconnect, device number 6
[  204.761147][ T5276] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  204.796102][ T5276] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  205.548549][ T6513] netlink: 'syz.3.280': attribute type 1 has an invalid length.
[  205.556305][ T6513] netlink: 76 bytes leftover after parsing attributes in process `syz.3.280'.
[  205.751465][ T5276] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  205.760676][ T5276] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.788231][ T5276] usb 3-1: config 0 descriptor??
[  205.975704][ T5276] usb 3-1: can't set config #0, error -71
[  205.985032][ T5276] usb 3-1: USB disconnect, device number 10
[  206.390175][ T6524] overlayfs: failed to resolve './file1': -2
[  206.886799][ T6527] FAULT_INJECTION: forcing a failure.
[  206.886799][ T6527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.005080][ T6527] CPU: 0 UID: 0 PID: 6527 Comm: syz.1.286 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  207.015747][ T6527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  207.025852][ T6527] Call Trace:
[  207.029171][ T6527]  <TASK>
[  207.032137][ T6527]  dump_stack_lvl+0x241/0x360
[  207.036911][ T6527]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.042150][ T6527]  ? __pfx__printk+0x10/0x10
[  207.046789][ T6527]  ? __pfx_lock_release+0x10/0x10
[  207.051873][ T6527]  should_fail_ex+0x3b0/0x4e0
[  207.056598][ T6527]  _copy_from_user+0x2f/0xe0
[  207.061233][ T6527]  copy_msghdr_from_user+0xae/0x680
[  207.066489][ T6527]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  207.072377][ T6527]  __sys_sendmsg+0x22d/0x380
[  207.077012][ T6527]  ? __pfx___sys_sendmsg+0x10/0x10
[  207.082172][ T6527]  ? __pfx_vfs_write+0x10/0x10
[  207.087032][ T6527]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  207.093436][ T6527]  ? do_syscall_64+0x100/0x230
[  207.098259][ T6527]  ? do_syscall_64+0xb6/0x230
[  207.102970][ T6527]  do_syscall_64+0xf3/0x230
[  207.107505][ T6527]  ? clear_bhb_loop+0x35/0x90
[  207.112193][ T6527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.118105][ T6527] RIP: 0033:0x7f2968b7dff9
[  207.122531][ T6527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.142146][ T6527] RSP: 002b:00007f296993d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.150589][ T6527] RAX: ffffffffffffffda RBX: 00007f2968d35f80 RCX: 00007f2968b7dff9
[  207.158571][ T6527] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  207.166566][ T6527] RBP: 00007f296993d090 R08: 0000000000000000 R09: 0000000000000000
[  207.174552][ T6527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.182571][ T6527] R13: 0000000000000000 R14: 00007f2968d35f80 R15: 00007ffd32e62b38
[  207.190567][ T6527]  </TASK>
[  207.541451][ T6535] xt_limit: Overflow, try lower: 6/2147483648
[  208.469366][  T938] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  208.633347][  T938] usb 1-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  208.648330][  T938] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.770291][ T6538] FAULT_INJECTION: forcing a failure.
[  208.770291][ T6538] name failslab, interval 1, probability 0, space 0, times 0
[  208.833856][  T938] usb 1-1: config 0 descriptor??
[  208.904923][ T6538] CPU: 0 UID: 0 PID: 6538 Comm: syz.1.289 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  208.915576][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  208.925636][ T6538] Call Trace:
[  208.929004][ T6538]  <TASK>
[  208.931935][ T6538]  dump_stack_lvl+0x241/0x360
[  208.936625][ T6538]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.941999][ T6538]  ? __pfx__printk+0x10/0x10
[  208.946693][ T6538]  ? fs_reclaim_acquire+0x93/0x130
[  208.951808][ T6538]  ? __pfx___might_resched+0x10/0x10
[  208.957103][ T6538]  should_fail_ex+0x3b0/0x4e0
[  208.961792][ T6538]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  208.967519][ T6538]  should_failslab+0xac/0x100
[  208.972197][ T6538]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  208.977919][ T6538]  __kmalloc_noprof+0xd8/0x400
[  208.982697][ T6538]  tomoyo_realpath_from_path+0xcf/0x5e0
[  208.988305][ T6538]  tomoyo_path_number_perm+0x23a/0x880
[  208.993769][ T6538]  ? tomoyo_path_number_perm+0x208/0x880
[  208.999414][ T6538]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  209.005557][ T6538]  ? __fget_files+0x29/0x470
[  209.010210][ T6538]  ? __fget_files+0x3f3/0x470
[  209.014952][ T6538]  security_file_ioctl+0xc6/0x2a0
[  209.020019][ T6538]  __se_sys_ioctl+0x47/0x170
[  209.024624][ T6538]  do_syscall_64+0xf3/0x230
[  209.029137][ T6538]  ? clear_bhb_loop+0x35/0x90
[  209.033857][ T6538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.039771][ T6538] RIP: 0033:0x7f2968b7dff9
[  209.044191][ T6538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.063829][ T6538] RSP: 002b:00007f296993d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  209.072267][ T6538] RAX: ffffffffffffffda RBX: 00007f2968d35f80 RCX: 00007f2968b7dff9
[  209.080247][ T6538] RDX: 0000000020000140 RSI: 00000000000089f3 RDI: 0000000000000003
[  209.088224][ T6538] RBP: 00007f296993d090 R08: 0000000000000000 R09: 0000000000000000
[  209.096216][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.104191][ T6538] R13: 0000000000000000 R14: 00007f2968d35f80 R15: 00007ffd32e62b38
[  209.112185][ T6538]  </TASK>
[  209.747297][  T938] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  209.756725][  T938] dvb_usb_af9015 1-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  209.808070][ T6538] ERROR: Out of memory at tomoyo_realpath_from_path.
[  209.936765][  T938] usb 1-1: USB disconnect, device number 5
[  210.427624][ T6552] netlink: 28 bytes leftover after parsing attributes in process `syz.0.294'.
[  210.443558][ T6552] netlink: 28 bytes leftover after parsing attributes in process `syz.0.294'.
[  210.452638][ T6552] netlink: 36 bytes leftover after parsing attributes in process `syz.0.294'.
[  210.535193][ T6553] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  212.369384][ T5280] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  212.589681][ T6570] overlayfs: failed to resolve './file1': -2
[  213.281221][ T5280] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  213.291530][ T5280] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  213.305106][ T5280] usb 1-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  213.320901][ T5280] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.332223][ T5280] usb 1-1: config 0 descriptor??
[  213.342141][ T5280] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  215.290968][ T4632] usb 1-1: USB disconnect, device number 6
[  215.452612][ T5227] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  215.489934][ T5227] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  215.505900][ T5227] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  215.637293][ T5227] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  215.705184][ T5227] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  215.717683][ T6601] FAULT_INJECTION: forcing a failure.
[  215.717683][ T6601] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.734762][ T6601] CPU: 0 UID: 0 PID: 6601 Comm: syz.2.307 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  215.745426][ T6601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  215.755516][ T6601] Call Trace:
[  215.758823][ T6601]  <TASK>
[  215.761760][ T6601]  dump_stack_lvl+0x241/0x360
[  215.766456][ T6601]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.771688][ T6601]  ? __pfx__printk+0x10/0x10
[  215.776309][ T6601]  ? __pfx_lock_release+0x10/0x10
[  215.781376][ T6601]  should_fail_ex+0x3b0/0x4e0
[  215.786088][ T6601]  _copy_from_user+0x2f/0xe0
[  215.790694][ T6601]  sk_setsockopt+0x2d4/0x33b0
[  215.795381][ T6601]  ? __pfx_sk_setsockopt+0x10/0x10
[  215.800507][ T6601]  ? __pfx_lock_acquire+0x10/0x10
[  215.805539][ T6601]  ? __fget_files+0x29/0x470
[  215.810134][ T6601]  ? __pfx_lock_release+0x10/0x10
[  215.815164][ T6601]  ? __mutex_unlock_slowpath+0x21d/0x750
[  215.820811][ T6601]  do_sock_setsockopt+0x2fb/0x720
[  215.825858][ T6601]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  215.831535][ T6601]  ? __fget_files+0x29/0x470
[  215.836150][ T6601]  ? __fget_files+0x3f3/0x470
[  215.840846][ T6601]  ? __fget_files+0x29/0x470
[  215.845472][ T6601]  __sys_setsockopt+0x1a2/0x250
[  215.850336][ T6601]  __x64_sys_setsockopt+0xb5/0xd0
[  215.855368][ T6601]  do_syscall_64+0xf3/0x230
[  215.859877][ T6601]  ? clear_bhb_loop+0x35/0x90
[  215.864566][ T6601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.870474][ T6601] RIP: 0033:0x7f2fb257dff9
[  215.874898][ T6601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.894507][ T6601] RSP: 002b:00007f2fb3291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  215.902934][ T6601] RAX: ffffffffffffffda RBX: 00007f2fb2736058 RCX: 00007f2fb257dff9
[  215.910905][ T6601] RDX: 0000000000000032 RSI: 0000000000000001 RDI: 0000000000000003
[  215.918891][ T6601] RBP: 00007f2fb3291090 R08: 0000000000000010 R09: 0000000000000000
[  215.926859][ T6601] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  215.934835][ T6601] R13: 0000000000000001 R14: 00007f2fb2736058 R15: 00007ffeaebbd7b8
[  215.942839][ T6601]  </TASK>
[  215.948297][ T5227] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  216.522788][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  216.522802][   T29] audit: type=1326 audit(1728602687.934:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  216.584385][   T29] audit: type=1326 audit(1728602687.964:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  216.691181][   T29] audit: type=1326 audit(1728602687.964:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  216.806211][   T29] audit: type=1326 audit(1728602687.964:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.045055][ T6587] chnl_net:caif_netlink_parms(): no params data found
[  217.069386][   T29] audit: type=1326 audit(1728602687.964:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.102810][ T6617] overlayfs: failed to resolve './file1': -2
[  217.279574][   T29] audit: type=1326 audit(1728602687.964:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.301685][   T29] audit: type=1326 audit(1728602687.964:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.324687][   T29] audit: type=1326 audit(1728602687.964:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.346190][   T29] audit: type=1326 audit(1728602687.964:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.367750][   T29] audit: type=1326 audit(1728602687.964:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6603 comm="syz.0.308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ac4f7dff9 code=0x7ffc0000
[  217.394618][ T5280] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  217.745236][ T6587] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.752762][ T6587] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.760958][ T6587] bridge_slave_0: entered allmulticast mode
[  217.767198][ T5280] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  217.778340][ T5280] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.788396][ T5280] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  217.799515][ T6587] bridge_slave_0: entered promiscuous mode
[  217.801971][ T5280] usb 5-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00
[  217.810845][ T6587] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.824178][ T6587] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.831568][ T6587] bridge_slave_1: entered allmulticast mode
[  217.839459][ T6587] bridge_slave_1: entered promiscuous mode
[  217.893549][ T5280] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.064372][ T5280] usb 5-1: config 0 descriptor??
[  218.084878][   T54] Bluetooth: hci4: command tx timeout
[  218.923269][ T6587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  218.964979][ T6587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  219.096982][ T6587] team0: Port device team_slave_0 added
[  219.106755][ T6618] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.130863][ T6587] team0: Port device team_slave_1 added
[  219.176137][ T6587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  219.199629][ T6587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.233591][ T6618] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.307869][ T6587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  219.361249][ T6587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  219.378791][ T6587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.438941][ T6587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  219.535201][ T6587] hsr_slave_0: entered promiscuous mode
[  219.563415][ T6587] hsr_slave_1: entered promiscuous mode
[  219.586479][ T6587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  219.596794][ T6587] Cannot create hsr debugfs directory
[  219.714807][ T5280] usbhid 5-1:0.0: can't add hid device: -71
[  219.722068][ T5280] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  219.758967][ T5280] usb 5-1: USB disconnect, device number 7
[  219.892907][ T6587] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.039793][ T5273] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  220.071391][ T6587] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.199110][   T54] Bluetooth: hci4: command tx timeout
[  220.611351][ T5273] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  220.627148][ T5273] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  220.697049][ T5273] usb 1-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  220.708478][ T5273] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.712520][ T6587] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.777238][ T5273] usb 1-1: config 0 descriptor??
[  220.808077][ T5273] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  221.001252][ T6587] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.249349][   T54] Bluetooth: hci4: command tx timeout
[  222.323551][ T4632] usb 1-1: USB disconnect, device number 7
[  222.560729][ T6661] overlayfs: failed to resolve './file1': -2
[  223.000630][ T6587] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  223.010725][ T6587] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  223.027436][ T6587] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  223.044152][ T6587] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  224.404946][ T6587] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.414284][   T54] Bluetooth: hci4: command tx timeout
[  224.427669][ T6587] 8021q: adding VLAN 0 to HW filter on device team0
[  224.466226][ T6587] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  224.477144][ T6587] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  225.515557][  T939] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.522765][  T939] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.607299][  T939] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.614640][  T939] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.055114][ T6587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  226.227729][ T6587] veth0_vlan: entered promiscuous mode
[  226.293682][ T6587] veth1_vlan: entered promiscuous mode
[  226.364150][ T5227] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  226.372821][ T5227] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  226.380909][ T5227] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  226.388615][ T5227] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  226.396423][ T5227] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  226.404004][ T5227] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  226.471831][ T6587] veth0_macvtap: entered promiscuous mode
[  226.517200][ T6587] veth1_macvtap: entered promiscuous mode
[  226.632041][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.657830][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.690040][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.738878][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.765658][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.796341][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.844104][ T6587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  226.879053][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.919287][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.949339][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.984210][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.015433][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  227.059303][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.083823][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  227.120928][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.147757][ T6587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  227.184793][ T6587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.215589][ T6587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  227.263036][ T6587] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.303696][ T6587] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.327444][ T6587] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.361991][ T6587] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.559350][   T54] Bluetooth: hci6: command tx timeout
[  229.060998][  T939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.095093][  T939] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.114860][ T6683] chnl_net:caif_netlink_parms(): no params data found
[  229.183181][ T5598] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.198254][ T5598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.336472][ T6695] mmap: syz.2.330 (6695) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  229.408687][ T6683] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.436198][ T6683] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.452696][ T6683] bridge_slave_0: entered allmulticast mode
[  229.465629][ T6683] bridge_slave_0: entered promiscuous mode
[  229.497199][ T6683] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.508432][ T6683] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.540746][ T6683] bridge_slave_1: entered allmulticast mode
[  229.581711][ T6683] bridge_slave_1: entered promiscuous mode
[  229.780915][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  229.780938][   T29] audit: type=1326 audit(1728602701.114:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.064923][   T29] audit: type=1326 audit(1728602701.224:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.107734][   T29] audit: type=1326 audit(1728602701.224:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.129098][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.146628][ T6683] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.200120][ T6683] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.279635][   T29] audit: type=1326 audit(1728602701.224:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.323937][   T29] audit: type=1326 audit(1728602701.224:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.345253][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.361110][   T29] audit: type=1326 audit(1728602701.224:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.382591][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.404008][   T29] audit: type=1326 audit(1728602701.224:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6703 comm="syz.2.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fb257dff9 code=0x7ffc0000
[  230.459089][ T6683] team0: Port device team_slave_0 added
[  230.487766][ T6683] team0: Port device team_slave_1 added
[  230.649364][   T54] Bluetooth: hci6: command tx timeout
[  230.988240][ T6683] batman_adv: batadv0: Adding interface: batadv_slave_0
[  231.009773][ T6683] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.036313][ T6683] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  231.050748][ T6683] batman_adv: batadv0: Adding interface: batadv_slave_1
[  231.057762][ T6683] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.083816][ T6683] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  231.169543][ T5280] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  231.256028][ T6683] hsr_slave_0: entered promiscuous mode
[  231.262991][ T6683] hsr_slave_1: entered promiscuous mode
[  231.298573][ T6683] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  231.321596][ T6683] Cannot create hsr debugfs directory
[  231.346423][ T5280] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  231.387221][ T5280] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  231.546698][ T6725] NILFS (nullb0): couldn't find nilfs on the device
[  231.941520][ T5280] usb 5-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  231.967230][ T5280] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.194683][ T5280] usb 5-1: config 0 descriptor??
[  232.204581][ T5280] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  232.320985][ T6729] sd 0:0:1:0: device reset
[  233.064089][   T54] Bluetooth: hci6: command tx timeout
[  233.795247][ T6683] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.839483][    T8] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  233.886461][ T6683] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.632060][ T5276] usb 5-1: USB disconnect, device number 8
[  234.685877][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  234.752153][    T8] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  234.876891][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  234.897051][ T6683] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.907608][    T8] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  234.910662][    T8] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  234.942920][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.964406][    T8] usb 3-1: Product: syz
[  234.994376][    T8] usb 3-1: Manufacturer: syz
[  235.039942][    T8] usb 3-1: SerialNumber: syz
[  235.096905][    T8] usb 3-1: config 0 descriptor??
[  235.120123][   T54] Bluetooth: hci6: command tx timeout
[  235.134787][    T8] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  235.178050][ T6683] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.464410][    T8] scsi host1: usb-storage 3-1:0.0
[  236.729393][ T5280] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  236.874543][ T6683] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  237.009794][ T5280] usb 1-1: Using ep0 maxpacket: 8
[  237.023284][ T6683] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  237.217324][ T6683] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  237.297232][ T6683] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  237.421547][ T5280] usb 1-1: unable to get BOS descriptor or descriptor too short
[  237.474755][ T5280] usb 1-1: unable to read config index 0 descriptor/start: -71
[  237.514481][ T5280] usb 1-1: can't read configurations, error -71
[  237.694036][ T6683] 8021q: adding VLAN 0 to HW filter on device bond0
[  237.726650][ T5277] usb 3-1: USB disconnect, device number 11
[  237.772202][ T6683] 8021q: adding VLAN 0 to HW filter on device team0
[  237.806234][ T5276] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  237.959562][ T5276] usb 5-1: device descriptor read/64, error -71
[  237.970720][ T5598] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.977868][ T5598] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.028131][ T5598] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.035341][ T5598] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.173188][ T6683] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  238.263339][ T6766] netlink: 28 bytes leftover after parsing attributes in process `syz.2.347'.
[  238.476938][ T6770] netlink: 4 bytes leftover after parsing attributes in process `syz.2.347'.
[  239.671419][ T5276] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  239.839525][ T5276] usb 5-1: device descriptor read/64, error -71
[  239.921667][ T6683] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.962002][ T5276] usb usb5-port1: attempt power cycle
[  240.093800][ T5598] bridge_slave_1: left allmulticast mode
[  240.120055][ T5598] bridge_slave_1: left promiscuous mode
[  240.136105][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.213695][ T5598] bridge_slave_0: left allmulticast mode
[  240.221898][ T5598] bridge_slave_0: left promiscuous mode
[  240.234004][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.329408][ T5276] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  240.361436][ T5276] usb 5-1: device descriptor read/8, error -71
[  240.990045][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  241.010542][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  241.036641][ T5598] bond0 (unregistering): Released all slaves
[  241.295997][ T6812] devpts: called with bogus options
[  241.549652][ T6813] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  241.558648][ T6813] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  241.620709][ T6813] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  241.935204][ T6683] veth0_vlan: entered promiscuous mode
[  242.868308][ T5598] hsr_slave_0: left promiscuous mode
[  242.974509][ T5598] hsr_slave_1: left promiscuous mode
[  243.004284][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  243.015749][ T6826] FAULT_INJECTION: forcing a failure.
[  243.015749][ T6826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.030199][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  243.037652][ T6826] CPU: 1 UID: 0 PID: 6826 Comm: syz.3.359 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  243.038567][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  243.048283][ T6826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  243.048301][ T6826] Call Trace:
[  243.048310][ T6826]  <TASK>
[  243.048319][ T6826]  dump_stack_lvl+0x241/0x360
[  243.048353][ T6826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.048377][ T6826]  ? __pfx__printk+0x10/0x10
[  243.048415][ T6826]  ? snprintf+0xda/0x120
[  243.048443][ T6826]  should_fail_ex+0x3b0/0x4e0
[  243.048482][ T6826]  _copy_to_user+0x2f/0xb0
[  243.048514][ T6826]  simple_read_from_buffer+0xca/0x150
[  243.079823][ T6828] netlink: 20 bytes leftover after parsing attributes in process `syz.2.360'.
[  243.081932][ T6826]  proc_fail_nth_read+0x1e9/0x250
[  243.119344][ T6826]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  243.124950][ T6826]  ? rw_verify_area+0x55e/0x6f0
[  243.129862][ T6826]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  243.135461][ T6826]  vfs_read+0x201/0xbc0
[  243.139668][ T6826]  ? __pfx_tipc_setsockopt+0x10/0x10
[  243.144998][ T6826]  ? __pfx_tipc_setsockopt+0x10/0x10
[  243.150323][ T6826]  ? __pfx_vfs_read+0x10/0x10
[  243.155024][ T6826]  ? __pfx_tipc_setsockopt+0x10/0x10
[  243.160323][ T6826]  ? do_sock_setsockopt+0x3e2/0x720
[  243.165539][ T6826]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  243.171117][ T6826]  ? fdget_pos+0x265/0x320
[  243.175559][ T6826]  ksys_read+0x183/0x2b0
[  243.179841][ T6826]  ? __pfx_ksys_read+0x10/0x10
[  243.184620][ T6826]  ? do_syscall_64+0x100/0x230
[  243.189400][ T6826]  ? do_syscall_64+0xb6/0x230
[  243.194092][ T6826]  do_syscall_64+0xf3/0x230
[  243.198638][ T6826]  ? clear_bhb_loop+0x35/0x90
[  243.203334][ T6826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.209266][ T6826] RIP: 0033:0x7f318c17ca3c
[  243.213711][ T6826] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  243.233332][ T6826] RSP: 002b:00007f318d009030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  243.241782][ T6826] RAX: ffffffffffffffda RBX: 00007f318c335f80 RCX: 00007f318c17ca3c
[  243.249767][ T6826] RDX: 000000000000000f RSI: 00007f318d0090a0 RDI: 0000000000000004
[  243.257749][ T6826] RBP: 00007f318d009090 R08: 0000000000000000 R09: 0000000000000000
[  243.265733][ T6826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.273715][ T6826] R13: 0000000000000000 R14: 00007f318c335f80 R15: 00007fffc493bc48
[  243.281710][ T6826]  </TASK>
[  243.284959][    C1] vkms_vblank_simulate: vblank timer overrun
[  243.307030][ T5598] veth1_macvtap: left promiscuous mode
[  243.328538][ T5598] veth0_macvtap: left promiscuous mode
[  243.368804][ T5598] veth1_vlan: left promiscuous mode
[  243.391815][ T5598] veth0_vlan: left promiscuous mode
[  243.863163][ T6846] FAULT_INJECTION: forcing a failure.
[  243.863163][ T6846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.885669][ T6846] CPU: 1 UID: 0 PID: 6846 Comm: syz.0.366 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  243.896348][ T6846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  243.906453][ T6846] Call Trace:
[  243.909784][ T6846]  <TASK>
[  243.912749][ T6846]  dump_stack_lvl+0x241/0x360
[  243.917477][ T6846]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.922723][ T6846]  ? __pfx__printk+0x10/0x10
[  243.927371][ T6846]  ? __pfx_lock_release+0x10/0x10
[  243.932456][ T6846]  should_fail_ex+0x3b0/0x4e0
[  243.937189][ T6846]  _copy_from_user+0x2f/0xe0
[  243.941834][ T6846]  copy_msghdr_from_user+0xae/0x680
[  243.947095][ T6846]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  243.952972][ T6846]  __sys_sendmsg+0x22d/0x380
[  243.957611][ T6846]  ? __pfx___sys_sendmsg+0x10/0x10
[  243.962792][ T6846]  ? __pfx_vfs_write+0x10/0x10
[  243.967630][ T6846]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  243.974015][ T6846]  ? do_syscall_64+0x100/0x230
[  243.978837][ T6846]  ? do_syscall_64+0xb6/0x230
[  243.983560][ T6846]  do_syscall_64+0xf3/0x230
[  243.988113][ T6846]  ? clear_bhb_loop+0x35/0x90
[  243.992832][ T6846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.998779][ T6846] RIP: 0033:0x7f2ac4f7dff9
[  244.003245][ T6846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.022911][ T6846] RSP: 002b:00007f2ac5c93038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  244.031484][ T6846] RAX: ffffffffffffffda RBX: 00007f2ac5135f80 RCX: 00007f2ac4f7dff9
[  244.039520][ T6846] RDX: 0000000000004000 RSI: 0000000020000000 RDI: 0000000000000003
[  244.047539][ T6846] RBP: 00007f2ac5c93090 R08: 0000000000000000 R09: 0000000000000000
[  244.055563][ T6846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.063585][ T6846] R13: 0000000000000000 R14: 00007f2ac5135f80 R15: 00007fff59f697d8
[  244.071626][ T6846]  </TASK>
[  244.074791][    C1] vkms_vblank_simulate: vblank timer overrun
[  245.624363][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  245.713068][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  246.499656][ T6837] netlink: 4 bytes leftover after parsing attributes in process `syz.3.362'.
[  246.539123][ T6683] veth1_vlan: entered promiscuous mode
[  246.697129][ T6683] veth0_macvtap: entered promiscuous mode
[  246.746896][ T6683] veth1_macvtap: entered promiscuous mode
[  246.827531][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.854229][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.867680][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.888067][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.899294][ T6871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  246.933849][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.952914][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.963788][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.979302][ T5276] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  247.003247][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.056488][ T6683] batman_adv: batadv0: Interface activated: batadv_slave_0
[  247.059610][ T6871] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  247.075260][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.086954][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.099008][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.113804][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.125257][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.136316][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.147117][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.149371][ T5280] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  247.158458][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.175794][ T6683] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.188306][ T5276] usb 1-1: unable to get BOS descriptor or descriptor too short
[  247.197742][ T5276] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  247.224527][ T6683] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.239458][ T5276] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 9
[  247.257607][ T6683] batman_adv: batadv0: Interface activated: batadv_slave_1
[  247.265963][ T5276] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  247.282950][ T5276] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 0
[  247.296281][ T5276] usb 1-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=94.39
[  247.309142][ T6683] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  247.318613][ T5276] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.335340][ T6683] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  247.356632][ T5276] usb 1-1: Product: syz
[  247.362590][ T6683] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  247.371901][ T5276] usb 1-1: Manufacturer: syz
[  247.376544][ T5276] usb 1-1: SerialNumber: syz
[  247.387620][ T6683] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  247.399040][ T5276] usb 1-1: config 0 descriptor??
[  247.411107][ T6865] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  247.418015][ T5280] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  247.428018][ T5280] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.465870][ T5280] usb 3-1: Product: syz
[  247.479315][ T5280] usb 3-1: Manufacturer: syz
[  247.484028][ T5280] usb 3-1: SerialNumber: syz
[  247.486623][    C1] usb 1-1: NFC: Urb failure (status -71)
[  247.502851][ T5276] usb 1-1: NFC: Unable to get FW version
[  247.531140][ T5276] pn533_usb 1-1:0.0: probe with driver pn533_usb failed with error -90
[  247.581729][ T5280] usb 3-1: can't set config #1, error -71
[  247.626036][ T6877] binder: 6876:6877 ioctl c018937c 20000240 returned -22
[  247.648092][ T5280] usb 3-1: USB disconnect, device number 12
[  247.689388][ T5305] usb 1-1: USB disconnect, device number 10
[  247.749907][ T5598] bridge_slave_1: left allmulticast mode
[  247.754028][ T6880] FAULT_INJECTION: forcing a failure.
[  247.754028][ T6880] name failslab, interval 1, probability 0, space 0, times 0
[  247.769911][ T5598] bridge_slave_1: left promiscuous mode
[  247.775711][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.795834][ T6880] CPU: 0 UID: 0 PID: 6880 Comm: syz.2.377 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  247.806510][ T6880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  247.816600][ T6880] Call Trace:
[  247.819914][ T6880]  <TASK>
[  247.822882][ T6880]  dump_stack_lvl+0x241/0x360
[  247.827618][ T6880]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.832885][ T6880]  ? __pfx__printk+0x10/0x10
[  247.837532][ T6880]  ? fs_reclaim_acquire+0x93/0x130
[  247.842699][ T6880]  ? __pfx___might_resched+0x10/0x10
[  247.848037][ T6880]  should_fail_ex+0x3b0/0x4e0
[  247.852771][ T6880]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  247.858544][ T6880]  should_failslab+0xac/0x100
[  247.863273][ T6880]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  247.869046][ T6880]  __kmalloc_noprof+0xd8/0x400
[  247.873861][ T6880]  tomoyo_realpath_from_path+0xcf/0x5e0
[  247.879477][ T6880]  tomoyo_path_number_perm+0x23a/0x880
[  247.884988][ T6880]  ? tomoyo_path_number_perm+0x208/0x880
[  247.890670][ T6880]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  247.896739][ T6880]  ? __fget_files+0x29/0x470
[  247.901391][ T6880]  ? __fget_files+0x3f3/0x470
[  247.906143][ T6880]  security_file_ioctl+0xc6/0x2a0
[  247.911207][ T6880]  __se_sys_ioctl+0x47/0x170
[  247.915817][ T6880]  do_syscall_64+0xf3/0x230
[  247.920335][ T6880]  ? clear_bhb_loop+0x35/0x90
[  247.925028][ T6880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.930948][ T6880] RIP: 0033:0x7f2fb257dff9
[  247.935372][ T6880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.954997][ T6880] RSP: 002b:00007f2fb32b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  247.963447][ T6880] RAX: ffffffffffffffda RBX: 00007f2fb2735f80 RCX: 00007f2fb257dff9
[  247.971426][ T6880] RDX: 0000000020000040 RSI: 00000000c0145608 RDI: 0000000000000003
[  247.979405][ T6880] RBP: 00007f2fb32b2090 R08: 0000000000000000 R09: 0000000000000000
[  247.987384][ T6880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.995361][ T6880] R13: 0000000000000000 R14: 00007f2fb2735f80 R15: 00007ffeaebbd7b8
[  248.003363][ T6880]  </TASK>
[  248.006545][    C0] vkms_vblank_simulate: vblank timer overrun
[  248.016152][ T5598] bridge_slave_0: left allmulticast mode
[  248.022627][ T6880] ERROR: Out of memory at tomoyo_realpath_from_path.
[  248.043104][ T5598] bridge_slave_0: left promiscuous mode
[  248.057899][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.297515][ T6892] FAULT_INJECTION: forcing a failure.
[  249.297515][ T6892] name fail_futex, interval 1, probability 0, space 0, times 0
[  249.311205][ T6892] CPU: 0 UID: 0 PID: 6892 Comm: syz.2.381 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  249.321850][ T6892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  249.332014][ T6892] Call Trace:
[  249.335304][ T6892]  <TASK>
[  249.338245][ T6892]  dump_stack_lvl+0x241/0x360
[  249.342940][ T6892]  ? __pfx_dump_stack_lvl+0x10/0x10
[  249.348150][ T6892]  ? __pfx__printk+0x10/0x10
[  249.352761][ T6892]  ? register_lock_class+0x102/0x980
[  249.358073][ T6892]  ? __pfx_register_lock_class+0x10/0x10
[  249.363745][ T6892]  should_fail_ex+0x3b0/0x4e0
[  249.368446][ T6892]  get_futex_key+0x17c/0x1050
[  249.373145][ T6892]  ? __pfx_get_futex_key+0x10/0x10
[  249.378266][ T6892]  ? __lock_acquire+0x1384/0x2050
[  249.383313][ T6892]  futex_wake+0x12a/0x5c0
[  249.387669][ T6892]  ? __pfx_futex_wake+0x10/0x10
[  249.392546][ T6892]  do_futex+0x392/0x560
[  249.396717][ T6892]  ? __pfx_do_futex+0x10/0x10
[  249.401407][ T6892]  ? __might_fault+0xaa/0x120
[  249.406098][ T6892]  mm_release+0x193/0x430
[  249.410443][ T6892]  ? exit_robust_list+0x2cf/0x2f0
[  249.415489][ T6892]  ? __pfx_mm_release+0x10/0x10
[  249.420354][ T6892]  ? _raw_spin_unlock_irq+0x23/0x50
[  249.425566][ T6892]  ? lockdep_hardirqs_on+0x99/0x150
[  249.430784][ T6892]  exit_mm+0xb0/0x310
[  249.434782][ T6892]  ? __pfx_exit_mm+0x10/0x10
[  249.439381][ T6892]  ? taskstats_exit+0x326/0xa60
[  249.444252][ T6892]  do_exit+0x9b2/0x28e0
[  249.448431][ T6892]  ? __pfx_do_exit+0x10/0x10
[  249.453035][ T6892]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  249.458429][ T6892]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  249.464457][ T6892]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  249.470812][ T6892]  ? _raw_spin_lock_irq+0xdf/0x120
[  249.475946][ T6892]  do_group_exit+0x207/0x2c0
[  249.480552][ T6892]  ? _raw_spin_unlock_irq+0x23/0x50
[  249.485788][ T6892]  ? lockdep_hardirqs_on+0x99/0x150
[  249.491008][ T6892]  get_signal+0x16a3/0x1740
[  249.495649][ T6892]  ? __pfx_get_signal+0x10/0x10
[  249.500522][ T6892]  arch_do_signal_or_restart+0x96/0x860
[  249.506088][ T6892]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  249.512250][ T6892]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  249.518250][ T6892]  ? syscall_exit_to_user_mode+0xa3/0x370
[  249.523980][ T6892]  syscall_exit_to_user_mode+0xc9/0x370
[  249.529548][ T6892]  do_syscall_64+0x100/0x230
[  249.534144][ T6892]  ? clear_bhb_loop+0x35/0x90
[  249.538837][ T6892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.544781][ T6892] RIP: 0033:0x7f2fb257dff9
[  249.549213][ T6892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.568837][ T6892] RSP: 002b:00007f2fb32b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  249.577264][ T6892] RAX: fffffffffffffe00 RBX: 00007f2fb2735f80 RCX: 00007f2fb257dff9
[  249.585246][ T6892] RDX: 0000000000000002 RSI: 0000000020000600 RDI: 0000000000000003
[  249.593221][ T6892] RBP: 00007f2fb32b2090 R08: 0000000000000000 R09: 0000000000000000
[  249.601197][ T6892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.609170][ T6892] R13: 0000000000000000 R14: 00007f2fb2735f80 R15: 00007ffeaebbd7b8
[  249.617164][ T6892]  </TASK>
[  249.620210][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.824562][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  249.855010][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  249.880105][ T5598] bond0 (unregistering): Released all slaves
[  250.025181][ T5616] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.052161][ T5616] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.161708][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.170499][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.428952][ T6911] syz.3.386: attempt to access beyond end of device
[  250.428952][ T6911] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  250.442037][ T6911] (syz.3.386,6911,1):ocfs2_get_sector:1769 ERROR: status = -5
[  250.449711][ T6911] (syz.3.386,6911,1):ocfs2_sb_probe:749 ERROR: status = -5
[  250.457018][ T6911] (syz.3.386,6911,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  250.465650][ T6911] (syz.3.386,6911,1):ocfs2_fill_super:1178 ERROR: status = -5
[  251.437388][ T6917] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 925 (only 8 groups)
[  251.626798][ T5280] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  251.754268][ T5598] hsr_slave_0: left promiscuous mode
[  251.765916][ T5598] hsr_slave_1: left promiscuous mode
[  251.776240][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  251.795350][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  251.807562][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  251.846957][ T5280] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  251.869117][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  251.888153][ T5280] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  252.124068][ T5280] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  252.821777][ T5598] veth1_macvtap: left promiscuous mode
[  252.895325][ T5280] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.905083][ T5598] veth0_macvtap: left promiscuous mode
[  252.910899][ T5598] veth1_vlan: left promiscuous mode
[  252.916289][ T5598] veth0_vlan: left promiscuous mode
[  252.950497][ T5280] usb 4-1: config 0 descriptor??
[  253.028473][ T5280] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  253.903362][ T5276] usb 4-1: USB disconnect, device number 7
[  256.226740][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  256.233227][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  256.398627][ T6964] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  256.433971][ T6958] syz.3.399 uses obsolete (PF_INET,SOCK_PACKET)
[  256.764914][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  257.708553][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  259.081898][ T4632] 
[  259.084292][ T4632] ======================================================
[  259.091335][ T4632] WARNING: possible circular locking dependency detected
[  259.098393][ T4632] 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0 Not tainted
[  259.105498][ T4632] ------------------------------------------------------
[  259.112514][ T4632] kworker/1:2/4632 is trying to acquire lock:
[  259.118571][ T4632] ffff888060c19258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x5b/0x310
[  259.130092][ T4632] 
[  259.130092][ T4632] but task is already holding lock:
[  259.137453][ T4632] ffff888031cf6528 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0
[  259.146358][ T4632] 
[  259.146358][ T4632] which lock already depends on the new lock.
[  259.146358][ T4632] 
[  259.156775][ T4632] 
[  259.156775][ T4632] the existing dependency chain (in reverse order) is:
[  259.165787][ T4632] 
[  259.165787][ T4632] -> #3 (&d->lock){+.+.}-{3:3}:
[  259.172832][ T4632]        lock_acquire+0x1ed/0x550
[  259.177862][ T4632]        __mutex_lock+0x136/0xd70
[  259.182902][ T4632]        __rfcomm_dlc_close+0x226/0x6a0
[  259.188475][ T4632]        rfcomm_dlc_close+0xf1/0x190
[  259.193780][ T4632]        __rfcomm_sock_close+0x121/0x250
[  259.199420][ T4632]        rfcomm_sock_shutdown+0xb8/0x240
[  259.205074][ T4632]        rfcomm_sock_release+0x59/0x120
[  259.210640][ T4632]        sock_close+0xbc/0x240
[  259.215431][ T4632]        __fput+0x23f/0x880
[  259.219952][ T4632]        delayed_fput+0x63/0x90
[  259.224804][ T4632]        process_scheduled_works+0xa63/0x1850
[  259.230877][ T4632]        worker_thread+0x870/0xd30
[  259.236029][ T4632]        kthread+0x2f0/0x390
[  259.240615][ T4632]        ret_from_fork+0x4b/0x80
[  259.245573][ T4632]        ret_from_fork_asm+0x1a/0x30
[  259.250902][ T4632] 
[  259.250902][ T4632] -> #2 (rfcomm_mutex){+.+.}-{3:3}:
[  259.258290][ T4632]        lock_acquire+0x1ed/0x550
[  259.263323][ T4632]        __mutex_lock+0x136/0xd70
[  259.268353][ T4632]        rfcomm_dlc_exists+0xa6/0x380
[  259.273760][ T4632]        rfcomm_dev_ioctl+0xb53/0x2220
[  259.279260][ T4632]        rfcomm_sock_ioctl+0x86/0xd0
[  259.284600][ T4632]        sock_do_ioctl+0x158/0x460
[  259.289732][ T4632]        sock_ioctl+0x626/0x8e0
[  259.294599][ T4632]        __se_sys_ioctl+0xf9/0x170
[  259.299745][ T4632]        do_syscall_64+0xf3/0x230
[  259.304790][ T4632]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.311212][ T4632] 
[  259.311212][ T4632] -> #1 (rfcomm_ioctl_mutex){+.+.}-{3:3}:
[  259.319167][ T4632]        lock_acquire+0x1ed/0x550
[  259.324224][ T4632]        __mutex_lock+0x136/0xd70
[  259.329258][ T4632]        rfcomm_dev_ioctl+0x237/0x2220
[  259.334725][ T4632]        rfcomm_sock_ioctl+0x86/0xd0
[  259.340019][ T4632]        sock_do_ioctl+0x158/0x460
[  259.345163][ T4632]        sock_ioctl+0x626/0x8e0
[  259.350041][ T4632]        __se_sys_ioctl+0xf9/0x170
[  259.355159][ T4632]        do_syscall_64+0xf3/0x230
[  259.360184][ T4632]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.366610][ T4632] 
[  259.366610][ T4632] -> #0 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}:
[  259.376003][ T4632]        validate_chain+0x18ef/0x5920
[  259.381378][ T4632]        __lock_acquire+0x1384/0x2050
[  259.386764][ T4632]        lock_acquire+0x1ed/0x550
[  259.391838][ T4632]        lock_sock_nested+0x48/0x100
[  259.397152][ T4632]        rfcomm_sk_state_change+0x5b/0x310
[  259.402964][ T4632]        __rfcomm_dlc_close+0x26f/0x6a0
[  259.408509][ T4632]        rfcomm_dlc_close+0xf1/0x190
[  259.413796][ T4632]        __rfcomm_sock_close+0x121/0x250
[  259.419447][ T4632]        rfcomm_sock_shutdown+0xb8/0x240
[  259.425105][ T4632]        rfcomm_sock_release+0x59/0x120
[  259.430659][ T4632]        sock_close+0xbc/0x240
[  259.435458][ T4632]        __fput+0x23f/0x880
[  259.439964][ T4632]        delayed_fput+0x63/0x90
[  259.444836][ T4632]        process_scheduled_works+0xa63/0x1850
[  259.450928][ T4632]        worker_thread+0x870/0xd30
[  259.456097][ T4632]        kthread+0x2f0/0x390
[  259.460705][ T4632]        ret_from_fork+0x4b/0x80
[  259.465657][ T4632]        ret_from_fork_asm+0x1a/0x30
[  259.470954][ T4632] 
[  259.470954][ T4632] other info that might help us debug this:
[  259.470954][ T4632] 
[  259.481193][ T4632] Chain exists of:
[  259.481193][ T4632]   sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_mutex --> &d->lock
[  259.481193][ T4632] 
[  259.495123][ T4632]  Possible unsafe locking scenario:
[  259.495123][ T4632] 
[  259.502675][ T4632]        CPU0                    CPU1
[  259.508047][ T4632]        ----                    ----
[  259.513440][ T4632]   lock(&d->lock);
[  259.517260][ T4632]                                lock(rfcomm_mutex);
[  259.523959][ T4632]                                lock(&d->lock);
[  259.530291][ T4632]   lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM);
[  259.536616][ T4632] 
[  259.536616][ T4632]  *** DEADLOCK ***
[  259.536616][ T4632] 
[  259.544773][ T4632] 5 locks held by kworker/1:2/4632:
[  259.549992][ T4632]  #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  259.560974][ T4632]  #1: ffffc9000d5b7d00 ((delayed_fput_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  259.572220][ T4632]  #2: ffff88805d455c08 (&sb->s_type->i_mutex_key#9){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  259.582356][ T4632]  #3: ffffffff8fe4d8c8 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_close+0x3b/0x190
[  259.591861][ T4632]  #4: ffff888031cf6528 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0
[  259.601231][ T4632] 
[  259.601231][ T4632] stack backtrace:
[  259.607140][ T4632] CPU: 1 UID: 0 PID: 4632 Comm: kworker/1:2 Not tainted 6.12.0-rc2-syzkaller-00074-gd3d1556696c1 #0
[  259.617930][ T4632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  259.628018][ T4632] Workqueue: events delayed_fput
[  259.633004][ T4632] Call Trace:
[  259.636308][ T4632]  <TASK>
[  259.639265][ T4632]  dump_stack_lvl+0x241/0x360
[  259.643966][ T4632]  ? __pfx_dump_stack_lvl+0x10/0x10
[  259.649172][ T4632]  ? __pfx__printk+0x10/0x10
[  259.653792][ T4632]  print_circular_bug+0x13a/0x1b0
[  259.658819][ T4632]  check_noncircular+0x36a/0x4a0
[  259.663769][ T4632]  ? __pfx_check_noncircular+0x10/0x10
[  259.669238][ T4632]  ? lockdep_lock+0x123/0x2b0
[  259.673941][ T4632]  validate_chain+0x18ef/0x5920
[  259.678797][ T4632]  ? finish_task_switch+0x1e5/0x870
[  259.683996][ T4632]  ? lockdep_hardirqs_on+0x99/0x150
[  259.689300][ T4632]  ? __pfx_validate_chain+0x10/0x10
[  259.694511][ T4632]  ? __schedule+0x184b/0x4ae0
[  259.699255][ T4632]  ? __pfx___schedule+0x10/0x10
[  259.704171][ T4632]  ? mark_lock+0x9a/0x360
[  259.708503][ T4632]  __lock_acquire+0x1384/0x2050
[  259.713385][ T4632]  lock_acquire+0x1ed/0x550
[  259.717915][ T4632]  ? rfcomm_sk_state_change+0x5b/0x310
[  259.723380][ T4632]  ? __pfx_lock_acquire+0x10/0x10
[  259.728417][ T4632]  ? __mutex_lock+0x303/0xd70
[  259.733103][ T4632]  ? detach_timer+0x16c/0x320
[  259.737905][ T4632]  ? __timer_delete+0x2e0/0x380
[  259.742776][ T4632]  ? irqentry_exit+0x63/0x90
[  259.747363][ T4632]  ? __rfcomm_dlc_close+0x226/0x6a0
[  259.752562][ T4632]  ? __pfx___mutex_lock+0x10/0x10
[  259.757585][ T4632]  lock_sock_nested+0x48/0x100
[  259.762356][ T4632]  ? rfcomm_sk_state_change+0x5b/0x310
[  259.767844][ T4632]  rfcomm_sk_state_change+0x5b/0x310
[  259.773133][ T4632]  __rfcomm_dlc_close+0x26f/0x6a0
[  259.778161][ T4632]  rfcomm_dlc_close+0xf1/0x190
[  259.782925][ T4632]  __rfcomm_sock_close+0x121/0x250
[  259.788039][ T4632]  rfcomm_sock_shutdown+0xb8/0x240
[  259.793194][ T4632]  rfcomm_sock_release+0x59/0x120
[  259.798228][ T4632]  sock_close+0xbc/0x240
[  259.802478][ T4632]  ? __pfx_sock_close+0x10/0x10
[  259.807337][ T4632]  __fput+0x23f/0x880
[  259.811335][ T4632]  ? process_scheduled_works+0x976/0x1850
[  259.817097][ T4632]  delayed_fput+0x63/0x90
[  259.821453][ T4632]  process_scheduled_works+0xa63/0x1850
[  259.827020][ T4632]  ? __pfx_process_scheduled_works+0x10/0x10
[  259.833010][ T4632]  ? assign_work+0x364/0x3d0
[  259.837619][ T4632]  worker_thread+0x870/0xd30
[  259.842246][ T4632]  ? __kthread_parkme+0x169/0x1d0
[  259.847279][ T4632]  ? __pfx_worker_thread+0x10/0x10
[  259.852397][ T4632]  kthread+0x2f0/0x390
[  259.856462][ T4632]  ? __pfx_worker_thread+0x10/0x10
[  259.861578][ T4632]  ? __pfx_kthread+0x10/0x10
[  259.866166][ T4632]  ret_from_fork+0x4b/0x80
[  259.870594][ T4632]  ? __pfx_kthread+0x10/0x10
[  259.875203][ T4632]  ret_from_fork_asm+0x1a/0x30
[  259.879980][ T4632]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  260.429553][   T29] audit: type=1326 audit(1728602731.834:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7004 comm="syz.3.412" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f318c17dff9 code=0x0
[  260.519448][   T25] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  260.556112][ T7008] Dead loop on virtual device ip6_vti0, fix it urgently!
[  260.900522][ T6936] netlink: 4 bytes leftover after parsing attributes in process `syz.1.392'.
[  260.909548][ T6936] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.916984][ T6936] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.926897][ T6936] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.934624][ T6936] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.951147][ T6999] netlink: 'syz.2.409': attribute type 3 has an invalid length.
[  261.169665][ T5237] syz-executor (5237) used greatest stack depth: 18160 bytes left
[  261.508648][ T5598] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.556819][ T5598] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.606270][ T5598] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.656244][ T5598] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.730328][ T5598] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.765063][ T5598] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.814676][ T5598] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.846027][ T5598] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.943148][ T5598] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.984198][ T5598] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.023998][ T5598] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.096315][ T5598] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.192108][ T5598] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.238294][ T5598] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.293919][ T5598] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.353168][ T5598] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.481820][ T5598] bridge_slave_1: left allmulticast mode
[  262.487535][ T5598] bridge_slave_1: left promiscuous mode
[  262.494293][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.502906][ T5598] bridge_slave_0: left allmulticast mode
[  262.508592][ T5598] bridge_slave_0: left promiscuous mode
[  262.514579][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.523932][ T5598] bridge_slave_1: left allmulticast mode
[  262.529742][ T5598] bridge_slave_1: left promiscuous mode
[  262.535431][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.544441][ T5598] bridge_slave_0: left allmulticast mode
[  262.551078][ T5598] bridge_slave_0: left promiscuous mode
[  262.556773][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.566870][ T5598] bridge_slave_1: left allmulticast mode
[  262.572920][ T5598] bridge_slave_1: left promiscuous mode
[  262.578721][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.588090][ T5598] bridge_slave_0: left allmulticast mode
[  262.593999][ T5598] bridge_slave_0: left promiscuous mode
[  262.599990][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.608642][ T5598] bridge_slave_1: left allmulticast mode
[  262.614722][ T5598] bridge_slave_1: left promiscuous mode
[  262.620634][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.628823][ T5598] bridge_slave_0: left allmulticast mode
[  262.635278][ T5598] bridge_slave_0: left promiscuous mode
[  262.641120][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.065805][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.076619][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.087084][ T5598] bond0 (unregistering): Released all slaves
[  263.100288][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.111606][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.122842][ T5598] bond0 (unregistering): Released all slaves
[  263.132844][ T5598] bond1 (unregistering): Released all slaves
[  263.145159][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.155858][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.166922][ T5598] bond0 (unregistering): Released all slaves
[  263.182674][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.193920][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.204022][ T5598] bond0 (unregistering): Released all slaves
[  263.314491][ T5598] tipc: Left network mode
[  263.763758][ T5598] hsr_slave_0: left promiscuous mode
[  263.769865][ T5598] hsr_slave_1: left promiscuous mode
[  263.775747][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.787000][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.796755][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.806534][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.817532][ T5598] hsr_slave_0: left promiscuous mode
[  263.825344][ T5598] hsr_slave_1: left promiscuous mode
[  263.831562][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.841083][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.848855][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.857169][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.869922][ T5598] hsr_slave_0: left promiscuous mode
[  263.875777][ T5598] hsr_slave_1: left promiscuous mode
[  263.887034][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.897838][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.911605][ T5598] hsr_slave_0: left promiscuous mode
[  263.917508][ T5598] hsr_slave_1: left promiscuous mode
[  263.925307][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.933107][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.943073][ T5598] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.950832][ T5598] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.967176][ T5598] veth1_macvtap: left promiscuous mode
[  263.972875][ T5598] veth0_macvtap: left promiscuous mode
[  263.978473][ T5598] veth1_vlan: left promiscuous mode
[  263.985844][ T5598] veth0_vlan: left promiscuous mode
[  263.991915][ T5598] veth0_macvtap: left promiscuous mode
[  263.997928][ T5598] veth1_vlan: left promiscuous mode
[  264.005592][ T5598] 
@ÿ: left promiscuous mode
[  264.013189][ T5598] veth1_macvtap: left promiscuous mode
[  264.018749][ T5598] veth0_macvtap: left promiscuous mode
[  264.024651][ T5598] veth1_vlan: left promiscuous mode
[  264.030634][ T5598] veth0_vlan: left promiscuous mode
[  264.036595][ T5598] veth1_macvtap: left promiscuous mode
[  264.042963][ T5598] veth0_macvtap: left promiscuous mode
[  264.048488][ T5598] veth1_vlan: left promiscuous mode
[  264.053885][ T5598] veth0_vlan: left promiscuous mode
[  264.321274][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  264.345738][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  264.521564][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  264.544715][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  264.723627][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  264.746953][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  264.898498][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  264.925231][ T5598] team0 (unregistering): Port device team_slave_0 removed
[  265.807255][ T5598] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.855252][ T5598] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.917756][ T5598] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.974792][ T5598] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.064803][ T5598] bridge_slave_1: left allmulticast mode
[  266.071426][ T5598] bridge_slave_1: left promiscuous mode
[  266.077118][ T5598] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.085707][ T5598] bridge_slave_0: left allmulticast mode
[  266.091655][ T5598] bridge_slave_0: left promiscuous mode
[  266.097336][ T5598] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.192091][ T5598] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  266.202220][ T5598] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  266.212667][ T5598] bond0 (unregistering): Released all slaves
[  266.472269][ T5598] hsr_slave_0: left promiscuous mode
[  266.478114][ T5598] hsr_slave_1: left promiscuous mode
[  266.485881][ T5598] veth1_macvtap: left promiscuous mode
[  266.493338][ T5598] veth0_macvtap: left promiscuous mode
[  266.498956][ T5598] veth1_vlan: left promiscuous mode
[  266.504301][ T5598] veth0_vlan: left promiscuous mode
[  266.614928][ T5598] team0 (unregistering): Port device team_slave_1 removed
[  266.641766][ T5598] team0 (unregistering): Port device team_slave_0 removed