last executing test programs:

10.994361378s ago: executing program 1 (id=1611):
mknod$loop(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_cancel(0x0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x2, 0xffffffffffffffff, &(0x7f0000000b00)="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", 0xfb8, 0x2000000000000000, 0x0, 0x7}, 0x0)

7.246825008s ago: executing program 1 (id=1625):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000003ef00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
close(0x3)

7.039448917s ago: executing program 1 (id=1627):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', <r0=>0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=@newlink={0x2c, 0x10, 0x401, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r0, 0x0, 0x8004}, [@IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x2c}}, 0x0)

5.919058362s ago: executing program 1 (id=1630):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x403, 0x6030, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0x84, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x0, ')'}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)={0x0, 0x0, 0xd, "625e81abf2f5246c2f97ff767a"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect$cdc_ncm(0x5, 0x0, 0x0, 0x0)

5.528568082s ago: executing program 4 (id=1635):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
pipe2$9p(0x0, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r4 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x4, 0x0, r4, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x4, r3, r3, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4)
sendto$inet(r5, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
sendto$inet(r5, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x12eed8485ad)

5.287845273s ago: executing program 3 (id=1637):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000003ef00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close(0x3)

5.098746923s ago: executing program 3 (id=1639):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x0, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff6, 0x11, r3, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x0)

4.298883899s ago: executing program 4 (id=1640):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', <r0=>0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=@newlink={0x2c, 0x10, 0x401, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r0, 0x0, 0x8004}, [@IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x2c}}, 0x0)

4.094823915s ago: executing program 4 (id=1643):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905"], 0x0)

3.647774814s ago: executing program 3 (id=1645):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4)
sendto$inet(r2, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
sendto$inet(r2, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x12eed8485ad)

2.523303978s ago: executing program 0 (id=1649):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000003ef00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close(0x3)

2.33062868s ago: executing program 0 (id=1650):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0xc, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x5f, 0x30, 0x0, 0x0, 0x30, 0x30, 0x0, 0x0]}}, &(0x7f00000003c0)=""/7, 0x2e, 0x7}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000380)='GPL\x00'}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x3, 0x220104, 0xb, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380), &(0x7f0000000380), 0x2, r0}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=""/40, &(0x7f00000001c0), &(0x7f00000000c0), 0x1, r0}, 0x38)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000540)={0x40}, 0x8)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)

2.106681099s ago: executing program 1 (id=1652):
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000700000000000000000000008500000041000000850000000500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0xfffffffb)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffff80)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x0, 0xc}, 0x73)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x0, 0xb4, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

2.058694997s ago: executing program 2 (id=1653):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="b9ff030f6044238cb89e14f088ca1bff430500001100630377fbac141414e000000162079f4b4d2f87e56dca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000}, 0x2c)

1.951294469s ago: executing program 4 (id=1654):
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, &(0x7f0000001280)=0x20000000, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)

1.800966394s ago: executing program 4 (id=1655):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x0, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff6, 0x11, r3, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x0)

1.666813334s ago: executing program 0 (id=1656):
r0 = syz_open_dev$amidi(0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r1, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045731, &(0x7f0000000000))

1.666658051s ago: executing program 2 (id=1657):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
recvfrom(r1, 0x0, 0xffffff00, 0x0, 0x0, 0x2)

1.52868534s ago: executing program 3 (id=1658):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
recvmsg(0xffffffffffffffff, 0x0, 0x10041)

1.478461531s ago: executing program 2 (id=1659):
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x1a, &(0x7f0000000200)={0x1, 'netdevsim0\x00'}, 0x18)
syz_emit_ethernet(0xbf, &(0x7f0000000240)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb1, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x24, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @local, @dev, {[@cipso={0x86, 0x71, 0x0, [{0x0, 0xc, "e2ffb28c599d1681fb52"}, {0x0, 0x9, "789607671442eb"}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x0, 0x9, "e706d30bd224f8"}, {0x0, 0x7, "cfa11cab1a"}, {0x0, 0x10, "8475be675de6a70a05a0dc91e5c6"}, {0x0, 0xa, "6580a5e97612fe86"}, {0x0, 0x12, "24001100"/16}, {0x0, 0xc, "c8f46976e79e56c7a95e"}]}, @cipso={0x86, 0xc, 0x0, [{0x0, 0x6, "7f36c525"}]}]}}, "bb"}}}}}, 0x0)

1.234760917s ago: executing program 0 (id=1660):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000003ef00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close(0x3)

1.234580775s ago: executing program 3 (id=1661):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000540)={@val={0x2000}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @private=0xa010101, @multicast1}, {0x4e2b, 0x0, 0x28, 0x0, @gue={{0x1, 0x1, 0x0, 0x0, 0x0, @void}, "ebc7a1e0ff5befe1fdbc66e400d7e83306de422b4a81099bdac9375a"}}}}}}}, 0x4e)

1.2115653s ago: executing program 0 (id=1662):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$netlink(r0, 0x10e, 0x0, 0x0, &(0x7f0000000180))
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
prlimit64(0x0, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r7, r6, 0x7}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r7, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r5}, 0x20)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000540)=ANY=[], 0x14}}, 0x0)

1.184291108s ago: executing program 2 (id=1663):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=@newlink={0x2c, 0x10, 0x401, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8004}, [@IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x2c}}, 0x0)

842.767753ms ago: executing program 1 (id=1664):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x4, 0x4, 0x4, 0x204, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000001200)=ANY=[@ANYBLOB="18000000000000000000000000000000631108000000000095000000000000002c10ad1eb597741dae80a2d3b8fe271eeaa3b682d06eb5ae325b205290377ad909fa8208947967f7560ddd4d4de3a72fa0586a338f0c7d308f9ecdc870c7999257c99fedd06562b8556d6dae45bc8271f48548f43191ec1eb36b23ec5cc8c0e362a694cac423a098bc2f01ac8f4e7498befb74fb3e07ec6cbba4c7008e943aac770920f306f46c3924fc6acdfeae6d61233188e4bf22680615b8676023c010b89f0ab354e9252512d09d0f662255c56d847f9ce9f1bf67d839e33d941a40"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xac, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x70)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
inotify_init1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x10002})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES32=r1, @ANYRES16=r0], 0x20}, 0x1, 0xc00000000000000}, 0x0)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="4c00030007"], 0xd)

198.919111ms ago: executing program 4 (id=1665):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB], 0x0)

193.548021ms ago: executing program 2 (id=1666):
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, &(0x7f0000001280)=0x20000000, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)

86.59307ms ago: executing program 3 (id=1667):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$clear(0x11, 0xfffffffffffffffd)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000140), 0x9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, 0x0, 0x0)
sendmsg$inet(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000280)="9d", 0x1}], 0x1}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r5, 0x40286608, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x33, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000003}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket$nl_route(0x10, 0x3, 0x0)
open$dir(&(0x7f0000000780)='./file0\x00', 0x44200, 0x54)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x5}]}, 0x38}}, 0x0)

78.618176ms ago: executing program 0 (id=1668):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x2, 0x0, 0x3, 0xd, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb}, @sadb_x_sa2={0x2, 0x9}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @sadb_x_nat_t_type={0x1}]}, 0x68}}, 0x0)

0s ago: executing program 2 (id=1669):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
recvfrom(r1, 0x0, 0xffffff00, 0x0, 0x0, 0x2)

kernel console output (not intermixed with test programs):

ould_fail_ex+0x3b0/0x4e0
[  629.752124][T10492]  ? vm_area_dup+0x27/0x290
[  629.756666][T10492]  should_failslab+0xac/0x100
[  629.761372][T10492]  ? vm_area_dup+0x27/0x290
[  629.765895][T10492]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  629.771292][T10492]  vm_area_dup+0x27/0x290
[  629.775641][T10492]  __split_vma+0x1a9/0xc30
[  629.780088][T10492]  ? __pfx___split_vma+0x10/0x10
[  629.785073][T10492]  ? validate_chain+0x11e/0x5900
[  629.790024][T10492]  do_vmi_align_munmap+0x433/0x18c0
[  629.795256][T10492]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  629.800911][T10492]  ? mtree_range_walk+0x6fd/0x8e0
[  629.805965][T10492]  ? mas_find+0x8c0/0xbb0
[  629.810311][T10492]  do_vmi_munmap+0x261/0x2f0
[  629.814919][T10492]  mmap_region+0x72f/0x2090
[  629.819433][T10492]  ? mark_lock+0x9a/0x350
[  629.823799][T10492]  ? __pfx_mmap_region+0x10/0x10
[  629.828741][T10492]  ? mm_get_unmapped_area+0xa5/0xd0
[  629.833955][T10492]  ? shmem_get_unmapped_area+0x2a7/0x8f0
[  629.839602][T10492]  ? cap_mmap_addr+0x163/0x2c0
[  629.844390][T10492]  ? __get_unmapped_area+0x2f0/0x360
[  629.849694][T10492]  do_mmap+0x8f9/0x1010
[  629.853871][T10492]  ? __pfx_do_mmap+0x10/0x10
[  629.858473][T10492]  ? __pfx_down_write_killable+0x10/0x10
[  629.864129][T10492]  ? __pfx_ima_file_mmap+0x10/0x10
[  629.869267][T10492]  ? security_mmap_file+0x178/0x1a0
[  629.874496][T10492]  vm_mmap_pgoff+0x1dd/0x3d0
[  629.879121][T10492]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  629.884246][T10492]  ? __fget_files+0x29/0x470
[  629.888847][T10492]  ? __fget_files+0x3f6/0x470
[  629.893559][T10492]  ksys_mmap_pgoff+0x4f1/0x720
[  629.898378][T10492]  ? __x64_sys_mmap+0x7f/0x140
[  629.903161][T10492]  do_syscall_64+0xf3/0x230
[  629.907673][T10492]  ? clear_bhb_loop+0x35/0x90
[  629.912362][T10492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.918273][T10492] RIP: 0033:0x7f579c5799b9
[  629.922694][T10492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.942320][T10492] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  629.950748][T10492] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  629.958728][T10492] RDX: 000000000280000b RSI: 0000000000b36000 RDI: 0000000020000000
[  629.966718][T10492] RBP: 00007f579d3be090 R08: 0000000000000005 R09: 0000000000000000
[  629.974695][T10492] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000001
[  629.982670][T10492] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  629.990684][T10492]  </TASK>
[  630.273691][T10504] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 262395 (only 8 groups)
[  633.533124][ T5300] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  633.889214][T10526] netlink: 'syz.0.1032': attribute type 1 has an invalid length.
[  633.897073][T10526] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1032'.
[  634.625581][ T5300] usb 2-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  634.650094][ T5300] usb 2-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  634.762116][ T5300] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  634.813308][ T5300] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  635.499448][ T5300] usb 2-1: can't set config #27, error -71
[  635.517948][ T5300] usb 2-1: USB disconnect, device number 19
[  636.255168][T10545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1040'.
[  637.676170][ T5281] usb 2-1: new low-speed USB device number 20 using dummy_hcd
[  637.985011][ T5281] usb 2-1: No LPM exit latency info found, disabling LPM.
[  637.997220][ T5281] usb 2-1: config 1 interface 0 altsetting 204 endpoint 0x82 is Bulk; changing to Interrupt
[  638.007606][ T5281] usb 2-1: config 1 interface 0 altsetting 204 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  638.021412][ T5281] usb 2-1: config 1 interface 0 has no altsetting 0
[  638.031810][ T5281] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  638.041863][ T5281] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.051558][ T5281] usb 2-1: Product: င
[  638.067153][ T5281] usb 2-1: Manufacturer: 䌰拶߀䌞慭ꈒ䩟唉淫勒뷏蜣黤循䗽ﻡꝴ磂㭅迟뤙ป졳不ﭑ굋಍⥲ν䊬⋍檦ẫ丠迪礊절햚녭ꠕ總핀鎔疅ᬁ幯呫픏ᆧ݀칓ﻱ䮃蚸ᕚᙘ뵽ú
[  638.123572][ T5281] usb 2-1: SerialNumber: ⠁
[  638.161163][T10548] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  638.191320][T10548] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  638.454306][T10568] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1045'.
[  638.464393][T10568] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1045'.
[  639.809300][T10548] vivid-003: =================  START STATUS  =================
[  639.817831][T10548] vivid-003: Radio HW Seek Mode: Bounded
[  639.824178][T10548] vivid-003: Radio Programmable HW Seek: false
[  639.830369][T10548] vivid-003: RDS Rx I/O Mode: Block I/O
[  639.835988][T10548] vivid-003: Generate RBDS Instead of RDS: false
[  639.842341][T10548] vivid-003: RDS Reception: true
[  639.847328][T10548] vivid-003: RDS Program Type: 0 inactive
[  639.853148][T10548] vivid-003: RDS PS Name:  inactive
[  639.858383][T10548] vivid-003: RDS Radio Text:  inactive
[  639.863896][T10548] vivid-003: RDS Traffic Announcement: false inactive
[  639.870697][T10548] vivid-003: RDS Traffic Program: false inactive
[  639.877104][T10548] vivid-003: RDS Music: false inactive
[  639.882588][T10548] vivid-003: ==================  END STATUS  ==================
[  640.215422][T10548] sch_tbf: peakrate 9 is lower than or equals to rate 146 !
[  640.273709][ T5281] hub 2-1:1.0: bad descriptor, ignoring hub
[  640.279696][ T5281] hub 2-1:1.0: probe with driver hub failed with error -5
[  640.324462][ T5281] usb 2-1: bad CDC descriptors
[  640.433467][ T5281] usb 2-1: USB disconnect, device number 20
[  645.416737][T10628] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1058'.
[  645.447395][T10628] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1058'.
[  652.558614][T10653] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  653.670504][T10663] FAULT_INJECTION: forcing a failure.
[  653.670504][T10663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  653.746672][T10663] CPU: 1 UID: 0 PID: 10663 Comm: syz.1.1068 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  653.757631][T10663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  653.767723][T10663] Call Trace:
[  653.771027][T10663]  <TASK>
[  653.774000][T10663]  dump_stack_lvl+0x241/0x360
[  653.778721][T10663]  ? __pfx_dump_stack_lvl+0x10/0x10
[  653.783961][T10663]  ? __pfx__printk+0x10/0x10
[  653.788604][T10663]  ? __pfx_lock_release+0x10/0x10
[  653.793679][T10663]  should_fail_ex+0x3b0/0x4e0
[  653.798396][T10663]  _copy_from_user+0x2f/0xe0
[  653.803032][T10663]  copy_msghdr_from_user+0xae/0x680
[  653.808288][T10663]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  653.814145][T10663]  __sys_sendmsg+0x23d/0x3a0
[  653.818754][T10663]  ? __pfx___sys_sendmsg+0x10/0x10
[  653.823993][T10663]  ? vfs_write+0x7c4/0xc90
[  653.828449][T10663]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  653.834791][T10663]  ? do_syscall_64+0x100/0x230
[  653.839564][T10663]  ? do_syscall_64+0xb6/0x230
[  653.844251][T10663]  do_syscall_64+0xf3/0x230
[  653.848764][T10663]  ? clear_bhb_loop+0x35/0x90
[  653.853450][T10663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.859348][T10663] RIP: 0033:0x7f154c9799b9
[  653.863768][T10663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.883396][T10663] RSP: 002b:00007f154d79c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  653.891820][T10663] RAX: ffffffffffffffda RBX: 00007f154cb15f80 RCX: 00007f154c9799b9
[  653.899800][T10663] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000004
[  653.907774][T10663] RBP: 00007f154d79c090 R08: 0000000000000000 R09: 0000000000000000
[  653.915747][T10663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.923732][T10663] R13: 0000000000000000 R14: 00007f154cb15f80 R15: 00007ffd5fb42198
[  653.931722][T10663]  </TASK>
[  654.815774][T10682] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1072'.
[  654.825942][T10682] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1072'.
[  655.851457][T10691] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  656.753486][ T5275] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  656.963236][ T5275] usb 4-1: Using ep0 maxpacket: 16
[  656.971182][ T5275] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  656.999434][ T5275] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  657.200778][ T5275] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  657.224763][ T5275] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  658.094142][ T5233] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  658.105328][ T5233] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  658.115223][ T5233] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  658.125590][ T5233] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  658.134522][ T5233] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  658.141970][ T5233] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  658.303148][ T5275] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  658.312270][ T5275] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.389321][ T5275] usb 4-1: Product: syz
[  658.397644][ T5275] usb 4-1: Manufacturer: syz
[  658.402297][ T5275] usb 4-1: SerialNumber: syz
[  658.549846][T10710] tmpfs: Cannot retroactively limit inodes
[  658.565249][ T8225] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.624260][T10710] netlink: 4544 bytes leftover after parsing attributes in process `syz.4.1079'.
[  658.651845][T10710] netlink: 4544 bytes leftover after parsing attributes in process `syz.4.1079'.
[  658.661473][T10710] netlink: 69 bytes leftover after parsing attributes in process `syz.4.1079'.
[  658.661801][T10711] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1080'.
[  659.686357][ T8225] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  660.181271][T10726] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1083'.
[  660.191126][T10726] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1083'.
[  660.254740][ T5233] Bluetooth: hci1: command tx timeout
[  661.134274][ T5275] usb 4-1: USB disconnect, device number 32
[  661.191601][T10175] udevd[10175]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  661.265603][T10734] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  661.512273][ T8225] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  662.177222][T10737] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1085'.
[  662.267665][ T5233] Bluetooth: hci1: command tx timeout
[  662.326217][ T8225] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  662.346890][ T5300] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  662.357003][T10737] lo speed is unknown, defaulting to 1000
[  662.543106][ T5300] usb 4-1: Using ep0 maxpacket: 8
[  662.647238][T10737] lo speed is unknown, defaulting to 1000
[  662.660081][ T5300] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  662.670699][ T5300] usb 4-1: config 179 has no interface number 0
[  662.679978][ T5300] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  662.691524][ T5300] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  663.498597][T10737] lo speed is unknown, defaulting to 1000
[  663.513061][ T5300] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  663.573259][ T5300] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  663.623239][ T5300] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  663.667275][ T5300] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  663.885406][ T5300] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.901854][ T8225] bridge_slave_1: left allmulticast mode
[  664.179778][ T8225] bridge_slave_1: left promiscuous mode
[  664.415732][ T5233] Bluetooth: hci1: command tx timeout
[  664.864322][ T8225] bridge0: port 2(bridge_slave_1) entered disabled state
[  664.949888][ T5300] usb 4-1: can't set config #179, error -71
[  664.973194][ T8225] bridge_slave_0: left allmulticast mode
[  665.006904][ T5300] usb 4-1: USB disconnect, device number 33
[  665.012892][ T8225] bridge_slave_0: left promiscuous mode
[  665.060528][ T8225] bridge0: port 1(bridge_slave_0) entered disabled state
[  665.088001][T10764] RDS: rds_bind could not find a transport for ::a00:6300:1800:0:ffff:ffff, load rds_tcp or rds_rdma?
[  665.237931][T10737] infiniband syz1: set active
[  665.256736][T10737] infiniband syz1: added lo
[  665.269627][T10737] syz1: rxe_create_cq: returned err = -12
[  665.277212][T10737] infiniband syz1: Couldn't create ib_mad CQ
[  665.293225][T10737] infiniband syz1: Couldn't open port 1
[  665.376879][T10737] RDS/IB: syz1: added
[  665.381477][T10737] smc: adding ib device syz1 with port count 1
[  665.394846][T10737] smc:    ib device syz1 port 1 has pnetid 
[  665.589674][ T5300] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  665.762198][ T8225] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  665.774997][ T8225] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  665.789335][ T5300] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  665.802517][ T5300] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  665.808446][ T8225] bond0 (unregistering): Released all slaves
[  665.814293][ T5300] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  665.834054][T10704] chnl_net:caif_netlink_parms(): no params data found
[  665.856674][ T5300] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[  665.866399][ T5300] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.893948][ T5300] usb 4-1: config 0 descriptor??
[  665.925010][ T5278] lo speed is unknown, defaulting to 1000
[  666.059335][  T941] lo speed is unknown, defaulting to 1000
[  666.376594][T10737] lo speed is unknown, defaulting to 1000
[  666.383889][ T5300] pyra 0003:1E7D:2C24.0006: hidraw0: USB HID v0.00 Device [HID 1e7d:2c24] on usb-dummy_hcd.3-1/input0
[  666.567552][T10783] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1097'.
[  666.576750][T10783] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1097'.
[  666.614633][T10766] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.1093'.
[  666.625082][ T5275] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  666.636452][ T5233] Bluetooth: hci1: command tx timeout
[  666.835707][ T5275] usb 2-1: config 0 has no interfaces?
[  666.926354][ T5275] usb 2-1: New USB device found, idVendor=eb1a, idProduct=e350, bcdDevice=f8.fa
[  667.030960][T10786] overlay: Bad value for 'index'
[  667.056586][ T5275] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  667.105332][ T5275] usb 2-1: config 0 descriptor??
[  667.460600][T10704] bridge0: port 1(bridge_slave_0) entered blocking state
[  667.478321][T10704] bridge0: port 1(bridge_slave_0) entered disabled state
[  667.480723][ T5275] usb 4-1: USB disconnect, device number 34
[  667.503336][T10704] bridge_slave_0: entered allmulticast mode
[  667.521497][T10704] bridge_slave_0: entered promiscuous mode
[  667.532055][ T5281] usb 2-1: USB disconnect, device number 21
[  667.573269][T10704] bridge0: port 2(bridge_slave_1) entered blocking state
[  667.583708][T10704] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.600034][T10704] bridge_slave_1: entered allmulticast mode
[  667.608350][T10704] bridge_slave_1: entered promiscuous mode
[  667.632865][T10737] lo speed is unknown, defaulting to 1000
[  667.703668][T10704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  667.730675][T10704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  667.858439][T10704] team0: Port device team_slave_0 added
[  667.880624][T10704] team0: Port device team_slave_1 added
[  667.886871][T10737] lo speed is unknown, defaulting to 1000
[  667.941448][T10704] batman_adv: batadv0: Adding interface: batadv_slave_0
[  667.970404][T10704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  668.000152][T10704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  668.015624][T10704] batman_adv: batadv0: Adding interface: batadv_slave_1
[  668.036563][T10704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  668.133191][T10704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  668.157863][T10737] lo speed is unknown, defaulting to 1000
[  668.268312][T10704] hsr_slave_0: entered promiscuous mode
[  668.284925][T10704] hsr_slave_1: entered promiscuous mode
[  668.354561][T10704] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  668.370203][T10704] Cannot create hsr debugfs directory
[  668.427869][T10794] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 1 (only 8 groups)
[  668.509471][T10737] lo speed is unknown, defaulting to 1000
[  668.719778][T10737] lo speed is unknown, defaulting to 1000
[  670.576682][T10811] bridge0: port 2(bridge_slave_1) entered blocking state
[  670.583965][T10811] bridge0: port 2(bridge_slave_1) entered forwarding state
[  670.591438][T10811] bridge0: port 1(bridge_slave_0) entered blocking state
[  670.598600][T10811] bridge0: port 1(bridge_slave_0) entered forwarding state
[  670.606268][T10811] bridge0: entered promiscuous mode
[  670.622306][T10815] 9pnet_fd: Insufficient options for proto=fd
[  672.810824][ T8225] hsr_slave_0: left promiscuous mode
[  672.819364][ T8225] hsr_slave_1: left promiscuous mode
[  672.883245][ T8225] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  672.906269][ T5233] Bluetooth: hci0: command 0x0c1a tx timeout
[  672.916405][ T8225] batman_adv: batadv0: Removing interface: batadv_slave_0
[  672.925148][ T8225] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  672.932756][ T8225] batman_adv: batadv0: Removing interface: batadv_slave_1
[  672.969357][ T8225] veth1_macvtap: left promiscuous mode
[  672.975380][ T8225] veth0_macvtap: left promiscuous mode
[  672.981495][ T8225] veth1_vlan: left promiscuous mode
[  672.988835][ T8225] veth0_vlan: left promiscuous mode
[  674.666685][T10833] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1107'.
[  674.675966][T10833] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1107'.
[  675.676298][ T8225] team0 (unregistering): Port device team_slave_1 removed
[  675.743840][ T8225] team0 (unregistering): Port device team_slave_0 removed
[  676.123252][ T5300] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  676.338430][ T5300] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  676.353839][ T5300] usb 1-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  676.369180][ T5300] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  676.382030][ T5300] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.451545][ T5300] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  676.586981][T10175] udevd[10175]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  676.616797][ T5300] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -2
[  676.733469][ T5300] usb 1-1: USB disconnect, device number 25
[  676.797291][T10815] lo speed is unknown, defaulting to 1000
[  677.281195][ T5231] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10
[  677.609874][T10852] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  680.553472][ T5233] Bluetooth: hci2: command 0x0406 tx timeout
[  683.936529][T10704] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  684.175436][T10704] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  684.956942][T10704] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  685.008538][T10704] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  686.187513][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  686.195004][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  686.618778][T10880] vxfs: WRONG superblock magic 00000000 at 1
[  686.626303][T10880] vxfs: WRONG superblock magic 00000000 at 8
[  686.632517][T10880] vxfs: can't find superblock.
[  686.696382][T10879] netlink: 'syz.3.1120': attribute type 1 has an invalid length.
[  686.704880][T10879] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1120'.
[  687.590221][T10704] 8021q: adding VLAN 0 to HW filter on device bond0
[  687.706615][ T5233] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  687.718179][ T5233] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  687.728812][ T5233] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  687.742349][ T5233] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  687.750352][ T5233] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  687.757864][ T5233] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  687.981480][T10704] 8021q: adding VLAN 0 to HW filter on device team0
[  688.002016][T10882] lo speed is unknown, defaulting to 1000
[  688.055025][ T8225] bridge0: port 1(bridge_slave_0) entered blocking state
[  688.062160][ T8225] bridge0: port 1(bridge_slave_0) entered forwarding state
[  688.098650][T10890] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1121'.
[  688.122871][ T8225] bridge0: port 2(bridge_slave_1) entered blocking state
[  688.130016][ T8225] bridge0: port 2(bridge_slave_1) entered forwarding state
[  688.262866][T10892] FAULT_INJECTION: forcing a failure.
[  688.262866][T10892] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  688.303811][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.3.1123 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  688.314616][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  688.324694][T10892] Call Trace:
[  688.327981][T10892]  <TASK>
[  688.330936][T10892]  dump_stack_lvl+0x241/0x360
[  688.335622][T10892]  ? __pfx_dump_stack_lvl+0x10/0x10
[  688.340839][T10892]  ? __pfx__printk+0x10/0x10
[  688.345432][T10892]  ? __pfx_lock_release+0x10/0x10
[  688.350456][T10892]  ? smack_log+0x123/0x540
[  688.354890][T10892]  should_fail_ex+0x3b0/0x4e0
[  688.359586][T10892]  _copy_from_user+0x2f/0xe0
[  688.364224][T10892]  drm_ioctl+0x577/0xad0
[  688.368474][T10892]  ? __pfx_drm_mode_setcrtc+0x10/0x10
[  688.373857][T10892]  ? __pfx_drm_ioctl+0x10/0x10
[  688.378645][T10892]  ? bpf_lsm_file_ioctl+0x9/0x10
[  688.383607][T10892]  ? security_file_ioctl+0x87/0xb0
[  688.388733][T10892]  ? __pfx_drm_ioctl+0x10/0x10
[  688.393508][T10892]  __se_sys_ioctl+0xfc/0x170
[  688.398115][T10892]  do_syscall_64+0xf3/0x230
[  688.402627][T10892]  ? clear_bhb_loop+0x35/0x90
[  688.407319][T10892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.413223][T10892] RIP: 0033:0x7f579c5799b9
[  688.417658][T10892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.437461][T10892] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  688.445886][T10892] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  688.453879][T10892] RDX: 0000000020000ec0 RSI: 00000000c06864a2 RDI: 0000000000000003
[  688.461873][T10892] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  688.469858][T10892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  688.477838][T10892] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  688.485836][T10892]  </TASK>
[  688.576841][T10893] overlayfs: overlapping lowerdir path
[  688.662600][T10704] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  688.988562][ T8212] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.227961][T10908] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  689.605933][ T8212] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.784145][ T5231] Bluetooth: hci5: command tx timeout
[  690.177598][ T8212] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.315840][ T8212] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.974942][ T5231] Bluetooth: hci5: command tx timeout
[  692.341489][T10704] 8021q: adding VLAN 0 to HW filter on device batadv0
[  692.831336][T10882] chnl_net:caif_netlink_parms(): no params data found
[  692.874196][T10932] netlink: 'syz.4.1130': attribute type 1 has an invalid length.
[  692.882006][T10932] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1130'.
[  693.397980][ T8212] bridge_slave_1: left allmulticast mode
[  693.425296][ T8212] bridge_slave_1: left promiscuous mode
[  693.449470][ T8212] bridge0: port 2(bridge_slave_1) entered disabled state
[  693.613756][ T8212] bridge_slave_0: left allmulticast mode
[  693.619452][ T8212] bridge_slave_0: left promiscuous mode
[  693.650681][ T8212] bridge0: port 1(bridge_slave_0) entered disabled state
[  693.864658][ T5231] Bluetooth: min 3 > max 0
[  694.144200][ T5233] Bluetooth: hci5: command tx timeout
[  695.051301][ T8212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  695.079305][ T8212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  695.102610][ T8212] bond0 (unregistering): Released all slaves
[  695.138998][T10939] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  695.169821][T10946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1132'.
[  695.348502][T10704] veth0_vlan: entered promiscuous mode
[  695.370132][T10882] bridge0: port 1(bridge_slave_0) entered blocking state
[  695.382857][T10882] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.392886][T10882] bridge_slave_0: entered allmulticast mode
[  695.406688][T10882] bridge_slave_0: entered promiscuous mode
[  695.416274][T10882] bridge0: port 2(bridge_slave_1) entered blocking state
[  695.424001][T10882] bridge0: port 2(bridge_slave_1) entered disabled state
[  695.431265][T10882] bridge_slave_1: entered allmulticast mode
[  695.439279][T10882] bridge_slave_1: entered promiscuous mode
[  695.558575][T10882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  695.586336][T10882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  695.690172][T10704] veth1_vlan: entered promiscuous mode
[  695.725532][T10882] team0: Port device team_slave_0 added
[  695.769892][T10882] team0: Port device team_slave_1 added
[  695.922039][T10960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1136'.
[  695.953925][ T5233] Bluetooth: hci3: command 0x0406 tx timeout
[  696.297505][ T5233] Bluetooth: hci5: command tx timeout
[  696.312199][T10882] batman_adv: batadv0: Adding interface: batadv_slave_0
[  696.331574][T10882] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  696.573187][T10882] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  697.075775][ T8212] hsr_slave_0: left promiscuous mode
[  697.085905][ T8212] hsr_slave_1: left promiscuous mode
[  697.141899][ T8212] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  697.165375][ T8212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  697.188327][ T8212] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  697.204699][ T8212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  697.288201][ T8212] veth1_macvtap: left promiscuous mode
[  697.310492][ T8212] veth0_macvtap: left promiscuous mode
[  698.834275][T10982] virtio-fs: tag <(null)> not found
[  700.358569][ T8212] team0 (unregistering): Port device team_slave_1 removed
[  700.429985][ T8212] team0 (unregistering): Port device team_slave_0 removed
[  700.990700][T10882] batman_adv: batadv0: Adding interface: batadv_slave_1
[  700.998153][T10882] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  701.033214][T10882] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  701.193254][T10991] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1143'.
[  701.293604][T10704] veth0_macvtap: entered promiscuous mode
[  701.345581][T10998] FAULT_INJECTION: forcing a failure.
[  701.345581][T10998] name failslab, interval 1, probability 0, space 0, times 0
[  701.372756][T10998] CPU: 1 UID: 0 PID: 10998 Comm: syz.3.1145 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  701.383577][T10998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  701.393670][T10998] Call Trace:
[  701.396984][T10998]  <TASK>
[  701.399961][T10998]  dump_stack_lvl+0x241/0x360
[  701.404688][T10998]  ? __pfx_dump_stack_lvl+0x10/0x10
[  701.409934][T10998]  ? __pfx__printk+0x10/0x10
[  701.414592][T10998]  ? __kmalloc_cache_node_noprof+0x4c/0x300
[  701.420522][T10998]  ? __pfx___might_resched+0x10/0x10
[  701.425829][T10998]  should_fail_ex+0x3b0/0x4e0
[  701.430523][T10998]  should_failslab+0xac/0x100
[  701.435222][T10998]  __kmalloc_cache_node_noprof+0x74/0x300
[  701.440961][T10998]  ? __get_vm_area_node+0x113/0x270
[  701.446180][T10998]  __get_vm_area_node+0x113/0x270
[  701.451220][T10998]  __vmalloc_node_range_noprof+0x3bc/0x1460
[  701.457127][T10998]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.462688][T10998]  ? mark_lock+0x9a/0x350
[  701.467059][T10998]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  701.473566][T10998]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.479138][T10998]  __vmalloc_noprof+0x79/0x90
[  701.483843][T10998]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.489429][T10998]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.494820][T10998]  ? bpf_prog_alloc+0x28/0x1b0
[  701.499613][T10998]  bpf_prog_alloc+0x3a/0x1b0
[  701.504220][T10998]  bpf_prog_load+0x7f7/0x20f0
[  701.508921][T10998]  ? __pfx_bpf_prog_load+0x10/0x10
[  701.514045][T10998]  ? __pfx___might_resched+0x10/0x10
[  701.519357][T10998]  ? __might_fault+0xc6/0x120
[  701.524043][T10998]  ? bpf_lsm_bpf+0x9/0x10
[  701.528389][T10998]  ? security_bpf+0x87/0xb0
[  701.532915][T10998]  __sys_bpf+0x4ee/0x810
[  701.537178][T10998]  ? __pfx___sys_bpf+0x10/0x10
[  701.541964][T10998]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  701.547961][T10998]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  701.554311][T10998]  ? do_syscall_64+0x100/0x230
[  701.559089][T10998]  __x64_sys_bpf+0x7c/0x90
[  701.563518][T10998]  do_syscall_64+0xf3/0x230
[  701.568030][T10998]  ? clear_bhb_loop+0x35/0x90
[  701.572719][T10998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.578618][T10998] RIP: 0033:0x7f579c5799b9
[  701.583044][T10998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.602670][T10998] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  701.611108][T10998] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  701.619179][T10998] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  701.627157][T10998] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  701.635129][T10998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  701.643107][T10998] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  701.651107][T10998]  </TASK>
[  701.670837][T10704] veth1_macvtap: entered promiscuous mode
[  701.691487][T10998] syz.3.1145: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  701.726613][T10998] CPU: 0 UID: 0 PID: 10998 Comm: syz.3.1145 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  701.737451][T10998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  701.747545][T10998] Call Trace:
[  701.750829][T10998]  <TASK>
[  701.753765][T10998]  dump_stack_lvl+0x241/0x360
[  701.758446][T10998]  ? __pfx_dump_stack_lvl+0x10/0x10
[  701.763639][T10998]  ? __pfx__printk+0x10/0x10
[  701.768232][T10998]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  701.774650][T10998]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  701.781149][T10998]  warn_alloc+0x278/0x410
[  701.785486][T10998]  ? __pfx_warn_alloc+0x10/0x10
[  701.790339][T10998]  ? __get_vm_area_node+0x113/0x270
[  701.795567][T10998]  ? __get_vm_area_node+0x261/0x270
[  701.800769][T10998]  __vmalloc_node_range_noprof+0x3e0/0x1460
[  701.806690][T10998]  ? mark_lock+0x9a/0x350
[  701.811054][T10998]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  701.817392][T10998]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.822936][T10998]  __vmalloc_noprof+0x79/0x90
[  701.827629][T10998]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.833211][T10998]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  701.838599][T10998]  ? bpf_prog_alloc+0x28/0x1b0
[  701.843371][T10998]  bpf_prog_alloc+0x3a/0x1b0
[  701.847970][T10998]  bpf_prog_load+0x7f7/0x20f0
[  701.852662][T10998]  ? __pfx_bpf_prog_load+0x10/0x10
[  701.857773][T10998]  ? __pfx___might_resched+0x10/0x10
[  701.863073][T10998]  ? __might_fault+0xc6/0x120
[  701.867748][T10998]  ? bpf_lsm_bpf+0x9/0x10
[  701.872075][T10998]  ? security_bpf+0x87/0xb0
[  701.876584][T10998]  __sys_bpf+0x4ee/0x810
[  701.880829][T10998]  ? __pfx___sys_bpf+0x10/0x10
[  701.885605][T10998]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  701.891591][T10998]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  701.897921][T10998]  ? do_syscall_64+0x100/0x230
[  701.902690][T10998]  __x64_sys_bpf+0x7c/0x90
[  701.907108][T10998]  do_syscall_64+0xf3/0x230
[  701.911605][T10998]  ? clear_bhb_loop+0x35/0x90
[  701.916283][T10998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.922173][T10998] RIP: 0033:0x7f579c5799b9
[  701.926588][T10998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.946202][T10998] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  701.954640][T10998] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  701.962633][T10998] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  701.970599][T10998] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  701.978567][T10998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  701.986534][T10998] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  701.994517][T10998]  </TASK>
[  702.016440][T10998] Mem-Info:
[  702.019611][T10998] active_anon:259 inactive_anon:4350 isolated_anon:0
[  702.019611][T10998]  active_file:9177 inactive_file:41289 isolated_file:0
[  702.019611][T10998]  unevictable:768 dirty:56 writeback:0
[  702.019611][T10998]  slab_reclaimable:9330 slab_unreclaimable:96400
[  702.019611][T10998]  mapped:21886 shmem:1277 pagetables:625
[  702.019611][T10998]  sec_pagetables:0 bounce:0
[  702.019611][T10998]  kernel_misc_reclaimable:0
[  702.019611][T10998]  free:1380684 free_pcp:269 free_cma:0
[  702.074344][T10882] hsr_slave_0: entered promiscuous mode
[  702.090915][T10882] hsr_slave_1: entered promiscuous mode
[  702.099063][T10998] Node 0 active_anon:1036kB inactive_anon:17400kB active_file:36596kB inactive_file:165156kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:87508kB dirty:220kB writeback:0kB shmem:3572kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10244kB pagetables:2600kB sec_pagetables:0kB all_unreclaimable? no
[  702.147224][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  702.177376][T10998] Node 1 active_anon:0kB inactive_anon:0kB active_file:112kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  702.208443][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.213677][T10998] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  702.219361][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  702.262684][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.273371][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  702.288388][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.298542][T10998] lowmem_reserve[]: 0 2563
[  702.314921][T10704] batman_adv: batadv0: Interface activated: batadv_slave_0
[  702.379459][T10998]  2565 0 0
[  702.398502][T10998] Node 0 DMA32 free:1550948kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:1036kB inactive_anon:18496kB active_file:35096kB inactive_file:165096kB unevictable:1536kB writepending:256kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:1856kB local_pcp:1336kB free_cma:0kB
[  702.440104][T10998] lowmem_reserve[]: 0 0 1 0 0
[  702.466540][T10998] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1500kB inactive_file:64kB unevictable:0kB writepending:4kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:8kB free_cma:0kB
[  702.502392][T10998] lowmem_reserve[]: 0 0 0 0 0
[  702.510093][T10998] Node 1 Normal free:3949932kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:112kB inactive_file:0kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  702.566249][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  702.584020][T10998] lowmem_reserve[]: 0 0 0 0 0
[  702.595553][T10998] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  702.598169][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.628479][T10998] Node 0 DMA32: 1722*4kB (UM) 1846*8kB (UME) 863*16kB (UME) 743*32kB (UME) 279*64kB (UME) 42*128kB (UME) 27*256kB (UM) 13*512kB (UME) 8*1024kB (UME) 6*2048kB (M) 350*4096kB (M) = 1550120kB
[  702.651597][T10998] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  702.670342][T10998] Node 1 Normal: 9*4kB (UM) 7*8kB (UM) 7*16kB (UM) 11*32kB (UM) 7*64kB (UM) 3*128kB (UM) 4*256kB (UM) 4*512kB (UM) 1*1024kB (M) 4*2048kB (UM) 961*4096kB (M) = 3949932kB
[  702.694336][T10998] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  702.715731][T10998] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  702.728125][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  702.753443][T10998] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  702.770156][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.790258][T10704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  702.800968][T10998] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  702.811621][T10704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  702.828365][T10998] 52675 total pagecache pages
[  702.840708][T10704] batman_adv: batadv0: Interface activated: batadv_slave_1
[  702.852336][T10998] 0 pages in swap cache
[  702.859120][T10998] Free swap  = 124428kB
[  702.869509][T10998] Total swap = 124996kB
[  702.873917][T10998] 2097051 pages RAM
[  702.877849][T10998] 0 pages HighMem/MovableOnly
[  702.883404][T10998] 402198 pages reserved
[  702.887730][T10998] 0 pages cma reserved
[  702.912196][T10704] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  702.932828][T10704] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  702.956931][T10704] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  702.972157][T10704] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  704.664779][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  704.682108][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  704.778292][ T8212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  704.788528][ T8212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  705.128206][T10882] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  705.146829][T10882] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  705.165093][T10882] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  705.486267][T10882] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  705.554265][ T9076] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[  705.805638][ T9076] usb 3-1: config 0 has an invalid interface number: 52 but max is 0
[  705.826879][ T9076] usb 3-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  705.870485][ T9076] usb 3-1: config 0 has no interface number 0
[  705.911991][ T9076] usb 3-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  705.963082][ T9076] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  705.985841][T10882] 8021q: adding VLAN 0 to HW filter on device bond0
[  705.998317][ T9076] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  706.071319][T10882] 8021q: adding VLAN 0 to HW filter on device team0
[  706.121832][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.129091][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  706.208380][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.215664][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  706.584319][ T9076] usb 3-1: config 0 interface 52 has no altsetting 0
[  706.603597][ T9076] usb 3-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  706.613526][ T9076] usb 3-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  706.621990][ T9076] usb 3-1: Product: syz
[  706.626883][ T9076] usb 3-1: SerialNumber: syz
[  706.669684][ T9076] usb 3-1: config 0 descriptor??
[  706.897932][ T9076] input: syz (Stick) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.52/input/input13
[  707.108270][ T1181] usb 3-1: USB disconnect, device number 18
[  707.809470][T10882] 8021q: adding VLAN 0 to HW filter on device batadv0
[  707.903878][T11052] dvmrp0: entered allmulticast mode
[  707.913185][  T941] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  707.949100][T11052] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1156'.
[  708.108126][  T941] usb 1-1: New USB device found, idVendor=13d3, idProduct=3333, bcdDevice=84.ed
[  708.127227][  T941] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  708.134927][T10882] veth0_vlan: entered promiscuous mode
[  708.300390][T10882] veth1_vlan: entered promiscuous mode
[  708.306282][ T5281] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  708.741691][ T5281] usb 4-1: too many configurations: 65, using maximum allowed: 8
[  708.901160][  T941] usb 1-1: Product: syz
[  708.923927][  T941] usb 1-1: Manufacturer: syz
[  708.928657][  T941] usb 1-1: SerialNumber: syz
[  708.929456][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  708.981992][  T941] usb 1-1: config 0 descriptor??
[  709.017303][  T941] r8712u: register rtl8712_netdev_ops to netdev_ops
[  709.017891][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  709.054716][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  709.069131][T10882] veth0_macvtap: entered promiscuous mode
[  709.082333][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  709.099682][  T941] usb 1-1: r8712u: USB_SPEED_LOW with 0 endpoints
[  709.942515][ T5231] Bluetooth: hci5: command 0x0405 tx timeout
[  709.956215][T11051] dvmrp0: left allmulticast mode
[  709.971842][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  710.038101][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  710.093590][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  710.154546][ T5281] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  710.196647][ T5281] usb 4-1: New USB device found, idVendor=046d, idProduct=08b3, bcdDevice=ee.8d
[  710.215249][ T5281] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.221635][  T941] usb 1-1: r8712u: Boot from EFUSE: Autoload Failed
[  710.232382][T10882] veth1_macvtap: entered promiscuous mode
[  710.237607][ T5281] pwc: Logitech QuickCam Zoom USB webcam detected.
[  710.256986][ T5281] pwc: Warning: more than 1 configuration available.
[  710.263578][  T941] usb 1-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  710.323901][  T941] usb 1-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  710.351156][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  710.397568][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.438446][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  710.460309][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.477348][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  710.498393][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.509013][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  710.524302][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.539000][T10882] batman_adv: batadv0: Interface activated: batadv_slave_0
[  710.557128][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  710.569958][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.673840][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  710.793704][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.823269][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  710.835291][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.847587][T10882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  710.861336][T10882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  710.903705][T10882] batman_adv: batadv0: Interface activated: batadv_slave_1
[  711.025433][T10882] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  711.059330][T10882] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  711.092287][T10882] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  711.107482][T10882] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  711.194510][ T5281] pwc: Failed to set LED on/off time (-71)
[  711.211428][ T5281] pwc: send_video_command error -71
[  711.224039][ T5281] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  711.248283][ T2972] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.257326][ T5281] Philips webcam 4-1:250.0: probe with driver Philips webcam failed with error -71
[  711.300324][ T5281] usb 4-1: USB disconnect, device number 35
[  711.376611][ T2972] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.506419][ T2972] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.624173][ T5281] usb 1-1: USB disconnect, device number 26
[  711.669704][ T2972] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.818569][ T8212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  711.848130][ T8212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  711.981485][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.003596][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  713.043520][ T2972] bridge_slave_1: left allmulticast mode
[  713.073082][ T2972] bridge_slave_1: left promiscuous mode
[  713.078920][ T2972] bridge0: port 2(bridge_slave_1) entered disabled state
[  713.142460][ T2972] bridge_slave_0: left allmulticast mode
[  713.159452][ T2972] bridge_slave_0: left promiscuous mode
[  713.188087][ T2972] bridge0: port 1(bridge_slave_0) entered disabled state
[  713.429260][ T5233] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  713.454715][ T5233] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  713.463695][ T5233] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  713.472245][ T5233] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  713.480890][ T5233] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  713.494350][ T5233] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  713.835267][T11098] FAULT_INJECTION: forcing a failure.
[  713.835267][T11098] name failslab, interval 1, probability 0, space 0, times 0
[  713.848245][T11098] CPU: 0 UID: 0 PID: 11098 Comm: syz.3.1169 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  713.859078][T11098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  713.869160][T11098] Call Trace:
[  713.872461][T11098]  <TASK>
[  713.875414][T11098]  dump_stack_lvl+0x241/0x360
[  713.880130][T11098]  ? __pfx_dump_stack_lvl+0x10/0x10
[  713.885373][T11098]  ? __pfx__printk+0x10/0x10
[  713.890003][T11098]  ? fs_reclaim_acquire+0x93/0x140
[  713.895148][T11098]  ? __pfx___might_resched+0x10/0x10
[  713.900474][T11098]  should_fail_ex+0x3b0/0x4e0
[  713.905189][T11098]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  713.910943][T11098]  should_failslab+0xac/0x100
[  713.915652][T11098]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  713.921429][T11098]  __kmalloc_noprof+0xd8/0x400
[  713.926240][T11098]  ? kfree+0x4e/0x360
[  713.930260][T11098]  tomoyo_realpath_from_path+0xcf/0x5e0
[  713.935868][T11098]  tomoyo_path_number_perm+0x23a/0x880
[  713.941369][T11098]  ? tomoyo_path_number_perm+0x208/0x880
[  713.947036][T11098]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  713.953090][T11098]  ? __fget_files+0x29/0x470
[  713.957707][T11098]  ? __fget_files+0x3f6/0x470
[  713.962414][T11098]  ? __fget_files+0x29/0x470
[  713.967041][T11098]  security_file_ioctl+0x75/0xb0
[  713.972014][T11098]  __se_sys_ioctl+0x47/0x170
[  713.976641][T11098]  do_syscall_64+0xf3/0x230
[  713.981172][T11098]  ? clear_bhb_loop+0x35/0x90
[  713.985880][T11098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.991801][T11098] RIP: 0033:0x7f579c5799b9
[  713.996240][T11098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  714.015876][T11098] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  714.024502][T11098] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  714.032501][T11098] RDX: 00000000200014c0 RSI: 0000000080045530 RDI: 0000000000000003
[  714.040495][T11098] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  714.048489][T11098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  714.056490][T11098] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  714.064515][T11098]  </TASK>
[  714.816936][T11098] ERROR: Out of memory at tomoyo_realpath_from_path.
[  715.224898][    T8] kernel read not supported for file /usbmon0 (pid: 8 comm: kworker/0:0)
[  715.544343][ T5233] Bluetooth: hci0: command tx timeout
[  716.128614][ T2972] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  716.142058][ T2972] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  716.179162][ T2972] bond0 (unregistering): Released all slaves
[  716.360254][T11089] lo speed is unknown, defaulting to 1000
[  716.891975][T11117] netlink: 'syz.1.1173': attribute type 1 has an invalid length.
[  716.901197][T11117] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1173'.
[  717.624463][ T5233] Bluetooth: hci0: command tx timeout
[  719.213066][    T8] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  719.526811][    T8] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  719.702796][T11089] chnl_net:caif_netlink_parms(): no params data found
[  719.823462][ T5233] Bluetooth: hci0: command tx timeout
[  720.351953][    T8] usb 1-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  720.427294][    T8] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  720.488921][ T2972] hsr_slave_0: left promiscuous mode
[  720.515983][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  720.592671][ T2972] hsr_slave_1: left promiscuous mode
[  720.611111][ T2972] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  720.625124][    T8] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  720.667711][ T2972] batman_adv: batadv0: Removing interface: batadv_slave_0
[  720.704454][ T2972] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  720.713798][ T2972] batman_adv: batadv0: Removing interface: batadv_slave_1
[  720.779784][    T8] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -2
[  720.801817][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  720.847579][ T2972] veth1_macvtap: left promiscuous mode
[  720.876942][ T2972] veth0_macvtap: left promiscuous mode
[  720.900685][    T8] usb 1-1: USB disconnect, device number 27
[  720.920052][ T2972] veth1_vlan: left promiscuous mode
[  720.940503][ T2972] veth0_vlan: left promiscuous mode
[  721.541642][T11157] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1183'.
[  721.737831][ T2972] team0 (unregistering): Port device team_slave_1 removed
[  721.788629][ T2972] team0 (unregistering): Port device team_slave_0 removed
[  721.825543][ T5300] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  721.874730][ T5233] Bluetooth: hci0: command tx timeout
[  722.013111][ T5300] usb 1-1: Using ep0 maxpacket: 16
[  722.022502][ T5300] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 8
[  722.040802][ T5300] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  722.050614][ T5300] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  722.065493][ T5300] usb 1-1: Product: syz
[  722.069784][ T5300] usb 1-1: Manufacturer: syz
[  722.083553][ T5300] usb 1-1: SerialNumber: syz
[  722.093052][ T5300] usb 1-1: config 0 descriptor??
[  722.118169][ T5300] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  722.130203][ T5300] usb 1-1: Detected FT232R
[  722.331098][T11147] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1180'.
[  722.456961][T11157] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  722.534903][T11157] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  722.751814][ T5300] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  722.759710][ T5300] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  722.767714][ T5300] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  722.779665][T11159] netlink: 'syz.1.1184': attribute type 1 has an invalid length.
[  722.787543][T11159] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1184'.
[  722.799476][ T5300] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  722.815641][ T5300] usb 1-1: USB disconnect, device number 28
[  722.838531][T11089] bridge0: port 1(bridge_slave_0) entered blocking state
[  723.018239][T11089] bridge0: port 1(bridge_slave_0) entered disabled state
[  723.074104][ T5300] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  723.424024][ T5300] ftdi_sio 1-1:0.0: device disconnected
[  723.650183][T11089] bridge_slave_0: entered allmulticast mode
[  723.691412][T11089] bridge_slave_0: entered promiscuous mode
[  723.711545][T11089] bridge0: port 2(bridge_slave_1) entered blocking state
[  723.746141][T11089] bridge0: port 2(bridge_slave_1) entered disabled state
[  723.756018][T11089] bridge_slave_1: entered allmulticast mode
[  723.773117][T11089] bridge_slave_1: entered promiscuous mode
[  724.805808][T11089] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  724.832404][T11089] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  726.035435][T11089] team0: Port device team_slave_0 added
[  726.084007][T11089] team0: Port device team_slave_1 added
[  726.450401][T11089] batman_adv: batadv0: Adding interface: batadv_slave_0
[  726.483984][T11089] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  726.644806][T11089] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  726.714274][T11089] batman_adv: batadv0: Adding interface: batadv_slave_1
[  726.733072][ T5275] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  726.748952][T11089] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  726.892651][T11089] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  726.984725][ T5275] usb 2-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  727.014557][ T5275] usb 2-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  727.065933][ T5275] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  727.118690][ T5275] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  727.170208][ T5275] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  727.321315][ T5275] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -2
[  727.398608][ T5275] usb 2-1: USB disconnect, device number 22
[  727.480895][T11089] hsr_slave_0: entered promiscuous mode
[  727.543466][T11089] hsr_slave_1: entered promiscuous mode
[  727.562683][T11089] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  727.579905][T11089] Cannot create hsr debugfs directory
[  727.806479][T11202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1194'.
[  728.603272][T11210] binder: BINDER_SET_CONTEXT_MGR already set
[  728.643653][T11210] binder: 11208:11210 ioctl 4018620d 20000100 returned -16
[  728.690457][T11207] netlink: 'syz.3.1196': attribute type 1 has an invalid length.
[  728.691795][T11211] binder: BINDER_SET_CONTEXT_MGR already set
[  728.698330][T11207] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1196'.
[  728.729340][T11211] binder: 11208:11211 ioctl 4018620d 20000040 returned -16
[  728.916057][T11211] tipc: Failed to remove unknown binding: 66,1,1/0:2088485052/2088485055
[  730.920081][T11237] virtio-fs: tag <(null)> not found
[  730.968609][T11089] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  731.666966][T11089] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  731.683056][ T5281] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  731.737708][T11089] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  731.804409][T11089] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  731.856079][T11242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1204'.
[  731.876018][ T5281] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  731.897776][ T5281] usb 4-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  731.979626][ T5281] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  732.062332][ T5281] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.147479][ T5281] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  732.401282][ T5281] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -2
[  732.415938][T11089] 8021q: adding VLAN 0 to HW filter on device bond0
[  732.497954][ T5281] usb 4-1: USB disconnect, device number 36
[  732.520301][T11089] 8021q: adding VLAN 0 to HW filter on device team0
[  732.614428][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.621605][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  732.677343][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  732.684567][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  733.404469][T11254] netlink: 'syz.3.1208': attribute type 1 has an invalid length.
[  733.412254][T11254] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1208'.
[  733.817028][T11258] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1207'.
[  733.826226][T11258] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1207'.
[  734.798791][T11089] 8021q: adding VLAN 0 to HW filter on device batadv0
[  734.842317][T11262] RDS: rds_bind could not find a transport for ::a00:6300:1800:0:ffff:ffff, load rds_tcp or rds_rdma?
[  737.485217][T11290] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1214'.
[  737.612182][T11089] veth0_vlan: entered promiscuous mode
[  737.640558][T11089] veth1_vlan: entered promiscuous mode
[  737.651011][T11293] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1215'.
[  737.717155][T11089] veth0_macvtap: entered promiscuous mode
[  737.743976][T11089] veth1_macvtap: entered promiscuous mode
[  737.953952][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.981364][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  738.773226][ T5281] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  738.789058][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  738.847036][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  738.891837][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  738.931457][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  738.970737][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  738.990470][ T5281] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  739.010550][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.033257][ T5281] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  739.091170][T11089] batman_adv: batadv0: Interface activated: batadv_slave_0
[  739.111490][ T5281] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  739.148682][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.161867][ T5281] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.213036][ T5281] usb 4-1: config 0 descriptor??
[  739.219024][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.264269][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.281942][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.323347][    T8] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  739.335445][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.426200][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.479876][T11089] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.555842][    T8] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  739.582639][    T8] usb 3-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  739.582999][T11089] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.697834][T11089] batman_adv: batadv0: Interface activated: batadv_slave_1
[  739.711574][    T8] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  739.763397][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.807385][T11089] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  739.838011][T11089] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  739.895239][ T5281] usb 4-1: language id specifier not provided by device, defaulting to English
[  739.897454][    T8] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  739.930784][T11089] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  739.947308][T11089] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  740.131725][    T8] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -2
[  740.149514][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  740.158349][    T8] usb 3-1: USB disconnect, device number 19
[  740.395483][T11293] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  740.407197][T11293] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  740.447701][ T8225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  740.504518][ T8225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  740.866972][ T8207] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  740.890614][ T8207] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  740.946981][T11315] bridge0: port 2(bridge_slave_1) entered disabled state
[  740.954674][T11315] bridge0: port 1(bridge_slave_0) entered disabled state
[  740.963516][T11315] bridge0: entered allmulticast mode
[  741.026022][T11315] bridge0: port 2(bridge_slave_1) entered blocking state
[  741.033355][T11315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  741.040836][T11315] bridge0: port 1(bridge_slave_0) entered blocking state
[  741.048034][T11315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  741.055795][T11315] bridge0: entered promiscuous mode
[  742.596212][ T5281] uclogic 0003:256C:006D.0007: failed retrieving Huion firmware version: -71
[  742.670453][ T5281] uclogic 0003:256C:006D.0007: failed probing parameters: -71
[  742.695484][ T5281] uclogic 0003:256C:006D.0007: probe with driver uclogic failed with error -71
[  742.764212][ T5281] usb 4-1: USB disconnect, device number 37
[  744.729612][T11351] netlink: 'syz.0.1227': attribute type 21 has an invalid length.
[  745.753669][T11357] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1228'.
[  746.536898][T11363] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1229'.
[  746.546123][T11363] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1229'.
[  747.729263][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  747.735777][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  749.014525][ T1181] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  750.263075][ T5281] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  750.937553][ T5281] usb 2-1: Using ep0 maxpacket: 16
[  750.954071][ T5281] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  752.509579][ T5281] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  752.530441][ T5281] usb 2-1: New USB device found, idVendor=6666, idProduct=8802, bcdDevice= 0.00
[  752.550867][ T5281] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  752.890743][ T5281] usb 2-1: config 0 descriptor??
[  752.905922][ T5281] usb 2-1: can't set config #0, error -71
[  752.925441][ T5281] usb 2-1: USB disconnect, device number 23
[  753.290796][T11406] tc_dump_action: action bad kind
[  753.508457][T11404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1240'.
[  755.576124][ T5281] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  756.528403][ T5281] usb 2-1: Using ep0 maxpacket: 32
[  756.544545][ T5281] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  756.568953][ T5281] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  756.593454][ T1181] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  756.595192][ T5281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  756.635486][ T5281] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  756.668646][ T5281] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  756.678863][ T5281] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  756.707552][ T5281] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  756.717665][ T5281] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.749453][ T5281] usb 2-1: config 0 descriptor??
[  756.815890][ T1181] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  756.836622][ T1181] usb 5-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  756.865389][ T1181] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  756.882063][ T1181] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  757.229773][ T1181] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  757.784938][ T5281] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 24 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  757.839744][ T1181] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -2
[  757.888754][ T5281] usb 2-1: USB disconnect, device number 24
[  757.906066][ T1181] usb 5-1: USB disconnect, device number 30
[  757.917462][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  758.055573][ T5281] usblp0: removed
[  758.200448][T11455] FAULT_INJECTION: forcing a failure.
[  758.200448][T11455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  758.243086][T11455] CPU: 1 UID: 0 PID: 11455 Comm: syz.3.1254 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  758.253921][T11455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  758.264005][T11455] Call Trace:
[  758.267298][T11455]  <TASK>
[  758.270243][T11455]  dump_stack_lvl+0x241/0x360
[  758.274939][T11455]  ? __pfx_dump_stack_lvl+0x10/0x10
[  758.280148][T11455]  ? __pfx__printk+0x10/0x10
[  758.284776][T11455]  ? __pfx_lock_release+0x10/0x10
[  758.289818][T11455]  should_fail_ex+0x3b0/0x4e0
[  758.294508][T11455]  strncpy_from_user+0x36/0x2e0
[  758.300059][T11455]  ? kmem_cache_alloc_noprof+0x185/0x2a0
[  758.305708][T11455]  getname_flags+0xf1/0x540
[  758.310227][T11455]  user_path_at+0x24/0x60
[  758.314569][T11455]  __se_sys_mount+0x297/0x3c0
[  758.319253][T11455]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  758.325333][T11455]  ? __pfx___se_sys_mount+0x10/0x10
[  758.330541][T11455]  ? do_syscall_64+0x100/0x230
[  758.335319][T11455]  ? __x64_sys_mount+0x20/0xc0
[  758.340091][T11455]  do_syscall_64+0xf3/0x230
[  758.344605][T11455]  ? clear_bhb_loop+0x35/0x90
[  758.349295][T11455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.355200][T11455] RIP: 0033:0x7f579c5799b9
[  758.359618][T11455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.379249][T11455] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  758.387682][T11455] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  758.395663][T11455] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000000
[  758.403645][T11455] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  758.411624][T11455] R10: 000000000089101a R11: 0000000000000246 R12: 0000000000000001
[  758.419601][T11455] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  758.427597][T11455]  </TASK>
[  758.578771][T11459] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1255'.
[  759.043327][T10174] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  759.677135][T10174] usb 3-1: Using ep0 maxpacket: 32
[  759.708202][T10174] usb 3-1: config index 0 descriptor too short (expected 26, got 18)
[  759.993783][T11478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1258'.
[  760.047101][T10174] usb 3-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  760.279631][T10174] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.388718][T10174] usb 3-1: config 0 descriptor??
[  760.429004][T10174] as10x_usb: device has been detected
[  760.450253][T10174] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  760.584037][T10174] usb 3-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  760.625906][T11461] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  760.673530][ T5281] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  760.683609][T11461] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  760.729137][T10174] as10x_usb: error during firmware upload part1
[  760.746910][T10174] Registered device nBox DVB-T Dongle
[  760.819564][ T9076] usb 3-1: USB disconnect, device number 21
[  760.886780][ T5281] usb 5-1: config 0 has no interfaces?
[  760.900822][ T5281] usb 5-1: New USB device found, idVendor=eb1a, idProduct=e350, bcdDevice=f8.fa
[  760.914076][ T9076] Unregistered device nBox DVB-T Dongle
[  760.922584][ T9076] as10x_usb: device has been disconnected
[  760.948506][ T5281] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.973113][  T941] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  760.994401][ T5281] usb 5-1: config 0 descriptor??
[  761.191370][  T941] usb 2-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  761.213429][  T941] usb 2-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  761.228677][  T941] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  761.239485][  T941] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.257052][ T9076] usb 5-1: USB disconnect, device number 31
[  761.272838][  T941] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  761.341550][  T941] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -2
[  761.343738][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  761.486298][  T941] usb 2-1: USB disconnect, device number 25
[  762.506024][T11501] FAULT_INJECTION: forcing a failure.
[  762.506024][T11501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  762.530135][T11496] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  762.621142][T11501] CPU: 1 UID: 0 PID: 11501 Comm: syz.2.1266 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  762.632060][T11501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  762.642124][T11501] Call Trace:
[  762.645408][T11501]  <TASK>
[  762.648348][T11501]  dump_stack_lvl+0x241/0x360
[  762.653045][T11501]  ? __pfx_dump_stack_lvl+0x10/0x10
[  762.658251][T11501]  ? __pfx__printk+0x10/0x10
[  762.662856][T11501]  ? __pfx_lock_release+0x10/0x10
[  762.667982][T11501]  ? vfs_write+0x7c4/0xc90
[  762.672425][T11501]  should_fail_ex+0x3b0/0x4e0
[  762.677120][T11501]  _copy_from_user+0x2f/0xe0
[  762.681738][T11501]  __sys_bpf+0x1a4/0x810
[  762.685997][T11501]  ? __pfx___sys_bpf+0x10/0x10
[  762.690790][T11501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  762.696793][T11501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  762.703135][T11501]  ? do_syscall_64+0x100/0x230
[  762.707910][T11501]  __x64_sys_bpf+0x7c/0x90
[  762.712338][T11501]  do_syscall_64+0xf3/0x230
[  762.716849][T11501]  ? clear_bhb_loop+0x35/0x90
[  762.721543][T11501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.727444][T11501] RIP: 0033:0x7f6ee8d799b9
[  762.731871][T11501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.751486][T11501] RSP: 002b:00007f6ee9c2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  762.759925][T11501] RAX: ffffffffffffffda RBX: 00007f6ee8f15f80 RCX: 00007f6ee8d799b9
[  762.767913][T11501] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[  762.775894][T11501] RBP: 00007f6ee9c2b090 R08: 0000000000000000 R09: 0000000000000000
[  762.783870][T11501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  762.791849][T11501] R13: 0000000000000000 R14: 00007f6ee8f15f80 R15: 00007ffc9d0b6e08
[  762.799855][T11501]  </TASK>
[  762.862682][T11503] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1267'.
[  763.413143][ T9076] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  763.426790][T11515] FAULT_INJECTION: forcing a failure.
[  763.426790][T11515] name failslab, interval 1, probability 0, space 0, times 0
[  763.451112][T11515] CPU: 1 UID: 0 PID: 11515 Comm: syz.1.1271 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  763.461925][T11515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  763.472001][T11515] Call Trace:
[  763.475316][T11515]  <TASK>
[  763.478276][T11515]  dump_stack_lvl+0x241/0x360
[  763.483005][T11515]  ? __pfx_dump_stack_lvl+0x10/0x10
[  763.488247][T11515]  ? __pfx__printk+0x10/0x10
[  763.492887][T11515]  ? fs_reclaim_acquire+0x93/0x140
[  763.498043][T11515]  ? __pfx___might_resched+0x10/0x10
[  763.503353][T11515]  should_fail_ex+0x3b0/0x4e0
[  763.508088][T11515]  ? tomoyo_encode+0x26f/0x540
[  763.512898][T11515]  should_failslab+0xac/0x100
[  763.517592][T11515]  ? tomoyo_encode+0x26f/0x540
[  763.522362][T11515]  __kmalloc_noprof+0xd8/0x400
[  763.527142][T11515]  tomoyo_encode+0x26f/0x540
[  763.531754][T11515]  tomoyo_realpath_from_path+0x59e/0x5e0
[  763.537443][T11515]  tomoyo_path_number_perm+0x23a/0x880
[  763.542918][T11515]  ? tomoyo_path_number_perm+0x208/0x880
[  763.548579][T11515]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  763.554714][T11515]  ? __fget_files+0x29/0x470
[  763.559357][T11515]  ? __fget_files+0x3f6/0x470
[  763.564074][T11515]  ? __fget_files+0x29/0x470
[  763.568709][T11515]  security_file_ioctl+0x75/0xb0
[  763.573690][T11515]  __se_sys_ioctl+0x47/0x170
[  763.578291][T11515]  do_syscall_64+0xf3/0x230
[  763.582801][T11515]  ? clear_bhb_loop+0x35/0x90
[  763.587492][T11515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.593401][T11515] RIP: 0033:0x7f2d03b799b9
[  763.597832][T11515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  763.617439][T11515] RSP: 002b:00007f2d048f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  763.625864][T11515] RAX: ffffffffffffffda RBX: 00007f2d03d16058 RCX: 00007f2d03b799b9
[  763.633839][T11515] RDX: 0000000020000200 RSI: 0000000000005412 RDI: 0000000000000003
[  763.641812][T11515] RBP: 00007f2d048f3090 R08: 0000000000000000 R09: 0000000000000000
[  763.649787][T11515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  763.657758][T11515] R13: 0000000000000001 R14: 00007f2d03d16058 R15: 00007ffcaa226048
[  763.665751][T11515]  </TASK>
[  763.814834][T11518] vxfs: WRONG superblock magic 00000000 at 1
[  763.823216][T11518] vxfs: WRONG superblock magic 00000000 at 8
[  763.829336][T11518] vxfs: can't find superblock.
[  764.483365][T11514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1270'.
[  764.502334][T11515] ERROR: Out of memory at tomoyo_realpath_from_path.
[  764.548575][ T9076] usb 1-1: config 0 has no interfaces?
[  764.558676][ T9076] usb 1-1: New USB device found, idVendor=eb1a, idProduct=e350, bcdDevice=f8.fa
[  764.589484][ T9076] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  764.620946][ T9076] usb 1-1: config 0 descriptor??
[  764.658597][T11520] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1273'.
[  764.930687][ T9076] usb 1-1: USB disconnect, device number 29
[  767.542536][T11541] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 262161 (only 8 groups)
[  768.391173][T11556] FAULT_INJECTION: forcing a failure.
[  768.391173][T11556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  768.406665][T11556] CPU: 1 UID: 0 PID: 11556 Comm: syz.3.1282 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  768.417568][T11556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  768.427735][T11556] Call Trace:
[  768.431039][T11556]  <TASK>
[  768.433975][T11556]  dump_stack_lvl+0x241/0x360
[  768.438668][T11556]  ? __pfx_dump_stack_lvl+0x10/0x10
[  768.443891][T11556]  ? __pfx__printk+0x10/0x10
[  768.448495][T11556]  ? __pfx_lock_release+0x10/0x10
[  768.453536][T11556]  should_fail_ex+0x3b0/0x4e0
[  768.458221][T11556]  _copy_from_iter+0x1f6/0x1960
[  768.463090][T11556]  ? __virt_addr_valid+0x183/0x530
[  768.468217][T11556]  ? __pfx_lock_release+0x10/0x10
[  768.473289][T11556]  ? __pfx__copy_from_iter+0x10/0x10
[  768.478627][T11556]  ? __virt_addr_valid+0x183/0x530
[  768.483776][T11556]  ? __virt_addr_valid+0x183/0x530
[  768.488932][T11556]  ? __virt_addr_valid+0x45f/0x530
[  768.494074][T11556]  ? __check_object_size+0x49c/0x900
[  768.499370][T11556]  netlink_sendmsg+0x73d/0xcb0
[  768.504169][T11556]  ? __pfx_netlink_sendmsg+0x10/0x10
[  768.509491][T11556]  ? __import_iovec+0x536/0x820
[  768.514354][T11556]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  768.519668][T11556]  ? security_socket_sendmsg+0x87/0xb0
[  768.525165][T11556]  ? __pfx_netlink_sendmsg+0x10/0x10
[  768.530453][T11556]  __sock_sendmsg+0x221/0x270
[  768.535144][T11556]  ____sys_sendmsg+0x525/0x7d0
[  768.539937][T11556]  ? __pfx_____sys_sendmsg+0x10/0x10
[  768.545251][T11556]  __sys_sendmsg+0x2b0/0x3a0
[  768.549866][T11556]  ? __pfx___sys_sendmsg+0x10/0x10
[  768.554986][T11556]  ? vfs_write+0x7c4/0xc90
[  768.559435][T11556]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  768.565771][T11556]  ? do_syscall_64+0x100/0x230
[  768.570537][T11556]  ? do_syscall_64+0xb6/0x230
[  768.575220][T11556]  do_syscall_64+0xf3/0x230
[  768.579723][T11556]  ? clear_bhb_loop+0x35/0x90
[  768.584436][T11556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  768.590340][T11556] RIP: 0033:0x7f579c5799b9
[  768.594760][T11556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  768.614421][T11556] RSP: 002b:00007f579d3be038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  768.622834][T11556] RAX: ffffffffffffffda RBX: 00007f579c715f80 RCX: 00007f579c5799b9
[  768.630801][T11556] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000003
[  768.638769][T11556] RBP: 00007f579d3be090 R08: 0000000000000000 R09: 0000000000000000
[  768.646738][T11556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  768.654725][T11556] R13: 0000000000000000 R14: 00007f579c715f80 R15: 00007ffe69666ea8
[  768.662707][T11556]  </TASK>
[  769.006585][T11567] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1287'.
[  769.096877][T11570] netem: incorrect gi model size
[  769.102572][T11570] netem: change failed
[  769.103182][  T941] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  769.813952][T11574] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  770.250303][  T941] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  770.346365][  T941] usb 3-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  770.401908][  T941] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  770.443156][  T941] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  770.471693][  T941] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  770.563142][ T9076] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  770.603582][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  770.614705][  T941] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -2
[  770.691482][  T941] usb 3-1: USB disconnect, device number 22
[  770.783105][ T5281] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  770.823146][ T9076] usb 2-1: Using ep0 maxpacket: 16
[  770.844844][ T9076] usb 2-1: config 8 has an invalid interface number: 179 but max is 0
[  770.870060][ T9076] usb 2-1: config 8 has no interface number 0
[  770.891480][ T9076] usb 2-1: config 8 interface 179 altsetting 0 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  770.921334][ T9076] usb 2-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  770.943210][ T9076] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  770.968658][T11590] netlink: 'syz.4.1294': attribute type 10 has an invalid length.
[  770.976962][ T9076] usb 2-1: Product: syz
[  770.981157][ T9076] usb 2-1: Manufacturer: syz
[  770.985912][ T5281] usb 1-1: Using ep0 maxpacket: 16
[  770.998102][ T9076] usb 2-1: SerialNumber: syz
[  771.007722][ T5281] usb 1-1: config 8 has an invalid interface number: 179 but max is 0
[  771.024480][ T9076] rndis_host 2-1:8.179: skipping garbage
[  771.033327][ T5281] usb 1-1: config 8 has no interface number 0
[  771.039479][ T5281] usb 1-1: config 8 interface 179 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  771.056408][ T9076] usb 2-1: bad CDC descriptors
[  771.108695][ T5281] usb 1-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  771.128135][ T5281] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.147442][ T5281] usb 1-1: Product: syz
[  771.162042][ T5281] usb 1-1: Manufacturer: syz
[  771.172439][ T5281] usb 1-1: SerialNumber: syz
[  771.203531][ T5281] usb 1-1: bad CDC descriptors
[  771.234331][ T9076] usb 2-1: USB disconnect, device number 26
[  771.424406][  T941] usb 1-1: USB disconnect, device number 30
[  772.165729][T11607] dummy0: entered promiscuous mode
[  772.171871][T11607] vlan2: entered promiscuous mode
[  772.213260][T11607] vlan2: entered allmulticast mode
[  772.233902][T11607] dummy0: entered allmulticast mode
[  772.255565][T11607] dummy0: left allmulticast mode
[  772.272528][T11607] dummy0: left promiscuous mode
[  772.461325][T11613] lo speed is unknown, defaulting to 1000
[  773.062988][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  774.399728][T11627] usb usb9: usbfs: process 11627 (syz.4.1308) did not claim interface 0 before use
[  774.409625][T11627] usb usb9: selecting invalid altsetting 21783
[  775.263719][ T9138] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  775.523089][ T9138] usb 2-1: Using ep0 maxpacket: 8
[  775.535785][ T9138] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  775.553481][ T9138] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  775.562492][ T9138] usb 2-1: config 1 has no interface number 1
[  775.583585][ T9138] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  775.613005][ T9138] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  775.646766][ T9138] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  775.657876][ T9138] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  775.685671][ T9138] usb 2-1: Product: syz
[  775.690009][ T9138] usb 2-1: Manufacturer: syz
[  775.695309][ T9138] usb 2-1: SerialNumber: syz
[  775.929799][ T9138] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor
[  775.961491][ T9138] usb 2-1: 2:1 : unsupported format bits 0x80
[  776.074588][ T9138] usb 2-1: USB disconnect, device number 27
[  776.142736][T11007] udevd[11007]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  776.328802][   T29] audit: type=1326 audit(1723813711.290:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11661 comm="syz.2.1323" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6ee8d799b9 code=0x0
[  777.518273][T11691] nfs4: Unexpected value for 'rdma'
[  778.873743][   T29] audit: type=1326 audit(1723813713.830:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11686 comm="syz.2.1335" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6ee8d799b9 code=0x0
[  778.884068][T11711] sg_write: data in/out 54/14 bytes for SCSI command 0x0-- guessing data in;
[  778.884068][T11711]    program syz.1.1345 not setting count and/or reply_len properly
[  779.754333][T11729] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  784.328449][T11767] lo speed is unknown, defaulting to 1000
[  787.987064][   T29] audit: type=1326 audit(1723813722.810:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  788.015389][   T29] audit: type=1326 audit(1723813722.810:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  788.118023][T11809] netlink: 'syz.0.1376': attribute type 9 has an invalid length.
[  788.126432][T11809] netlink: 'syz.0.1376': attribute type 7 has an invalid length.
[  788.143231][T11809] netlink: 'syz.0.1376': attribute type 8 has an invalid length.
[  790.260679][   T29] audit: type=1326 audit(1723813722.820:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.606909][   T29] audit: type=1326 audit(1723813722.820:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.644225][   T29] audit: type=1326 audit(1723813722.820:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.703203][   T29] audit: type=1326 audit(1723813722.820:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.791824][   T29] audit: type=1326 audit(1723813722.820:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.879390][   T29] audit: type=1326 audit(1723813722.830:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  790.971861][   T29] audit: type=1326 audit(1723813722.830:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  791.112250][   T29] audit: type=1326 audit(1723813722.830:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11807 comm="syz.0.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f97d799b9 code=0x7ffc0000
[  795.733500][T11869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1394'.
[  797.555198][T11897] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1403'.
[  799.296552][T11909] netlink: 448 bytes leftover after parsing attributes in process `syz.1.1403'.
[  799.308188][T11909] unsupported nla_type 24929
[  799.396831][ T5275] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  799.464585][ T5278] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  799.773121][ T5278] usb 5-1: Using ep0 maxpacket: 32
[  799.790712][ T5278] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  799.790760][ T5278] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  799.790805][ T5278] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  799.790834][ T5278] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  799.858746][ T5278] usb 5-1: config 0 descriptor??
[  800.010883][ T5275] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  800.049468][ T5275] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  800.062621][ T5275] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  800.072125][ T5275] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  800.649048][ T5275] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  800.669332][ T5275] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  800.681347][ T5275] usb 1-1: Product: syz
[  800.685905][ T5275] usb 1-1: Manufacturer: syz
[  800.719256][ T5275] cdc_wdm 1-1:1.0: skipping garbage
[  800.733026][ T5275] cdc_wdm 1-1:1.0: skipping garbage
[  800.752272][ T5275] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  800.771239][ T5275] cdc_wdm 1-1:1.0: Unknown control protocol
[  800.916785][ T5231] Bluetooth: hci1: command 0x0406 tx timeout
[  801.251495][ T5278] ft260 0003:0403:6030.0008: unknown main item tag 0x0
[  801.640263][ T5278] ft260 0003:0403:6030.0008: chip code: 5e81 abf2
[  801.951989][ T5278] ft260 0003:0403:6030.0008: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.4-1/input0
[  802.142089][ T5278] ft260 0003:0403:6030.0008: failed to retrieve status: -71, no wakeup
[  802.169207][ T5278] ft260 0003:0403:6030.0008: failed to retrieve status: -71
[  802.188990][ T5278] ft260 0003:0403:6030.0008: failed to reset I2C controller: -71
[  802.276386][ T5278] usb 5-1: USB disconnect, device number 32
[  803.079089][ T5275] usb 1-1: USB disconnect, device number 31
[  803.948349][T11956] xt_CT: No such helper "netbios-ns"
[  804.217900][T11965] netlink: 'syz.3.1422': attribute type 1 has an invalid length.
[  804.229570][T11965] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1422'.
[  804.239688][T11965] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1422'.
[  804.463055][ T9076] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  804.665018][ T9076] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  804.682965][ T9076] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  804.693439][ T9076] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  804.702676][ T9076] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  804.728043][ T9076] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  804.733263][ T5278] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  804.743277][ T9076] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  804.752728][ T9076] usb 3-1: Product: syz
[  804.773021][ T9076] usb 3-1: Manufacturer: syz
[  804.783014][ T9076] cdc_wdm 3-1:1.0: skipping garbage
[  804.788281][ T9076] cdc_wdm 3-1:1.0: skipping garbage
[  804.813374][ T9076] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  804.819375][ T9076] cdc_wdm 3-1:1.0: Unknown control protocol
[  804.933032][ T5278] usb 1-1: Using ep0 maxpacket: 16
[  804.940792][ T5278] usb 1-1: config 8 has an invalid interface number: 179 but max is 0
[  804.952558][ T5278] usb 1-1: config 8 has no interface number 0
[  804.964399][ T5278] usb 1-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  804.981060][ T5278] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  804.991662][ T5278] usb 1-1: Product: syz
[  805.000565][ T5278] usb 1-1: Manufacturer: syz
[  805.005646][ T5278] usb 1-1: SerialNumber: syz
[  805.018459][ T5278] usb 1-1: bad CDC descriptors
[  805.293794][T11990] lo speed is unknown, defaulting to 1000
[  805.314062][ T1181] usb 1-1: USB disconnect, device number 32
[  805.599705][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.606577][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.612881][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.619508][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.625857][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.632491][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.638831][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.645448][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.651751][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.658370][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.664680][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.671297][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.677600][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.684216][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.690574][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.697206][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.703555][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.710198][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.716501][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  805.723134][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  805.739370][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  805.748272][ T5275] usb 3-1: USB disconnect, device number 23
[  807.453136][ T5275] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  807.653331][ T5275] usb 2-1: Using ep0 maxpacket: 16
[  807.678789][ T5275] usb 2-1: config 8 has an invalid interface number: 179 but max is 0
[  807.704615][ T5275] usb 2-1: config 8 has no interface number 0
[  807.730287][ T5275] usb 2-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  807.742096][ T5275] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  807.762807][ T5275] usb 2-1: Product: syz
[  807.783300][ T5275] usb 2-1: Manufacturer: syz
[  807.788136][ T5275] usb 2-1: SerialNumber: syz
[  807.805843][ T5275] usb 2-1: bad CDC descriptors
[  807.993284][T12045] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1457'.
[  808.013347][ T5275] usb 2-1: USB disconnect, device number 28
[  808.318215][T12050] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1459'.
[  808.495672][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  808.495691][   T29] audit: type=1326 audit(1723813743.460:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.527780][   T29] audit: type=1326 audit(1723813743.460:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.564796][   T29] audit: type=1326 audit(1723813743.460:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.590498][   T29] audit: type=1326 audit(1723813743.460:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.613575][   T29] audit: type=1326 audit(1723813743.460:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.639441][   T29] audit: type=1326 audit(1723813743.460:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.685250][   T29] audit: type=1326 audit(1723813743.460:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.713325][   T29] audit: type=1326 audit(1723813743.460:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.742286][   T29] audit: type=1326 audit(1723813743.460:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  808.813162][   T29] audit: type=1326 audit(1723813743.460:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12039 comm="syz.4.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc0b69799b9 code=0x7ffc0000
[  809.067977][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  809.073409][T12074] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1468'.
[  809.074510][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  809.433813][T12089] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1477'.
[  809.503420][ T5278] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  809.514380][T12093] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1479'.
[  809.541226][T12093] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1479'.
[  809.584412][ T9138] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  809.593652][T12093] bridge_slave_1: left allmulticast mode
[  809.615567][T12093] bridge_slave_1: left promiscuous mode
[  809.623379][T12093] bridge0: port 2(bridge_slave_1) entered disabled state
[  809.703273][ T5278] usb 3-1: Using ep0 maxpacket: 16
[  809.712878][T12101] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1482'.
[  809.717587][ T5278] usb 3-1: config 0 has no interfaces?
[  809.735963][ T5278] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  809.745721][ T5278] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  809.764002][ T5278] usb 3-1: Product: syz
[  809.768297][ T5278] usb 3-1: Manufacturer: syz
[  809.776781][ T5278] usb 3-1: SerialNumber: syz
[  809.793179][ T9138] usb 5-1: Using ep0 maxpacket: 16
[  809.793732][ T5278] r8152-cfgselector 3-1: Unknown version 0x0000
[  809.807033][ T9138] usb 5-1: config 8 has an invalid interface number: 179 but max is 0
[  809.813553][ T5278] r8152-cfgselector 3-1: config 0 descriptor??
[  809.849452][ T9138] usb 5-1: config 8 has no interface number 0
[  809.879077][ T9138] usb 5-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  809.888604][ T9138] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  809.896837][ T9138] usb 5-1: Product: syz
[  809.901112][ T9138] usb 5-1: Manufacturer: syz
[  809.905904][ T9138] usb 5-1: SerialNumber: syz
[  809.918271][ T9138] usb 5-1: bad CDC descriptors
[  810.040542][T12077] batadv0: entered promiscuous mode
[  810.046595][T12077] macvlan2: entered allmulticast mode
[  810.052079][T12077] batadv0: entered allmulticast mode
[  810.058770][T12077] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  810.067198][T12077] batadv0: left allmulticast mode
[  810.072409][T12077] batadv0: left promiscuous mode
[  810.124763][ T9138] usb 5-1: USB disconnect, device number 33
[  810.154363][ T5278] r8152-cfgselector 3-1: USB disconnect, device number 24
[  810.743386][ T5278] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  810.961181][ T5278] usb 1-1: Using ep0 maxpacket: 8
[  810.998642][ T5278] usb 1-1: New USB device found, idVendor=0458, idProduct=7003, bcdDevice=7a.1a
[  811.015098][ T5278] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  811.024075][T12129] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1494'.
[  811.034861][T12124] nvme_fabrics: missing parameter 'transport=%s'
[  811.041750][ T5278] usb 1-1: Product: syz
[  811.051078][T12124] nvme_fabrics: missing parameter 'nqn=%s'
[  811.057046][ T5278] usb 1-1: Manufacturer: syz
[  811.057070][ T5278] usb 1-1: SerialNumber: syz
[  811.085729][ T5278] usb 1-1: config 0 descriptor??
[  811.097299][ T5278] gspca_main: sn9c2028-2.14.0 probing 0458:7003
[  811.143656][ T5233] Bluetooth: hci5: command 0x0405 tx timeout
[  811.307470][ T5278] gspca_sn9c2028: read1 error -71
[  811.321912][ T5278] gspca_sn9c2028: read1 error -71
[  811.331421][ T5278] gspca_sn9c2028: read1 error -71
[  811.343439][ T5278] sn9c2028 1-1:0.0: probe with driver sn9c2028 failed with error -71
[  811.371199][ T5278] usb 1-1: USB disconnect, device number 33
[  812.138185][T12153] syzkaller1: entered promiscuous mode
[  812.159679][T12153] syzkaller1: entered allmulticast mode
[  812.273284][ T5281] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  812.454548][ T5281] usb 1-1: Using ep0 maxpacket: 8
[  812.476226][ T5281] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  812.509435][ T5281] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  812.531338][T12164] dvmrp0: entered allmulticast mode
[  812.557516][ T5281] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 239, changing to 11
[  812.560686][T12163] dvmrp0: left allmulticast mode
[  812.594487][ T5281] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 9059, setting to 1024
[  812.615283][ T5281] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  812.668991][ T5281] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  812.703134][ T5281] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.721461][ T5281] usb 1-1: Product: syz
[  812.726019][ T5281] usb 1-1: Manufacturer: syz
[  812.730675][ T5281] usb 1-1: SerialNumber: syz
[  812.754509][ T5281] usb 1-1: config 0 descriptor??
[  812.793942][ T5281] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input14
[  813.030437][ T5281] usb 1-1: USB disconnect, device number 34
[  813.733782][T12198] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1522'.
[  813.745335][T12198] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  813.843182][ T1181] usb 4-1: new low-speed USB device number 38 using dummy_hcd
[  814.025139][ T1181] usb 4-1: descriptor type invalid, skip
[  814.033035][ T1181] usb 4-1: No LPM exit latency info found, disabling LPM.
[  814.051371][ T1181] usb 4-1: no configurations
[  814.057749][ T1181] usb 4-1: can't read configurations, error -22
[  814.223123][ T1181] usb 4-1: new low-speed USB device number 39 using dummy_hcd
[  814.347828][ T5281] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  814.405018][ T1181] usb 4-1: descriptor type invalid, skip
[  814.410755][ T1181] usb 4-1: No LPM exit latency info found, disabling LPM.
[  814.436681][ T1181] usb 4-1: no configurations
[  814.441379][ T1181] usb 4-1: can't read configurations, error -22
[  814.458858][ T1181] usb usb4-port1: attempt power cycle
[  814.573205][ T5281] usb 3-1: Using ep0 maxpacket: 16
[  814.580846][ T5281] usb 3-1: config 8 has an invalid interface number: 179 but max is 0
[  814.590721][ T5281] usb 3-1: config 8 has no interface number 0
[  814.597384][ T5281] usb 3-1: config 8 interface 179 altsetting 0 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  814.611417][ T5281] usb 3-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  814.620664][ T5281] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  814.642961][ T5281] usb 3-1: Product: syz
[  814.647324][ T5281] usb 3-1: Manufacturer: syz
[  814.651935][ T5281] usb 3-1: SerialNumber: syz
[  814.674634][ T5281] usb 3-1: bad CDC descriptors
[  814.814866][  T941] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  814.883664][ T1181] usb 4-1: new low-speed USB device number 40 using dummy_hcd
[  814.884177][ T5281] usb 3-1: USB disconnect, device number 25
[  814.914002][T12219] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1531'.
[  814.935315][ T1181] usb 4-1: descriptor type invalid, skip
[  814.941014][ T1181] usb 4-1: No LPM exit latency info found, disabling LPM.
[  814.950885][ T1181] usb 4-1: no configurations
[  814.959153][ T1181] usb 4-1: can't read configurations, error -22
[  815.024165][  T941] usb 1-1: Using ep0 maxpacket: 16
[  815.031484][  T941] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  815.054040][  T941] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  815.068509][  T941] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice=ff.40
[  815.078525][  T941] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  815.087657][  T941] usb 1-1: Product: syz
[  815.091862][  T941] usb 1-1: SerialNumber: syz
[  815.123305][ T1181] usb 4-1: new low-speed USB device number 41 using dummy_hcd
[  815.166468][ T1181] usb 4-1: descriptor type invalid, skip
[  815.172284][ T1181] usb 4-1: No LPM exit latency info found, disabling LPM.
[  815.185705][ T1181] usb 4-1: no configurations
[  815.190552][ T1181] usb 4-1: can't read configurations, error -22
[  815.200363][ T1181] usb usb4-port1: unable to enumerate USB device
[  815.323732][  T941] usb 1-1: 0:2 : does not exist
[  815.360560][  T941] usb 1-1: USB disconnect, device number 35
[  815.439565][ T5281] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  815.633901][ T5281] usb 2-1: too many configurations: 248, using maximum allowed: 8
[  815.656572][ T5281] usb 2-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=74.01
[  815.665941][ T5281] usb 2-1: New USB device strings: Mfr=29, Product=254, SerialNumber=225
[  815.674804][ T5281] usb 2-1: Product: syz
[  815.679002][ T5281] usb 2-1: Manufacturer: syz
[  815.683719][ T5281] usb 2-1: SerialNumber: syz
[  815.691079][ T5281] usb 2-1: config 0 descriptor??
[  815.700694][ T5281] ttusbir 2-1:0.0: cannot find expected altsetting
[  815.753116][ T5275] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  815.892578][T12232] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1537'.
[  815.933316][ T5275] usb 5-1: Using ep0 maxpacket: 32
[  815.940990][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  815.955747][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  815.966515][ T5275] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  815.976083][ T5275] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  815.996773][ T5275] usb 5-1: config 0 descriptor??
[  816.136078][ T5281] usb 2-1: USB disconnect, device number 29
[  816.423791][  T941] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  816.443179][ T5275] ft260 0003:0403:6030.0009: unknown main item tag 0x0
[  816.613001][  T941] usb 1-1: Using ep0 maxpacket: 8
[  816.627072][  T941] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=18.37
[  816.643540][  T941] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  816.643857][ T5275] ft260 0003:0403:6030.0009: chip code: 5e81 abf2
[  816.651701][  T941] usb 1-1: Product: syz
[  816.663298][  T941] usb 1-1: Manufacturer: syz
[  816.667933][  T941] usb 1-1: SerialNumber: syz
[  816.690972][  T941] usb 1-1: config 0 descriptor??
[  816.707227][  T941] radio-si470x 1-1:0.0: could not find interrupt in endpoint
[  816.723068][  T941] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -5
[  816.839506][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  816.839527][   T29] audit: type=1326 audit(1723813751.800:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.868715][   T29] audit: type=1326 audit(1723813751.800:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.890993][   T29] audit: type=1326 audit(1723813751.800:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.892051][ T5275] ft260 0003:0403:6030.0009: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.4-1/input0
[  816.919608][   T29] audit: type=1326 audit(1723813751.800:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.946383][   T29] audit: type=1326 audit(1723813751.800:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.969480][   T29] audit: type=1326 audit(1723813751.800:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  816.993819][   T29] audit: type=1326 audit(1723813751.800:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  817.016287][   T29] audit: type=1326 audit(1723813751.800:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  817.033200][  T941] radio-raremono 1-1:0.0: Thanko's Raremono connected: (10C4:818A)
[  817.040987][   T29] audit: type=1326 audit(1723813751.800:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  817.073594][ T5275] ft260 0003:0403:6030.0009: failed to retrieve status: -71, no wakeup
[  817.078783][   T29] audit: type=1326 audit(1723813751.800:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12242 comm="syz.1.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d03b799b9 code=0x7ffc0000
[  817.085705][ T5275] ft260 0003:0403:6030.0009: failed to retrieve status: -71
[  817.113164][ T5275] ft260 0003:0403:6030.0009: failed to reset I2C controller: -71
[  817.142298][ T5275] usb 5-1: USB disconnect, device number 34
[  817.228417][  T941] radio-raremono 1-1:0.0: V4L2 device registered as radio32
[  817.605114][ T5275] usb 1-1: USB disconnect, device number 36
[  817.624180][ T5275] radio-raremono 1-1:0.0: Thanko's Raremono disconnected
[  818.123134][ T1181] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  818.313021][ T1181] usb 5-1: Using ep0 maxpacket: 16
[  818.328987][ T1181] usb 5-1: config 8 has an invalid interface number: 179 but max is 0
[  818.342868][ T1181] usb 5-1: config 8 has no interface number 0
[  818.357943][ T1181] usb 5-1: config 8 interface 179 altsetting 0 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  818.400455][ T1181] usb 5-1: New USB device found, idVendor=c21c, idProduct=79d3, bcdDevice=56.9d
[  818.420232][ T1181] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  818.437439][ T1181] usb 5-1: Product: syz
[  818.447648][ T1181] usb 5-1: Manufacturer: syz
[  818.459979][ T1181] usb 5-1: SerialNumber: syz
[  818.481964][ T1181] usb 5-1: bad CDC descriptors
[  818.707283][ T5275] usb 5-1: USB disconnect, device number 35
[  819.163448][  T941] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  819.358027][  T941] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  819.398794][  T941] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  819.427776][  T941] usb 3-1: Product: syz
[  819.436724][  T941] usb 3-1: Manufacturer: syz
[  819.441473][  T941] usb 3-1: SerialNumber: syz
[  819.464204][  T941] usb 3-1: config 0 descriptor??
[  819.707034][  T941] hso 3-1:0.0: Can't find BULK IN endpoint
[  819.735219][  T941] usb-storage 3-1:0.0: USB Mass Storage device detected
[  819.973746][T12272] fuse: Bad value for 'fd'
[  820.049336][T12315] netlink: 'syz.1.1567': attribute type 10 has an invalid length.
[  820.101361][T12315] 8021q: adding VLAN 0 to HW filter on device batadv0
[  820.140324][T12315] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  821.643207][T12353] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  821.676437][T12353] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  821.731043][T12358] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1585'.
[  822.833148][T12382] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1597'.
[  823.090757][T12391] netlink: 35732 bytes leftover after parsing attributes in process `syz.4.1598'.
[  823.121903][T12391] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1598'.
[  823.133105][   T29] kauditd_printk_skb: 41 callbacks suppressed
[  823.133124][   T29] audit: type=1326 audit(1723813758.090:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12395 comm="syz.2.1599" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6ee8d799b9 code=0x0
[  823.728037][ T9076] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  824.002998][ T9076] usb 1-1: Using ep0 maxpacket: 32
[  824.032634][ T9076] usb 1-1: config 0 has no interfaces?
[  824.055501][ T9076] usb 1-1: New USB device found, idVendor=1199, idProduct=0028, bcdDevice=96.38
[  824.081900][ T9076] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  824.108601][ T9076] usb 1-1: Product: syz
[  824.123585][ T9076] usb 1-1: Manufacturer: syz
[  824.136921][ T9076] usb 1-1: SerialNumber: syz
[  824.158851][ T9076] usb 1-1: config 0 descriptor??
[  824.677336][  T941] usb 1-1: USB disconnect, device number 37
[  824.723085][ T1181] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  824.917916][ T1181] usb 5-1: Using ep0 maxpacket: 32
[  824.942331][ T1181] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  825.013027][ T1181] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  825.051127][ T1181] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  825.108776][ T1181] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  825.177053][ T1181] usb 5-1: config 0 descriptor??
[  825.380002][ T9138] usb 3-1: USB disconnect, device number 26
[  825.655014][ T1181] ft260 0003:0403:6030.000A: unknown main item tag 0x0
[  825.845985][ T1181] ft260 0003:0403:6030.000A: chip code: 5e81 abf2
[  826.053151][ T1181] ft260 0003:0403:6030.000A: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.4-1/input0
[  826.268570][ T1181] ft260 0003:0403:6030.000A: failed to retrieve status: -71, no wakeup
[  826.310185][ T1181] ft260 0003:0403:6030.000A: failed to retrieve status: -71
[  826.360708][ T1181] ft260 0003:0403:6030.000A: failed to reset I2C controller: -71
[  827.169931][ T1181] usb 5-1: USB disconnect, device number 36
[  827.496927][T12455] team0: Device vlan2 is already an upper device of the team interface
[  829.193767][ T9076] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  829.603169][ T9076] usb 2-1: Using ep0 maxpacket: 32
[  829.658618][ T9076] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  829.835398][ T9076] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  830.068421][ T9076] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  830.408792][ T9076] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  830.435317][ T9076] usb 2-1: config 0 descriptor??
[  831.016244][ T9076] ft260 0003:0403:6030.000B: unknown main item tag 0x0
[  831.210609][ T5275] usb 5-1: new full-speed USB device number 37 using dummy_hcd
[  831.351791][ T9076] ft260 0003:0403:6030.000B: chip code: 5e81 abf2
[  831.607085][ T9076] ft260 0003:0403:6030.000B: failed to retrieve system status
[  831.652376][ T9076] ft260 0003:0403:6030.000B: probe with driver ft260 failed with error -71
[  831.672219][ T5275] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  831.714767][ T5275] usb 5-1: config 0 has no interface number 0
[  831.720934][ T5275] usb 5-1: config 0 interface 8 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  831.753341][ T9076] usb 2-1: USB disconnect, device number 30
[  831.811155][ T5275] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  831.830790][ T5275] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  831.864895][ T5275] usb 5-1: Product: syz
[  831.881611][ T5275] usb 5-1: SerialNumber: syz
[  831.904339][ T5275] usb 5-1: config 0 descriptor??
[  831.927234][ T5275] usbhid 5-1:0.8: couldn't find an input interrupt endpoint
[  832.152321][ T5275] usb 5-1: USB disconnect, device number 37
[  832.893814][T12531] bridge0: port 2(bridge_slave_1) entered disabled state
[  832.901574][T12531] bridge0: port 1(bridge_slave_0) entered disabled state
[  832.966776][T12535] bridge_slave_1: left allmulticast mode
[  833.083183][T12535] bridge_slave_1: left promiscuous mode
[  833.111709][T12535] bridge0: port 2(bridge_slave_1) entered disabled state
[  833.208876][T12535] bridge_slave_0: left allmulticast mode
[  833.250099][T12535] bridge_slave_0: left promiscuous mode
[  833.256785][T12535] bridge0: port 1(bridge_slave_0) entered disabled state
[  939.772908][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  939.779930][    C1] rcu: 	0-...!: (0 ticks this GP) idle=e3cc/1/0x4000000000000000 softirq=50553/50553 fqs=1
[  939.791355][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P11/1:b..l P11007/1:b..l P12562/1:b..l
[  939.801598][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=64709, q=405 ncpus=2)
[  939.809341][    C1] Sending NMI from CPU 1 to CPUs 0:
[  939.814586][    C0] NMI backtrace for cpu 0
[  939.814601][    C0] CPU: 0 UID: 0 PID: 12570 Comm: modprobe Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  939.814622][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  939.814634][    C0] RIP: 0010:lock_acquire+0x296/0x550
[  939.814684][    C0] Code: 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25 11 00 00 00 00 66 43 c7 44 25 15 00 00 43 c6 44 25 17 00 65 48 8b 04 25 28 00 00 00 <48> 3b 84 24 00 01 00 00 0f 85 95 02 00 00 48 8d 65 d8 5b 41 5c 41
[  939.814700][    C0] RSP: 0018:ffffc90000007a40 EFLAGS: 00000046
[  939.814716][    C0] RAX: 42aadf21eafd1800 RBX: 1ffff92000000f54 RCX: 42aadf21eafd1800
[  939.814731][    C0] RDX: dffffc0000000000 RSI: ffffffff8beae6e0 RDI: ffffffff8c3f9540
[  939.814745][    C0] RBP: ffffc90000007b88 R08: ffffffff934f2847 R09: 1ffffffff269e508
[  939.814759][    C0] R10: dffffc0000000000 R11: fffffbfff269e509 R12: 1ffff92000000f50
[  939.814773][    C0] R13: dffffc0000000000 R14: ffffc90000007aa0 R15: 0000000000000046
[  939.814786][    C0] FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
[  939.814802][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  939.814815][    C0] CR2: 00007fba30228270 CR3: 00000000163a4000 CR4: 00000000003506f0
[  939.814832][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  939.814843][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  939.814855][    C0] Call Trace:
[  939.814864][    C0]  <NMI>
[  939.814873][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  939.814899][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  939.814926][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  939.814948][    C0]  ? nmi_handle+0x2a/0x5a0
[  939.814976][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  939.814999][    C0]  ? nmi_handle+0x14f/0x5a0
[  939.815016][    C0]  ? nmi_handle+0x2a/0x5a0
[  939.815035][    C0]  ? lock_acquire+0x296/0x550
[  939.815058][    C0]  ? default_do_nmi+0x63/0x160
[  939.815082][    C0]  ? exc_nmi+0x123/0x1f0
[  939.815104][    C0]  ? end_repeat_nmi+0xf/0x53
[  939.815134][    C0]  ? lock_acquire+0x296/0x550
[  939.815158][    C0]  ? lock_acquire+0x296/0x550
[  939.815184][    C0]  ? lock_acquire+0x296/0x550
[  939.815208][    C0]  </NMI>
[  939.815215][    C0]  <IRQ>
[  939.815226][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  939.815255][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  939.815281][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  939.815308][    C0]  _raw_spin_lock_irqsave+0xd5/0x120
[  939.815333][    C0]  ? debug_object_deactivate+0x158/0x390
[  939.815360][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  939.815392][    C0]  debug_object_deactivate+0x158/0x390
[  939.815415][    C0]  ? __pfx_debug_object_deactivate+0x10/0x10
[  939.815439][    C0]  ? timerqueue_add+0x260/0x290
[  939.815459][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  939.815489][    C0]  debug_deactivate+0x1b/0x220
[  939.815511][    C0]  __hrtimer_run_queues+0x305/0xd50
[  939.815531][    C0]  ? ktime_get_update_offsets_now+0x3c/0x250
[  939.815567][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  939.815588][    C0]  ? ktime_get_update_offsets_now+0x22d/0x250
[  939.815617][    C0]  hrtimer_interrupt+0x396/0x990
[  939.815651][    C0]  __sysvec_apic_timer_interrupt+0x110/0x3f0
[  939.815682][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  939.815710][    C0]  </IRQ>
[  939.815716][    C0]  <TASK>
[  939.815724][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  939.815745][    C0] RIP: 0010:do_dentry_open+0x24e/0x1440
[  939.815769][    C0] Code: ff 83 fb 01 4c 89 34 24 75 22 e8 5d 8c 8c ff 49 8d bc 24 0c 02 00 00 be 04 00 00 00 e8 9b af f0 ff f0 41 ff 84 24 0c 02 00 00 <eb> 1a 89 ee 83 e6 02 31 ff e8 74 90 8c ff 83 e5 02 0f 85 b6 02 00
[  939.815785][    C0] RSP: 0018:ffffc9000ef87828 EFLAGS: 00000206
[  939.815801][    C0] RAX: ffffffff8206fe01 RBX: 0000000000000001 RCX: ffffffff8206fe15
[  939.815814][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffff8880257898ac
[  939.815826][    C0] RBP: 0000000000000001 R08: ffff8880257898af R09: 1ffff11004af1315
[  939.815840][    C0] R10: dffffc0000000000 R11: ffffed1004af1316 R12: ffff8880257896a0
[  939.815854][    C0] R13: ffff8880234b2a00 R14: ffff8880234b2a50 R15: ffff8880234b2af8
[  939.815873][    C0]  ? do_dentry_open+0x231/0x1440
[  939.815894][    C0]  ? do_dentry_open+0x245/0x1440
[  939.815920][    C0]  ? do_dentry_open+0x245/0x1440
[  939.815947][    C0]  ? vfs_open+0x34/0x330
[  939.815972][    C0]  vfs_open+0x3e/0x330
[  939.815996][    C0]  path_openat+0x2b3e/0x3470
[  939.816030][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  939.816055][    C0]  ? __lock_acquire+0x137a/0x2040
[  939.816087][    C0]  ? __pfx_path_openat+0x10/0x10
[  939.816128][    C0]  do_filp_open+0x235/0x490
[  939.816157][    C0]  ? __pfx_do_filp_open+0x10/0x10
[  939.816200][    C0]  ? _raw_spin_unlock+0x28/0x50
[  939.816223][    C0]  ? alloc_fd+0x5a1/0x640
[  939.816248][    C0]  do_sys_openat2+0x13e/0x1d0
[  939.816274][    C0]  ? __pfx_do_sys_openat2+0x10/0x10
[  939.816299][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  939.816329][    C0]  __x64_sys_openat+0x247/0x2a0
[  939.816360][    C0]  ? __pfx___x64_sys_openat+0x10/0x10
[  939.816388][    C0]  ? do_syscall_64+0x100/0x230
[  939.816408][    C0]  ? do_syscall_64+0xb6/0x230
[  939.816427][    C0]  do_syscall_64+0xf3/0x230
[  939.816446][    C0]  ? clear_bhb_loop+0x35/0x90
[  939.816468][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  939.816489][    C0] RIP: 0033:0x7fba304d0a46
[  939.816506][    C0] Code: 10 00 00 00 44 8b 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 0c f7 d8 89 05 0a 48 01 00 48 83 c8 ff c3 31
[  939.816521][    C0] RSP: 002b:00007ffe968e3468 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[  939.816539][    C0] RAX: ffffffffffffffda RBX: 00007ffe968e36c8 RCX: 00007fba304d0a46
[  939.816553][    C0] RDX: 0000000000080000 RSI: 00007ffe968e34e0 RDI: 00000000ffffff9c
[  939.816566][    C0] RBP: 00007ffe968e34d0 R08: 0000000000080000 R09: 00007ffe968e34e0
[  939.816579][    C0] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffe968e34e0
[  939.816590][    C0] R13: 0000000000000009 R14: 00007ffe968e36af R15: 00000000ffffffff
[  939.816613][    C0]  </TASK>
[  939.817573][    C1] task:syz.1.1664      state:R  running task     stack:23800 pid:12562 tgid:12560 ppid:10882  flags:0x00004000
[  940.413027][    C1] Call Trace:
[  940.416327][    C1]  <TASK>
[  940.419283][    C1]  __schedule+0x17ae/0x4a10
[  940.423870][    C1]  ? __pfx___schedule+0x10/0x10
[  940.428771][    C1]  ? mark_lock+0x9a/0x350
[  940.433155][    C1]  ? preempt_schedule+0xe1/0xf0
[  940.438052][    C1]  preempt_schedule_common+0x84/0xd0
[  940.443374][    C1]  preempt_schedule+0xe1/0xf0
[  940.448085][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  940.453490][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  940.459429][    C1]  preempt_schedule_thunk+0x1a/0x30
[  940.464662][    C1]  _raw_spin_unlock+0x3e/0x50
[  940.469367][    C1]  unmap_page_range+0x3818/0x42c0
[  940.474469][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  940.479890][    C1]  ? mas_next_slot+0xeab/0xf90
[  940.484692][    C1]  ? uprobe_munmap+0x183/0x460
[  940.489504][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[  940.494581][    C1]  unmap_vmas+0x3cc/0x5f0
[  940.498966][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  940.503875][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[  940.509389][    C1]  exit_mmap+0x264/0xc80
[  940.513676][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  940.518471][    C1]  ? __asan_memset+0x23/0x50
[  940.523121][    C1]  ? uprobe_clear_state+0x277/0x290
[  940.528346][    C1]  ? mm_update_next_owner+0xa2/0x8a0
[  940.533655][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  940.538886][    C1]  __mmput+0x115/0x380
[  940.542987][    C1]  exit_mm+0x220/0x310
[  940.547085][    C1]  ? __pfx_exit_mm+0x10/0x10
[  940.551696][    C1]  ? taskstats_exit+0x326/0xa60
[  940.556590][    C1]  do_exit+0x9b2/0x27f0
[  940.560777][    C1]  ? __pfx_do_exit+0x10/0x10
[  940.565392][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  940.570794][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  940.576809][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  940.583162][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  940.588310][    C1]  do_group_exit+0x207/0x2c0
[  940.592924][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  940.598151][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  940.603384][    C1]  get_signal+0x1695/0x1730
[  940.607931][    C1]  ? __pfx_get_signal+0x10/0x10
[  940.612819][    C1]  arch_do_signal_or_restart+0x96/0x860
[  940.618401][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  940.624578][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  940.630597][    C1]  ? syscall_exit_to_user_mode+0xa3/0x370
[  940.636348][    C1]  syscall_exit_to_user_mode+0xc9/0x370
[  940.641923][    C1]  do_syscall_64+0x100/0x230
[  940.646537][    C1]  ? clear_bhb_loop+0x35/0x90
[  940.651247][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  940.657164][    C1] RIP: 0033:0x7f2d03b799b9
[  940.661604][    C1] RSP: 002b:00007f2d049140e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  940.670044][    C1] RAX: fffffffffffffe00 RBX: 00007f2d03d15f88 RCX: 00007f2d03b799b9
[  940.678053][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2d03d15f88
[  940.686047][    C1] RBP: 00007f2d03d15f80 R08: 0000000000000000 R09: 0000000000000000
[  940.694041][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d03d15f8c
[  940.702031][    C1] R13: 0000000000000000 R14: 00007ffcaa225f60 R15: 00007ffcaa226048
[  940.710066][    C1]  </TASK>
[  940.713103][    C1] task:udevd           state:R  running task     stack:24864 pid:11007 tgid:11007 ppid:4673   flags:0x00000002
[  940.724867][    C1] Call Trace:
[  940.728162][    C1]  <TASK>
[  940.731116][    C1]  __schedule+0x17ae/0x4a10
[  940.735694][    C1]  ? __pfx___schedule+0x10/0x10
[  940.740582][    C1]  ? ep_poll_callback+0x6f3/0xb50
[  940.745645][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  940.750879][    C1]  ? preempt_schedule+0xe1/0xf0
[  940.755755][    C1]  preempt_schedule_common+0x84/0xd0
[  940.761076][    C1]  preempt_schedule+0xe1/0xf0
[  940.765794][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  940.771198][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  940.777215][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  940.783587][    C1]  preempt_schedule_thunk+0x1a/0x30
[  940.788813][    C1]  _raw_spin_unlock_irqrestore+0x130/0x140
[  940.794753][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  940.801128][    C1]  __wake_up_common_lock+0x18c/0x1e0
[  940.806454][    C1]  sock_def_readable+0x20f/0x5b0
[  940.811424][    C1]  ? sock_def_readable+0xd7/0x5b0
[  940.816480][    C1]  unix_dgram_sendmsg+0x1493/0x1f80
[  940.821716][    C1]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  940.828508][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  940.834081][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  940.839401][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  940.844798][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  940.850298][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  940.855858][    C1]  __sock_sendmsg+0x221/0x270
[  940.860571][    C1]  sock_write_iter+0x2dd/0x400
[  940.865369][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[  940.870692][    C1]  ? kfree+0x4e/0x360
[  940.874785][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[  940.880185][    C1]  ? security_file_permission+0x7f/0xa0
[  940.885781][    C1]  vfs_write+0xa72/0xc90
[  940.890054][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[  940.895374][    C1]  ? __pfx_vfs_write+0x10/0x10
[  940.900187][    C1]  ksys_write+0x1a0/0x2c0
[  940.904732][    C1]  ? __pfx_ksys_write+0x10/0x10
[  940.909621][    C1]  ? do_syscall_64+0x100/0x230
[  940.914427][    C1]  ? do_syscall_64+0xb6/0x230
[  940.919148][    C1]  do_syscall_64+0xf3/0x230
[  940.923673][    C1]  ? clear_bhb_loop+0x35/0x90
[  940.928383][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  940.934325][    C1] RIP: 0033:0x7fe087196bf2
[  940.938759][    C1] RSP: 002b:00007ffe5ccdfc98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  940.947198][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe087196bf2
[  940.955194][    C1] RDX: 0000000000000000 RSI: 00007ffe5ccdfcef RDI: 000000000000000a
[  940.963187][    C1] RBP: 00007ffe5ccdfcef R08: 0000000000000001 R09: 140d956a7b7f51f1
[  940.971184][    C1] R10: 1999999999999999 R11: 0000000000000246 R12: 000000000000000a
[  940.979192][    C1] R13: 00007fe0870c0ae0 R14: 0000000000000000 R15: 00005599f2923910
[  940.987213][    C1]  </TASK>
[  940.990259][    C1] task:kworker/u8:0    state:R  running task     stack:18736 pid:11    tgid:11    ppid:2      flags:0x00004000
[  941.002026][    C1] Workqueue: bat_events batadv_nc_worker
[  941.007698][    C1] Call Trace:
[  941.010993][    C1]  <TASK>
[  941.013944][    C1]  __schedule+0x17ae/0x4a10
[  941.018485][    C1]  ? __pfx_validate_chain+0x10/0x10
[  941.023702][    C1]  ? validate_chain+0x11e/0x5900
[  941.028676][    C1]  ? __pfx_validate_chain+0x10/0x10
[  941.033904][    C1]  ? __pfx_validate_chain+0x10/0x10
[  941.039139][    C1]  ? __pfx___schedule+0x10/0x10
[  941.044033][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  941.050141][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[  941.055461][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  941.060600][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  941.066364][    C1]  irqentry_exit+0x5e/0x90
[  941.070798][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  941.076801][    C1] RIP: 0010:lock_acquire+0x264/0x550
[  941.082114][    C1] Code: 2b 00 74 08 4c 89 f7 e8 7a db 87 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  941.101739][    C1] RSP: 0018:ffffc90000107980 EFLAGS: 00000206
[  941.107827][    C1] RAX: 0000000000000001 RBX: 1ffff92000020f3c RCX: 3c0027bba38aec00
[  941.115822][    C1] RDX: dffffc0000000000 RSI: ffffffff8beae6e0 RDI: ffffffff8c3f9540
[  941.123811][    C1] RBP: ffffc90000107ad0 R08: ffffffff934f2847 R09: 1ffffffff269e508
[  941.131806][    C1] R10: dffffc0000000000 R11: fffffbfff269e509 R12: 1ffff92000020f38
[  941.139797][    C1] R13: dffffc0000000000 R14: ffffc900001079e0 R15: 0000000000000246
[  941.147819][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  941.152874][    C1]  ? batadv_nc_process_nc_paths+0xb5/0x3a0
[  941.158712][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  941.164114][    C1]  ? __pfx_lock_release+0x10/0x10
[  941.169163][    C1]  ? batadv_nc_purge_paths+0x312/0x3b0
[  941.174668][    C1]  ? batadv_nc_purge_paths+0xe8/0x3b0
[  941.180071][    C1]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[  941.187132][    C1]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[  941.192799][    C1]  batadv_nc_process_nc_paths+0xd6/0x3a0
[  941.198465][    C1]  ? batadv_nc_process_nc_paths+0xb5/0x3a0
[  941.204307][    C1]  ? batadv_nc_process_nc_paths+0xb5/0x3a0
[  941.210153][    C1]  batadv_nc_worker+0x42a/0x610
[  941.215055][    C1]  ? process_scheduled_works+0x945/0x1830
[  941.220801][    C1]  process_scheduled_works+0xa2c/0x1830
[  941.226409][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  941.232433][    C1]  ? assign_work+0x364/0x3d0
[  941.237058][    C1]  worker_thread+0x86d/0xd40
[  941.241697][    C1]  ? __kthread_parkme+0x169/0x1d0
[  941.246761][    C1]  ? __pfx_worker_thread+0x10/0x10
[  941.251924][    C1]  kthread+0x2f0/0x390
[  941.256043][    C1]  ? __pfx_worker_thread+0x10/0x10
[  941.261199][    C1]  ? __pfx_kthread+0x10/0x10
[  941.265834][    C1]  ret_from_fork+0x4b/0x80
[  941.270291][    C1]  ? __pfx_kthread+0x10/0x10
[  941.274925][    C1]  ret_from_fork_asm+0x1a/0x30
[  941.279747][    C1]  </TASK>
[  941.282792][    C1] rcu: rcu_preempt kthread starved for 10500 jiffies! g64709 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  941.294015][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  941.304001][    C1] rcu: RCU grace-period kthread stack dump:
[  941.309904][    C1] task:rcu_preempt     state:R  running task     stack:24912 pid:17    tgid:17    ppid:2      flags:0x00004000
[  941.321696][    C1] Call Trace:
[  941.325049][    C1]  <TASK>
[  941.328022][    C1]  __schedule+0x17ae/0x4a10
[  941.332597][    C1]  ? __pfx___schedule+0x10/0x10
[  941.337496][    C1]  ? __pfx_lock_release+0x10/0x10
[  941.342567][    C1]  ? __asan_memset+0x23/0x50
[  941.347198][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  941.353037][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  941.359407][    C1]  ? schedule+0x90/0x320
[  941.363691][    C1]  schedule+0x14b/0x320
[  941.367890][    C1]  schedule_timeout+0x1be/0x310
[  941.372777][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  941.378188][    C1]  ? __pfx_process_timeout+0x10/0x10
[  941.383517][    C1]  ? prepare_to_swait_event+0x32e/0x350
[  941.389102][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  941.393982][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  941.399228][    C1]  ? __pfx_dyntick_save_progress_counter+0x10/0x10
[  941.405758][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  941.411085][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  941.417013][    C1]  ? finish_swait+0xd4/0x1e0
[  941.421636][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  941.426260][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  941.431490][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  941.437417][    C1]  ? __kthread_parkme+0x169/0x1d0
[  941.442477][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  941.447704][    C1]  kthread+0x2f0/0x390
[  941.451819][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  941.457044][    C1]  ? __pfx_kthread+0x10/0x10
[  941.461669][    C1]  ret_from_fork+0x4b/0x80
[  941.466116][    C1]  ? __pfx_kthread+0x10/0x10
[  941.470750][    C1]  ret_from_fork_asm+0x1a/0x30
[  941.475561][    C1]  </TASK>
[  941.478597][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  941.484931][    C1] CPU: 1 UID: 0 PID: 12573 Comm: syz.3.1667 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0
[  941.495707][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  941.505780][    C1] RIP: 0010:smp_call_function_many_cond+0x1860/0x29d0
[  941.512580][    C1] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 19 15 0c 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 c4 10 0c 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 a8 10
[  941.532235][    C1] RSP: 0018:ffffc9000f296e40 EFLAGS: 00000246
[  941.538334][    C1] RAX: ffffffff818779b8 RBX: 1ffff11017248c61 RCX: 0000000000040000
[  941.546328][    C1] RDX: ffffc9000bf9c000 RSI: 000000000003ffff RDI: 0000000000040000
[  941.554321][    C1] RBP: ffffc9000f297020 R08: ffffffff81877987 R09: 1ffffffff269e508
[  941.562319][    C1] R10: dffffc0000000000 R11: fffffbfff269e509 R12: dffffc0000000000
[  941.570311][    C1] R13: ffff8880b9246308 R14: ffff8880b933fb40 R15: 0000000000000000
[  941.578303][    C1] FS:  00007f579d39d6c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  941.587256][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  941.593855][    C1] CR2: 00000000200012c0 CR3: 0000000063a26000 CR4: 00000000003506f0
[  941.601847][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  941.609838][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  941.617835][    C1] Call Trace:
[  941.621218][    C1]  <IRQ>
[  941.624082][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  941.630444][    C1]  ? print_other_cpu_stall+0x1470/0x15a0
[  941.636117][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  941.641946][    C1]  ? __pfx_lock_release+0x10/0x10
[  941.647009][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  941.653282][    C1]  ? rcu_sched_clock_irq+0xa2c/0x10d0
[  941.658699][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  941.664368][    C1]  ? hrtimer_run_queues+0x16c/0x460
[  941.669588][    C1]  ? acct_account_cputime+0xd3/0x210
[  941.674911][    C1]  ? update_process_times+0x1ce/0x230
[  941.680314][    C1]  ? tick_nohz_handler+0x37c/0x500
[  941.685455][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  941.690939][    C1]  ? __hrtimer_run_queues+0x551/0xd50
[  941.696336][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  941.702368][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  941.708111][    C1]  ? ktime_get_update_offsets_now+0x22d/0x250
[  941.714218][    C1]  ? hrtimer_interrupt+0x396/0x990
[  941.719379][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x3f0
[  941.725567][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  941.731407][    C1]  </IRQ>
[  941.734352][    C1]  <TASK>
[  941.737303][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  941.743488][    C1]  ? smp_call_function_many_cond+0x1847/0x29d0
[  941.749665][    C1]  ? smp_call_function_many_cond+0x1878/0x29d0
[  941.755845][    C1]  ? smp_call_function_many_cond+0x1860/0x29d0
[  941.762034][    C1]  ? __netif_receive_skb_core+0xd28/0x4570
[  941.767888][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  941.772934][    C1]  ? __netif_receive_skb_core+0xd28/0x4570
[  941.778786][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  941.785136][    C1]  ? __pfx___might_resched+0x10/0x10
[  941.790453][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[  941.796366][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  941.801414][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[  941.806551][    C1]  text_poke_bp_batch+0x352/0xb30
[  941.811609][    C1]  ? arch_jump_label_transform_apply+0x17/0x30
[  941.817790][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  941.823366][    C1]  ? arch_jump_label_transform_queue+0x9b/0x100
[  941.829635][    C1]  ? __jump_label_update+0x379/0x3a0
[  941.834995][    C1]  text_poke_finish+0x30/0x50
[  941.839709][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  941.845714][    C1]  static_key_slow_inc_cpuslocked+0x80/0xf0
[  941.851634][    C1]  static_key_slow_inc+0x1a/0x30
[  941.856602][    C1]  clsact_init+0x101/0x760
[  941.861053][    C1]  ? __pfx_clsact_init+0x10/0x10
[  941.866012][    C1]  ? qdisc_alloc+0x7da/0xa80
[  941.870629][    C1]  ? __pfx_clsact_init+0x10/0x10
[  941.875585][    C1]  qdisc_create+0x9d4/0x11a0
[  941.880219][    C1]  ? __pfx_qdisc_create+0x10/0x10
[  941.885283][    C1]  tc_modify_qdisc+0xb7b/0x1e40
[  941.890185][    C1]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  941.895541][    C1]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  941.900878][    C1]  rtnetlink_rcv_msg+0x73f/0xcf0
[  941.905861][    C1]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  941.911018][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  941.916530][    C1]  ? ref_tracker_free+0x643/0x7e0
[  941.921595][    C1]  netlink_rcv_skb+0x1e3/0x430
[  941.926391][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  941.931893][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  941.937226][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  941.942536][    C1]  netlink_unicast+0x7f6/0x990
[  941.947344][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  941.952659][    C1]  ? __virt_addr_valid+0x183/0x530
[  941.957887][    C1]  ? __check_object_size+0x49c/0x900
[  941.963198][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  941.968336][    C1]  netlink_sendmsg+0x8e4/0xcb0
[  941.973142][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  941.978458][    C1]  ? __import_iovec+0x536/0x820
[  941.983345][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  941.988661][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  941.994157][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  941.999464][    C1]  __sock_sendmsg+0x221/0x270
[  942.004183][    C1]  ____sys_sendmsg+0x525/0x7d0
[  942.008990][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  942.014320][    C1]  __sys_sendmsg+0x2b0/0x3a0
[  942.018943][    C1]  ? __pfx___sys_sendmsg+0x10/0x10
[  942.024150][    C1]  ? __secure_computing+0x125/0x370
[  942.029384][    C1]  do_syscall_64+0xf3/0x230
[  942.033914][    C1]  ? clear_bhb_loop+0x35/0x90
[  942.038619][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  942.044535][    C1] RIP: 0033:0x7f579c5799b9
[  942.048974][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  942.068601][    C1] RSP: 002b:00007f579d39d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  942.077035][    C1] RAX: ffffffffffffffda RBX: 00007f579c716058 RCX: 00007f579c5799b9
[  942.085022][    C1] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000009
[  942.093026][    C1] RBP: 00007f579c5e78d8 R08: 0000000000000000 R09: 0000000000000000
[  942.101010][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  942.108994][    C1] R13: 0000000000000000 R14: 00007f579c716058 R15: 00007ffe69666ea8
[  942.117006][    C1]  </TASK>