last executing test programs:

36.820563187s ago: executing program 4 (id=7773):
pipe2$9p(0x0, 0x0)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000080)={0xf, 0x7, 0x0, {{0x2, '.,'}}}, 0xf)
write$P9_RSTAT(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e7c6af37117d0f0b96407452607ca45d4f3f05f9b4ab6927f17e3a41ec164a9e5ff6898a1be50f1c389cbccefb5784885c931910a9c2b7745bcb1f4a6efeb824b9e3c262d19fc3d7d583fee767d59dd3818d90558e7b780d74f16a5c3fdff637ffcd7af15c54866f7e52537fb9ff51764c3e7", @ANYRES16], 0xfdeb)
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000002c0)=[@in6={0xa, 0x4e22, 0xb, @dev, 0x9}, @in6={0xa, 0x4e24, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, @in={0x2, 0x4e23, @broadcast}, @in6={0xa, 0x4e20, 0x0, @private2}, @in={0x2, 0x4e22, @loopback}], 0x74)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c00000012000100000000000000000007000000", @ANYRESDEC=0x0, @ANYBLOB="0000000000000000080a1d00dcff00656e657665300061b7d8d8c773024a000b4a0af719"], 0x3c}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_emit_ethernet(0xed, &(0x7f0000000340)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "6b88ef", 0xb7, 0x3a, 0x0, @private1, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0x0, 0x0, "f2ce10ed03755751d99e903b023e86eaf7fc1c386420e22d08c80b21b873c93231cc1ee8e23488e0ed2e2d75eaa06a83ecb49dfe4ad0149687f045a0c81adf9d91592a9681ac8c78323da1a5903fb442173ba21996a02c34c023b2d6b318ae1c47c3bc24beb397fa11be4a93788c0379d56cb734d2d7f5b721cb6145c7d9e419642e0f769145d5806002caa8fa6ddf2db01da7bb3be0a11c753f0000fbfb839b90be43e610b2bf3df9164a8725172d"}}}}}}, 0x0)

10.336746231s ago: executing program 1 (id=7819):
socket(0x840000000002, 0x3, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000e500000085000000bb00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000017c0)=ANY=[], 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e40)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8}]}}}]}, 0x44}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000180)=0xfffeffff)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)

9.736087764s ago: executing program 0 (id=7820):
socket$inet(0x2, 0x3, 0xc)
socket$kcm(0xa, 0x0, 0x73)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000a00))
ioctl$CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000380)={"84db8cb4", 0x0, 0x0, 0x0, 0x0, 0x0, "0022aed9ae659d4d95fd3d1fa09814", "71094aac", "912e3ed7", "5439cfe3", ["f56f1a42e3d0ab344d8bc6cc", "22147745eb9df6cf6a880d29", "92d3ebd918df0f529e9d53c9", "ac562047f08f7537b6597721"]})
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="04040a00000000000054679202ce9eaa48b326b038d97544c8b681bad547412afab3663029531077c8c4fa2f7501610d4eae6214096ae92430cd63486f07b04d9c519ab15a6e842e1352398f95ff35f5115a2c6c50f63336179b5e6b1f774a63506e8cb76bba42c6bee078240ec871a2bcf7dd5691833ac53a02f3614eae3afb9549df1b77ce0baebc9f630664"], 0xd)
syz_emit_vhci(&(0x7f0000000200)=ANY=[], 0x14)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180), 0x111, 0x6}}, 0x20)
write$binfmt_script(r0, &(0x7f0000000540)={'#! ', '', [], 0xa, "de1efb7fdd1006e4746bce2858603c68d62fc72d9601c99831cd7fa92b355d727d56805f2e92d9afff24a74ad58cc617f48b63b61976a435639fb4d3fbe55179d67500448fca73193553d514bfc67a384ae60d46a332da376f5b18e0f82f4dc028e547f82902d5ca281364d0c68bf53c48a3bb91f32d97cad940ae8595e807ff2788aec015b9122ecf1345d503b51cedbfd973b86ec9b8d23c8aad1071e0a3c89e2a5b719362659ffb765fb222f081e7e9883aedabcfff8d085f0d98c0a7e442859462cd230c66449e1d29a3a8047c3beef71eaebf3d6bb918c411ea11"}, 0x138)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000002940)={0x18, 0x3, 0x0, {0x8}}, 0x18)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000300)={'#! ', '', [{0x20, '\xff\xff\xff\xff\xff\xff'}]}, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
lseek(r3, 0x4, 0x5)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f00000002c0)={0x0, &(0x7f0000000340)=""/112, 0x70})
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000ac0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffc, 0xffffffffffffffe1, 0x0, 0x0, 0x10001, 0xfffffffffffff924], 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffff7d, &(0x7f00000004c0)=0x10001)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="04040aff8d901fbc937ef54200"], 0xd)
socket$inet6(0xa, 0x6, 0x0)
socket(0x1, 0x2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100))
r6 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000012000503000000fdffffff00"/28, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000004000300"], 0x50}}, 0x0)

9.03198525s ago: executing program 1 (id=7821):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r0, 0x0, 0x0, 0x20040800, &(0x7f0000000480)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c) (fail_nth: 2)

8.382034432s ago: executing program 4 (id=7774):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x200, 0x6, 0xffffffff, 0x0, 0xffffffffffffffff, 0x8, '\x00', 0x0, r1, 0x5, 0x0, 0x5, 0xf}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='f2fs_truncate_data_blocks_range\x00', r2}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000400)={'vlan0\x00', 0x400})
socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = timerfd_create(0x0, 0x0)
syz_io_uring_setup(0x2d7b, &(0x7f0000000380)={0x0, 0x0, 0x1, 0x0, 0x1f8}, &(0x7f0000000040), 0x0)
ioctl$TFD_IOC_SET_TICKS(r5, 0x40085400, &(0x7f0000000000))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="1c0000002e00010000000000000000000c000080280000007f000001"], 0x1c}], 0x1}, 0x0)
truncate(0x0, 0xffffffffffff0001)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f00000006c0)=""/212, 0xd4}, {&(0x7f0000000d00)=""/220, 0xdc}, {&(0x7f0000000a00)=""/247, 0xf7}, {&(0x7f00000007c0)=""/185, 0xb9}, {&(0x7f0000000b00)=""/224, 0xe0}, {&(0x7f0000000880)=""/167, 0xa7}, {&(0x7f0000000c00)=""/110, 0x6e}, {&(0x7f0000002140)=""/4087, 0xff7}, {&(0x7f0000004200)=""/4102, 0x1006}, {&(0x7f0000000c80)=""/111, 0x6f}], 0xa}, 0x0)
pwritev(r0, &(0x7f0000000280)=[{&(0x7f0000000500)="21b0829834c72137206ed7c9ce36b3481a7fdcae01cdeecc474950c13b4c923828bf255419d90c0f0f1901c407c1a58b9259b7ced56eb52e26dea4a3e338eda156f228589f648a4c8f977486a544843c603aa87ca6e04e31a2edf32513579f2e0bdf6d77f74b25f0129f51c7f8d90d07190b17d207f948492c868d68b5f9fea4d7ca04f732d2f067cc5155e2ee79d369d66e60dd534967a19ae6314efec8e99972e0568ddbcf53d7ca61b4fd38bdc37bdc9758e0d583288654d50429890a3ac5950d", 0xc2}], 0x1, 0x80000001, 0x1)
ioctl$KVM_GET_LAPIC(0xffffffffffffffff, 0x8400ae8e, &(0x7f0000000e00)={"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"})
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)

8.24445018s ago: executing program 1 (id=7823):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = io_uring_setup(0x4e1f, &(0x7f0000000100)={0x0, 0x6b2d, 0x400, 0x1, 0x371})
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r2, 0x8}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
io_uring_setup(0x4e1f, &(0x7f0000000100)={0x0, 0x6b2d, 0x400, 0x1, 0x371}) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) (async)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10) (async)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r2, 0x8}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) (async)

8.154467984s ago: executing program 1 (id=7825):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003b40), 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2c, 0x0, 0x0)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r8=>0xffffffffffffffff}, 0x111}}, 0x20)
r9 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r9, &(0x7f0000514ff4), 0xc)
r10 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r10, &(0x7f0000000a00)={&(0x7f0000000040)={0x2, 0x0, @dev}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000100)="99d8b3f2", 0x4}, {&(0x7f0000000280)="ef831dc56dc3a0a4089fdc66", 0xc}], 0x2}, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000040), r8, 0x0, 0x0, 0x1}}, 0x20)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="180000c8f54d3198ad31466391876c00", @ANYRES16, @ANYBLOB="010000000000000000"], 0x18}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x50, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16fd}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x30}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x50}}, 0x0)

8.13289747s ago: executing program 0 (id=7826):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)

7.002396117s ago: executing program 0 (id=7828):
socket$nl_audit(0x10, 0x3, 0x9)
getpriority(0x61d6c152bb389094, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000280)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2037)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x8})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180200004000000000000000f1ffffff850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000000072000107000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="040001"], 0x20}}, 0x0)
fcntl$setown(r6, 0x8, r1)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r7, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
socket$inet6(0xa, 0x1, 0x4050)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001440)='U', 0x1}], 0x1}, 0x3)
close(r3)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[], 0x0)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r8, 0x11, 0x67, &(0x7f0000000100)=0x400, 0x4)

6.660491853s ago: executing program 1 (id=7829):
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x1, 0x4)
io_setup(0x7, &(0x7f0000000280))
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
listen(0xffffffffffffffff, 0x6ce6)
connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x4e20, @local}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00'}, 0x10)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x6040000})

6.569131587s ago: executing program 3 (id=7830):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x6, 0x5}, 0x48)
syz_emit_ethernet(0x7a, &(0x7f0000000080)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "dd690b", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100}, {}, {}, {0x8, 0x88be, 0x81000000}}}}}}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x2})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x65c, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
fsopen(0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000003780)=""/4096}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000600)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r9, 0x40305839, &(0x7f0000000240)=0x28084)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x130}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5.465461087s ago: executing program 4 (id=7831):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
write$binfmt_misc(r4, &(0x7f0000000300)=ANY=[], 0x6)

5.444180519s ago: executing program 3 (id=7832):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1, 0x0, 0x0, 0x6c000000}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0900000000000000000001"], 0x68}}, 0x0) (fail_nth: 2)

5.154695294s ago: executing program 2 (id=7834):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_ACTIVE={0x5}]}}}]}, 0x3c}, 0x1, 0x20000000}, 0x0)

4.827774321s ago: executing program 2 (id=7835):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x8004745a, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000003c0), 0x12)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x74) (fail_nth: 2)

4.754939914s ago: executing program 3 (id=7836):
r0 = syz_usb_connect(0x0, 0x4d, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000735aca105e042107c4900102030109023b00010000000009040000000e010000052406000105240300000d240f0100000000000000000006"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r2 = accept$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000240)={0x0, @l2={0x1f, 0x7}, @sco={0x1f, @none}, @ax25={0x3, @null}, 0x8, 0x0, 0x0, 0x0, 0xaa98, &(0x7f0000000200)='vlan0\x00', 0x0, 0x6, 0xd71})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
syz_usb_control_io(r0, &(0x7f0000000540)={0x2c, 0x0, &(0x7f0000000400)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000380)={0x24, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="000302000000021c"], 0x0, 0x0}, 0x0)

4.443080424s ago: executing program 2 (id=7837):
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r5 = inotify_init1(0x0)
fcntl$setown(r5, 0x8, 0xffffffffffffffff)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
syz_open_procfs(0x0, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffffff, 0x6611, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006d00))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r6, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x24, r7, 0x331, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}}, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r9, 0x40046205, &(0x7f0000000000)=0x1)
ppoll(&(0x7f0000000040)=[{r9, 0xc201}, {r9, 0x80}, {r9}], 0x3, &(0x7f0000000080)={0x77359400}, &(0x7f0000000100)={[0x6]}, 0x8)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000001a80)={0x4, 0x0, &(0x7f0000001900)=[@enter_looper], 0x1, 0x0, &(0x7f0000001a40)="a1"})

3.354903788s ago: executing program 2 (id=7838):
iopl(0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='f2fs_lookup_extent_tree_start\x00', r0}, 0x10)
socket$caif_stream(0x25, 0x1, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2c1a12586b65031e, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
r3 = syz_open_dev$vim2m(&(0x7f0000000240), 0x80, 0x2)
sendmsg$inet6(r2, &(0x7f0000000880)={&(0x7f0000000340)={0xa, 0xfffd, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYRES64=r1, @ANYRESOCT=r1, @ANYBLOB="89fb8e15db4b46b62e16c17f8a69bb3cefd2b85baed8a9bc08d8fdcdcf312d70e3e962d9c77f38b12ca267e6219d6e317d52f404999da33ee60a51a71d31d83232380de9681f53beee5a602249f9965caf05ef853babdba9b8d8c897e59d88cc430e0b4147d30110843eee6b55247f9967650ad44b618d8cb93864ec1af87d8db6da2cecc94915b8c32c569a506bb12e7e6895ec81a7bd80269932ba02d83f0059c8126f78a089e8b8179d9bcb42ecda34a168d796662baef300f4b7750adcc527626972046a737ead1331a0452d927a6748ad05968d046875d49d0b59b8e406b7541fc450", @ANYBLOB="8a9151c347a6f4c946e789cd95fbec1b7be940cfd0d9ce3eab9ab10407676168119afcb50561bc9ca81bc64b8033a2b1307dd5ec750e4108b63234ffdafaddaf506b0778e09de407c5af007a507d0ef1025b3e0d6bf2b393e52043f1a88bc753cd0b420a9c0aa1c48bc239e4397786585d726e9a4f70db0fc0968dd3409717887af64c6dde2a7823d3316ba383590d081722b1376782edd82a09298076921f2ab8a81ba12680b9a07fe2c7efd4bc8912a8c61423f66452", @ANYRES32=r3, @ANYRES64=r0], 0x18}, 0x0)
iopl(0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$kcm(0x2, 0x200000000000001, 0x106)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="04049524080000000054679261ebd421209a9600"], 0xd)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r6, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r7, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
ioctl$PPPIOCSFLAGS(r6, 0x80047453, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
close(r5)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYBLOB="0100000000000000000007000000140008"], 0x30}}, 0x0)
r8 = syz_open_dev$radio(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r8, 0xc0205648, &(0x7f0000000100)={0x9b0000, 0x400, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x9b0903, 0x0, '\x00', @value64}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$sock_int(r9, 0x1, 0x2a, &(0x7f0000000100), 0x4)
r10 = socket(0x10, 0x3, 0x0)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x400, 0x0, {0x0, 0x0, 0x0, r12, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x1}, @TCA_CAKE_MEMORY={0x8}]}}]}, 0x44}}, 0x0)

3.304414566s ago: executing program 0 (id=7839):
socket(0x840000000002, 0x3, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000e500000085000000bb00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000017c0)=ANY=[], 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e40)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8}]}}}]}, 0x44}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x3c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb0}}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000180)=0xfffeffff)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)

2.556358289s ago: executing program 4 (id=7840):
socket(0x840000000002, 0x3, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000e500000085000000bb00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000017c0)=ANY=[], 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e40)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8}]}}}]}, 0x44}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x3c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb0}}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000180)=0xfffeffff)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f00000003c0)='./file0/../file0/../file0/../file0\x00')

2.474591631s ago: executing program 2 (id=7841):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x200, 0x6, 0xffffffff, 0x0, 0xffffffffffffffff, 0x8, '\x00', 0x0, r1, 0x5, 0x0, 0x5, 0xf}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='f2fs_truncate_data_blocks_range\x00', r2}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000400)={'vlan0\x00', 0x400})
socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = timerfd_create(0x0, 0x0)
syz_io_uring_setup(0x2d7b, &(0x7f0000000380)={0x0, 0x0, 0x1, 0x0, 0x1f8}, &(0x7f0000000040), 0x0)
ioctl$TFD_IOC_SET_TICKS(r5, 0x40085400, &(0x7f0000000000))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="1c0000002e00010000000000000000000c000080280000007f000001"], 0x1c}], 0x1}, 0x0)
truncate(0x0, 0xffffffffffff0001)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f00000006c0)=""/212, 0xd4}, {&(0x7f0000000d00)=""/220, 0xdc}, {&(0x7f0000000a00)=""/247, 0xf7}, {&(0x7f00000007c0)=""/185, 0xb9}, {&(0x7f0000000b00)=""/224, 0xe0}, {&(0x7f0000000880)=""/167, 0xa7}, {&(0x7f0000000c00)=""/110, 0x6e}, {&(0x7f0000002140)=""/4087, 0xff7}, {&(0x7f0000004200)=""/4102, 0x1006}, {&(0x7f0000000c80)=""/111, 0x6f}], 0xa}, 0x0)
pwritev(r0, &(0x7f0000000280)=[{&(0x7f0000000500)="21b0829834c72137206ed7c9ce36b3481a7fdcae01cdeecc474950c13b4c923828bf255419d90c0f0f1901c407c1a58b9259b7ced56eb52e26dea4a3e338eda156f228589f648a4c8f977486a544843c603aa87ca6e04e31a2edf32513579f2e0bdf6d77f74b25f0129f51c7f8d90d07190b17d207f948492c868d68b5f9fea4d7ca04f732d2f067cc5155e2ee79d369d66e60dd534967a19ae6314efec8e99972e0568ddbcf53d7ca61b4fd38bdc37bdc9758e0d583288654d50429890a3ac5950d", 0xc2}], 0x1, 0x80000001, 0x1)
ioctl$KVM_GET_LAPIC(0xffffffffffffffff, 0x8400ae8e, &(0x7f0000000e00)={"265bcdcd2c2a59ea1f90ace6f388916e73bf7bbdd08570781eb3bb9bc1bb5ac25f9cf152971dbbae0b2bed4416f05dfbbca38c30fd096635409072b79856cc32c24ec82796784051aad0624ad71f5bec0057d6885149a056cdaaff039a4385b935bf08693f7904cd7e051c109646daf95566805398703a9fdab84657e3423d468c434c495c1d7f8f06eab98796f269b72991789e2b293a21fb272b0444e79d39e5fce801517c00bd0e83ac2af957e607c2f6d5ed80b8258849c0fc56c31f51f17e5ad48aeab0f67285fd47ea61b5f8f1157430cef7c14e76dc9e820ecf6b7645a903a9d37872724c0f892845f5619b9038ec68dd86c6fdff644d15729b5c437fef0862af40c6517124c480146c72b44e3ae192432eaeda0ed76b73b306e2c4c726b0a5e447413c907ef6673bce6b88c2c0f24575ab8b4c058dae5eb8faff47afa5ce010990fa622e8a0589ba356863c2975440c6b615f4c9c7cfa1feb5f36a74be4582a2f20358b0953a8f16279170da32d4c18969224c9164967efbe0d83f79d60c84479aa85b13eb51048bc316e3d08867a09372f6a9419632cb339a58bab851433345103c2d4d81aeb010de298d110271a2e4392a145d2fa85d68a4d3a8b342133f4f1c6d5f98c0cd3b8732c973624cedbf82532e773e6333821b86a38ccc530df6c185307b2713f5548f7e95d69f49304a9b28223304fd26fc6b3ce8c097ebe28fcc2ee167c1f2483cddf90ac45ad14ca0b574a35df8baf6d7b59eb04b23c0a91081e41d464feadf0c92bd0e40d951a1958eef068e63e57a5894dc65c2556b42afd70b056e1883689faf73ec01139ac418706b5e2d7f04f0ceaf11bb698a1d64216cf110ff145a74b594874661de3439035228627b776450d651d28154cf77232658a625d058bd51da94ec3dd3fb1d623c815001de9ba35d089ce29049a51f508e370bb2485311f87ca253f544ba0f27cc858eb093fbf780b24a5363e2c3d00bdbe25e3df793634cb9f3ae7fcdfe1ac367d8bf570d395006241fca700fffa699361ca0d3bd7e291cbb180ef05bb55dccab21ebbf51774e3efa98771bcebc9b31329b1729e04287aa51f6c223f0828dc0cf0f85536ab181ef9f00fd4afc42b4a5d68b666a15e3f501e1386a96a26197f0770742329322ee6deddbfe3454eadcfa740e0161529dec0ebf4df577f6fa42d320369d0904d26698db3b0bb76bf01bfd745936bcd0514385043b22c609a46cb0a84f1bcb1ed77fcd27bb774c0d888fda1d4a9464f2fa6ecc8ba5bd5a4414c2bd99d1e3f32b5e061b09d49434ec78ca1e6ccc7bb33068a12d183e054652e1f96017444c007c0f23b3f63296be6a02ff92cabe89e76129368797d9dcc43e159792944404aacf5b29e14899cbedf8a30a9e0a02811b6af88a5491e835ad409766462ca912491454b0f44f5671c8a9ac"})
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)

2.461166523s ago: executing program 0 (id=7842):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x30, 0x4, 0x0, 0x0, 0xc0, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@loopback}, {@remote, 0xfffffffd}, {@multicast2, 0xb}, {@private}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000280)=r3}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000540)={&(0x7f00000003c0)="03dca02aa4e56bf03a341da4f4a678b4f57e815b171e13f9c1b4759514b169073c9a5de742fd5ff50446b5d67e50c52fd423819e9b705fdf45b09635eab3b9248cb4bad1a1c6f54d1b06c39d158036d8726321b163adda5c3323ce8bcfea0d7424d259237fa57da2786a2c8e4a113d8f8d4f4a9ece5ac727f9878daf28e357e8e2641b4224b7fca030945fc3ae4a4d9274b50c0434448abf4b8644586adfc7d7b7356a14ce37fe6695fd92d4a6455d8283dd6cc0", &(0x7f00000000c0)=""/41, &(0x7f0000000480)="44a23f7b45dcbcf6f09140ae757c327c75cd26d2c055de055f26657eab805f865cc4691ba0f76c1d6168f1c1a140dd09bc719429f883449a01156e1fd612f241d458b90626223e9083508dafc59a34e038c3363e994f8f9bc611fa9967d68ac0494a3b89dd35c5923557e8f00f191f3612abb0b28f2001b1ee4b8bb4ee", &(0x7f0000000100)="cd8db095", 0x7, r4, 0x4}, 0x38)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x0, 0x9}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
syz_emit_vhci(0x0, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x0, 0x0, @private1}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003500)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3f}, 0x1c, &(0x7f0000001540)=[{&(0x7f00000001c0)='6', 0x1}], 0x1}}], 0x1, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r7, 0x5, 0x0, 0x0, {{0x14}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x28}}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)

1.816302846s ago: executing program 3 (id=7843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x6, 0x5}, 0x48)
syz_emit_ethernet(0x7a, &(0x7f0000000080)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "dd690b", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100}, {}, {}, {0x8, 0x88be, 0x81000000}}}}}}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x2})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x65c, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
fsopen(0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000003780)=""/4096}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000600)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r9, 0x40305839, &(0x7f0000000240)=0x28084)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a38000000000a01010000000000000000050000000900010073797a30000000000c00044000000000000000040c0004400000000000000005bc000000030a01030000000000000000050000000900010073797a300000000008000540000000004c0008800c00014000000000000000010c0002400000000000f6ff000c00024000000000000016cc0c21014000000000000100010c00024000000000000000140c00014000000000000000090900030073797a32000000000b00070066696c746572000030000480080002406b10a61d140003007465616d5f736c6176655f3000000000080002404e73b858080001"], 0x130}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.770461661s ago: executing program 4 (id=7844):
socket(0x840000000002, 0x3, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000e500000085000000bb00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000017c0)=ANY=[], 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e40)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8}]}}}]}, 0x44}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x3c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb0}}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000180)=0xfffeffff)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)

668.234145ms ago: executing program 3 (id=7845):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x8004745a, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000003c0), 0x12)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x74)

356.581413ms ago: executing program 4 (id=7846):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$pppoe(0x18, 0x1, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x64, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xa}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x64}}, 0x0)

29.498677ms ago: executing program 0 (id=7848):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0xb, 0x4, 0x2}, 0x48)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa90d]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet_udplite(0x2, 0x2, 0x88)
ioprio_get$uid(0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r2, 0x0, 0x0)
set_mempolicy(0x6002, &(0x7f0000000080)=0xfffffffffffffffd, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x10, 0x0)
mount(&(0x7f0000000540)=@nullb, &(0x7f0000000040)='./file0\x00', &(0x7f00000005c0)='vxfs\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r6, 0x0, 0x0)
sendmmsg$inet6(r6, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x18, 0x0, 0x0, 0x0, 0x0, 0xe0}}], 0x17fd147c801ae9ab, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000340), &(0x7f0000000480)=r0}, 0x20)

15.401031ms ago: executing program 1 (id=7849):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6}]})
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x104}}, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
r2 = creat(&(0x7f0000000200)='./file0\x00', 0x0)
close(r2)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0x19, &(0x7f0000000040)=0x3, 0x4)
syz_emit_ethernet(0x6e, &(0x7f00000003c0)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "e4dfa1", 0x0, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @private}, @mcast2, [], "4ae87982ef59fd6d"}}}}}}}, 0x0)
read$FUSE(r2, &(0x7f0000000440)={0x2020}, 0x2020)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x402, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}})
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000200)=ANY=[@ANYRESOCT], 0xfffffecc)
splice(r5, 0x0, r1, 0x0, 0x8001, 0x0)
openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="01800000bd1b4767997579b858af2d8b9b530eb287a52da2eff4581d68199b82217b11680db2f3dbdd30e0b4647640c25a0b7eed32b44d536fcfc47d76fd9d5468d18167e334d0779b7059a0e4fd2fb6b0aec45261001c28561ce7578649f0f02817f77fd278f1e3e39e5831388e95f2b1c89b8a5662ae849838f31a110ba3c99e08009ee4693335f62bf48a04b1d9f65d96defe709264c6bc4c97f38b717fa353765e8744fb6e", @ANYRES16=r6, @ANYBLOB="00032dbd7000fedbdf25010000000c000300080000000000000004000a000c00060001000000000000000c0005002a000000000000000c00020000000000000000000c000400d066055e00000000"], 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000)
syz_emit_ethernet(0x3b7, &(0x7f0000000b40)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x381, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0302"}, {0x0, 0x1, "000000050000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x11, "b8a3e100908f61640000000000000000680000ddf1b62f371614c7f7ad7669e66485201a0015ca8374730000000000000000000000000052d45c5f66d26eb37ee29523130ea52dc10847c1b7a81fd0d1fe37ab4c40fa577cab002f70d845a60cd5f30e9c6d6cf15688640a15071907dd4dafbd3fbdaaf58cf62c52190c65cf8bc2c7a05fefce2a02c33c"}, {0x0, 0xf, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c"}]}}}}}}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

14.263734ms ago: executing program 2 (id=7850):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001b40)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=@ipv6_newrule={0x30, 0x20, 0x1, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'syz_tun\x00'}]}, 0x30}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0xfffffffe}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000010fc5bc3170000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000013040000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='mm_page_alloc\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080}, 0xa0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0xa0001f98, 0xe, 0x0, &(0x7f0000000440)="85f17444c5a569f1e21b08c0f264", 0x0, 0xa70a, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$USBDEVFS_RESETEP(0xffffffffffffffff, 0x80045503, &(0x7f0000000580)={0xd})
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
r8 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18ffff0079000000210000000000000018110014", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x90)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r9], 0x0}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r10}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r11}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r8, 0x84, 0x6d, &(0x7f00000004c0)={<r12=>0x0, 0x78, "748ccad30612a430a38687300c9e109e8664520c7a92fb86e087621f94decbb36ea9cf3906ae002af555e4eb0cb87bf256a247eddb7c6902d513615568462f3bcf1084630ab24dd15574399beba17a11acedd19fe188f09b3bfee6076f5138f83863b8b8e83fd61465cb6cb712fba400924932acbde71e4d"}, &(0x7f0000000280)=0x80)
setsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000003c0)=@assoc_id=r12, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r13, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
socketpair(0x1d, 0x2, 0x2, &(0x7f0000000380))
r14 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})

0s ago: executing program 3 (id=7851):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(serpent))\x00'}, 0x58)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
connect$can_bcm(r2, &(0x7f0000000140)={0x1d, r3}, 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000000000000000000000b0a2a7cf704005c5b64467edf2eab25936f3e77e74fb33be72b6275cdb26a244a5886fc6f44fa72a5fb90200d42882d1f7616682468fda8419c9430e175c23fb0577b98f949b648a70404ae49fe36427f561912f8c74cca76efd00107b6d"], 0x48}}, 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r6=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r6, 0x25, 0x2}, 0x40)
unshare(0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r7, &(0x7f0000000000)={0x1f, @none}, 0x8)
listen(0xffffffffffffffff, 0x0)
ppoll(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60e000f500140600fe80000000000000000000000000000000aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="050000000508"], 0x80}}, 0x0)
sendmsg$can_bcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x6, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "6f8f1b7e3e806009"}}, 0x48}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c000000070000000000000002000006040000000100000000000000feffffff030000000061"], 0x0, 0x3b}, 0x20)
fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000040)=0x5)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r8 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r8, 0x0, 0x60, &(0x7f0000000a40)={'filter\x00', 0x7, 0x4, 0x3e8, 0x210, 0x210, 0x110, 0x300, 0x300, 0x300, 0x4, &(0x7f00000000c0), {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x8, 0x1}}}, {{@arp={@dev, @empty, 0x0, 0x0, 0x2, 0x79, {@mac=@random="5e92bd153c4d", {[0xff, 0xff, 0xff]}}, {@mac, {[0x0, 0x0, 0xff, 0x0, 0xff]}}, 0x5, 0x4d6, 0x0, 0xdd, 0x2, 0x2, 'rose0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x130}, 0xc0, 0x100}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "73b26a5ee4225c434f11311dffa85bc42d2a91eae0eee5fdba31f67aacf2"}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x5, 0x5, 0x4, 0x2}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
sendmmsg$alg(r8, &(0x7f0000001800)=[{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000005c0)='\vG\x00\x00\x00\x00\x00\x00', 0x8}, {&(0x7f0000000600)="75bbf8406512d05b5f0d20e228166f9c4e9e6b75da8277799171b2e9d52130d48e3dbf971bae267f86", 0x29}], 0x2}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

cing a failure.
[ 1982.072884][T30740] name failslab, interval 1, probability 0, space 0, times 0
[ 1982.111789][T30740] CPU: 0 UID: 0 PID: 30740 Comm: syz.4.7351 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 1982.122611][T30740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1982.132677][T30740] Call Trace:
[ 1982.135962][T30740]  <TASK>
[ 1982.138898][T30740]  dump_stack_lvl+0x241/0x360
[ 1982.143613][T30740]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1982.148847][T30740]  ? __pfx__printk+0x10/0x10
[ 1982.153467][T30740]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1982.159468][T30740]  ? __pfx___might_resched+0x10/0x10
[ 1982.164774][T30740]  should_fail_ex+0x3b0/0x4e0
[ 1982.169467][T30740]  should_failslab+0xac/0x100
[ 1982.174161][T30740]  ? __alloc_skb+0x1c3/0x440
[ 1982.178772][T30740]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1982.184603][T30740]  __alloc_skb+0x1c3/0x440
[ 1982.189043][T30740]  ? __pfx___alloc_skb+0x10/0x10
[ 1982.194013][T30740]  ? netlink_autobind+0xd6/0x2f0
[ 1982.198974][T30740]  ? netlink_autobind+0x2b0/0x2f0
[ 1982.204019][T30740]  netlink_sendmsg+0x638/0xcb0
[ 1982.208814][T30740]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1982.214130][T30740]  ? __import_iovec+0x536/0x820
[ 1982.219004][T30740]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1982.224303][T30740]  ? security_socket_sendmsg+0x87/0xb0
[ 1982.229778][T30740]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1982.235084][T30740]  __sock_sendmsg+0x221/0x270
[ 1982.239780][T30740]  ____sys_sendmsg+0x525/0x7d0
[ 1982.244569][T30740]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1982.249878][T30740]  __sys_sendmsg+0x2b0/0x3a0
[ 1982.254489][T30740]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1982.259609][T30740]  ? vfs_write+0x7c4/0xc90
[ 1982.264072][T30740]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1982.270419][T30740]  ? do_syscall_64+0x100/0x230
[ 1982.275213][T30740]  ? do_syscall_64+0xb6/0x230
[ 1982.279903][T30740]  do_syscall_64+0xf3/0x230
[ 1982.284405][T30740]  ? clear_bhb_loop+0x35/0x90
[ 1982.289103][T30740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1982.294987][T30740] RIP: 0033:0x7f4239777299
[ 1982.299395][T30740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1982.318989][T30740] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1982.327391][T30740] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 1982.335348][T30740] RDX: 0000000000000000 RSI: 0000000020002140 RDI: 0000000000000004
[ 1982.343312][T30740] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1982.351275][T30740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1982.359237][T30740] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 1982.367215][T30740]  </TASK>
[ 1982.493096][T18290] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1982.504055][T18290] usb 3-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[ 1982.528122][T18290] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1982.549493][T18290] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1982.581941][T30748] syz_tun: entered allmulticast mode
[ 1982.594829][T30747] syz_tun: left allmulticast mode
[ 1984.889637][    T8] usb 3-1: USB disconnect, device number 24
[ 1985.400910][T30777] devtmpfs: Unknown parameter 'siz0177777777777777777777700000000000000000000'
[ 1985.666028][ T5311] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[ 1985.674262][ T5311] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[ 1986.602472][ T5311] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1986.633247][T30784] FAULT_INJECTION: forcing a failure.
[ 1986.633247][T30784] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1986.650252][T30784] CPU: 1 UID: 0 PID: 30784 Comm: syz.2.7364 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 1986.661046][T30784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1986.671114][T30784] Call Trace:
[ 1986.674391][T30784]  <TASK>
[ 1986.677316][T30784]  dump_stack_lvl+0x241/0x360
[ 1986.681994][T30784]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1986.687186][T30784]  ? __pfx__printk+0x10/0x10
[ 1986.691770][T30784]  ? __pfx_lock_release+0x10/0x10
[ 1986.696790][T30784]  ? rcu_is_watching+0x15/0xb0
[ 1986.701550][T30784]  should_fail_ex+0x3b0/0x4e0
[ 1986.706219][T30784]  _copy_from_iter+0x1f6/0x1960
[ 1986.711077][T30784]  ? alloc_pages_mpol_noprof+0x417/0x680
[ 1986.716704][T30784]  ? __pfx__copy_from_iter+0x10/0x10
[ 1986.722089][T30784]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1986.728086][T30784]  ? alloc_pages_noprof+0xef/0x170
[ 1986.733195][T30784]  ? page_copy_sane+0x46/0x260
[ 1986.737958][T30784]  copy_page_from_iter+0x7a/0x100
[ 1986.742976][T30784]  tun_get_user+0x1f7d/0x4720
[ 1986.747652][T30784]  ? tun_get_user+0x871/0x4720
[ 1986.752418][T30784]  ? __lock_acquire+0x137a/0x2040
[ 1986.757440][T30784]  ? __pfx_tun_get_user+0x10/0x10
[ 1986.762471][T30784]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1986.767925][T30784]  ? tun_get+0x1e/0x2f0
[ 1986.772073][T30784]  ? __pfx_lock_release+0x10/0x10
[ 1986.777099][T30784]  ? tun_get+0x1e/0x2f0
[ 1986.781242][T30784]  ? tun_get+0x27d/0x2f0
[ 1986.785474][T30784]  tun_chr_write_iter+0x113/0x1f0
[ 1986.790510][T30784]  vfs_write+0xa72/0xc90
[ 1986.794751][T30784]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1986.800290][T30784]  ? __pfx_vfs_write+0x10/0x10
[ 1986.805061][T30784]  ksys_write+0x1a0/0x2c0
[ 1986.809387][T30784]  ? __pfx_ksys_write+0x10/0x10
[ 1986.814231][T30784]  ? do_syscall_64+0x100/0x230
[ 1986.818989][T30784]  ? do_syscall_64+0xb6/0x230
[ 1986.823665][T30784]  do_syscall_64+0xf3/0x230
[ 1986.828176][T30784]  ? clear_bhb_loop+0x35/0x90
[ 1986.832857][T30784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1986.838761][T30784] RIP: 0033:0x7f797e775e1f
[ 1986.843169][T30784] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[ 1986.862773][T30784] RSP: 002b:00007f797f52b010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1986.871189][T30784] RAX: ffffffffffffffda RBX: 00007f797e905f80 RCX: 00007f797e775e1f
[ 1986.879156][T30784] RDX: 0000000000000076 RSI: 0000000020000580 RDI: 00000000000000c8
[ 1986.887115][T30784] RBP: 00007f797f52b0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1986.895078][T30784] R10: 0000000000000076 R11: 0000000000000293 R12: 0000000000000001
[ 1986.903040][T30784] R13: 000000000000000b R14: 00007f797e905f80 R15: 00007fffd400adb8
[ 1986.911022][T30784]  </TASK>
[ 1987.687080][T30796] netlink: 36 bytes leftover after parsing attributes in process `syz.2.7368'.
[ 1987.709427][ T5311] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1987.779308][T30805] devtmpfs: Too few inodes for current use
[ 1988.118152][ T5311] usb 2-1: Using ep0 maxpacket: 8
[ 1988.789990][ T5311] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1988.801693][ T5311] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 1988.813933][ T5311] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 239, changing to 11
[ 1988.825786][ T5311] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 9059, setting to 1024
[ 1988.843166][ T5311] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1988.869413][ T5311] usb 2-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[ 1989.201155][ T5311] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1989.216586][ T5311] usb 2-1: Product: syz
[ 1989.222193][ T5311] usb 2-1: Manufacturer: syz
[ 1989.226825][ T5311] usb 2-1: SerialNumber: syz
[ 1989.242092][ T5311] usb 2-1: config 0 descriptor??
[ 1989.326352][ T5311] rc_core: IR keymap rc-imon-rsc not found
[ 1989.346018][ T5311] Registered IR keymap rc-empty
[ 1989.373273][ T5311] rc rc0: iMON Station as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1989.414593][ T5311] input: iMON Station as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input156
[ 1990.692075][T15575] usb 2-1: USB disconnect, device number 54
[ 1990.983997][ T5311] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1991.097803][T30849] devtmpfs: Too few inodes for current use
[ 1991.211260][ T5311] usb 5-1: Using ep0 maxpacket: 32
[ 1991.219076][ T5311] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1991.235964][ T5311] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1991.253350][ T5311] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1991.264082][ T5311] usb 5-1: Product: syz
[ 1991.268896][ T5311] usb 5-1: Manufacturer: Ѝ
[ 1991.275314][ T5311] usb 5-1: SerialNumber: syz
[ 1991.300099][T30840] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1991.325506][ T5311] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[ 1991.954266][T30859] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7385'.
[ 1992.185382][ T5311] usb 5-1: USB disconnect, device number 22
[ 1993.369887][T30877] netlink: 'syz.1.7390': attribute type 1 has an invalid length.
[ 1993.411228][T30880] netlink: 'syz.1.7390': attribute type 1 has an invalid length.
[ 1993.817279][    T8] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1994.451847][T30885] FAULT_INJECTION: forcing a failure.
[ 1994.451847][T30885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1994.503058][T30885] CPU: 1 UID: 0 PID: 30885 Comm: syz.4.7391 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 1994.513948][T30885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1994.523997][T30885] Call Trace:
[ 1994.527271][T30885]  <TASK>
[ 1994.530189][T30885]  dump_stack_lvl+0x241/0x360
[ 1994.534855][T30885]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1994.540038][T30885]  ? __pfx__printk+0x10/0x10
[ 1994.544614][T30885]  ? __pfx_lock_release+0x10/0x10
[ 1994.549632][T30885]  ? __lock_acquire+0x137a/0x2040
[ 1994.554647][T30885]  should_fail_ex+0x3b0/0x4e0
[ 1994.559350][T30885]  _copy_from_user+0x2f/0xe0
[ 1994.563938][T30885]  kstrtouint_from_user+0xc6/0x190
[ 1994.569050][T30885]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1994.574779][T30885]  ? __pfx_lock_acquire+0x10/0x10
[ 1994.579824][T30885]  proc_fail_nth_write+0xaa/0x2d0
[ 1994.584883][T30885]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1994.590791][T30885]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1994.596448][T30885]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1994.602082][T30885]  vfs_write+0x2a2/0xc90
[ 1994.606316][T30885]  ? __pfx_vfs_write+0x10/0x10
[ 1994.611058][T30885]  ? __fget_files+0x29/0x470
[ 1994.615638][T30885]  ? __fget_files+0x3f6/0x470
[ 1994.620308][T30885]  ksys_write+0x1a0/0x2c0
[ 1994.624626][T30885]  ? __pfx_ksys_write+0x10/0x10
[ 1994.629457][T30885]  ? do_syscall_64+0x100/0x230
[ 1994.634222][T30885]  ? do_syscall_64+0xb6/0x230
[ 1994.638905][T30885]  do_syscall_64+0xf3/0x230
[ 1994.643394][T30885]  ? clear_bhb_loop+0x35/0x90
[ 1994.648066][T30885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1994.653948][T30885] RIP: 0033:0x7f4239775e1f
[ 1994.658354][T30885] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[ 1994.677950][T30885] RSP: 002b:00007f423a4dc040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1994.686348][T30885] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4239775e1f
[ 1994.694312][T30885] RDX: 0000000000000001 RSI: 00007f423a4dc0b0 RDI: 0000000000000003
[ 1994.702306][T30885] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1994.710284][T30885] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1994.718273][T30885] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 1994.726278][T30885]  </TASK>
[ 1994.742844][    T8] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1994.765057][    T8] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1994.776074][    T8] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1994.785216][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1994.844587][T30898] devtmpfs: Too few inodes for current use
[ 1994.876843][T30872] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1994.889152][    T8] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1995.544873][    T8] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[ 1995.683475][T30912] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7397'.
[ 1995.795328][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1995.860272][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1995.874088][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10
[ 1995.927733][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1996.322292][T30918] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7399'.
[ 1997.104366][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1997.128715][    T8] usb 5-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[ 1997.138329][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1997.218765][    T8] usb 5-1: config 0 descriptor??
[ 1997.251185][T18290] usb 3-1: USB disconnect, device number 25
[ 1998.051151][T30924] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7401'.
[ 2000.877993][T30951] devtmpfs: Too few inodes for current use
[ 2001.543994][T30971] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7412'.
[ 2002.180620][    T8] usbhid 5-1:0.0: can't add hid device: -71
[ 2002.268186][    T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 2002.321098][    T8] usb 5-1: USB disconnect, device number 23
[ 2002.358578][T15575] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 2002.489044][T24907] Bluetooth: hci3: unexpected event for opcode 0x203c
[ 2002.761519][T30282] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 2002.791714][T15575] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[ 2003.702776][T15575] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2003.734394][T15575] usb 3-1: Product: syz
[ 2003.738608][T15575] usb 3-1: Manufacturer: syz
[ 2003.766312][T15575] usb 3-1: SerialNumber: syz
[ 2003.785573][T15575] usb 3-1: config 0 descriptor??
[ 2003.811781][T30282] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2003.840629][T30282] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2004.004933][T30282] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2004.015301][T30282] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2004.030181][T30992] FAULT_INJECTION: forcing a failure.
[ 2004.030181][T30992] name failslab, interval 1, probability 0, space 0, times 0
[ 2004.052081][T30975] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 2004.828381][T30992] CPU: 0 UID: 0 PID: 30992 Comm: syz.4.7416 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2004.839294][T30992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2004.849362][T30992] Call Trace:
[ 2004.852658][T30992]  <TASK>
[ 2004.855599][T30992]  dump_stack_lvl+0x241/0x360
[ 2004.860313][T30992]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2004.865512][T30992]  ? __pfx__printk+0x10/0x10
[ 2004.870104][T30992]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2004.876072][T30992]  ? __pfx___might_resched+0x10/0x10
[ 2004.881374][T30992]  should_fail_ex+0x3b0/0x4e0
[ 2004.886067][T30992]  should_failslab+0xac/0x100
[ 2004.890762][T30992]  ? __alloc_skb+0x1c3/0x440
[ 2004.895636][T30992]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2004.901467][T30992]  __alloc_skb+0x1c3/0x440
[ 2004.905912][T30992]  ? __pfx___alloc_skb+0x10/0x10
[ 2004.910870][T30992]  ? netlink_autobind+0xd6/0x2f0
[ 2004.915826][T30992]  ? netlink_autobind+0x2b0/0x2f0
[ 2004.921222][T30992]  netlink_sendmsg+0x638/0xcb0
[ 2004.926015][T30992]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2004.931319][T30992]  ? __import_iovec+0x536/0x820
[ 2004.936191][T30992]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2004.941486][T30992]  ? security_socket_sendmsg+0x87/0xb0
[ 2004.946937][T30992]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2004.952212][T30992]  __sock_sendmsg+0x221/0x270
[ 2004.956881][T30992]  ____sys_sendmsg+0x525/0x7d0
[ 2004.961656][T30992]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2004.966960][T30992]  __sys_sendmsg+0x2b0/0x3a0
[ 2004.971531][T30992]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2004.976630][T30992]  ? vfs_write+0x7c4/0xc90
[ 2004.981058][T30992]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2004.987376][T30992]  ? do_syscall_64+0x100/0x230
[ 2004.992145][T30992]  ? do_syscall_64+0xb6/0x230
[ 2004.996921][T30992]  do_syscall_64+0xf3/0x230
[ 2005.001411][T30992]  ? clear_bhb_loop+0x35/0x90
[ 2005.006074][T30992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2005.011959][T30992] RIP: 0033:0x7f4239777299
[ 2005.016361][T30992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2005.035955][T30992] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2005.044362][T30992] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 2005.052335][T30992] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[ 2005.060291][T30992] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.068245][T30992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2005.076196][T30992] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2005.084160][T30992]  </TASK>
[ 2005.107652][T30282] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 2005.176222][T15575] usb 3-1: USB disconnect, device number 26
[ 2005.223445][T30996] netlink: 'syz.0.7418': attribute type 29 has an invalid length.
[ 2005.248479][T30282] usb 4-1: USB disconnect, device number 15
[ 2005.275034][T30996] netlink: 'syz.0.7418': attribute type 29 has an invalid length.
[ 2005.314693][T30996] netlink: 'syz.0.7418': attribute type 29 has an invalid length.
[ 2005.367329][T30996] netlink: 'syz.0.7418': attribute type 29 has an invalid length.
[ 2005.376051][T31000] devtmpfs: Too few inodes for current use
[ 2005.413710][T31002] FAULT_INJECTION: forcing a failure.
[ 2005.413710][T31002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2005.445831][T31002] CPU: 1 UID: 0 PID: 31002 Comm: syz.4.7421 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2005.456640][T31002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2005.466710][T31002] Call Trace:
[ 2005.470006][T31002]  <TASK>
[ 2005.472948][T31002]  dump_stack_lvl+0x241/0x360
[ 2005.477655][T31002]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2005.482866][T31002]  ? __pfx__printk+0x10/0x10
[ 2005.487456][T31002]  ? snprintf+0xda/0x120
[ 2005.491703][T31002]  should_fail_ex+0x3b0/0x4e0
[ 2005.496376][T31002]  _copy_to_user+0x2f/0xb0
[ 2005.500793][T31002]  simple_read_from_buffer+0xca/0x150
[ 2005.506164][T31002]  proc_fail_nth_read+0x1e9/0x250
[ 2005.511188][T31002]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2005.516731][T31002]  ? rw_verify_area+0x520/0x6b0
[ 2005.521572][T31002]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2005.527114][T31002]  vfs_read+0x204/0xbc0
[ 2005.531260][T31002]  ? __pfx_lock_release+0x10/0x10
[ 2005.536284][T31002]  ? __pfx_vfs_read+0x10/0x10
[ 2005.540953][T31002]  ? __fget_files+0x29/0x470
[ 2005.545536][T31002]  ? __fget_files+0x3f6/0x470
[ 2005.550212][T31002]  ksys_read+0x1a0/0x2c0
[ 2005.554450][T31002]  ? __pfx_ksys_read+0x10/0x10
[ 2005.559211][T31002]  ? do_syscall_64+0x100/0x230
[ 2005.563972][T31002]  ? do_syscall_64+0xb6/0x230
[ 2005.568804][T31002]  do_syscall_64+0xf3/0x230
[ 2005.573312][T31002]  ? clear_bhb_loop+0x35/0x90
[ 2005.577994][T31002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2005.583895][T31002] RIP: 0033:0x7f4239775d7c
[ 2005.588313][T31002] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[ 2005.607934][T31002] RSP: 002b:00007f423a4dc040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2005.616360][T31002] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239775d7c
[ 2005.624326][T31002] RDX: 000000000000000f RSI: 00007f423a4dc0b0 RDI: 0000000000000004
[ 2005.632290][T31002] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.640255][T31002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2005.648224][T31002] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2005.656201][T31002]  </TASK>
[ 2005.659306][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2005.767039][T31010] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 2006.138020][T31026] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7424'.
[ 2007.057778][T31029] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7426'.
[ 2007.279204][T31038] FAULT_INJECTION: forcing a failure.
[ 2007.279204][T31038] name failslab, interval 1, probability 0, space 0, times 0
[ 2007.325472][T31038] CPU: 1 UID: 0 PID: 31038 Comm: syz.3.7430 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2007.336293][T31038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2007.346366][T31038] Call Trace:
[ 2007.349655][T31038]  <TASK>
[ 2007.352594][T31038]  dump_stack_lvl+0x241/0x360
[ 2007.357298][T31038]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2007.362599][T31038]  ? __pfx__printk+0x10/0x10
[ 2007.367217][T31038]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2007.373219][T31038]  ? __pfx___might_resched+0x10/0x10
[ 2007.378528][T31038]  should_fail_ex+0x3b0/0x4e0
[ 2007.383226][T31038]  should_failslab+0xac/0x100
[ 2007.388008][T31038]  ? __alloc_skb+0x1c3/0x440
[ 2007.392623][T31038]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2007.398462][T31038]  __alloc_skb+0x1c3/0x440
[ 2007.402913][T31038]  ? __pfx___alloc_skb+0x10/0x10
[ 2007.407889][T31038]  pfkey_sendmsg+0x1da/0x1050
[ 2007.412601][T31038]  ? smack_socket_sendmsg+0x172/0x540
[ 2007.417998][T31038]  ? __pfx_pfkey_sendmsg+0x10/0x10
[ 2007.423128][T31038]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[ 2007.429570][T31038]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[ 2007.436357][T31038]  ? __pfx___might_resched+0x10/0x10
[ 2007.441662][T31038]  ? __might_fault+0xaa/0x120
[ 2007.446359][T31038]  ? __pfx_lock_release+0x10/0x10
[ 2007.451404][T31038]  ? __import_iovec+0x536/0x820
[ 2007.456274][T31038]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2007.461573][T31038]  ? security_socket_sendmsg+0x87/0xb0
[ 2007.467051][T31038]  ? __pfx_pfkey_sendmsg+0x10/0x10
[ 2007.472181][T31038]  __sock_sendmsg+0x221/0x270
[ 2007.476883][T31038]  ____sys_sendmsg+0x525/0x7d0
[ 2007.481670][T31038]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2007.486984][T31038]  __sys_sendmsg+0x2b0/0x3a0
[ 2007.491590][T31038]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2007.496713][T31038]  ? vfs_write+0x7c4/0xc90
[ 2007.501181][T31038]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2007.507529][T31038]  ? do_syscall_64+0x100/0x230
[ 2007.512409][T31038]  ? do_syscall_64+0xb6/0x230
[ 2007.517106][T31038]  do_syscall_64+0xf3/0x230
[ 2007.521624][T31038]  ? clear_bhb_loop+0x35/0x90
[ 2007.526324][T31038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2007.532240][T31038] RIP: 0033:0x7f1cbcf77299
[ 2007.536670][T31038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2007.556298][T31038] RSP: 002b:00007f1cbdd12048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2007.564738][T31038] RAX: ffffffffffffffda RBX: 00007f1cbd105f80 RCX: 00007f1cbcf77299
[ 2007.572732][T31038] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[ 2007.580725][T31038] RBP: 00007f1cbdd120a0 R08: 0000000000000000 R09: 0000000000000000
[ 2007.588720][T31038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2007.596711][T31038] R13: 000000000000000b R14: 00007f1cbd105f80 R15: 00007ffd7ddfed08
[ 2007.604718][T31038]  </TASK>
[ 2008.523611][ T5311] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 2009.646126][ T5311] usb 2-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=e6.af
[ 2009.677497][ T5311] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2009.727503][ T5311] usb 2-1: config 0 descriptor??
[ 2009.743422][ T5311] gspca_main: sonixj-2.14.0 probing 0c45:614a
[ 2010.480140][T31040] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2010.540448][T31040] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2010.680450][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 2010.695254][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 2010.695263][ T5311] gspca_sonixj: reg_w1 err -71
[ 2010.695333][ T5311] sonixj 2-1:0.0: probe with driver sonixj failed with error -71
[ 2010.777256][T31079] netlink: 36 bytes leftover after parsing attributes in process `syz.2.7439'.
[ 2011.392609][ T5311] usb 2-1: USB disconnect, device number 55
[ 2014.120247][T31109] FAULT_INJECTION: forcing a failure.
[ 2014.120247][T31109] name failslab, interval 1, probability 0, space 0, times 0
[ 2014.130074][T31111] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7450'.
[ 2014.173473][T31109] CPU: 1 UID: 0 PID: 31109 Comm: syz.1.7448 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2014.184288][T31109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2014.194372][T31109] Call Trace:
[ 2014.197674][T31109]  <TASK>
[ 2014.200623][T31109]  dump_stack_lvl+0x241/0x360
[ 2014.205334][T31109]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2014.210566][T31109]  ? __pfx__printk+0x10/0x10
[ 2014.215186][T31109]  ? fs_reclaim_acquire+0x93/0x140
[ 2014.220323][T31109]  ? __pfx___might_resched+0x10/0x10
[ 2014.225636][T31109]  should_fail_ex+0x3b0/0x4e0
[ 2014.230336][T31109]  ? tomoyo_encode+0x26f/0x540
[ 2014.235125][T31109]  should_failslab+0xac/0x100
[ 2014.239825][T31109]  ? tomoyo_encode+0x26f/0x540
[ 2014.244614][T31109]  __kmalloc_noprof+0xd8/0x400
[ 2014.249407][T31109]  tomoyo_encode+0x26f/0x540
[ 2014.254024][T31109]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 2014.259695][T31109]  tomoyo_path_number_perm+0x23a/0x880
[ 2014.265186][T31109]  ? tomoyo_path_number_perm+0x208/0x880
[ 2014.270840][T31109]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2014.276880][T31109]  ? __fget_files+0x29/0x470
[ 2014.281496][T31109]  ? __fget_files+0x3f6/0x470
[ 2014.286188][T31109]  ? __fget_files+0x29/0x470
[ 2014.290807][T31109]  security_file_ioctl+0x75/0xb0
[ 2014.295772][T31109]  __se_sys_ioctl+0x47/0x170
[ 2014.300385][T31109]  do_syscall_64+0xf3/0x230
[ 2014.304909][T31109]  ? clear_bhb_loop+0x35/0x90
[ 2014.309618][T31109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2014.315533][T31109] RIP: 0033:0x7f1cdaf77299
[ 2014.319967][T31109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2014.339593][T31109] RSP: 002b:00007f1cdbcad048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2014.348030][T31109] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf77299
[ 2014.356023][T31109] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000003
[ 2014.364012][T31109] RBP: 00007f1cdbcad0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2014.372003][T31109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2014.380091][T31109] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2014.388107][T31109]  </TASK>
[ 2014.391234][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2014.421758][T31109] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2014.803003][T31128] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7452'.
[ 2015.933493][T31134] QAT: Device 0 not found
[ 2017.420975][T31155] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7462'.
[ 2017.598937][T31160] FAULT_INJECTION: forcing a failure.
[ 2017.598937][T31160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2017.622055][T31160] CPU: 1 UID: 0 PID: 31160 Comm: syz.3.7464 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2017.632869][T31160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2017.642948][T31160] Call Trace:
[ 2017.646245][T31160]  <TASK>
[ 2017.649188][T31160]  dump_stack_lvl+0x241/0x360
[ 2017.653882][T31160]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2017.659090][T31160]  ? __pfx__printk+0x10/0x10
[ 2017.663672][T31160]  ? __pfx_lock_release+0x10/0x10
[ 2017.668685][T31160]  ? __fget_files+0x3f6/0x470
[ 2017.673366][T31160]  should_fail_ex+0x3b0/0x4e0
[ 2017.678142][T31160]  _copy_from_user+0x2f/0xe0
[ 2017.682726][T31160]  __x64_sys_epoll_ctl+0x124/0x1a0
[ 2017.687833][T31160]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 2017.693466][T31160]  ? do_syscall_64+0x100/0x230
[ 2017.698254][T31160]  ? do_syscall_64+0xb6/0x230
[ 2017.702944][T31160]  do_syscall_64+0xf3/0x230
[ 2017.707436][T31160]  ? clear_bhb_loop+0x35/0x90
[ 2017.712103][T31160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2017.717987][T31160] RIP: 0033:0x7f1cbcf77299
[ 2017.722389][T31160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2017.741989][T31160] RSP: 002b:00007f1cbdcf1048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 2017.750396][T31160] RAX: ffffffffffffffda RBX: 00007f1cbd106058 RCX: 00007f1cbcf77299
[ 2017.758375][T31160] RDX: ffffffffffffffff RSI: 0000000000000001 RDI: 0000000000000004
[ 2017.766357][T31160] RBP: 00007f1cbdcf10a0 R08: 0000000000000000 R09: 0000000000000000
[ 2017.774322][T31160] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001
[ 2017.782293][T31160] R13: 000000000000006e R14: 00007f1cbd106058 R15: 00007ffd7ddfed08
[ 2017.790281][T31160]  </TASK>
[ 2017.855505][T31168] FAULT_INJECTION: forcing a failure.
[ 2017.855505][T31168] name failslab, interval 1, probability 0, space 0, times 0
[ 2017.922618][T31168] CPU: 0 UID: 0 PID: 31168 Comm: syz.4.7466 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2017.933436][T31168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2017.943512][T31168] Call Trace:
[ 2017.946813][T31168]  <TASK>
[ 2017.949757][T31168]  dump_stack_lvl+0x241/0x360
[ 2017.954464][T31168]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2017.959687][T31168]  ? __pfx__printk+0x10/0x10
[ 2017.964303][T31168]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2017.970307][T31168]  ? __pfx___might_resched+0x10/0x10
[ 2017.975624][T31168]  should_fail_ex+0x3b0/0x4e0
[ 2017.980334][T31168]  should_failslab+0xac/0x100
[ 2017.985034][T31168]  ? __alloc_skb+0x1c3/0x440
[ 2017.989643][T31168]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2017.995477][T31168]  __alloc_skb+0x1c3/0x440
[ 2017.999925][T31168]  ? __pfx___alloc_skb+0x10/0x10
[ 2018.004896][T31168]  ? netlink_autobind+0xd6/0x2f0
[ 2018.009865][T31168]  ? netlink_autobind+0x2b0/0x2f0
[ 2018.014919][T31168]  netlink_sendmsg+0x638/0xcb0
[ 2018.019792][T31168]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2018.025072][T31168]  ? __import_iovec+0x536/0x820
[ 2018.029928][T31168]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2018.035223][T31168]  ? security_socket_sendmsg+0x87/0xb0
[ 2018.040682][T31168]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2018.045963][T31168]  __sock_sendmsg+0x221/0x270
[ 2018.050640][T31168]  ____sys_sendmsg+0x525/0x7d0
[ 2018.055405][T31168]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2018.060700][T31168]  __sys_sendmsg+0x2b0/0x3a0
[ 2018.065281][T31168]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2018.070384][T31168]  ? vfs_write+0x7c4/0xc90
[ 2018.074822][T31168]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2018.081147][T31168]  ? do_syscall_64+0x100/0x230
[ 2018.085908][T31168]  ? do_syscall_64+0xb6/0x230
[ 2018.090585][T31168]  do_syscall_64+0xf3/0x230
[ 2018.095089][T31168]  ? clear_bhb_loop+0x35/0x90
[ 2018.099773][T31168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2018.105661][T31168] RIP: 0033:0x7f4239777299
[ 2018.110070][T31168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2018.129674][T31168] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2018.138087][T31168] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 2018.146055][T31168] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 2018.154020][T31168] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2018.161982][T31168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2018.169941][T31168] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2018.177915][T31168]  </TASK>
[ 2018.479002][T31174] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7467'.
[ 2021.071804][T31201] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7476'.
[ 2021.413463][T31207] netlink: 'syz.0.7471': attribute type 4 has an invalid length.
[ 2021.470555][T31207] netlink: 17 bytes leftover after parsing attributes in process `syz.0.7471'.
[ 2023.973592][T31237] netlink: 36 bytes leftover after parsing attributes in process `syz.4.7481'.
[ 2026.942470][T31256] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7487'.
[ 2026.993109][T31258] FAULT_INJECTION: forcing a failure.
[ 2026.993109][T31258] name failslab, interval 1, probability 0, space 0, times 0
[ 2027.006147][T31258] CPU: 0 UID: 0 PID: 31258 Comm: syz.1.7489 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2027.016942][T31258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2027.027016][T31258] Call Trace:
[ 2027.030294][T31258]  <TASK>
[ 2027.033216][T31258]  dump_stack_lvl+0x241/0x360
[ 2027.037893][T31258]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2027.043084][T31258]  ? __pfx__printk+0x10/0x10
[ 2027.047670][T31258]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2027.053662][T31258]  ? __pfx___might_resched+0x10/0x10
[ 2027.058942][T31258]  should_fail_ex+0x3b0/0x4e0
[ 2027.063616][T31258]  should_failslab+0xac/0x100
[ 2027.068301][T31258]  ? __alloc_skb+0x1c3/0x440
[ 2027.072913][T31258]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2027.078757][T31258]  __alloc_skb+0x1c3/0x440
[ 2027.083211][T31258]  ? __pfx___alloc_skb+0x10/0x10
[ 2027.088263][T31258]  ? netlink_autobind+0xd6/0x2f0
[ 2027.093223][T31258]  ? netlink_autobind+0x2b0/0x2f0
[ 2027.098275][T31258]  netlink_sendmsg+0x638/0xcb0
[ 2027.103069][T31258]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2027.108386][T31258]  ? __import_iovec+0x536/0x820
[ 2027.113259][T31258]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2027.118567][T31258]  ? security_socket_sendmsg+0x87/0xb0
[ 2027.124045][T31258]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2027.129329][T31258]  __sock_sendmsg+0x221/0x270
[ 2027.134002][T31258]  ____sys_sendmsg+0x525/0x7d0
[ 2027.138764][T31258]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2027.144048][T31258]  __sys_sendmsg+0x2b0/0x3a0
[ 2027.148628][T31258]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2027.153725][T31258]  ? vfs_write+0x7c4/0xc90
[ 2027.158162][T31258]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2027.164490][T31258]  ? do_syscall_64+0x100/0x230
[ 2027.169249][T31258]  ? do_syscall_64+0xb6/0x230
[ 2027.173916][T31258]  do_syscall_64+0xf3/0x230
[ 2027.178420][T31258]  ? clear_bhb_loop+0x35/0x90
[ 2027.183094][T31258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2027.188979][T31258] RIP: 0033:0x7f1cdaf77299
[ 2027.193384][T31258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2027.212984][T31258] RSP: 002b:00007f1cdbcad048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2027.221395][T31258] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf77299
[ 2027.229356][T31258] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000003
[ 2027.237322][T31258] RBP: 00007f1cdbcad0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2027.245284][T31258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2027.253251][T31258] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2027.261273][T31258]  </TASK>
[ 2027.264397][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2029.571150][T31269] vxfs: WRONG superblock magic 00000000 at 1
[ 2029.577436][T31269] vxfs: WRONG superblock magic 00000000 at 8
[ 2029.583938][T31269] vxfs: can't find superblock.
[ 2032.972416][T31290] ptrace attach of "./syz-executor exec"[24605] was attempted by "./syz-executor exec"[31290]
[ 2034.397124][T31301] FAULT_INJECTION: forcing a failure.
[ 2034.397124][T31301] name failslab, interval 1, probability 0, space 0, times 0
[ 2034.461828][T31301] CPU: 0 UID: 0 PID: 31301 Comm: syz.4.7500 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2034.472648][T31301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2034.482723][T31301] Call Trace:
[ 2034.486007][T31301]  <TASK>
[ 2034.488927][T31301]  dump_stack_lvl+0x241/0x360
[ 2034.493604][T31301]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2034.498796][T31301]  ? __pfx__printk+0x10/0x10
[ 2034.503377][T31301]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2034.509350][T31301]  ? __pfx___might_resched+0x10/0x10
[ 2034.514626][T31301]  should_fail_ex+0x3b0/0x4e0
[ 2034.519292][T31301]  should_failslab+0xac/0x100
[ 2034.523969][T31301]  ? __alloc_skb+0x1c3/0x440
[ 2034.528576][T31301]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2034.534391][T31301]  __alloc_skb+0x1c3/0x440
[ 2034.538807][T31301]  ? __pfx___alloc_skb+0x10/0x10
[ 2034.543742][T31301]  ? netlink_autobind+0xd6/0x2f0
[ 2034.548673][T31301]  ? netlink_autobind+0x2b0/0x2f0
[ 2034.553695][T31301]  netlink_sendmsg+0x638/0xcb0
[ 2034.558571][T31301]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2034.563868][T31301]  ? __import_iovec+0x536/0x820
[ 2034.568725][T31301]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2034.574027][T31301]  ? security_socket_sendmsg+0x87/0xb0
[ 2034.579499][T31301]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2034.584794][T31301]  __sock_sendmsg+0x221/0x270
[ 2034.589480][T31301]  ____sys_sendmsg+0x525/0x7d0
[ 2034.594244][T31301]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2034.599533][T31301]  __sys_sendmsg+0x2b0/0x3a0
[ 2034.604118][T31301]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2034.609215][T31301]  ? vfs_write+0x7c4/0xc90
[ 2034.613652][T31301]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2034.619976][T31301]  ? do_syscall_64+0x100/0x230
[ 2034.624734][T31301]  ? do_syscall_64+0xb6/0x230
[ 2034.629412][T31301]  do_syscall_64+0xf3/0x230
[ 2034.633923][T31301]  ? clear_bhb_loop+0x35/0x90
[ 2034.638595][T31301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2034.644481][T31301] RIP: 0033:0x7f4239777299
[ 2034.648886][T31301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2034.668498][T31301] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2034.676926][T31301] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 2034.684894][T31301] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[ 2034.692863][T31301] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2034.700829][T31301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2034.708798][T31301] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2034.716779][T31301]  </TASK>
[ 2035.625303][T31308] netlink: 'syz.4.7502': attribute type 1 has an invalid length.
[ 2035.673493][T31308] netlink: 9272 bytes leftover after parsing attributes in process `syz.4.7502'.
[ 2035.727750][T31308] netlink: 'syz.4.7502': attribute type 1 has an invalid length.
[ 2035.745100][T31308] netlink: 'syz.4.7502': attribute type 1 has an invalid length.
[ 2035.965591][T31310] input: syz0 as /devices/virtual/input/input157
[ 2036.820097][T31320] tmpfs: Bad value for 'uid'
[ 2036.828770][T31320] tmpfs: Bad value for 'uid'
[ 2036.893758][T31320] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7505'.
[ 2036.970056][T31322] netlink: 'syz.0.7506': attribute type 29 has an invalid length.
[ 2037.273218][T31322] netlink: 'syz.0.7506': attribute type 29 has an invalid length.
[ 2038.492960][T31322] netlink: 'syz.0.7506': attribute type 29 has an invalid length.
[ 2038.629056][T31324] netlink: 'syz.0.7506': attribute type 29 has an invalid length.
[ 2039.810215][ T5350] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 2040.671870][ T5350] usb 4-1: device descriptor read/all, error -71
[ 2041.826049][T31368] syz.1.7518 (31368): /proc/31367/oom_adj is deprecated, please use /proc/31367/oom_score_adj instead.
[ 2041.936351][T31368] FAULT_INJECTION: forcing a failure.
[ 2041.936351][T31368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2041.983522][T31368] CPU: 1 UID: 0 PID: 31368 Comm: syz.1.7518 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2041.986461][T31364] input: syz0 as /devices/virtual/input/input158
[ 2041.994314][T31368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2041.994333][T31368] Call Trace:
[ 2041.994343][T31368]  <TASK>
[ 2041.994352][T31368]  dump_stack_lvl+0x241/0x360
[ 2042.021611][T31368]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2042.026836][T31368]  ? __pfx__printk+0x10/0x10
[ 2042.031458][T31368]  ? snprintf+0xda/0x120
[ 2042.035733][T31368]  should_fail_ex+0x3b0/0x4e0
[ 2042.040440][T31368]  _copy_to_user+0x2f/0xb0
[ 2042.044877][T31368]  simple_read_from_buffer+0xca/0x150
[ 2042.050273][T31368]  proc_fail_nth_read+0x1e9/0x250
[ 2042.055330][T31368]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2042.060905][T31368]  ? rw_verify_area+0x520/0x6b0
[ 2042.065774][T31368]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2042.071352][T31368]  vfs_read+0x204/0xbc0
[ 2042.075529][T31368]  ? __pfx_lock_release+0x10/0x10
[ 2042.080583][T31368]  ? __pfx_vfs_read+0x10/0x10
[ 2042.085287][T31368]  ? __fget_files+0x29/0x470
[ 2042.089905][T31368]  ? __fget_files+0x3f6/0x470
[ 2042.094625][T31368]  ksys_read+0x1a0/0x2c0
[ 2042.098897][T31368]  ? __pfx_ksys_read+0x10/0x10
[ 2042.103685][T31368]  ? do_syscall_64+0x100/0x230
[ 2042.108479][T31368]  ? do_syscall_64+0xb6/0x230
[ 2042.113186][T31368]  do_syscall_64+0xf3/0x230
[ 2042.117714][T31368]  ? clear_bhb_loop+0x35/0x90
[ 2042.122423][T31368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2042.128337][T31368] RIP: 0033:0x7f1cdaf75d7c
[ 2042.132772][T31368] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[ 2042.152404][T31368] RSP: 002b:00007f1cdbcad040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2042.160848][T31368] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf75d7c
[ 2042.168847][T31368] RDX: 000000000000000f RSI: 00007f1cdbcad0b0 RDI: 0000000000000005
[ 2042.176841][T31368] RBP: 00007f1cdbcad0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2042.184833][T31368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2042.192829][T31368] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2042.200844][T31368]  </TASK>
[ 2042.203955][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2042.549757][    C1] eth0: bad gso: type: 1, size: 1408
[ 2042.567527][T31374] vxfs: WRONG superblock magic 00000000 at 1
[ 2042.574311][T31374] vxfs: WRONG superblock magic 00000000 at 8
[ 2042.580342][T31374] vxfs: can't find superblock.
[ 2044.155334][T31387] netlink: 'syz.3.7523': attribute type 29 has an invalid length.
[ 2044.280958][T31387] netlink: 'syz.3.7523': attribute type 29 has an invalid length.
[ 2044.299097][T31387] netlink: 'syz.3.7523': attribute type 29 has an invalid length.
[ 2044.363563][T31387] netlink: 'syz.3.7523': attribute type 29 has an invalid length.
[ 2044.677162][   T29] audit: type=1326 audit(2124922625.573:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31396 comm="syz.2.7528" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f797e777299 code=0x0
[ 2044.700170][T24907] Bluetooth: hci3: Received unexpected HCI Event 0x00
[ 2045.127106][T15575] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[ 2045.356348][T15575] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2045.389605][   T29] audit: type=1326 audit(2124922626.228:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31408 comm="syz.4.7529" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4239777299 code=0x0
[ 2045.455975][T15575] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2045.473734][T15575] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2045.511916][T15575] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2045.627707][T31400] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 2045.648477][T15575] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 2046.892596][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2047.198959][T31421] input: syz0 as /devices/virtual/input/input159
[ 2047.336770][T18290] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 2047.555527][T18290] usb 3-1: config 250 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 2047.588475][T18290] usb 3-1: language id specifier not provided by device, defaulting to English
[ 2047.743626][T18290] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.40
[ 2047.755999][T18290] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2047.777025][T18290] usb 3-1: Product: syz
[ 2047.791869][T18290] usb 3-1: Manufacturer: 靰ﻥ傖ᅅ㞴岼먊ߧᚨ筨鴴㝮렃舊陌睬ٶ寥淴駖켧ἲ㯩譅㯂֫凑ᶜ鎣䟒ᣇ邛྽ⰨꢅŦꂙ섾倞ࡢᅗ힋䒺⿰挱
[ 2048.729067][T18290] usb 3-1: SerialNumber: syz
[ 2048.742453][T15575] usb 2-1: USB disconnect, device number 56
[ 2048.788177][T18290] usbhid 3-1:250.0: couldn't find an input interrupt endpoint
[ 2048.834703][T31433] netlink: 'syz.1.7537': attribute type 29 has an invalid length.
[ 2049.343602][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2049.366914][T31433] netlink: 'syz.1.7537': attribute type 29 has an invalid length.
[ 2049.878774][T31433] netlink: 'syz.1.7537': attribute type 29 has an invalid length.
[ 2049.903539][T31433] netlink: 'syz.1.7537': attribute type 29 has an invalid length.
[ 2049.948317][T22798] usb 3-1: USB disconnect, device number 27
[ 2051.187989][T24907] Bluetooth: hci7: Received unexpected HCI Event 0x00
[ 2051.612787][T31467] input: syz0 as /devices/virtual/input/input160
[ 2053.131991][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2053.392666][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2053.582081][   T29] audit: type=1326 audit(2124922633.788:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31495 comm="syz.1.7553" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cdaf77299 code=0x0
[ 2054.133789][T24907] Bluetooth: hci7: Received unexpected HCI Event 0x00
[ 2054.668934][T31526] input: syz0 as /devices/virtual/input/input161
[ 2055.396602][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2055.646337][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2056.140254][T31545] netlink: 'syz.3.7566': attribute type 29 has an invalid length.
[ 2056.207151][T31545] netlink: 'syz.3.7566': attribute type 29 has an invalid length.
[ 2056.252415][T31545] netlink: 'syz.3.7566': attribute type 29 has an invalid length.
[ 2056.297064][T31554] netlink: 'syz.3.7566': attribute type 29 has an invalid length.
[ 2057.980100][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2058.568887][T31582] input: syz0 as /devices/virtual/input/input162
[ 2058.881188][   T29] audit: type=1326 audit(2124922638.681:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31593 comm="syz.3.7577" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cbcf77299 code=0x0
[ 2059.872263][T31607] input: syz0 as /devices/virtual/input/input163
[ 2060.004211][T31611] netlink: 'syz.0.7582': attribute type 29 has an invalid length.
[ 2060.131303][T31611] netlink: 'syz.0.7582': attribute type 29 has an invalid length.
[ 2060.191801][T31611] netlink: 'syz.0.7582': attribute type 29 has an invalid length.
[ 2060.239191][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2060.246498][T31611] netlink: 'syz.0.7582': attribute type 29 has an invalid length.
[ 2060.537749][T31617] syz_tun: entered allmulticast mode
[ 2065.434527][T31655] input: syz0 as /devices/virtual/input/input164
[ 2065.478283][T31657] netlink: 'syz.1.7596': attribute type 6 has an invalid length.
[ 2065.683431][    C1] eth0: bad gso: type: 1, size: 1408
[ 2065.767392][T31662] FAULT_INJECTION: forcing a failure.
[ 2065.767392][T31662] name failslab, interval 1, probability 0, space 0, times 0
[ 2065.827904][T31662] CPU: 0 UID: 0 PID: 31662 Comm: syz.4.7599 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2065.838707][T31662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2065.848784][T31662] Call Trace:
[ 2065.852076][T31662]  <TASK>
[ 2065.855018][T31662]  dump_stack_lvl+0x241/0x360
[ 2065.859720][T31662]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2065.864940][T31662]  ? __pfx__printk+0x10/0x10
[ 2065.869561][T31662]  ? fs_reclaim_acquire+0x93/0x140
[ 2065.874695][T31662]  ? __pfx___might_resched+0x10/0x10
[ 2065.880014][T31662]  should_fail_ex+0x3b0/0x4e0
[ 2065.884707][T31662]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 2065.890437][T31662]  should_failslab+0xac/0x100
[ 2065.895112][T31662]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 2065.900823][T31662]  __kmalloc_noprof+0xd8/0x400
[ 2065.905580][T31662]  ? kfree+0x4e/0x360
[ 2065.909554][T31662]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 2065.915103][T31662]  tomoyo_path_number_perm+0x23a/0x880
[ 2065.920562][T31662]  ? tomoyo_path_number_perm+0x208/0x880
[ 2065.926195][T31662]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2065.932199][T31662]  ? __fget_files+0x29/0x470
[ 2065.936791][T31662]  ? __fget_files+0x3f6/0x470
[ 2065.941468][T31662]  ? __fget_files+0x29/0x470
[ 2065.946078][T31662]  security_file_ioctl+0x75/0xb0
[ 2065.951040][T31662]  __se_sys_ioctl+0x47/0x170
[ 2065.955639][T31662]  do_syscall_64+0xf3/0x230
[ 2065.960147][T31662]  ? clear_bhb_loop+0x35/0x90
[ 2065.964824][T31662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2065.970718][T31662] RIP: 0033:0x7f4239777299
[ 2065.975132][T31662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2065.994745][T31662] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2066.003152][T31662] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 2066.011112][T31662] RDX: 0000000020000400 RSI: 00000000c06864a2 RDI: 0000000000000003
[ 2066.019078][T31662] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2066.027037][T31662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2066.034998][T31662] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2066.042975][T31662]  </TASK>
[ 2066.057943][T31662] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2066.228242][   T29] audit: type=1326 audit(2124922645.466:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31670 comm="syz.4.7603" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4239777299 code=0x0
[ 2067.419870][T31689] FAULT_INJECTION: forcing a failure.
[ 2067.419870][T31689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2067.491147][T31689] CPU: 0 UID: 0 PID: 31689 Comm: syz.0.7606 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2067.501963][T31689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2067.512013][T31689] Call Trace:
[ 2067.515445][T31689]  <TASK>
[ 2067.518383][T31689]  dump_stack_lvl+0x241/0x360
[ 2067.523076][T31689]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2067.528278][T31689]  ? __pfx__printk+0x10/0x10
[ 2067.532879][T31689]  should_fail_ex+0x3b0/0x4e0
[ 2067.537557][T31689]  _copy_from_user+0x2f/0xe0
[ 2067.542148][T31689]  memdup_user+0x64/0xc0
[ 2067.546390][T31689]  __se_sys_kexec_load+0x103/0x160
[ 2067.551505][T31689]  do_syscall_64+0xf3/0x230
[ 2067.556008][T31689]  ? clear_bhb_loop+0x35/0x90
[ 2067.560685][T31689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2067.566573][T31689] RIP: 0033:0x7f0fd6177299
[ 2067.570981][T31689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2067.590670][T31689] RSP: 002b:00007f0fd6ff3048 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2067.599091][T31689] RAX: ffffffffffffffda RBX: 00007f0fd6305f80 RCX: 00007f0fd6177299
[ 2067.607063][T31689] RDX: 00000000200000c0 RSI: 0000000000000001 RDI: 0000000000000000
[ 2067.615116][T31689] RBP: 00007f0fd6ff30a0 R08: 0000000000000000 R09: 0000000000000000
[ 2067.623081][T31689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2067.631044][T31689] R13: 000000000000000b R14: 00007f0fd6305f80 R15: 00007ffd26e3ef18
[ 2067.639067][T31689]  </TASK>
[ 2067.771394][T31700] 9p: Unknown access argument 18446744073709551615: -34
[ 2068.163966][T31708] devtmpfs: Bad value for 'size'
[ 2068.315083][T31712] FAULT_INJECTION: forcing a failure.
[ 2068.315083][T31712] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2068.481922][T31712] CPU: 0 UID: 0 PID: 31712 Comm: syz.4.7613 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2068.492733][T31712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2068.502778][T31712] Call Trace:
[ 2068.506049][T31712]  <TASK>
[ 2068.508966][T31712]  dump_stack_lvl+0x241/0x360
[ 2068.513632][T31712]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2068.518817][T31712]  ? __pfx__printk+0x10/0x10
[ 2068.523498][T31712]  should_fail_ex+0x3b0/0x4e0
[ 2068.528167][T31712]  prepare_alloc_pages+0x1da/0x5d0
[ 2068.533267][T31712]  __alloc_pages_noprof+0x166/0x6c0
[ 2068.538482][T31712]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 2068.544228][T31712]  ? validate_chain+0x11e/0x5900
[ 2068.549172][T31712]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 2068.554637][T31712]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 2068.560625][T31712]  vma_alloc_folio_noprof+0x12e/0x230
[ 2068.566000][T31712]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 2068.571900][T31712]  folio_prealloc+0x31/0x170
[ 2068.576484][T31712]  handle_pte_fault+0x252d/0x6eb0
[ 2068.581514][T31712]  ? mark_lock+0x9a/0x350
[ 2068.585845][T31712]  ? __pfx_handle_pte_fault+0x10/0x10
[ 2068.591337][T31712]  ? mt_find+0x226/0x850
[ 2068.595579][T31712]  ? __pfx_lock_release+0x10/0x10
[ 2068.600610][T31712]  handle_mm_fault+0xf70/0x1880
[ 2068.605477][T31712]  ? __pfx_handle_mm_fault+0x10/0x10
[ 2068.610769][T31712]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2068.617099][T31712]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 2068.622465][T31712]  exc_page_fault+0x2b9/0x8c0
[ 2068.627143][T31712]  asm_exc_page_fault+0x26/0x30
[ 2068.631993][T31712] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 2068.637795][T31712] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 2068.657396][T31712] RSP: 0018:ffffc9000a90fbb0 EFLAGS: 00050246
[ 2068.663456][T31712] RAX: 0000000000000000 RBX: 0000000020019688 RCX: 0000000000000008
[ 2068.671418][T31712] RDX: 0000000000000000 RSI: ffffc9000a90fc20 RDI: 0000000020019680
[ 2068.679379][T31712] RBP: ffffc9000a90fc90 R08: ffffc9000a90fc27 R09: 1ffff92001521f84
[ 2068.687340][T31712] R10: dffffc0000000000 R11: fffff52001521f85 R12: 0000000000000008
[ 2068.695303][T31712] R13: 0000000000018ff0 R14: 0000000020019680 R15: ffffc9000a90fc20
[ 2068.703284][T31712]  _copy_to_user+0x86/0xb0
[ 2068.707702][T31712]  msr_read+0x187/0x260
[ 2068.711863][T31712]  ? __pfx_msr_read+0x10/0x10
[ 2068.716538][T31712]  ? bpf_lsm_file_permission+0x9/0x10
[ 2068.721913][T31712]  ? rw_verify_area+0x52a/0x6b0
[ 2068.726760][T31712]  ? __pfx_msr_read+0x10/0x10
[ 2068.731431][T31712]  vfs_read+0x204/0xbc0
[ 2068.735583][T31712]  ? __pfx_lock_release+0x10/0x10
[ 2068.740603][T31712]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 2068.746229][T31712]  ? __pfx_vfs_read+0x10/0x10
[ 2068.750901][T31712]  ? __fget_files+0x29/0x470
[ 2068.755488][T31712]  ? __fget_files+0x3f6/0x470
[ 2068.760158][T31712]  ? __fget_files+0x29/0x470
[ 2068.764748][T31712]  ksys_read+0x1a0/0x2c0
[ 2068.768990][T31712]  ? __pfx_ksys_read+0x10/0x10
[ 2068.773745][T31712]  ? do_syscall_64+0x100/0x230
[ 2068.778505][T31712]  ? do_syscall_64+0xb6/0x230
[ 2068.783176][T31712]  do_syscall_64+0xf3/0x230
[ 2068.787676][T31712]  ? clear_bhb_loop+0x35/0x90
[ 2068.792350][T31712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2068.798237][T31712] RIP: 0033:0x7f4239777299
[ 2068.802644][T31712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2068.822250][T31712] RSP: 002b:00007f423a4dc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2068.830662][T31712] RAX: ffffffffffffffda RBX: 00007f4239905f80 RCX: 00007f4239777299
[ 2068.838625][T31712] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[ 2068.846587][T31712] RBP: 00007f423a4dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2068.854547][T31712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2068.862511][T31712] R13: 000000000000000b R14: 00007f4239905f80 R15: 00007ffcf70c0748
[ 2068.870488][T31712]  </TASK>
[ 2070.128459][   T29] audit: type=1326 audit(2124922649.066:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31742 comm="syz.3.7623" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cbcf77299 code=0x0
[ 2070.232365][   T29] audit: type=1326 audit(2124922649.158:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31744 comm="syz.4.7624" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4239777299 code=0x0
[ 2071.169400][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2071.356913][T31753] devtmpfs: Bad value for 'size'
[ 2074.115326][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2077.229653][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 2077.250374][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 2077.648249][T31811] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7640'.
[ 2077.720407][T31811] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7640'.
[ 2077.832651][T31812] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[ 2077.943225][   T29] audit: type=1326 audit(2124922656.266:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31810 comm="syz.2.7640" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f797e777299 code=0x0
[ 2078.598148][T31820] devtmpfs: Unknown parameter '01777777777777777777777'
[ 2079.022350][   T29] audit: type=1326 audit(2124922657.272:1670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31832 comm="syz.4.7648" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4239777299 code=0x0
[ 2079.344325][   T29] audit: type=1326 audit(2124922657.577:1671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31837 comm="syz.3.7649" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cbcf77299 code=0x0
[ 2080.179429][T31848] vxfs: WRONG superblock magic 00000000 at 1
[ 2080.187194][T31848] vxfs: WRONG superblock magic 00000000 at 8
[ 2080.193898][T31848] vxfs: can't find superblock.
[ 2082.511900][T31864] FAULT_INJECTION: forcing a failure.
[ 2082.511900][T31864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2082.536006][T31864] CPU: 1 UID: 0 PID: 31864 Comm: syz.1.7655 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2082.546820][T31864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2082.556920][T31864] Call Trace:
[ 2082.560218][T31864]  <TASK>
[ 2082.563175][T31864]  dump_stack_lvl+0x241/0x360
[ 2082.567893][T31864]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2082.573128][T31864]  ? __pfx__printk+0x10/0x10
[ 2082.577750][T31864]  ? __pfx_lock_release+0x10/0x10
[ 2082.582824][T31864]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2082.588833][T31864]  should_fail_ex+0x3b0/0x4e0
[ 2082.593544][T31864]  _copy_from_user+0x2f/0xe0
[ 2082.598135][T31864]  copy_bpf_fprog_from_user+0x167/0x450
[ 2082.603712][T31864]  ? __pfx_copy_bpf_fprog_from_user+0x10/0x10
[ 2082.609790][T31864]  sk_setsockopt+0x14db/0x3390
[ 2082.614552][T31864]  ? mark_lock+0x9a/0x350
[ 2082.618881][T31864]  ? __pfx_sk_setsockopt+0x10/0x10
[ 2082.624014][T31864]  ? __pfx_lock_acquire+0x10/0x10
[ 2082.629042][T31864]  ? __fget_files+0x29/0x470
[ 2082.633639][T31864]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 2082.639265][T31864]  ? __pfx_lock_release+0x10/0x10
[ 2082.644315][T31864]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 2082.649882][T31864]  ? security_socket_setsockopt+0x87/0xb0
[ 2082.655602][T31864]  do_sock_setsockopt+0x2fb/0x720
[ 2082.660660][T31864]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 2082.666194][T31864]  ? __fget_files+0x29/0x470
[ 2082.670777][T31864]  ? __fget_files+0x3f6/0x470
[ 2082.675472][T31864]  __sys_setsockopt+0x1ae/0x250
[ 2082.680347][T31864]  __x64_sys_setsockopt+0xb5/0xd0
[ 2082.685383][T31864]  do_syscall_64+0xf3/0x230
[ 2082.689882][T31864]  ? clear_bhb_loop+0x35/0x90
[ 2082.694553][T31864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2082.700441][T31864] RIP: 0033:0x7f1cdaf77299
[ 2082.704845][T31864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2082.724444][T31864] RSP: 002b:00007f1cdbcad048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 2082.732857][T31864] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf77299
[ 2082.740821][T31864] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000004
[ 2082.748787][T31864] RBP: 00007f1cdbcad0a0 R08: 0000000000000010 R09: 0000000000000000
[ 2082.756751][T31864] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[ 2082.764736][T31864] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2082.772728][T31864]  </TASK>
[ 2084.384241][T31892] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7664'.
[ 2085.701505][   T29] audit: type=1326 audit(2124922663.438:1672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31900 comm="syz.3.7667" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cbcf77299 code=0x0
[ 2085.950040][T31907] pimreg12: entered allmulticast mode
[ 2085.997918][T31904] pimreg12: left allmulticast mode
[ 2088.985065][T31963] FAULT_INJECTION: forcing a failure.
[ 2088.985065][T31963] name failslab, interval 1, probability 0, space 0, times 0
[ 2089.002711][T31963] CPU: 0 UID: 0 PID: 31963 Comm: syz.1.7686 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2089.013511][T31963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2089.023558][T31963] Call Trace:
[ 2089.026835][T31963]  <TASK>
[ 2089.029760][T31963]  dump_stack_lvl+0x241/0x360
[ 2089.034434][T31963]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2089.039620][T31963]  ? __pfx__printk+0x10/0x10
[ 2089.044197][T31963]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2089.050165][T31963]  ? __pfx___might_resched+0x10/0x10
[ 2089.055440][T31963]  should_fail_ex+0x3b0/0x4e0
[ 2089.060106][T31963]  should_failslab+0xac/0x100
[ 2089.064778][T31963]  ? __alloc_skb+0x1c3/0x440
[ 2089.069383][T31963]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2089.075194][T31963]  __alloc_skb+0x1c3/0x440
[ 2089.079616][T31963]  ? __pfx___alloc_skb+0x10/0x10
[ 2089.084549][T31963]  ? netlink_autobind+0xd6/0x2f0
[ 2089.089485][T31963]  ? netlink_autobind+0x2b0/0x2f0
[ 2089.094508][T31963]  netlink_sendmsg+0x638/0xcb0
[ 2089.099277][T31963]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2089.104557][T31963]  ? __import_iovec+0x536/0x820
[ 2089.109428][T31963]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2089.114721][T31963]  ? security_socket_sendmsg+0x87/0xb0
[ 2089.120181][T31963]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2089.125466][T31963]  __sock_sendmsg+0x221/0x270
[ 2089.130142][T31963]  ____sys_sendmsg+0x525/0x7d0
[ 2089.134906][T31963]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2089.140194][T31963]  __sys_sendmsg+0x2b0/0x3a0
[ 2089.144778][T31963]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2089.149879][T31963]  ? vfs_write+0x7c4/0xc90
[ 2089.154315][T31963]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2089.160637][T31963]  ? do_syscall_64+0x100/0x230
[ 2089.165398][T31963]  ? do_syscall_64+0xb6/0x230
[ 2089.170076][T31963]  do_syscall_64+0xf3/0x230
[ 2089.174580][T31963]  ? clear_bhb_loop+0x35/0x90
[ 2089.179255][T31963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2089.185143][T31963] RIP: 0033:0x7f1cdaf77299
[ 2089.189551][T31963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2089.209152][T31963] RSP: 002b:00007f1cdbcad048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2089.217560][T31963] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf77299
[ 2089.225532][T31963] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[ 2089.233508][T31963] RBP: 00007f1cdbcad0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2089.241475][T31963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2089.249439][T31963] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2089.257416][T31963]  </TASK>
[ 2089.715603][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2090.749003][    T8] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 2090.979614][    T8] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2091.031593][    T8] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2091.077959][    T8] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2091.116284][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2091.149441][T31973] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 2091.163265][    T8] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 2091.976165][T32005] vxfs: WRONG superblock magic 00000000 at 1
[ 2091.983933][T32005] vxfs: WRONG superblock magic 00000000 at 8
[ 2091.990449][T32005] vxfs: can't find superblock.
[ 2092.044627][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2092.058765][T22798] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 2092.571440][T22798] usb 2-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b
[ 2092.655919][T22798] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2092.676274][T22798] usb 2-1: Product: syz
[ 2092.687211][T22798] usb 2-1: Manufacturer: syz
[ 2092.694291][T22798] usb 2-1: SerialNumber: syz
[ 2092.737847][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2092.902563][T22798] usb 2-1: config 0 descriptor??
[ 2092.909467][T22798] gspca_main: pac207-2.14.0 probing 093a:2476
[ 2093.164636][T22798] gspca_pac207: Failed to read a register (index 0x0000, error -110)
[ 2093.184396][T22798] usb 2-1: Found UVC 0.00 device syz (093a:2476)
[ 2093.189656][T32001] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2093.190762][T22798] usb 2-1: No valid video chain found.
[ 2093.304708][T32001] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2093.983500][T21692] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 2094.229484][T21692] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2094.265478][T21692] usb 5-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2094.289381][T21692] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2094.300059][T21692] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2094.359529][T21692] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 2094.404196][T21692] usb 5-1: invalid MIDI out EP 0
[ 2094.586171][T21692] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 2094.705437][T15575] usb 3-1: USB disconnect, device number 28
[ 2094.991336][T24907] Bluetooth: hci7: command 0x0405 tx timeout
[ 2095.133198][    T8] usb 2-1: USB disconnect, device number 57
[ 2096.105209][ T5350] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 2096.313304][T25746] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2096.333363][ T5350] usb 2-1: Using ep0 maxpacket: 8
[ 2096.337749][T25746] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2096.353250][ T5350] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[ 2096.396779][ T5350] usb 2-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 2096.439115][ T5350] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 2096.465880][ T5350] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2096.533371][ T5350] usbtmc 2-1:16.0: bulk endpoints not found
[ 2096.548733][T25746] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2096.592573][T25746] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2097.032791][T25746] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2097.163019][T25746] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2097.215095][ T5350] usb 5-1: USB disconnect, device number 24
[ 2097.249031][T25746] tipc: Resetting bearer <eth:netdevsim0>
[ 2097.266995][    T8] usb 2-1: USB disconnect, device number 58
[ 2097.396552][T25746] tipc: Disabling bearer <eth:netdevsim0>
[ 2097.410355][T25746] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2097.452702][T25746] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2097.512646][T32059] FAULT_INJECTION: forcing a failure.
[ 2097.512646][T32059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2097.526672][T32059] CPU: 1 UID: 0 PID: 32059 Comm: syz.1.7718 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2097.537511][T32059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2097.547578][T32059] Call Trace:
[ 2097.550867][T32059]  <TASK>
[ 2097.553794][T32059]  dump_stack_lvl+0x241/0x360
[ 2097.558480][T32059]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2097.563695][T32059]  ? __pfx__printk+0x10/0x10
[ 2097.568286][T32059]  ? __pfx_lock_release+0x10/0x10
[ 2097.573308][T32059]  ? vfs_write+0x7c4/0xc90
[ 2097.577723][T32059]  should_fail_ex+0x3b0/0x4e0
[ 2097.582399][T32059]  _copy_from_user+0x2f/0xe0
[ 2097.586989][T32059]  get_timespec64+0x97/0x280
[ 2097.591591][T32059]  ? __pfx_get_timespec64+0x10/0x10
[ 2097.596811][T32059]  __se_sys_clock_nanosleep+0x1a5/0x3c0
[ 2097.602360][T32059]  ? __pfx___se_sys_clock_nanosleep+0x10/0x10
[ 2097.608428][T32059]  ? do_syscall_64+0x100/0x230
[ 2097.613193][T32059]  ? do_syscall_64+0xb6/0x230
[ 2097.617867][T32059]  do_syscall_64+0xf3/0x230
[ 2097.622366][T32059]  ? clear_bhb_loop+0x35/0x90
[ 2097.627045][T32059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2097.632936][T32059] RIP: 0033:0x7f1cdaf77299
[ 2097.637346][T32059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2097.656970][T32059] RSP: 002b:00007f1cdbcad048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[ 2097.665390][T32059] RAX: ffffffffffffffda RBX: 00007f1cdb105f80 RCX: 00007f1cdaf77299
[ 2097.673369][T32059] RDX: 0000000020000400 RSI: 0000000000000000 RDI: 00000000fffffff2
[ 2097.681334][T32059] RBP: 00007f1cdbcad0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2097.689302][T32059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2097.697268][T32059] R13: 000000000000004d R14: 00007f1cdb105f80 R15: 00007ffe5f2d18d8
[ 2097.705246][T32059]  </TASK>
[ 2097.885629][T29148] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2097.897729][T29148] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2097.926977][T29148] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2097.938078][T29148] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2097.945896][T29148] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 2097.953858][T29148] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2098.202893][T25746] bridge_slave_1: left allmulticast mode
[ 2098.217742][T25746] bridge_slave_1: left promiscuous mode
[ 2099.080294][T25746] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2099.102839][T25746] bridge_slave_0: left allmulticast mode
[ 2099.118264][T25746] bridge_slave_0: left promiscuous mode
[ 2099.125679][T25746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2100.180432][T21692] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[ 2100.190681][T29148] Bluetooth: hci7: command tx timeout
[ 2100.455240][T21692] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2100.482874][T21692] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 2100.503159][T21692] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 2100.557995][T25746] dvmrp0 (unregistering): left allmulticast mode
[ 2100.582014][T21692] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2100.599287][T21692] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2100.635145][T22798] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 2100.683684][T21692] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 2100.884731][T22798] usb 3-1: Using ep0 maxpacket: 16
[ 2100.897723][T21692] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -12
[ 2100.941971][T22798] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[ 2100.973902][T22798] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 2101.006021][T22798] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2101.032556][T22798] usb 3-1: config 0 descriptor??
[ 2101.710317][T32089] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2102.236861][T32089] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2102.257868][T32089] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7727'.
[ 2102.284745][T22798] usbhid 3-1:0.0: can't add hid device: -71
[ 2102.294119][T22798] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 2102.308486][T22798] usb 3-1: USB disconnect, device number 29
[ 2102.444166][T29148] Bluetooth: hci7: command tx timeout
[ 2103.550093][  T940] usb 2-1: USB disconnect, device number 59
[ 2105.643896][T29148] Bluetooth: hci7: command tx timeout
[ 2106.536389][T25746] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2106.563849][T25746] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2106.576898][T25746] bond0 (unregistering): Released all slaves
[ 2106.614535][T32120] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 2106.679417][T25746] tipc: Left network mode
[ 2107.905078][T29148] Bluetooth: hci7: command tx timeout
[ 2108.415969][ T5272] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 2108.819727][ T5272] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2108.861505][ T5272] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 2108.922384][ T5272] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 2108.972695][ T5272] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2108.989660][T25746] hsr_slave_0: left promiscuous mode
[ 2109.041907][ T5272] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2109.042028][T25746] hsr_slave_1: left promiscuous mode
[ 2109.129718][ T5272] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 2109.170970][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2109.178513][T25746] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2109.282298][ T5272] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -12
[ 2109.438339][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2109.446912][T25746] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2110.307102][T25746] veth1_macvtap: left promiscuous mode
[ 2110.317814][T25746] veth0_macvtap: left promiscuous mode
[ 2110.323749][T25746] veth1_vlan: left promiscuous mode
[ 2110.341376][T25746] veth0_vlan: left promiscuous mode
[ 2110.443003][T32156] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7745'.
[ 2111.530191][T15575] usb 5-1: USB disconnect, device number 25
[ 2112.214351][T15575] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 2112.563958][T15575] usb 5-1: Using ep0 maxpacket: 16
[ 2112.579350][T15575] usb 5-1: config 0 interface 0 altsetting 44 endpoint 0x83 has invalid wMaxPacketSize 0
[ 2112.645977][T15575] usb 5-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 2112.768127][T15575] usb 5-1: config 0 interface 0 has no altsetting 0
[ 2112.947666][T15575] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 2112.958757][T15575] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2112.999589][T15575] usb 5-1: Product: syz
[ 2113.035979][T15575] usb 5-1: Manufacturer: syz
[ 2113.063045][T15575] usb 5-1: SerialNumber: syz
[ 2113.185649][T15575] usb 5-1: config 0 descriptor??
[ 2113.221766][T15575] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input165
[ 2113.608807][T25746] team0 (unregistering): Port device team_slave_1 removed
[ 2113.991717][T18290] usb 5-1: USB disconnect, device number 26
[ 2114.360633][T25746] team0 (unregistering): Port device team_slave_0 removed
[ 2117.576925][T32204] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7759'.
[ 2117.649837][T32062] chnl_net:caif_netlink_parms(): no params data found
[ 2117.850133][T32214] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7762'.
[ 2118.163414][T32062] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2118.170667][T32062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2118.181931][T32062] bridge_slave_0: entered allmulticast mode
[ 2118.190120][T32062] bridge_slave_0: entered promiscuous mode
[ 2118.199349][T32062] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2118.207438][T32062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2118.214804][T32062] bridge_slave_1: entered allmulticast mode
[ 2118.223054][T32062] bridge_slave_1: entered promiscuous mode
[ 2118.322835][T32062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2118.360352][T32062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2119.169803][T32062] team0: Port device team_slave_0 added
[ 2119.207244][T32062] team0: Port device team_slave_1 added
[ 2119.336577][T32062] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2119.353523][T32062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2119.379501][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2119.409428][T32062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2119.432766][T32062] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2119.439764][T32062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2119.465914][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2119.547637][T32062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2120.099199][T25746] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2120.153406][T24907] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2120.167440][T24907] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2120.179936][T24907] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2120.197671][T24907] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2120.206365][T24907] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 2120.214586][T24907] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2120.424399][T25746] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2120.498686][T32062] hsr_slave_0: entered promiscuous mode
[ 2120.526578][T32062] hsr_slave_1: entered promiscuous mode
[ 2120.543193][T32062] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2120.551363][T32062] Cannot create hsr debugfs directory
[ 2120.612071][T24899] syz_tun (unregistering): left allmulticast mode
[ 2120.690481][T25746] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2120.868211][T25746] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2122.463621][T24907] Bluetooth: hci6: command tx timeout
[ 2122.516206][T29148] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2122.533095][T29148] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2122.542220][T29148] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2122.553910][T29148] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2122.563118][T29148] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 2122.570708][T29148] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2122.626322][T25746] bridge_slave_1: left allmulticast mode
[ 2122.632004][T25746] bridge_slave_1: left promiscuous mode
[ 2122.652885][T25746] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2122.690952][T25746] bridge_slave_0: left allmulticast mode
[ 2122.698958][T25746] bridge_slave_0: left promiscuous mode
[ 2122.706394][T25746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2122.883285][T32271] FAULT_INJECTION: forcing a failure.
[ 2122.883285][T32271] name failslab, interval 1, probability 0, space 0, times 0
[ 2122.900118][T32271] CPU: 1 UID: 0 PID: 32271 Comm: syz.2.7779 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2122.910911][T32271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2122.921043][T32271] Call Trace:
[ 2122.924306][T32271]  <TASK>
[ 2122.927222][T32271]  dump_stack_lvl+0x241/0x360
[ 2122.931902][T32271]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2122.937088][T32271]  ? __pfx__printk+0x10/0x10
[ 2122.941670][T32271]  ? fs_reclaim_acquire+0x93/0x140
[ 2122.946776][T32271]  ? __pfx___might_resched+0x10/0x10
[ 2122.952051][T32271]  ? dynamic_dname+0x141/0x1b0
[ 2122.956811][T32271]  should_fail_ex+0x3b0/0x4e0
[ 2122.961494][T32271]  ? tomoyo_encode+0x26f/0x540
[ 2122.966270][T32271]  should_failslab+0xac/0x100
[ 2122.970934][T32271]  ? tomoyo_encode+0x26f/0x540
[ 2122.975772][T32271]  __kmalloc_noprof+0xd8/0x400
[ 2122.980527][T32271]  tomoyo_encode+0x26f/0x540
[ 2122.985112][T32271]  ? __pfx_sockfs_dname+0x10/0x10
[ 2122.990128][T32271]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 2122.995762][T32271]  tomoyo_path_number_perm+0x23a/0x880
[ 2123.001206][T32271]  ? tomoyo_path_number_perm+0x208/0x880
[ 2123.006823][T32271]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2123.012808][T32271]  ? __fget_files+0x29/0x470
[ 2123.017392][T32271]  ? __fget_files+0x3f6/0x470
[ 2123.022060][T32271]  ? __fget_files+0x29/0x470
[ 2123.026653][T32271]  security_file_ioctl+0x75/0xb0
[ 2123.031592][T32271]  __se_sys_ioctl+0x47/0x170
[ 2123.036172][T32271]  do_syscall_64+0xf3/0x230
[ 2123.040669][T32271]  ? clear_bhb_loop+0x35/0x90
[ 2123.045344][T32271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2123.051231][T32271] RIP: 0033:0x7f797e777299
[ 2123.055642][T32271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2123.075249][T32271] RSP: 002b:00007f797f52b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2123.083663][T32271] RAX: ffffffffffffffda RBX: 00007f797e905f80 RCX: 00007f797e777299
[ 2123.091628][T32271] RDX: 00000000200000c0 RSI: 000000000000541b RDI: 0000000000000003
[ 2123.099590][T32271] RBP: 00007f797f52b0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2123.107553][T32271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2123.115601][T32271] R13: 000000000000000b R14: 00007f797e905f80 R15: 00007fffd400adb8
[ 2123.123672][T32271]  </TASK>
[ 2123.126786][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2123.180208][T32271] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2123.932689][T25746] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2123.955399][T25746] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2123.966216][T25746] bond0 (unregistering): Released all slaves
[ 2123.977757][T25746] bond1 (unregistering): Released all slaves
[ 2124.339285][T32243] chnl_net:caif_netlink_parms(): no params data found
[ 2124.720804][T24907] Bluetooth: hci6: command tx timeout
[ 2124.760807][T32243] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2124.768189][T32243] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2124.776092][T32243] bridge_slave_0: entered allmulticast mode
[ 2124.789092][T32243] bridge_slave_0: entered promiscuous mode
[ 2124.804288][T24907] Bluetooth: hci9: command tx timeout
[ 2124.853277][T32243] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2124.864177][T32243] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2124.881324][T32243] bridge_slave_1: entered allmulticast mode
[ 2124.894932][T32243] bridge_slave_1: entered promiscuous mode
[ 2125.042225][T25746] hsr_slave_0: left promiscuous mode
[ 2125.070111][T25746] hsr_slave_1: left promiscuous mode
[ 2125.089552][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2125.111100][T25746] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2125.145143][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2125.153497][T25746] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2125.204586][T25746] team0: left promiscuous mode
[ 2125.216063][T25746] team_slave_0: left promiscuous mode
[ 2125.222043][T25746] team_slave_1: left promiscuous mode
[ 2125.230431][T25746] veth1_macvtap: left promiscuous mode
[ 2125.236157][T25746] veth0_macvtap: left promiscuous mode
[ 2125.246431][T25746] veth1_vlan: left promiscuous mode
[ 2125.257525][T25746] veth0_vlan: left promiscuous mode
[ 2126.727803][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2126.969413][T24907] Bluetooth: hci6: command tx timeout
[ 2127.133497][T24907] Bluetooth: hci9: command tx timeout
[ 2127.670890][T25746] team0 (unregistering): Port device team_slave_1 removed
[ 2127.761617][T25746] team0 (unregistering): Port device team_slave_0 removed
[ 2128.528790][T32243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2128.571967][T32243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2128.785348][T32243] team0: Port device team_slave_0 added
[ 2128.799813][T32243] team0: Port device team_slave_1 added
[ 2128.806163][T32261] chnl_net:caif_netlink_parms(): no params data found
[ 2129.066644][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2129.107044][T32062] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2129.132459][T32243] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2129.142334][T32243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2129.182091][T32243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2129.196982][T32243] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2129.204358][T32243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2129.231001][T24907] Bluetooth: hci6: command tx timeout
[ 2129.237031][T32243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2129.282336][T32062] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2129.309565][T24907] Bluetooth: hci9: command tx timeout
[ 2129.358443][T32062] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2129.373897][T32062] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2129.435269][T32243] hsr_slave_0: entered promiscuous mode
[ 2129.447532][T32243] hsr_slave_1: entered promiscuous mode
[ 2129.462560][T32243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2129.470159][T32243] Cannot create hsr debugfs directory
[ 2129.609945][T32261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2129.658321][T32261] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2129.687865][T32261] bridge_slave_0: entered allmulticast mode
[ 2129.702861][T32261] bridge_slave_0: entered promiscuous mode
[ 2129.725347][T32261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2129.733160][T32261] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2129.744405][T32261] bridge_slave_1: entered allmulticast mode
[ 2129.760675][T32261] bridge_slave_1: entered promiscuous mode
[ 2129.915378][T32261] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2130.125001][T32261] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2130.257704][T25746] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2130.334112][T32261] team0: Port device team_slave_0 added
[ 2130.356434][T32261] team0: Port device team_slave_1 added
[ 2130.419441][T25746] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2130.594219][T32261] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2130.617634][T32261] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2130.658294][T32261] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2130.725290][T25746] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2130.941622][T32261] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2131.062376][T32261] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2131.309506][T32261] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2131.533331][T25746] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2131.562854][T24907] Bluetooth: hci9: command tx timeout
[ 2131.685369][T32334] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7793'.
[ 2131.746908][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2131.869905][T32261] hsr_slave_0: entered promiscuous mode
[ 2131.880194][T32261] hsr_slave_1: entered promiscuous mode
[ 2131.900451][T32261] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2131.917173][T32261] Cannot create hsr debugfs directory
[ 2132.598313][T32062] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2132.925631][T32062] 8021q: adding VLAN 0 to HW filter on device team0
[ 2132.942075][T25746] bridge_slave_1: left allmulticast mode
[ 2132.955320][T25746] bridge_slave_1: left promiscuous mode
[ 2132.964817][T25746] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2132.978645][T25746] bridge_slave_0: left allmulticast mode
[ 2132.985152][T25746] bridge_slave_0: left promiscuous mode
[ 2132.991084][T25746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2133.989992][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2134.176486][T25746] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2134.189868][T25746] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2134.217851][T25746] bond0 (unregistering): Released all slaves
[ 2134.560642][T25746] bond1 (unregistering): (slave team_slave_1): Releasing active interface
[ 2134.570089][T25746] team_slave_1: left promiscuous mode
[ 2134.575898][T25746] team_slave_1: left allmulticast mode
[ 2134.594300][T25746] bond1 (unregistering): Released all slaves
[ 2135.214789][T12487] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2135.221938][T12487] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2135.243466][T12487] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2135.250721][T12487] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2135.705806][T32243] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2135.726400][T32243] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2135.822044][T32243] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2135.861501][T32243] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2135.885724][T25746] hsr_slave_0: left promiscuous mode
[ 2135.891799][T25746] hsr_slave_1: left promiscuous mode
[ 2135.900899][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2135.916397][T25746] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2135.937824][T25746] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2135.949170][T25746] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2136.001600][T25746] team_slave_0: left promiscuous mode
[ 2136.007944][T25746] veth1_macvtap: left promiscuous mode
[ 2136.013578][T25746] veth0_macvtap: left promiscuous mode
[ 2136.025467][T25746] veth1_vlan: left promiscuous mode
[ 2136.045876][T25746] veth0_vlan: left promiscuous mode
[ 2138.458468][T25746] team0 (unregistering): Port device team_slave_0 removed
[ 2138.762769][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2139.248980][T32374] FAULT_INJECTION: forcing a failure.
[ 2139.248980][T32374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2139.276154][T32374] CPU: 1 UID: 0 PID: 32374 Comm: syz.0.7802 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2139.286964][T32374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2139.297039][T32374] Call Trace:
[ 2139.300330][T32374]  <TASK>
[ 2139.303272][T32374]  dump_stack_lvl+0x241/0x360
[ 2139.307972][T32374]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2139.313189][T32374]  ? __pfx__printk+0x10/0x10
[ 2139.317800][T32374]  ? snprintf+0xda/0x120
[ 2139.322063][T32374]  should_fail_ex+0x3b0/0x4e0
[ 2139.326760][T32374]  _copy_to_user+0x2f/0xb0
[ 2139.331196][T32374]  simple_read_from_buffer+0xca/0x150
[ 2139.336591][T32374]  proc_fail_nth_read+0x1e9/0x250
[ 2139.341647][T32374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2139.347223][T32374]  ? rw_verify_area+0x520/0x6b0
[ 2139.352092][T32374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2139.357680][T32374]  vfs_read+0x204/0xbc0
[ 2139.361848][T32374]  ? __pfx_lock_release+0x10/0x10
[ 2139.366893][T32374]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 2139.372809][T32374]  ? __pfx_vfs_read+0x10/0x10
[ 2139.377505][T32374]  ? __fget_files+0x29/0x470
[ 2139.382203][T32374]  ? __fget_files+0x3f6/0x470
[ 2139.386918][T32374]  ksys_read+0x1a0/0x2c0
[ 2139.391196][T32374]  ? __pfx_ksys_read+0x10/0x10
[ 2139.395978][T32374]  ? do_syscall_64+0x100/0x230
[ 2139.400764][T32374]  ? do_syscall_64+0xb6/0x230
[ 2139.405461][T32374]  do_syscall_64+0xf3/0x230
[ 2139.409986][T32374]  ? clear_bhb_loop+0x35/0x90
[ 2139.414683][T32374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2139.420595][T32374] RIP: 0033:0x7f0fd6175d7c
[ 2139.425041][T32374] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[ 2139.444657][T32374] RSP: 002b:00007f0fd6ff3040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2139.453092][T32374] RAX: ffffffffffffffda RBX: 00007f0fd6305f80 RCX: 00007f0fd6175d7c
[ 2139.461076][T32374] RDX: 000000000000000f RSI: 00007f0fd6ff30b0 RDI: 0000000000000004
[ 2139.465178][T32243] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2139.469045][T32374] RBP: 00007f0fd6ff30a0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.483627][T32374] R10: 0000000020003140 R11: 0000000000000246 R12: 0000000000000001
[ 2139.491619][T32374] R13: 000000000000000b R14: 00007f0fd6305f80 R15: 00007ffd26e3ef18
[ 2139.492773][T32378] fuse: Bad value for 'user_id'
[ 2139.499602][T32374]  </TASK>
[ 2139.532634][T32378] fuse: Bad value for 'user_id'
[ 2139.663860][T32243] 8021q: adding VLAN 0 to HW filter on device team0
[ 2139.749516][T15575] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2139.756776][T15575] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2139.799718][T15575] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2139.807012][T15575] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2140.190563][T32261] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2140.239294][T32261] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2140.286124][T32261] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2140.334978][T32062] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2140.382624][T32261] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2140.786038][T32062] veth0_vlan: entered promiscuous mode
[ 2140.866388][T32062] veth1_vlan: entered promiscuous mode
[ 2140.955150][T32261] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2141.009904][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2141.126589][T32261] 8021q: adding VLAN 0 to HW filter on device team0
[ 2141.179428][T15575] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2141.186811][T15575] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2141.227637][T32062] veth0_macvtap: entered promiscuous mode
[ 2141.273840][T32243] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2141.295743][T18290] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2141.302888][T18290] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2141.343119][T32062] veth1_macvtap: entered promiscuous mode
[ 2141.530704][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.549730][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.572697][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.593523][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.603506][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.614497][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.636472][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.648500][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.669411][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.680379][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.705202][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.717508][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.727749][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.738532][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.749954][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2141.760780][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.779472][T32062] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2141.814605][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2141.855371][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.876848][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2141.904693][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2141.927804][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2141.980304][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.012597][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2142.059691][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.081327][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2142.124597][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.163697][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2142.174688][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.196944][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2142.210713][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.227712][T32062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2142.240708][T32062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2142.289130][T32062] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2142.321944][T32062] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2142.354438][T32062] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2142.385257][T32062] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2142.423562][T32062] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2142.614973][T32261] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2142.624802][T32243] veth0_vlan: entered promiscuous mode
[ 2142.712830][T32243] veth1_vlan: entered promiscuous mode
[ 2142.738135][ T1118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2142.858425][ T1118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2143.031725][ T2997] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2143.065576][ T2997] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2143.146904][T32243] veth0_macvtap: entered promiscuous mode
[ 2143.203738][T32243] veth1_macvtap: entered promiscuous mode
[ 2143.281090][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.307392][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.317428][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.336674][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.370959][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.392238][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.415923][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.433876][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.457111][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.473907][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.485760][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.496362][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.506212][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.517134][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.527207][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.537993][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2143.548556][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2143.560635][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.031630][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 2144.037966][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 2144.042483][T32243] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2144.127794][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.145361][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.155341][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.165878][T18290] usb 4-1: new low-speed USB device number 18 using dummy_hcd
[ 2144.166588][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.201334][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.222944][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.258433][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.289965][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.300137][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.317945][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.330928][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.341903][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.355500][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.360028][T32424] devtmpfs: Unknown parameter 's01777777777777777777777'
[ 2144.367786][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.379498][T18290] usb 4-1: device descriptor read/64, error -71
[ 2144.383120][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.399449][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.430310][T32243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2144.441432][T32243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2144.453317][T32243] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2144.475017][T32243] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2144.489051][T32243] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2144.498425][T32243] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2144.507153][T32243] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2144.781125][T32261] veth0_vlan: entered promiscuous mode
[ 2144.818287][ T2997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2144.832909][ T2997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2145.565978][T32261] veth1_vlan: entered promiscuous mode
[ 2145.604735][T25746] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2145.624122][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2145.646897][T25746] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2145.661666][T18290] usb 4-1: new low-speed USB device number 19 using dummy_hcd
[ 2145.730534][T32261] veth0_macvtap: entered promiscuous mode
[ 2145.751709][T32261] veth1_macvtap: entered promiscuous mode
[ 2145.811549][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2145.873322][T18290] usb 4-1: device descriptor read/64, error -71
[ 2145.910869][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2145.935309][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2145.963622][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2145.995061][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.232865][T18290] usb usb4-port1: attempt power cycle
[ 2146.274687][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.322417][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.333643][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.344120][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.359350][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.369427][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.409478][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.421809][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.438195][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.452848][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.761312][T18290] usb 4-1: new low-speed USB device number 20 using dummy_hcd
[ 2146.768970][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.839789][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.862029][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.902411][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2146.950224][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2146.982777][T32261] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2147.055002][T18290] usb 4-1: device not accepting address 20, error -71
[ 2147.189540][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.223197][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.254991][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.270033][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.307522][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.346754][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.379998][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.405070][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.437028][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.464536][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.483894][   T29] audit: type=1326 audit(2124922720.468:1673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32457 comm="syz.2.7818" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f797e777299 code=0x0
[ 2147.510345][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.533036][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.564242][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.623186][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.648036][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.686295][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.723355][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.723398][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.723570][T32261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2147.723653][T32261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2147.737440][T32261] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2147.775874][T32261] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2147.775913][T32261] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2147.775941][T32261] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2147.775968][T32261] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2147.855728][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2148.635812][T21259] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2148.635837][T21259] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2148.780117][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2148.802320][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2148.855135][T32472] FAULT_INJECTION: forcing a failure.
[ 2148.855135][T32472] name failslab, interval 1, probability 0, space 0, times 0
[ 2148.880313][T32472] CPU: 1 UID: 0 PID: 32472 Comm: syz.1.7821 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2148.891118][T32472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2148.901196][T32472] Call Trace:
[ 2148.904491][T32472]  <TASK>
[ 2148.907426][T32472]  dump_stack_lvl+0x241/0x360
[ 2148.912097][T32472]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2148.917282][T32472]  ? __pfx__printk+0x10/0x10
[ 2148.921858][T32472]  ? kmem_cache_alloc_lru_noprof+0x49/0x2b0
[ 2148.927743][T32472]  ? __pfx___might_resched+0x10/0x10
[ 2148.933028][T32472]  should_fail_ex+0x3b0/0x4e0
[ 2148.937687][T32472]  ? sock_alloc_inode+0x28/0xc0
[ 2148.942522][T32472]  should_failslab+0xac/0x100
[ 2148.947185][T32472]  ? sock_alloc_inode+0x28/0xc0
[ 2148.952022][T32472]  kmem_cache_alloc_lru_noprof+0x71/0x2b0
[ 2148.957726][T32472]  sock_alloc_inode+0x28/0xc0
[ 2148.962386][T32472]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 2148.967737][T32472]  new_inode_pseudo+0x69/0x1a0
[ 2148.972485][T32472]  __sock_create+0x123/0x920
[ 2148.977058][T32472]  ? __lock_acquire+0x137a/0x2040
[ 2148.982083][T32472]  mptcp_subflow_create_socket+0x132/0xdf0
[ 2148.987906][T32472]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[ 2148.994233][T32472]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2149.000197][T32472]  __mptcp_nmpc_sk+0x178/0x800
[ 2149.004953][T32472]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[ 2149.010219][T32472]  ? __local_bh_enable_ip+0x168/0x200
[ 2149.015578][T32472]  ? __lock_acquire+0x137a/0x2040
[ 2149.020588][T32472]  ? mptcp_sendmsg+0x153/0x1b10
[ 2149.025428][T32472]  mptcp_sendmsg_fastopen+0xc3/0x530
[ 2149.030699][T32472]  mptcp_sendmsg+0x1884/0x1b10
[ 2149.035446][T32472]  ? smack_socket_sendmsg+0x42e/0x540
[ 2149.040804][T32472]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[ 2149.046512][T32472]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[ 2149.053260][T32472]  ? __pfx_mptcp_sendmsg+0x10/0x10
[ 2149.058356][T32472]  ? inet_send_prepare+0xbf/0x260
[ 2149.063368][T32472]  __sock_sendmsg+0xef/0x270
[ 2149.067949][T32472]  __sys_sendto+0x3a4/0x4f0
[ 2149.072442][T32472]  ? __pfx___sys_sendto+0x10/0x10
[ 2149.077463][T32472]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2149.083522][T32472]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2149.089834][T32472]  __x64_sys_sendto+0xde/0x100
[ 2149.094589][T32472]  do_syscall_64+0xf3/0x230
[ 2149.099076][T32472]  ? clear_bhb_loop+0x35/0x90
[ 2149.103742][T32472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2149.109626][T32472] RIP: 0033:0x7f0ed8177299
[ 2149.114025][T32472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2149.133629][T32472] RSP: 002b:00007f0ed8f34048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 2149.142050][T32472] RAX: ffffffffffffffda RBX: 00007f0ed8305f80 RCX: 00007f0ed8177299
[ 2149.150006][T32472] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 2149.158053][T32472] RBP: 00007f0ed8f340a0 R08: 0000000020000480 R09: 000000000000001c
[ 2149.166099][T32472] R10: 0000000020040800 R11: 0000000000000246 R12: 0000000000000001
[ 2149.174236][T32472] R13: 000000000000000b R14: 00007f0ed8305f80 R15: 00007ffe4f05eb38
[ 2149.182199][T32472]  </TASK>
[ 2149.219279][T32472] socket: no more sockets
[ 2150.797704][T32496] netlink: 'syz.0.7828': attribute type 1 has an invalid length.
[ 2150.806449][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2151.461519][T32511] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7830'.
[ 2152.309703][T32516] FAULT_INJECTION: forcing a failure.
[ 2152.309703][T32516] name failslab, interval 1, probability 0, space 0, times 0
[ 2152.492526][T32516] CPU: 1 UID: 0 PID: 32516 Comm: syz.3.7832 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2152.503351][T32516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2152.513428][T32516] Call Trace:
[ 2152.516721][T32516]  <TASK>
[ 2152.519693][T32516]  dump_stack_lvl+0x241/0x360
[ 2152.524397][T32516]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2152.529614][T32516]  ? __pfx__printk+0x10/0x10
[ 2152.534222][T32516]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 2152.540220][T32516]  ? __pfx___might_resched+0x10/0x10
[ 2152.545527][T32516]  should_fail_ex+0x3b0/0x4e0
[ 2152.550224][T32516]  should_failslab+0xac/0x100
[ 2152.554926][T32516]  ? __alloc_skb+0x1c3/0x440
[ 2152.557206][T32520] bond0: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 2152.559520][T32516]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 2152.559557][T32516]  __alloc_skb+0x1c3/0x440
[ 2152.579577][T32516]  ? __pfx___alloc_skb+0x10/0x10
[ 2152.584560][T32516]  ? netlink_autobind+0xd6/0x2f0
[ 2152.589523][T32516]  ? netlink_autobind+0x2b0/0x2f0
[ 2152.594575][T32516]  netlink_sendmsg+0x638/0xcb0
[ 2152.599373][T32516]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2152.604678][T32516]  ? __import_iovec+0x536/0x820
[ 2152.609538][T32516]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2152.614819][T32516]  ? security_socket_sendmsg+0x87/0xb0
[ 2152.620273][T32516]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2152.625554][T32516]  __sock_sendmsg+0x221/0x270
[ 2152.630231][T32516]  ____sys_sendmsg+0x525/0x7d0
[ 2152.634998][T32516]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2152.640290][T32516]  __sys_sendmsg+0x2b0/0x3a0
[ 2152.644873][T32516]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2152.649977][T32516]  ? vfs_write+0x7c4/0xc90
[ 2152.654416][T32516]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2152.660743][T32516]  ? do_syscall_64+0x100/0x230
[ 2152.665504][T32516]  ? do_syscall_64+0xb6/0x230
[ 2152.670174][T32516]  do_syscall_64+0xf3/0x230
[ 2152.674675][T32516]  ? clear_bhb_loop+0x35/0x90
[ 2152.679355][T32516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2152.685246][T32516] RIP: 0033:0x7f6e81177299
[ 2152.689653][T32516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2152.709254][T32516] RSP: 002b:00007f6e81fdf048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2152.717660][T32516] RAX: ffffffffffffffda RBX: 00007f6e81305f80 RCX: 00007f6e81177299
[ 2152.725620][T32516] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[ 2152.733586][T32516] RBP: 00007f6e81fdf0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2152.741548][T32516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2152.749507][T32516] R13: 000000000000000b R14: 00007f6e81305f80 R15: 00007fff808df128
[ 2152.757481][T32516]  </TASK>
[ 2152.871754][T32523] FAULT_INJECTION: forcing a failure.
[ 2152.871754][T32523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2152.888804][T32523] CPU: 0 UID: 0 PID: 32523 Comm: syz.2.7835 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2152.899604][T32523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2152.909687][T32523] Call Trace:
[ 2152.912963][T32523]  <TASK>
[ 2152.915885][T32523]  dump_stack_lvl+0x241/0x360
[ 2152.920561][T32523]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2152.925749][T32523]  ? __pfx__printk+0x10/0x10
[ 2152.930328][T32523]  ? __pfx_lock_release+0x10/0x10
[ 2152.935345][T32523]  should_fail_ex+0x3b0/0x4e0
[ 2152.940036][T32523]  _copy_from_iter+0x1f6/0x1960
[ 2152.944906][T32523]  ? __virt_addr_valid+0x183/0x530
[ 2152.950031][T32523]  ? __pfx_lock_release+0x10/0x10
[ 2152.955071][T32523]  ? __pfx__copy_from_iter+0x10/0x10
[ 2152.960355][T32523]  ? __virt_addr_valid+0x183/0x530
[ 2152.965467][T32523]  ? __virt_addr_valid+0x183/0x530
[ 2152.970568][T32523]  ? __virt_addr_valid+0x45f/0x530
[ 2152.975684][T32523]  ? __check_object_size+0x49c/0x900
[ 2152.980976][T32523]  kernfs_fop_write_iter+0x1aa/0x500
[ 2152.986363][T32523]  vfs_write+0xa72/0xc90
[ 2152.990613][T32523]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2152.996450][T32523]  ? __pfx_vfs_write+0x10/0x10
[ 2153.001258][T32523]  ksys_write+0x1a0/0x2c0
[ 2153.005614][T32523]  ? __pfx_ksys_write+0x10/0x10
[ 2153.010577][T32523]  ? do_syscall_64+0x100/0x230
[ 2153.015374][T32523]  ? do_syscall_64+0xb6/0x230
[ 2153.020076][T32523]  do_syscall_64+0xf3/0x230
[ 2153.024602][T32523]  ? clear_bhb_loop+0x35/0x90
[ 2153.029309][T32523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2153.035224][T32523] RIP: 0033:0x7f797e777299
[ 2153.039676][T32523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2153.059315][T32523] RSP: 002b:00007f797f52b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2153.067757][T32523] RAX: ffffffffffffffda RBX: 00007f797e905f80 RCX: 00007f797e777299
[ 2153.075845][T32523] RDX: 0000000000000074 RSI: 00000000200001c0 RDI: 0000000000000004
[ 2153.083836][T32523] RBP: 00007f797f52b0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2153.091830][T32523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2153.099829][T32523] R13: 000000000000000b R14: 00007f797e905f80 R15: 00007fffd400adb8
[ 2153.107845][T32523]  </TASK>
[ 2153.120968][T24907] Bluetooth: hci3: command 0x0406 tx timeout
[ 2153.285816][ T5268] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 2153.510256][ T5268] usb 4-1: Using ep0 maxpacket: 16
[ 2153.543621][ T5268] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2153.582148][ T5268] usb 4-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=90.c4
[ 2153.634235][ T5268] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2153.661141][ T5268] usb 4-1: Product: syz
[ 2153.677073][ T5268] usb 4-1: Manufacturer: syz
[ 2153.702765][ T5268] usb 4-1: SerialNumber: syz
[ 2153.764924][ T5268] usb 4-1: config 0 descriptor??
[ 2154.998235][ T5268] usb 4-1: Found UVC 0.00 device syz (045e:0721)
[ 2155.023585][ T5268] usb 4-1: No valid video chain found.
[ 2155.052906][ T5268] usb 4-1: USB disconnect, device number 22
[ 2156.267370][T32553] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7843'.
[ 2157.473010][   T62] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2157.706692][   T29] audit: type=1326 audit(2124922729.911:1674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32559 comm="syz.1.7849" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ed8177299 code=0x0
[ 2157.853722][   T62] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2157.891244][    C1] Oops: general protection fault, probably for non-canonical address 0xe3fffb240010b9c8: 0000 [#1] PREEMPT SMP KASAN PTI
[ 2157.903887][    C1] KASAN: maybe wild-memory-access in range [0x1ffff9200085ce40-0x1ffff9200085ce47]
[ 2157.913193][    C1] CPU: 1 UID: 0 PID: 32562 Comm: syz.3.7851 Not tainted 6.11.0-rc1-syzkaller-00004-gdc1c8034e31b #0
[ 2157.923983][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2157.934234][    C1] RIP: 0010:__cpu_map_flush+0x42/0xd0
[ 2157.939645][    C1] Code: e8 23 d9 d6 ff 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 3d ec 3a 00 49 8b 1e 4c 39 f3 74 77 48 89 d8 48 c1 e8 03 <42> 80 3c 38 00 74 08 48 89 df e8 1f ec 3a 00 4c 8b 23 48 8d 7b c0
[ 2157.959293][    C1] RSP: 0018:ffffc90000a18b10 EFLAGS: 00010203
[ 2157.965384][    C1] RAX: 03ffff240010b9c8 RBX: 1ffff9200085ce44 RCX: ffff88806bb75a00
[ 2157.973371][    C1] RDX: 0000000080000101 RSI: 0000000000000000 RDI: ffffc900042e71a0
[ 2157.978967][T32568] vxfs: WRONG superblock magic 00000000 at 1
[ 2157.981334][    C1] RBP: dffffc0000000000 R08: ffffffff8985908a R09: 1ffffffff1feced5
[ 2157.987614][T32568] vxfs: WRONG superblock magic 00000000 at 8
[ 2157.995240][    C1] R10: dffffc0000000000 R11: fffffbfff1feced6 R12: ffffc900042e71a0
[ 2157.995267][    C1] R13: ffffc900042e7160 R14: ffffc900042e71a0 R15: dffffc0000000000
[ 2157.995280][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[ 2157.995295][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2157.995308][    C1] CR2: 000000110c339f81 CR3: 0000000033374000 CR4: 00000000003506f0
[ 2157.995324][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2157.995334][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2157.995348][    C1] Call Trace:
[ 2157.995357][    C1]  <IRQ>
[ 2157.995365][    C1]  ? __die_body+0x88/0xe0
[ 2157.995399][    C1]  ? die_addr+0x108/0x140
[ 2157.995429][    C1]  ? exc_general_protection+0x3dd/0x5d0
[ 2157.995471][    C1]  ? asm_exc_general_protection+0x26/0x30
[ 2157.995500][    C1]  ? xdp_do_check_flushed+0x10a/0x240
[ 2157.995522][    C1]  ? __cpu_map_flush+0x42/0xd0
[ 2158.004148][T32568] vxfs: can't find superblock.
[ 2158.009519][    C1]  xdp_do_check_flushed+0x136/0x240
[ 2158.009549][    C1]  __napi_poll+0xe4/0x490
[ 2158.009571][    C1]  net_rx_action+0x89b/0x1240
[ 2158.111627][    C1]  ? __pfx_net_rx_action+0x10/0x10
[ 2158.116742][    C1]  ? sched_clock+0x4a/0x70
[ 2158.121156][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2158.127479][    C1]  handle_softirqs+0x2c4/0x970
[ 2158.132244][    C1]  ? __irq_exit_rcu+0xf4/0x1c0
[ 2158.137006][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[ 2158.142281][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[ 2158.147470][    C1]  __irq_exit_rcu+0xf4/0x1c0
[ 2158.152050][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[ 2158.157246][    C1]  irq_exit_rcu+0x9/0x30
[ 2158.161477][    C1]  common_interrupt+0xaa/0xd0
[ 2158.166149][    C1]  </IRQ>
[ 2158.169071][    C1]  <TASK>
[ 2158.171986][    C1]  asm_common_interrupt+0x26/0x40
[ 2158.177002][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x0/0x90
[ 2158.183759][    C1] Code: 10 48 89 74 0a 18 4c 89 44 0a 20 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 4c 8b 04 24 65 48 8b 0c 25 00 d7 03 00 65 8b 05 90 4f
[ 2158.203352][    C1] RSP: 0018:ffffc900042e7318 EFLAGS: 00000246
[ 2158.209405][    C1] RAX: ffffffff81dd4e00 RBX: ffffea0001ed1f58 RCX: ffff88806bb75a00
[ 2158.217360][    C1] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000000
[ 2158.225322][    C1] RBP: ffffc900042e7650 R08: ffffffff81dd4cf6 R09: 1ffffffff1feced5
[ 2158.233286][    C1] R10: dffffc0000000000 R11: fffffbfff1feced6 R12: 1ffff11006388900
[ 2158.241263][    C1] R13: 800000007b47d025 R14: 1ffffd40003da3eb R15: ffff888031c44d38
[ 2158.249314][    C1]  ? unmap_page_range+0x13d6/0x42c0
[ 2158.254506][    C1]  ? unmap_page_range+0x14e0/0x42c0
[ 2158.259699][    C1]  unmap_page_range+0x14f3/0x42c0
[ 2158.264817][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[ 2158.270184][    C1]  ? mas_next_slot+0xeab/0xf90
[ 2158.274945][    C1]  ? uprobe_munmap+0x183/0x460
[ 2158.279698][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[ 2158.284749][    C1]  unmap_vmas+0x3cc/0x5f0
[ 2158.289074][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[ 2158.293925][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[ 2158.299371][    C1]  exit_mmap+0x264/0xc80
[ 2158.303609][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 2158.308359][    C1]  ? __asan_memset+0x23/0x50
[ 2158.312945][    C1]  ? uprobe_clear_state+0x277/0x290
[ 2158.318125][    C1]  ? mm_update_next_owner+0xa2/0x8a0
[ 2158.323394][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 2158.328579][    C1]  __mmput+0x115/0x380
[ 2158.332643][    C1]  exit_mm+0x220/0x310
[ 2158.336700][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 2158.341275][    C1]  ? taskstats_exit+0x326/0xa60
[ 2158.346119][    C1]  do_exit+0x9b2/0x27f0
[ 2158.350267][    C1]  ? __pfx_do_exit+0x10/0x10
[ 2158.354839][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2158.360199][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2158.366171][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2158.372485][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 2158.377583][    C1]  do_group_exit+0x207/0x2c0
[ 2158.382156][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2158.387355][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 2158.392557][    C1]  get_signal+0x1695/0x1730
[ 2158.397072][    C1]  ? __pfx_get_signal+0x10/0x10
[ 2158.402014][    C1]  arch_do_signal_or_restart+0x96/0x860
[ 2158.407561][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2158.413705][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2158.419682][    C1]  ? syscall_exit_to_user_mode+0xa3/0x370
[ 2158.425395][    C1]  syscall_exit_to_user_mode+0xc9/0x370
[ 2158.430931][    C1]  do_syscall_64+0x100/0x230
[ 2158.435512][    C1]  ? clear_bhb_loop+0x35/0x90
[ 2158.440188][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2158.446087][    C1] RIP: 0033:0x7f6e81177299
[ 2158.450499][    C1] Code: Unable to access opcode bytes at 0x7f6e8117726f.
[ 2158.457502][    C1] RSP: 002b:00007f6e81fdf0f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2158.465903][    C1] RAX: fffffffffffffe00 RBX: 00007f6e81305f88 RCX: 00007f6e81177299
[ 2158.473860][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6e81305f88
[ 2158.481816][    C1] RBP: 00007f6e81305f80 R08: 00007f6e81fdf6c0 R09: 00007f6e81fdf6c0
[ 2158.489770][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6e81305f8c
[ 2158.497727][    C1] R13: 000000000000000b R14: 00007fff808df040 R15: 00007fff808df128
[ 2158.505694][    C1]  </TASK>
[ 2158.508700][    C1] Modules linked in:
[ 2158.512715][    C1] ---[ end trace 0000000000000000 ]---
[ 2158.518232][    C1] RIP: 0010:__cpu_map_flush+0x42/0xd0
[ 2158.523647][    C1] Code: e8 23 d9 d6 ff 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 3d ec 3a 00 49 8b 1e 4c 39 f3 74 77 48 89 d8 48 c1 e8 03 <42> 80 3c 38 00 74 08 48 89 df e8 1f ec 3a 00 4c 8b 23 48 8d 7b c0
[ 2158.543395][    C1] RSP: 0018:ffffc90000a18b10 EFLAGS: 00010203
[ 2158.549584][    C1] RAX: 03ffff240010b9c8 RBX: 1ffff9200085ce44 RCX: ffff88806bb75a00
[ 2158.557654][    C1] RDX: 0000000080000101 RSI: 0000000000000000 RDI: ffffc900042e71a0
[ 2158.565724][    C1] RBP: dffffc0000000000 R08: ffffffff8985908a R09: 1ffffffff1feced5
[ 2158.573784][    C1] R10: dffffc0000000000 R11: fffffbfff1feced6 R12: ffffc900042e71a0
[ 2158.581853][    C1] R13: ffffc900042e7160 R14: ffffc900042e71a0 R15: dffffc0000000000
[ 2158.589888][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[ 2158.598905][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2158.605662][    C1] CR2: 000000110c339f81 CR3: 0000000033374000 CR4: 00000000003506f0
[ 2158.613723][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2158.621758][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2158.629831][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 2158.637218][    C1] Kernel Offset: disabled
[ 2158.641531][    C1] Rebooting in 86400 seconds..