last executing test programs:

8m18.751301947s ago: executing program 2 (id=737):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = accept4(r0, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000a04000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
fanotify_init(0x200, 0x0)
sendmsg$alg(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=@deltfilter={0x100, 0x2d, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x9, 0x10}, {0x14, 0xffff}, {0xa, 0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0xd0, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}]}, @TCA_BASIC_CLASSID={0x8, 0x1, {0x0, 0x8e2c65f693a6b721}}, @TCA_BASIC_EMATCHES={0xb8, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xb4, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x400, 0x7, 0xa}, {{0x1, 0x0, 0x0, 0x1}, {0x3, 0x1, 0x1}}}}, @TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x5}, {{0x1, 0x0, 0x1}, {0x3, 0x1, 0x0, 0x1}}}}, @TCF_EM_CONTAINER={0x88, 0x2, 0x0, 0x0, {{0x4, 0x0, 0x2}, "e433c2a16570ca4475f840e0efd52332cca11587507febd6f14cffd23471de9231b7c5942ebfcf0369067c662d906188e27b5aaff134ae4e52b3d479cc4020eb8065f07bbb48db295cca4a7b08cd808da953ed7b1d16b8185b6d09dd181bc03c85632ad29f53c16b093153b790cf578862d88e1c93ac290a49"}}]}]}]}}]}, 0x100}, 0x1, 0x0, 0x0, 0x20004810}, 0x80)

8m17.447679849s ago: executing program 2 (id=743):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
open_by_handle_at(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe00010043"], 0x408100)

8m16.859283695s ago: executing program 2 (id=746):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f00000010c0)=ANY=[@ANYBLOB="12010000c73d8a0870272091776c0102ef010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x2)
getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019bc0)=""/102400, 0x19000)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0x40045731, &(0x7f0000000040))
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xe8}}, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000004c0)={0x24, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
syz_usb_connect$cdc_ncm(0x4, 0x75, &(0x7f0000000540)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0x7, 0x60, 0x80, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x6, 0xfff7, 0x4, 0x6}, {0x6, 0x24, 0x1a, 0x2, 0x24}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x15, 0xbc, 0x7}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x9, 0xe, 0x3}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x9, 0x4, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xff, 0x80, 0x20}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x250, 0x1, 0x5, 0xa4, 0xf7, 0x91}, 0x108, &(0x7f00000005c0)={0x5, 0xf, 0x108, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0xc, 0x4, 0xa}, @wireless={0xb, 0x10, 0x1, 0x4, 0x10, 0x35, 0x67, 0xff, 0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8, 0x6, 0x7}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x5, 0x7, 0x2, 0x1}, @ssp_cap={0x24, 0x10, 0xa, 0x75, 0x6, 0xb9ec, 0xff0f, 0x626, [0x0, 0xc0ff, 0xff018f, 0x0, 0xc000, 0xa0]}, @generic={0xb9, 0x10, 0xa, "15535d1ef6006492815ff2ff35b14486c86e4d02b2b8715ce334d9965c2db4dcda1178084c439c376c084b1c2e4d23fa37b9d5e529bad01f4d96c25a1f9f4dae9eaa346fd74702edbe9d6651c1cc3bba777fa657a75a9df31140a8c47f8a7c1d448663e2693b33b29ef5254ad71abbfad15edd7f1303152f73a235383fc6676ddc19f6f07f18583e0f3f680ec72604ad54b725d94943538a8d914594527d3b516a6f9132ef848724fa27b116e5b3a5d30b74f8736a9f"}]}, 0x1, [{0x69, &(0x7f0000000780)=@string={0x69, 0x3, "ff666ac68aa3a6d451999c49f7c364d91de5bf95dfdca2fb40db45e325a7b16b2b36eedf0beb494292eb3617d4046ec055aa35fc162b0584c9fdccc7889cc91a3458bab31cd2ecb595638c9ec5e229225a457e85ed5f2af3a1a4047b11ce5d61a15273ee2cecc3"}}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, r6, 0x1, 0x123, 0x234}, 0x14}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000440), r5)
ioctl$SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, 0x0)

8m14.104250938s ago: executing program 1 (id=751):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(r0)
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, 0x0, 0x0)

8m13.511107888s ago: executing program 2 (id=757):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0) (async)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="5400000000010108000000000000000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000001c001880080001"], 0x54}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
fcntl$dupfd(r2, 0x406, r2)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) (async)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r4, &(0x7f00000001c0)=@file={0x1, './file0/file0\x00'}, 0x6e)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x800000, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRES64=r2, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x800000, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRES64=r2, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f000000e280)={0x2020, 0x0, <r5=>0x0, 0x0, <r6=>0x0}, 0x2020)
link(&(0x7f0000000180)='./file0/../file0/file0\x00', 0x0)
write$FUSE_INIT(r3, &(0x7f0000000380)={0x50, 0x0, r5, {0x7, 0x27, 0x0, 0x1001a}}, 0x50) (async)
write$FUSE_INIT(r3, &(0x7f0000000380)={0x50, 0x0, r5, {0x7, 0x27, 0x0, 0x1001a}}, 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0) (async)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0)
unshare(0x22020600)
open_tree(0xffffffffffffff9c, &(0x7f0000001800)='./file0/../file0/file0\x00', 0x89901)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')
syz_fuse_handle_req(r3, &(0x7f0000006280)="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", 0x2000, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x90, 0x0, 0x0, {0x0, 0x0, 0x1, 0x0, 0x80000000, 0x0, {0x0, 0x0, 0x95, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, r6}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) (async)
connect$vsock_stream(r7, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
close(0x3) (async)
close(0x3)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b40)=ANY=[@ANYBLOB="280000003d00fb010000000000000000017c00000400fc800c00018006000600800a0000040002"], 0x28}}, 0x4c000)

8m12.938115225s ago: executing program 1 (id=759):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @empty}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000900)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r0, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000780)='x', 0x1}], 0x1}}], 0x1, 0x4008440)
r1 = syz_open_dev$midi(&(0x7f0000000000), 0x2, 0x28002)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x40045730, &(0x7f0000000780))
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x80100, 0x0)
ioctl$KVM_GET_DEBUGREGS(r7, 0x8080aea1, &(0x7f0000000080))

8m12.684136483s ago: executing program 2 (id=762):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x202201, 0x0)
r0 = syz_io_uring_complete(0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, &(0x7f0000000040)="07000000010011", 0x7)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c0002010000000904000001020d00000424"], 0x0)

8m9.357654081s ago: executing program 1 (id=764):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x2, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
sendto$inet(r0, &(0x7f00000002c0)="26388dbaa364a106bda081af42efe24456d1503b414faa22ccc03c35fe428682450c508ade149bf809cdd95a8c6d7b5dedc54b49407b4d1ba6bf89ad90f132516c3e12c2c0d3a47e1388471644a90eb3ca95f120b2c8243fd3d6fb57fd79e8d9dcfe6e5e7ebe25217409c17c5ff4d3d6fb6ce2be8aec3eafe69a58f78d5992cd05c16aec237955275b0b4096eb7d699d33124e1fe71b38706b3556cca97ec4022d2799dbea8713c4179c0793780255092341215a343707bf1c4e1f44ffc85e036113bb230dec9ccdc8e762326c140652d85d01687e0c388c7e94", 0xda, 0x8100, &(0x7f0000000040)={0x2, 0x4e21, @broadcast}, 0x10)
r1 = syz_io_uring_setup(0x304, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000500)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040))
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffd, 0x6, 0xdb, @scatter={0x0, 0x0, 0x0}, &(0x7f00000014c0)="513ea7996702", 0x0, 0x3, 0x0, 0x6, 0x0})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
readv(r0, &(0x7f0000000700)=[{&(0x7f0000000080)=""/59, 0x3b}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000001500)=""/4096, 0x1000}, {&(0x7f0000002500)=""/4096, 0x1000}, {&(0x7f0000000480)=""/102, 0x66}, {&(0x7f0000000600)=""/250, 0xfa}], 0x6)
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

8m9.019996676s ago: executing program 2 (id=767):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f00000010c0)=ANY=[@ANYBLOB="12010000c73d8a0870272091776c0102ef010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x2)
getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019bc0)=""/102400, 0x19000)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0x40045731, &(0x7f0000000040))
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xe8}}, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000004c0)={0x24, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
syz_usb_connect$cdc_ncm(0x4, 0x75, &(0x7f0000000540)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0x7, 0x60, 0x80, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x6, 0xfff7, 0x4, 0x6}, {0x6, 0x24, 0x1a, 0x2, 0x24}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x15, 0xbc, 0x7}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x9, 0xe, 0x3}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x9, 0x4, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xff, 0x80, 0x20}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x250, 0x1, 0x5, 0xa4, 0xf7, 0x91}, 0x108, &(0x7f00000005c0)={0x5, 0xf, 0x108, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0xc, 0x4, 0xa}, @wireless={0xb, 0x10, 0x1, 0x4, 0x10, 0x35, 0x67, 0xff, 0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8, 0x6, 0x7}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x5, 0x7, 0x2, 0x1}, @ssp_cap={0x24, 0x10, 0xa, 0x75, 0x6, 0xb9ec, 0xff0f, 0x626, [0x0, 0xc0ff, 0xff018f, 0x0, 0xc000, 0xa0]}, @generic={0xb9, 0x10, 0xa, "15535d1ef6006492815ff2ff35b14486c86e4d02b2b8715ce334d9965c2db4dcda1178084c439c376c084b1c2e4d23fa37b9d5e529bad01f4d96c25a1f9f4dae9eaa346fd74702edbe9d6651c1cc3bba777fa657a75a9df31140a8c47f8a7c1d448663e2693b33b29ef5254ad71abbfad15edd7f1303152f73a235383fc6676ddc19f6f07f18583e0f3f680ec72604ad54b725d94943538a8d914594527d3b516a6f9132ef848724fa27b116e5b3a5d30b74f8736a9f"}]}, 0x1, [{0x69, &(0x7f0000000780)=@string={0x69, 0x3, "ff666ac68aa3a6d451999c49f7c364d91de5bf95dfdca2fb40db45e325a7b16b2b36eedf0beb494292eb3617d4046ec055aa35fc162b0584c9fdccc7889cc91a3458bab31cd2ecb595638c9ec5e229225a457e85ed5f2af3a1a4047b11ce5d61a15273ee2cecc3"}}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, r6, 0x1, 0x123, 0x234}, 0x14}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000440), r5)
ioctl$SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, 0x0)

8m9.003322464s ago: executing program 1 (id=768):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r3, 0x80184132, &(0x7f0000000340))
ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000180)=r2)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)={0xc4, r4, 0x1, 0x70bd2b, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MESH_SETUP={0xa8, 0x70, [@NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x4, 0x8, 0x4}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0xaa}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5}, @NL80211_MESH_SETUP_IE={0x6f, 0x3, "32e78d3e4f85538a4f2cbf197d409bd5b7daf78b2f279bbd20f4b205c602964c683347b08964de17a2b33abdca5c82ba972c0bdd0141b7843cc7af0536e08668563a79f2f5ff6e2ec89fe7e0c6c7ba32f477182cd13aad0a1c7f8a1124e62d379720acdc451e2b1cec4b9f"}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4048054}, 0x8800)

8m8.017280097s ago: executing program 32 (id=767):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f00000010c0)=ANY=[@ANYBLOB="12010000c73d8a0870272091776c0102ef010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x2)
getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019bc0)=""/102400, 0x19000)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0x40045731, &(0x7f0000000040))
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xe8}}, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000004c0)={0x24, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
syz_usb_connect$cdc_ncm(0x4, 0x75, &(0x7f0000000540)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0x7, 0x60, 0x80, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x6, 0xfff7, 0x4, 0x6}, {0x6, 0x24, 0x1a, 0x2, 0x24}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x15, 0xbc, 0x7}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x9, 0xe, 0x3}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x9, 0x4, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xff, 0x80, 0x20}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x250, 0x1, 0x5, 0xa4, 0xf7, 0x91}, 0x108, &(0x7f00000005c0)={0x5, 0xf, 0x108, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0xc, 0x4, 0xa}, @wireless={0xb, 0x10, 0x1, 0x4, 0x10, 0x35, 0x67, 0xff, 0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8, 0x6, 0x7}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x5, 0x7, 0x2, 0x1}, @ssp_cap={0x24, 0x10, 0xa, 0x75, 0x6, 0xb9ec, 0xff0f, 0x626, [0x0, 0xc0ff, 0xff018f, 0x0, 0xc000, 0xa0]}, @generic={0xb9, 0x10, 0xa, "15535d1ef6006492815ff2ff35b14486c86e4d02b2b8715ce334d9965c2db4dcda1178084c439c376c084b1c2e4d23fa37b9d5e529bad01f4d96c25a1f9f4dae9eaa346fd74702edbe9d6651c1cc3bba777fa657a75a9df31140a8c47f8a7c1d448663e2693b33b29ef5254ad71abbfad15edd7f1303152f73a235383fc6676ddc19f6f07f18583e0f3f680ec72604ad54b725d94943538a8d914594527d3b516a6f9132ef848724fa27b116e5b3a5d30b74f8736a9f"}]}, 0x1, [{0x69, &(0x7f0000000780)=@string={0x69, 0x3, "ff666ac68aa3a6d451999c49f7c364d91de5bf95dfdca2fb40db45e325a7b16b2b36eedf0beb494292eb3617d4046ec055aa35fc162b0584c9fdccc7889cc91a3458bab31cd2ecb595638c9ec5e229225a457e85ed5f2af3a1a4047b11ce5d61a15273ee2cecc3"}}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, r6, 0x1, 0x123, 0x234}, 0x14}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000440), r5)
ioctl$SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, 0x0)

8m8.000311459s ago: executing program 1 (id=771):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
open_by_handle_at(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe00010043"], 0x408100)

8m7.066663845s ago: executing program 1 (id=773):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00003cd000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f000063c000/0x3000)=nil)
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)={0x18, 0x52, 0x1, 0x0, 0x0, {0x1c}, [@generic='b']}, 0x18}}, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r7, 0x0)
ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, &(0x7f0000000100)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f00000001c0)=[{}]})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r8, @ANYBLOB="003bee55327a2939000000"])
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000240)=@o_path={&(0x7f0000000040)='./file0\x00', r8, 0x4000, r2}, 0x18)
r9 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r9, &(0x7f0000000400)='FROZEN\x00', 0x7)

7m51.932649356s ago: executing program 33 (id=773):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00003cd000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f000063c000/0x3000)=nil)
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)={0x18, 0x52, 0x1, 0x0, 0x0, {0x1c}, [@generic='b']}, 0x18}}, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r7, 0x0)
ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, &(0x7f0000000100)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f00000001c0)=[{}]})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r8, @ANYBLOB="003bee55327a2939000000"])
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000240)=@o_path={&(0x7f0000000040)='./file0\x00', r8, 0x4000, r2}, 0x18)
r9 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r9, &(0x7f0000000400)='FROZEN\x00', 0x7)

48.57600829s ago: executing program 3 (id=2890):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r2, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x2, 0x0, 0x7fffffff, 0x3, 0x0, 0x6, 0x4})
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
ioctl$AUTOFS_IOC_FAIL(r3, 0x4c80, 0xffffffffffffffb6)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20305}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gre={{0x8}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x1}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r10 = socket$inet6(0xa, 0x2, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000340), 0x22260ac, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './bus'}}], [{@fowner_eq}]})
r11 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r11, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x268, 0xffffff7a, 0xffffffff, 0x268, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x41}, 0x6, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x2, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYRESOCT=r10], 0x18}, 0x1, 0x0, 0x0, 0x8444}, 0x4010010)

46.406000761s ago: executing program 3 (id=2897):
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
r1 = socket$caif_stream(0x25, 0x1, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r2}})
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)

45.239099498s ago: executing program 3 (id=2904):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a0400eb2636037f00000000", @ANYRES32=r1, @ANYBLOB="020000000000800080001200080001007674693674000200600004"], 0xa0}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

44.995518131s ago: executing program 3 (id=2906):
syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x0, 0x24004000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = add_key(&(0x7f0000000100)='.request_key_auth\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000280)="3499fd160e89cefe7e71ad2b9be47026891aba83e2e8c4ddfd360d45c8abcb110a6d20402cc1f6036f9b7ef13914e34ae161417a3d37b8bfbea5b238145e264f812735687886f64d09757e3ababe8cc97dc9fc2485be347c48d7ecdb560b777567ea2c3cda8113e3f8a1ea", 0x6b, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000002880)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)={0x38, r5, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x38}}, 0x0)
keyctl$revoke(0x3, r3)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x10, 0xa702)
mmap(&(0x7f0000371000/0x5000)=nil, 0x5000, 0x0, 0x11, r6, 0x0)

42.728304683s ago: executing program 3 (id=2911):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000001000000380001801400040000000000000000000000000000000001060001000a000000060005004e22000008000700", @ANYRES32=0x0], 0x4c}}, 0x0)
sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f00000013c0)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000001340)={0x68, r0, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x59a}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x80]}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_HMACKEYID={0x2, 0x3, 0xfffffff9}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x9}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7f}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x11}]}, 0x68}, 0x1, 0x0, 0x0, 0x200200c4}, 0x4004001)
r3 = openat$smackfs_ipv6host(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$smackfs_ipv6host(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='0x0000000000000002:0x0000000000000007:0x0000000000000007:0x0000000000000004:0x000000000000000c:0x0000000000000401:0x0000000000000004:0x000100000000008a/00000000000000000032'], 0xd2)

41.975818993s ago: executing program 3 (id=2921):
syz_usb_connect(0x5, 0x35, &(0x7f0000000500)=ANY=[@ANYBLOB="120100004aaf36207205a5580a2701020301090223000100000000090401"], 0x0) (async)
r0 = epoll_create(0x4f27) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x528, 0x3}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000140)={0xd10370957abdd752}) (async)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x9, 0x8, 0x8, 0x90, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
writev(r2, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000100)="06010000246837f7", 0x8}], 0x2) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
pipe2(&(0x7f00000003c0)={<r4=>0xffffffffffffffff}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESOCT=r6]) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'ip6_vti0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x54, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x81, 0x9, 0x309b, 0x1, 0x63d, 0x200}}, {0x4}}]}]}, 0x54}}, 0x0)

25.066864204s ago: executing program 34 (id=2921):
syz_usb_connect(0x5, 0x35, &(0x7f0000000500)=ANY=[@ANYBLOB="120100004aaf36207205a5580a2701020301090223000100000000090401"], 0x0) (async)
r0 = epoll_create(0x4f27) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x528, 0x3}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000140)={0xd10370957abdd752}) (async)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x9, 0x8, 0x8, 0x90, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
writev(r2, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000100)="06010000246837f7", 0x8}], 0x2) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
pipe2(&(0x7f00000003c0)={<r4=>0xffffffffffffffff}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESOCT=r6]) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'ip6_vti0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x54, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x81, 0x9, 0x309b, 0x1, 0x63d, 0x200}}, {0x4}}]}]}, 0x54}}, 0x0)

13.093047537s ago: executing program 0 (id=3036):
syz_open_dev$I2C(&(0x7f0000000800), 0x0, 0x0)
r0 = epoll_create1(0x0)
ioctl$FIONREAD(r0, 0x541b, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="6000000002060500000000e2b27900000000000000000105000100070000000900020073797a300000000014000780080006000000000008001340000000000500050002000000050004000000000011000300686173683a69702c6d61726b00"], 0x60}}, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000440)={{0x0, 0x0, 0x80, {0x200000000000000, 0x100000}}, "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", "cfb220c7d481332f3f1f8079dfe27e23185fd67a407358db7892789f96b7fa9b14daa48617a10d8a91b820ecbaa470ec0bb1f3cbce7f70ec70b19a4cad082229c2788f8611d7dc306d9a45761a97828c36ed87ebde5d4a3e1609c1422a8ae2f7cca428ebdb0dd38b90b9598a353b18a600bf35a369e6e3e5abb0a1c5c0c0e48e014e7ef1b7d768b3c5657f1adfbb7ff2985082b16c99eb83ec3660990dcf1106efa6b7f8a4798fec811c2c85faec0235c83b7093b3d02367421abc40a554e0b0d7fc1bcaece4222c594f8d20e368fe625ca433c75486fe5c94103cd17291349ee12b877602936688666f82ecd8f4f83d50bb1650e08b96cd25ad147c4c956c98649806a3736d072c8d97c6e3a46a7c18535df8d828b86662400d8e9cc861fa1dd5dc193892d3168396c499e07b279fb76c7e289f2fd955691363bc1de74536dc571817615c88b0d594a136966c129e424ccb7ef1c7c7461eac7ca5f03d72ea4c9c3d1156ee4cb1bb70e097357588b5c49f6716bbae1bd118104b42786f09a3b9f7cb80f383cadfd0c462096ff2bb637b7cf79764b6a4b7ffc5d87c1f063fb48e7f08ad5af534c70079f12f28e8921abbd4280801cdf6101ea494768b1274afd0eea5939843d56022a83590920fe446d52dfe699c33977d5592dbf7e0e236b8175d7faae06e0c50f7402174023ce4b996564e945c416fa823f2f9c3213ac50b20bd1fd55bb8d9fe70ee31ea2f404ae0fcbf857bebcc9196c8c622059fea2e248e4058905b69fb98be312d3193ea1d8ff653173e8c2371371b77a5bea45b3cd6fba19b6336f94ec04c8f86d24e9ca959874577d7ca0baf3c4ff30b554bc3ccc06df46d925373fbf7863e2cf684d3bc9603ab72b851ca4728294de87f2dec6f23ca9e43ed2e5cbba662d13137fc1ce0f6ae6aeb974f72f4b750825fafb67715e425f40c7da83b92d4249a0a4e96b789cceb7b07f38cb83f72dd093a345ab3cb8ae760fc14e40ea182a0d7fe1facc62a1ab0902349fd7e27bb0cd349fb5053f4734823abf020739b4b43bb11f5d69b61295068df31177959903c2ea1bb82d24eeaa93d0d4738d5d15b2a401e7ebe0d3cfbd45b2db2882cdb41408aaa718f8320fbb7f9da4f68d0eebeef175442e807e9908132731fe5e268582dcf6dffa4251ebb7121db8e412089fa9d8af9919799547a26b6b8eb44c28f1ce5f9a3021fe30841be204c1b4b3813dccae6baeef9b53fe413cbec46bb0cd95d3793cdc9bfe6cdd96ce0c4aa4a25e1cbbeeee6c9fa558b279048c7e31d07b125bac68d4e1f4253bd4dc7824cf3d722c94cf2b8f61bc8155731f072fd447082b181a13ffb8c08a1d568298c5de2d969fae2bea070a9e2688f294e76b8c200dfb993ec19778eb56ae3127c1116ccc85ef8806fdcb9ee0cb66ff03fbb0fa6c52b9b101b3830fc1650efa859163a264b4059092e5dc9a415ec09bfd1460f142fe5ef00beb6aa9032bd0de97aefc6f65e8cfeea761b3d8174caf528b6627682ff4d4450cb0f34251fc000ed01dd538ef13260984f44703b89dfb511bfb538d0b1c8aded964e1bcc5ca57437468b14a31ec0000a17e4d24369c40500449c37e7dccedba3eceb59d827dace246b5c48afb6a5988e64c560b3dc76c32d831f51cdbc5cfc4364ac8b25372b87c92bacfedc6bc8feb44098dbebc89cda03c59e4c58a31372bd574704b9e788834b9f83c6703f6709efad97c4ce499ea580dae1de282a019247cb3dce5c1906322e6d3ca5157ea6428bc42416936fac194efe136089c07faf7adf1e923003f1dc63fcbc634b389a4f351a6acee785e23c6bb04ca2f265be1e634362b87c6f9fd369bbe62a1db6b286c7ffde6370bb4d6e9e0cc3ec451e1a99d134726c9075e71319d3a683e91e4b900061c0e6d086481069cd32f4cde7816f8e3a0ac6428a7488f31f06ee0da10df3ed0c150d29085879d064f914407f60018bb588735663647bfeda930407d69abef3f72fd461c2b85b00988b412a180fd267fc646a86d297e7e40912607157b6fa873df6442579b1523d8117f0c06c87adf75843b8bff30a5bfb4fe1e9846b7fdd58774641baf9cc9c4e38e53ed24a9d9e9dbc7657aa9b220a8545852b0409f5c0812e953823e841967bf55059acc7a4600818134359e72cfae0d04a0738ac8acca133d6395a455b22cdd6f901d4cdea1cf17415f7d7895a4b65f80d2f7c5c60a0dc04b40c9ae5ffc922e074a82afd704673e1766d19db9f60eab0238fb4a3169a08aded607847e5d752d4e24c4914b95bac3892bcfc2076f16a7f07583f0d418b9dec03afdb2e93335a392e1b1ef2910eb2a4b6a63fe61641f3c02bef73cd7e4a77a6f30ae821598c3160511603541bea89022b54f321c2a55cdeeb19335d78a821ab6ca0f36588a9a79a41e2123905a491d658c2a1caeee998c995bb0f816c92c5dc2b862183f80b9f9786c9c5524723c944d11f6894c7f008ab8194f577e22c03631d2a33205f508ea49653e7600639242dbaba704f700ac227f32dc575c559a0a1f4fe0cf6c22fbf7e1ca2ab4b1e4724e8379021e3c9a7c1509c6a413bd7d9c98938e440762eda2546d636597defa86c1ad31126a1182d365f858927d140fb0a97f80adcc5f4ed5efe11ac503453917a263f1d64692348d30f382e85e464ef7616067a42df5de1a1b622fabefe2ca4ceffa4801f7a02fdef40644cd1d079590d900727628d54b44db7ac700d8d664f7eea12837fcf347360d8e43a354fe51b4c49e8fcda3c322b738ed2b800b5cc06e22c72af2a67ee7bc8ae894e841f2cf2b0a7e381caf944bf4e91ded63b6f82f7474e4f81e986fff7e5339b8e9f60103a1af81833e120f0c88893ecabac044a4a2867cda4fdcb084459a00507aa9e5a8e761a72df3322a1ae8cd918b4994c23bdb1e459b4f21651bd7fa067a00e2a2877bf6b29f289ed8018e0a78f6fb4ded9749640e0e37f6381b320ab72da404f3d70d60152f6fa6738932387b83250cb3148141edb52f109bfd4bda8054959db01f4c550609a63c08cf01ecd110cfc6f0055638c0dde039d2ac2daafe59e561f9f08a8830c3f661e4325de63e98f4a4216ec3b83fd200201ed3f647147611424286ffc6c4a8aca64a6874743242d4feeaa9153de06e51c512d9cab7ae712c6424069f3e5db4ddebe9b48b5f6caa741162edf97674d2368e03a387f798151a4b9b9fa9e3a5838a343133158364a9fe3bb4b9a3c464c0c54a4c64ca774ad200925ac6bf59508c10a8574afde9b821741af43ec64cedc13aa220b39772195283506dfe899dd6a7b37eb21f154056a2df3564ef2bb918a928651de88c3613b84e7960bddd7b46b1304deb30f57b6fe5a3b4788629e91bcc2456a72fabb16b47da71624d2e9081de748b3387f52da4bb094782326dcfde0827e2d674e41bb375247d349cade9c704e5431785009b0e53f1b45c70b237c9432e07e4c7a8464ed11608a3d2184338dd9e6f6ef4b3d751e979667b6a3953c89aff4eead7a978071a912b3de21a85a5849c57933cf53cd74a610f3e60f699766fbc7e0bb8a891a429c77bb6f3b6f9f8eb0b1bd9588ef2ce98fdf0a0838e4b0bed807d8b673093c717feec8d697e32542274887d039db7a2daed5d52c8e9767443229f8003c5d67e907376ea2f393484fa70deee159cb56f8d097b8fe2736e95f540137e20725f0940a8d049068ead4c46bb3771a671bb00de88931e03445a55868de0c220db05cbda9f996d5fe7c1070efe5e718fed4d4cb4ecacad3d6b643bc0ffe9a71b720ba7b5adbbdefe29106ef6a6ffe4547f5d02bec312147df0abe80efb2d5e598fc7c8b268e58b59e0d75728e9a18126f013c963ddc92d251405f857fe3a5cbacf443be7772975b7bf4f6d7ed6f80dfcc47a88c6d19120942adb5385be6ef3c0d7e396bcac5affc8f9276d6cd1a0b069aed72a98cde8ea7aabe6cc091b19efcfaf9368dfeb3087a05a42e3b893dae5ffeb72e6ac06e995a2a75ea0b5f7876247bb4c38cf3f0153f1f7473b522f1c440b632270e2b1d654d3a5ae16cb788482760d34ca79c8951b29c628e21029715683a3e6f8f77c5d89ecdae37e0190f79c4c1dbc9d0160e359cd6c94d6662ed53bb01a83374ff593c823acc59241b11f020902069fc0054a9b26cb320bef4fb1f8cc5bd8ae76eb029afab731b9876bc4e8708a8315512823cff1f9375d284ce66e53d4efad6c76d17bb532fc938b8f80c13ce86b5ba3e540164bc5a5d47cd321c241d8740f453ef95bd3878d578561ad6ce20877ffbd44062dce8df1d048d8d5e4045be647886108cbb1f0b26a8b74b66858afedb830a161bb02bde4c46a688a0ea3a7018ce24666aab0f422ede2f78ea29f77e28d87c744cba0285ce33d0d9ac45774829699de6d725a9b6db6e7d03ad4ec9d075c386e68ca0bcd9e9911d741ed0168cbddb87a7918a964d206629da4e887277b0ef7d3f9c7082f3f15f29a0dfb39f3b0877a5ec3ac4343e0d808f5aee8f1869923aab6dfc3016821c013109f34aece6183994b853d0e9561375c02cdd26b1b55194757341929a8038864cedd6b5a3b8b51ade44637044c4ebddb190f173969a0ca4cf5d42153763a0b91da0110ae7a25204850927d81b00176d4568a3d444d8029bd010df784e3f673fe855601ec4f1b26b2df58841e6a65f0db66373f63cc14a8b07dfc52ac9957eb542d05ed687c79519609de96df18b63cb294b534ddf7d2e8f41bcc1e5a006191c4db057b6709f0a96f18e7e8f67b8be2a19c015b9c4b0b3f42e4de366b71f8da8888809473c3c7a02a1158e375f29997a43bc7118ca4d1abb8f8f21972fc589aaa3d73a4d40a1e1705e169ac6e56cff50d89fc45b6863c8fc67bb2b5939a7f33072539ba4c24077be5711ba368bf7efd4897931531d388eb5c2e56bef337777150dd59518652145c9594e110e41d2615196c6b197916c88cc2814e13a3a922b4ecb044bf31cc90e0bfe0ce07de29188bbcb0ec1a12b509f52582fbb948c3cbe0c6964f46991cec0704bfac08aec6ad8ddfc36dc68c7f547c5ee6af4a8d55c79e3dc1c49b045379811f81e9a185a92cd37ae4ee32c5d3c82d36d6202a6c84fd231fe467071d42072827fd77afa5d757e6f37247f783ef09bdfd7536b666e84bc4bb878005b7829293a04ba090272dec844f4ef0e934617c08518bdc6b915ac6f3f03e4a6ab88e21c3f21f93b31d95ea3b9228e0031cb69795de5abd19c4cb4a0cf2984e53ca391cc66e33ee0d510151670331fa264753704fea5e4b1760f74890c49a74a47e0da13155c5470013d53dea0f05b5e088f1511c209f5be940232318af2757951d399e32eb862d915784713baa8ba93645caf04ba78fa3cf600ff92b9c5be58ad87438a340bac00a5ea9fb17e39478ba61fe36335e48d8c5a0b25f024cbd2ec7f217d0f260951da396dc13a2a74cd90df4b52db686e3b34d27cfa4cebd7bf59cbcfaf4007dc943a1da6e0bd1799a21ab449d7bb42935e50c839c5b567c59742436af15bc8d46095520dcd9273ae2b6f3c1cc2b4311ac9e5d297f0940b1552c5955adb302022022bb7457978998b56328629b7725dfbe3dedb37f37af0697a4471d1d6ff6bec633a38540adeba903f3eaaec5785fbb3c6a598f49dbd9ff93c67dea1ef39a614331b119fa8efccc8bac01595fb95a2a57eec9fc6c6fe82782aa89ea971866fd9a3bca4010182092ab6d1e2b49b964be9e3bb13bd6b77850e435f55a5d46e5bcb3330c7edefd31c33f61275e516"})
r2 = syz_open_dev$evdev(&(0x7f0000000200), 0xa00000000000000, 0x80400)
ioctl$EVIOCGID(r2, 0x80084502, &(0x7f00000024c0)=""/119)
syz_usb_connect(0x6, 0x2d, &(0x7f00000006c0)=ANY=[@ANYBLOB="1201000009a65d0860040800dee20102030109021b05000000000009040000f678eaf5000905"], &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, [{0xfe67, 0x0}]})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002600)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000300)={0x0, <r4=>0x0})
ptrace$setopts(0x4206, r4, 0x3, 0x43)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0)
write$tcp_mem(r8, &(0x7f00000000c0)={0x9, 0x2d, 0xfffffffffffffff9, 0x3a, 0x0, 0x2c}, 0x48)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80882)
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000), &(0x7f0000000100))

9.359271599s ago: executing program 4 (id=3046):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socket$inet_udp(0x2, 0x2, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x2}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
getsockopt$nfc_llcp(0xffffffffffffffff, 0x118, 0x4, &(0x7f0000000140)=""/192, 0x20000057)
recvmmsg(r1, &(0x7f00000000c0), 0x0, 0x40000002, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='bcache_btree_insert_key\x00', r3}, 0x18)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r5)
socket(0x10, 0x3, 0x2c1a)
r6 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000002c0)={'veth0_virt_wifi\x00', <r7=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010400100039a00"/20, @ANYRES32=r7, @ANYBLOB="000020000008000024001200140001006272696467655f736c617665800000000c0005"], 0x3}}, 0x0)
splice(r4, 0x0, r5, 0x0, 0x10500, 0x0)
io_uring_setup(0x1611, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x9, 0x0, 0x1, 0x77ff0023}]})
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r3, 0x0, 0x7}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000000)=0xb0000)
arch_prctl$ARCH_SHSTK_DISABLE(0x5002, 0x2)

9.27756982s ago: executing program 0 (id=3048):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001ac0)=@deltfilter={0x40, 0x2d, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7, 0xfff2}, {0x14, 0xffff}, {0xa, 0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004810}, 0x8081)

8.889817743s ago: executing program 0 (id=3052):
io_uring_setup(0x18db, &(0x7f0000000140)={0x0, 0x0, 0x7394e1deea88e1b9, 0x80000})
pipe(&(0x7f0000000380))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f00000002c0)=0x7, 0x4)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001400add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)

7.772079729s ago: executing program 4 (id=3058):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=<r2=>0x0)
rt_sigqueueinfo(r2, 0x5, &(0x7f00000002c0)={0x28, 0x9, 0x8})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x3c, &(0x7f0000000180)=[{0x0, 0x80}, {0x1, 0x1}]}, 0x10)
write$binfmt_misc(r3, &(0x7f0000000100), 0x6)
r5 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r5, 0x40084146, &(0x7f0000000080))
ftruncate(r5, 0x7)
r6 = syz_socket_connect_nvme_tcp()
ioctl$sock_inet_SIOCSIFBRDADDR(r6, 0x891a, &(0x7f0000000200)={'veth0_virt_wifi\x00', {0x2, 0x4e23, @local}})
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xfffffffffffff000, 0xfffff000})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newlink={0x50, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2001}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x20, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}}, {0xa, 0x4, @remote}]}]}}}]}, 0x50}}, 0x0)
r8 = socket$inet6(0xa, 0x3, 0x87)
sendmmsg$sock(r8, &(0x7f0000001700)=[{{0x0, 0x0, &(0x7f0000000480)}}], 0x1, 0x4004810)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)

7.71230253s ago: executing program 0 (id=3059):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYRES8=0x0], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xa, 0x4000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000500), &(0x7f0000000580)=0xc)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in=@loopback, 0x4e22, 0x0, 0x1, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0x6}, 0x2253, 0x6e6bb0}, {{@in6=@local, 0x4d2, 0x6c}, 0x0, @in6=@private2, 0x0, 0x0, 0x2}}, 0xe8)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r5, 0x5425, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0x3)
socket$rds(0x15, 0x5, 0x0)

7.572035786s ago: executing program 4 (id=3061):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000000)={r0, &(0x7f00000009c0), 0x20000000, 0x12}, 0x20)
r1 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r1, 0x0, 0xce, 0x0, &(0x7f00000000c0))
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100005f2ab412009a268bd87d3eaca00000dba29200"], 0x0)
syz_usb_control_io$cdc_ecm(r4, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000040)=ANY=[], 0x0, 0x0})
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000500)={0x18, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0})
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'erspan0\x00'})
ioctl$FS_IOC_SETFSLABEL(r5, 0x41009432, &(0x7f0000000100)="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")
r6 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$evdev(r6, &(0x7f00000001c0)=[{{0x0, 0x2710}, 0x2, 0x6, 0x8}], 0x18)
syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000080)=0xb)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}, @IFLA_BR_VLAN_FILTERING={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(&(0x7f0000000600)='./file0\x00', 0x8060, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020}, 0x2020)

7.547507946s ago: executing program 6 (id=3062):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001ac0)=@deltfilter={0x40, 0x2d, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7, 0xfff2}, {0x14, 0xffff}, {0xa, 0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004810}, 0x8081)

6.575556143s ago: executing program 6 (id=3064):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
symlinkat(&(0x7f00000000c0)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file1\x00')
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0x800000000000001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
getpid() (async)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340), &(0x7f0000000280)) (async)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780}) (async)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
mount(&(0x7f0000000100), 0x0, &(0x7f00000002c0)='9p\x00', 0xf000000, 0x0) (async)
mount(&(0x7f0000000100), 0x0, &(0x7f00000002c0)='9p\x00', 0xf000000, 0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r7, 0x10d, 0x1, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_CLOCK(0xffffffffffffffff, 0x1d, &(0x7f0000000000)={0x3}, 0x0) (async)
io_uring_register$IORING_REGISTER_CLOCK(0xffffffffffffffff, 0x1d, &(0x7f0000000000)={0x3}, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r9, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r9, &(0x7f00000000c0)="589222ab", 0x4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

6.516778079s ago: executing program 5 (id=3065):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x5, &(0x7f0000006680))
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0x40505331, &(0x7f0000000180)={0xf, 0x0, 0x0, 'queue1\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e2100000500070bff0000000c0001"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {0xffffffffffffffff, 0x8}}, 0x10)

5.896096607s ago: executing program 4 (id=3066):
socket$inet(0x2, 0x1, 0x0)
socket$igmp(0x2, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x8, 0x1, 0x4, 0x0, 0xffffffffffffffff, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000240)=0x8000, 0x4)
connect$unix(r1, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e23}, 0x6e)

5.669264333s ago: executing program 7 (id=3067):
prctl$PR_GET_TSC(0x43, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffc000/0x1000)=nil)
socket(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x6, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007000000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000c500000095"], &(0x7f0000000640)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
signalfd(0xffffffffffffffff, &(0x7f0000006540), 0x8)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x4, &(0x7f0000000400)=""/4096, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x5, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xa8}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

3.881752361s ago: executing program 7 (id=3068):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e) (async)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000a00), 0x2, 0x0) (async)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)="593bac7c7ba5166ba78998c3130bfdba44b2d14a1202aca23f58e1e02a401992fd19685df0afb9b2b372ee53d13f6ca11e94707c25f029c0ad1833c07d6af86bdebc7c26660ea78f2583e030bcd7b680cae08b9557fa331b", 0x58}], 0x1}, 0x0) (async)
syz_io_uring_setup(0x24a2, &(0x7f0000000140)={0x0, 0xef8f, 0x2000, 0x3, 0x36b}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x114, &(0x7f00000002c0)=0xf39, 0x0, 0x4)
ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205647, &(0x7f0000000080)={0xf010004, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90d, 0x6, '\x00', @value64=0x31}})
ioctl$TCXONC(r0, 0x540a, 0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)) (async, rerun: 32)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00') (rerun: 32)
accept4$alg(r3, 0x0, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff}) (async)
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)="a3", 0x1}], 0x1, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r5}}}], 0x20, 0x1}, 0x20040001) (async, rerun: 64)
read$FUSE(r3, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2100) (rerun: 64)
io_uring_enter(r3, 0x4ca6, 0xe099, 0x0, &(0x7f0000000000)={[0x4000000000000]}, 0x8) (async)
prlimit64(r6, 0xe, &(0x7f00000000c0)={0x9, 0x6}, 0x0)

3.66010555s ago: executing program 0 (id=3069):
io_uring_setup(0x18db, &(0x7f0000000140)={0x0, 0x0, 0x7394e1deea88e1b9, 0x80000})
pipe(&(0x7f0000000380))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f00000002c0)=0x7, 0x4)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001400add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)

2.889827684s ago: executing program 5 (id=3070):
socket$inet(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r4, 0x1, 0x10, &(0x7f0000000240)=0x8000, 0x4)
connect$unix(r4, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e23}, 0x6e)

2.5648609s ago: executing program 0 (id=3071):
get_mempolicy(0x0, &(0x7f0000000080), 0x4, &(0x7f0000ffa000/0x4000)=nil, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
io_uring_enter(0xffffffffffffffff, 0x2772, 0xa98d, 0x3, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xc, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="850000002200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000240)="5c00000015006b05c84e21000ab96d6e230675", 0x13}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r3, 0x0, 0xcc0, 0xfffffffffffffde6, &(0x7f00000001c0)="348b0d151f8218e3c73697e4080049c416b90900000093291cfc5e8b99005e8b9900", 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000010651fbe347b2c2b00000c000180080001"], 0x20}}, 0x0) (async)
r4 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
syz_usb_control_io$uac1(r4, 0x0, &(0x7f00000004c0)={0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="000c0100000006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.492163559s ago: executing program 7 (id=3072):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x90}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000580)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)
sendto$inet6(r0, &(0x7f0000000000)="ee", 0x1, 0x40, &(0x7f0000000100)={0xa, 0x4e20, 0x8, @rand_addr=' \x01\x00'}, 0x1c)
chmod(&(0x7f0000000000)='./file0\x00', 0x61)

2.354611502s ago: executing program 7 (id=3073):
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
r0 = socket(0x21, 0x6, 0x2)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x4, @random="45e3f364e554", 'sit0\x00'}}, 0x1e)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000100), r1)
sendmsg$NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x0, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20040084}, 0x4000010)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

2.352905162s ago: executing program 4 (id=3074):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001ac0)=@deltfilter={0x40, 0x2d, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7, 0xfff2}, {0x14, 0xffff}, {0xa, 0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004810}, 0x8081)

2.237377976s ago: executing program 6 (id=3075):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x2, 0x2, 0x401, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000020301040000000000000000000008100800010001"], 0x1c}}, 0x0)
readlinkat(r2, &(0x7f0000000180)='./file0\x00', &(0x7f0000000340)=""/109, 0x6d)
close(0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000007000000000000000000000018120000", @ANYRES32, @ANYBLOB="0017a44300000000000000b7030000000c000000b7000000000000a095000000000000008f73dd2f2aa2195e8001c37cd4b2d9fec141345f4ed23bb20e92537f4a960533de14877b58bce4423d446d74d755a8d6e0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r2, 0x80044d15, &(0x7f00000003c0))

1.764990524s ago: executing program 5 (id=3076):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x260141, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
bind$unix(r2, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x1, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x92)
mknodat(r4, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r5, &(0x7f00000001c0)='./file0\x00', r5, &(0x7f0000000200)='./bus/file0\x00', 0x0)
r6 = open(&(0x7f00000000c0)='.\x00', 0x400, 0x0)
linkat(r6, &(0x7f0000000080)='./file0\x00', r6, &(0x7f0000000100)='./file1\x00', 0x0)
getdents(r6, 0x0, 0x0)
rename(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0\x00')
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r7, 0x0, 0x0)

1.602784656s ago: executing program 6 (id=3077):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)

1.460215011s ago: executing program 5 (id=3078):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x300000000000000, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './bus'}}]})

1.42806843s ago: executing program 6 (id=3079):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x24f5, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$tipc(0xffffffffffffffff, &(0x7f0000003100)=@id={0x1e, 0x3, 0x0, {0x100000}}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4814}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32, @ANYBLOB="0000000000000000b708"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00'}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x800000000000000, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.270508006s ago: executing program 4 (id=3080):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000000000), &(0x7f0000000080)=0x68)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
r2 = timerfd_create(0x0, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028b912800b00010065727370616e00001800028004001200050016000200000006001800000000"], 0x48}}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
clock_gettime(0x6, &(0x7f0000000080)={<r4=>0x0, <r5=>0x0})
timerfd_settime(r2, 0x3, &(0x7f0000000000)={{}, {r4, r5+60000000}}, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
fallocate(r6, 0x5, 0x2e7, 0x6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000000980)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000300)=""/205, 0xcd}, {&(0x7f0000000180)=""/65, 0x41}, {&(0x7f0000000400)=""/246, 0xf6}, {&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f00000008c0)=""/134, 0x79}, {&(0x7f0000000680)=""/140, 0x8c}], 0x7, &(0x7f00000007c0)=""/94, 0xffffffffffffff99}, 0x1000}, {{&(0x7f0000000840)=@l2tp6, 0x80, &(0x7f0000000280)=[{0x0}, {&(0x7f0000000100)=""/3, 0x3}], 0x2}}], 0x2, 0x8002, 0x0)

1.204032682s ago: executing program 6 (id=3081):
io_uring_setup(0x18db, &(0x7f0000000140)={0x0, 0x0, 0x7394e1deea88e1b9, 0x80000})
pipe(&(0x7f0000000380))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), 0x0}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r6}, 0x18)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r7, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f00000002c0)=0x7, 0x4)
r8 = socket$netlink(0x10, 0x3, 0x4)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001400add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)

1.203602453s ago: executing program 5 (id=3082):
r0 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000001a00)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
socket(0xa, 0x803, 0x0)
write$binfmt_format(r0, &(0x7f0000001a40)='-1\x00', 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)={0x4c, r2, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x64}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}]}]}, 0x4c}}, 0x0)
sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="7f7bfa76", @ANYRES16=r2, @ANYBLOB="200027bd7000fddbdf251100000008000400060000000c000280080006000002000020000180080005000400000014000300000000000000000000000000000000000800060000c0000030000280060002004e23000014000100ac1414bb000000000000000000000000080007000300000005000d00010000007c00018008000600777272000c000700000000000c000000080005000200000014000300ff01000000000000000000000000000106000100000000001400030000000000000000000000000000000000080008004008000006000100020000001400030000000000000000000000000000000000060002003b000000"], 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x8001)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x88, &(0x7f0000000580)=ANY=[@ANYBLOB="6d4f64653d3030073030304205000000000000372c42000000"])
socket$nl_rdma(0x10, 0x3, 0x14)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
r4 = io_uring_setup(0x424c, &(0x7f00000004c0)={0x0, 0xad41, 0x2, 0x3, 0x161})
r5 = eventfd2(0x28ea, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000000540)=r5, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, 0x0, 0x1)
mount$afs(0x0, &(0x7f0000000600)='./control/file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000540)={[{@flock_openafs}, {@flock_strict}]})
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r6, &(0x7f0000003480)={0x2020}, 0x2020)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000300)={0xb9, 0x9, 0x4, 0x0, 0x9, 0x0, [{0x3, 0x1d6b, 0xa}, {0x2, 0x6, 0x6, '\x00', 0x3300}, {0x5, 0x400, 0x8000000000000001, '\x00', 0x1102}, {0xa9, 0x3, 0x0, '\x00', 0x208}, {0xee, 0x6000, 0x3, '\x00', 0x400}, {0x1, 0x80000000, 0x5, '\x00', 0x2800}, {0x2, 0x0, 0x3c23, '\x00', 0x1}, {0x200, 0x87f, 0x5, '\x00', 0x2000}, {0x5, 0x8db3, 0x3ff, '\x00', 0xc00}]})

1.017405557s ago: executing program 7 (id=3083):
capget(&(0x7f00000003c0)={0x20071026}, &(0x7f0000000400)={0x7, 0x9, 0x2, 0xff, 0x7, 0xc})
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890c, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @broadcast}, @llc={0x1a, 0x206, 0x49, 0x9, 0x10, 0x5, @random="f95766a5e235"}, @nl=@unspec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x34, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x20, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x851}, 0x0)

807.85238ms ago: executing program 5 (id=3084):
socket$inet(0x2, 0x1, 0x0)
socket$igmp(0x2, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x8, 0x1, 0x4, 0x0, 0xffffffffffffffff, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000240)=0x8000, 0x4)
connect$unix(r1, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e23}, 0x6e)

0s ago: executing program 7 (id=3085):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$key(0xf, 0x3, 0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r4, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r5, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
mprotect(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
setsockopt$MRT_ADD_MFC(r4, 0x0, 0xcc, &(0x7f0000000040)={@multicast2, @empty, 0x0, "881d3b24e009118e5e5c2bd5b64fb01582a1085fc53c43c4b776d30612334501", 0x0, 0x1, 0x1, 0x9}, 0x3c)
setsockopt(r3, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000100", 0x8)
setsockopt(r3, 0x84, 0x81, &(0x7f00000003c0)="1a00000002000100", 0x8)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$PIO_CMAP(0xffffffffffffffff, 0x4b71, &(0x7f0000000080))
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff)
socket$can_bcm(0x1d, 0x2, 0x2)
shutdown(0xffffffffffffffff, 0x0)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r6, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
sendto$inet6(r6, &(0x7f0000001240)='>', 0x1, 0x0, &(0x7f00000012c0)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x20}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

kernel console output (not intermixed with test programs):

5871] usb 4-1: config 0 has no interface number 0
[  399.048905][ T5871] usb 4-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  399.086768][ T5871] usb 4-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  399.098819][ T5871] usb 4-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  399.110309][ T5871] usb 4-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  399.216907][ T5871] usb 4-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  399.234369][ T5871] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.247014][ T5871] usb 4-1: Product: syz
[  399.251632][ T5871] usb 4-1: Manufacturer: syz
[  399.256333][ T5871] usb 4-1: SerialNumber: syz
[  399.266917][ T5871] usb 4-1: config 0 descriptor??
[  399.310176][ T9829] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1151'.
[  399.777149][ T9823] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1151'.
[  399.793868][ T9821] kvm: user requested TSC rate below hardware speed
[  399.835020][ T5871] iowarrior 4-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  400.271431][ T5823] usb 4-1: USB disconnect, device number 42
[  401.008290][ T5871] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  401.258503][ T5871] usb 5-1: Using ep0 maxpacket: 8
[  401.420674][ T5871] usb 5-1: unable to get BOS descriptor or descriptor too short
[  401.436493][ T5871] usb 5-1: config 7 has an invalid interface number: 67 but max is 0
[  401.455065][ T5871] usb 5-1: config 7 has no interface number 0
[  401.502737][ T5871] usb 5-1: New USB device found, idVendor=16c0, idProduct=05df, bcdDevice=6b.16
[  401.527808][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.544618][ T5871] usb 5-1: Product: syz
[  401.553860][ T5871] usb 5-1: Manufacturer: syz
[  401.562932][ T5871] usb 5-1: SerialNumber: syz
[  401.756702][ T9861] overlayfs: statfs failed on './file0'
[  402.441271][ T5871] usbhid 5-1:7.67: couldn't find an input interrupt endpoint
[  402.467083][ T5871] usb 5-1: USB disconnect, device number 35
[  402.996935][ T9878] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551615)
[  403.008852][ T9878] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535
[  404.183754][ T9883] Driver unsupported XDP return value 0 on prog  (id 238) dev N/A, expect packet loss!
[  404.236777][ T9891] syz_tun: entered allmulticast mode
[  404.295214][ T9890] syz_tun: left allmulticast mode
[  404.670167][ T5824] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  407.007944][ T5824] usb 7-1: Using ep0 maxpacket: 8
[  407.030103][ T5824] usb 7-1: config 0 has an invalid interface number: 186 but max is 0
[  407.048309][ T5824] usb 7-1: config 0 has no interface number 0
[  407.070269][ T5824] usb 7-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  407.177014][ T5871] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  407.260994][ T5824] usb 7-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  407.328527][ T5824] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  407.357826][ T5871] usb 5-1: Using ep0 maxpacket: 32
[  407.393842][ T5871] usb 5-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=49.88
[  407.407988][ T5824] usb 7-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  407.448063][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.482979][ T5824] usb 7-1: string descriptor 0 read error: -71
[  407.509792][ T5871] usb 5-1: Product: syz
[  407.514015][ T5871] usb 5-1: Manufacturer: syz
[  407.519215][ T9919] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1186'.
[  407.538428][ T5824] usb 7-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  407.568648][ T5871] usb 5-1: SerialNumber: syz
[  407.591534][ T5871] usb 5-1: config 0 descriptor??
[  407.596755][ T5824] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.606874][ T9921] tipc: Started in network mode
[  407.637451][ T9921] tipc: Node identity ac1414aa, cluster identity 4711
[  407.651294][ T5824] usb 7-1: config 0 descriptor??
[  407.658720][ T5871] as10x_usb: device has been detected
[  407.664598][ T5871] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan)
[  407.701536][ T9921] tipc: Enabled bearer <udp:s>, priority 10
[  407.712239][ T5824] usb 7-1: can't set config #0, error -71
[  407.740043][ T5824] usb 7-1: USB disconnect, device number 5
[  407.819266][ T5871] usb 5-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)...
[  407.894111][ T5871] as10x_usb: error during firmware upload part1
[  407.900888][ T5871] Registered device Abilis Systems DVB-Titan
[  408.349468][ T5824] usb 5-1: USB disconnect, device number 36
[  408.387001][ T5824] Unregistered device Abilis Systems DVB-Titan
[  408.389967][ T5824] as10x_usb: device has been disconnected
[  408.491149][ T9951] wg1: entered promiscuous mode
[  408.503951][ T9951] wg1: entered allmulticast mode
[  408.698540][ T5824] tipc: Node number set to 2886997162
[  409.965524][   T29] audit: type=1326 audit(1736621204.372:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9964 comm="syz.3.1202" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  413.017979][  T118] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  413.167895][  T118] usb 4-1: device descriptor read/64, error -71
[  413.408843][  T118] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  413.558323][  T118] usb 4-1: device descriptor read/64, error -71
[  413.668240][  T118] usb usb4-port1: attempt power cycle
[  413.935228][T10037] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  413.943168][T10037] macsec1: entered allmulticast mode
[  413.948627][T10037] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  414.009821][ T5823] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  414.038414][  T118] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  414.068848][  T118] usb 4-1: device descriptor read/8, error -71
[  414.081970][T10041] netlink: 'syz.6.1228': attribute type 1 has an invalid length.
[  414.090197][T10041] netlink: 'syz.6.1228': attribute type 2 has an invalid length.
[  414.178964][ T5823] usb 5-1: Using ep0 maxpacket: 8
[  414.191369][ T5823] usb 5-1: config 0 has an invalid interface number: 186 but max is 0
[  414.204698][ T5823] usb 5-1: config 0 has no interface number 0
[  414.213738][ T5823] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  414.229792][ T5823] usb 5-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  414.253307][ T5823] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  414.264949][ T5823] usb 5-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  414.281733][ T5823] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  414.291162][ T5823] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.299744][ T5823] usb 5-1: Product: syz
[  414.304122][ T5823] usb 5-1: Manufacturer: syz
[  414.309257][ T5823] usb 5-1: SerialNumber: syz
[  414.317083][ T5823] usb 5-1: config 0 descriptor??
[  414.317965][  T118] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  414.363309][  T118] usb 4-1: device descriptor read/8, error -71
[  414.482529][  T118] usb usb4-port1: unable to enumerate USB device
[  414.530012][ T5823] iowarrior 5-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  414.735542][  T118] usb 5-1: USB disconnect, device number 37
[  415.342371][   T29] audit: type=1800 audit(1736621209.752:111): pid=10055 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.1233" name="bus" dev="overlay" ino=1322 res=0 errno=0
[  418.370589][   T29] audit: type=1326 audit(1736621212.782:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10069 comm="syz.5.1239" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6a8585d29 code=0x0
[  418.415655][T10077] overlayfs: missing 'lowerdir'
[  419.215214][ T5871] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  419.440280][ T5871] usb 4-1: Using ep0 maxpacket: 32
[  419.453140][ T5871] usb 4-1: config 0 has no interfaces?
[  419.602665][ T5871] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  419.660416][ T5871] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.674959][ T5871] usb 4-1: Product: syz
[  419.679801][ T5871] usb 4-1: Manufacturer: syz
[  419.684415][ T5871] usb 4-1: SerialNumber: syz
[  419.700034][ T5871] usb 4-1: config 0 descriptor??
[  421.138073][ T5824] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  421.156664][T10118] syz.4.1251[10118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  421.156877][T10118] syz.4.1251[10118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  421.170017][T10118] syz.4.1251[10118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  421.300417][ T5824] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  421.321699][ T5824] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  421.334492][ T5824] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  421.349365][ T5824] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  421.448838][  T118] usb 4-1: USB disconnect, device number 47
[  421.455595][ T5824] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  421.469753][ T5824] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  421.480646][ T5824] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  421.488756][ T5824] usb 7-1: Product: syz
[  421.492984][ T5824] usb 7-1: Manufacturer: syz
[  421.508334][ T5824] cdc_wdm 7-1:1.0: skipping garbage
[  421.513616][ T5824] cdc_wdm 7-1:1.0: skipping garbage
[  421.528645][ T5824] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  421.533747][   T29] audit: type=1326 audit(1736621215.932:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10121 comm="syz.5.1253" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6a8585d29 code=0x0
[  421.535436][ T5824] cdc_wdm 7-1:1.0: Unknown control protocol
[  421.742256][    C1] wdm_int_callback: 6835 callbacks suppressed
[  421.742274][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.754940][    C1] wdm_int_callback: 6835 callbacks suppressed
[  421.754954][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.767487][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.774089][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.780337][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.786930][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.797829][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.804449][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.810717][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.817311][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.823546][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.830171][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.836530][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.843158][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.850714][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.857361][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.863996][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.870641][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  421.876947][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  421.883571][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  422.692116][T10109] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  422.700717][ T5902] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  422.720552][T10109] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.873066][ T5902] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  423.619196][ T5902] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  423.636590][ T5902] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  423.650851][ T5902] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.665123][ T5902] usb 5-1: config 0 descriptor??
[  423.698542][T10141] delete_channel: no stack
[  423.848041][ T5870] usb 4-1: new full-speed USB device number 48 using dummy_hcd
[  423.998122][ T5870] usb 4-1: device descriptor read/64, error -71
[  424.089089][ T5902] hid (null): bogus close delimiter
[  424.248172][ T5870] usb 4-1: new full-speed USB device number 49 using dummy_hcd
[  424.282983][ T5902] usb 5-1: string descriptor 0 read error: -22
[  424.408064][ T5870] usb 4-1: device descriptor read/64, error -71
[  424.488088][ T5902] uclogic 0003:256C:006D.000E: interface is invalid, ignoring
[  424.519113][ T5870] usb usb4-port1: attempt power cycle
[  424.639079][ T5872] usb 7-1: USB disconnect, device number 6
[  424.639161][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  424.984381][ T5870] usb 4-1: new full-speed USB device number 50 using dummy_hcd
[  425.008409][ T5870] usb 4-1: device descriptor read/8, error -71
[  425.077530][T10158] overlayfs: statfs failed on './file0'
[  425.285771][ T5870] usb 4-1: new full-speed USB device number 51 using dummy_hcd
[  425.317761][ T5870] usb 4-1: device descriptor read/8, error -71
[  425.436430][ T5870] usb usb4-port1: unable to enumerate USB device
[  426.012638][ T5872] usb 5-1: USB disconnect, device number 39
[  426.136686][   T29] audit: type=1326 audit(1736621220.461:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10176 comm="syz.4.1268" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x0
[  426.215096][T10183] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1266'.
[  427.732418][T10192] overlayfs: statfs failed on './file0'
[  427.882787][ T5872] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[  428.067950][ T5872] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  428.083643][ T5872] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  428.097130][ T5872] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  428.106457][ T5872] usb 4-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  428.119113][ T5872] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  428.135792][ T5872] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  428.145372][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  428.153706][ T5872] usb 4-1: Product: syz
[  428.158161][ T5872] usb 4-1: Manufacturer: syz
[  428.188536][ T5872] cdc_wdm 4-1:1.0: skipping garbage
[  428.194907][ T5872] cdc_wdm 4-1:1.0: skipping garbage
[  428.202972][ T5872] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  428.209506][ T5872] cdc_wdm 4-1:1.0: Unknown control protocol
[  428.426044][    C0] wdm_int_callback: 15093 callbacks suppressed
[  428.426069][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.438914][    C0] wdm_int_callback: 15093 callbacks suppressed
[  428.438938][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.451813][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.458437][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.464826][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.471442][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.479153][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.485769][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.494759][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.501392][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.508229][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.514844][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.518527][T10190] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  428.521377][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.535918][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.544348][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.550996][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.557763][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.562016][T10190] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  428.564378][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  428.578999][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  428.585642][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  429.909717][T10223] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[  429.909717][T10223] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C�׈�E)�8+����'
[  430.145700][T10230] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1281'.
[  430.395960][ T5833] Bluetooth: hci1: unexpected event for opcode 0x200f
[  431.026988][ T5824] usb 4-1: USB disconnect, device number 52
[  431.027100][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  432.826723][ T5824] usb 5-1: new full-speed USB device number 40 using dummy_hcd
[  433.005346][ T5824] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  433.036205][ T5824] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  433.060770][ T5824] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.100499][ T5824] usb 5-1: config 0 descriptor??
[  433.112062][T10241] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  433.134813][ T5833] Bluetooth: hci0: command 0x0406 tx timeout
[  433.340833][ T5824] ath6kl: Failed to submit usb control message: -71
[  433.348332][ T5824] ath6kl: unable to send the bmi data to the device: -71
[  433.355408][ T5824] ath6kl: Unable to send get target info: -71
[  433.363482][ T5824] ath6kl: Failed to init ath6kl core: -71
[  433.370026][ T5824] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  433.390050][ T5824] usb 5-1: USB disconnect, device number 40
[  433.671252][T10277] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  434.307868][T10286] overlayfs: failed to clone upperpath
[  435.370502][T10296] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1305'.
[  435.495774][T10297] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1305'.
[  435.819651][T10311] wg1: entered promiscuous mode
[  435.824607][T10311] wg1: entered allmulticast mode
[  436.053821][T10324] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1316'.
[  436.476052][T10341] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1322'.
[  437.192689][T10359] lo speed is unknown, defaulting to 1000
[  437.725118][T10368] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  438.807194][T10393] overlayfs: failed to clone upperpath
[  438.819490][T10393] netlink: 248 bytes leftover after parsing attributes in process `syz.4.1340'.
[  438.828648][T10393] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1340'.
[  439.043851][ T5870] usb 4-1: new full-speed USB device number 53 using dummy_hcd
[  439.225068][ T5870] usb 4-1: unable to get BOS descriptor or descriptor too short
[  439.237535][ T5870] usb 4-1: unable to read config index 0 descriptor/start: -71
[  439.245405][ T5870] usb 4-1: can't read configurations, error -71
[  439.803470][T10408] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1347'.
[  439.871780][T10408] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1347'.
[  440.413490][T10422] sctp: [Deprecated]: syz.4.1348 (pid 10422) Use of int in max_burst socket option deprecated.
[  440.413490][T10422] Use struct sctp_assoc_value instead
[  440.924523][T10442] overlayfs: failed to clone lowerpath
[  441.140319][T10451] xt_bpf: check failed: parse error
[  441.405658][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1365'.
[  441.455515][T10459] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  441.469784][T10459] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  442.417262][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  442.423703][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  442.634824][T10471] FAULT_INJECTION: forcing a failure.
[  442.634824][T10471] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.704096][T10471] CPU: 0 UID: 0 PID: 10471 Comm: syz.3.1368 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  442.714929][T10471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  442.725013][T10471] Call Trace:
[  442.728316][T10471]  <TASK>
[  442.731273][T10471]  dump_stack_lvl+0x241/0x360
[  442.735982][T10471]  ? __pfx_dump_stack_lvl+0x10/0x10
[  442.741202][T10471]  ? __pfx__printk+0x10/0x10
[  442.745809][T10471]  ? __pfx_lock_release+0x10/0x10
[  442.750832][T10471]  ? __lock_acquire+0x1397/0x2100
[  442.755859][T10471]  should_fail_ex+0x3b0/0x4e0
[  442.760540][T10471]  _copy_from_user+0x2f/0xc0
[  442.765135][T10471]  kstrtouint_from_user+0xc6/0x190
[  442.770246][T10471]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  442.775973][T10471]  ? __pfx_lock_acquire+0x10/0x10
[  442.781004][T10471]  proc_fail_nth_write+0xaa/0x2d0
[  442.786029][T10471]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  442.791922][T10471]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  442.797558][T10471]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  442.803189][T10471]  vfs_write+0x2a3/0xd30
[  442.807444][T10471]  ? __pfx_vfs_write+0x10/0x10
[  442.812209][T10471]  ? __fget_files+0x2a/0x410
[  442.816796][T10471]  ? __fget_files+0x395/0x410
[  442.821468][T10471]  ? __fget_files+0x2a/0x410
[  442.826058][T10471]  ksys_write+0x18f/0x2b0
[  442.830390][T10471]  ? __pfx_ksys_write+0x10/0x10
[  442.835244][T10471]  ? do_syscall_64+0x100/0x230
[  442.840015][T10471]  ? do_syscall_64+0xb6/0x230
[  442.844693][T10471]  do_syscall_64+0xf3/0x230
[  442.849198][T10471]  ? clear_bhb_loop+0x35/0x90
[  442.853882][T10471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.859778][T10471] RIP: 0033:0x7f2ea13847df
[  442.864191][T10471] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  442.883804][T10471] RSP: 002b:00007f2ea2133030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  442.892308][T10471] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2ea13847df
[  442.900275][T10471] RDX: 0000000000000001 RSI: 00007f2ea21330a0 RDI: 0000000000000006
[  442.908242][T10471] RBP: 00007f2ea2133090 R08: 0000000000000000 R09: 0000000000000000
[  442.916210][T10471] R10: 0000000000004100 R11: 0000000000000293 R12: 0000000000000001
[  442.924183][T10471] R13: 0000000000000000 R14: 00007f2ea1576080 R15: 00007fffff1d5128
[  442.932165][T10471]  </TASK>
[  443.041013][T10477] 9pnet: Could not find request transport: �OїpSH�=0xffffffffffffffff
[  445.734446][T10497] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1377'.
[  445.743689][T10497] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1377'.
[  446.647820][T10513] netlink: 'syz.3.1381': attribute type 2 has an invalid length.
[  446.698740][T10513] netlink: 'syz.3.1381': attribute type 1 has an invalid length.
[  447.059165][T10529] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1387'.
[  447.681790][ T5833] Bluetooth: unknown link type 14
[  447.687126][ T5833] Bluetooth: hci0: connection err: -111
[  448.494593][T10553] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1397'.
[  448.706977][T10564] QAT: Stopping all acceleration devices.
[  449.542293][ T5833] Bluetooth: hci1: command 0x0405 tx timeout
[  449.685663][T10585] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1408'.
[  449.820092][T10591] futex_wake_op: syz.6.1410 tries to shift op by 32; fix this program
[  449.832392][T10591] netlink: 152 bytes leftover after parsing attributes in process `syz.6.1410'.
[  451.240282][T10608] fuse: Bad value for 'fd'
[  451.249449][T10608] 9pnet_fd: Insufficient options for proto=fd
[  452.468336][T10636] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1423'.
[  455.617552][T10663] netlink: 'syz.0.1431': attribute type 10 has an invalid length.
[  455.748142][T10663] team0: Device netdevsim0 failed to register rx_handler
[  456.009838][T10680] FAULT_INJECTION: forcing a failure.
[  456.009838][T10680] name failslab, interval 1, probability 0, space 0, times 0
[  456.022690][T10680] CPU: 1 UID: 0 PID: 10680 Comm: syz.3.1438 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  456.033490][T10680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  456.043580][T10680] Call Trace:
[  456.046886][T10680]  <TASK>
[  456.049832][T10680]  dump_stack_lvl+0x241/0x360
[  456.054547][T10680]  ? __pfx_dump_stack_lvl+0x10/0x10
[  456.059765][T10680]  ? __pfx__printk+0x10/0x10
[  456.064371][T10680]  ? __kmalloc_cache_noprof+0x48/0x390
[  456.069842][T10680]  ? __pfx___might_resched+0x10/0x10
[  456.075151][T10680]  should_fail_ex+0x3b0/0x4e0
[  456.079864][T10680]  should_failslab+0xac/0x100
[  456.084622][T10680]  __kmalloc_cache_noprof+0x70/0x390
[  456.089946][T10680]  ? alloc_netdev_mqs+0xbc6/0x1080
[  456.091467][T10683] fuse: Bad value for 'fd'
[  456.095065][T10680]  ? __xdp_rxq_info_reg+0x142/0x290
[  456.095103][T10680]  alloc_netdev_mqs+0xbc6/0x1080
[  456.095135][T10680]  rtnl_create_link+0x2f9/0xc20
[  456.095161][T10680]  rtnl_newlink_create+0x210/0xa40
[  456.095190][T10680]  ? __pfx___mutex_lock+0x10/0x10
[  456.095212][T10680]  ? cap_capable+0x1b4/0x250
[  456.095231][T10680]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  456.095276][T10680]  ? ns_capable+0x8a/0xf0
[  456.095302][T10680]  rtnl_newlink+0x1c7e/0x2210
[  456.095337][T10680]  ? __pfx_rtnl_newlink+0x10/0x10
[  456.149167][T10680]  ? __pfx_validate_chain+0x10/0x10
[  456.154385][T10680]  ? __pfx_validate_chain+0x10/0x10
[  456.159597][T10680]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.165702][T10680]  ? __pfx___schedule+0x10/0x10
[  456.170606][T10680]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  456.176617][T10680]  ? preempt_schedule+0xe1/0xf0
[  456.181497][T10680]  ? preempt_schedule_common+0x84/0xd0
[  456.186991][T10680]  ? mark_lock+0x9a/0x360
[  456.191351][T10680]  ? __lock_acquire+0x1397/0x2100
[  456.196436][T10680]  ? __pfx_lock_release+0x10/0x10
[  456.201490][T10680]  ? cap_capable+0x1b4/0x250
[  456.206122][T10680]  ? __pfx_rtnl_newlink+0x10/0x10
[  456.211188][T10680]  rtnetlink_rcv_msg+0x791/0xcf0
[  456.216178][T10680]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  456.221328][T10680]  ? rcu_preempt_deferred_qs_irqrestore+0x87b/0xc70
[  456.227951][T10680]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  456.233457][T10680]  netlink_rcv_skb+0x1e3/0x430
[  456.238251][T10680]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  456.243748][T10680]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  456.249091][T10680]  ? __rcu_read_unlock+0xa1/0x110
[  456.254148][T10680]  netlink_unicast+0x7f6/0x990
[  456.258957][T10680]  ? __pfx_netlink_unicast+0x10/0x10
[  456.264278][T10680]  ? __virt_addr_valid+0x45f/0x530
[  456.269420][T10680]  ? __phys_addr_symbol+0x2f/0x70
[  456.274477][T10680]  ? __check_object_size+0x47a/0x730
[  456.279800][T10680]  netlink_sendmsg+0x8e4/0xcb0
[  456.284606][T10680]  ? __pfx_netlink_sendmsg+0x10/0x10
[  456.289937][T10680]  ? __pfx_netlink_sendmsg+0x10/0x10
[  456.295250][T10680]  __sock_sendmsg+0x221/0x270
[  456.299975][T10680]  ____sys_sendmsg+0x52a/0x7e0
[  456.304778][T10680]  ? __pfx_____sys_sendmsg+0x10/0x10
[  456.310087][T10680]  ? __fget_files+0x2a/0x410
[  456.314707][T10680]  ? __fget_files+0x2a/0x410
[  456.319332][T10680]  __sys_sendmsg+0x269/0x350
[  456.323950][T10680]  ? __pfx_lock_release+0x10/0x10
[  456.329003][T10680]  ? __pfx___sys_sendmsg+0x10/0x10
[  456.334152][T10680]  ? __pfx_vfs_write+0x10/0x10
[  456.338978][T10680]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  456.345336][T10680]  ? do_syscall_64+0x100/0x230
[  456.350134][T10680]  ? do_syscall_64+0xb6/0x230
[  456.354849][T10680]  do_syscall_64+0xf3/0x230
[  456.359384][T10680]  ? clear_bhb_loop+0x35/0x90
[  456.364090][T10680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.370021][T10680] RIP: 0033:0x7f2ea1385d29
[  456.374463][T10680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.394101][T10680] RSP: 002b:00007f2ea2154038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  456.402555][T10680] RAX: ffffffffffffffda RBX: 00007f2ea1575fa0 RCX: 00007f2ea1385d29
[  456.410563][T10680] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  456.418568][T10680] RBP: 00007f2ea2154090 R08: 0000000000000000 R09: 0000000000000000
[  456.426575][T10680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  456.434577][T10680] R13: 0000000000000000 R14: 00007f2ea1575fa0 R15: 00007fffff1d5128
[  456.442604][T10680]  </TASK>
[  456.739636][T10691] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1442'.
[  457.753416][T10704] netlink: 'syz.5.1446': attribute type 1 has an invalid length.
[  457.793590][T10704] netlink: 'syz.5.1446': attribute type 2 has an invalid length.
[  457.815780][T10704] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1446'.
[  458.233425][    T8] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[  458.395479][    T8] usb 4-1: Using ep0 maxpacket: 8
[  458.405176][    T8] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  458.415120][    T8] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  458.424997][    T8] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  458.444012][    T8] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  458.466462][    T8] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  458.503172][    T8] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  458.523301][T10731] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1456'.
[  458.523583][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.024486][    T8] usb 4-1: GET_CAPABILITIES returned 0
[  459.030056][    T8] usbtmc 4-1:16.0: can't read capabilities
[  459.213697][T10712] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  459.223174][T10712] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  459.467590][ T5824] usb 4-1: USB disconnect, device number 55
[  459.717676][T10763] netlink: 104 bytes leftover after parsing attributes in process `syz.6.1467'.
[  459.848717][T10769] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1469'.
[  460.263403][T10780] overlayfs: failed to clone upperpath
[  461.231039][T10788] lo speed is unknown, defaulting to 1000
[  461.598643][T10806] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1484'.
[  461.783195][T10817] netlink: 'syz.4.1487': attribute type 1 has an invalid length.
[  461.792484][T10795] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1478'.
[  461.827838][T10820] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_bridge, syncid = 0, id = 0
[  461.926444][T10795] geneve2: entered promiscuous mode
[  461.932044][T10795] geneve2: entered allmulticast mode
[  461.971006][T10824] bond1: (slave veth3): Enslaving as an active interface with a down link
[  462.188009][T10830] dccp_invalid_packet: P.Data Offset(104) too large
[  464.241613][T10844] overlayfs: failed to clone upperpath
[  464.691002][    T8] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[  464.880536][    T8] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  464.898391][    T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  464.926003][    T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  464.946845][    T8] usb 4-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  464.962857][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  464.977183][    T8] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  464.986880][    T8] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  465.003098][    T8] usb 4-1: Product: syz
[  465.011067][    T8] usb 4-1: Manufacturer: syz
[  465.031511][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  465.042631][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  465.060540][    T8] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  465.070044][T10882] netlink: 'syz.4.1506': attribute type 4 has an invalid length.
[  465.078274][    T8] cdc_wdm 4-1:1.0: Unknown control protocol
[  465.254793][    C1] wdm_int_callback: 10764 callbacks suppressed
[  465.254821][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.267641][    C1] wdm_int_callback: 10764 callbacks suppressed
[  465.267661][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.280878][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.287530][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.294935][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.301575][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.307862][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.314456][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.321593][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.328207][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.334647][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.341235][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.347640][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.354238][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.360548][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.367160][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.373699][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.380322][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.386568][    C1] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  465.393159][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  465.412354][T10851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  465.428000][T10851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  465.998877][T10910] overlayfs: failed to clone upperpath
[  467.647831][ T5872] usb 4-1: USB disconnect, device number 56
[  467.651247][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  468.566404][T10955] 9pnet_fd: Insufficient options for proto=fd
[  469.102709][T10959] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  469.713176][T10967] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1533'.
[  470.653117][T10996] 9pnet_fd: Insufficient options for proto=fd
[  470.714919][T10999] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1544'.
[  472.604467][T11021] 9pnet_fd: Insufficient options for proto=fd
[  472.613241][T11021] overlayfs: failed to clone lowerpath
[  472.796157][T11033] tmpfs: Unknown parameter 'usrquotar'
[  473.629508][T11054] 8021q: adding VLAN 0 to HW filter on device bond2
[  473.705343][T11054] team0: Port device bond2 added
[  473.992538][T11062] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1563'.
[  474.137070][T11068] team_slave_0: entered promiscuous mode
[  474.143346][T11068] team_slave_1: entered promiscuous mode
[  474.330847][T11071] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  475.168391][T11076] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1568'.
[  475.196821][T11076] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  478.252994][T11118] overlayfs: failed to clone lowerpath
[  478.336737][T11121] 9pnet_fd: Insufficient options for proto=fd
[  478.388674][T11121] overlayfs: overlapping lowerdir path
[  478.568936][T11132] Bluetooth: MGMT ver 1.23
[  479.650600][T11152] netlink: 'syz.4.1588': attribute type 8 has an invalid length.
[  480.074987][ T5833] Bluetooth: hci1: command 0x0405 tx timeout
[  482.849347][T11172] overlayfs: failed to clone lowerpath
[  484.156225][T11194] sctp: [Deprecated]: syz.4.1603 (pid 11194) Use of int in max_burst socket option.
[  484.156225][T11194] Use struct sctp_assoc_value instead
[  484.348894][T11195] netlink: 'syz.4.1603': attribute type 4 has an invalid length.
[  486.659352][T11224] netlink: 'syz.5.1612': attribute type 9 has an invalid length.
[  487.447678][T11233] wg1: left allmulticast mode
[  488.062608][T11231] overlayfs: failed to clone lowerpath
[  489.067354][T11265] tmpfs: Bad value for 'mpol'
[  490.227137][T11278] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1632'.
[  490.236194][T11278] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1632'.
[  490.543717][T11279] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1632'.
[  490.837570][T11281] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1632'.
[  493.282214][T11297] sctp: [Deprecated]: syz.0.1637 (pid 11297) Use of struct sctp_assoc_value in delayed_ack socket option.
[  493.282214][T11297] Use struct sctp_sack_info instead
[  493.476588][T11306] netlink: 'syz.5.1640': attribute type 10 has an invalid length.
[  493.505989][T11306] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1640'.
[  493.535616][T11306] A link change request failed with some changes committed already. Interface macvlan1 may have been left with an inconsistent configuration, please check.
[  494.862204][T11322] netlink: zone id is out of range
[  496.018365][T11322] netlink: set zone limit has 4 unknown bytes
[  496.077818][T11331] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  499.615922][T11362] fuse: Bad value for 'user_id'
[  499.620869][T11362] fuse: Bad value for 'user_id'
[  499.674143][T11364] overlayfs: failed to clone upperpath
[  499.983461][T11377] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1660'.
[  501.528249][T11392] fuse: Bad value for 'fd'
[  504.884137][T11430] netlink: 1300 bytes leftover after parsing attributes in process `syz.4.1677'.
[  504.971700][T11436] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1680'.
[  505.024497][T11433] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1680'.
[  505.264717][T11439] : entered promiscuous mode
[  505.284171][T11440] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  505.319302][T11437] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  506.789806][T11456] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1689'.
[  506.798940][T11456] bond0: entered allmulticast mode
[  506.808360][T11456] netlink: 'syz.0.1689': attribute type 10 has an invalid length.
[  507.815092][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  507.821525][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  507.830186][   T29] audit: type=1326 audit(1736621295.929:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  507.851924][   T29] audit: type=1326 audit(1736621295.929:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  507.891392][   T29] audit: type=1326 audit(1736621295.938:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  508.838397][   T29] audit: type=1326 audit(1736621295.938:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.187806][   T29] audit: type=1326 audit(1736621295.938:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.213496][   T29] audit: type=1326 audit(1736621295.948:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.277450][   T29] audit: type=1326 audit(1736621295.957:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.335773][   T29] audit: type=1326 audit(1736621295.957:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.350237][T11474] 8021q: adding VLAN 0 to HW filter on device bond3
[  509.392085][   T29] audit: type=1326 audit(1736621295.966:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.414621][   T29] audit: type=1326 audit(1736621295.966:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11453 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  509.689087][T11491] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1698'.
[  509.714769][T11491] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1698'.
[  509.748546][T11491] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1698'.
[  509.760852][T11491] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1698'.
[  509.826489][T11499] netlink: 'syz.6.1702': attribute type 1 has an invalid length.
[  509.834549][T11499] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1702'.
[  509.846954][T11491] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1698'.
[  510.918444][T11518] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1705'.
[  511.046923][T11517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1707'.
[  511.066610][T11519] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1704'.
[  511.115520][T11517] ipvlan2: entered promiscuous mode
[  511.187826][T11517] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  513.125980][T11531] netlink: 'syz.0.1711': attribute type 10 has an invalid length.
[  514.191852][T11531] bond0: left allmulticast mode
[  514.335558][T11531] 8021q: adding VLAN 0 to HW filter on device bond0
[  514.343838][T11531] team0: Port device bond0 added
[  514.349724][T11537] netlink: 'syz.3.1713': attribute type 21 has an invalid length.
[  514.358025][T11537] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1713'.
[  514.367538][T11538] netlink: 'syz.3.1713': attribute type 21 has an invalid length.
[  514.378135][T11538] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1713'.
[  514.515960][T11549] overlayfs: failed to clone lowerpath
[  514.752701][T11557] futex_wake_op: syz.6.1719 tries to shift op by 32; fix this program
[  516.188839][T11557] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1719'.
[  516.361122][T11570] 9pnet_fd: Insufficient options for proto=fd
[  516.635967][T11574] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1721'.
[  517.229775][T11584] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1729'.
[  520.090426][ T5837] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  521.494380][T11647] netlink: 'syz.4.1750': attribute type 6 has an invalid length.
[  521.763754][T11656] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1752'.
[  523.239393][T11679] fuse: Bad value for 'fd'
[  523.267647][T11684] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1762'.
[  523.408882][T11687] xt_socket: unknown flags 0x8
[  523.533581][T11694] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1763'.
[  524.308962][T11700] pimreg: entered allmulticast mode
[  524.717110][T11700] pimreg: left allmulticast mode
[  524.857932][T11707] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1768'.
[  525.249943][T11721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1771'.
[  527.761220][T11771] 9pnet_fd: Insufficient options for proto=fd
[  528.214249][T11777] netlink: 'syz.5.1789': attribute type 21 has an invalid length.
[  528.222132][T11777] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1789'.
[  528.331853][T11777] netlink: 'syz.5.1789': attribute type 5 has an invalid length.
[  528.362145][T11777] netlink: 'syz.5.1789': attribute type 6 has an invalid length.
[  528.402881][T11777] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1789'.
[  528.576546][T11800] overlayfs: failed to resolve './file0': -2
[  529.007464][T11817] xt_CT: You must specify a L4 protocol and not use inversions on it
[  531.111356][T11869] lo speed is unknown, defaulting to 1000
[  532.297621][   T29] kauditd_printk_skb: 79 callbacks suppressed
[  532.297643][   T29] audit: type=1326 audit(1736621319.744:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11866 comm="syz.3.1819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7fc00000
[  533.373193][T11904] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1828'.
[  534.277173][ T5823] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[  534.520801][ T5823] usb 4-1: device descriptor read/64, error -71
[  535.184559][ T5823] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  535.217075][T11917] vlan0: entered promiscuous mode
[  535.229580][T11917] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  535.387532][ T5823] usb 4-1: device descriptor read/64, error -71
[  535.512351][ T5823] usb usb4-port1: attempt power cycle
[  535.922557][ T5823] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  535.965722][ T5823] usb 4-1: device descriptor read/8, error -71
[  536.080418][T11946] overlayfs: failed to clone lowerpath
[  536.232226][ T5823] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  536.254150][ T5823] usb 4-1: device descriptor read/8, error -71
[  536.374930][ T5823] usb usb4-port1: unable to enumerate USB device
[  537.022340][T11971] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1852'.
[  537.340520][T11981] overlayfs: statfs failed on './file0'
[  541.534310][T12052] 9pnet_fd: Insufficient options for proto=fd
[  541.823721][T12072] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1887'.
[  542.056621][T12069] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1887'.
[  543.245277][  T118] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  543.296074][T12088] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1890'.
[  543.416138][  T118] usb 4-1: Using ep0 maxpacket: 16
[  543.423499][  T118] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  543.434722][  T118] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  543.444648][  T118] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  543.457683][  T118] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  543.466916][  T118] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.476936][  T118] usb 4-1: config 0 descriptor??
[  543.930524][  T118] microsoft 0003:045E:07DA.000F: item 0 4 0 8 parsing failed
[  543.940484][  T118] microsoft 0003:045E:07DA.000F: parse failed
[  543.946661][  T118] microsoft 0003:045E:07DA.000F: probe with driver microsoft failed with error -22
[  544.141921][ T5823] usb 4-1: USB disconnect, device number 61
[  544.181302][T12104] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1899'.
[  544.190827][T12102] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1899'.
[  545.591579][T12121] team0: No ports can be present during mode change
[  545.669308][T12132] netlink: 'syz.0.1909': attribute type 2 has an invalid length.
[  545.711047][T12135] netlink: 'syz.4.1911': attribute type 21 has an invalid length.
[  545.736226][T12135] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1911'.
[  545.756469][T12135] netlink: 'syz.4.1911': attribute type 5 has an invalid length.
[  545.773378][T12135] netlink: 'syz.4.1911': attribute type 6 has an invalid length.
[  545.787358][T12135] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1911'.
[  549.058048][T12158] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1916'.
[  550.261258][T12176] netlink: 'syz.6.1924': attribute type 2 has an invalid length.
[  550.418673][ T5871] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  550.569037][T12187] openvswitch: netlink: nsh attribute has 155 unknown bytes.
[  550.895770][T12187] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1928'.
[  551.165688][ T5871] usb 4-1: device descriptor read/64, error -71
[  551.423480][ T5871] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  551.562453][ T5871] usb 4-1: device descriptor read/64, error -71
[  551.691789][ T5871] usb usb4-port1: attempt power cycle
[  552.064998][ T5871] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[  552.906939][ T5871] usb 4-1: device descriptor read/8, error -71
[  553.177072][ T5871] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[  553.210735][ T5871] usb 4-1: device descriptor read/8, error -71
[  553.337670][ T5871] usb usb4-port1: unable to enumerate USB device
[  553.520999][T12250] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1948'.
[  556.326114][T12276] Cache volume key already in use (9p,(null),)
[  557.475887][T12284] lo speed is unknown, defaulting to 1000
[  557.580388][T12291] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  558.249905][T12300] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1963'.
[  560.311963][T12316] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  560.569535][T12323] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  560.607838][T12324] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  560.727260][T12327] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1973'.
[  561.105888][T12334] fuseblk: Bad value for 'user_id'
[  561.111287][T12334] fuseblk: Bad value for 'user_id'
[  562.619129][T12353] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  564.787970][   T29] audit: type=1326 audit(1736621350.163:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12376 comm="syz.4.1991" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x0
[  566.522728][T12389] 9pnet_fd: Insufficient options for proto=fd
[  567.688076][T12410] sch_fq: defrate 0 ignored.
[  568.946882][T12430] FAULT_INJECTION: forcing a failure.
[  568.946882][T12430] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  568.976950][T12430] CPU: 0 UID: 0 PID: 12430 Comm: syz.3.2003 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  568.987782][T12430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  568.997868][T12430] Call Trace:
[  569.001161][T12430]  <TASK>
[  569.004106][T12430]  dump_stack_lvl+0x241/0x360
[  569.008815][T12430]  ? __pfx_dump_stack_lvl+0x10/0x10
[  569.014038][T12430]  ? __pfx__printk+0x10/0x10
[  569.018649][T12430]  ? __pfx_lock_release+0x10/0x10
[  569.023740][T12430]  should_fail_ex+0x3b0/0x4e0
[  569.028452][T12430]  _copy_from_user+0x2f/0xc0
[  569.033073][T12430]  memdup_user+0x64/0xc0
[  569.037350][T12430]  strndup_user+0x68/0xc0
[  569.041707][T12430]  __se_sys_mount+0x9f/0x3c0
[  569.046314][T12430]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  569.052312][T12430]  ? __pfx___se_sys_mount+0x10/0x10
[  569.057499][T12430]  ? do_syscall_64+0x100/0x230
[  569.062274][T12430]  ? __x64_sys_mount+0x20/0xc0
[  569.067063][T12430]  do_syscall_64+0xf3/0x230
[  569.071602][T12430]  ? clear_bhb_loop+0x35/0x90
[  569.076313][T12430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.082237][T12430] RIP: 0033:0x7f2ea1385d29
[  569.086682][T12430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.106319][T12430] RSP: 002b:00007f2ea2154038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  569.114774][T12430] RAX: ffffffffffffffda RBX: 00007f2ea1575fa0 RCX: 00007f2ea1385d29
[  569.122791][T12430] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000020000380
[  569.130798][T12430] RBP: 00007f2ea2154090 R08: 0000000000000000 R09: 0000000000000000
[  569.138802][T12430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  569.146800][T12430] R13: 0000000000000000 R14: 00007f2ea1575fa0 R15: 00007fffff1d5128
[  569.155242][T12430]  </TASK>
[  570.586839][   T29] audit: type=1326 audit(1736621355.579:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12440 comm="syz.3.2008" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  571.815461][T12461] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2016'.
[  572.187509][T12472] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2011'.
[  572.227439][ T5869] usb 4-1: new full-speed USB device number 66 using dummy_hcd
[  573.057739][ T5869] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  573.067137][ T5869] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  573.102719][ T5869] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  573.337728][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  573.341091][ T5869] usb 4-1: config 1 has no interface number 0
[  573.350460][ T5869] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  573.359225][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  573.361599][ T5869] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  573.380788][ T5869] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  573.390316][ T5869] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  573.437783][ T5869] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  573.704194][   T29] audit: type=1326 audit(1736621358.498:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12489 comm="syz.5.2028" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6a8585d29 code=0x0
[  574.289110][ T5869] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  574.688034][ T5869] usb 4-1: USB disconnect, device number 66
[  574.695374][ T5869] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  575.223752][T12523] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2038'.
[  575.537083][T12539] futex_wake_op: syz.3.2043 tries to shift op by 32; fix this program
[  576.890120][   T29] audit: type=1326 audit(1736621361.482:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12553 comm="syz.4.2050" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9555385d29 code=0x0
[  579.401521][T12588] netlink: 'syz.6.2060': attribute type 4 has an invalid length.
[  579.466784][T12588] infiniband syz0: set down
[  579.471579][    T9] lo speed is unknown, defaulting to 1000
[  579.478766][    T9] lo speed is unknown, defaulting to 1000
[  580.858366][T12617] netlink: 'syz.6.2069': attribute type 1 has an invalid length.
[  580.863333][T12616] overlayfs: failed to clone upperpath
[  580.885231][T12617] 8021q: adding VLAN 0 to HW filter on device bond1
[  580.913670][T12617] bond1: (slave gretap1): making interface the new active one
[  580.931681][T12617] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  581.026553][T12617] bond0: (slave bond_slave_0): Releasing backup interface
[  581.042687][T12617] bond0: (slave bond_slave_1): Releasing backup interface
[  581.090698][T12617] team0: Port device team_slave_0 removed
[  581.138596][T12617] team0: Port device team_slave_1 removed
[  581.160977][T12617] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  581.177615][T12617] batman_adv: batadv0: Removing interface: batadv_slave_0
[  581.213458][T12617] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  581.222163][T12617] batman_adv: batadv0: Removing interface: batadv_slave_1
[  581.268020][T12617] bond1: (slave gretap1): Releasing active interface
[  582.003658][T12642] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2078'.
[  583.000823][T12646] vlan2: entered allmulticast mode
[  583.027345][T12646] xfrm0: entered allmulticast mode
[  584.071313][T12664] xt_hashlimit: invalid rate
[  585.399170][T12681] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2090'.
[  587.372947][T12700] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2098'.
[  587.387542][T12703] veth1_to_team: entered promiscuous mode
[  587.450197][T12702] veth1_to_team: left promiscuous mode
[  588.988375][T12722] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2102'.
[  588.998063][T12722] netlink: 'syz.5.2102': attribute type 1 has an invalid length.
[  589.023179][    T9] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[  591.168150][T12723] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2103'.
[  591.177390][T12723] netlink: 'syz.6.2103': attribute type 1 has an invalid length.
[  592.540247][T12734] overlayfs: failed to resolve './file1': -2
[  592.623567][    T9] usb 4-1: unable to read config index 0 descriptor/all
[  592.630996][    T9] usb 4-1: can't read configurations, error -71
[  592.745235][T12743] xt_SECMARK: unable to map security context 'unconfined'
[  592.812497][T12733] wg1: left promiscuous mode
[  592.817170][T12733] wg1: left allmulticast mode
[  592.895092][   T29] audit: type=1326 audit(1736621376.439:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12744 comm="syz.5.2112" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6a8585d29 code=0x0
[  593.508197][T12733] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  593.537990][T12733] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  593.563139][T12751] FAULT_INJECTION: forcing a failure.
[  593.563139][T12751] name failslab, interval 1, probability 0, space 0, times 0
[  593.578345][T12751] CPU: 0 UID: 0 PID: 12751 Comm: syz.3.2113 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  593.589163][T12751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  593.599234][T12751] Call Trace:
[  593.602517][T12751]  <TASK>
[  593.605446][T12751]  dump_stack_lvl+0x241/0x360
[  593.610146][T12751]  ? __pfx_dump_stack_lvl+0x10/0x10
[  593.615368][T12751]  ? __pfx__printk+0x10/0x10
[  593.619993][T12751]  ? __kmalloc_cache_noprof+0x48/0x390
[  593.625498][T12751]  ? __pfx___might_resched+0x10/0x10
[  593.630819][T12751]  should_fail_ex+0x3b0/0x4e0
[  593.635538][T12751]  should_failslab+0xac/0x100
[  593.640763][T12751]  __kmalloc_cache_noprof+0x70/0x390
[  593.646090][T12751]  ? alloc_fs_context+0x63/0x800
[  593.651050][T12751]  alloc_fs_context+0x63/0x800
[  593.655820][T12751]  ? do_raw_read_unlock+0x3c/0x80
[  593.660936][T12751]  ? _raw_read_unlock+0x28/0x50
[  593.665786][T12751]  ? get_fs_type+0x3fd/0x480
[  593.670387][T12751]  do_new_mount+0x160/0xb40
[  593.674991][T12751]  ? __pfx_do_new_mount+0x10/0x10
[  593.680037][T12751]  __se_sys_mount+0x2d6/0x3c0
[  593.684713][T12751]  ? __pfx___se_sys_mount+0x10/0x10
[  593.689917][T12751]  ? do_syscall_64+0x100/0x230
[  593.694732][T12751]  ? __x64_sys_mount+0x20/0xc0
[  593.699583][T12751]  do_syscall_64+0xf3/0x230
[  593.704092][T12751]  ? clear_bhb_loop+0x35/0x90
[  593.708771][T12751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.715015][T12751] RIP: 0033:0x7f2ea1385d29
[  593.719437][T12751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.739055][T12751] RSP: 002b:00007f2ea2154038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  593.747480][T12751] RAX: ffffffffffffffda RBX: 00007f2ea1575fa0 RCX: 00007f2ea1385d29
[  593.755471][T12751] RDX: 0000000020000180 RSI: 0000000020000000 RDI: 0000000000000000
[  593.763464][T12751] RBP: 00007f2ea2154090 R08: 00000000200003c0 R09: 0000000000000000
[  593.771465][T12751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  593.779550][T12751] R13: 0000000000000000 R14: 00007f2ea1575fa0 R15: 00007fffff1d5128
[  593.787553][T12751]  </TASK>
[  593.892626][T12753] overlayfs: failed to clone upperpath
[  593.942435][T12733] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  593.952137][T12733] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  593.960723][T12733] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  593.971048][T12733] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.436002][T12775] trusted_key: encrypted_key: insufficient parameters specified
[  598.443875][T12823] bond0: (slave bond_slave_0): Releasing backup interface
[  598.497061][T12823] bond0: (slave bond_slave_1): Releasing backup interface
[  598.681772][T12823] team0: Port device team_slave_0 removed
[  598.705612][T12823] team0: Port device team_slave_1 removed
[  598.727232][T12823] batman_adv: batadv0: Removing interface: batadv_slave_0
[  598.748734][T12823] batman_adv: batadv0: Removing interface: batadv_slave_1
[  598.939271][T12823] bond1: (slave veth3): Releasing active interface
[  603.170309][T12890] 9pnet_fd: Insufficient options for proto=fd
[  605.091569][ T5824] usb 4-1: new high-speed USB device number 69 using dummy_hcd
[  606.395867][ T5824] usb 4-1: Using ep0 maxpacket: 16
[  606.401868][ T5824] usb 4-1: no configurations
[  606.406851][ T5824] usb 4-1: can't read configurations, error -22
[  607.533192][ T5824] usb 4-1: new high-speed USB device number 70 using dummy_hcd
[  607.712985][ T5824] usb 4-1: Using ep0 maxpacket: 16
[  607.719415][ T5824] usb 4-1: no configurations
[  607.724473][ T5824] usb 4-1: can't read configurations, error -22
[  607.742906][ T5824] usb usb4-port1: attempt power cycle
[  607.916289][T12934] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  608.415118][ T5824] usb 4-1: new high-speed USB device number 71 using dummy_hcd
[  608.423974][T12940] 9pnet_fd: Insufficient options for proto=fd
[  608.459197][ T5824] usb 4-1: Using ep0 maxpacket: 8
[  608.467347][ T5824] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  608.479994][ T5824] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  608.491277][ T5824] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544
[  608.513788][ T5824] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  608.529954][ T5824] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  608.541291][ T5824] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  608.792792][ T5824] usb 4-1: GET_CAPABILITIES returned 0
[  608.799347][ T5824] usbtmc 4-1:16.0: can't read capabilities
[  608.829381][ T5824] usb 4-1: USB disconnect, device number 71
[  610.224625][T12969] syz.5.2181: vmalloc error: size 33558528, failed to allocated page array size 65544, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  610.267157][T12969] CPU: 1 UID: 0 PID: 12969 Comm: syz.5.2181 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  610.277998][T12969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  610.288194][T12969] Call Trace:
[  610.291578][T12969]  <TASK>
[  610.294528][T12969]  dump_stack_lvl+0x241/0x360
[  610.299293][T12969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  610.304516][T12969]  ? __pfx__printk+0x10/0x10
[  610.309151][T12969]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  610.315646][T12969]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  610.322283][T12969]  warn_alloc+0x278/0x410
[  610.326813][T12969]  ? __pfx_warn_alloc+0x10/0x10
[  610.331719][T12969]  ? xskq_create+0xb6/0x170
[  610.336358][T12969]  ? __get_vm_area_node+0x1c8/0x2d0
[  610.341604][T12969]  ? __get_vm_area_node+0x25c/0x2d0
[  610.346820][T12969]  __vmalloc_node_range_noprof+0x62f/0x1380
[  610.353556][T12969]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  610.360074][T12969]  ? __kasan_kmalloc+0x98/0xb0
[  610.364944][T12969]  vmalloc_user_noprof+0x74/0x80
[  610.370564][T12969]  ? xskq_create+0xb6/0x170
[  610.375334][T12969]  xskq_create+0xb6/0x170
[  610.380186][T12969]  xsk_init_queue+0xa1/0x100
[  610.385347][T12969]  xsk_setsockopt+0x598/0x950
[  610.391335][T12969]  ? __pfx_xsk_setsockopt+0x10/0x10
[  610.396911][T12969]  ? __pfx_lock_acquire+0x10/0x10
[  610.403551][T12969]  ? __fget_files+0x2a/0x410
[  610.408589][T12969]  ? __pfx_xsk_setsockopt+0x10/0x10
[  610.413825][T12969]  do_sock_setsockopt+0x3af/0x720
[  610.419071][T12969]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  610.424761][T12969]  ? __fget_files+0x395/0x410
[  610.429804][T12969]  ? __fget_files+0x2a/0x410
[  610.434602][T12969]  __x64_sys_setsockopt+0x1ee/0x280
[  610.439831][T12969]  do_syscall_64+0xf3/0x230
[  610.444427][T12969]  ? clear_bhb_loop+0x35/0x90
[  610.449285][T12969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.455404][T12969] RIP: 0033:0x7ff6a8585d29
[  610.460280][T12969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.480076][T12969] RSP: 002b:00007ff6a9463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  610.488683][T12969] RAX: ffffffffffffffda RBX: 00007ff6a8776080 RCX: 00007ff6a8585d29
[  610.496856][T12969] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000007
[  610.504834][T12969] RBP: 00007ff6a8601b08 R08: 0000000000000004 R09: 0000000000000000
[  610.512988][T12969] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000
[  610.521993][T12969] R13: 0000000000000000 R14: 00007ff6a8776080 R15: 00007fff05a9cad8
[  610.530300][T12969]  </TASK>
[  610.572773][T12969] Mem-Info:
[  610.576661][T12969] active_anon:3213 inactive_anon:7077 isolated_anon:0
[  610.576661][T12969]  active_file:23973 inactive_file:36225 isolated_file:0
[  610.576661][T12969]  unevictable:768 dirty:110 writeback:25
[  610.576661][T12969]  slab_reclaimable:8503 slab_unreclaimable:104725
[  610.576661][T12969]  mapped:38310 shmem:7148 pagetables:924
[  610.576661][T12969]  sec_pagetables:3 bounce:0
[  610.576661][T12969]  kernel_misc_reclaimable:0
[  610.576661][T12969]  free:1304171 free_pcp:428 free_cma:0
[  610.646336][T12969] Node 0 active_anon:1348kB inactive_anon:28072kB active_file:95820kB inactive_file:144900kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:153160kB dirty:364kB writeback:0kB shmem:15556kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11340kB pagetables:3636kB sec_pagetables:12kB all_unreclaimable? no
[  610.674942][T12986] netlink: 'syz.4.2187': attribute type 1 has an invalid length.
[  610.730515][T12969] Node 1 active_anon:4kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  610.768400][    C0] vkms_vblank_simulate: vblank timer overrun
[  610.795114][T12986] 8021q: adding VLAN 0 to HW filter on device bond2
[  610.937055][T12969] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  611.022646][T12988] 8021q: adding VLAN 0 to HW filter on device bond2
[  611.061877][T12969] lowmem_reserve[]: 0 2465 2466 0 0
[  611.070001][T12988] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[  611.102371][T12969] Node 0 DMA32 free:1286360kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:10144kB inactive_anon:31140kB active_file:95032kB inactive_file:144848kB unevictable:1536kB writepending:364kB present:3129332kB managed:2552772kB mlocked:0kB bounce:0kB free_pcp:4472kB local_pcp:4388kB free_cma:0kB
[  611.177893][T12988] bond2: (slave wireguard0): Error -95 calling set_mac_address
[  611.226808][T12969] lowmem_reserve[]: 0 0 0 0 0
[  611.232005][T12969] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:4kB inactive_anon:32kB active_file:788kB inactive_file:52kB unevictable:0kB writepending:0kB present:1048580kB managed:880kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  611.259540][    C0] vkms_vblank_simulate: vblank timer overrun
[  611.301087][T12969] lowmem_reserve[]: 0 0 0 0 0
[  611.317823][T12969] Node 1 Normal free:3910956kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111168kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  611.392375][T12969] lowmem_reserve[]: 0 0 0 0 0
[  611.398628][T12969] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  611.412020][T12969] Node 0 DMA32: 543*4kB (UME) 945*8kB (UME) 245*16kB (UME) 189*32kB (UME) 226*64kB (UME) 195*128kB (UME) 104*256kB (UME) 59*512kB (UME) 26*1024kB (UME) 15*2048kB (UM) 274*4096kB (UM) = 1295604kB
[  611.433904][T12969] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  611.446357][T12969] Node 1 Normal: 185*4kB (UME) 55*8kB (UME) 51*16kB (UME) 205*32kB (UME) 81*64kB (UME) 35*128kB (UME) 10*256kB (UM) 6*512kB (UM) 6*1024kB (UME) 3*2048kB (UE) 946*4096kB (M) = 3910956kB
[  611.472075][T12969] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  611.532333][T12969] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  611.555321][T12969] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  611.577556][T12969] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  611.579831][T13006] gre0 speed is unknown, defaulting to 1000
[  611.588833][T12969] 64473 total pagecache pages
[  611.597692][T13006] gre0 speed is unknown, defaulting to 1000
[  611.607148][T12969] 0 pages in swap cache
[  611.611949][T12969] Free swap  = 124656kB
[  611.616240][T12969] Total swap = 124996kB
[  611.620764][T12969] 2097051 pages RAM
[  611.627445][T12969] 0 pages HighMem/MovableOnly
[  611.638319][T13006] gre0 speed is unknown, defaulting to 1000
[  611.644136][T12969] 427006 pages reserved
[  611.649147][T12969] 0 pages cma reserved
[  611.873239][T13006] infiniband syz2: set active
[  611.873353][ T5869] gre0 speed is unknown, defaulting to 1000
[  611.946290][T13006] infiniband syz2: added gre0
[  612.057815][T13006] RDS/IB: syz2: added
[  612.082158][T13006] smc: adding ib device syz2 with port count 1
[  612.124906][T13006] smc:    ib device syz2 port 1 has pnetid 
[  612.147764][T13006] gre0 speed is unknown, defaulting to 1000
[  612.172661][ T5869] gre0 speed is unknown, defaulting to 1000
[  612.320190][T13026] tap0: tun_chr_ioctl cmd 1074025677
[  612.334255][T13026] tap0: linktype set to 6
[  612.347729][T13006] gre0 speed is unknown, defaulting to 1000
[  612.619509][T13006] gre0 speed is unknown, defaulting to 1000
[  612.829459][T13006] gre0 speed is unknown, defaulting to 1000
[  613.662899][T13053] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2208'.
[  613.672284][T13053] netlink: 'syz.0.2208': attribute type 1 has an invalid length.
[  614.024002][T13006] gre0 speed is unknown, defaulting to 1000
[  614.391505][T13006] gre0 speed is unknown, defaulting to 1000
[  615.194361][T13080] fuse: Unknown parameter 'bd'
[  615.308789][   T29] audit: type=1326 audit(1736621397.410:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13095 comm="syz.6.2225" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcffd585d29 code=0x0
[  617.072962][T13136] wg1: entered promiscuous mode
[  617.080188][T13136] wg1: entered allmulticast mode
[  620.328789][T13171] --map-set only usable from mangle table
[  621.758759][T13198] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2262'.
[  621.900524][T13198] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2262'.
[  624.374023][T13242] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2280'.
[  624.658159][T13253] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2279'.
[  624.668658][T13253] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2279'.
[  624.830766][T13258] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2283'.
[  624.877152][T13258] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2283'.
[  625.467047][T13258] syz_tun: entered promiscuous mode
[  626.128746][T13263] netlink: 'syz.0.2285': attribute type 1 has an invalid length.
[  626.140727][T13263] netlink: 'syz.0.2285': attribute type 2 has an invalid length.
[  627.879093][T13287] bond0: Error: Cannot enslave bond to itself.
[  627.943824][ T5833] Bluetooth: hci3: unexpected Set CIG Parameters response data
[  627.958845][ T5833] Bluetooth: hci3: unexpected event for opcode 0x2062
[  628.057454][T13298] batman_adv: batadv0: Adding interface: gretap1
[  628.065007][T13298] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.099716][T13298] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  629.829677][T13311] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2301'.
[  631.584068][T13332] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2308'.
[  632.404901][ T5837] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  632.415753][ T5837] Bluetooth: hci3: Injecting HCI hardware error event
[  632.425720][ T5837] Bluetooth: hci3: hardware error 0x00
[  633.717188][   T29] audit: type=1326 audit(1736621414.631:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13333 comm="syz.4.2309" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x0
[  634.425051][T13366] wg1: entered allmulticast mode
[  634.801536][T13378] overlayfs: failed to clone lowerpath
[  636.073191][ T5837] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  638.134580][T13423] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2338'.
[  638.158900][T13423] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2338'.
[  638.428775][T13430] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2341'.
[  638.503016][T13440] xt_CT: You must specify a L4 protocol and not use inversions on it
[  638.895768][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  638.903560][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  639.576178][T13454] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2346'.
[  639.586288][T13454] netlink: 'syz.0.2346': attribute type 1 has an invalid length.
[  640.640419][T13476] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2353'.
[  640.665041][T13476] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2353'.
[  640.781751][T13479] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  640.909386][   T29] audit: type=1326 audit(1736621421.357:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13483 comm="syz.3.2356" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2ea1385d29 code=0x0
[  642.281083][T13508] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2364'.
[  642.302530][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2365'.
[  642.311992][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2365'.
[  642.391218][T13513] gretap0: entered promiscuous mode
[  642.398623][T13513] vlan3: entered promiscuous mode
[  642.413274][T13513] gretap0: left promiscuous mode
[  644.350025][T13549] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2377'.
[  644.388975][T13549] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2377'.
[  649.677095][T13578] netlink: 'syz.5.2390': attribute type 4 has an invalid length.
[  649.729542][T13578] netlink: 'syz.5.2390': attribute type 6 has an invalid length.
[  649.740764][T13584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2389'.
[  649.746248][T13578] IPv6: NLM_F_CREATE should be specified when creating new route
[  649.755757][T13584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2389'.
[  649.863185][T13587] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2387'.
[  651.612848][T13603] netlink: 'syz.0.2394': attribute type 1 has an invalid length.
[  652.265965][T13602] vcan0: entered promiscuous mode
[  652.295441][T13602] vlan3: entered promiscuous mode
[  652.426093][T13602] vcan0: left promiscuous mode
[  655.392563][T13629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2404'.
[  655.428902][T13629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2404'.
[  655.979089][T13642] netlink: 412 bytes leftover after parsing attributes in process `syz.6.2408'.
[  659.639657][T13665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2417'.
[  659.674186][T13665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2417'.
[  660.021546][T13674] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2420'.
[  661.371639][   T29] audit: type=1326 audit(1736621440.486:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13688 comm="syz.3.2423" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  661.487766][T13695] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2414'.
[  661.649163][T13701] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2425'.
[  662.651857][T13707] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2427'.
[  662.754789][T13709] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2429'.
[  662.810657][T13709] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2429'.
[  667.388632][T13752] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2440'.
[  668.610504][T13769] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  668.710904][T13774] overlayfs: failed to clone upperpath
[  669.003634][T13787] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2452'.
[  669.575563][T13789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2454'.
[  669.591578][   T29] audit: type=1326 audit(1736621448.193:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.706113][   T29] audit: type=1326 audit(1736621448.212:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.794541][   T29] audit: type=1326 audit(1736621448.212:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.903684][   T29] audit: type=1326 audit(1736621448.221:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.930707][   T29] audit: type=1326 audit(1736621448.221:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.959255][   T29] audit: type=1326 audit(1736621448.221:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  669.983364][   T29] audit: type=1326 audit(1736621448.221:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  670.006881][   T29] audit: type=1326 audit(1736621448.221:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  670.029457][   T29] audit: type=1326 audit(1736621448.221:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  670.053261][   T29] audit: type=1326 audit(1736621448.221:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13784 comm="syz.3.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2ea1385d29 code=0x7ffc0000
[  674.333610][T13836] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2467'.
[  677.474719][ T5824] IPVS: starting estimator thread 0...
[  677.670217][T13869] IPVS: using max 20 ests per chain, 48000 per kthread
[  678.669439][T13880] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2481'.
[  678.688944][T13880] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  680.030229][T13915] team0: No ports can be present during mode change
[  682.478191][T13974] netlink: 'syz.4.2515': attribute type 1 has an invalid length.
[  682.489075][T13974] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.2515'.
[  683.173683][T13997] IPv6: syztnl0: Disabled Multicast RS
[  683.241175][T13999] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2527'.
[  683.421399][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  683.421422][   T29] audit: type=1326 audit(1736621461.074:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14005 comm="syz.0.2530" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x0
[  686.912797][T14085] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2558'.
[  688.820032][T14102] set match dimension is over the limit!
[  688.931426][T14114] overlayfs: failed to clone lowerpath
[  690.315850][T14127] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2571'.
[  691.527077][T14154] overlayfs: failed to clone upperpath
[  696.718070][T14241] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2607'.
[  696.764546][T14240] syz_tun: entered promiscuous mode
[  696.771529][T14240] vlan3: entered promiscuous mode
[  696.814894][T14240] syz_tun: left promiscuous mode
[  696.849223][T14245] netlink: zone id is out of range
[  696.855492][T14245] netlink: zone id is out of range
[  696.862035][T14245] netlink: zone id is out of range
[  696.867342][T14245] netlink: zone id is out of range
[  696.873529][T14245] netlink: zone id is out of range
[  696.879452][T14245] netlink: zone id is out of range
[  696.885229][T14245] netlink: zone id is out of range
[  696.890757][T14245] netlink: zone id is out of range
[  696.895981][T14245] netlink: zone id is out of range
[  696.901883][T14245] netlink: zone id is out of range
[  698.400233][T14267] netlink: 'syz.4.2618': attribute type 4 has an invalid length.
[  698.529709][T14271] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2620'.
[  701.096875][T14307] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2633'.
[  703.800881][T14327] No such timeout policy "syz0"
[  704.021560][   T29] audit: type=1107 audit(1736621480.287:236): pid=14323 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='1���{k�p�ӗl��+I%7ͤm��[�4����G�g��ϳ�~�׏���W���oN����`�|������׼�e2v]���-#(_�)MI�鐏iX$5��@��*���>|�'
[  704.599655][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  704.607138][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  707.003160][   T29] audit: type=1326 audit(1736621483.177:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14378 comm="syz.3.2657" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  707.596801][T14396] netlink: 'syz.0.2661': attribute type 4 has an invalid length.
[  707.827120][ T6711] wlan1: Trigger new scan to find an IBSS to join
[  708.033514][T14408] netlink: 'syz.6.2667': attribute type 4 has an invalid length.
[  708.195508][T14419] overlayfs: failed to clone lowerpath
[  708.337877][T14424] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2670'.
[  708.348144][T14424] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2670'.
[  708.358643][T14424] netlink: 'syz.4.2670': attribute type 6 has an invalid length.
[  708.444034][T14428] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2672'.
[  708.595087][   T29] audit: type=1326 audit(1736621484.674:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14434 comm="syz.3.2678" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  708.761553][T14446] netlink: 52 bytes leftover after parsing attributes in process `syz.6.2680'.
[  709.070940][T14452] ebt_among: dst integrity fail: 101
[  709.126668][T14454] netlink: 'syz.6.2684': attribute type 32 has an invalid length.
[  709.138093][T14454] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2684'.
[  709.149593][T14454] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  709.287930][T14460] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2686'.
[  709.298068][T14460] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2686'.
[  709.557299][T14464] netlink: 'syz.3.2688': attribute type 13 has an invalid length.
[  709.573410][T14462] overlayfs: failed to clone upperpath
[  709.588476][T14464] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2688'.
[  709.610442][T14464] syz_tun: refused to change device tx_queue_len
[  710.122843][   T29] audit: type=1326 audit(1736621486.096:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14480 comm="syz.0.2698" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x0
[  710.171254][T14485] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2696'.
[  711.543728][ T4481] wlan1: Trigger new scan to find an IBSS to join
[  712.274695][T14511] team_slave_0: entered promiscuous mode
[  712.281982][T14511] team_slave_1: entered promiscuous mode
[  712.320287][T14512] netlink: 'syz.0.2705': attribute type 4 has an invalid length.
[  712.421636][T14518] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2710'.
[  712.891558][   T29] audit: type=1326 audit(1736621488.612:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14528 comm="syz.5.2714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6a8585d29 code=0x0
[  713.010962][   T29] audit: type=1326 audit(1736621488.762:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14531 comm="syz.6.2715" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcffd585d29 code=0x0
[  713.749897][ T6707] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  714.127713][T14556] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2722'.
[  714.939489][T14563] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2724'.
[  715.208007][   T29] audit: type=1326 audit(1736621490.810:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.241916][   T29] audit: type=1326 audit(1736621490.810:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.268068][   T29] audit: type=1326 audit(1736621490.810:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.293349][   T29] audit: type=1326 audit(1736621490.810:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.317035][   T29] audit: type=1326 audit(1736621490.810:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.341954][   T29] audit: type=1326 audit(1736621490.810:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.366528][   T29] audit: type=1326 audit(1736621490.810:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14561 comm="syz.4.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9555385d29 code=0x7ffc0000
[  715.404259][T14570] overlayfs: failed to clone lowerpath
[  715.438026][T14574] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2726'.
[  715.693259][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  715.693278][   T29] audit: type=1326 audit(1736621491.306:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14579 comm="syz.3.2731" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ea1385d29 code=0x0
[  718.099433][T14615] futex_wake_op: syz.3.2741 tries to shift op by -1; fix this program
[  720.374838][   T29] audit: type=1326 audit(1736621495.655:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14637 comm="syz.0.2746" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x0
[  722.703642][T14663] overlayfs: failed to resolve './file0': -2
[  724.437266][T14683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2762'.
[  724.467325][T14683] net_ratelimit: 3 callbacks suppressed
[  724.467353][T14683] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  724.499399][T14688] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2763'.
[  725.885496][T14705] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2768'.
[  726.166217][   T29] audit: type=1326 audit(1736621501.166:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14711 comm="syz.6.2772" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcffd585d29 code=0x0
[  728.499809][T14755] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2784'.
[  728.508960][   T29] audit: type=1326 audit(1736621503.355:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14754 comm="syz.0.2788" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x0
[  728.591070][T14763] netlink: 'syz.3.2790': attribute type 21 has an invalid length.
[  728.600369][T14763] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2790'.
[  728.611353][T14763] netlink: 'syz.3.2790': attribute type 21 has an invalid length.
[  728.619788][T14763] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2790'.
[  730.523621][T14809] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2808'.
[  730.527443][T14807] netlink: 'syz.5.2804': attribute type 1 has an invalid length.
[  731.879618][T14832] netlink: 'syz.4.2813': attribute type 10 has an invalid length.
[  731.900237][T14832] 8021q: adding VLAN 0 to HW filter on device bond0
[  731.910575][T14832] team0: Port device bond0 added
[  732.078480][T14841] overlayfs: failed to clone lowerpath
[  732.831882][T14864] overlayfs: failed to clone lowerpath
[  732.859740][T14864] netlink: 220 bytes leftover after parsing attributes in process `syz.3.2827'.
[  732.964276][T14864] overlayfs: failed to clone lowerpath
[  734.950498][T14889] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  734.982436][T14889] netlink: 'syz.3.2833': attribute type 30 has an invalid length.
[  735.039971][T14893] 9pnet_fd: Insufficient options for proto=fd
[  736.171105][T14910] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2840'.
[  736.180642][T14910] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2840'.
[  736.493138][T14916] team_slave_0: left promiscuous mode
[  736.499163][T14916] team_slave_1: left promiscuous mode
[  736.522061][ T5837] Bluetooth: hci1: unexpected event for opcode 0x0c6d
[  736.537919][T14916] wg1: left promiscuous mode
[  736.543307][T14916] wg1: left allmulticast mode
[  736.592769][T14916] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  736.612741][T14916] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  736.626581][T14916] xfrm0: left allmulticast mode
[  736.668007][T14916] vlan0: left promiscuous mode
[  736.700245][T14916] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  736.710664][T14916] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  736.721249][T14916] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  736.733865][T14916] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  736.771135][T14916] vlan2: left allmulticast mode
[  736.783149][T14922] netlink: 'syz.0.2844': attribute type 61 has an invalid length.
[  736.882279][T14931] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2846'.
[  737.186697][T14938] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2849'.
[  738.120467][T14945] futex_wake_op: syz.6.2852 tries to shift op by -1; fix this program
[  738.975773][T14951] overlayfs: failed to resolve '/������': -2
[  739.077444][T14953] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2854'.
[  739.293849][T14956] overlayfs: failed to clone upperpath
[  739.431723][T14965] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2860'.
[  739.477129][T14967] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2861'.
[  739.623935][T14974] futex_wake_op: syz.6.2863 tries to shift op by -1; fix this program
[  739.772678][T14981] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2867'.
[  742.322646][T15014] futex_wake_op: syz.3.2878 tries to shift op by -1; fix this program
[  742.511051][T15024] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2881'.
[  742.643918][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2880'.
[  742.659012][T15029] netlink: 'syz.4.2882': attribute type 1 has an invalid length.
[  742.686123][T15029] fuse: Unknown parameter '0x0000000000000006'
[  742.697389][T15029] 9pnet_fd: Insufficient options for proto=fd
[  744.154796][T15044] xt_CT: You must specify a L4 protocol and not use inversions on it
[  744.191089][T15039] openvswitch: netlink: Actions may not be safe on all matching packets
[  744.887050][T15056] futex_wake_op: syz.0.2891 tries to shift op by -1; fix this program
[  745.224708][T15058] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2892'.
[  745.431898][T15063] gre1: entered promiscuous mode
[  745.437075][T15063] gre1: entered allmulticast mode
[  745.734225][T15065] xt_CT: You must specify a L4 protocol and not use inversions on it
[  746.163656][T15069] ceph: No mds server is up or the cluster is laggy
[  746.272321][T15081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2898'.
[  746.297098][T15081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2898'.
[  747.067763][T15092] futex_wake_op: syz.4.2902 tries to shift op by -1; fix this program
[  747.316682][T15098] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2904'.
[  747.728070][T15102] lo speed is unknown, defaulting to 1000
[  748.135366][T15102] gre0 speed is unknown, defaulting to 1000
[  748.853137][T15113] tipc: Started in network mode
[  748.865709][T15113] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  748.899001][T15113] tipc: Enabled bearer <udp:syz0>, priority 10
[  750.108348][ T5902] tipc: Node number set to 4269801491
[  750.203926][T15129] futex_wake_op: syz.0.2915 tries to shift op by -1; fix this program
[  750.277836][T15132] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2916'.
[  750.374751][T15134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2911'.
[  750.397198][T15134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2911'.
[  750.541504][   T29] audit: type=1326 audit(1736621523.971:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.575374][   T29] audit: type=1326 audit(1736621523.999:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.628483][   T29] audit: type=1326 audit(1736621523.999:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.661539][   T29] audit: type=1326 audit(1736621523.999:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.690683][   T29] audit: type=1326 audit(1736621523.999:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.722328][T15154] overlayfs: failed to clone lowerpath
[  750.725992][   T29] audit: type=1326 audit(1736621523.999:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.753932][   T29] audit: type=1326 audit(1736621523.999:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.792386][   T29] audit: type=1326 audit(1736621523.999:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.830434][   T29] audit: type=1326 audit(1736621523.999:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  750.900501][   T29] audit: type=1326 audit(1736621523.999:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15143 comm="syz.0.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a0f85d29 code=0x7ffc0000
[  751.045980][T15165] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2927'.
[  751.233642][T13339] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  751.248373][T13339] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  751.258035][T13339] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  751.274057][T13339] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  751.307074][T13339] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  751.316018][T13339] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  751.405067][T15169] lo speed is unknown, defaulting to 1000
[  751.462551][T15176] bond0: Unable to set down delay as MII monitoring is disabled
[  751.579543][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2931'.
[  751.600750][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2931'.
[  751.696554][T15169] gre0 speed is unknown, defaulting to 1000
[  751.991222][T15184] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2934'.
[  752.046475][T15184] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2934'.
[  752.060989][T15184] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  752.070640][T15184] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  752.079537][T15184] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  752.088600][T15184] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  752.103108][T15184] geneve3: entered allmulticast mode
[  752.185629][T15169] chnl_net:caif_netlink_parms(): no params data found
[  752.295505][T15169] bridge0: port 1(bridge_slave_0) entered blocking state
[  752.308721][T15169] bridge0: port 1(bridge_slave_0) entered disabled state
[  752.318858][T15169] bridge_slave_0: entered allmulticast mode
[  752.331508][T15169] bridge_slave_0: entered promiscuous mode
[  752.351553][T15197] overlayfs: failed to clone lowerpath
[  752.359523][T15169] bridge0: port 2(bridge_slave_1) entered blocking state
[  752.367177][T15169] bridge0: port 2(bridge_slave_1) entered disabled state
[  752.374534][T15169] bridge_slave_1: entered allmulticast mode
[  752.381900][T15169] bridge_slave_1: entered promiscuous mode
[  752.412453][T15169] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  752.426067][T15169] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  752.465657][T15169] team0: Port device team_slave_0 added
[  752.476678][T15169] team0: Port device team_slave_1 added
[  752.531155][T15169] batman_adv: batadv0: Adding interface: batadv_slave_0
[  752.539313][T15169] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  752.568341][T15169] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  752.588327][T15169] batman_adv: batadv0: Adding interface: batadv_slave_1
[  752.602827][T15169] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  752.638869][T15169] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  752.751306][T15169] hsr_slave_0: entered promiscuous mode
[  752.766240][T15169] hsr_slave_1: entered promiscuous mode
[  752.818674][T15169] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  752.826464][T15169] Cannot create hsr debugfs directory
[  753.111071][T15211] netlink: 'syz.6.2939': attribute type 1 has an invalid length.
[  753.517840][ T5837] Bluetooth: hci5: command tx timeout
[  753.885332][T15215] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2941'.
[  753.927635][T15218] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2942'.
[  755.094775][T15169] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  755.117173][T15169] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  755.140564][T15169] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  755.155899][T15231] overlayfs: failed to clone lowerpath
[  755.201886][T15169] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  755.306240][T15169] 8021q: adding VLAN 0 to HW filter on device bond0
[  755.327868][T15169] 8021q: adding VLAN 0 to HW filter on device team0
[  755.369949][ T6707] bridge0: port 1(bridge_slave_0) entered blocking state
[  755.377104][ T6707] bridge0: port 1(bridge_slave_0) entered forwarding state
[  755.444610][ T6709] bridge0: port 2(bridge_slave_1) entered blocking state
[  755.452239][ T6709] bridge0: port 2(bridge_slave_1) entered forwarding state
[  755.721105][ T5837] Bluetooth: hci5: command tx timeout
[  756.572938][T15169] 8021q: adding VLAN 0 to HW filter on device batadv0
[  757.974043][ T5837] Bluetooth: hci5: command tx timeout
[  758.181501][T15169] veth0_vlan: entered promiscuous mode
[  758.203538][T15169] veth1_vlan: entered promiscuous mode
[  758.329865][T15169] veth0_macvtap: entered promiscuous mode
[  758.357185][T15169] veth1_macvtap: entered promiscuous mode
[  758.474469][T15169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.532728][T15169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.591336][T15169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.651806][T15169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.706260][T15169] batman_adv: batadv0: Interface activated: batadv_slave_0
[  758.762918][T15169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.820964][T15169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.868135][T15169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.969490][T15169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  759.015995][T15169] batman_adv: batadv0: Interface activated: batadv_slave_1
[  759.076695][T15169] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  759.119682][T15169] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  759.160388][T15169] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  759.203864][T15169] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  759.871336][ T6715] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.881093][ T6715] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.909264][ T6717] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.918567][ T6717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  760.015042][T15302] futex_wake_op: syz.4.2926 tries to shift op by -1; fix this program
[  760.168895][ T5837] Bluetooth: hci5: command tx timeout
[  760.830346][T15313] __nla_validate_parse: 1 callbacks suppressed
[  760.837215][T15313] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2967'.
[  761.554786][T13339] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  761.568024][T13339] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  761.592744][T13339] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  761.600896][T13339] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  761.610899][T13339] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  761.618989][T13339] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  761.893540][T15314] lo speed is unknown, defaulting to 1000
[  761.907591][T15323] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2970'.
[  762.099329][T15326] tipc: Trying to set illegal importance in message
[  762.912509][T15314] gre0 speed is unknown, defaulting to 1000
[  764.063858][ T5837] Bluetooth: hci3: command tx timeout
[  764.754814][T15357] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  764.854184][T15314] chnl_net:caif_netlink_parms(): no params data found
[  764.986813][T15314] bridge0: port 1(bridge_slave_0) entered blocking state
[  764.994970][T15314] bridge0: port 1(bridge_slave_0) entered disabled state
[  765.004324][T15314] bridge_slave_0: entered allmulticast mode
[  765.013874][T15314] bridge_slave_0: entered promiscuous mode
[  765.022961][T15314] bridge0: port 2(bridge_slave_1) entered blocking state
[  765.031620][T15314] bridge0: port 2(bridge_slave_1) entered disabled state
[  765.040094][T15314] bridge_slave_1: entered allmulticast mode
[  765.049266][T15314] bridge_slave_1: entered promiscuous mode
[  765.075488][T15373] IPVS: set_ctl: invalid protocol: 47 100.1.1.30:21
[  765.094152][T15314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  765.111905][T15314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  765.203541][T15314] team0: Port device team_slave_0 added
[  765.228470][T15314] team0: Port device team_slave_1 added
[  765.361713][T15314] batman_adv: batadv0: Adding interface: batadv_slave_0
[  765.383157][T15314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  765.459935][T15314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  765.505821][T15314] batman_adv: batadv0: Adding interface: batadv_slave_1
[  765.513135][T15314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  765.552708][T15314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  765.642875][T15314] hsr_slave_0: entered promiscuous mode
[  765.650053][T15314] hsr_slave_1: entered promiscuous mode
[  765.656938][T15314] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  765.667442][T15314] Cannot create hsr debugfs directory
[  765.926944][T15314] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  766.311950][ T5837] Bluetooth: hci3: command tx timeout
[  766.545034][T15314] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  766.852064][T15314] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  767.662952][T15314] netdevsim netdevsim0 netdevsim0 (unregistering): left allmulticast mode
[  768.464181][ T5837] Bluetooth: hci3: command tx timeout
[  768.503820][T13339] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  768.520590][T13339] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  768.570140][T13339] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  768.578624][T13339] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  768.591555][T13339] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  768.599581][T13339] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  768.789707][T15407] lo speed is unknown, defaulting to 1000
[  769.720519][T15314] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  769.817522][T15314] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  769.829676][T15407] gre0 speed is unknown, defaulting to 1000
[  769.846267][T15314] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  769.908582][T15314] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  770.262451][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  770.269843][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  770.677634][T15314] 8021q: adding VLAN 0 to HW filter on device bond0
[  770.688137][T13339] Bluetooth: hci3: command tx timeout
[  770.723593][T15314] 8021q: adding VLAN 0 to HW filter on device team0
[  770.744145][ T6715] bridge0: port 1(bridge_slave_0) entered blocking state
[  770.751642][ T6715] bridge0: port 1(bridge_slave_0) entered forwarding state
[  770.811793][ T6715] bridge0: port 2(bridge_slave_1) entered blocking state
[  770.821051][ T6715] bridge0: port 2(bridge_slave_1) entered forwarding state
[  770.870387][T13339] Bluetooth: hci4: command tx timeout
[  771.225232][T15407] chnl_net:caif_netlink_parms(): no params data found
[  771.475092][T15314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  771.540032][T15407] bridge0: port 1(bridge_slave_0) entered blocking state
[  771.564842][T15407] bridge0: port 1(bridge_slave_0) entered disabled state
[  771.583808][T15407] bridge_slave_0: entered allmulticast mode
[  771.595825][T15407] bridge_slave_0: entered promiscuous mode
[  771.631200][T15407] bridge0: port 2(bridge_slave_1) entered blocking state
[  771.642599][T15407] bridge0: port 2(bridge_slave_1) entered disabled state
[  771.654325][T15407] bridge_slave_1: entered allmulticast mode
[  771.664492][T15407] bridge_slave_1: entered promiscuous mode
[  771.741745][T15407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  771.764010][T15407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  771.828143][T15407] team0: Port device team_slave_0 added
[  771.838839][T15407] team0: Port device team_slave_1 added
[  771.850230][T15314] veth0_vlan: entered promiscuous mode
[  771.873529][T15314] veth1_vlan: entered promiscuous mode
[  771.900700][T15407] batman_adv: batadv0: Adding interface: batadv_slave_0
[  771.908660][T15407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  771.936429][T15407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  771.952042][T15407] batman_adv: batadv0: Adding interface: batadv_slave_1
[  771.959577][T15407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  771.988451][T15407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  772.102938][T15407] hsr_slave_0: entered promiscuous mode
[  772.115666][T15407] hsr_slave_1: entered promiscuous mode
[  772.124291][T15407] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  772.134797][T15407] Cannot create hsr debugfs directory
[  772.314991][T15314] veth0_macvtap: entered promiscuous mode
[  772.384205][T15314] veth1_macvtap: entered promiscuous mode
[  772.438835][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  772.463095][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.484153][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  772.505341][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.526561][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  772.538995][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.551153][T15314] batman_adv: batadv0: Interface activated: batadv_slave_0
[  772.574114][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  772.590349][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.602726][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  772.615868][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.626727][T15314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  772.638192][T15314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  772.651415][T15314] batman_adv: batadv0: Interface activated: batadv_slave_1
[  772.679544][T15314] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  772.688885][T15314] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  772.698167][T15314] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  772.707728][T15314] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  772.838043][T15407] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  772.860150][T15407] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  772.889194][T15407] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  772.990595][T15407] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  773.041037][T14999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  773.053831][T14999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  773.082933][T13339] Bluetooth: hci4: command tx timeout
[  773.231142][ T1154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  773.284586][ T1154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  773.523739][T15477] overlayfs: failed to clone upperpath
[  774.163030][T15407] 8021q: adding VLAN 0 to HW filter on device bond0
[  774.178975][T15486] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2964'.
[  774.298212][T15407] 8021q: adding VLAN 0 to HW filter on device team0
[  774.359706][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state
[  774.367440][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  774.460563][T15491] overlayfs: failed to clone upperpath
[  774.580873][T15492] fuse: Bad value for 'fd'
[  774.640950][T15490] overlayfs: failed to clone upperpath
[  774.649696][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[  774.657052][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  775.473467][T15407] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  775.490381][T15407] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  775.582415][T13339] Bluetooth: hci4: command tx timeout
[  775.671756][T15502] tipc: Trying to set illegal importance in message
[  776.993941][T15407] 8021q: adding VLAN 0 to HW filter on device batadv0
[  777.580457][T15407] veth0_vlan: entered promiscuous mode
[  777.595683][T15407] veth1_vlan: entered promiscuous mode
[  777.659536][T15407] veth0_macvtap: entered promiscuous mode
[  777.678872][T15407] veth1_macvtap: entered promiscuous mode
[  777.727678][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  777.749300][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  777.764557][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  777.787060][T13339] Bluetooth: hci4: command tx timeout
[  777.809022][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  777.856112][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  777.893566][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  777.924185][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  777.946939][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  777.974117][T15407] batman_adv: batadv0: Interface activated: batadv_slave_0
[  777.998676][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  778.053753][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  778.075188][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  778.107117][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  778.117581][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  778.161665][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  778.181941][T15407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  778.203588][T15407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  778.238941][T15407] batman_adv: batadv0: Interface activated: batadv_slave_1
[  778.282332][T15407] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  778.321711][T15407] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  778.338660][T15407] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  778.353154][T15541] tipc: Trying to set illegal importance in message
[  778.357668][T15407] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  778.413474][T15538] lo speed is unknown, defaulting to 1000
[  778.605440][ T6707] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  778.660582][ T6707] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  778.974077][T15550] trusted_key: encrypted_key: master key parameter 'defK�lt' is invalid
[  778.984056][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  778.992388][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  779.018380][T15545] 8021q: adding VLAN 0 to HW filter on device bond1
[  779.027311][T15545] team0: Port device bond1 added
[  779.107742][T15538] gre0 speed is unknown, defaulting to 1000
[  779.876488][T15562] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3036'.
[  780.204748][T15564] kernel profiling enabled (shift: 9)
[  782.294383][T15591] 9pnet_fd: Insufficient options for proto=fd
[  782.419021][T15595] binder: BINDER_SET_CONTEXT_MGR already set
[  782.425213][T15595] binder: 15589:15595 ioctl 4018620d 20000040 returned -16
[  783.661761][T15615] netlink: 48 bytes leftover after parsing attributes in process `syz.6.3053'.
[  785.120289][ T5901] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  785.240678][T15651] fuse: Bad value for 'fd'
[  785.280507][ T5901] usb 8-1: Using ep0 maxpacket: 16
[  785.298535][ T5901] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  785.324696][ T5901] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  785.345690][ T5901] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  785.366046][ T5901] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  785.375508][ T5901] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  785.387078][ T5901] usb 8-1: config 0 descriptor??
[  786.107164][ T5901] usbhid 8-1:0.0: can't add hid device: -71
[  786.125843][ T5901] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  786.146690][ T5901] usb 8-1: USB disconnect, device number 2
[  790.308535][T15687] bridge_slave_0: left allmulticast mode
[  790.325322][T15687] bridge_slave_0: left promiscuous mode
[  790.336255][T15687] bridge0: port 1(bridge_slave_0) entered disabled state
[  790.360202][T15687] bridge_slave_1: left allmulticast mode
[  790.367922][T15687] bridge_slave_1: left promiscuous mode
[  790.375759][T15687] bridge0: port 2(bridge_slave_1) entered disabled state
[  790.408307][T15687] bond0: (slave bond_slave_0): Releasing backup interface
[  790.430674][T15687] bond0: (slave bond_slave_1): Releasing backup interface
[  790.510975][T15687] team0: Port device team_slave_0 removed
[  790.576203][T15687] team0: Port device team_slave_1 removed
[  790.587031][T15687] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  790.603665][T15687] batman_adv: batadv0: Removing interface: batadv_slave_0
[  790.624340][T15687] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  790.634876][T15687] batman_adv: batadv0: Removing interface: batadv_slave_1
[  790.906200][T15694] overlayfs: failed to clone upperpath
[  791.017997][T15697] netlink: 104 bytes leftover after parsing attributes in process `syz.6.3077'.
[  791.425045][ T5872] IPVS: starting estimator thread 0...
[  791.545253][T15710] IPVS: using max 22 ests per chain, 52800 per kthread
[  791.648682][T15716] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  792.401983][T15706] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3080'.
[  904.683797][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  904.690832][    C1] rcu: 	0-...!: (1 GPs behind) idle=31cc/1/0x4000000000000000 softirq=57344/57345 fqs=3
[  904.703057][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=61793, q=317 ncpus=2)
[  904.710832][    C1] Sending NMI from CPU 1 to CPUs 0:
[  904.710868][    C0] NMI backtrace for cpu 0
[  904.710886][    C0] CPU: 0 UID: 0 PID: 15717 Comm: syz.6.3081 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  904.710905][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  904.710920][    C0] RIP: 0010:kasan_check_range+0x5/0x290
[  904.710950][    C0] Code: c2 88 06 8e e8 6c b6 e3 ff 90 0f 0b 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 <41> 57 41 56 41 54 53 b0 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37
[  904.710964][    C0] RSP: 0018:ffffc90000007660 EFLAGS: 00000046
[  904.710980][    C0] RAX: 0000000000000001 RBX: 000000000000006c RCX: ffffffff817abe22
[  904.710991][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff94271888
[  904.711001][    C0] RBP: 0000000000000000 R08: ffffffff94271887 R09: 1ffffffff284e310
[  904.711013][    C0] R10: dffffc0000000000 R11: fffffbfff284e311 R12: 0000000000000001
[  904.711024][    C0] R13: ffff88802f7ec728 R14: 0000000000000001 R15: ffff88802f7ec728
[  904.711036][    C0] FS:  00007fcffe41f6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  904.711050][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  904.711062][    C0] CR2: 00007fcffe3fdf98 CR3: 0000000033a58000 CR4: 00000000003526f0
[  904.711076][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  904.711086][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  904.711096][    C0] Call Trace:
[  904.711104][    C0]  <NMI>
[  904.711113][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  904.711136][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  904.711154][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  904.711178][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  904.711200][    C0]  ? nmi_handle+0x14f/0x5a0
[  904.711217][    C0]  ? nmi_handle+0x2a/0x5a0
[  904.711234][    C0]  ? kasan_check_range+0x5/0x290
[  904.711255][    C0]  ? default_do_nmi+0x63/0x160
[  904.711273][    C0]  ? exc_nmi+0x123/0x1f0
[  904.711289][    C0]  ? end_repeat_nmi+0xf/0x53
[  904.711307][    C0]  ? __lock_acquire+0x8a2/0x2100
[  904.711324][    C0]  ? kasan_check_range+0x5/0x290
[  904.711346][    C0]  ? kasan_check_range+0x5/0x290
[  904.711367][    C0]  ? kasan_check_range+0x5/0x290
[  904.711389][    C0]  </NMI>
[  904.711394][    C0]  <IRQ>
[  904.711399][    C0]  __lock_acquire+0x8a2/0x2100
[  904.711421][    C0]  lock_acquire+0x1ed/0x550
[  904.711437][    C0]  ? debug_object_activate+0x17f/0x580
[  904.711463][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  904.711478][    C0]  ? __lock_acquire+0x1397/0x2100
[  904.711501][    C0]  _raw_spin_lock_irqsave+0xd5/0x120
[  904.711520][    C0]  ? debug_object_activate+0x17f/0x580
[  904.711542][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  904.711565][    C0]  debug_object_activate+0x17f/0x580
[  904.711587][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  904.711609][    C0]  ? __pfx_debug_object_activate+0x10/0x10
[  904.711631][    C0]  ? advance_sched+0xa02/0xca0
[  904.711651][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  904.711669][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  904.711690][    C0]  enqueue_hrtimer+0x30/0x3c0
[  904.711713][    C0]  __hrtimer_run_queues+0x6cb/0xd30
[  904.711732][    C0]  ? ktime_get_update_offsets_now+0x2d/0x3b0
[  904.711755][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  904.711774][    C0]  ? read_tsc+0x9/0x20
[  904.711794][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[  904.711813][    C0]  hrtimer_interrupt+0x403/0xa40
[  904.711841][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[  904.711860][    C0]  sysvec_apic_timer_interrupt+0x52/0xc0
[  904.711881][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  904.711904][    C0] RIP: 0010:handle_softirqs+0x1ef/0x9b0
[  904.711933][    C0] Code: 00 00 00 45 0f b7 e4 48 c7 c7 80 93 09 8c e8 e8 4f 5f 0a 65 66 c7 05 36 0b a2 7e 00 00 e8 99 62 45 00 fb 49 c7 c6 c0 b0 60 8e <b8> ff ff ff ff 41 0f bc c4 41 89 c7 41 ff c7 0f 84 0a 04 00 00 44
[  904.711946][    C0] RSP: 0018:ffffc90000007e20 EFLAGS: 00000282
[  904.711960][    C0] RAX: 9c5cf3945e003200 RBX: ffffc90000007ee0 RCX: ffffffff817b27ea
[  904.711972][    C0] RDX: dffffc0000000000 RSI: ffffffff8c0a98e0 RDI: ffffffff8c5edd60
[  904.711984][    C0] RBP: ffffc90000007f50 R08: ffffffff942718b7 R09: 1ffffffff284e316
[  904.711996][    C0] R10: dffffc0000000000 R11: fffffbfff284e317 R12: 0000000000000040
[  904.712007][    C0] R13: 0000000000000000 R14: ffffffff8e60b0c0 R15: 1ffff11005efd780
[  904.712021][    C0]  ? mark_lock+0x9a/0x360
[  904.712045][    C0]  ? __irq_exit_rcu+0xf7/0x220
[  904.712066][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  904.712088][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  904.712106][    C0]  __irq_exit_rcu+0xf7/0x220
[  904.712127][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  904.712149][    C0]  ? rcu_is_watching+0x15/0xb0
[  904.712168][    C0]  irq_exit_rcu+0x9/0x30
[  904.712188][    C0]  sysvec_call_function_single+0xa3/0xc0
[  904.712208][    C0]  </IRQ>
[  904.712213][    C0]  <TASK>
[  904.712219][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  904.712234][    C0] RIP: 0010:lock_acquire+0x264/0x550
[  904.712250][    C0] Code: 2b 00 74 08 4c 89 f7 e8 6a 99 88 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  904.712263][    C0] RSP: 0018:ffffc90003d9f7a0 EFLAGS: 00000206
[  904.712277][    C0] RAX: 0000000000000001 RBX: 1ffff920007b3f00 RCX: ffff88802f7ec6d8
[  904.712287][    C0] RDX: dffffc0000000000 RSI: ffffffff8c0aaae0 RDI: ffffffff8c5edd60
[  904.712299][    C0] RBP: ffffc90003d9f8f0 R08: ffffffff942718b7 R09: 1ffffffff284e316
[  904.712311][    C0] R10: dffffc0000000000 R11: fffffbfff284e317 R12: 1ffff920007b3efc
[  904.712323][    C0] R13: dffffc0000000000 R14: ffffc90003d9f800 R15: 0000000000000246
[  904.712344][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  904.712361][    C0]  ? __pfx___might_resched+0x10/0x10
[  904.712388][    C0]  ? __might_fault+0xaa/0x120
[  904.712406][    C0]  __might_fault+0xc6/0x120
[  904.712423][    C0]  ? __might_fault+0xaa/0x120
[  904.712440][    C0]  _copy_from_user+0x2a/0xc0
[  904.712462][    C0]  copy_msghdr_from_user+0xae/0x680
[  904.712484][    C0]  ? __pfx___might_resched+0x10/0x10
[  904.712507][    C0]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  904.712530][    C0]  ? do_recvmmsg+0x44e/0xab0
[  904.712548][    C0]  ? __might_fault+0xaa/0x120
[  904.712567][    C0]  do_recvmmsg+0x3bd/0xab0
[  904.712589][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  904.712607][    C0]  ? __pfx_futex_wake_mark+0x10/0x10
[  904.712631][    C0]  ? futex_wait+0x285/0x360
[  904.712648][    C0]  ? __pfx_futex_wait+0x10/0x10
[  904.712668][    C0]  ? fd_install+0x9c/0x5d0
[  904.712690][    C0]  ? __pfx_lock_release+0x10/0x10
[  904.712710][    C0]  ? __pfx_do_futex+0x10/0x10
[  904.712737][    C0]  __x64_sys_recvmmsg+0x199/0x250
[  904.712757][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  904.712776][    C0]  ? do_syscall_64+0x100/0x230
[  904.712799][    C0]  ? do_syscall_64+0xb6/0x230
[  904.712821][    C0]  do_syscall_64+0xf3/0x230
[  904.712842][    C0]  ? clear_bhb_loop+0x35/0x90
[  904.712858][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.712880][    C0] RIP: 0033:0x7fcffd585d29
[  904.712895][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  904.712908][    C0] RSP: 002b:00007fcffe41f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  904.712928][    C0] RAX: ffffffffffffffda RBX: 00007fcffd776080 RCX: 00007fcffd585d29
[  904.712940][    C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000006
[  904.712950][    C0] RBP: 00007fcffd601b08 R08: 0000000000000000 R09: 0000000000000000
[  904.712960][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  904.712970][    C0] R13: 0000000000000000 R14: 00007fcffd776080 R15: 00007ffcbaace9d8
[  904.712987][    C0]  </TASK>
[  904.713861][    C1] rcu: rcu_preempt kthread starved for 10496 jiffies! g61793 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  905.476766][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  905.486850][    C1] rcu: RCU grace-period kthread stack dump:
[  905.492924][    C1] task:rcu_preempt     state:R  running task     stack:24600 pid:17    tgid:17    ppid:2      flags:0x00004000
[  905.504877][    C1] Call Trace:
[  905.508167][    C1]  <TASK>
[  905.511119][    C1]  __schedule+0x17fb/0x4be0
[  905.515673][    C1]  ? __pfx___schedule+0x10/0x10
[  905.520548][    C1]  ? __pfx_lock_release+0x10/0x10
[  905.525600][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  905.531970][    C1]  ? schedule+0x90/0x320
[  905.536252][    C1]  schedule+0x14b/0x320
[  905.540438][    C1]  schedule_timeout+0x15a/0x290
[  905.545304][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  905.550695][    C1]  ? __pfx_process_timeout+0x10/0x10
[  905.556009][    C1]  ? prepare_to_swait_event+0x330/0x350
[  905.561577][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  905.566442][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  905.571670][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  905.577847][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  905.583241][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  905.589286][    C1]  ? finish_swait+0xd4/0x1e0
[  905.594176][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  905.598797][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  905.604017][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  905.609956][    C1]  ? __kthread_parkme+0x169/0x1d0
[  905.615003][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  905.620237][    C1]  kthread+0x2f0/0x390
[  905.624328][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  905.629604][    C1]  ? __pfx_kthread+0x10/0x10
[  905.634425][    C1]  ret_from_fork+0x4b/0x80
[  905.638888][    C1]  ? __pfx_kthread+0x10/0x10
[  905.643507][    C1]  ret_from_fork_asm+0x1a/0x30
[  905.648502][    C1]  </TASK>
[  905.651571][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  905.657991][    C1] CPU: 1 UID: 0 PID: 14999 Comm: kworker/u8:2 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  905.668958][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  905.679312][    C1] Workqueue: events_unbound toggle_allocation_gate
[  905.686497][    C1] RIP: 0010:smp_call_function_many_cond+0x19f3/0x2c60
[  905.693385][    C1] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 c6 e6 0b 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 71 e2 0b 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 55 e2
[  905.713183][    C1] RSP: 0018:ffffc900126976e0 EFLAGS: 00000293
[  905.719271][    C1] RAX: ffffffff81938f8b RBX: 1ffff110170c8c65 RCX: ffff888035e38000
[  905.727347][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  905.735683][    C1] RBP: ffffc900126978e0 R08: ffffffff81938f5a R09: 1ffffffff284e310
[  905.743762][    C1] R10: dffffc0000000000 R11: fffffbfff284e311 R12: dffffc0000000000
[  905.751749][    C1] R13: ffff8880b8646328 R14: ffff8880b873f940 R15: 0000000000000000
[  905.759755][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  905.768788][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  905.775561][    C1] CR2: 00007fede3aa56c0 CR3: 000000000e736000 CR4: 00000000003526f0
[  905.783640][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  905.791886][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  905.799877][    C1] Call Trace:
[  905.803174][    C1]  <IRQ>
[  905.806042][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  905.812397][    C1]  ? print_other_cpu_stall+0x1481/0x15c0
[  905.818152][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  905.824521][    C1]  ? seqcount_lockdep_reader_access+0x1c6/0x220
[  905.830964][    C1]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  905.837676][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  905.843950][    C1]  ? rcu_sched_clock_irq+0xa26/0x10e0
[  905.849353][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  905.855012][    C1]  ? acct_account_cputime+0x207/0x210
[  905.860407][    C1]  ? update_process_times+0x242/0x2f0
[  905.865799][    C1]  ? tick_nohz_handler+0x37c/0x500
[  905.870948][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  905.876604][    C1]  ? __hrtimer_run_queues+0x551/0xd30
[  905.882017][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  905.887759][    C1]  ? sched_clock+0x4a/0x70
[  905.892204][    C1]  ? read_tsc+0x9/0x20
[  905.896398][    C1]  ? ktime_get_update_offsets_now+0x393/0x3b0
[  905.902497][    C1]  ? hrtimer_interrupt+0x403/0xa40
[  905.907745][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  905.913924][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  905.919845][    C1]  </IRQ>
[  905.922877][    C1]  <TASK>
[  905.925829][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  905.932016][    C1]  ? smp_call_function_many_cond+0x19da/0x2c60
[  905.938193][    C1]  ? smp_call_function_many_cond+0x1a0b/0x2c60
[  905.944375][    C1]  ? smp_call_function_many_cond+0x19f3/0x2c60
[  905.950568][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  905.955713][    C1]  ? __pfx___text_poke+0x10/0x10
[  905.960847][    C1]  ? process_scheduled_works+0x976/0x1840
[  905.966712][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  905.973077][    C1]  ? __pfx___might_resched+0x10/0x10
[  905.978480][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[  905.984398][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  905.989445][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[  905.994581][    C1]  text_poke_bp_batch+0x352/0xb30
[  905.999631][    C1]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  906.005636][    C1]  ? arch_jump_label_transform_apply+0x17/0x30
[  906.011819][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  906.017393][    C1]  ? arch_jump_label_transform_queue+0x9b/0x100
[  906.023664][    C1]  ? process_scheduled_works+0x976/0x1840
[  906.029414][    C1]  text_poke_finish+0x30/0x50
[  906.034109][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  906.040193][    C1]  static_key_enable_cpuslocked+0x136/0x260
[  906.046108][    C1]  static_key_enable+0x1a/0x20
[  906.050889][    C1]  toggle_allocation_gate+0xbc/0x260
[  906.056216][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  906.062146][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  906.068505][    C1]  process_scheduled_works+0xa66/0x1840
[  906.074099][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  906.080145][    C1]  ? assign_work+0x364/0x3d0
[  906.084779][    C1]  worker_thread+0x870/0xd30
[  906.089398][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  906.095339][    C1]  ? __kthread_parkme+0x169/0x1d0
[  906.100387][    C1]  ? __pfx_worker_thread+0x10/0x10
[  906.105513][    C1]  kthread+0x2f0/0x390
[  906.109597][    C1]  ? __pfx_worker_thread+0x10/0x10
[  906.114735][    C1]  ? __pfx_kthread+0x10/0x10
[  906.119368][    C1]  ret_from_fork+0x4b/0x80
[  906.123830][    C1]  ? __pfx_kthread+0x10/0x10
[  906.128468][    C1]  ret_from_fork_asm+0x1a/0x30
[  906.133280][    C1]  </TASK>