last executing test programs:

12m10.453384405s ago: executing program 2 (id=110):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000300), 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1b, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0103fcffffff000000002b0000000c0006"], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)

12m9.443469008s ago: executing program 2 (id=112):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, 0x0, 0x0, 0x4000014, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$can_bcm(0x1d, 0x2, 0x2)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xf, {"a2e3ad21ed0d1bf91b4d090955f70e06d038e7ff7fc6e5539b0d3f0e8b089b3f35076e090890e0878f0e1ac6e7049b3346959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07580936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x1000}}, 0x96d)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
recvmmsg(r1, 0x0, 0x0, 0x120, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080), 0x2}}, 0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2b, &(0x7f0000000680)={0xf7, {{0xa, 0x4e23, 0x11c5, @remote, 0x8}}, {{0xa, 0x4e23, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3}}}, 0x108)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x80}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x24, 0x5, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb0}}, 0x0)
syz_emit_ethernet(0x4d, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0xff, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x2f}, @private=0xa010102}, {0x0, 0xfffd, 0x2b, 0x0, @opaque="59b63aa45f55f9243bf2fcac7b0d8145143a507b25431d3643f332c43ea6e7a61c7a7c"}}}}}, 0x0)

12m8.022024821s ago: executing program 2 (id=114):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="140d00001a0000ee0127bd7000fedbdf2500000000cd1731c9adae3b463211fa3ea232f238d35fbe1c49acec3cb2ca70331793d073e5b7ad69f26b705b4833427d85f835acfa5c349e30b49a3ae514995c42e7ad667a43c2f08114bad6428badef9747eb1543df4a502edb5fbbdc044969f74bb919e6edcd47fde0f31f86de4b6b3b630bfec9e4dfd9f4a701eef1be849a7594507a06f372ddc0d0"], 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x2008011)
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, 0x0, 0x8044)
sched_setaffinity(0x0, 0xfffffffffffffd58, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mremap(&(0x7f00003df000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)
r3 = io_uring_setup(0x3b2c, &(0x7f0000000000)={0x0, 0x603b, 0x10, 0x1, 0x2a8})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, 0x0)
close(r3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000240)="0100", 0x2}], 0x1}, 0x4048841)
recvmsg(r5, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
recvmsg$unix(r5, 0x0, 0x10040)

11m58.743753843s ago: executing program 2 (id=135):
socket$l2tp6(0xa, 0x2, 0x73)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x28, 0x37, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0x6a, 0x0, 0x1, [@nested={0x4, 0x10}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
sendfile(r1, r0, 0x0, 0x7ffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x29, 0x7, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0x2004, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r5, 0x2, 0x1}, 0x50)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r7, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0xff}, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x1, 0x0, 0x0, 0x7, 0x6, 0x0, 0x10000}}, 0xe8)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xffe0)

11m55.966705863s ago: executing program 2 (id=140):
socket$nl_route(0x10, 0x3, 0x0)
fanotify_init(0x500, 0x0)
r0 = io_uring_setup(0x1946, &(0x7f0000000a80)={0x0, 0xa94d, 0x10, 0x0, 0x22e})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback, 0x4}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r4, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x15, &(0x7f0000003300)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x17, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592e66e6229bc5ce1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b330600000000000000fd6700"}, 0xd8)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(0xffffffffffffffff, 0xc02c5341, &(0x7f00000000c0))
dup(r1)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xbe0, &(0x7f0000000280)={0x0, 0xec22, 0x8, 0x2, 0x4000033b}, &(0x7f00000006c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_SHUTDOWN={0x22, 0x48, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1})

11m55.256583577s ago: executing program 2 (id=144):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
getresuid(0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000300), 0x0, 0x0, 0x0, 0xfffffffffffffffb)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4048aecb, &(0x7f0000000080))
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a010200001d0000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
openat$nullb(0xffffffffffffff9c, 0x0, 0xfa2a965f22f5f366, 0x0)
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r4, &(0x7f0000000200)={0x2, 0x1, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYRES32=r2, @ANYRESDEC=r5, @ANYRES64=r0])
socketpair(0x2b, 0x3, 0x5a9, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$MRT_ASSERT(r6, 0x0, 0xcf, &(0x7f0000000140)=0x1, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="1201000094037b40fd080200fdca010203010902120001000000000904"], 0x0)

11m40.211333248s ago: executing program 32 (id=144):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
getresuid(0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000300), 0x0, 0x0, 0x0, 0xfffffffffffffffb)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4048aecb, &(0x7f0000000080))
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a010200001d0000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
openat$nullb(0xffffffffffffff9c, 0x0, 0xfa2a965f22f5f366, 0x0)
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r4, &(0x7f0000000200)={0x2, 0x1, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYRES32=r2, @ANYRESDEC=r5, @ANYRES64=r0])
socketpair(0x2b, 0x3, 0x5a9, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$MRT_ASSERT(r6, 0x0, 0xcf, &(0x7f0000000140)=0x1, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="1201000094037b40fd080200fdca010203010902120001000000000904"], 0x0)

6m7.253918559s ago: executing program 3 (id=1788):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$can_bcm(0x1d, 0x2, 0x2)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x96d)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x120, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080), 0x2}}, 0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, &(0x7f0000000680)={0xf7, {{0xa, 0x4e23, 0x11c5, @remote, 0x8}}, {{0xa, 0x4e23, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3}}}, 0x108)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x80}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x24, 0x5, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb0}}, 0x0)
syz_emit_ethernet(0x4d, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0xff, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x2f}, @private=0xa010102}, {0x0, 0xfffd, 0x2b, 0x0, @opaque="59b63aa45f55f9243bf2fcac7b0d8145143a507b25431d3643f332c43ea6e7a61c7a7c"}}}}}, 0x0)

6m5.578437675s ago: executing program 3 (id=1792):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16, @ANYBLOB="050000000000000000", @ANYBLOB="3d000e0080000000ffffffffffff080211000000ffffffffffff0000feffffffffffffff070001000406f0027f0006a7000c006400000008000d000000000073f68ac399765b7ab289a21d254ebf1c30920188d7e0527bff31151da7c57628327841e9134f4b1b378bcbf5a202"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

6m3.543812355s ago: executing program 3 (id=1798):
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x7, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x4}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "7f"}]}], {0x14}}, 0x68}}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r3, 0x114, 0x2710, &(0x7f0000019440)=""/102400, &(0x7f00000000c0)=0x19000)

5m58.816877284s ago: executing program 3 (id=1810):
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x206)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
recvmsg(0xffffffffffffffff, 0x0, 0x10000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c4159b364a4fd7013f34db173a4fdacf15229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be867a28f09c5877fc2355ecdc9c30dcb2d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff3a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb357b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50265a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000440)=0x1, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r6, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})

5m52.457749337s ago: executing program 3 (id=1826):
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'batadv_slave_1\x00', <r1=>0x0})
pipe(0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xfffffecc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x8, 0x4, 0x400, 0x10100, 0x1, 0x4, '\x00', r1, 0xffffffffffffffff, 0x3, 0x3, 0x5, 0xe}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
move_pages(0xffffffffffffffff, 0x1, &(0x7f00000003c0)=[&(0x7f0000ffd000/0x2000)=nil], 0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x40004)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x22002, 0x0)
ioctl$FBIOBLANK(r4, 0x4611, 0x2)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000280)="df", 0x0, 0x2}, 0x20)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x25, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
fremovexattr(r7, &(0x7f0000000380)=@known='system.advise\x00')
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x50, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_TUPLE_MASTER={0x24, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x1fffffe, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x0, 0x2}, {0xfff3, 0xf}}}, 0x24}}, 0x800)
socket$phonet_pipe(0x23, 0x5, 0x2)

5m51.471979928s ago: executing program 3 (id=1832):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0xc40, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000006c0)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[], 0xe)

5m36.148676938s ago: executing program 33 (id=1832):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0xc40, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000006c0)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[], 0xe)

4m8.166893327s ago: executing program 1 (id=2081):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x4, 0x6, 0xb}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000000085000000720000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)

4m4.355449665s ago: executing program 1 (id=2082):
openat$yama_ptrace_scope(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x70, 0x30, 0x1, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = timerfd_create(0x0, 0x80000)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(0x0, &(0x7f0000000440), &(0x7f0000000500)="14088eb406397b78089e5ad87f63f5c9241e6379219aa32fb19fbe2d4f0346a7a9c152b1222bff7e0b62c18a6e9ad18de4a35ac260e480b8f8a3209218f60722d85eba7392e5", 0x46, 0xfffffffffffffffd)
keyctl$read(0xb, r4, &(0x7f0000000240)=""/112, 0x349b7f55)

4m2.71634827s ago: executing program 1 (id=2084):
socket$l2tp6(0xa, 0x2, 0x73)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x28, 0x37, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0x6a, 0x0, 0x1, [@nested={0x4, 0x10}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
sendfile(r1, r0, 0x0, 0x7ffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x29, 0x7, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e020000000000000000"], 0x0, 0x37}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0x2004, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r5, 0x2, 0x1}, 0x50)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r7, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0xff}, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x1, 0x0, 0x0, 0x7, 0x6, 0x0, 0x10000}}, 0xe8)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xffe0)

4m1.403553513s ago: executing program 1 (id=2089):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xbc, 0x1, 0x1, 0x603, 0x0, 0x0, {0x2}, [@CTA_FILTER={0x1c, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xa49}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x84c}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x400}]}, @CTA_SEQ_ADJ_REPLY={0xc, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x80000}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0xfffffffe}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x4157}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_LABELS_MASK={0x14, 0x17, [0xfffffffb, 0x3, 0x7ff, 0x71fb9694]}, @CTA_SYNPROXY={0x34, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x380000}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x7f}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xe}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x7ff}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x8}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x10}, 0x400c814)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0xe886c5ffc5249171, 0x4, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000002d00090027bd7000fedbdf25050000000800"], 0x1c}}, 0x20000086)

4m1.082319804s ago: executing program 1 (id=2091):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000380), 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000190a0102"], 0x14}}, 0x0)

3m59.457253712s ago: executing program 1 (id=2095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x2, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, r1}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0x15, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000020000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006700000018110000", @ANYRES32=r2], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={r4, 0x20, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000140)}}, 0x10)
pipe(&(0x7f0000000300))
socket$key(0xf, 0x3, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2(&(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="9500000000000000000000000000000085100000feffffff950000020000000019e2476a20601584c099d8a8b57b492fe5d580ae97b41c4f1e0000000000"], &(0x7f0000000280)='GPL\x00', 0x4, 0xdf, &(0x7f00000002c0)=""/223, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x3fe, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0xc000000}, 0x10}, 0x94)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x0, 0x0})

3m43.872091833s ago: executing program 34 (id=2095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x2, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, r1}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0x15, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000020000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006700000018110000", @ANYRES32=r2], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={r4, 0x20, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000140)}}, 0x10)
pipe(&(0x7f0000000300))
socket$key(0xf, 0x3, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2(&(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="9500000000000000000000000000000085100000feffffff950000020000000019e2476a20601584c099d8a8b57b492fe5d580ae97b41c4f1e0000000000"], &(0x7f0000000280)='GPL\x00', 0x4, 0xdf, &(0x7f00000002c0)=""/223, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x3fe, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0xc000000}, 0x10}, 0x94)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x0, 0x0})

20.740171175s ago: executing program 6 (id=2640):
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001000)={{}, &(0x7f0000000040), &(0x7f0000000080)='%pK    \x00'}, 0x20)
syz_open_dev$MSR(&(0x7f0000000000), 0x5, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
kcmp(0x0, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x558, 0x0, 0xffffff80, 0x178, 0x0, 0x178, 0x488, 0x22b, 0x258, 0x488, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0x300, 0x320, 0x340, {0x1e0002a8, 0x7203000000000000}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x1a, 0x64, [{}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {0xffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xfd}]}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_bridge\x00', 'geneve1\x00'}, 0x0, 0x100, 0x168, 0x0, {}, [@common=@ah={{0x30}}, @common=@ipv6header={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b8)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)

16.200381588s ago: executing program 0 (id=2650):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001a000000000000000c0000000c"], 0x0, 0x26}, 0x20)
syz_usb_connect(0x3, 0x3d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010002a91d21402577a8b046070102030109022b00010000000009045f00020103df00090505c70996bf00e5090501020800010000072501", @ANYBLOB="521ab2ff20202275cb74b9f729"], 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="4dc07f947163300c", 0x8)
socket$nl_route(0x10, 0x3, 0x0)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmmsg$inet(r3, &(0x7f00000035c0)=[{{0x0, 0x0, &(0x7f0000002ec0)=[{&(0x7f0000002c80)="7bc9772c3adcc294fdfb42a877da40d9ebaf07d3a0033ae45b0f30ae8d06951c436ec8e05eb6d405c058f679840bd7a7e65a2c365fb01d60f395699b64615dd42ef9e52b572165ee7cad1c6d0aa1495ea00d2b23a92bcb88efc487fd97329103b5ce46c6b627ff5ee1fabe15d8efcb16dac17470b83e1f9652a0079518396736a8bda106f0967732cbd4f432508645864faef1b6d760a95db78c42ec5a214f9d383b86a941b9ccb34d3932cbb914220b9cbfc43112c2e9ffcff13016630adc", 0xbf}, {&(0x7f0000002e00)="5206d88b9b29508c45c6b82d58f2169003771d873c53f6c24592e8e2928d37d082519921827b9a19fa44e14ec8a22203ac8b6a892756f3b13ad8667f2bb8555e180cdefa6539d01d35b0a0702785398df6dbe806fa5fbec3c04a62143443ab6c8b9aa57d1504ad0c21c86c", 0x6b}], 0x2}}, {{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000002f40)="92f0ac0d687fc396c6e3fcb435c1ab468bfbcb101f67fb0a6eaf21f2fc72ec5a03074a7357c6308114ad5b64ecac13598f51c6ae646ab3f0d7b857201ac0e2c8bee4583571cd", 0x46}], 0x1}}], 0x2, 0x24008804)
sendmmsg$alg(r3, &(0x7f0000003b80)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}], 0x1, 0x4010)
write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000400000/0x1000)=nil, 0x20400000}, 0x1})
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000240)=""/201, 0xffffff47)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='scalable\x00', 0x9)

16.130699175s ago: executing program 6 (id=2651):
syz_io_uring_setup(0x83, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500, 0x0, 0x352}, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS64(0xffffffffffffffff, 0x80044100, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x440, 0x0)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
syz_io_uring_setup(0x4aea, &(0x7f0000001240)={0x0, 0x8cc8, 0x10100, 0x2, 0x75}, &(0x7f0000000000), 0x0)
r3 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r3, 0x0, &(0x7f00000000c0)={0x84, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fanotify_mark(0xffffffffffffffff, 0x101, 0x48001051, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r4, 0x40015b19, &(0x7f0000000040))
socket$inet6_sctp(0xa, 0x5, 0x84)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82)
mprotect(&(0x7f0000265000/0x1000)=nil, 0x1000, 0x1000003)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000180)=0x15)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x88}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r6, 0x6, 0x1, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)

12.180755987s ago: executing program 6 (id=2662):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x8800)
r2 = fcntl$getown(r1, 0x9)
sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x6, 0xb49, 0x2000000009, 0x6, 0x0, 0x3}, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
io_setup(0x8, &(0x7f0000000000))
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
r3 = getpid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x8020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0x8, 0x72, 0x80000}, 0x20)
open$dir(0x0, 0x400000, 0x100)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r6, &(0x7f0000000000)="e6", 0x1, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x80)
shutdown(r6, 0x1)
recvfrom(r6, 0x0, 0x0, 0x61, 0x0, 0x0)

11.052729655s ago: executing program 0 (id=2663):
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000100), 0x4) (async)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) (async)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0) (async)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0x6c, 0x30, 0x17b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_bpf={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x2, 0x0, 0x10000000}}, @TCA_ACT_BPF_FD={0x8, 0x5, r3}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x20011814) (async)
r4 = syz_io_uring_setup(0x34b7, &(0x7f0000000000)={0x0, 0x0, 0x30c0, 0x0, 0x24}, &(0x7f00000001c0), &(0x7f0000000080))
ppoll(&(0x7f0000000140)=[{r4}], 0x1, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x3734, &(0x7f0000000580)={0x0, 0x139b, 0x4, 0x1, 0x16a, 0x0, r4}, &(0x7f0000000600), &(0x7f0000000900))
r6 = syz_io_uring_setup(0x7dc0, &(0x7f0000000880)={0x0, 0x5, 0x20000, 0x2, 0x2000000, 0x0, r5}, &(0x7f0000000780), 0x0) (async)
r7 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000b30000007f00000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000600000100000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r7}, @generic={0x66}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r8, 0x58, &(0x7f0000000500)}, 0x10)
syz_io_uring_setup(0x1868, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000700)=<r9=>0x0, 0x0)
syz_io_uring_submit(r9, 0x0, 0x0)
io_uring_enter(r6, 0x184c, 0x0, 0x0, 0x0, 0x0) (async)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x1fffffffffe, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x9}, 0x0, &(0x7f00000002c0)={0x3fb, 0x8000, 0x400000000001, 0x9, 0x40000000000000, 0xf, 0x80000002, 0x2}, 0x0, 0x0)
gettid()
socket$can_j1939(0x1d, 0x2, 0x7)

10.741844906s ago: executing program 4 (id=2665):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200"], 0x7c}}, 0x0)
r1 = socket$kcm(0xa, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3c, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0), 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x1f, 0x18, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a7000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000a800000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x19}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_type(r4, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r5, &(0x7f0000000280), 0x9)
r6 = openat$cgroup_procs(r4, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000c40), 0x12)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001280)="16", 0x1}], 0x1}, 0x0)
close(0xffffffffffffffff)
r8 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
r9 = openat$cgroup_ro(r7, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r9, &(0x7f0000000200)=0x1, 0x12)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r11 = openat$cgroup_procs(r10, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r11, &(0x7f0000000080)=r8, 0x12)

10.692472653s ago: executing program 7 (id=2666):
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x206)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
recvmsg(0xffffffffffffffff, 0x0, 0x10000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000440)=0x1, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {}, {0x18, 0x2}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r5, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})

9.684470486s ago: executing program 0 (id=2668):
socket$pppl2tp(0x18, 0x1, 0x1)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x101040)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
futex(0x0, 0x80, 0x1, &(0x7f0000000840)={0x0, 0x3938700}, &(0x7f0000000880)=0x2, 0x2)
syz_open_dev$cec(0x0, 0x0, 0x20080)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r2, &(0x7f00000003c0)=[{&(0x7f0000000280)="111ec20239e272abb2cedf", 0xb}], 0x1, 0x4000001, 0x0)
sendfile(r1, r2, 0x0, 0x8000fb00)

8.587248047s ago: executing program 7 (id=2669):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x408c0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000640)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r7, @ANYBLOB="18005a80140000800500027e574d285b46a089d089000e00"], 0x34}, 0x1, 0x0, 0x0, 0x4000801}, 0x8800)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r8, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
connect$unix(r10, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r11, &(0x7f0000000180), 0x0, 0x20000000)
recvmmsg(r10, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000519000/0x1000)=nil, 0x1000, 0x66)
syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
r12 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x5c1981, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r12, 0xc0040d07, &(0x7f0000000040)=0x121)
sendmsg$nl_route_sched(r4, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000300)=@newtaction={0xac, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x98, 0x1, [@m_bpf={0x44, 0x2, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x3ff, 0xf, 0x401, 0x6}}]}, {0x4}, {0xc}, {0xc}}}, @m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x9}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x4040000}, 0x40)

7.640512921s ago: executing program 4 (id=2671):
socket$l2tp6(0xa, 0x2, 0x73)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x28, 0x37, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0x6a, 0x0, 0x1, [@nested={0x4, 0x10}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffffffd)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x29, 0x7, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0x2004, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x2, 0x1}, 0x50)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0xff}, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x1, 0x0, 0x0, 0x7, 0x6, 0x0, 0x10000}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0xffe0)

7.363445477s ago: executing program 7 (id=2672):
socket$l2tp6(0xa, 0x2, 0x73)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x28, 0x37, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0x6a, 0x0, 0x1, [@nested={0x4, 0x10}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x29, 0x7, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0x2004, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x2, 0x1}, 0x50)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0xff}, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x1, 0x0, 0x0, 0x7, 0x6, 0x0, 0x10000}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0xffe0)

7.180166991s ago: executing program 0 (id=2673):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mq_notify(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x29, 0x1, @thr={&(0x7f00000005c0), &(0x7f0000000280)="844cbb4b058fb7559d62177cc6e73eabe5d45fff680c316580b8c8d25b934b7f27792b1f7f"}})
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r3, 0x100000000)
r4 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
read$midi(r4, &(0x7f0000001ac0)=""/4080, 0xff0)
ioctl$SNDCTL_SEQ_PANIC(r5, 0x5100)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)={0x14, r7, 0x301, 0x0, 0x0, {0x1c}}, 0x14}, 0x1, 0x200000000000000, 0x0, 0x20040005}, 0x40040)

5.57450702s ago: executing program 0 (id=2675):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
prlimit64(0x0, 0x9, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xa8f94000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[], 0xd0}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
setrlimit(0xf, &(0x7f0000000100)={0x8, 0x851e})
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x109}], {0x14}}, 0x3c}}, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000740)={0x14, r1, 0x852dd6c070cd7e4d, 0x70bd2b, 0x25dfdbf8}, 0x14}, 0x4, 0x700000000000000, 0x0, 0x4}, 0x8850)

4.938427767s ago: executing program 5 (id=2676):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0), 0x0, 0x9200000000000000)
socket(0x10, 0x80002, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000e00), 0x0, 0x22002, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4088}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="20000000150a0103fbff00000000000000000000090000"], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x24040808)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r6, 0x84, 0x7f, 0x0, &(0x7f0000000000))
sendfile(r2, r1, 0x0, 0x17)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

4.626966335s ago: executing program 7 (id=2677):
r0 = getpgid(0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026, r0}, &(0x7f0000000040)={0x200000, 0x200000, 0x3})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="540000001000010025bd710002dcdf2500000000", @ANYRES32=r3, @ANYBLOB="200404000300010034001280110001006272696467655f736c617665000000001c00058005001b00010000000500070000000000050029"], 0x54}, 0x1, 0x0, 0x0, 0x200404c1}, 0x4000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x18, 0x40, 0x9, 0xffffffff, 0x25dfdbfd, {0x2}, [@typed={0x4, 0x11f}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
r5 = userfaultfd(0x80001)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x4, 0x1, 0x0, @remote, @local}, @echo_reply={0x0, 0x0, 0x0, 0x67, 0x18}}}}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100002192ea0845050c800a030102030109021275a8000000000904"], 0x0)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x194})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1})
mremap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x400000, 0x3, &(0x7f0000c00000/0x400000)=nil)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r6, 0x10000000005, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000500)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)
r7 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000000000403321180000000000000109022400010000000709040000060300020025210000040122050009058103000000fc02"], 0x0)
syz_usb_control_io$hid(r7, 0x0, 0x0)
syz_usb_control_io$hid(r7, &(0x7f00000006c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@global=@item_012={0x1, 0x1, 0x3, "8d"}, @global=@item_012={0x2, 0x1, 0x4, "b314"}]}}, 0x0}, 0x0)
ioctl$TUNSETSNDBUF(r6, 0x400454d4, &(0x7f0000000000)=0x8001)

4.583696148s ago: executing program 6 (id=2678):
symlinkat(&(0x7f0000001040)='./cgroup\x00', 0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00')
memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r2, 0x89e3, 0x0)
gettid()
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000a40)=ANY=[@ANYBLOB="fc000000190001000000000000000000e0000002000000000000000000000000ac1414aa", @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000000000000080400002000000000000080000000000000000000000000000000044000500fe800000000000000000000000000028000000003c"], 0xfc}}, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
write$tun(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff0200"/53], 0xffe)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0xf0f024})
r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x80401, 0x0)
ioctl$PTP_EXTTS_REQUEST(r7, 0x40103d02, &(0x7f0000000300)={0x75a, 0x3})
syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r8, 0x10e, 0xc, &(0x7f0000000040)={0x80, 0x43}, 0x10)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64=r6], 0x24}}, 0x24000001)

4.036761855s ago: executing program 5 (id=2679):
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, 0x0, 0x2004c0b0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000ac0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b00)={0x40, r2, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x1e, 0x33, @disassoc={{{0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x1}, {0x3}, @device_b, @device_b, @from_mac=@broadcast, {0x9, 0x9}}, 0x2b, @void}}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x4044844)
r4 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
accept4$llc(r7, 0x0, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

3.27503337s ago: executing program 4 (id=2680):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x210020, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$SIOCAX25GETUID(0xffffffffffffffff, 0x89e0, &(0x7f0000000480)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
gettid()
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB], 0x100}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f0000000100)=0x20000002, 0x4)
sendmmsg$inet6(r1, &(0x7f00000046c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x1}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000240)="b6", 0x1}], 0x1}}], 0x1, 0x4000081)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x4020, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r2, &(0x7f0000000280)="ca", &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r2, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000007c0)={r2, &(0x7f0000000740), &(0x7f00000006c0)=""/46}, 0x20)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r4, 0xc0045009, &(0x7f00000000c0)=0x2)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d4", 0x5)
r5 = socket$caif_stream(0x25, 0x1, 0x3)
setsockopt$CAIFSO_REQ_PARAM(r5, 0x116, 0x80, 0x0, 0x5f)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)

2.480582328s ago: executing program 5 (id=2681):
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card3/oss_mixer\x00', 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$sock_timeval(r1, 0x1, 0x42, &(0x7f0000000000)={0x77359400}, 0x10)
recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@RTM_GETMDB={0x18, 0x56, 0x201, 0xffffffff}, 0x18}}, 0x0)
write$proc_mixer(r0, &(0x7f0000000140)=[{'LINE', @void}, {'MIC', @void}, {'VIDEO', @val={' \'', 'Master Capture'}}], 0x35)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getrusage(0x0, &(0x7f0000000000))

2.210271243s ago: executing program 4 (id=2682):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x400403)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
sched_setattr(r4, &(0x7f00000001c0)={0x38, 0x5, 0x61, 0x68f, 0x0, 0x0, 0x9, 0x3, 0x7, 0x8}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r5, 0x0, 0x0, 0x5412, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xb, 0x8, 0x2, 0x4, 0x2006, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffc}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r9, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r9, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r9, &(0x7f0000000000), 0x0, 0xb, 0x0, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvfrom$inet(r9, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
ioctl$BTRFS_IOC_SYNC(r3, 0x9408, 0x0)

2.163626012s ago: executing program 5 (id=2683):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5dd}, 0x94)
syz_io_uring_setup(0x2b06, 0x0, 0x0, &(0x7f0000ffe000))
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x9, 0xffffffff, 0x4e, 0x567}, 0x13)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000d40)=ANY=[], 0x14}}, 0x4044852)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0), 0x8002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@jmp={0x5, 0x1, 0x5, 0x1, 0x9, 0xfffffffffffffff4, 0x8}]}, &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{0x0}], 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r6, 0x200000002, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, 0x0, 0x4004000)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = syz_io_uring_setup(0x24af, &(0x7f0000000080)={0x0, 0x2000bd82, 0x8, 0x0, 0x10122, 0x0, r6}, &(0x7f0000000540), &(0x7f0000000280))
r10 = signalfd(r0, &(0x7f00000002c0)={[0x8]}, 0x8)
io_uring_register$IORING_REGISTER_FILES(r9, 0x2, &(0x7f0000000340)=[r7, r10, r8, r4, r2], 0x5)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000041c0)="7b1713b4c6f02da7493fb6859f0143c68a58166f472c5078104b859bc37f9a49a8f85c9101df3b2736ff9bebcb1a3c2f570b28279b8ff7afdef7451b3d10b4578c2e81784b6e4f410800d997f0689546cee0852e9e9c64c1f95df7b136243cf7aee1b8e7a4e1d6e6fc01337370f0dfc098d975e9a6f90a08f5b845054d1e1fc81adadbf2836ff758bade0484377855b05b3556a91827599638458ad30baea03240b302638b88423ecaba6da1e40f6f1b24d60dde1652f2d5f818af43d49dd55c4eadea945e9b6aa744dca07ec2e00320bef5b045414836941469129670c4cdb953ed61efeeae2ced1b7cb3e7fa4c93cce5623a9e33c69d068b801fd1369aba759e2829c67c705853262fef6669aab956f0f733619dd361be5e1414c7e7ff6218e330156d609fa9f3244a0a4fb678a58e70b86f6dabc3331f755b786c42b4198149941a7a58c83f1f2811209025269c5ffcbe0c34ac98cc091cec2c993bca0aa8400ff9e39cc9fba8dda886f95357957bbad8bb850ab92f7aa9bebcdb0ef188749a1742e5597d199f3ccdc2d807bf757da45acc93e3e9645a1036cb041b3c38dafef367b8dae802bbbc03bacb905d40e1da78591687b416ee380103a670aa8f722c76e13f7f0e3effbb37f15a821b8315fe541e3ffc09289d96db1dfa8861e5da41c812b54ee20ca8b3180f2f46db56954791465cb572de0cce16d789d6fff216ca46977ed724dc0cc8cef7b295ebb2998a5c4662e32ae1001e59f3bfefcd72543bfe1aa6688d65c547089ec0fe1f1d9610095a5a4008b14f46775c368417376ee143856031947db71c455dc40eeeda210fbf258452781ce46e51f6df683a7918770f73d324d9401648d271cb9a7e919401567e400fec420cf363444a78eea03e73176abd6546e1657945aa88f64a21e07fc23edd74512cf89781e8ffe9bb1601ab25d31801332a6c5be9cebb6cb08207bb832106553ea9fc19b4b4f1f0cd55efc2925ffef75e9b12f06b5a7496506a274ca25f88398a1734b7013c3f78a2e49ef0d946a1aff362e37c9b5f5473de11401097722adda87944ee3eeb1bdde60e97484af4d2e5f8b0a9c63bb8bb99461b16edd824add1caf9d5247811cc4f6b48004774f1a4fe4dd125ddbfd8b69ff3ee314aeb445bee9f217a2f5a9e0e84ccd8718471f949086df6cdcbf95e568317e31dd01be1b826cf9a09373b16935fc864794a3886a2f4aacc42135db85f8921916a10aa7111a686979e2a5c9959cafc9774c416c4dfe0b9e06657feb2fbc31e7c11f6e2841680986557c1f2b1ec3c0fcc6a749a3c97a5b370550ab7110e25851b13c0b75a7fb0cd3c4659878209867659c216b467bdcf51e786a59fad084886490fc77e186ab827d844d0ac4682651fc4043f8e87b905532a53017ada44feee1f89f9bc6d2a8b144e721a479f7b90acb91033774f4c12df633548a9097c791ec7e80fa2607c86fce6e9abcae1296528b8488ccf18a4bb0fc9b50c15d294e8d380465465b4eeae26eb6800faba611785cd2ff95ca1923dfa47d5923f89e4eadb612002caceaebbe779c4e3a3833455752eae63689ab8dc03db63d82feeab7f1162eed5909b69ccd5abeb9c071da82cfc76cc692a51d99e0c4bdfa6c81c9878e893a77e1e7105e7910827ddb3353612fa8d5e547b43b5abfe50829c1eb7bfda1731db2a9a1e8f0fc298dfa7009679489f9d9323338b7e59f1e48419ca531d88170a5a1995f576aa125edae9e9ea26f6e9c4bc26323b7db0998c528a7b343ccd87ff44c77e6cfc0a324cc1d4ea79c30015f0caaeccd46e5db580aa5ce8030c2b13b37494557da58abbdc7ce9fc9afa49ce0e8a7a6fa058db210ed654203e7879cf5004ebec57522ed34481b749554b36cd7171209b0763e1100d6704604f2d3f28c5ddc66c877e3ab63f36137d5a67cbf872aa6af79cb3a66c9040009b5e1c7b718c1b8788156b82d6d800dbe9fc3d16c812a963c73599b79efb89aa74bdbd9b1a2dc0b8ad853f79c0867a3a45d7a1645059171877687a72dd5ed4213c0ab84ef6185e7935346a84450887bdb2b216883e907b13b03c133adc04ab3c5f60209bd90aad3d94443105f08f0ee1b2231e1a1f8cce71de74d5308b78b5d99ce4ad4573faba9fab48bc1615f14d453c67714b99f274de041512b07b885679e6f89f481c28b082084b853c9afcda31def2898284d6ca28fb124df67142821c9705e28093ded60992d9587fb466df839aa2a4973dd48f9372a55da6592646fc918e533955566a2d8dc59277308223aea4dbe0daf839f95516b8995e9eec87df1df9d38693e0824dca7423b08d553b0ae1c5c44533b918eaa02dd17b4c8ce515ae7de410970f670e17b5e3c0a207fb8464d5d442694a271d593fc23ac19619bac32ac17cc6705ce2e6262361eba24277a471602e7ca57cc614ee116e60a9e0b6ac5e3228ea2c650baf1a09e9e5c7a1b25a078d1d11a673d88f6ee33e50d036d7fe4b9c06adc70aede2e35c6738b255690ed3f7a8d2d14e36e360f3bb66978d6cfcfc41887c751c0efc9325d4485a2f561060413fe6af4ce40d87a476201f15a584fc7ba18ddfef5f1d729d5f544c2c6b06befccb444f0408451089f20b06f05ab7d6702b97819b0eff6fb090f21afb3076558e692920053702fc2348f8dade0cb2b007f38d6dcd4ed3bb42553b1bd684791743a1941e5bf2ed234f44be64a95b485a3e949538a40542f25ca4bfce44e291037ab282082f02157a96f4ca0a0c5cd39215fd07461093a4d87a7979f7aa97142bf5b9ef71db537f9acc90f22ca2ded5c1ecd1ba972d05db7f71e8466085c9b3e975fa3a948f2c4049d1a8e46f71157017a3a74ad25e215dcfe7a4c5cb0a7baea0b0ec60c5df82555c553ac60dd39174c721edc0304b836a4de539c3ee55401e13848018f889cc4a0fcd01d9f4978eb730fb1b4a94ede0283f8c95062f01c8c8a3169b2d5c50cdd4f3a248d80a26c950b4036fc6ffefaf5101269fe3594c2cc128220a1d0b5f9f23121f2b184894e129159eaa92d9a30e878839be44d20cbdff3c338cc95795c86121b2b498bd376e895c98d67f6a27eecb46a203aa9de744feedf27b6825cc17aaa098b5ca05cad6bdbe320908ed36bdc8a8f2c777eeb9b037b36c0e36019c264b3e36196501d6ccb0e7b1899a72bea5c8a24a5ae62e3684a39a06208bd382cd32acfabd742c76334797fa0c09a2a2a7e1240974afe0f3d6eb44590cf171efb7602009a93bde85cea6701c765dbca7c6a879be41dd08847802d4f59e933df65f727cbb45e3a4a5019f503b6fad7e0338e653f8b2c87aa7f196444e0dc1be6d7c4f0c7ddd663d06ff1365a9c362384a33b0315adbfb2d73359c485cd5410d36d21044bd8d3771c5492803b19f7f3a1a5c3248e66786479fa4416a55855adebeb09528ff5add597790b97bddc16bb9b7b33a1f800701c4293e2c8428dc2684726cfe5539ae0a9bf89e1b6f1989fd0433cc865b308bd0c636402b4b285c290e2439b9ecf0eba156fb6b613ea7f97b04506fe28e9471343c854fdfd48945a7f564acc817e609be8f8a7fdee12e9b592fd8c5c08f51ba8cb95be12cfa497d1539a4b8217818d47ebb3cc669014261530205948fdb9983a0e5759afa9b290ce838102661750ab06d7fe65a39efa6af36c042d2dee36402a6686d58eb144b76033cab4482b8fbdd213a90170939ec98df1fdfca4b37b143a971b9b59fc351098942bba090056c20e8cfbfe8fcbe361d068c98a020f67e807b8db2e45cad83c9970907646c0049c05c1ed657d53d859f1a47bfe6f022be0689de224034d0160b1dbc878ba6dd685911288d7af22ff5eedc1634c36e25f51d0757c7b9c73d7937955da356dea68749d464a75f41c9f6ba36cc1ca8c2f3aa34beae14fba894ca705111cdb19094432c2f6caa0eac78ab09b0cee330f36b1b91a6a5d4896cd15d96c12547826559441cbf578f189f5f04526a4cf76d60144090c2386b747ad50f7962ef2950d2c6f4ff8477ad0681ab24c47ea7ded8c9accff0dfa30489f43f0f3182b88e757fd9a1d82e1c9bb4efe5215518a6e48c688b2dabbd15107c5c6245de0acfd740ea54e0ec212f405f25bc3aafc63009631a4e4749296d47c2bcf25cc95afceb0a1ddb3c6124208f5134981c30489b42eeb864b3123b03106c9b234a465d87c30ef36e00244390de36a5dd93794467ef37bd01b86387855d2ac24e05370212e845082bb22c8fcda0f0bc78ddf971b0b9d69fc50e0d907408e9c9ac4e5099f47db2d0c14d888e363ece768555362a08c408d0119c45f158aad695d455d28e223be2862c19262c9f43eff8855b5a9af4f2cede95e415e2f597bb64c8bb2d608f86b15950ffe2e6bea3cdb221cf8b7eb35e0bdf6638283b09c68cda0bf1ccb9e353a7f0afb58d806923e36b22db68615a7e4e04d0932d928afdc8af3963378ebd5e05058160ac67fadb7a7d9ec498e00f63671b84d880d196c93afb4fc823e7d6576ad824ffb4c90fc780b163a292899ccfcaed81dee2c992787a66800e206df3dfc4a6b441d54ccb1a19a587402a663d510e45a5b1aa96fc467efaf7e71cbbff087f3d2922a133466d5ae9f86b0bc39bb3093b87ac2db941b1fd9e40427402781425d6e8856a2c66cbdd274f4c689758db6dd58ec7d766b177739e8c9173f2b1946be5396aad6d7ed29d058ac231e8c2e6a9077b4a217df4580a2d72bcf0b73e4bd07465deb8798a55ee855b82f1fa7d3748a40485bd90fab94b617d92219c4b65efa022936895e51873058615a19b9d1347120c405c3254f290b4c8b99c8ea9dde3a749ec538421a29d27b48ccd83852abe1a461123e4d36e56508d1827880960362d10835df77f9d4be51f1447cac5ae2017a814de58cd99bcc0c194254b17114ea48f5a0cfe6547686088d527c65180474fd460ffea5d48767ceb65c6fa3d7d3c632591d2d9d65c6c3a35a6ae4dc56322cd84734b0e7a092a4c46c1c607afa6d0e477e8d04e4993e595ba708a0f4466cd8a89fbc06d3cd366007296a9f05b66cfdcd5b30b6745e71d513205d5dbe1e8516d9e9cf133caa994ec0ac2c543d107efd4b9a7d9ee1ee415830a6c2ea17114ea9683726f2c82741f9ad4ac1be6772f0809f18c13f4cfc82fd1b7b3bd29615336003c6784c03fbcae475a58a3c4d68099732c326dfb7643eb150f2354918077bb798b5ecf491cdd0765e3e1ed5d0a37840f1a28f7e188a021781f1896dae7153f9d6639bf66be0c7857d7eccd2a1e6c9fd0cc3594477bb005df9b29f680c966161e37bcec97fc2ef7a2c3bf64e4df5785c9b080c7f9c6d7c515408445d55da499c03ba66369a31157bb03588e84a5303c46cd393c5bd6fbbb8deed94b62d67a9351c259b263c6c4fa65a4dbdd7eee080d82cc5e478c885678edbc9cfce74169ab748d7f4a08aec3e114394fc1d5e361267b8f3fcf38a024928d58158560f7da427680e7611a9f1b8255c67e6ea6b597ebd31bed9fd6f85f9b6ee63d4374c1e50597d1c9f3c56b4266bc632ba66ebecc396f6bead40392dcc138098b4166ab7f8714bd4db0615480705dd200da92dc51ec215844d7599e0a6262e8d5dc6a9452db8994d8b8f19ad4029e0b41b5e13fd6b56230cecea57f3111ff6c78876b3e657fab112968e83a0b64ce9837b89f5dad0d5f0b8b410e3a9a56ab2e9143e90fe371a944989ee206eef777cf4a235333c647e45aab910af492bc7c2213246374251e23accf5818aa2f24823bcba12efe3658e1e2cb49a5d4ffd26453829739647eccd106605921641afe16bbe79c8739062eabeeda4d4a42cb70d84e1e1d3506c7bfba5f5135aaae85b03dc6518eb30d832175cedc5bdca95e600e04902d9eda90c1da4bdd3138ac889398c239068857103ad70b5d1d9fac27c8ccfbcfcf126d9a5441bc963bce4669047ac901a14ca7c7e76f94c77159cdbda5360e04bb539a9d5ccd16a8cc88bacaa5b952c86b163575d7f1cab58f0d612d796b570f3c5debd7d9abde7e24de2c252173f1edc93817192699bddad45eeb41ff398c1bee4d2194f38bf4d2b4ed3a8895476bc441f464753139e204ff5dee7f45ce639d7541c0d396141aeff30cbbfa7157a61993eec98a4356df98665546a1d1e8429fb0c78684000862aac50f7d9a1413e89958f4defd3f087769cafc32bcd6016e496b41b7754cfbe42b352346fd585fb19a80f4af9a19811311b5fc6ea8eb5519a3cf7dbc1a06eed41668e332224c1daa01776e0886044f5a95e5dffc8d9ccce7840eeae97e8cc916db95bdc33fb420e28030c6edb011d5281db1dbeac9bfcaf938a757e3939b025d339e69b9692c8c7352787d399f342e96096e37ca208609e5f93629e36ee442db9fb822ea236683f79875e7dc73ec97f98fe0795f9d83f473cc80a589043a7edd953473684ea4e80f698683a0fc1d8863adc44fc13c27a08921a681ca1ad76207b1a97f8fff7db247ea09b3a6407ea83d82d82d171fc80a8f5fb9f19cd7e94fe121a6a0ef9c4cff7a8689c0abf750dadcc7442c2ca5ed437af5e88e89b0a783a1164cd1eb2a33a64c919d9f08fe5aa7a775352ab6027a7b73d6fef51acebec5516c2a5f2b932b2621bbd2cdb415fce9ba1dbc3de205869fa0423adcedd5570ab0b4b64afafaa458b3840b48f018297aa46426d7893418033f00b5378eac6a70275ec860609b07851b88ecb5da05086adfb80f47c71a77301ca0f1520dfb7a800bc8421abf5eb94942ec818e3a1d45f09ff93e6549b3ef6152c6abe38231b4a82e355e27e363184df51418286d7073cf464eee02310e84b3eccabd2120fcca333130357e1967f67a69f437dcf6a20ca21797230aad086bd4c28348f58b80ec5d27626004533993b9f85897d00bc271a62ab67f92e2eed6d900000000549e8344ad90b47fb5c1ed5908bce94d03bbe98a87a1733b5031f89644c2d35d729e1375969a82f0252859219407c5c87f5d249d5eb8c17001fc7c6dc5d1825851b41e5e937f2c39d7f7196f38f83619da2cddce747bb0e906d0fc13a11fc6c2be3d140ea6da886cd5e194ca9dbff565d2a82e7e82dc5a36084bf02029ea05a9cfe1f3dc80489b426a14372232940ffad8124bd515f0a73fa85c2aa0cd51d76a0cc6e75ccc35b702a4fed4d2e2828d98939406ddc6df1048f0a22611859d6bfcbb0873d102e4b8a86b5d9af8056447f6c1552a603d9f67009fa070db73a01e1b4adbe4e841d0b9a92d148b626c386b25687817e5ec07dbbfa1d62d078578fe21d546414e3c5e29e8e086d7e542a2eb74a67127e7f171e076bbdd62767aae3db467db1df13b3121023bcee33f814d767a9ef14651f76ec89910ed33e9804df8619f69ad06bf0559b00d4efbf6f44e922d50a18ffa25d8ac58dec53a93642186c0ca81b07fe5c14c9c13397649a53ebfcec118e5bb84db053e6e505d07a09bb50f33906e7febac3c85ca337111dbfcb7b9becccaaefa3d857d48f0b3d8646d70fdcf2f1dfb89cc3ba1394cb5de24d999c88235418bc0f20d4036bd0113d298b91c44fe042d3b8e4070e3f828499972524601c4725389122c7fc3e38eb799f7b755f23bd5362880b9275e58eab2c8f42e583890cb84e17f35025d1d76dd28171bee561d21451b4b2ebf23b923221c9ea06b924815889d2b605af66539c3b0ffc30c7170a5581727f0faddb257cb6ab28b3456737d3588fa3bce0ba6a2a5c3c94301fa8a4e6db358731bd3a4a62b42181e04241010d7bc3e973b9fe428175ec8f8e6cbd4e53c8bd957621acb1e42504e6f8a7bb30c382058fc9dcd0cd0ba0b789c316cd58d7b5606cc2a66c872f10e6663346d572ecc37ad1c3d8146a137e35e54096ddc2a5e2d26765d75615fecd09b864b29adfe92763ab54272365f56feeb9b57059744e765485ee322cb879fd3c8fd8bc4727d860995c548bcd41852349f1b2227f5a1f39b24549693fb05c04ba8f190673d11eb27d0bf628489f9b8049f5f3a1e1fed97ba9881da0031ef5960b6b0af825cfae8252b931f6151cba9bf889a5c74051a176c56d3cbb8915d3f28f8f684629bd1e3f87f27909b4e8eca6b88cdd60f3b5bbe0641a469e396080fdd2feeac7a11703b758f1815f100ab2ca4403af34a655f4c35e62778c276c96bb94a3d9f58f3bbd7ae6c4f133f7c4199f18d02d66598a54769415b376bb04b520881f23b22b32685ea1ea0dc179ab2f33f07c7039d1a5eedd1905d2a8c7d3c9686758ba5aafdd74f36da7f5522aff5c40e565b50cdd92ce353c3d6c97ce87f0495bdb95d70ea52c8c26b87cd337fd2283b88d7301c32f26833451b8f7c2ee5f44eec58d9eef2a39b3021a29c8747d36a2dbca6c0c085399bb720000000000000009d67e17060abad89c7d8b8970244c2f11ad2f4ae878a3676659b77178a9b651b12cf9c21e658a32999d596af4648f636df4de8c037d1fa63b1a685e8850156bf99e00666dbc03d3e3b44018659743127f91d44c99b578b86a44f3bcf1523c8cb45accc3c5fedfd7796411eddfc3a7a6b7c57ae10fd4bd3fe9f662dc59747ac4b7cc2584ae3ce2e42a41066dd0d560f1b4c83edc57121dade5e397380bec5f40b5d0beb14aef21b2c68ccfd0eb4959b5e7f5b5779903963298e3c9a2141f145137de1d604d9124c3c4f60a4d54da38a7c32ef2632fe66a8ce8e95ee95a570e18e9fbd44884afe291550839dd61e65c952a3f5c6b61850d1c2a77e18fde734a305b407cf6dbf17afd66da6e42f0e8f66092df46c79b44711f6e8aafa831fa1188beea696672b0e94cc3cae584b30dccf053634f792c2d9f4c87e306991b407949f2870b525d123f9ca23142a0ee13d05f51ed4ff2653727ad5bf16453276b2d5e7d7a8a0a1c4847cb61ac4b08d9abee25165a120d156775a534a62f9af3a3b62726101b94ae1e14352262f017c5361b3341952d194a6a2d470e60df3fde61d343e0af8fdff36ad976af6732b732ceb69344550555174fa280153e08f74d81f4ee69c1eb44a3468e8cf78bf7c1663dae3d31553466faa207b8e9887cb54209fac0b6f6d12d9588351c76e6bad884799afe856a25b5fe737d0ba737a0f1a12b4eb3ede48a0c38e6787ab42fca1c7f2ab43fa6104d5a99aa36b73ac3622ccae12252457cb7d0a7c7eb5de795647dca0621fc2c9599441dae7cc2a8631252abb5e0f22e9355e0a156a1ab7b1641e345045e8303b5f6dda5c3c1cc2637700cea25c004460d101fc42ad78ae477739a4efbacc57272cfafae15292dc3b2800d9f42002c2062af9a1f329e11140f8317242c04ac1f11cdb45f5f9ab18877daa214c151fb9ac54e3e010b5e7944d7217442d5c4fc29956c1333cb932424096f5b6afe1128db53f7171be4372be8bae538bcb3e4a2eb29608678735a667135e0f2660956e9e2a3ed862209efe65d9ab2fbbf88e5d3384fb3362af00e1ec6b4d3ca40df442b70951026438877189c4b0ae136a9a35c131fdf19115e8dc1ee2b938bfbfdb3808aebbe7dfbbd3510c7070388f5813e8bc63be744b99116c4b84ea37d57c5da7a80cc883aa915d84a249ebfa78ceb124c63b3a0720b19483189ee50824e8581556f0520e434803204cd0f3dd09fc97c979f9a7e3f8e5eca8fccde98fc4939551338235c0c6378faade0d18f7050f29189485e01ec120239373c5478cd19ab27570921415a6680924baf9c5829f3f2115460d1fceb8a026fa1a0a0047fe1cd6fcf1861dd3784e006abfddfe79461c5001e4e32d99c5bc203c21f8c711c5ecccf8941093d95a8db73722bb7511443fb2670244cc1249492e92fc4bf7e06ec6f08c5c6931929d58232b551957b771ea5e4a932b037904b81916e662e3fe95af894e80f699e5c00ab664f381bd9c0bd4132290b3cf367577429fa52c0f1c44ffc626c215e7103cba05bff4931d9a202c1eb9068f44983d1e0c6d9fb5fed738561651e854a3c1b362ae354a0b4a270386ed2dbef093bd82f07f25edfae31901cb86fd214576b25f769bcb215214c63026b2581a8d17779aae03ba310f3243b3631f4b01c9e3eb342c3bdb44d8e47cdc1683e3b1cfffef72e385cc8831f99425fc406575170e1c106618d5429144a436b9e92d241d8118b5cbe0dca5e8ddd86e671e13080eddcf8dee9e317d192a3a5386378de9b1ecd8cf5439cfbe9f65965e5a5f6c145627ac23fe30c2e06e623b0eca15b225b32b65ce568b656cec0e0d6752fdebffd39c7538472ad7a195b56fcad3fab80016ff006df6b01d785191e4fca143b14ce68b32571476a779515ccb14d35cf9aabd4849c03c9bf12a42cfc2a7146ed6c25892a9d1c48f95314f641142d38cd882e54534d69b3fcc18044309e6debef6dc79d7737956418b955d33737115b44360e0bac14b71e2e64f0c8aea428dce5b65e210c108f832a6041c0aab116488e5863cd1039dc8af537908be3541352bdad303de43387503d19d7c0f0390bdc5b95f1dfb0701fd0e14a22c210837cc0a1cb059de474f4476bfe9bddfe3e7977fb299e82d9eefb18111f7c4a5fbd406fca720fec69340d978f4c9832204d67f6fa5793325e04d4af84acde0b56158e4c606394286a4b3cfc04a426a665529b753e1ce2d6c613159844bd069a67b5b96cb8ec993f05a8e252ed3d8ed63d524af0845f519f9d47b85a773f37031cb91055fb963db50e6a1e368f10a82fa40ac055e0201c6d29661eadb76f8154ef9c1cc210ccf1ccb063e8c00324ed6a14fdefa0167a9abb04debbbf5e7b8a57a7772373c765947f0f67b5130d77a6ca6ab166147d4eba97b4ddf1465d25b02f4430227b5713a29fd84664bfdfa5fc450e48f5263eaca67c16033b79bf1cb819511cf16bae6ffd5d05a7d9cc93067b6f2512fea2424a9c7d178f653ffa7ce1c00924707e3817c7cd461cb2a8cc5eadc408a1258eaad7720ee3976c5a60025c317480016e5e5bd884f3646651f3bdc1185ec1a4112eb24ba5b3b6f94ac66322042d4bc48cb5befabfcf950cf8a0165fba3fa019324b53fb56bbfaec7f4ec733e84c22f841c1c9c1dc51dd3ac4887e155ac4095a6b8846c8f401f3c2d48d4de18906193a9f05ed59e3b0add8bc27c0bad8418ccbb842123ce1d39fdeeaa7984dfba9ef121ab4d4d35de076262636f3815708e4bcf31e634a290b13317425b1a4a2e4ebf8537092c7e524c126faa9622bf1337168e003857805dd420a51816fea3cd37c34e483f64a2da3ab67442314ffff40727835a1bc7b9971ccb5f83183cf1a135defd468907b988d97028f904c4d9c712f7d0ed6abe4d80712a7b7e06efcbe6a5b83e32beb1556326af7a97437c35c6a706c6cf4403b98f5134547ac167fd1abcb9245ec3450202ab80e553952412032a6c3cfa64441d4aecabd1e182c50bf67801fd3b44b40648ac9926bbbd7095425a429f2a9550c2fd1267cbf6156897b705255cadf1c7f233f4effd788b3f446dba19e68bbf8b42ff6caf984a4eb51328ab5e2bc28366e8b4df4df967a16d470a00", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="50010000000000000000000000000000060000000000000002000000000000000600000000000000060000000000000005000000ffffffff090000000000000003000000000000000e010000000000000400000000000000000000000000000008000000000000000001000003000000040000000020000005000000", @ANYRES32, @ANYRES32, @ANYBLOB="0300000007000000000000000400000000000000000003000000000008"], 0x0, 0x0, 0x0})
syz_fuse_handle_req(r10, &(0x7f0000000880)="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", 0x2000, &(0x7f0000003ac0)={&(0x7f0000000380)={0x50, 0xfffffffffffffffe, 0x7ff, {0x7, 0x2b, 0x782, 0x40840, 0x20, 0x6, 0x4, 0xfffffffb, 0x0, 0x0, 0x8, 0xd7f6}}, &(0x7f0000000400)={0x18, 0x0, 0x80000001, {0x6}}, &(0x7f0000000440)={0x18, 0x0, 0x10001}, &(0x7f0000000480)={0x18, 0x0, 0x7}, &(0x7f0000000500)={0x18, 0x0, 0x0, {0x5}}, &(0x7f00000005c0)={0x28, 0x0, 0x1, {{0xd5b, 0xaad1, 0xfcccb885a81d54b9}}}, &(0x7f0000000780)={0x60, 0x0, 0x100, {{0x4, 0x2, 0x5ee, 0x4, 0x8000000000000001, 0x7, 0xa, 0x7fff}}}, &(0x7f0000000700)={0x18, 0x0, 0x2, {0xb428}}, &(0x7f0000000800)={0x1a, 0x0, 0x6, {'/dev/rtc0\x00'}}, &(0x7f0000002880)={0x20, 0x0, 0x1, {0x0, 0x8}}, &(0x7f0000002900)={0x78, 0x0, 0x7fff, {0x7, 0xf5, 0x0, {0x0, 0x685110e6, 0x4, 0x2, 0x7, 0x5, 0xfffffffc, 0x20, 0x0, 0x6000, 0x73, 0x0, 0x0, 0x2, 0x2}}}, &(0x7f0000002a40)={0x90, 0x0, 0x80000000, {0x4, 0x2, 0x3, 0x4, 0x0, 0x5, {0x6, 0x7, 0x3ff, 0x0, 0x5, 0x4, 0x8, 0x1, 0x50, 0xa000, 0x0, 0x0, 0x0, 0x5d07, 0x1}}}, &(0x7f0000002b00)={0xb8, 0x0, 0x4, [{0x4, 0x8000, 0xf, 0x6, '/dev/sequencer\x00'}, {0x1, 0x1, 0x7, 0x1, 'status\x00'}, {0x3, 0x8c, 0x2, 0x7fff, '-@'}, {0x5, 0x61c5ef8d, 0x4, 0x4, '-[%#'}, {0x0, 0x80000001, 0x7, 0x94b1, 'status\x00'}]}, &(0x7f0000003200)={0x520, 0x0, 0xfffffffffffffffe, [{{0x4, 0x3, 0xb, 0x76, 0xa844, 0xfffff001, {0x0, 0xfffffffffffffffb, 0x5, 0xb, 0x73, 0xffffffffffffffff, 0x7fff, 0x7, 0x40, 0x6000, 0x3, 0x0, 0x0, 0x3, 0x8}}, {0x6, 0x200, 0x12, 0x8, '/dev/snd/midiC#D#\x00'}}, {{0x1, 0x3, 0xef9, 0x1b6e, 0x9, 0x532, {0x2, 0x1, 0x6, 0x7, 0x9, 0x3, 0x5, 0xa, 0xdc, 0x8000, 0x9684, 0x0, 0x0, 0x5, 0x4}}, {0x0, 0x3, 0xf, 0x2, '/dev/sequencer\x00'}}, {{0x2, 0x1, 0x5, 0x80c6, 0x8, 0x8000, {0x0, 0x3, 0x7, 0x8, 0x0, 0x2, 0xe, 0xb, 0x8, 0x6000, 0x800, 0x0, 0x0, 0xb7, 0x8}}, {0x2, 0x8, 0x4, 0x44, 'GPL\x00'}}, {{0x5, 0x2, 0x1, 0x7, 0x9, 0xb394, {0x6, 0x7e56, 0xb, 0x100, 0x1, 0x3, 0x4, 0x0, 0x40, 0x6000, 0x8001, 0xee00, 0x0, 0xf8ed, 0xcd20}}, {0x4, 0x6, 0x2, 0x2, '/,'}}, {{0x1, 0x0, 0x2, 0x401, 0x48000, 0x5, {0x2, 0x883, 0x7, 0x8001, 0x8, 0x6, 0x8, 0x1, 0xa, 0xa000, 0x3ac, 0x0, 0x0, 0x6, 0x7fff}}, {0x4, 0x2}}, {{0x6, 0x4, 0x2000200, 0x8, 0x9, 0x2, {0x0, 0x8, 0x6, 0x7, 0x4f, 0x0, 0x9, 0x7ed3, 0x3, 0x8000, 0x7f, 0x0, 0x0, 0x1, 0x3}}, {0x6, 0x7, 0x2, 0x6, '}!'}}, {{0x5, 0x2, 0x2800000, 0xa, 0x1000, 0x8001, {0x4, 0xe, 0x6, 0x3, 0x1, 0x3, 0x0, 0xe, 0x9, 0xc000, 0x7, 0x0, 0xee00, 0x401, 0x5}}, {0x2, 0x0, 0x1, 0xabe3927, '\x00'}}, {{0x2, 0x0, 0x0, 0x8, 0x3, 0x3, {0x4, 0x4, 0x629ff392, 0x6, 0x9, 0x10001, 0x80000001, 0x200, 0x1, 0xc000, 0x2, 0x0, 0x0, 0x3, 0x7}}, {0x1, 0x5, 0x5, 0x80000001, 'p+(%('}}]}, &(0x7f0000003880)={0xa0, 0x0, 0x31400000000, {{0x2, 0x2, 0xff, 0x8, 0x81, 0x725, {0x1, 0xbfa, 0x480, 0x9, 0x2, 0x3, 0x514c, 0x5, 0x10001, 0x4000, 0x7, 0xee01, 0x0, 0x6, 0x8}}, {0x0, 0x11}}}, &(0x7f0000003940)={0x20, 0x24, 0xb, {0x3, 0x4, 0xffffffff, 0xa}}, &(0x7f0000003980)={0x130, 0x0, 0xc3f, {0x7, 0x7, 0x0, '\x00', {0x4000, 0x3, 0x0, 0x7, 0x0, 0x0, 0x1000, '\x00', 0x20000000000, 0xffffffff, 0x9, 0x10000, {0x400, 0x312}, {0x40d7}, {0x5, 0xb}, {0x1cde, 0x80000000}, 0x88a7, 0x7, 0x8e, 0x3}}}})
ioctl$TIOCVHANGUP(r8, 0x5437, 0x2)
socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000200)={0x17, 0x20, 0x13, 0x1b, 0xb, 0x46, 0x4, 0xf5, 0x1})

2.116783062s ago: executing program 6 (id=2684):
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16, @ANYBLOB="05000000000000", @ANYBLOB="3d000e0080000000ffffffffffff080211000000ffffffffffff0000feffffffffffffff070001000406f0027f0006a7000c006400000008000d000000000073f68ac399765b7ab289a21d254ebf1c30920188d7e0527bff31151da7c57628327841e9134f4b1b378b"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), 0x0, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4800000010000504"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.720044211s ago: executing program 5 (id=2685):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000007c0)=ANY=[@ANYBLOB], 0x9)
sched_setattr(0x0, 0x0, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[], 0xf)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xf691, 0x10100, 0xfffffffe, 0x2b4}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f00000001c0))
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000380), 0x2, 0x0)

1.039066706s ago: executing program 4 (id=2686):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x23, 0x2, 0x0, &(0x7f0000000040))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000020c0)=ANY=[@ANYBLOB="18000000900c0000000000000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r7}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
r8 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x50, 0x14, 0xf0b, 0xfffffffe, 0x0, {0x2, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xfff1, 0x5}, {0x6, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x24, 0x2, [@TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0x1ed0}, @TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x1}, @TCA_HHF_EVICT_TIMEOUT={0x8, 0x6, 0x9}, @TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x10000000}]}}]}, 0x50}}, 0x0)
ioctl$VIDIOC_S_CROP(r6, 0x4014563c, &(0x7f0000000180)={0xa, {0x4, 0x80000000, 0x27c, 0x63f3}})
write$sndseq(r0, &(0x7f0000000280)=[{0x84, 0x77, 0x0, 0x0, @time={0x401, 0x100003}, {0xfd}, {0x7, 0x1}, @raw32={[0x2, 0x0, 0x8000000]}}, {0x2, 0x0, 0x4, 0x3, @tick, {0xfd}, {}, @note={0xfa}}, {0x6, 0x3, 0x9, 0xff, @tick=0x1, {0x10, 0x5}, {0xc, 0x2}, @queue={0x2b, {0x7ff, 0x8009}}}], 0x54)

816.870948ms ago: executing program 7 (id=2687):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
r1 = epoll_create1(0x0)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001})
ioprio_set$uid(0x3, 0x0, 0x0)
r4 = memfd_create(&(0x7f0000000640)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\xfd\x89\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\rW\xef\x10\xd6d#\xf2\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8\x1f\xb2C\xf8\'?]\x16C\x166\xc0\xbcJT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8', 0x2)
pwritev(r4, &(0x7f0000000540)=[{&(0x7f0000000600)='\x00', 0x1}], 0x1, 0x7fffff, 0x8)
epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
close(r3)
shutdown(r2, 0x0)
close(r1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)

512.096248ms ago: executing program 6 (id=2688):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d3750820c80a2103be6f000000010902"], 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000380)={0x30, 0x5, 0x0, {0x0, 0x1, 0x4, 0x81}}, 0x30)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000080)={0x50, 0x0, 0x200000000000, {0x7, 0x29, 0x7, 0xa110000, 0xc9f, 0xfff, 0x800, 0x5, 0x0, 0x0, 0x10, 0x400}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) (async)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) (async)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3}) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) (async)
syz_fuse_handle_req(r0, &(0x7f0000006400)="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", 0x2000, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
socket$vsock_stream(0x28, 0x1, 0x28) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) (async)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2982, 0x0) (async)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYBLOB], 0x50)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000600)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b509020002000000739a04fe00000000b509000000000000c39a04fee1000000bf8700000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800010000000056080000010000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socket$rxrpc(0x21, 0x2, 0x2)

465.653439ms ago: executing program 4 (id=2689):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
r1 = epoll_create1(0x0)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001})
epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0) (fail_nth: 3)
close(r3)
shutdown(r2, 0x0)
close(r1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)

200.452136ms ago: executing program 7 (id=2690):
r0 = openat$nullb(0xffffffffffffff9c, 0x0, 0x2c240, 0x0)
keyctl$join(0x1, 0xfffffffffffffffd)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
fsopen(&(0x7f0000000000)='btrfs\x00', 0x0)
r6 = add_key$keyring(&(0x7f0000000240), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000580)={0x0, 0x0, 0x3, 0x0, '\x00', [{0x9, 0x8001, 0xe, 0x4, 0x5, 0x1}, {0xfffffff8, 0x9, 0xe, 0x2, 0x5, 0x8}], ['\x00', '\x00', '\x00']})
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30800201", 0x1001, r6)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xc8}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000440)={r0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe78b39843d601010000000000080d0ec0c1b4e9b1c4369d03741250ceaac50104000041dd17c18e8438ef2a565ef1e833236500", "a1163939c787a16c1ca43f8539f3d3289737f0374c72a964a0193b3e8772fd29f35239d200", "24431a1e77a682174f000000000000000010e200"}})

176.809521ms ago: executing program 5 (id=2691):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0), 0x0, 0x9200000000000000)
socket(0x10, 0x80002, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000e00), 0x0, 0x22002, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="20000000150a0103fbff00000000000000000000090000"], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x24040808)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7f, 0x0, &(0x7f0000000000))
sendfile(r2, r1, 0x0, 0x17)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[], 0x0}, 0x94)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002140)=ANY=[])

0s ago: executing program 0 (id=2692):
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='personality\x00') (async)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x5, &(0x7f0000000140)={0x6, 0x8b}, 0x0) (async)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000140))
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
mkdir(&(0x7f0000000200)='./file0\x00', 0x0) (async)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r2, &(0x7f000000e280)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_BMAP(r2, &(0x7f0000000080)={0x18, 0x0, r3, {0x7}}, 0x18) (async)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000340)={[], [{@obj_user={'obj_user', 0x3d, 'tmpfs\x00'}}], 0x2f})
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000200)=0x3, 0x4)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}, 0x1c) (async)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x8000, 0x0) (async)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') (async)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) (async)
openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r5, 0x3b8c, &(0x7f0000000300)={0x30, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x1000, 0x0})
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000440)={0x8094, r1}, 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2) (async)
setsockopt$sock_linger(r4, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c) (async)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000380)="35d685dc99758e89d44dc93b95f11316321989c8f11ca6fdac44f0e420ab7aa0fa4318fb1f239804fdeb90f60d9aef58d46edae1d99d7f9ffd1a2ab923b48c928e139bdaee677fe791bb728399c0e791d6ebec1cbf677fb7c9d9729bdb7376f32c09134a3e387132650d6c6a333bf9890a0da29f83f0df00f99685a7c636652acd21e1c46ebc8f6fa2ae09a6f3f5c05eb84efc525bebb517ddde4a21", 0x9c}], 0x1}}], 0x1, 0x4001c00)

kernel console output (not intermixed with test programs):

nd cannot be enslaved
[  499.934776][T11542] xt_CT: You must specify a L4 protocol and not use inversions on it
[  501.508387][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  502.036584][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  503.278986][T11557] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1812'.
[  503.317531][T11557] netlink: 'syz.1.1812': attribute type 2 has an invalid length.
[  503.439011][T11560] mkiss: ax0: crc mode is auto.
[  503.448264][T11557] netlink: 'syz.1.1812': attribute type 2 has an invalid length.
[  503.509087][T11557] netlink: 'syz.1.1812': attribute type 2 has an invalid length.
[  503.578574][T11557] netlink: 'syz.1.1812': attribute type 2 has an invalid length.
[  504.382795][T11557] netlink: 'syz.1.1812': attribute type 1 has an invalid length.
[  504.467960][T11557] netlink: 'syz.1.1812': attribute type 1 has an invalid length.
[  504.722700][T11557] netlink: 'syz.1.1812': attribute type 1 has an invalid length.
[  504.731018][T11557] netlink: 'syz.1.1812': attribute type 2 has an invalid length.
[  504.743657][T11557] netlink: 'syz.1.1812': attribute type 1 has an invalid length.
[  506.321471][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1821'.
[  507.942272][T11605] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1826'.
[  508.220055][T11604] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  508.234311][T11604] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  508.250011][T11604] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  508.259071][T11604] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  508.274678][T11612] mkiss: ax0: crc mode is auto.
[  509.404774][T11627] syz!: rxe_newlink: already configured on team_slave_0
[  510.183740][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  510.484237][ T5854] Bluetooth: hci5: command 0x0419 tx timeout
[  510.490305][ T5854] Bluetooth: hci3: command 0x0c1a tx timeout
[  510.496381][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  510.635097][T11624] syzkaller0: entered promiscuous mode
[  510.640759][T11624] syzkaller0: entered allmulticast mode
[  512.971218][T11651] tls_set_device_offload_rx: netdev not found
[  512.993026][T11651] input input13: cannot allocate more than FF_MAX_EFFECTS effects
[  513.418046][T11655] netlink: 'syz.4.1842': attribute type 2 has an invalid length.
[  513.451270][T11655] netlink: 'syz.4.1842': attribute type 1 has an invalid length.
[  513.481336][T11655] netlink: 'syz.4.1842': attribute type 1 has an invalid length.
[  514.544875][T11678] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  516.931621][T11692] PKCS8: Unsupported PKCS#8 version
[  517.681915][T11694] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1853'.
[  518.903749][T11707] syz!: rxe_newlink: already configured on team_slave_0
[  519.359744][T11709] netlink: 'syz.1.1858': attribute type 2 has an invalid length.
[  519.368492][T11709] netlink: 'syz.1.1858': attribute type 1 has an invalid length.
[  519.386290][T11709] netlink: 'syz.1.1858': attribute type 1 has an invalid length.
[  522.853202][T11730] netlink: 'syz.5.1863': attribute type 2 has an invalid length.
[  522.861078][T11730] netlink: 'syz.5.1863': attribute type 1 has an invalid length.
[  522.891828][T11730] netlink: 'syz.5.1863': attribute type 1 has an invalid length.
[  524.293912][ T5845] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  524.308117][ T5845] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  524.319486][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  524.329720][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  524.340721][ T5845] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  524.723425][T11669] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  524.805197][T11669] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  524.835270][T11669] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  525.552174][T11751] cifs: Unknown parameter 'mode'
[  526.394036][ T5854] Bluetooth: hci4: command tx timeout
[  526.620044][T11737] lo speed is unknown, defaulting to 1000
[  527.941740][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.168404][T11775] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  528.253546][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.462350][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.462631][ T5854] Bluetooth: hci4: command tx timeout
[  529.135725][T11785] tls_set_device_offload_rx: netdev not found
[  529.145975][T11785] input input14: cannot allocate more than FF_MAX_EFFECTS effects
[  529.604246][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.542692][ T5854] Bluetooth: hci4: command tx timeout
[  530.554402][T11795] tls_set_device_offload_rx: netdev not found
[  530.581664][T11795] input input15: cannot allocate more than FF_MAX_EFFECTS effects
[  531.011425][T11789] tls_set_device_offload_rx: netdev not found
[  531.026082][T11789] input input16: cannot allocate more than FF_MAX_EFFECTS effects
[  531.044137][T11737] chnl_net:caif_netlink_parms(): no params data found
[  531.498300][   T12] bridge_slave_1: left allmulticast mode
[  531.549442][   T12] bridge_slave_1: left promiscuous mode
[  531.569841][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.638509][   T12] bridge_slave_0: left allmulticast mode
[  532.366105][   T12] bridge_slave_0: left promiscuous mode
[  532.391386][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.623967][ T5854] Bluetooth: hci4: command tx timeout
[  533.064573][T11816] cifs: Unknown parameter 'mode'
[  533.114576][T11818] netlink: 'syz.0.1888': attribute type 2 has an invalid length.
[  533.126272][T11818] netlink: 'syz.0.1888': attribute type 1 has an invalid length.
[  533.157121][T11818] netlink: 'syz.0.1888': attribute type 1 has an invalid length.
[  533.286976][T11821] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1889'.
[  533.999771][   T12] bond0 (unregistering): (slave geneve0): Releasing backup interface
[  534.240912][T11832] tls_set_device_offload_rx: netdev not found
[  534.970146][T11837] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  535.728958][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  535.760579][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  536.006153][   T12] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  536.935856][   T12] bond0 (unregistering): Released all slaves
[  537.173445][T11827] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  537.322850][T11827] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  537.362602][T11827] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  539.978134][T11868] mkiss: ax0: crc mode is auto.
[  542.047378][T11737] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.067459][T11737] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.150002][T11737] bridge_slave_0: entered allmulticast mode
[  543.244054][T11737] bridge_slave_0: entered promiscuous mode
[  543.293999][T11737] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.301190][T11737] bridge0: port 2(bridge_slave_1) entered disabled state
[  543.309102][T11737] bridge_slave_1: entered allmulticast mode
[  543.318997][T11737] bridge_slave_1: entered promiscuous mode
[  543.688750][T11894] xt_CT: You must specify a L4 protocol and not use inversions on it
[  544.716503][T11895] tls_set_device_offload_rx: netdev not found
[  544.754537][T11895] input input17: cannot allocate more than FF_MAX_EFFECTS effects
[  544.864540][T11737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  545.149065][T11737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  549.432958][   T12] hsr_slave_0: left promiscuous mode
[  549.505923][   T12] hsr_slave_1: left promiscuous mode
[  549.534340][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  549.552995][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  549.752163][   T12] veth0_macvtap: left promiscuous mode
[  549.796483][   T12] veth1_vlan: left promiscuous mode
[  549.802803][   T12] veth0_vlan: left promiscuous mode
[  549.884651][T11933] PKCS8: Unsupported PKCS#8 version
[  551.109987][T11943] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  551.158677][T11948] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1921'.
[  552.991935][   T12] team0 (unregistering): Port device team_slave_1 removed
[  553.049347][   T12] team0 (unregistering): Port device team_slave_0 removed
[  553.078427][T11960] Bluetooth: MGMT ver 1.23
[  553.494713][T11737] team0: Port device team_slave_0 added
[  553.573345][T11957] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  553.625144][T11737] team0: Port device team_slave_1 added
[  553.632670][T11957] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  553.672713][T11957] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  554.382307][T11737] batman_adv: batadv0: Adding interface: batadv_slave_0
[  554.394505][T11737] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  554.425511][T11969] xt_CT: You must specify a L4 protocol and not use inversions on it
[  555.160555][T11737] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  555.182566][T11737] batman_adv: batadv0: Adding interface: batadv_slave_1
[  555.193748][T11737] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.245492][T11737] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  559.783299][T11985] tls_set_device_offload_rx: netdev not found
[  559.934669][T11985] input input18: cannot allocate more than FF_MAX_EFFECTS effects
[  559.936673][T11737] hsr_slave_0: entered promiscuous mode
[  560.034984][T11737] hsr_slave_1: entered promiscuous mode
[  560.078517][T11992] cifs: Unknown parameter 'mode'
[  560.560549][T11999] input input19: cannot allocate more than FF_MAX_EFFECTS effects
[  560.916539][   T12] IPVS: stop unused estimator thread 0...
[  561.307226][T12005] netlink: 'syz.5.1938': attribute type 2 has an invalid length.
[  561.405533][T12005] netlink: 'syz.5.1938': attribute type 1 has an invalid length.
[  561.666699][T11737] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  562.252608][   T24] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  562.267115][T11737] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  562.291966][T11737] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  562.318740][T11737] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  562.432556][   T24] usb 5-1: Using ep0 maxpacket: 32
[  562.450271][   T24] usb 5-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  562.467713][   T24] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  562.477389][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  562.486053][   T24] usb 5-1: Product: syz
[  562.490554][   T24] usb 5-1: Manufacturer: syz
[  562.495564][   T24] usb 5-1: SerialNumber: syz
[  562.503845][   T24] usb 5-1: config 0 descriptor??
[  562.643904][   T24] cdc_ether 5-1:0.0: probe with driver cdc_ether failed with error -22
[  562.832843][T12030] syz!: rxe_newlink: already configured on team_slave_0
[  562.951949][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  562.964869][   T24] usb 5-1: unsupported MDLM descriptors
[  562.965492][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  563.557130][T12035] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1944'.
[  564.115508][T11737] 8021q: adding VLAN 0 to HW filter on device bond0
[  564.188922][T11737] 8021q: adding VLAN 0 to HW filter on device team0
[  564.231152][ T6430] bridge0: port 1(bridge_slave_0) entered blocking state
[  564.238488][ T6430] bridge0: port 1(bridge_slave_0) entered forwarding state
[  564.265987][ T6430] bridge0: port 2(bridge_slave_1) entered blocking state
[  564.273351][ T6430] bridge0: port 2(bridge_slave_1) entered forwarding state
[  564.304304][T12042] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  564.547867][  T976] usb 5-1: USB disconnect, device number 15
[  564.961717][T12056] netlink: 'syz.4.1951': attribute type 2 has an invalid length.
[  564.980708][T12056] netlink: 'syz.4.1951': attribute type 1 has an invalid length.
[  565.055725][T12053] syzkaller0: entered promiscuous mode
[  565.072867][T12053] syzkaller0: entered allmulticast mode
[  565.480072][T12068] cifs: Unknown parameter 'mode'
[  569.578364][T11737] 8021q: adding VLAN 0 to HW filter on device batadv0
[  569.614316][T12081] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  569.625546][T12074] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  569.667224][T12074] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  569.693106][T12074] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  570.264501][   T24] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  570.498882][T12101] netlink: 'syz.0.1964': attribute type 1 has an invalid length.
[  570.507166][   T24] usb 6-1: Using ep0 maxpacket: 32
[  570.529592][   T24] usb 6-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  570.548422][   T24] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  570.559964][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  570.604340][   T24] usb 6-1: Product: syz
[  570.612643][   T24] usb 6-1: Manufacturer: syz
[  570.619083][   T24] usb 6-1: SerialNumber: syz
[  570.648887][   T24] usb 6-1: config 0 descriptor??
[  570.672252][   T24] cdc_ether 6-1:0.0: probe with driver cdc_ether failed with error -22
[  570.702245][   T24] usb 6-1: unsupported MDLM descriptors
[  571.469143][T12113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1965'.
[  571.794256][T12112] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  571.800377][T12112] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  571.806789][T12112] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  571.812868][T12112] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  571.818971][T12112] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  571.833425][T12112] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  571.869577][T11737] veth0_vlan: entered promiscuous mode
[  571.894951][T12121] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1968'.
[  571.970112][T12121] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  572.190363][T12123] netlink: 'syz.1.1969': attribute type 2 has an invalid length.
[  572.220177][T12123] netlink: 'syz.1.1969': attribute type 1 has an invalid length.
[  572.262349][T12123] netlink: 'syz.1.1969': attribute type 1 has an invalid length.
[  572.326037][T12121] batman_adv: batadv0: Removing interface: batadv_slave_1
[  572.367819][T11737] veth1_vlan: entered promiscuous mode
[  572.446914][T12120] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  572.462951][T12120] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  572.477031][T11737] veth0_macvtap: entered promiscuous mode
[  572.486697][T12120] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  572.495547][T12120] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  572.506094][T11737] veth1_macvtap: entered promiscuous mode
[  572.584273][T11737] batman_adv: batadv0: Interface activated: batadv_slave_0
[  572.621688][T11737] batman_adv: batadv0: Interface activated: batadv_slave_1
[  572.715357][T12130] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  572.875696][T11737] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  572.886485][ T5888] usb 6-1: USB disconnect, device number 13
[  572.996528][T11737] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  574.143321][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout
[  574.552861][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  574.552965][ T5854] Bluetooth: hci5: command 0x0419 tx timeout
[  574.558923][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout
[  575.703347][T11737] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  575.712071][T11737] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  576.622815][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  578.336654][ T5888] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  578.363073][ T6263] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  578.371014][ T6263] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.502595][ T5888] usb 5-1: Using ep0 maxpacket: 32
[  578.509783][ T5888] usb 5-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  578.572011][ T6263] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  578.585629][ T5888] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  578.602721][ T6263] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.632638][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  578.678770][ T5888] usb 5-1: Product: syz
[  578.703126][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  578.712751][ T5888] usb 5-1: Manufacturer: syz
[  578.717394][ T5888] usb 5-1: SerialNumber: syz
[  578.758026][T12160] mkiss: ax0: crc mode is auto.
[  578.766374][ T5888] usb 5-1: config 0 descriptor??
[  578.777880][ T5888] cdc_ether 5-1:0.0: probe with driver cdc_ether failed with error -22
[  578.910567][ T5888] usb 5-1: unsupported MDLM descriptors
[  579.392912][T12172] netlink: 'syz.1.1979': attribute type 1 has an invalid length.
[  579.472670][   T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  579.513034][T12174] netlink: 'syz.5.1980': attribute type 2 has an invalid length.
[  579.528431][T12174] netlink: 'syz.5.1980': attribute type 1 has an invalid length.
[  579.546930][T12174] netlink: 'syz.5.1980': attribute type 1 has an invalid length.
[  579.889201][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  579.997922][T12182] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  580.058590][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  580.192713][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  580.437486][    T9] usb 5-1: USB disconnect, device number 16
[  580.458855][   T24] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  580.618177][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.645158][T12186] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  580.683649][   T24] usb 7-1: config 0 descriptor??
[  581.352859][    T9] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  581.722778][    T9] usb 5-1: Using ep0 maxpacket: 32
[  581.764909][    T9] usb 5-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  581.985714][    T9] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  581.994320][   T24] usbhid 7-1:0.0: can't add hid device: -71
[  582.008307][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  582.319533][   T24] usb 7-1: USB disconnect, device number 2
[  582.337617][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  582.422549][    T9] usb 5-1: Product: syz
[  582.426766][    T9] usb 5-1: Manufacturer: syz
[  582.447427][    T9] usb 5-1: SerialNumber: syz
[  582.477083][    T9] usb 5-1: config 0 descriptor??
[  582.498037][    T9] cdc_ether 5-1:0.0: probe with driver cdc_ether failed with error -22
[  582.537579][    T9] usb 5-1: unsupported MDLM descriptors
[  582.965158][T12212] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  583.818980][   T24] usb 5-1: USB disconnect, device number 17
[  584.315845][T12220] xt_CT: You must specify a L4 protocol and not use inversions on it
[  586.435225][T12240] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  587.962665][ T5888] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  588.232928][ T5888] usb 2-1: Using ep0 maxpacket: 32
[  588.240660][ T5888] usb 2-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  588.263708][ T5888] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  588.302982][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  588.343910][ T5888] usb 2-1: Product: syz
[  588.369304][ T5888] usb 2-1: Manufacturer: syz
[  588.382732][T12258] netlink: 'syz.0.2003': attribute type 2 has an invalid length.
[  588.390759][ T5888] usb 2-1: SerialNumber: syz
[  588.407809][T12256] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2002'.
[  588.450833][T12258] netlink: 'syz.0.2003': attribute type 1 has an invalid length.
[  588.540622][   T10] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  588.559871][ T5888] usb 2-1: config 0 descriptor??
[  588.568598][ T5888] cdc_ether 2-1:0.0: probe with driver cdc_ether failed with error -22
[  588.577729][ T5888] usb 2-1: unsupported MDLM descriptors
[  588.734106][T12263] tls_set_device_offload_rx: netdev not found
[  588.755218][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  588.801334][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  588.819908][T12263] input input20: cannot allocate more than FF_MAX_EFFECTS effects
[  588.838700][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  589.077934][   T10] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  589.134800][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.528779][T12274] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  589.890818][   T10] usb 6-1: config 0 descriptor??
[  590.222163][    T9] usb 2-1: USB disconnect, device number 9
[  591.210738][T12283] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2011'.
[  591.263178][T12285] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  591.583320][   T10] usbhid 6-1:0.0: can't add hid device: -71
[  591.589480][   T10] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  591.625809][   T10] usb 6-1: USB disconnect, device number 14
[  591.669667][T12295] netlink: 'syz.4.2017': attribute type 2 has an invalid length.
[  591.885403][T12296] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2015'.
[  592.207462][T12303] netlink: 'syz.0.2019': attribute type 2 has an invalid length.
[  592.224461][T12303] netlink: 'syz.0.2019': attribute type 1 has an invalid length.
[  592.311655][T12308] PKCS8: Unsupported PKCS#8 version
[  593.330554][T12303] netlink: 'syz.0.2019': attribute type 1 has an invalid length.
[  594.042708][T12322] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2023'.
[  594.761862][T12327] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2022'.
[  594.932752][T12327] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  595.707798][T12327] batman_adv: batadv0: Removing interface: batadv_slave_1
[  595.946557][T12339] xt_CT: You must specify a L4 protocol and not use inversions on it
[  596.249248][T12338] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  596.816621][T12324] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  596.854298][T12324] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  596.880668][T12324] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  596.896604][T12324] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  597.276323][T12348] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2031'.
[  597.407296][T12355] PKCS8: Unsupported PKCS#8 version
[  597.833759][ T5837] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  598.229252][ T5837] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  598.312333][ T5837] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  598.426612][ T5837] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  598.541632][ T5837] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  598.571698][ T5837] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.594830][T12366] netlink: 'syz.1.2037': attribute type 2 has an invalid length.
[  598.602829][T12366] netlink: 'syz.1.2037': attribute type 1 has an invalid length.
[  598.611255][T12366] netlink: 'syz.1.2037': attribute type 1 has an invalid length.
[  598.628419][ T5837] usb 7-1: config 0 descriptor??
[  598.873172][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout
[  598.879530][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  598.943187][ T5836] Bluetooth: hci5: command 0x0419 tx timeout
[  598.949984][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  599.047104][T12374] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  599.875599][T12383] tls_set_device_offload_rx: netdev not found
[  599.885121][T12383] input input21: cannot allocate more than FF_MAX_EFFECTS effects
[  599.929540][ T5837] usbhid 7-1:0.0: can't add hid device: -71
[  599.958553][ T5837] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  600.013009][ T5837] usb 7-1: USB disconnect, device number 3
[  600.469946][T12392] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2045'.
[  600.595879][T12390] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2045'.
[  600.662709][T12393] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2045'.
[  601.142400][T12401] PKCS8: Unsupported PKCS#8 version
[  602.771311][T12419] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  602.795341][ T5888] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  603.161790][ T5888] usb 7-1: Using ep0 maxpacket: 32
[  603.206513][ T5888] usb 7-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  603.385972][ T5888] usb 7-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  603.492784][ T5888] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  603.500991][ T5888] usb 7-1: Product: syz
[  603.527889][T12428] netlink: 'syz.1.2053': attribute type 2 has an invalid length.
[  603.542595][ T5888] usb 7-1: Manufacturer: syz
[  603.551920][T12428] netlink: 'syz.1.2053': attribute type 1 has an invalid length.
[  603.567063][T12428] netlink: 'syz.1.2053': attribute type 1 has an invalid length.
[  603.584802][ T5888] usb 7-1: SerialNumber: syz
[  603.620894][ T5888] usb 7-1: config 0 descriptor??
[  603.647703][ T5888] cdc_ether 7-1:0.0: probe with driver cdc_ether failed with error -22
[  603.667098][ T5888] usb 7-1: unsupported MDLM descriptors
[  603.950424][T12435] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  604.278626][T12438] xt_CT: You must specify a L4 protocol and not use inversions on it
[  605.222693][ T5917] usb 7-1: USB disconnect, device number 4
[  605.238476][T12449] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2059'.
[  605.259125][T12448] cifs: Unknown parameter 'mode'
[  605.293051][T12447] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2059'.
[  605.317028][T12449] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2059'.
[  605.610932][T12452] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  607.728784][T12473] PKCS8: Unsupported PKCS#8 version
[  608.737604][T12483] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  608.901703][T12487] mkiss: ax0: crc mode is auto.
[  610.161461][T12497] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2072'.
[  610.201736][T12497] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2072'.
[  610.247266][T12492] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2072'.
[  610.343420][T12498] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  615.872871][   T24] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  616.357055][T12529] tls_set_device_offload_rx: netdev not found
[  616.364485][T12529] input input22: cannot allocate more than FF_MAX_EFFECTS effects
[  616.462683][T12532] trusted_key: encrypted_key: key user:syz not found
[  617.043103][   T24] usb 1-1: Using ep0 maxpacket: 32
[  617.070337][   T24] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  617.096967][   T24] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  617.120041][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  617.145895][   T24] usb 1-1: Product: syz
[  617.150264][   T24] usb 1-1: Manufacturer: syz
[  617.157214][   T24] usb 1-1: SerialNumber: syz
[  617.271135][   T24] usb 1-1: config 0 descriptor??
[  617.444548][   T24] cdc_ether 1-1:0.0: probe with driver cdc_ether failed with error -22
[  617.448914][T12536] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2085'.
[  617.473109][   T24] usb 1-1: unsupported MDLM descriptors
[  617.812640][T12541] mkiss: ax0: crc mode is auto.
[  618.722209][ T5888] usb 1-1: USB disconnect, device number 14
[  618.823413][T12553] cifs: Unknown parameter 'mode'
[  620.628198][T12567] trusted_key: encrypted_key: key user:syz not found
[  621.609178][T12571] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  622.994107][T12575] tls_set_device_offload_rx: netdev not found
[  623.000984][T12575] input input23: cannot allocate more than FF_MAX_EFFECTS effects
[  623.821899][T12584] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2098'.
[  623.849439][T12582] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2098'.
[  624.329352][T12584] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2098'.
[  624.413583][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  624.419957][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  624.612101][T12589] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2099'.
[  625.441049][T12595] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  627.939858][T12608] mkiss: ax0: crc mode is auto.
[  629.159912][T12619] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  631.360773][T12633] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  632.229529][T12639] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2112'.
[  633.144685][T12651] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  633.296396][T12652] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  634.315486][T12661] PKCS8: Unsupported PKCS#8 version
[  634.526571][T12664] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  635.468021][T12675] tls_set_device_offload_rx: netdev not found
[  635.511721][T12675] input input24: cannot allocate more than FF_MAX_EFFECTS effects
[  636.018948][T12680] netlink: 'syz.0.2125': attribute type 2 has an invalid length.
[  636.060654][T12680] netlink: 'syz.0.2125': attribute type 1 has an invalid length.
[  636.102687][T12680] netlink: 'syz.0.2125': attribute type 1 has an invalid length.
[  636.141545][T12682] netlink: 'syz.5.2127': attribute type 2 has an invalid length.
[  636.175565][T12682] netlink: 'syz.5.2127': attribute type 1 has an invalid length.
[  637.951903][T12700] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  638.144550][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  638.304048][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  638.315593][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  638.326479][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  638.336533][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  638.484527][T12710] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  640.486135][T12729] tls_set_device_offload_rx: netdev not found
[  640.503101][ T5845] Bluetooth: hci2: command tx timeout
[  641.233113][T12737] syz!: rxe_newlink: already configured on team_slave_0
[  642.036800][T12740] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  642.073672][T12742] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  642.268716][T12705] lo speed is unknown, defaulting to 1000
[  643.213438][ T5845] Bluetooth: hci2: command tx timeout
[  645.551316][ T5845] Bluetooth: hci2: command tx timeout
[  645.707339][T12732] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  647.075317][ T4063] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.328302][ T4063] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.408518][T12786] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  647.435386][T12791] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  647.582982][ T5845] Bluetooth: hci2: command tx timeout
[  648.562356][T12795] xt_CT: You must specify a L4 protocol and not use inversions on it
[  648.586678][ T4063] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  648.778747][T12798] netlink: 'syz.6.2158': attribute type 2 has an invalid length.
[  649.022952][T12798] netlink: 'syz.6.2158': attribute type 1 has an invalid length.
[  651.269378][ T4063] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.734309][T12828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2161'.
[  651.961978][T12705] chnl_net:caif_netlink_parms(): no params data found
[  652.537745][T12823] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  652.560935][T12823] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  652.859109][T12823] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  652.868554][T12823] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  652.875690][T12823] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  653.056613][T12823] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  653.241599][T12847] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  653.366799][T12840] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  653.404915][ T4063] bridge_slave_1: left allmulticast mode
[  653.414094][ T4063] bridge_slave_1: left promiscuous mode
[  653.419933][ T4063] bridge0: port 2(bridge_slave_1) entered disabled state
[  653.440464][ T4063] bridge_slave_0: left allmulticast mode
[  653.467335][ T4063] bridge_slave_0: left promiscuous mode
[  653.484258][ T4063] bridge0: port 1(bridge_slave_0) entered disabled state
[  653.742755][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout
[  654.258480][T12860] xt_CT: You must specify a L4 protocol and not use inversions on it
[  654.711890][ T5845] Bluetooth: hci5: command 0x0419 tx timeout
[  654.944081][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  654.950459][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout
[  655.957652][ T5962] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  656.379609][ T5888] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  656.463497][ T5962] usb 7-1: Using ep0 maxpacket: 32
[  656.475558][ T5962] usb 7-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  656.509812][ T5962] usb 7-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  656.582248][ T5962] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.594279][ T5888] usb 1-1: Using ep0 maxpacket: 32
[  656.600156][ T5962] usb 7-1: Product: syz
[  656.611123][ T5888] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  656.624250][ T5962] usb 7-1: Manufacturer: syz
[  656.628903][ T5962] usb 7-1: SerialNumber: syz
[  656.636599][ T5888] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  656.651660][ T5888] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.888423][ T5888] usb 1-1: Product: syz
[  656.893975][ T5962] usb 7-1: config 0 descriptor??
[  657.352272][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout
[  657.765572][ T5888] usb 1-1: Manufacturer: syz
[  657.770646][ T5962] usb 7-1: can't set config #0, error -71
[  657.779870][ T5888] usb 1-1: SerialNumber: syz
[  657.786385][ T5962] usb 7-1: USB disconnect, device number 5
[  657.798962][ T5888] usb 1-1: config 0 descriptor??
[  657.821007][ T5888] usb 1-1: can't set config #0, error -71
[  657.833455][ T5888] usb 1-1: USB disconnect, device number 15
[  658.039396][ T4063] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  658.656003][ T4063] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  658.886723][ T4063] bond0 (unregistering): (slave team0): Releasing backup interface
[  658.932512][ T5962] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  659.074858][ T4063] bond0 (unregistering): Released all slaves
[  659.183254][ T5962] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  659.197218][ T5962] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  659.229502][ T5962] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  659.262003][ T5962] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  659.271894][ T5962] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  659.303731][ T5962] usb 7-1: config 0 descriptor??
[  659.423028][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout
[  659.440861][T12705] bridge0: port 1(bridge_slave_0) entered blocking state
[  659.990913][T12705] bridge0: port 1(bridge_slave_0) entered disabled state
[  660.035042][T12705] bridge_slave_0: entered allmulticast mode
[  660.069790][T12705] bridge_slave_0: entered promiscuous mode
[  660.103161][ T4063] : left promiscuous mode
[  660.173280][T12705] bridge0: port 2(bridge_slave_1) entered blocking state
[  660.184021][T12705] bridge0: port 2(bridge_slave_1) entered disabled state
[  660.191372][T12705] bridge_slave_1: entered allmulticast mode
[  660.215786][T12705] bridge_slave_1: entered promiscuous mode
[  660.318765][ T5962] usbhid 7-1:0.0: can't add hid device: -71
[  660.334605][ T5962] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  660.359412][T12891] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  660.498022][ T5962] usb 7-1: USB disconnect, device number 6
[  660.936480][T12705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  660.995618][T12705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  661.145306][T12899] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  661.207272][T12907] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  661.819882][T12915] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2184'.
[  662.442278][T12923] syz!: rxe_newlink: already configured on team_slave_0
[  662.901963][   T24] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  663.186913][   T24] usb 1-1: Using ep0 maxpacket: 32
[  663.205686][   T24] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  663.218621][   T24] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  663.222133][T12705] team0: Port device team_slave_0 added
[  663.228057][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.228082][   T24] usb 1-1: Product: syz
[  663.228094][   T24] usb 1-1: Manufacturer: syz
[  663.260369][   T24] usb 1-1: SerialNumber: syz
[  663.275207][   T24] usb 1-1: config 0 descriptor??
[  663.276124][T12705] team0: Port device team_slave_1 added
[  663.311855][   T24] cdc_ether 1-1:0.0: probe with driver cdc_ether failed with error -22
[  663.338203][   T24] usb 1-1: unsupported MDLM descriptors
[  663.974522][T12938] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2189'.
[  664.121899][T12705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  664.156530][T12705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  664.182688][    C1] vkms_vblank_simulate: vblank timer overrun
[  664.201077][T12937] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  664.231757][T12705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  664.231767][T12937] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  664.255206][T12705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  664.267183][T12705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  664.296456][T12937] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  664.308702][T12937] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  664.315584][T12705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  664.559017][   T10] usb 1-1: USB disconnect, device number 16
[  664.701419][ T4063] hsr_slave_0: left promiscuous mode
[  664.708426][ T4063] hsr_slave_1: left promiscuous mode
[  664.714670][ T4063] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  664.722412][ T4063] batman_adv: batadv0: Removing interface: batadv_slave_0
[  664.804046][T12953] cifs: Unknown parameter 'mode'
[  664.885030][ T4063] veth1_macvtap: left promiscuous mode
[  664.890612][ T4063] veth0_macvtap: left promiscuous mode
[  664.934961][ T4063] veth1_vlan: left promiscuous mode
[  665.068508][ T4063] veth0_vlan: left promiscuous mode
[  665.194404][ T5962] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  665.856781][ T5962] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  665.870704][ T5962] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  665.908738][ T5962] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  666.059075][ T5962] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  666.068989][ T5962] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.085862][ T5962] usb 1-1: config 0 descriptor??
[  666.303153][T12969] syz!: rxe_newlink: already configured on team_slave_0
[  666.330109][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout
[  666.336708][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  666.343567][ T5845] Bluetooth: hci5: command 0x0419 tx timeout
[  666.382984][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout
[  668.108327][ T5962] usbhid 1-1:0.0: can't add hid device: -71
[  668.129365][ T5962] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  668.164819][ T5962] usb 1-1: USB disconnect, device number 17
[  669.790099][ T4063] team0 (unregistering): Port device team_slave_1 removed
[  669.965929][ T4063] team0 (unregistering): Port device team_slave_0 removed
[  670.589370][T12994] Falling back ldisc for ptm0.
[  671.237263][ T5888] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  671.442950][ T5888] usb 6-1: Using ep0 maxpacket: 32
[  671.450633][ T5888] usb 6-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  671.465818][ T5888] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  671.476149][ T5888] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  671.485656][ T5888] usb 6-1: Product: syz
[  671.489993][ T5888] usb 6-1: Manufacturer: syz
[  671.494795][ T5888] usb 6-1: SerialNumber: syz
[  671.502770][ T5888] usb 6-1: config 0 descriptor??
[  671.510967][ T5888] cdc_ether 6-1:0.0: probe with driver cdc_ether failed with error -22
[  671.520016][ T5888] usb 6-1: unsupported MDLM descriptors
[  671.567933][T12705] hsr_slave_0: entered promiscuous mode
[  671.577632][T12705] hsr_slave_1: entered promiscuous mode
[  671.586599][T12705] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  671.600332][T12705] Cannot create hsr debugfs directory
[  671.609535][T12959] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  672.213722][T13008] tls_set_device_offload_rx: netdev not found
[  672.819195][T13008] input input25: cannot allocate more than FF_MAX_EFFECTS effects
[  674.232804][ T5888] usb 6-1: USB disconnect, device number 15
[  674.396035][T12705] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  674.416856][T12705] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  674.438677][T12705] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  674.482770][ T5917] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  674.823589][T12705] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  677.534644][ T5917] usb 1-1: device descriptor read/all, error -71
[  677.831333][T12705] 8021q: adding VLAN 0 to HW filter on device bond0
[  677.903749][T13047] PKCS8: Unsupported PKCS#8 version
[  678.405368][T12705] 8021q: adding VLAN 0 to HW filter on device team0
[  678.420874][ T6430] bridge0: port 1(bridge_slave_0) entered blocking state
[  678.428175][ T6430] bridge0: port 1(bridge_slave_0) entered forwarding state
[  678.450402][T12928] bridge0: port 2(bridge_slave_1) entered blocking state
[  678.457660][T12928] bridge0: port 2(bridge_slave_1) entered forwarding state
[  679.079842][T13055] trusted_key: encrypted_key: key user:syz not found
[  679.560467][T13057] mkiss: ax0: crc mode is auto.
[  682.028008][ T5917] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  682.142906][T13082] input input26: cannot allocate more than FF_MAX_EFFECTS effects
[  682.313960][   T24] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  682.398349][ T5917] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  682.514328][ T5917] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  682.526356][ T5917] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  682.558459][ T5917] usb 5-1: Product: syz
[  682.563181][ T5917] usb 5-1: Manufacturer: syz
[  682.567808][ T5917] usb 5-1: SerialNumber: syz
[  682.605256][   T24] usb 1-1: Using ep0 maxpacket: 32
[  682.617828][   T24] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  682.632174][   T24] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  682.755207][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  682.772531][   T24] usb 1-1: Product: syz
[  682.776791][   T24] usb 1-1: Manufacturer: syz
[  682.781523][   T24] usb 1-1: SerialNumber: syz
[  682.789699][T12705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  682.801242][   T24] usb 1-1: config 0 descriptor??
[  682.815732][   T24] cdc_ether 1-1:0.0: probe with driver cdc_ether failed with error -22
[  682.822725][   T10] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  682.833602][ T5917] cdc_ncm 5-1:1.0: bind() failure
[  682.848243][   T24] usb 1-1: unsupported MDLM descriptors
[  682.864688][ T5917] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  682.871944][ T5917] cdc_ncm 5-1:1.1: bind() failure
[  683.507445][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.616896][ T5917] usb 5-1: USB disconnect, device number 18
[  683.826151][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  683.836401][   T10] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  683.850033][   T10] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  683.859232][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.871933][   T10] usb 7-1: config 0 descriptor??
[  684.032268][T13102] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  684.224635][T12705] veth0_vlan: entered promiscuous mode
[  684.241312][T12705] veth1_vlan: entered promiscuous mode
[  684.294345][T12705] veth0_macvtap: entered promiscuous mode
[  684.316748][T12705] veth1_macvtap: entered promiscuous mode
[  684.368585][T12705] batman_adv: batadv0: Interface activated: batadv_slave_0
[  684.395013][T12705] batman_adv: batadv0: Interface activated: batadv_slave_1
[  684.418988][T12705] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  684.482848][T12705] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  684.491725][T12705] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  684.500833][ T5962] usb 1-1: USB disconnect, device number 20
[  684.502155][T12705] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  684.581258][T13109] trusted_key: encrypted_key: key user:syz not found
[  685.400491][   T10] usbhid 7-1:0.0: can't add hid device: -71
[  685.420345][   T10] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  685.440142][   T10] usb 7-1: USB disconnect, device number 7
[  685.498423][T13117] cifs: Unknown parameter 'mode'
[  686.972670][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  686.985417][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  687.019784][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  687.087180][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  688.303682][ T4063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  688.311549][ T4063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  689.739999][T13137] xt_CT: You must specify a L4 protocol and not use inversions on it
[  691.734170][T13131] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  691.738088][T13143] tls_set_device_offload_rx: netdev not found
[  691.816201][T13143] input input27: cannot allocate more than FF_MAX_EFFECTS effects
[  692.248016][T13151] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  694.158207][T13162] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  695.652711][   T43] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  695.802722][ T5962] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  695.806164][   T24] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  695.832632][   T43] usb 6-1: Using ep0 maxpacket: 32
[  695.841260][   T43] usb 6-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  695.878664][   T43] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  695.888980][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  695.897201][   T43] usb 6-1: Product: syz
[  695.901514][   T43] usb 6-1: Manufacturer: syz
[  695.907026][   T43] usb 6-1: SerialNumber: syz
[  695.929614][   T43] usb 6-1: config 0 descriptor??
[  695.951758][   T43] cdc_ether 6-1:0.0: probe with driver cdc_ether failed with error -22
[  695.963576][   T43] usb 6-1: unsupported MDLM descriptors
[  695.975808][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  695.977270][ T5962] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.004775][   T24] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  696.006362][ T5962] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  696.026704][ T5962] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  696.040289][ T5962] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  696.054890][ T5962] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.110084][ T5962] usb 1-1: config 0 descriptor??
[  696.260262][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.269996][   T24] usb 8-1: Product: syz
[  696.276489][   T24] usb 8-1: Manufacturer: syz
[  696.281992][   T24] usb 8-1: SerialNumber: syz
[  696.478152][T13178] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  697.229487][    T9] usb 6-1: USB disconnect, device number 16
[  698.108911][ T5962] usbhid 1-1:0.0: can't add hid device: -71
[  698.125451][ T5962] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  698.185676][ T5962] usb 1-1: USB disconnect, device number 21
[  698.376248][T13189] cifs: Unknown parameter 'mode'
[  698.606444][T13193] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  699.212884][   T24] cdc_ncm 8-1:1.0: SET_NTB_FORMAT failed
[  699.251674][   T24] cdc_ncm 8-1:1.0: bind() failure
[  699.403161][   T24] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  699.410024][   T24] cdc_ncm 8-1:1.1: bind() failure
[  699.444071][   T24] usb 8-1: USB disconnect, device number 2
[  699.643768][T13196] tls_set_device_offload_rx: netdev not found
[  699.708369][T13196] input input28: cannot allocate more than FF_MAX_EFFECTS effects
[  701.388126][T13203] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  702.157611][T13214] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2251'.
[  702.835971][T13213] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2252'.
[  703.162619][   T10] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  703.980305][   T10] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  704.004891][   T10] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  704.014651][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  704.032863][   T10] usb 7-1: Product: syz
[  704.037107][   T10] usb 7-1: Manufacturer: syz
[  704.041742][   T10] usb 7-1: SerialNumber: syz
[  704.091300][T13233] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  704.133086][ T5962] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  704.904012][ T5962] usb 1-1: Using ep0 maxpacket: 32
[  705.009731][ T5962] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  705.324252][ T5962] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  705.339835][ T5962] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  705.348912][ T5962] usb 1-1: Product: syz
[  705.358036][ T5962] usb 1-1: Manufacturer: syz
[  705.364468][ T5962] usb 1-1: SerialNumber: syz
[  705.380103][ T5962] usb 1-1: config 0 descriptor??
[  705.395822][ T5962] cdc_ether 1-1:0.0: probe with driver cdc_ether failed with error -22
[  705.405858][ T5962] usb 1-1: unsupported MDLM descriptors
[  705.697787][T13247] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2260'.
[  706.240523][   T10] cdc_ncm 7-1:1.0: SET_NTB_FORMAT failed
[  706.329425][   T10] cdc_ncm 7-1:1.0: bind() failure
[  706.340273][   T10] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  706.452092][   T10] cdc_ncm 7-1:1.1: bind() failure
[  706.466958][   T10] usb 7-1: USB disconnect, device number 8
[  706.983700][T13255] tls_set_device_offload_rx: netdev not found
[  706.990763][T13255] input input29: cannot allocate more than FF_MAX_EFFECTS effects
[  707.012659][ T5837] usb 1-1: USB disconnect, device number 22
[  707.146906][T13260] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2266'.
[  707.332391][T13268] cifs: Unknown parameter 'mode'
[  709.036371][T13276] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  709.943976][T13285] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2271'.
[  710.289170][T13293] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2272'.
[  711.684521][T13292] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  711.706231][T13292] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  711.759454][T13292] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  711.776414][T13292] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  713.774220][ T5836] Bluetooth: hci5: command 0x0419 tx timeout
[  713.780297][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  713.822828][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  714.034736][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  714.303366][T13328] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2280'.
[  714.342752][ T5837] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  714.373786][T13319] input input30: cannot allocate more than FF_MAX_EFFECTS effects
[  714.722582][ T5837] usb 7-1: Using ep0 maxpacket: 32
[  714.740460][ T5837] usb 7-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  714.776439][ T5837] usb 7-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  714.798666][ T5837] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.829632][T13337] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  714.838642][ T5837] usb 7-1: Product: syz
[  714.852574][ T5837] usb 7-1: Manufacturer: syz
[  714.857228][ T5837] usb 7-1: SerialNumber: syz
[  714.872066][ T5837] usb 7-1: config 0 descriptor??
[  714.891962][ T5837] cdc_ether 7-1:0.0: probe with driver cdc_ether failed with error -22
[  714.913560][ T5837] usb 7-1: unsupported MDLM descriptors
[  715.909447][T13348] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2286'.
[  716.141134][   T10] usb 7-1: USB disconnect, device number 9
[  718.956074][T13379] cifs: Unknown parameter 'mode'
[  719.329869][T13385] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  722.995863][T13402] netlink: 76 bytes leftover after parsing attributes in process `syz.6.2301'.
[  723.192681][ T5837] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  723.349785][T13410] xt_CT: You must specify a L4 protocol and not use inversions on it
[  723.714323][ T5837] usb 8-1: Using ep0 maxpacket: 32
[  724.395328][T13421] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  724.587035][ T5837] usb 8-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  724.627377][ T5837] usb 8-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  724.732364][ T5837] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  725.053314][ T5837] usb 8-1: Product: syz
[  725.057536][ T5837] usb 8-1: Manufacturer: syz
[  725.077894][ T5837] usb 8-1: SerialNumber: syz
[  725.099501][ T5837] usb 8-1: config 0 descriptor??
[  725.216705][ T5837] usb 8-1: can't set config #0, error -71
[  725.353920][ T5837] usb 8-1: USB disconnect, device number 3
[  726.977400][T13442] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2309'.
[  727.480037][T13449] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  727.696557][T13451] mkiss: ax0: crc mode is auto.
[  727.856349][T13455] Dead loop on virtual device ip6_vti0, fix it urgently!
[  727.891922][T13458] FAULT_INJECTION: forcing a failure.
[  727.891922][T13458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  727.940156][T13458] CPU: 1 UID: 0 PID: 13458 Comm: syz.6.2313 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  727.940185][T13458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  727.940199][T13458] Call Trace:
[  727.940210][T13458]  <TASK>
[  727.940218][T13458]  dump_stack_lvl+0x189/0x250
[  727.940244][T13458]  ? __pfx____ratelimit+0x10/0x10
[  727.940264][T13458]  ? __pfx_dump_stack_lvl+0x10/0x10
[  727.940285][T13458]  ? __pfx__printk+0x10/0x10
[  727.940310][T13458]  ? __might_fault+0xb0/0x130
[  727.940342][T13458]  should_fail_ex+0x414/0x560
[  727.940368][T13458]  _copy_from_user+0x2d/0xb0
[  727.940395][T13458]  core_sys_select+0x604/0xa20
[  727.940429][T13458]  ? __pfx_core_sys_select+0x10/0x10
[  727.940477][T13458]  ? __pfx_set_user_sigmask+0x10/0x10
[  727.940518][T13458]  __se_sys_pselect6+0x27a/0x300
[  727.940546][T13458]  ? __pfx___se_sys_pselect6+0x10/0x10
[  727.940566][T13458]  ? __pfx_ksys_write+0x10/0x10
[  727.940590][T13458]  ? __x64_sys_pselect6+0x21/0xf0
[  727.940613][T13458]  do_syscall_64+0xfa/0x3b0
[  727.940634][T13458]  ? lockdep_hardirqs_on+0x9c/0x150
[  727.940654][T13458]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.940673][T13458]  ? clear_bhb_loop+0x60/0xb0
[  727.940697][T13458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.940715][T13458] RIP: 0033:0x7f3a9178ebe9
[  727.940733][T13458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  727.940751][T13458] RSP: 002b:00007f3a92545038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  727.940771][T13458] RAX: ffffffffffffffda RBX: 00007f3a919b6180 RCX: 00007f3a9178ebe9
[  727.940786][T13458] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000040
[  727.940799][T13458] RBP: 00007f3a92545090 R08: 0000000000000000 R09: 0000000000000000
[  727.940811][T13458] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  727.940824][T13458] R13: 00007f3a919b6218 R14: 00007f3a919b6180 R15: 00007fff7dba5d18
[  727.940856][T13458]  </TASK>
[  728.194981][T13461] netlink: 76 bytes leftover after parsing attributes in process `syz.7.2315'.
[  728.750993][T13473] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  729.465978][ T5837] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  729.737686][ T5837] usb 1-1: Using ep0 maxpacket: 8
[  729.869164][ T5837] usb 1-1: unable to get BOS descriptor or descriptor too short
[  729.888503][ T5837] usb 1-1: too many configurations: 48, using maximum allowed: 8
[  730.194786][ T5837] usb 1-1: unable to read config index 0 descriptor/start: -61
[  730.220593][ T5837] usb 1-1: can't read configurations, error -61
[  730.402849][ T5837] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  730.442656][ T5917] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  730.940821][ T5917] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  730.957456][ T5917] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  730.975464][ T5917] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  730.993829][ T5917] usb 6-1: Product: syz
[  731.001332][ T5917] usb 6-1: Manufacturer: syz
[  731.010389][ T5837] usb 1-1: Using ep0 maxpacket: 8
[  731.019334][ T5917] usb 6-1: SerialNumber: syz
[  731.028182][ T5837] usb 1-1: device descriptor read/all, error -71
[  731.048172][ T5837] usb usb1-port1: attempt power cycle
[  731.072785][   T24] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  731.427860][T13493] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  731.492818][   T24] usb 7-1: Using ep0 maxpacket: 16
[  731.786507][T13499] PKCS8: Unsupported PKCS#8 version
[  732.052242][ T5917] cdc_ncm 6-1:1.0: bind() failure
[  732.069359][   T24] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  732.092406][ T5917] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  732.102553][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.119123][ T5917] cdc_ncm 6-1:1.1: bind() failure
[  732.150368][   T24] usb 7-1: Product: syz
[  732.161664][   T24] usb 7-1: Manufacturer: syz
[  732.172639][ T5917] usb 6-1: USB disconnect, device number 17
[  732.179810][   T24] usb 7-1: SerialNumber: syz
[  732.205976][   T24] usb 7-1: config 0 descriptor??
[  732.225694][   T24] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  732.243092][   T24] usb 7-1: Detected FT-X
[  732.348866][T13503] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2325'.
[  732.853283][T13481] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2320'.
[  732.891654][T13507] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2326'.
[  732.910445][   T24] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  732.934621][   T24] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  732.949499][   T24] ftdi_sio 7-1:0.0: GPIO initialisation failed: -71
[  733.382765][   T24] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  733.406898][   T24] usb 7-1: USB disconnect, device number 10
[  733.437480][   T24] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  733.490384][   T24] ftdi_sio 7-1:0.0: device disconnected
[  733.941771][T13525] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  735.122742][   T10] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  736.104773][T13538] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  736.137661][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  736.187416][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  736.237097][T13556] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2340'.
[  736.250187][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  736.342808][   T10] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  736.384094][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.463577][   T10] usb 6-1: config 0 descriptor??
[  738.385482][   T10] usbhid 6-1:0.0: can't add hid device: -71
[  738.391644][   T10] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  738.403155][   T10] usb 6-1: USB disconnect, device number 18
[  738.581181][T13576] tipc: Started in network mode
[  738.586358][T13576] tipc: Node identity 7afad0e87d41, cluster identity 4711
[  738.594545][T13576] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  738.616739][T13577] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  738.639654][T13576] syzkaller0: entered promiscuous mode
[  738.649815][T13576] syzkaller0: entered allmulticast mode
[  738.685967][T13576] tipc: Resetting bearer <eth:syzkaller0>
[  738.709828][T13575] tipc: Resetting bearer <eth:syzkaller0>
[  738.727454][T13575] tipc: Disabling bearer <eth:syzkaller0>
[  738.876653][T13581] syz!: rxe_newlink: already configured on team_slave_0
[  740.056415][T13594] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  740.210892][T13598] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2354'.
[  740.807098][T13621] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  740.903133][   T10] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  741.226310][ T5888] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  741.466171][ T5888] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  741.480726][   T10] usb 1-1: config 0 has no interfaces?
[  741.490538][ T5888] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  741.509188][   T10] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  741.627685][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  741.658592][ T5888] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  741.676615][   T10] usb 1-1: Product: syz
[  741.680983][   T10] usb 1-1: Manufacturer: syz
[  741.688948][   T10] usb 1-1: SerialNumber: syz
[  741.831464][ T5888] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  742.328735][   T10] usb 1-1: config 0 descriptor??
[  742.343999][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  742.429060][ T5888] usb 6-1: config 0 descriptor??
[  742.846337][T13637] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  743.193258][T13643] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  744.072026][T13647] netlink: 76 bytes leftover after parsing attributes in process `syz.7.2369'.
[  744.123745][ T5888] usbhid 6-1:0.0: can't add hid device: -71
[  744.132219][ T5888] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  744.215359][ T5888] usb 6-1: USB disconnect, device number 19
[  744.269350][   T10] usb 1-1: USB disconnect, device number 26
[  744.425260][T13654] binder: 13649:13654 ioctl c018620c 0 returned -14
[  745.185978][T13654] netlink: 'syz.5.2371': attribute type 12 has an invalid length.
[  745.194161][T13654] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2371'.
[  747.354131][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  747.360800][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  747.421079][T13678] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  747.909862][T13684] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  747.976630][T13693] mkiss: ax0: crc mode is auto.
[  748.073638][T13695] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2383'.
[  749.493658][T13715] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  749.772444][T13719] input input31: cannot allocate more than FF_MAX_EFFECTS effects
[  750.388659][   T30] audit: type=1326 audit(1755036898.024:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13702 comm="syz.6.2387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3a9178ebe9 code=0x0
[  750.695708][T13733] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  751.576318][T13738] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2392'.
[  752.587665][T13734] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  752.650963][T13734] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  752.660749][T13734] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  752.667256][T13734] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  752.866628][T13747] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  752.920602][T13751] mkiss: ax0: crc mode is auto.
[  753.625787][T13764] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  753.743019][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  754.719355][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  754.719717][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  754.725622][ T5836] Bluetooth: hci5: command 0x0419 tx timeout
[  755.466364][T13782] syz!: rxe_newlink: already configured on team_slave_0
[  757.186278][ T5837] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  757.331573][T13797] xt_CT: You must specify a L4 protocol and not use inversions on it
[  758.255310][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  758.942578][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  758.962552][ T5837] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  758.984250][ T5837] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  759.006358][ T5837] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  759.366710][ T5837] usb 6-1: config 0 descriptor??
[  759.674594][T13807] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  759.747828][ T5837] usbhid 6-1:0.0: can't add hid device: -71
[  759.754665][ T5837] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  759.766720][ T5837] usb 6-1: USB disconnect, device number 20
[  759.860704][T13809] mkiss: ax0: crc mode is auto.
[  760.299001][T13822] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  761.182346][T13828] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  766.132669][ T5837] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  766.302771][ T5837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  766.363746][ T5837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  766.393527][ T5837] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  766.399774][T13868] FAULT_INJECTION: forcing a failure.
[  766.399774][T13868] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  766.435949][ T5837] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  766.460141][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  766.462746][T13868] CPU: 0 UID: 0 PID: 13868 Comm: syz.6.2429 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  766.462772][T13868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  766.462785][T13868] Call Trace:
[  766.462792][T13868]  <TASK>
[  766.462801][T13868]  dump_stack_lvl+0x189/0x250
[  766.462828][T13868]  ? __pfx____ratelimit+0x10/0x10
[  766.462849][T13868]  ? __pfx_dump_stack_lvl+0x10/0x10
[  766.462869][T13868]  ? __pfx__printk+0x10/0x10
[  766.462906][T13868]  should_fail_ex+0x414/0x560
[  766.462931][T13868]  _copy_from_user+0x2d/0xb0
[  766.462958][T13868]  bpf_test_init+0xf8/0x170
[  766.462997][T13868]  bpf_prog_test_run_skb+0x1e9/0x1560
[  766.463021][T13868]  ? __fget_files+0x2a/0x420
[  766.463045][T13868]  ? __fget_files+0x2a/0x420
[  766.463073][T13868]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  766.463099][T13868]  bpf_prog_test_run+0x2c7/0x340
[  766.463131][T13868]  __sys_bpf+0x4a4/0x860
[  766.463160][T13868]  ? __pfx___sys_bpf+0x10/0x10
[  766.463199][T13868]  ? ksys_write+0x22a/0x250
[  766.463219][T13868]  ? __pfx_ksys_write+0x10/0x10
[  766.463253][T13868]  ? rcu_is_watching+0x15/0xb0
[  766.463281][T13868]  __x64_sys_bpf+0x7c/0x90
[  766.463306][T13868]  do_syscall_64+0xfa/0x3b0
[  766.463326][T13868]  ? lockdep_hardirqs_on+0x9c/0x150
[  766.463345][T13868]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  766.463364][T13868]  ? clear_bhb_loop+0x60/0xb0
[  766.463386][T13868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  766.463404][T13868] RIP: 0033:0x7f3a9178ebe9
[  766.463421][T13868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  766.463438][T13868] RSP: 002b:00007f3a92587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  766.463458][T13868] RAX: ffffffffffffffda RBX: 00007f3a919b5fa0 RCX: 00007f3a9178ebe9
[  766.463471][T13868] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  766.463483][T13868] RBP: 00007f3a92587090 R08: 0000000000000000 R09: 0000000000000000
[  766.463495][T13868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  766.463506][T13868] R13: 00007f3a919b6038 R14: 00007f3a919b5fa0 R15: 00007fff7dba5d18
[  766.463537][T13868]  </TASK>
[  766.716030][ T5837] usb 1-1: config 0 descriptor??
[  766.762589][   T24] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  767.086452][T13876] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  767.542775][   T24] usb 8-1: Using ep0 maxpacket: 8
[  767.583970][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  767.591710][   T24] usb 8-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00
[  767.606303][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.617968][   T24] usb 8-1: config 0 descriptor??
[  768.108675][   T24] hid-u2fzero 0003:20A0:4287.0004: hidraw0: USB HID v0.03 Device [HID 20a0:4287] on usb-dummy_hcd.7-1/input0
[  768.135895][   T24] hid-u2fzero 0003:20A0:4287.0004: NitroKey U2F LED initialised
[  768.149376][   T24] hid-u2fzero 0003:20A0:4287.0004: NitroKey U2F RNG initialised
[  768.281274][ T5837] usbhid 1-1:0.0: can't add hid device: -71
[  768.287581][ T5917] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  768.302818][ T5837] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  768.317505][ T5837] usb 1-1: USB disconnect, device number 27
[  768.915956][ T5888] usb 8-1: USB disconnect, device number 4
[  768.974303][ T5917] usb 6-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=cd.35
[  768.993054][ T5917] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  769.007330][ T5917] usb 6-1: config 0 descriptor??
[  769.018350][ T5917] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[  769.032575][ T5917] dw2102: su3000_power_ctrl: 1, initialized 0
[  769.039269][ T5917] dvb-usb: bulk message failed: -22 (2/0)
[  769.083220][   T43] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  769.096831][ T5917] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  769.141585][ T5917] dvb-usb: TeVii S482 (tuner 2) error while loading driver (-19)
[  769.235214][ T5917] usb 6-1: USB disconnect, device number 21
[  769.279168][   T43] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  769.403982][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  769.489932][T13900] FAULT_INJECTION: forcing a failure.
[  769.489932][T13900] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  769.564866][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  769.648149][T13900] CPU: 1 UID: 0 PID: 13900 Comm: syz.7.2436 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  769.648179][T13900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  769.648191][T13900] Call Trace:
[  769.648199][T13900]  <TASK>
[  769.648208][T13900]  dump_stack_lvl+0x189/0x250
[  769.648236][T13900]  ? __pfx____ratelimit+0x10/0x10
[  769.648256][T13900]  ? __pfx_dump_stack_lvl+0x10/0x10
[  769.648278][T13900]  ? __pfx__printk+0x10/0x10
[  769.648303][T13900]  ? __might_fault+0xb0/0x130
[  769.648334][T13900]  should_fail_ex+0x414/0x560
[  769.648360][T13900]  _copy_from_iter+0x1db/0x16f0
[  769.648397][T13900]  ? __pfx__copy_from_iter+0x10/0x10
[  769.648420][T13900]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  769.648449][T13900]  ? __pfx___schedule+0x10/0x10
[  769.648468][T13900]  ? skb_put+0x11b/0x210
[  769.648499][T13900]  hci_sock_sendmsg+0x422/0xef0
[  769.648534][T13900]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  769.648565][T13900]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  769.648588][T13900]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  769.648615][T13900]  __sock_sendmsg+0x21c/0x270
[  769.648642][T13900]  sock_write_iter+0x258/0x330
[  769.648661][T13900]  ? lockdep_hardirqs_on+0x9c/0x150
[  769.648683][T13900]  ? __pfx_sock_write_iter+0x10/0x10
[  769.648716][T13900]  ? kasan_check_range+0x9b/0x2c0
[  769.648754][T13900]  vfs_write+0x54b/0xa90
[  769.648778][T13900]  ? __pfx_sock_write_iter+0x10/0x10
[  769.648800][T13900]  ? __pfx_vfs_write+0x10/0x10
[  769.648822][T13900]  ? __rcu_read_unlock+0x84/0xe0
[  769.648853][T13900]  ? __fget_files+0x2a/0x420
[  769.648885][T13900]  ksys_write+0x145/0x250
[  769.648906][T13900]  ? __pfx_ksys_write+0x10/0x10
[  769.648922][T13900]  ? rcu_is_watching+0x15/0xb0
[  769.648947][T13900]  ? do_syscall_64+0xbe/0x3b0
[  769.648973][T13900]  do_syscall_64+0xfa/0x3b0
[  769.648995][T13900]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.649014][T13900]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  769.649032][T13900]  ? clear_bhb_loop+0x60/0xb0
[  769.649056][T13900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.649075][T13900] RIP: 0033:0x7f577a78ebe9
[  769.649091][T13900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  769.649108][T13900] RSP: 002b:00007f577b510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  769.649129][T13900] RAX: ffffffffffffffda RBX: 00007f577a9b5fa0 RCX: 00007f577a78ebe9
[  769.649144][T13900] RDX: 0000000000000007 RSI: 0000200000000080 RDI: 0000000000000004
[  769.649156][T13900] RBP: 00007f577b510090 R08: 0000000000000000 R09: 0000000000000000
[  769.649169][T13900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  769.649180][T13900] R13: 00007f577a9b6038 R14: 00007f577a9b5fa0 R15: 00007ffcbc6423f8
[  769.649212][T13900]  </TASK>
[  769.924353][   T43] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  770.056842][   T43] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  770.066332][   T43] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  770.078582][   T43] usb 7-1: Manufacturer: syz
[  770.086460][   T43] usb 7-1: config 0 descriptor??
[  770.176991][T13904] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  770.392561][ T5917] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  771.255830][ T5888] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  771.274248][T13912] xt_CT: You must specify a L4 protocol and not use inversions on it
[  771.582761][   T43] rc_core: IR keymap rc-hauppauge not found
[  771.698680][   T43] Registered IR keymap rc-empty
[  771.775290][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  771.810042][ T5917] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  771.842952][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  771.859508][ T5917] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.896397][ T5917] usb 1-1: Product: syz
[  771.912830][   T43] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  771.923096][ T5888] usb 5-1: Using ep0 maxpacket: 8
[  771.931219][ T5917] usb 1-1: Manufacturer: syz
[  771.934951][ T5888] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  771.952528][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  771.960586][ T5917] usb 1-1: SerialNumber: syz
[  771.977467][ T5888] pvrusb2: Hardware description: Terratec Grabster AV400
[  771.983556][   T43] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input32
[  771.998407][ T5888] pvrusb2: **********
[  772.002307][ T5917] usb 1-1: config 0 descriptor??
[  772.002424][ T5888] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  772.017637][ T5917] gspca_main: sunplus-2.14.0 probing 055f:c230
[  772.164021][ T5888] pvrusb2: Important functionality might not be entirely working.
[  772.452670][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  772.511885][ T5888] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  772.678531][ T5917] gspca_sunplus: reg_r err -110
[  772.685853][ T5917] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[  772.712821][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  772.742091][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  772.767830][ T5888] pvrusb2: **********
[  773.039166][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.052921][ T2341] pvrusb2: Invalid write control endpoint
[  773.102904][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.173463][T13927] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2444'.
[  773.184366][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.223744][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.244974][ T5888] usb 5-1: USB disconnect, device number 19
[  773.267191][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.292031][ T2341] pvrusb2: Invalid write control endpoint
[  773.313251][T13934] netlink: 'syz.6.2447': attribute type 2 has an invalid length.
[  773.321038][T13934] netlink: 'syz.6.2447': attribute type 1 has an invalid length.
[  773.477748][ T2341] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  773.491361][ T2341] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  773.499882][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.507124][ T2341] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  773.517393][ T2341] pvrusb2: Device being rendered inoperable
[  773.525653][ T2341] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  773.530820][T13941] FAULT_INJECTION: forcing a failure.
[  773.530820][T13941] name failslab, interval 1, probability 0, space 0, times 0
[  773.534243][   T43] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  773.761541][T13941] CPU: 1 UID: 0 PID: 13941 Comm: syz.7.2448 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  773.761569][T13941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  773.761582][T13941] Call Trace:
[  773.761590][T13941]  <TASK>
[  773.761599][T13941]  dump_stack_lvl+0x189/0x250
[  773.761627][T13941]  ? __pfx____ratelimit+0x10/0x10
[  773.761648][T13941]  ? __pfx_dump_stack_lvl+0x10/0x10
[  773.761670][T13941]  ? __pfx__printk+0x10/0x10
[  773.761701][T13941]  ? __pfx___might_resched+0x10/0x10
[  773.761721][T13941]  ? fs_reclaim_acquire+0x7d/0x100
[  773.761750][T13941]  should_fail_ex+0x414/0x560
[  773.761777][T13941]  should_failslab+0xa8/0x100
[  773.761800][T13941]  __kmalloc_cache_noprof+0x70/0x3d0
[  773.761820][T13941]  ? vhost_task_create+0xf6/0x290
[  773.761847][T13941]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  773.761878][T13941]  vhost_task_create+0xf6/0x290
[  773.761903][T13941]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  773.761934][T13941]  ? __pfx_vhost_task_create+0x10/0x10
[  773.761967][T13941]  ? __pfx_vhost_task_fn+0x10/0x10
[  773.762003][T13941]  ? kasan_save_track+0x4f/0x80
[  773.762035][T13941]  ? kasan_save_track+0x3e/0x80
[  773.762069][T13941]  kvm_mmu_post_init_vm+0x147/0x2b0
[  773.762094][T13941]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  773.762127][T13941]  ? __mutex_trylock_common+0x153/0x260
[  773.762155][T13941]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  773.762185][T13941]  ? rcu_is_watching+0x15/0xb0
[  773.762205][T13941]  ? look_up_lock_class+0x74/0x170
[  773.762228][T13941]  ? register_lock_class+0x51/0x320
[  773.762263][T13941]  ? __lock_acquire+0xab9/0xd20
[  773.762314][T13941]  kvm_vcpu_ioctl+0x95c/0xe90
[  773.762345][T13941]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  773.762365][T13941]  ? __lock_acquire+0xab9/0xd20
[  773.762388][T13941]  ? __asan_memset+0x22/0x50
[  773.762414][T13941]  ? smack_file_ioctl+0x302/0x340
[  773.762435][T13941]  ? __pfx_smack_file_ioctl+0x10/0x10
[  773.762465][T13941]  ? __fget_files+0x2a/0x420
[  773.762485][T13941]  ? __fget_files+0x3a0/0x420
[  773.762504][T13941]  ? __fget_files+0x2a/0x420
[  773.762529][T13941]  ? bpf_lsm_file_ioctl+0x9/0x20
[  773.762552][T13941]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  773.762575][T13941]  __se_sys_ioctl+0xfc/0x170
[  773.762607][T13941]  do_syscall_64+0xfa/0x3b0
[  773.762627][T13941]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.762647][T13941]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.762666][T13941]  ? clear_bhb_loop+0x60/0xb0
[  773.762690][T13941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.762709][T13941] RIP: 0033:0x7f577a78ebe9
[  773.762726][T13941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  773.762743][T13941] RSP: 002b:00007f57789f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  773.762764][T13941] RAX: ffffffffffffffda RBX: 00007f577a9b6090 RCX: 00007f577a78ebe9
[  773.762779][T13941] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  773.762791][T13941] RBP: 00007f57789f6090 R08: 0000000000000000 R09: 0000000000000000
[  773.762803][T13941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  773.762815][T13941] R13: 00007f577a9b6128 R14: 00007f577a9b6090 R15: 00007ffcbc6423f8
[  773.762848][T13941]  </TASK>
[  774.152672][ T2341] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  774.209947][ T2341] pvrusb2: Attached sub-driver cx25840
[  774.233384][ T2341] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  774.274070][  T976] usb 1-1: USB disconnect, device number 28
[  774.442867][ T2341] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  774.534660][   T43] mceusb 7-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  774.568037][   T43] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  774.822417][   T43] usb 7-1: USB disconnect, device number 11
[  776.249900][ T5888] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  776.622849][T13771] Bluetooth: hci2: command 0x0c1a tx timeout
[  776.791633][ T5888] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  777.050077][ T5888] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  777.069978][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  777.153745][ T5888] usb 5-1: Product: syz
[  777.165345][ T5888] usb 5-1: Manufacturer: syz
[  777.177218][ T5888] usb 5-1: SerialNumber: syz
[  777.808402][ T5888] usb 5-1: can't set config #1, error -71
[  777.842371][ T5888] usb 5-1: USB disconnect, device number 20
[  781.849379][  T976] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  782.108136][  T976] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  782.172826][   T24] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  782.177111][T14027] xt_TPROXY: Can be used only with -p tcp or -p udp
[  782.299194][  T976] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  782.343153][  T976] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  782.398343][  T976] usb 7-1: Product: syz
[  782.424213][  T976] usb 7-1: Manufacturer: syz
[  782.458740][   T24] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  782.461635][T14031] input input35: cannot allocate more than FF_MAX_EFFECTS effects
[  782.482560][  T976] usb 7-1: SerialNumber: syz
[  783.017247][   T24] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  783.166316][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  783.633931][   T24] usb 1-1: Product: syz
[  783.641719][   T24] usb 1-1: Manufacturer: syz
[  783.774295][   T24] usb 1-1: SerialNumber: syz
[  783.942899][T14041] xt_CT: You must specify a L4 protocol and not use inversions on it
[  785.336596][  T976] cdc_ncm 7-1:1.0: SET_NTB_FORMAT failed
[  785.405116][  T976] cdc_ncm 7-1:1.0: bind() failure
[  785.436826][  T976] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  785.445326][  T976] cdc_ncm 7-1:1.1: bind() failure
[  785.456069][  T976] usb 7-1: USB disconnect, device number 12
[  785.606112][   T24] cdc_ncm 1-1:1.0: SET_NTB_FORMAT failed
[  785.625839][   T24] cdc_ncm 1-1:1.0: bind() failure
[  785.870061][   T24] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  785.948796][   T24] cdc_ncm 1-1:1.1: bind() failure
[  786.032160][   T24] usb 1-1: USB disconnect, device number 29
[  786.489067][T14069] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  788.817350][T14096] input input36: cannot allocate more than FF_MAX_EFFECTS effects
[  788.831651][T14097] netlink: 'syz.6.2489': attribute type 2 has an invalid length.
[  788.831882][ T5888] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  788.879242][T14097] netlink: 'syz.6.2489': attribute type 1 has an invalid length.
[  789.142622][ T5888] usb 8-1: Using ep0 maxpacket: 32
[  789.422749][ T5888] usb 8-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[  789.641546][ T5888] usb 8-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  789.651094][ T5888] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  789.665685][ T5888] usb 8-1: Product: syz
[  789.684009][ T5888] usb 8-1: Manufacturer: syz
[  789.719973][ T5888] usb 8-1: SerialNumber: syz
[  789.737230][ T5888] usb 8-1: config 0 descriptor??
[  789.746844][ T5888] cdc_ether 8-1:0.0: probe with driver cdc_ether failed with error -22
[  789.764245][ T5888] usb 8-1: unsupported MDLM descriptors
[  790.046732][T14111] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  791.580771][   T43] usb 8-1: USB disconnect, device number 5
[  791.632769][   T24] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  791.651556][T14135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  791.670135][T14136] netlink: 120 bytes leftover after parsing attributes in process `syz.6.2502'.
[  791.683155][T14135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  791.882775][ T5888] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  791.957436][T14143] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2504'.
[  792.022755][   T24] usb 6-1: Using ep0 maxpacket: 32
[  792.214977][   T24] usb 6-1: config 0 has an invalid interface number: 85 but max is 0
[  792.275570][   T24] usb 6-1: config 0 has no interface number 0
[  792.339554][   T24] usb 6-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  792.424966][   T24] usb 6-1: config 0 interface 85 has no altsetting 0
[  792.535082][   T24] usb 6-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  792.545958][ T5888] usb 1-1: config 12 has an invalid interface number: 70 but max is 0
[  792.554523][ T5888] usb 1-1: config 12 has no interface number 0
[  792.560746][ T5888] usb 1-1: config 12 interface 70 altsetting 14 bulk endpoint 0x8A has invalid maxpacket 1024
[  792.563340][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  792.578863][ T5888] usb 1-1: config 12 interface 70 altsetting 14 endpoint 0xD has invalid maxpacket 512, setting to 64
[  792.592356][ T5888] usb 1-1: config 12 interface 70 has no altsetting 0
[  792.621679][ T5888] usb 1-1: New USB device found, idVendor=0489, idProduct=b0bc, bcdDevice=2a.66
[  792.648731][ T5888] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  792.672614][  T976] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  792.681278][ T5888] usb 1-1: Product: syz
[  792.702174][ T5888] usb 1-1: Manufacturer: syz
[  792.722832][   T24] usb 6-1: Product: syz
[  792.725781][ T5888] usb 1-1: SerialNumber: syz
[  792.727031][   T24] usb 6-1: Manufacturer: syz
[  792.727048][   T24] usb 6-1: SerialNumber: syz
[  792.748730][   T24] usb 6-1: config 0 descriptor??
[  792.761641][T14134] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  792.854880][  T976] usb 5-1: config 0 has an invalid interface number: 130 but max is 0
[  792.882766][  T976] usb 5-1: config 0 has no interface number 0
[  792.909164][  T976] usb 5-1: config 0 interface 130 altsetting 0 endpoint 0x8B has an invalid bInterval 68, changing to 10
[  792.959032][  T976] usb 5-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e2.ca
[  793.018062][  T976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  793.029715][ T5888] usb 1-1: USB disconnect, device number 30
[  793.986876][T14126] cgroup: fork rejected by pids controller in /syz5
[  794.032333][  T976] usb 5-1: config 0 descriptor??
[  794.075159][  T976] usb 5-1: Found UVC 0.00 device <unnamed> (8086:0b5b)
[  794.117494][  T976] usb 5-1: No valid video chain found.
[  794.169477][T14159] bridge0: port 3(gretap0) entered blocking state
[  794.212393][T14159] bridge0: port 3(gretap0) entered disabled state
[  794.255200][T14159] gretap0: entered allmulticast mode
[  794.272348][ T5888] usb 5-1: USB disconnect, device number 21
[  794.307223][T14159] gretap0: entered promiscuous mode
[  794.354870][T14159] bridge0: port 3(gretap0) entered blocking state
[  794.362045][T14159] bridge0: port 3(gretap0) entered forwarding state
[  794.382647][   T24] appletouch 6-1:0.85: Failed to request geyser raw mode
[  794.390046][   T24] appletouch 6-1:0.85: probe with driver appletouch failed with error -5
[  794.420693][   T24] usb 6-1: USB disconnect, device number 22
[  794.442757][T14238] gretap0: left allmulticast mode
[  794.447851][T14238] gretap0: left promiscuous mode
[  794.474263][T14238] bridge0: port 3(gretap0) entered disabled state
[  795.483710][T14276] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2514'.
[  795.639081][T14278] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2515'.
[  798.827854][T14315] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  798.859010][ T4063] bridge_slave_1: left allmulticast mode
[  798.865227][ T4063] bridge_slave_1: left promiscuous mode
[  798.872805][ T4063] bridge0: port 2(bridge_slave_1) entered disabled state
[  798.886255][ T4063] bridge_slave_0: left allmulticast mode
[  798.891980][ T4063] bridge_slave_0: left promiscuous mode
[  798.902841][ T4063] bridge0: port 1(bridge_slave_0) entered disabled state
[  800.127780][T13771] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  800.138623][T13771] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  800.147839][T13771] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  800.155868][T13771] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  800.164960][T13771] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  800.298875][ T6114] smc: removing ib device syz1
[  800.305848][ T4063] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  800.328100][ T4063] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  800.341383][ T4063] bond0 (unregistering): Released all slaves
[  800.361165][T14333] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  800.370594][T14336] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  800.417155][T14336] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  800.448459][T14336] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  802.242892][T13771] Bluetooth: hci1: command tx timeout
[  802.497542][T14370] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  802.772200][T14373] input: syz1 as /devices/virtual/input/input38
[  803.704990][T14340] lo speed is unknown, defaulting to 1000
[  804.577796][T13771] Bluetooth: hci1: command tx timeout
[  804.584125][T14400] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2547'.
[  804.647926][T14393] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  805.054917][T14406] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2548'.
[  806.344438][T14432] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  806.622868][T13771] Bluetooth: hci1: command tx timeout
[  806.716725][T14340] chnl_net:caif_netlink_parms(): no params data found
[  807.969124][ T4063] hsr_slave_0: left promiscuous mode
[  807.992725][ T4063] hsr_slave_1: left promiscuous mode
[  808.074899][ T4063] batman_adv: batadv0: Removing interface: batadv_slave_0
[  808.892863][T13771] Bluetooth: hci1: command tx timeout
[  808.898852][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  808.907485][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  809.865161][T14463] tls_set_device_offload_rx: netdev not found
[  810.139269][T14465] input input39: cannot allocate more than FF_MAX_EFFECTS effects
[  813.148922][ T4063] team0 (unregistering): Port device team_slave_1 removed
[  813.478716][ T4063] team0 (unregistering): Port device team_slave_0 removed
[  813.505938][ T6114] smc: removing ib device syz!
[  813.626601][T14476] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2564'.
[  814.913427][T14340] bridge0: port 1(bridge_slave_0) entered blocking state
[  814.920652][T14340] bridge0: port 1(bridge_slave_0) entered disabled state
[  815.782537][T14340] bridge_slave_0: entered allmulticast mode
[  815.810797][T14340] bridge_slave_0: entered promiscuous mode
[  815.829930][T14340] bridge0: port 2(bridge_slave_1) entered blocking state
[  815.997754][T14340] bridge0: port 2(bridge_slave_1) entered disabled state
[  816.043568][T14340] bridge_slave_1: entered allmulticast mode
[  816.128413][T14340] bridge_slave_1: entered promiscuous mode
[  816.227066][T14484] mkiss: ax0: crc mode is auto.
[  816.501169][T14495] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  816.642941][T14498] FAULT_INJECTION: forcing a failure.
[  816.642941][T14498] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  816.757708][T14498] CPU: 0 UID: 0 PID: 14498 Comm: syz.0.2569 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  816.757726][T14498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  816.757733][T14498] Call Trace:
[  816.757738][T14498]  <TASK>
[  816.757744][T14498]  dump_stack_lvl+0x189/0x250
[  816.757762][T14498]  ? __pfx____ratelimit+0x10/0x10
[  816.757776][T14498]  ? __pfx_dump_stack_lvl+0x10/0x10
[  816.757787][T14498]  ? __pfx__printk+0x10/0x10
[  816.757802][T14498]  ? fs_reclaim_acquire+0x7d/0x100
[  816.757819][T14498]  should_fail_ex+0x414/0x560
[  816.757834][T14498]  prepare_alloc_pages+0x213/0x610
[  816.757851][T14498]  __alloc_frozen_pages_noprof+0x123/0x370
[  816.757867][T14498]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  816.757886][T14498]  ? policy_nodemask+0x27c/0x720
[  816.757900][T14498]  alloc_pages_mpol+0x232/0x4a0
[  816.757915][T14498]  vma_alloc_folio_noprof+0xe4/0x200
[  816.757925][T14498]  ? unwind_next_frame+0xa5/0x2390
[  816.757935][T14498]  ? rcu_is_watching+0x15/0xb0
[  816.757948][T14498]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  816.757966][T14498]  folio_prealloc+0x30/0x180
[  816.757978][T14498]  do_wp_page+0x1231/0x5800
[  816.758007][T14498]  ? __pfx_do_wp_page+0x10/0x10
[  816.758026][T14498]  ? do_raw_spin_lock+0x121/0x290
[  816.758041][T14498]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  816.758061][T14498]  __handle_mm_fault+0x1144/0x5620
[  816.758089][T14498]  ? __pfx___handle_mm_fault+0x10/0x10
[  816.758113][T14498]  ? follow_page_pte+0xe7e/0x14b0
[  816.758128][T14498]  handle_mm_fault+0x2d5/0x7f0
[  816.758144][T14498]  ? vma_is_secretmem+0xd/0x50
[  816.758160][T14498]  __get_user_pages+0x1af4/0x30b0
[  816.758196][T14498]  ? __pfx___get_user_pages+0x10/0x10
[  816.758211][T14498]  ? __gup_longterm_locked+0xbf7/0x15b0
[  816.758226][T14498]  ? down_read_killable+0x1d1/0x350
[  816.758238][T14498]  ? try_get_folio+0x633/0x660
[  816.758250][T14498]  __gup_longterm_locked+0xd66/0x15b0
[  816.758268][T14498]  ? try_grab_folio_fast+0x35b/0x4f0
[  816.758281][T14498]  ? sanity_check_pinned_pages+0x11c8/0x12c0
[  816.758300][T14498]  gup_fast_fallback+0x1cd4/0x2260
[  816.758315][T14498]  ? is_bpf_text_address+0x26/0x2b0
[  816.758347][T14498]  ? __pfx_gup_fast_fallback+0x10/0x10
[  816.758361][T14498]  ? stack_trace_save+0x9c/0xe0
[  816.758375][T14498]  ? stack_depot_save_flags+0x40/0x900
[  816.758391][T14498]  ? pin_user_pages_fast+0x4d/0xb0
[  816.758408][T14498]  iov_iter_extract_pages+0x35a/0x5e0
[  816.758429][T14498]  extract_iter_to_sg+0xe46/0x24e0
[  816.758451][T14498]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  816.758474][T14498]  ? __asan_memset+0x22/0x50
[  816.758490][T14498]  af_alg_get_rsgl+0x436/0x810
[  816.758512][T14498]  skcipher_recvmsg+0x3c0/0x11c0
[  816.758535][T14498]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  816.758547][T14498]  ? __lock_acquire+0xab9/0xd20
[  816.758557][T14498]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  816.758567][T14498]  ? security_socket_recvmsg+0x7e/0x2e0
[  816.758577][T14498]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  816.758588][T14498]  sock_recvmsg+0x22c/0x270
[  816.758605][T14498]  ____sys_recvmsg+0x1c9/0x460
[  816.758620][T14498]  ? __pfx_____sys_recvmsg+0x10/0x10
[  816.758642][T14498]  ? import_iovec+0x74/0xa0
[  816.758658][T14498]  ___sys_recvmsg+0x1b5/0x510
[  816.758672][T14498]  ? __pfx____sys_recvmsg+0x10/0x10
[  816.758696][T14498]  ? __fget_files+0x3a0/0x420
[  816.758715][T14498]  __x64_sys_recvmsg+0x198/0x260
[  816.758727][T14498]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  816.758742][T14498]  ? __pfx_ksys_write+0x10/0x10
[  816.758751][T14498]  ? rcu_is_watching+0x15/0xb0
[  816.758767][T14498]  ? do_syscall_64+0xbe/0x3b0
[  816.758781][T14498]  do_syscall_64+0xfa/0x3b0
[  816.758792][T14498]  ? lockdep_hardirqs_on+0x9c/0x150
[  816.758803][T14498]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  816.758813][T14498]  ? clear_bhb_loop+0x60/0xb0
[  816.758826][T14498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  816.758836][T14498] RIP: 0033:0x7fb09178ebe9
[  816.758846][T14498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  816.758855][T14498] RSP: 002b:00007fb09269d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  816.758867][T14498] RAX: ffffffffffffffda RBX: 00007fb0919b5fa0 RCX: 00007fb09178ebe9
[  816.758875][T14498] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  816.758882][T14498] RBP: 00007fb09269d090 R08: 0000000000000000 R09: 0000000000000000
[  816.758888][T14498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  816.758894][T14498] R13: 00007fb0919b6038 R14: 00007fb0919b5fa0 R15: 00007ffd969d8a48
[  816.758912][T14498]  </TASK>
[  817.207673][    C0] vkms_vblank_simulate: vblank timer overrun
[  818.285766][T14340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  818.500169][T14340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  818.819932][T14518] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2575'.
[  818.903684][T14515] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  819.064908][T14340] team0: Port device team_slave_0 added
[  819.116058][T14524] netlink: 'syz.4.2574': attribute type 4 has an invalid length.
[  819.162573][T14524] netlink: 128124 bytes leftover after parsing attributes in process `syz.4.2574'.
[  819.434547][T14340] team0: Port device team_slave_1 added
[  820.137961][T14538] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2578'.
[  821.310005][T14537] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2579'.
[  821.402516][T14340] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.545873][T14340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.595271][T14340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  822.317981][T14340] batman_adv: batadv0: Adding interface: batadv_slave_1
[  822.335805][T14340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  822.378815][T14539] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  822.450821][T14340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  822.463602][T14539] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  822.482528][T14539] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  822.532681][T14539] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  822.549975][T14550] mkiss: ax0: crc mode is auto.
[  822.563383][T14539] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  822.648772][T14539] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  823.173414][T14340] hsr_slave_0: entered promiscuous mode
[  823.180437][T14340] hsr_slave_1: entered promiscuous mode
[  823.213644][T14340] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  823.222018][T14340] Cannot create hsr debugfs directory
[  823.319020][T14570] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  824.472985][T13771] Bluetooth: hci3: command 0x0c1a tx timeout
[  824.542573][T13771] Bluetooth: hci1: command 0x0c1a tx timeout
[  824.550483][T13771] Bluetooth: hci2: command 0x0c1a tx timeout
[  824.557264][T13771] Bluetooth: hci4: command 0x0c1a tx timeout
[  825.553153][T14586] Driver unsupported XDP return value 0 on prog  (id 468) dev N/A, expect packet loss!
[  825.710175][T14593] mkiss: ax0: crc mode is auto.
[  826.222690][ T5962] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  826.742613][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  826.955996][ T5962] usb 8-1: unable to get BOS descriptor or descriptor too short
[  827.101207][ T5962] usb 8-1: config 1 interface 0 altsetting 88 endpoint 0x81 has invalid maxpacket 1536, setting to 1024
[  827.123611][ T5962] usb 8-1: config 1 interface 0 has no altsetting 0
[  827.156021][ T5962] usb 8-1: New USB device found, idVendor=0eef, idProduct=0001, bcdDevice= 0.40
[  827.172699][ T5962] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  827.180740][ T5962] usb 8-1: Product: syz
[  827.208747][ T5962] usb 8-1: Manufacturer: syz
[  827.214586][T14609] FAULT_INJECTION: forcing a failure.
[  827.214586][T14609] name failslab, interval 1, probability 0, space 0, times 0
[  827.242591][ T5962] usb 8-1: SerialNumber: syz
[  827.255998][T14340] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  827.256258][T14592] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  827.287752][T14609] CPU: 1 UID: 0 PID: 14609 Comm: syz.6.2597 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  827.287780][T14609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  827.287791][T14609] Call Trace:
[  827.287800][T14609]  <TASK>
[  827.287808][T14609]  dump_stack_lvl+0x189/0x250
[  827.287832][T14609]  ? __pfx____ratelimit+0x10/0x10
[  827.287851][T14609]  ? __pfx_dump_stack_lvl+0x10/0x10
[  827.287869][T14609]  ? __pfx__printk+0x10/0x10
[  827.287898][T14609]  ? __pfx___might_resched+0x10/0x10
[  827.287918][T14609]  ? fs_reclaim_acquire+0x7d/0x100
[  827.287947][T14609]  should_fail_ex+0x414/0x560
[  827.287971][T14609]  should_failslab+0xa8/0x100
[  827.287995][T14609]  kmem_cache_alloc_noprof+0x73/0x3c0
[  827.288025][T14609]  ? alloc_empty_file+0x55/0x1d0
[  827.288051][T14609]  alloc_empty_file+0x55/0x1d0
[  827.288073][T14609]  path_openat+0x107/0x3830
[  827.288097][T14609]  ? arch_stack_walk+0xfc/0x150
[  827.288147][T14609]  ? kasan_save_track+0x4f/0x80
[  827.288172][T14609]  ? kasan_save_track+0x3e/0x80
[  827.288198][T14609]  ? __kasan_slab_alloc+0x6c/0x80
[  827.288214][T14609]  ? getname_flags+0xb8/0x540
[  827.288235][T14609]  ? __pfx_path_openat+0x10/0x10
[  827.288258][T14609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.288299][T14609]  do_filp_open+0x1fa/0x410
[  827.288324][T14609]  ? __lock_acquire+0xab9/0xd20
[  827.288344][T14609]  ? __pfx_do_filp_open+0x10/0x10
[  827.288394][T14609]  ? _raw_spin_unlock+0x28/0x50
[  827.288420][T14609]  ? alloc_fd+0x64c/0x6c0
[  827.288453][T14609]  do_sys_openat2+0x121/0x1c0
[  827.288480][T14609]  ? __pfx_do_sys_openat2+0x10/0x10
[  827.288506][T14609]  ? ksys_write+0x22a/0x250
[  827.288527][T14609]  ? __pfx_ksys_write+0x10/0x10
[  827.288541][T14609]  ? rcu_is_watching+0x15/0xb0
[  827.288561][T14609]  __x64_sys_openat+0x138/0x170
[  827.288584][T14609]  do_syscall_64+0xfa/0x3b0
[  827.288600][T14609]  ? lockdep_hardirqs_on+0x9c/0x150
[  827.288620][T14609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.288638][T14609]  ? clear_bhb_loop+0x60/0xb0
[  827.288660][T14609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.288678][T14609] RIP: 0033:0x7f3a9178ebe9
[  827.288696][T14609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.288710][T14609] RSP: 002b:00007f3a92587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  827.288729][T14609] RAX: ffffffffffffffda RBX: 00007f3a919b5fa0 RCX: 00007f3a9178ebe9
[  827.288743][T14609] RDX: 00000000000026e1 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  827.288755][T14609] RBP: 00007f3a92587090 R08: 0000000000000000 R09: 0000000000000000
[  827.288765][T14609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  827.288784][T14609] R13: 00007f3a919b6038 R14: 00007f3a919b5fa0 R15: 00007fff7dba5d18
[  827.288814][T14609]  </TASK>
[  827.289270][T14340] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  827.778678][ T5962] usbhid 8-1:1.0: can't add hid device: -71
[  827.780003][T14613] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  827.805419][ T5962] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  827.835853][T14340] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  827.849774][ T5962] usb 8-1: USB disconnect, device number 6
[  827.899979][T14340] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  828.782588][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  829.044088][T14340] 8021q: adding VLAN 0 to HW filter on device bond0
[  829.081252][T14340] 8021q: adding VLAN 0 to HW filter on device team0
[  829.109249][ T4063] bridge0: port 1(bridge_slave_0) entered blocking state
[  829.116445][ T4063] bridge0: port 1(bridge_slave_0) entered forwarding state
[  829.334772][ T3486] bridge0: port 2(bridge_slave_1) entered blocking state
[  829.342017][ T3486] bridge0: port 2(bridge_slave_1) entered forwarding state
[  832.088211][T14677] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  832.207133][T14340] 8021q: adding VLAN 0 to HW filter on device batadv0
[  832.297684][T14682] dlm: non-version read from control device 188
[  833.857814][T14698] random: crng reseeded on system resumption
[  834.704603][T14712] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2624'.
[  834.749485][T14717] fuse: Unknown parameter 'fd��̭M��6��'
[  834.830875][T14340] veth0_vlan: entered promiscuous mode
[  834.875536][T14340] veth1_vlan: entered promiscuous mode
[  835.059972][T14720] netlink: 'syz.7.2626': attribute type 2 has an invalid length.
[  835.068112][T14340] veth0_macvtap: entered promiscuous mode
[  835.079396][T14340] veth1_macvtap: entered promiscuous mode
[  835.127979][T14340] batman_adv: batadv0: Interface activated: batadv_slave_0
[  835.164285][T14340] batman_adv: batadv0: Interface activated: batadv_slave_1
[  835.268083][T14340] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  835.283449][T14340] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  835.292280][T14340] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  835.332645][T14340] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  835.342160][ T5888] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  835.495065][ T5888] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  835.520047][T12928] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  835.532098][ T5888] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  835.547641][T12928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  835.598645][ T5888] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  835.612102][ T5888] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  835.621483][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  835.640165][ T5888] usb 5-1: config 0 descriptor??
[  835.667153][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  835.676279][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  835.832601][T11886] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  836.019949][T11886] usb 7-1: device descriptor read/64, error -71
[  836.534676][T11886] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  836.583295][ T5888] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  836.793232][T11886] usb 7-1: device descriptor read/64, error -71
[  836.993297][T11886] usb usb7-port1: attempt power cycle
[  837.690975][T14751] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2635'.
[  837.797962][T11886] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  837.838340][T11886] usb 7-1: device descriptor read/8, error -71
[  838.162980][T11886] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  838.173586][ T5888] usb 5-1: USB disconnect, device number 22
[  838.208358][T11886] usb 7-1: device descriptor read/8, error -71
[  838.346446][T11886] usb usb7-port1: unable to enumerate USB device
[  838.397602][T14756] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2636'.
[  838.869928][T14758] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2638'.
[  839.716565][T14766] random: crng reseeded on system resumption
[  840.387375][T14768] xt_CT: You must specify a L4 protocol and not use inversions on it
[  840.475509][T14773] : entered promiscuous mode
[  842.758167][T14787] fuse: Bad value for 'fd'
[  843.837551][T14797] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  843.901674][T14804] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2652'.
[  844.113189][T11886] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  844.160724][ T5917] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  844.412723][T11886] usb 7-1: Using ep0 maxpacket: 8
[  844.440551][T11886] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  844.472668][T11886] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  844.505848][T11886] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  844.524404][ T5917] usb 1-1: config 0 has an invalid interface number: 95 but max is 0
[  844.562617][T11886] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  844.575950][ T5917] usb 1-1: config 0 has no interface number 0
[  844.582090][ T5917] usb 1-1: config 0 interface 95 altsetting 0 endpoint 0x5 has an invalid bInterval 191, changing to 11
[  844.605583][T11886] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  844.742757][ T5917] usb 1-1: config 0 interface 95 altsetting 0 endpoint 0x5 has invalid maxpacket 34313, setting to 1024
[  844.754088][T11886] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  844.769361][ T5917] usb 1-1: config 0 interface 95 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 8
[  845.038776][T14815] PKCS8: Unsupported PKCS#8 version
[  845.742539][T14816] infiniband syz!: set active
[  845.747284][T14816] infiniband syz!: added team_slave_0
[  845.753767][T14816] syz!: rxe_create_cq: returned err = -12
[  845.759674][T14816] infiniband syz!: Couldn't create ib_mad CQ
[  845.766067][T14816] infiniband syz!: Couldn't open port 1
[  845.778897][T11886] usb 7-1: GET_CAPABILITIES returned 0
[  845.797200][ T5917] usb 1-1: New USB device found, idVendor=7725, idProduct=b0a8, bcdDevice= 7.46
[  845.807845][T14816] RDS/IB: syz!: added
[  845.811947][T14816] smc: adding ib device syz! with port count 1
[  845.819581][T14816] smc:    ib device syz! port 1 has pnetid 
[  845.845404][T11886] usbtmc 7-1:16.0: can't read capabilities
[  845.851357][ T5917] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  845.860769][ T5917] usb 1-1: Product: syz
[  845.865242][ T5917] usb 1-1: Manufacturer: syz
[  845.869935][ T5917] usb 1-1: SerialNumber: syz
[  845.888569][ T5917] usb 1-1: config 0 descriptor??
[  845.913276][T14802] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  845.932594][T14802] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  845.961936][   T43] usb 7-1: USB disconnect, device number 17
[  847.655890][T14831] FAULT_INJECTION: forcing a failure.
[  847.655890][T14831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  847.849958][T14831] CPU: 1 UID: 0 PID: 14831 Comm: syz.7.2660 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  847.849985][T14831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  847.849998][T14831] Call Trace:
[  847.850005][T14831]  <TASK>
[  847.850014][T14831]  dump_stack_lvl+0x189/0x250
[  847.850046][T14831]  ? __pfx____ratelimit+0x10/0x10
[  847.850066][T14831]  ? __pfx_dump_stack_lvl+0x10/0x10
[  847.850087][T14831]  ? __pfx__printk+0x10/0x10
[  847.850124][T14831]  should_fail_ex+0x414/0x560
[  847.850150][T14831]  _copy_to_user+0x31/0xb0
[  847.850178][T14831]  simple_read_from_buffer+0xe1/0x170
[  847.850205][T14831]  proc_fail_nth_read+0x1df/0x250
[  847.850233][T14831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  847.850259][T14831]  ? rw_verify_area+0x258/0x650
[  847.850283][T14831]  ? rcu_read_unlock_special+0x3fe/0x4c0
[  847.850307][T14831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  847.850329][T14831]  vfs_read+0x200/0x980
[  847.850354][T14831]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  847.850386][T14831]  ? __pfx___mutex_lock+0x10/0x10
[  847.850408][T14831]  ? __pfx_vfs_read+0x10/0x10
[  847.850442][T14831]  ? __rcu_read_unlock+0x84/0xe0
[  847.850470][T14831]  ? __fget_files+0x3a0/0x420
[  847.850490][T14831]  ? __fget_files+0x2a/0x420
[  847.850522][T14831]  ksys_read+0x145/0x250
[  847.850543][T14831]  ? __pfx_ksys_read+0x10/0x10
[  847.850558][T14831]  ? rcu_is_watching+0x15/0xb0
[  847.850585][T14831]  ? do_syscall_64+0xbe/0x3b0
[  847.850611][T14831]  do_syscall_64+0xfa/0x3b0
[  847.850633][T14831]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.850651][T14831]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  847.850669][T14831]  ? clear_bhb_loop+0x60/0xb0
[  847.850692][T14831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.850710][T14831] RIP: 0033:0x7f577a78d5fc
[  847.850728][T14831] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  847.850745][T14831] RSP: 002b:00007f577b510030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  847.850766][T14831] RAX: ffffffffffffffda RBX: 00007f577a9b5fa0 RCX: 00007f577a78d5fc
[  847.850781][T14831] RDX: 000000000000000f RSI: 00007f577b5100a0 RDI: 0000000000000005
[  847.850793][T14831] RBP: 00007f577b510090 R08: 0000000000000000 R09: 0000000000000000
[  847.850805][T14831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  847.850816][T14831] R13: 00007f577a9b6038 R14: 00007f577a9b5fa0 R15: 00007ffcbc6423f8
[  847.850849][T14831]  </TASK>
[  848.660838][ T5917] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  848.777961][ T5917] usb 1-1: MIDIStreaming interface descriptor not found
[  849.278472][ T5917] usb 1-1: USB disconnect, device number 31
[  850.238544][T14860] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2665'.
[  851.337656][ T5917] kernel write not supported for file /45/comm (pid: 5917 comm: kworker/1:6)
[  851.453215][T14871] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2669'.
[  856.096604][T14907] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2678'.
[  856.173384][ T5962] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  856.413455][ T5962] usb 8-1: Using ep0 maxpacket: 8
[  856.433939][ T5962] usb 8-1: config index 0 descriptor too short (expected 29970, got 18)
[  856.449245][ T5962] usb 8-1: config 0 has too many interfaces: 168, using maximum allowed: 32
[  856.461078][ T5962] usb 8-1: config 0 has an invalid interface number: 187 but max is 167
[  857.097892][ T5962] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 168
[  857.107383][ T5962] usb 8-1: config 0 has no interface number 0
[  857.184467][ T5962] usb 8-1: config 0 interface 187 altsetting 172 has 0 endpoint descriptors, different from the interface descriptor's value: 20
[  857.212525][ T5962] usb 8-1: config 0 interface 187 has no altsetting 0
[  857.233752][ T5962] usb 8-1: New USB device found, idVendor=0545, idProduct=800c, bcdDevice= 3.0a
[  857.265839][ T5962] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  857.282628][ T5962] usb 8-1: Product: syz
[  857.294959][ T5962] usb 8-1: Manufacturer: syz
[  857.306484][ T5962] usb 8-1: SerialNumber: syz
[  857.349316][ T5962] usb 8-1: config 0 descriptor??
[  857.431012][   T30] audit: type=1326 audit(1755037005.064:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14915 comm="syz.5.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f367678ebe9 code=0x7ffc0000
[  857.580693][   T30] audit: type=1326 audit(1755037005.064:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14915 comm="syz.5.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f367678ebe9 code=0x7ffc0000
[  857.671984][   T30] audit: type=1326 audit(1755037005.074:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14915 comm="syz.5.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f367678ebe9 code=0x7ffc0000
[  857.884128][   T30] audit: type=1326 audit(1755037005.074:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14915 comm="syz.5.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f367678ebe9 code=0x7ffc0000
[  858.492015][   T30] audit: type=1326 audit(1755037005.074:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14915 comm="syz.5.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f367678ebe9 code=0x7ffc0000
[  858.846888][T11886] usb 8-1: USB disconnect, device number 7
[  859.000959][T14941] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  859.772773][ T5962] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  859.795535][T14956] PKCS8: Unsupported PKCS#8 version
[  859.901495][T14948] FAULT_INJECTION: forcing a failure.
[  859.901495][T14948] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  859.902981][T14948] 
[  859.902990][T14948] ======================================================
[  859.902997][T14948] WARNING: possible circular locking dependency detected
[  859.903010][T14948] 6.16.0-syzkaller #0 Not tainted
[  859.903020][T14948] ------------------------------------------------------
[  859.903027][T14948] syz.4.2689/14948 is trying to acquire lock:
[  859.903037][T14948] ffffffff8e133300 (console_owner){-.-.}-{0:0}, at: console_flush_all+0x13a/0xc40
[  859.903091][T14948] 
[  859.903091][T14948] but task is already holding lock:
[  859.903097][T14948] ffff8880b8639e18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  859.903138][T14948] 
[  859.903138][T14948] which lock already depends on the new lock.
[  859.903138][T14948] 
[  859.903145][T14948] 
[  859.903145][T14948] the existing dependency chain (in reverse order) is:
[  859.903152][T14948] 
[  859.903152][T14948] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  859.903175][T14948]        lock_acquire+0x120/0x360
[  859.903191][T14948]        _raw_spin_lock_nested+0x32/0x50
[  859.903208][T14948]        raw_spin_rq_lock_nested+0x2a/0x140
[  859.903225][T14948]        task_rq_lock+0xbc/0x470
[  859.903240][T14948]        cgroup_move_task+0x9a/0x590
[  859.903259][T14948]        css_set_move_task+0x658/0x9e0
[  859.903278][T14948]        cgroup_post_fork+0x1ef/0x790
[  859.903293][T14948]        copy_process+0x37e6/0x3b80
[  859.903310][T14948]        kernel_clone+0x224/0x7f0
[  859.903329][T14948]        user_mode_thread+0xdd/0x140
[  859.903348][T14948]        rest_init+0x23/0x300
[  859.903366][T14948]        start_kernel+0x47d/0x500
[  859.903384][T14948]        x86_64_start_reservations+0x24/0x30
[  859.903408][T14948]        x86_64_start_kernel+0x143/0x1c0
[  859.903431][T14948]        common_startup_64+0x13e/0x147
[  859.903453][T14948] 
[  859.903453][T14948] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  859.903486][T14948]        lock_acquire+0x120/0x360
[  859.903501][T14948]        _raw_spin_lock_irqsave+0xa7/0xf0
[  859.903526][T14948]        try_to_wake_up+0x6e/0x1290
[  859.903548][T14948]        __wake_up_common_lock+0x137/0x1f0
[  859.903572][T14948]        tty_port_default_wakeup+0xa2/0xf0
[  859.903597][T14948]        serial8250_tx_chars+0x72e/0x970
[  859.903620][T14948]        serial8250_handle_irq+0x633/0xbb0
[  859.903643][T14948]        serial8250_default_handle_irq+0xbf/0x1b0
[  859.903660][T14948]        serial8250_interrupt+0xa2/0x1d0
[  859.903679][T14948]        __handle_irq_event_percpu+0x289/0x980
[  859.903701][T14948]        handle_irq_event+0x8b/0x1e0
[  859.903721][T14948]        handle_edge_irq+0x267/0x9c0
[  859.903740][T14948]        __common_interrupt+0x140/0x250
[  859.903764][T14948]        common_interrupt+0xb6/0xe0
[  859.903786][T14948]        asm_common_interrupt+0x26/0x40
[  859.903802][T14948]        pv_native_safe_halt+0x13/0x20
[  859.903818][T14948]        default_idle+0x13/0x20
[  859.903837][T14948]        default_idle_call+0x74/0xb0
[  859.903857][T14948]        do_idle+0x1e8/0x510
[  859.903874][T14948]        cpu_startup_entry+0x44/0x60
[  859.903891][T14948]        rest_init+0x2de/0x300
[  859.903912][T14948]        start_kernel+0x47d/0x500
[  859.903930][T14948]        x86_64_start_reservations+0x24/0x30
[  859.903953][T14948]        x86_64_start_kernel+0x143/0x1c0
[  859.903976][T14948]        common_startup_64+0x13e/0x147
[  859.903998][T14948] 
[  859.903998][T14948] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[  859.904022][T14948]        lock_acquire+0x120/0x360
[  859.904036][T14948]        _raw_spin_lock_irqsave+0xa7/0xf0
[  859.904061][T14948]        __wake_up_common_lock+0x2f/0x1f0
[  859.904084][T14948]        tty_port_default_wakeup+0xa2/0xf0
[  859.904110][T14948]        serial8250_tx_chars+0x72e/0x970
[  859.904132][T14948]        serial8250_handle_irq+0x633/0xbb0
[  859.904155][T14948]        serial8250_default_handle_irq+0xbf/0x1b0
[  859.904171][T14948]        serial8250_interrupt+0xa2/0x1d0
[  859.904190][T14948]        __handle_irq_event_percpu+0x289/0x980
[  859.904213][T14948]        handle_irq_event+0x8b/0x1e0
[  859.904234][T14948]        handle_edge_irq+0x267/0x9c0
[  859.904252][T14948]        __common_interrupt+0x140/0x250
[  859.904276][T14948]        common_interrupt+0xb6/0xe0
[  859.904298][T14948]        asm_common_interrupt+0x26/0x40
[  859.904314][T14948]        pv_native_safe_halt+0x13/0x20
[  859.904329][T14948]        default_idle+0x13/0x20
[  859.904349][T14948]        default_idle_call+0x74/0xb0
[  859.904369][T14948]        do_idle+0x1e8/0x510
[  859.904385][T14948]        cpu_startup_entry+0x44/0x60
[  859.904403][T14948]        rest_init+0x2de/0x300
[  859.904423][T14948]        start_kernel+0x47d/0x500
[  859.904441][T14948]        x86_64_start_reservations+0x24/0x30
[  859.904464][T14948]        x86_64_start_kernel+0x143/0x1c0
[  859.904493][T14948]        common_startup_64+0x13e/0x147
[  859.904514][T14948] 
[  859.904514][T14948] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  859.904538][T14948]        lock_acquire+0x120/0x360
[  859.904552][T14948]        _raw_spin_lock_irqsave+0xa7/0xf0
[  859.904578][T14948]        serial8250_console_write+0x17e/0x1ba0
[  859.904602][T14948]        console_flush_all+0x728/0xc40
[  859.904623][T14948]        console_unlock+0xc4/0x270
[  859.904641][T14948]        vprintk_emit+0x5b7/0x7a0
[  859.904659][T14948]        _printk+0xcf/0x120
[  859.904678][T14948]        register_console+0xa8b/0xf90
[  859.904700][T14948]        univ8250_console_init+0x52/0x90
[  859.904721][T14948]        console_init+0x1a1/0x670
[  859.904741][T14948]        start_kernel+0x2cc/0x500
[  859.904758][T14948]        x86_64_start_reservations+0x24/0x30
[  859.904782][T14948]        x86_64_start_kernel+0x143/0x1c0
[  859.904804][T14948]        common_startup_64+0x13e/0x147
[  859.904826][T14948] 
[  859.904826][T14948] -> #0 (console_owner){-.-.}-{0:0}:
[  859.904850][T14948]        validate_chain+0xb9b/0x2140
[  859.904868][T14948]        __lock_acquire+0xab9/0xd20
[  859.904883][T14948]        lock_acquire+0x120/0x360
[  859.904896][T14948]        console_flush_all+0x6d2/0xc40
[  859.904917][T14948]        console_unlock+0xc4/0x270
[  859.904935][T14948]        vprintk_emit+0x5b7/0x7a0
[  859.904954][T14948]        _printk+0xcf/0x120
[  859.904973][T14948]        should_fail_ex+0x3f5/0x560
[  859.904989][T14948]        strncpy_from_user+0x36/0x290
[  859.905014][T14948]        strncpy_from_user_nofault+0x72/0x150
[  859.905032][T14948]        bpf_bprintf_prepare+0xb9b/0x1410
[  859.905055][T14948]        bpf_trace_printk+0xdb/0x190
[  859.905071][T14948]        bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  859.905086][T14948]        bpf_trace_run2+0x284/0x4b0
[  859.905107][T14948]        __bpf_trace_contention_begin+0xdc/0x130
[  859.905127][T14948]        trace_contention_begin+0x114/0x140
[  859.905148][T14948]        __pv_queued_spin_lock_slowpath+0xf0/0xb60
[  859.905167][T14948]        queued_spin_lock_slowpath+0x43/0x50
[  859.905190][T14948]        do_raw_spin_lock+0x21f/0x290
[  859.905211][T14948]        raw_spin_rq_lock_nested+0x2a/0x140
[  859.905228][T14948]        __schedule+0x330/0x4c90
[  859.905242][T14948]        preempt_schedule_irq+0xb5/0x150
[  859.905258][T14948]        irqentry_exit+0x6f/0x90
[  859.905274][T14948]        asm_sysvec_reschedule_ipi+0x1a/0x20
[  859.905291][T14948]        __x64_sys_epoll_pwait+0x213/0x250
[  859.905308][T14948]        do_syscall_64+0xfa/0x3b0
[  859.905327][T14948]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.905343][T14948] 
[  859.905343][T14948] other info that might help us debug this:
[  859.905343][T14948] 
[  859.905349][T14948] Chain exists of:
[  859.905349][T14948]   console_owner --> &p->pi_lock --> &rq->__lock
[  859.905349][T14948] 
[  859.905378][T14948]  Possible unsafe locking scenario:
[  859.905378][T14948] 
[  859.905384][T14948]        CPU0                    CPU1
[  859.905390][T14948]        ----                    ----
[  859.905395][T14948]   lock(&rq->__lock);
[  859.905407][T14948]                                lock(&p->pi_lock);
[  859.905420][T14948]                                lock(&rq->__lock);
[  859.905433][T14948]   lock(console_owner);
[  859.905445][T14948] 
[  859.905445][T14948]  *** DEADLOCK ***
[  859.905445][T14948] 
[  859.905450][T14948] 4 locks held by syz.4.2689/14948:
[  859.905461][T14948]  #0: ffff8880b8639e18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  859.905511][T14948]  #1: ffffffff8e13f0e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x186/0x4b0
[  859.905558][T14948]  #2: ffffffff8e133360 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[  859.905603][T14948]  #3: ffffffff8e01ac30 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40
[  859.905650][T14948] 
[  859.905650][T14948] stack backtrace:
[  859.905659][T14948] CPU: 0 UID: 0 PID: 14948 Comm: syz.4.2689 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  859.905680][T14948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  859.905692][T14948] Call Trace:
[  859.905699][T14948]  <TASK>
[  859.905707][T14948]  dump_stack_lvl+0x189/0x250
[  859.905729][T14948]  ? __pfx_dump_stack_lvl+0x10/0x10
[  859.905749][T14948]  ? __pfx__printk+0x10/0x10
[  859.905772][T14948]  ? print_lock_name+0xde/0x100
[  859.905796][T14948]  print_circular_bug+0x2ee/0x310
[  859.905820][T14948]  check_noncircular+0x134/0x160
[  859.905844][T14948]  validate_chain+0xb9b/0x2140
[  859.905875][T14948]  __lock_acquire+0xab9/0xd20
[  859.905895][T14948]  ? console_flush_all+0x13a/0xc40
[  859.905917][T14948]  lock_acquire+0x120/0x360
[  859.905933][T14948]  ? console_flush_all+0x13a/0xc40
[  859.905959][T14948]  ? do_raw_spin_unlock+0x122/0x240
[  859.905982][T14948]  ? console_flush_all+0x13a/0xc40
[  859.906006][T14948]  console_flush_all+0x6d2/0xc40
[  859.906028][T14948]  ? console_flush_all+0x13a/0xc40
[  859.906052][T14948]  ? console_flush_all+0x13a/0xc40
[  859.906077][T14948]  ? __pfx_console_flush_all+0x10/0x10
[  859.906102][T14948]  ? trace_event_buffer_commit+0x264/0x7f0
[  859.906125][T14948]  ? is_printk_cpu_sync_owner+0x32/0x40
[  859.906153][T14948]  console_unlock+0xc4/0x270
[  859.906174][T14948]  ? __pfx_console_unlock+0x10/0x10
[  859.906196][T14948]  ? is_printk_cpu_sync_owner+0x32/0x40
[  859.906223][T14948]  vprintk_emit+0x5b7/0x7a0
[  859.906245][T14948]  ? __pfx_vprintk_emit+0x10/0x10
[  859.906264][T14948]  ? bpf_trace_printk+0x126/0x190
[  859.906282][T14948]  ? __lock_acquire+0xab9/0xd20
[  859.906299][T14948]  ? __pfx_bpf_trace_printk+0x10/0x10
[  859.906318][T14948]  ? arch_irq_work_raise+0x6d/0x80
[  859.906343][T14948]  ? __irq_work_queue_local+0x1d7/0x550
[  859.906373][T14948]  _printk+0xcf/0x120
[  859.906395][T14948]  ? __pfx____ratelimit+0x10/0x10
[  859.906414][T14948]  ? __pfx__printk+0x10/0x10
[  859.906440][T14948]  ? irq_work_queue+0xbc/0x140
[  859.906475][T14948]  should_fail_ex+0x3f5/0x560
[  859.906495][T14948]  strncpy_from_user+0x36/0x290
[  859.906524][T14948]  strncpy_from_user_nofault+0x72/0x150
[  859.906545][T14948]  bpf_bprintf_prepare+0xb9b/0x1410
[  859.906575][T14948]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  859.906602][T14948]  ? bpf_trace_printk+0xc1/0x190
[  859.906623][T14948]  bpf_trace_printk+0xdb/0x190
[  859.906640][T14948]  ? __lock_acquire+0xab9/0xd20
[  859.906657][T14948]  ? __pfx_bpf_trace_printk+0x10/0x10
[  859.906677][T14948]  ? bpf_trace_run2+0x186/0x4b0
[  859.906707][T14948]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  859.906722][T14948]  bpf_trace_run2+0x284/0x4b0
[  859.906744][T14948]  ? bpf_trace_run2+0x186/0x4b0
[  859.906768][T14948]  ? __pfx_bpf_trace_run2+0x10/0x10
[  859.906792][T14948]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  859.906817][T14948]  ? __bpf_trace_contention_begin+0xcd/0x130
[  859.906841][T14948]  __bpf_trace_contention_begin+0xdc/0x130
[  859.906863][T14948]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  859.906884][T14948]  ? stack_trace_save+0x9c/0xe0
[  859.906907][T14948]  ? stack_depot_save_flags+0x40/0x900
[  859.906931][T14948]  trace_contention_begin+0x114/0x140
[  859.906954][T14948]  __pv_queued_spin_lock_slowpath+0xf0/0xb60
[  859.906975][T14948]  ? rcu_qs+0xc4/0x170
[  859.906992][T14948]  ? __pfx_rcu_qs+0x10/0x10
[  859.907011][T14948]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  859.907039][T14948]  queued_spin_lock_slowpath+0x43/0x50
[  859.907064][T14948]  do_raw_spin_lock+0x21f/0x290
[  859.907088][T14948]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  859.907116][T14948]  raw_spin_rq_lock_nested+0x2a/0x140
[  859.907137][T14948]  __schedule+0x330/0x4c90
[  859.907160][T14948]  ? __fput_deferred+0x215/0x390
[  859.907183][T14948]  ? __pfx___fput_deferred+0x10/0x10
[  859.907205][T14948]  ? preempt_schedule_irq+0xb5/0x150
[  859.907225][T14948]  ? __pfx___schedule+0x10/0x10
[  859.907242][T14948]  ? do_epoll_wait+0xece/0xf40
[  859.907268][T14948]  ? preempt_schedule_irq+0xaa/0x150
[  859.907287][T14948]  preempt_schedule_irq+0xb5/0x150
[  859.907305][T14948]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  859.907327][T14948]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  859.907348][T14948]  irqentry_exit+0x6f/0x90
[  859.907365][T14948]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  859.907384][T14948] RIP: 0010:__x64_sys_epoll_pwait+0x213/0x250
[  859.907404][T14948] Code: a4 d9 ff 48 8b 7c 24 18 48 8b 74 24 10 48 8b 54 24 08 4c 89 e9 4c 8b 04 24 49 89 d9 e8 e6 50 00 00 48 c7 44 24 20 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 0a 00 00 65 48 8b 0d e5 24
[  859.907419][T14948] RSP: 0018:ffffc90005127e00 EFLAGS: 00000293
[  859.907434][T14948] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffff88802795da00
[  859.907447][T14948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  859.907458][T14948] RBP: ffffc90005127ee0 R08: ffff88802795da07 R09: 1ffff11004f2bb40
[  859.907484][T14948] R10: dffffc0000000000 R11: ffffed1004f2bb41 R12: 1ffff92000a24fc4
[  859.907499][T14948] R13: 0000000000000000 R14: 0000000080000000 R15: dffffc0000000000
[  859.907522][T14948]  ? __pfx___x64_sys_epoll_pwait+0x10/0x10
[  859.907541][T14948]  ? __pfx_ksys_write+0x10/0x10
[  859.907556][T14948]  ? rcu_is_watching+0x15/0xb0
[  859.907578][T14948]  ? do_syscall_64+0xbe/0x3b0
[  859.907600][T14948]  do_syscall_64+0xfa/0x3b0
[  859.907619][T14948]  ? lockdep_hardirqs_on+0x9c/0x150
[  859.907637][T14948]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.907655][T14948]  ? clear_bhb_loop+0x60/0xb0
[  859.907675][T14948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.907693][T14948] RIP: 0033:0x7fa3a5b8ebe9
[  859.907709][T14948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  859.907724][T14948] RSP: 002b:00007fa3a3df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000119
[  859.907742][T14948] RAX: ffffffffffffffda RBX: 00007fa3a5db5fa0 RCX: 00007fa3a5b8ebe9
[  859.907757][T14948] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000007
[  859.907769][T14948] RBP: 00007fa3a3df6090 R08: 0000000000000000 R09: 0000000000000000
[  859.907781][T14948] R10: 0000000080000000 R11: 0000000000000246 R12: 0000000000000001
[  859.907793][T14948] R13: 00007fa3a5db6038 R14: 00007fa3a5db5fa0 R15: 00007ffc342bb0e8
[  859.907815][T14948]  </TASK>
[  861.338859][T14948] CPU: 0 UID: 0 PID: 14948 Comm: syz.4.2689 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  861.338885][T14948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  861.338897][T14948] Call Trace:
[  861.338907][T14948]  <TASK>
[  861.338917][T14948]  dump_stack_lvl+0x189/0x250
[  861.338943][T14948]  ? __pfx____ratelimit+0x10/0x10
[  861.338962][T14948]  ? __pfx_dump_stack_lvl+0x10/0x10
[  861.338982][T14948]  ? __pfx__printk+0x10/0x10
[  861.339008][T14948]  ? irq_work_queue+0xbc/0x140
[  861.339037][T14948]  should_fail_ex+0x414/0x560
[  861.339058][T14948]  strncpy_from_user+0x36/0x290
[  861.339088][T14948]  strncpy_from_user_nofault+0x72/0x150
[  861.339110][T14948]  bpf_bprintf_prepare+0xb9b/0x1410
[  861.339141][T14948]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  861.339168][T14948]  ? bpf_trace_printk+0xc1/0x190
[  861.339189][T14948]  bpf_trace_printk+0xdb/0x190
[  861.339207][T14948]  ? __lock_acquire+0xab9/0xd20
[  861.339225][T14948]  ? __pfx_bpf_trace_printk+0x10/0x10
[  861.339245][T14948]  ? bpf_trace_run2+0x186/0x4b0
[  861.339274][T14948]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  861.339290][T14948]  bpf_trace_run2+0x284/0x4b0
[  861.339314][T14948]  ? bpf_trace_run2+0x186/0x4b0
[  861.339337][T14948]  ? __pfx_bpf_trace_run2+0x10/0x10
[  861.339360][T14948]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  861.339387][T14948]  ? __bpf_trace_contention_begin+0xcd/0x130
[  861.339411][T14948]  __bpf_trace_contention_begin+0xdc/0x130
[  861.339433][T14948]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  861.339454][T14948]  ? stack_trace_save+0x9c/0xe0
[  861.339478][T14948]  ? stack_depot_save_flags+0x40/0x900
[  861.339501][T14948]  trace_contention_begin+0x114/0x140
[  861.339526][T14948]  __pv_queued_spin_lock_slowpath+0xf0/0xb60
[  861.339548][T14948]  ? rcu_qs+0xc4/0x170
[  861.339565][T14948]  ? __pfx_rcu_qs+0x10/0x10
[  861.339591][T14948]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  861.339619][T14948]  queued_spin_lock_slowpath+0x43/0x50
[  861.339644][T14948]  do_raw_spin_lock+0x21f/0x290
[  861.339669][T14948]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  861.339697][T14948]  raw_spin_rq_lock_nested+0x2a/0x140
[  861.339719][T14948]  __schedule+0x330/0x4c90
[  861.339742][T14948]  ? __fput_deferred+0x215/0x390
[  861.339765][T14948]  ? __pfx___fput_deferred+0x10/0x10
[  861.339788][T14948]  ? preempt_schedule_irq+0xb5/0x150
[  861.339809][T14948]  ? __pfx___schedule+0x10/0x10
[  861.339826][T14948]  ? do_epoll_wait+0xece/0xf40
[  861.339872][T14948]  ? preempt_schedule_irq+0xaa/0x150
[  861.339891][T14948]  preempt_schedule_irq+0xb5/0x150
[  861.339910][T14948]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  861.339932][T14948]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  861.339954][T14948]  irqentry_exit+0x6f/0x90
[  861.339972][T14948]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  861.339992][T14948] RIP: 0010:__x64_sys_epoll_pwait+0x213/0x250
[  861.340012][T14948] Code: a4 d9 ff 48 8b 7c 24 18 48 8b 74 24 10 48 8b 54 24 08 4c 89 e9 4c 8b 04 24 49 89 d9 e8 e6 50 00 00 48 c7 44 24 20 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 0a 00 00 65 48 8b 0d e5 24
[  861.340030][T14948] RSP: 0018:ffffc90005127e00 EFLAGS: 00000293
[  861.340047][T14948] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffff88802795da00
[  861.340060][T14948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  861.340072][T14948] RBP: ffffc90005127ee0 R08: ffff88802795da07 R09: 1ffff11004f2bb40
[  861.340086][T14948] R10: dffffc0000000000 R11: ffffed1004f2bb41 R12: 1ffff92000a24fc4
[  861.340101][T14948] R13: 0000000000000000 R14: 0000000080000000 R15: dffffc0000000000
[  861.340125][T14948]  ? __pfx___x64_sys_epoll_pwait+0x10/0x10
[  861.340143][T14948]  ? __pfx_ksys_write+0x10/0x10
[  861.340159][T14948]  ? rcu_is_watching+0x15/0xb0
[  861.340180][T14948]  ? do_syscall_64+0xbe/0x3b0
[  861.340202][T14948]  do_syscall_64+0xfa/0x3b0
[  861.340222][T14948]  ? lockdep_hardirqs_on+0x9c/0x150
[  861.340241][T14948]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.340259][T14948]  ? clear_bhb_loop+0x60/0xb0
[  861.340279][T14948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.340297][T14948] RIP: 0033:0x7fa3a5b8ebe9
[  861.340313][T14948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.340329][T14948] RSP: 002b:00007fa3a3df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000119
[  861.340347][T14948] RAX: ffffffffffffffda RBX: 00007fa3a5db5fa0 RCX: 00007fa3a5b8ebe9
[  861.340361][T14948] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000007
[  861.340373][T14948] RBP: 00007fa3a3df6090 R08: 0000000000000000 R09: 0000000000000000
[  861.340386][T14948] R10: 0000000080000000 R11: 0000000000000246 R12: 0000000000000001
[  861.340398][T14948] R13: 00007fa3a5db6038 R14: 00007fa3a5db5fa0 R15: 00007ffc342bb0e8
[  861.340420][T14948]  </TASK>