last executing test programs:

16.559229963s ago: executing program 1 (id=1958):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000000c0)={0x0, 0x8, 0x0, 0x0, @vifc_lcl_ifindex, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000940)=ANY=[@ANYBLOB="340000003b0007010000000000000000047c00000c00e1000800070000000000140001800600060088470000080011"], 0x34}}, 0x0)

16.449125382s ago: executing program 1 (id=1959):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400001"], 0xb0}}, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000340), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xffffffffffffffff)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r7, &(0x7f0000000280))
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r8, &(0x7f0000001cc0)={0x30000014})
gettid()

14.67905386s ago: executing program 1 (id=1964):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="5c00000026006b949a1fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038000a004231a0e69ee517", 0x2f}, {}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000300)='c8::\x00\x99\xb4\xa1-\xca\xa7)b\x02\xf8\xfeQS^\x04\x99\xe9\xbd\x14Q\x97\x1c\xd0Rp\x8cgp\xaf\xad\x1a\xc7Q\x88>\xe3\x12L\xa1\x9fz\x1a\\\x12n%F\x7fnr\xebg\xbb_};`G\x1e\xae{\xcb\xda\rB\xcc7Z\xaf\xe3N\xdc\xbd\xab\xe7\x93V2zK\xc2\xe7\xd5\xfc\xb3cJ+X\xfbo\x91\xcb\xefqa\\q\xe6\x7f\xb2\xe4\x81\xe4\x0f\xa3\xf0\xdaF m\xd2\xa2\xb1\x87\xe9W\x13\x1b.\x995\x1ep9\x03-\xa3\xd37\x80', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
fallocate(0xffffffffffffffff, 0x60, 0x0, 0x0)
syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="12010003000000402505a8a4400001020301090224000101000004090400000007010020090501020000bab904090582020000020000"], &(0x7f0000000400)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x0, 0x5, 0x27, 0x8, 0x9}, 0x0, 0x0, 0x1, [{0x4, &(0x7f00000003c0)=@lang_id={0x4}}]})
socket(0x10, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDSIGACCEPT(r6, 0x400455c8, 0x4)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000))
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

9.834057311s ago: executing program 1 (id=1977):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
r3 = syz_io_uring_setup(0xf3d, &(0x7f0000000480), &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000540)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)="41c8d88798ea4c37b44ddd09481b099d551ba7ec1f30105e7547cb377c42c6f5be7a505d6943458f3972fd79e4b30e8b071db20351a02a5527c5585f26fbdb2c21fc56a99cf9f2e0587e3651f71abbdcd52392f9354d14732f7aa7166e7b6410965cc183883cb255044b579af5803bac8e70d62323bd5a7cebad9ec95695844b3a35f9", 0x83, 0x4000, 0x1})
io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0)
eventfd(0x0)
io_uring_enter(r3, 0x4ac6, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x401, 0x7, 0x0, 0x0, 0x17, "194f2f83c2e798c3584770116cddc8819592b1"})

7.710231174s ago: executing program 0 (id=1987):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="5c00000026006b949a1fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038000a004231a0e69ee517", 0x2f}, {}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000300)='c8::\x00\x99\xb4\xa1-\xca\xa7)b\x02\xf8\xfeQS^\x04\x99\xe9\xbd\x14Q\x97\x1c\xd0Rp\x8cgp\xaf\xad\x1a\xc7Q\x88>\xe3\x12L\xa1\x9fz\x1a\\\x12n%F\x7fnr\xebg\xbb_};`G\x1e\xae{\xcb\xda\rB\xcc7Z\xaf\xe3N\xdc\xbd\xab\xe7\x93V2zK\xc2\xe7\xd5\xfc\xb3cJ+X\xfbo\x91\xcb\xefqa\\q\xe6\x7f\xb2\xe4\x81\xe4\x0f\xa3\xf0\xdaF m\xd2\xa2\xb1\x87\xe9W\x13\x1b.\x995\x1ep9\x03-\xa3\xd37\x80', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
fallocate(0xffffffffffffffff, 0x60, 0x0, 0x0)
syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="12010003000000402505a8a4400001020301090224000101000004090400000007010020090501020000bab904090582020000020000"], &(0x7f0000000400)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x0, 0x5, 0x27, 0x8, 0x9}, 0x0, 0x0, 0x1, [{0x4, &(0x7f00000003c0)=@lang_id={0x4}}]})
socket(0x10, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDSIGACCEPT(r6, 0x400455c8, 0x4)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000))
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

7.571386587s ago: executing program 1 (id=1988):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000000c0)='2', 0x1, 0xfffffffffffffffe)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000001580)={0x2020}, 0x2020)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000480)='./file1/file0\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="87891874", @ANYRES16=r2, @ANYBLOB="040026bd7000fddbdf25130000000c00990080000000660000000600120007000000"], 0x28}, 0x1, 0x0, 0x0, 0x44}, 0x880)
lgetxattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=@known='system.posix_acl_default\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0)

7.392800771s ago: executing program 1 (id=1989):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002004007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
unshare(0x2040400)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000500)={r2, 0x0, 0x0}, 0x20)
r3 = memfd_create(&(0x7f0000000540)='\xdd#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\xf9\xff\xff\xff\x00\x17?$^\xe1Ob\xe1Y\x03\x00\x00\x00\x00\x00\x00\x00\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\xdc\xaa<\x96\xedE>{\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9\x87\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T[\xb7\xa4\xb0\bk&\xede\x8b\xc2\xb2\xcd\xef\xcf\x0fE\xc5\x86]\xc0]}\xdd^\xf6&\x16>c\x9d\x9c\xc9\x01\x04\x00\x00\xe9h\xbd\x10p\x8f\x14\x1f2\"\x1b;\xfda\x19\x8bo^\x96\x9a~Q\xce\x95\x02\xb8e\xbbG\xb0V[\xfe\x80\x94$y\x8a\\@\xa9^\x95!IJ\xcf\xf7\xafoX/qG\x97ITp\x01\xae\f\"n;%\xecT\xf6\xb6\xbf;\xde\xec\xb4z\xaa\xd9%\xa5;wy~\xcb\x9a\xd7\r\xe2\xcd\xf0C\x16\xbf0\x89\xb4\xf5\x86\xf3\x99\x9bq\xd3\x15\xe1:\x86\xe4\x14\x805K\xcf\xf6\xda\xd1A>\xf4r>\xfdyAH\x0f\x00'/426, 0x5)
fsetxattr$security_capability(r3, &(0x7f0000000000), 0x0, 0x0, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000000)={0x1f, 0x0, @fixed, 0x0, 0x1}, 0xd)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0)
fsetxattr$security_ima(r3, &(0x7f0000000080), &(0x7f0000000040)=@md5={0x1, "d70ec82c696148625acfe64606069033"}, 0xfeb5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='net_dev_start_xmit\x00'}, 0x10)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r5, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002004007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) (async)
unshare(0x2040400) (async)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000500)={r2, 0x0, 0x0}, 0x20) (async)
memfd_create(&(0x7f0000000540)='\xdd#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\xf9\xff\xff\xff\x00\x17?$^\xe1Ob\xe1Y\x03\x00\x00\x00\x00\x00\x00\x00\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\xdc\xaa<\x96\xedE>{\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9\x87\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T[\xb7\xa4\xb0\bk&\xede\x8b\xc2\xb2\xcd\xef\xcf\x0fE\xc5\x86]\xc0]}\xdd^\xf6&\x16>c\x9d\x9c\xc9\x01\x04\x00\x00\xe9h\xbd\x10p\x8f\x14\x1f2\"\x1b;\xfda\x19\x8bo^\x96\x9a~Q\xce\x95\x02\xb8e\xbbG\xb0V[\xfe\x80\x94$y\x8a\\@\xa9^\x95!IJ\xcf\xf7\xafoX/qG\x97ITp\x01\xae\f\"n;%\xecT\xf6\xb6\xbf;\xde\xec\xb4z\xaa\xd9%\xa5;wy~\xcb\x9a\xd7\r\xe2\xcd\xf0C\x16\xbf0\x89\xb4\xf5\x86\xf3\x99\x9bq\xd3\x15\xe1:\x86\xe4\x14\x805K\xcf\xf6\xda\xd1A>\xf4r>\xfdyAH\x0f\x00'/426, 0x5) (async)
fsetxattr$security_capability(r3, &(0x7f0000000000), 0x0, 0x0, 0x0) (async)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) (async)
bind$bt_l2cap(r4, &(0x7f0000000000)={0x1f, 0x0, @fixed, 0x0, 0x1}, 0xd) (async)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0) (async)
fsetxattr$security_ima(r3, &(0x7f0000000080), &(0x7f0000000040)=@md5={0x1, "d70ec82c696148625acfe64606069033"}, 0xfeb5, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='net_dev_start_xmit\x00'}, 0x10) (async)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0) (async)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r5, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="b9180bb76003070c009e40f086dd1fff290000003b0020010010ac14142ee0080001c699da153f0ae0e6e380f60115f683317585d7472ce0ab4439f0f570ff155bc5f73ba3f8bb99a6e8ded1ce485cf058105cd981b42493481cd659416a2e10c9119664f36eb00b333c20c9ec0c222d644bdcb178c1cc53d6960fbb842d6a33dfcde3a1e1848135214baf139753866cadcbe3ce52505e992818cc452bee339d9ab076f484020eaa348a21d7911e4c44905256ec2cc54cca47a198b00c10aff62a4bed43a2ebcad92743fb22c593f28fd4bb7c703cde9cae0569d4c8d9a823f2c12863f7a6c0cf88ed22aae4f6f084508833b61429a25773eedf63dd9f33d430f2a0a30a7761db16fe0f743b95ded898c28aac1256ce2751b3d738899b8b19d9052b7f13ff94", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) (async)

7.134784911s ago: executing program 4 (id=1991):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400001"], 0xb0}}, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000340), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xffffffffffffffff)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
r7 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, 0xffffffffffffffff, &(0x7f0000000280))
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000001cc0)={0x30000014})
gettid()

5.501266599s ago: executing program 2 (id=1995):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$packet(0x11, 0x2, 0x300)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r1 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000c00), 0x0, 0x0)
syz_clone(0x1100, &(0x7f0000005500), 0x0, &(0x7f0000005540), 0x0, 0x0)
syz_io_uring_setup(0x5169, &(0x7f0000000440)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000100), &(0x7f0000000240))
r3 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000680)='source\x84\xcc\xa03\'C\xc1\x87a\x95\xdeY\xfd\x1b\xea\n\xa5m3\x94\xd0r\x81\xb6\x1c\x84\x12\xc9\x89\xc6\x00\x0e\x98\xb8\xe4I\x005\xc0\xc9\x17\xbcs\xf4\x1d\x10\xc9\x9c\x14\'J\xe4\xd0h\f\bP\xd4@\xd1\xea\xa6LQP\xc9_\xbfr\xf2\x7fU\xe5\xe3\xd5]\x13F\xd3\xf0\x96HLKk{\x88\xa4\xac\x04\x1bkg\xa1a\xa1\x16\a\xf7\xcf\xe7gy\xe2\xc0\xe0z5%\x9duG\x8aJ\xc6B\x9e\xae!\xdf!\x18\x91\xact]^\xa9@\xd4Y\xb5\xfd)a\"\xab\xc7\x17w9\x1b\xe0\xa3\x04J\x11\'\xc7\x99k#\xccN\xbe\xb9\xa5UH)\xaeK\xaa\xf5\x1cj\xa6\xa3Z\xc8\xc3\xac\xe4\x99&\xb3T\xb8\xb6*\xb9]l&\"\xc5\xff\x05\xf3\x9c\xb9\x91z!T8\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00A\x9dy\xfe\x95M\x88\'PC\a0\xee\xef\x01\xc9\xb1\x86\xba\xb3\x88)\xfaT>\xa71\x9e\xbawQ\xe6\xbb\x16\x81\xe3/\x9e\xd8\xc2\x9aVR\xda\x12\xd0C\xa8\xefc\xded\xb40V\x1c\xe4\xa5\xfaoj\xd5v\x11\xd7\xa7(H\x97Q[ <=K\x89\xde\x13\xac\xba\b\xc3\x94{\xfe\x87\xeac)(\x89/\xe4i\x83\xefd\x1b\xaa\xb63\x13\x90C\x14\'\xb5y\xc7\xfa\xe9a\xd1\xa5\xc9R`\xa3\xc1\xf1mx\xbfZ\x90\xd49\x84\xcd\xee\x1bf\x82\xe6\xf1W\xba\a\xa1\xe6\xd6\xe09h\xfc\xc2m\xd1\x86\xa0\xd1', &(0x7f00000002c0)='Y\xd9\xbeu\x00'/16, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000400)={0xc})
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
pwritev2(0xffffffffffffffff, &(0x7f00000012c0)=[{&(0x7f0000000100)="7270aa3f0c63ef31716980d71af481e691d156e5c690c37493c965008b713ed133a85027d43b49d05b8ec0e538f674752205f76fb42632a5233a7d64e1cea692029b6a", 0x43}], 0x1, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000ac0)={0x1, 0x0, [{0x0, 0x3a, &(0x7f0000000200)=""/58}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)

5.437656445s ago: executing program 4 (id=1996):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x1c, &(0x7f0000000500)="ac92d8b1d530e0c6bfac36b364b4cdca9b732c4743189d9e9936b9a88d782a8e5adc47c5e2c644c955b5acb4526b9478d386399e91c07a19ab687254ae2f8bf6780d2cd48761a8ae6df15d67e27fe2dca95c798011b1784fd43450a5f214b64ae2b0d55a924bc5eb3b8073b9c33b896ab7ad051b8fd42431ab82f4ba6c9e5556a66b0ab5a6e442bbfc014c91339351f99cb48beaa754d152879bffb0c94879e27f524caa47074ee997110d06e14292bacd71a65bf0b4dbd563567a9b2a8ab758455a087395117326545c7a3830be", 0xce)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400)='cgroup2\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000140), 0x4)
getsockopt$bt_hci(r1, 0x11a, 0x1, 0x0, &(0x7f00000004c0)=0x35)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009700000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='hwmon_attr_show_string\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=@ipv6_newrule={0x54, 0x20, 0x4, 0x70bd29, 0x25dfdbff, {0xa, 0x0, 0x80, 0x67, 0x7, 0x0, 0x0, 0x0, 0x21}, [@FIB_RULE_POLICY=@FRA_FWMASK={0x8, 0x10, 0x4}, @FRA_SRC={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}, @FIB_RULE_POLICY=@FRA_TABLE={0x8, 0xf, 0x3}, @FRA_DST={0x14, 0x1, @mcast2}]}, 0x54}, 0x1, 0x0, 0x0, 0x80c0}, 0x24004844)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

5.395608291s ago: executing program 3 (id=1997):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$packet(0x11, 0x0, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[], 0x48}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
setuid(0xee01)
ioctl$SIOCRSACCEPT(r4, 0x890b)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000440)='wlan0\x00', 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x400c8c6, &(0x7f0000000180)={0x2, 0x0, @multicast2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000008c0)='personality\x00')
pread64(r5, &(0x7f0000000280)=""/219, 0xdb, 0xfffffffffffffff8)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000000)=0x27)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r7 = socket$inet6(0xa, 0x80002, 0x0)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000040))

4.557436249s ago: executing program 0 (id=1998):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
r3 = syz_io_uring_setup(0xf3d, &(0x7f0000000480), &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000540)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)="41c8d88798ea4c37b44ddd09481b099d551ba7ec1f30105e7547cb377c42c6f5be7a505d6943458f3972fd79e4b30e8b071db20351a02a5527c5585f26fbdb2c21fc56a99cf9f2e0587e3651f71abbdcd52392f9354d14732f7aa7166e7b6410965cc183883cb255044b579af5803bac8e70d62323bd5a7cebad9ec95695844b3a35f9", 0x83, 0x4000, 0x1})
io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0)
eventfd(0x0)
io_uring_enter(r3, 0x4ac6, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x401, 0x7, 0x0, 0x0, 0x17, "194f2f83c2e798c3584770116cddc8819592b1"})

4.331551531s ago: executing program 3 (id=1999):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
io_uring_setup(0x120, &(0x7f00000000c0))
ioctl$SNDCTL_DSP_SPEED(r0, 0x5450, &(0x7f0000000040))
close_range(r0, 0xffffffffffffffff, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)

4.312989196s ago: executing program 2 (id=2000):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001e00)={'lo\x00', <r4=>0x0})
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_WRITE_DEF_DATA_LEN}}, 0x7)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r4}]}, 0x1c}}, 0x0)
preadv(r0, &(0x7f0000000240), 0x0, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()

4.229323171s ago: executing program 4 (id=2001):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000500000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000007000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.200651035s ago: executing program 4 (id=2002):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
r0 = socket$packet(0x11, 0x3, 0x300)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
fcntl$getown(0xffffffffffffffff, 0x9)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), 0x0)
setuid(0x0)
r5 = socket(0x10, 0x3, 0x0)
write(r5, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d)
recvmmsg(r5, &(0x7f0000001500)=[{{0x0, 0x117, 0x0}}, {{&(0x7f0000000000)=@xdp, 0x80, &(0x7f00000011c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/236, 0xec}], 0x2, &(0x7f0000001200)=""/97, 0x61}}, {{&(0x7f00000015c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000001300)=""/68, 0x44}, {&(0x7f0000001380)=""/197, 0xc5}], 0x2e3, &(0x7f00000014c0)=""/45, 0x38}}], 0x3, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(r5, 0x40d, &(0x7f00000001c0))
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)

3.206292538s ago: executing program 3 (id=2003):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400)='cgroup2\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (fail_nth: 6)

3.117190448s ago: executing program 0 (id=2004):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f00000000c0)=""/61, 0xfec4)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x6, &(0x7f00000000c0)=[{0x0, 0xff, 0x8, 0x100}, {0x7f6e, 0x2, 0xe9, 0x1}, {0x400, 0x9, 0xff, 0x6}, {0x100, 0x0, 0x1e, 0x3}, {0x8, 0x5, 0x7d, 0x5}, {0x5, 0x40, 0x1, 0x8000}]})
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r4 = dup(r3)
ppoll(&(0x7f0000000180)=[{r4}], 0x1, &(0x7f00000001c0)={0x0, 0x989680}, 0x0, 0x0)
ioctl$VHOST_VDPA_SET_GROUP_ASID(r2, 0x4008af7c, &(0x7f0000000080)={0x0, 0x400})
ioprio_set$uid(0x3, 0x0, 0x0)
syz_io_uring_setup(0x24fe, &(0x7f0000000180)={0x0, 0x5fa0, 0x0, 0xfffffffc, 0x2f5}, &(0x7f0000000100), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="020100000e00000000000000000000000200130000000000000000000000000005000500000000000a0000000000000000000000000000000000ffff00000000000000000000000005000600000000000a0000000000f04efc00"/112], 0x70}}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r5, 0x40107446, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x72ea}]})
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="043d0eaaaaaaaaaa10bc205c7f30b257b9b56077dac5989b6963cb480ea7646257012a612c62a8a28b2c0e523427815b13ac93285f3cb016c18f150d2f0a89713e22745d7c30db48e9a979b684fdb54c5a5a1ff99485badc283586ed68c90b12e61f56b8fca5bea17ef38a60aa7b0efbf449c5f171c189c3f7c05aac28a8d0e4f3df3f7550692630902fb0bcb349276cdb"], 0x11)
add_key$user(0x0, 0x0, &(0x7f0000000200)="4319e2aabc1e4a13e696a7f0d7557242d86bf77f9c16bad3035548f5cdb5bc12d17a90b4063934ce295fa65c2323953d5e52a3ff4c543f094d35b793ab9f722d816203247e4fb54ca97d0053f1606f9fe21d35d3b25e2c3a713579039c1ea1f53a", 0x61, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.116807758s ago: executing program 2 (id=2005):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="3c75c2015e8724b5a4c586f2ae924b27", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
sendmmsg$alg(r2, 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f00000010c0)={0x2020}, 0x2020)

2.696639653s ago: executing program 3 (id=2006):
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r1, 0x65, 0x1, &(0x7f0000000080), 0x1d0)
bind$can_raw(r1, &(0x7f0000000000)={0x1d, 0x0, 0x1000000}, 0x10)

2.122759587s ago: executing program 2 (id=2007):
r0 = socket(0x0, 0x80005, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399eb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname(r1, &(0x7f00000000c0)=@xdp={0x2c, 0x0, <r2=>0x0}, &(0x7f0000000140)=0x80)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
bind$inet6(r0, &(0x7f00000004c0)={0xa, 0x4e24, 0x3ff, @remote, 0x3}, 0x1c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x208e24b)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r5, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x28, 0x0, 0x0, @dev}, 0x10)
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
r7 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000002c0)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7e4968ab9f26f2da4149683f065714f8a000000008000000127cf0999459cff33a3a9ae50f1af9d51ef5bef3d63520d260804d02200", 0x3c}, 0x65, 0xfffffffffffffffd)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@index_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000380)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xc, 0x4, 0x0, 0x0, 0x30, 0xffff, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@cipso={0x86, 0x19, 0x0, [{0x1, 0x11, "4f1347dfaaca82c253d084b7a02d70"}, {0x0, 0x2}]}]}}}}})
mknod$loop(0x0, 0x0, 0x1)
mount$afs(&(0x7f0000000640)=ANY=[@ANYRES64=r7, @ANYRES8, @ANYBLOB="9a6e37af333d96044549c35880fc17411b1e92aa6af7625cbe9e4032b63715c42085f446e2bd670736f16f12db89ad8be08ac6e2f9986fcaee6eb40461d8eab372603960a3d3ce4356f86fc4cc7cf71aed0cb288bb0c23b50014560cea4a4189e31c9fa900bd3e8d16a455703ef7fc99dd9db0772fa67186fc8b5ed2dd030000008506c551a1632e36f460225454300a75cc901c95c77a0b730f8184f56e28a7c1d4"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x2000000, 0x0)
epoll_create1(0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r8, 0x8924, &(0x7f0000000240)={'macsec0\x00', 0x1})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000440), 0x2, 0x4}}, 0x20)

2.083537318s ago: executing program 0 (id=2008):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe)
sendmsg$alg(0xffffffffffffffff, 0x0, 0x0)
shutdown(r3, 0xffffffffffffff80)

1.613243981s ago: executing program 3 (id=2009):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$packet(0x11, 0x0, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[], 0x48}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
setuid(0xee01)
ioctl$SIOCRSACCEPT(r2, 0x890b)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000440)='wlan0\x00', 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x400c8c6, &(0x7f0000000180)={0x2, 0x0, @multicast2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000008c0)='personality\x00')
pread64(r3, &(0x7f0000000280)=""/219, 0xdb, 0xfffffffffffffff8)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000000)=0x27)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r5 = socket$inet6(0xa, 0x80002, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000040))

779.053262ms ago: executing program 0 (id=2010):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000780), 0x408c0, 0x0)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000580), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xff6f}}, 0x20008004)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xc, {"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", 0x3b3cc1e9e7df1ab7}}, 0x9b)
prlimit64(0x0, 0x8, &(0x7f0000000280)={0x9, 0x4}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102379, 0x18feb)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r6, 0x29, 0x48, &(0x7f0000002080)=ANY=[], 0x5e0)
socket$inet(0x2, 0x4000000000000001, 0x0)
socket(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x5511, 0x80000001, 0x4, 0x40, r4, 0x1, '\x00', 0x0, r4, 0xfffffffe, 0x1, 0x0, 0x6}, 0x48)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
io_uring_setup(0x520, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x80})
r7 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_dccp_buf(r7, 0x21, 0x80, &(0x7f0000000480)="85365cffc478f4d29ec584addd516acdd380208b3a49042f29d235b9084b16f7a0bedae7adf76339ec943fea83d43c892deedea33db0cd8e9f837b32a061d84b3552c3936d5f2e5bffef008ea1aef3f279987cd7185bd56b2f76efa95e1be775676bcd97d9f1613fb4e512e9c192ee26d2ea0a1b8aa67ee11d115990b90c61efb58420fa0caf9b07df", 0x89)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040))
r8 = socket$unix(0x1, 0x2, 0x0)
sendmsg$inet(r8, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000007000000890704ac14140f0011000000000000000000000001000000fc0000000000000014000000000000000100000002"], 0x68}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r9 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000180), 0x4)
sendmsg$tipc(r2, &(0x7f0000000340)={&(0x7f00000002c0)=@name={0x1e, 0x2, 0x0, {{0x41, 0x3}}}, 0x10, &(0x7f0000000300)=[{&(0x7f00000003c0)="b20a126b14a71ef3dcc87360324b7973f0e8b1c3014dd636847b4ae34b255c88f4d9811dc97433cc2b805d391a5667d676cae9c82f89acf6b6a65359af4b6c38f048359477c32012097464e42de455af9dede8e7026ab74ddf209ce35256fbbb2fa72985fab2013f131927f380c04624cf1831c8132a8e3d3c24cae0edd3d89da7a325dcac498d903d31255c98561b4ec78bc50763bccce83755", 0x9a}], 0x1, 0x0, 0x0, 0x800}, 0xd12ec3e1f732b599)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='afs_lookup\x00', r9}, 0xffffffffffffff44)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)

599.467014ms ago: executing program 3 (id=2011):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$packet(0x11, 0x2, 0x300)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r1 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000c00), 0x0, 0x0)
syz_clone(0x1100, &(0x7f0000005500), 0x0, &(0x7f0000005540), 0x0, 0x0)
syz_io_uring_setup(0x5169, &(0x7f0000000440)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000100), &(0x7f0000000240))
r3 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000680)='source\x84\xcc\xa03\'C\xc1\x87a\x95\xdeY\xfd\x1b\xea\n\xa5m3\x94\xd0r\x81\xb6\x1c\x84\x12\xc9\x89\xc6\x00\x0e\x98\xb8\xe4I\x005\xc0\xc9\x17\xbcs\xf4\x1d\x10\xc9\x9c\x14\'J\xe4\xd0h\f\bP\xd4@\xd1\xea\xa6LQP\xc9_\xbfr\xf2\x7fU\xe5\xe3\xd5]\x13F\xd3\xf0\x96HLKk{\x88\xa4\xac\x04\x1bkg\xa1a\xa1\x16\a\xf7\xcf\xe7gy\xe2\xc0\xe0z5%\x9duG\x8aJ\xc6B\x9e\xae!\xdf!\x18\x91\xact]^\xa9@\xd4Y\xb5\xfd)a\"\xab\xc7\x17w9\x1b\xe0\xa3\x04J\x11\'\xc7\x99k#\xccN\xbe\xb9\xa5UH)\xaeK\xaa\xf5\x1cj\xa6\xa3Z\xc8\xc3\xac\xe4\x99&\xb3T\xb8\xb6*\xb9]l&\"\xc5\xff\x05\xf3\x9c\xb9\x91z!T8\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00A\x9dy\xfe\x95M\x88\'PC\a0\xee\xef\x01\xc9\xb1\x86\xba\xb3\x88)\xfaT>\xa71\x9e\xbawQ\xe6\xbb\x16\x81\xe3/\x9e\xd8\xc2\x9aVR\xda\x12\xd0C\xa8\xefc\xded\xb40V\x1c\xe4\xa5\xfaoj\xd5v\x11\xd7\xa7(H\x97Q[ <=K\x89\xde\x13\xac\xba\b\xc3\x94{\xfe\x87\xeac)(\x89/\xe4i\x83\xefd\x1b\xaa\xb63\x13\x90C\x14\'\xb5y\xc7\xfa\xe9a\xd1\xa5\xc9R`\xa3\xc1\xf1mx\xbfZ\x90\xd49\x84\xcd\xee\x1bf\x82\xe6\xf1W\xba\a\xa1\xe6\xd6\xe09h\xfc\xc2m\xd1\x86\xa0\xd1', &(0x7f00000002c0)='Y\xd9\xbeu\x00'/16, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000400)={0xc})
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
pwritev2(0xffffffffffffffff, &(0x7f00000012c0)=[{&(0x7f0000000100)="7270aa3f0c63ef31716980d71af481e691d156e5c690c37493c965008b713ed133a85027d43b49d05b8ec0e538f674752205f76fb42632a5233a7d64e1cea692029b6a", 0x43}], 0x1, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000ac0)={0x1, 0x0, [{0x0, 0x3a, &(0x7f0000000200)=""/58}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)

485.346918ms ago: executing program 4 (id=2012):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x18, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="440000001000090400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010065727370616e"], 0x44}}, 0x0)

442.393158ms ago: executing program 2 (id=2013):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
setxattr$system_posix_acl(0x0, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0x0, @ANYBLOB="04000000000064001000000073a4b2cd1a0dd88d1f000000002000000000000000f1385a9c80aebdbce95b2e3971db1c4d16988f59dce40fe323f4bb17a5339050280de850e5e49c710565570c962b858fb4c2a298841064fafa81c2a0af3de48689b81f918345e7d3d68f8c01e120f2fe7a91ac6229ad838f42ca0bcd1e0dda854b06024a33557b5a99386d4a9d70c4440cf78695620affaa71b7521d92642a305e048d8ec37f94f97fca5892eeb66ff42b6d687af9cde2723ad1720180e2c7bf5c66dff2460e379c203d87cf5c5fb440d833efa8b48a38ec7016289ccd64bc52825099260584569bf6f79c5875b15ac416d44d4b"], 0x2c, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
lchown(&(0x7f0000000340)='./bus\x00', r3, 0x0)
r4 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(0x0, r5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
fstat(r1, &(0x7f0000000240))
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000002c0)={{{@in6=@local, @in6=@private2}}, {{@in6=@dev}, 0x0, @in6=@private0}}, &(0x7f0000000000)=0xe8)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000500), &(0x7f0000000540)=0xc)
newfstatat(0xffffffffffffff9c, &(0x7f0000000580)='./file0/file0\x00', &(0x7f00000005c0), 0x1000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000e00)={0x0, 0x0, <r7=>0x0}, &(0x7f0000000e40)=0xc)
mount$tmpfs(0x0, &(0x7f0000000d80)='./file1\x00', &(0x7f0000000180), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='=', @ANYRESHEX=r7, @ANYBLOB="9649387f008ca493f3c30232c467a53505b8fcb581b8a6d4089f6722addee514a6aa10d0bae7d60ab567918136bd49161fd1dbc54b9066ac418eeea61c8898a09a8f1f0485583509"])
fstat(r1, &(0x7f0000000640))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x11, 0x800000003, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000000600))
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140))
socket$netlink(0x10, 0x3, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x5c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xa000000}]}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}]}, 0x5c}}, 0x0)
request_key(&(0x7f0000000040)='ceph\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='\x15\xa7\f\x8e0\x01&\xa2@\xc6\x91~\xa9u\xa7\xdc', 0xfffffffffffffffe)

296.548447ms ago: executing program 4 (id=2014):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x121301, 0x0)
r3 = syz_io_uring_setup(0xf3d, &(0x7f0000000480), &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000540)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)="41c8d88798ea4c37b44ddd09481b099d551ba7ec1f30105e7547cb377c42c6f5be7a505d6943458f3972fd79e4b30e8b071db20351a02a5527c5585f26fbdb2c21fc56a99cf9f2e0587e3651f71abbdcd52392f9354d14732f7aa7166e7b6410965cc183883cb255044b579af5803bac8e70d62323bd5a7cebad9ec95695844b3a35f9", 0x83, 0x4000, 0x1})
io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0)
eventfd(0x0)
io_uring_enter(r3, 0x4ac6, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x401, 0x7, 0x0, 0x0, 0x17, "194f2f83c2e798c3584770116cddc8819592b1"})

57.02143ms ago: executing program 0 (id=2015):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
syz_open_dev$video4linux(&(0x7f0000000000), 0x20, 0x0)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x894a, &(0x7f0000000000)='bridge0\x00')
bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = syz_usb_connect$hid(0xdba795e8651a431a, 0x3f, &(0x7f0000000040)={{0x12, 0x1, 0x340, 0x0, 0x0, 0x0, 0x8, 0x1e5e, 0x313, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x7f, 0x10, 0x3, [{{0x9, 0x4, 0x0, 0x9, 0x1, 0x3, 0x1, 0x3, 0x0, {0x9, 0x21, 0x8, 0x8, 0x1, {0x22, 0xc18}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x4e, 0x10}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x0, 0x4, 0x2}}]}}}]}}]}}, &(0x7f00000001c0)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x310, 0x8, 0x8d, 0xc0, 0x10, 0x53}, 0x113, &(0x7f0000000280)={0x5, 0xf, 0x113, 0x3}, 0x3, [{0x41, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x415}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xc16}}, {0xfffffebb, &(0x7f0000000580)=@string={0x8a, 0x3, "9439beef7f02a8e60d5036942008313d047cce019eac436e6b26204cacb4978e68ed4a30a8b076a98923eb8fc188d1c85fdf1d17458bdeec2ba69e34d98e885bd535a615f883921083f9a875223e00417889d6bd5dd5958c795f3db0ee42245237c1b49aca97eeb0e5b07950fecdd6006a94f11e2d3dc058e24ab747921adb8fbda6f3a868e722c8"}}]})
syz_usb_control_io$hid(r1, &(0x7f00000006c0)={0x24, &(0x7f0000000400)={0x20, 0x30, 0x81, {0x81, 0x31, "8095b0f039988b51bd9d6f1c751f867fe033a954f50be5bada8358ed1809f911077628348fed5b6cdfd7cc817ec7f4248ec83f6315aadf008da9cee28beaa596a571e7d45cb8644c835562a67432eb283f0a8423946bc9b63c0389cb17f56332127f135b15abf26e6cbc1e28779fe23b02080bedb5c09f226c7dc95b52a117"}}, &(0x7f00000004c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x427}}, &(0x7f0000000540)={0x0, 0x22, 0xb, {[@local=@item_012={0x0, 0x2, 0x1}, @local=@item_4={0x3, 0x2, 0x4, "1fbf8388"}, @local=@item_4={0x3, 0x2, 0x3, "fc5fa663"}]}}, &(0x7f0000000680)={0x0, 0x21, 0x9, {0x9, 0x21, 0x5d, 0x41, 0x1, {0x22, 0xe86}}}}, &(0x7f0000001980)={0x2c, &(0x7f0000001740)={0x40, 0x0, 0x31, "712237950ad45cf4748b46cd0027828afa6524d57a6a841061655564367bddd67be3714d3c3dd1a084a529712988b98eb1"}, &(0x7f0000000700)={0x0, 0xa, 0x1}, &(0x7f0000001840)={0x0, 0x8, 0x1}, &(0x7f00000019c0)={0x20, 0x1, 0xff, "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"}, &(0x7f0000001940)={0x20, 0x3, 0x1, 0xff}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x400500, 0x0)
r2 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x10800, 0x77)
close(r2)
r3 = gettid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x4, 0x6, 0x80, 0x42}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000540), &(0x7f0000000080), 0x0, r4}, 0x38)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f00000000c0))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
syz_open_procfs$userns(r3, &(0x7f00000027c0))
r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x204401, 0x0)
prctl$PR_MCE_KILL(0x22, 0xfe8679d1aaaa176c, 0x0)
renameat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', r5, &(0x7f0000000280)='./file0\x00')
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r6, 0x0, 0x486, &(0x7f00000002c0), &(0x7f0000000300)=0xc)
getegid()
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_FIOGETOWN(r7, 0x8903, &(0x7f0000001a40))
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 2 (id=2016):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090583ffd1"], 0x0)
read$FUSE(r0, &(0x7f0000000a40)={0x2020}, 0x1366)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000180)={0x0, @reserved})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f7, &(0x7f0000000000)={'bridge0\x00', 0x0})
syz_usb_connect$hid(0x4, 0x54, &(0x7f0000000380)=ANY=[@ANYBLOB="1201000000000000bd28780040000102030109022400010105f8b2f694ac485fdd46bc6a500009040002000301000409210000000122000009058103000000fe00"], 0x0)
remap_file_pages(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3, 0x5, 0x1)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000080)=0x40000)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f00000000c0)=0x2000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000140)={@my=0x1})
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000540)=0x20, 0x8)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r4, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @multicast2}, 0x10, &(0x7f0000000140), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="110000000000000000400300010009000000bd00000000001c00000000000000000f00fd08000000", @ANYRES32=0x0, @ANYBLOB="ac1414bbe0000001000000001c0000000000000000078f0208000000", @ANYRES32=0x0, @ANYBLOB="a00500000000000000000000240000000000050c00000000000000005c2c2281940800004410000000000000000000000000000000000000110000000000000000011000000000000000000073e10344e46c2a2e40c5d53408563299da77e1a6ecd904146b3bb010b0aa165afd7afdafffac2372748c1a5a4b54edf1449f95c83278d22bef7ea596e13cf86628ffbff74c16a3a537ec44234c3973d2a10f6f93b4468578048d9eb21c55ec64f2f87ece9e4267be5f197aa9b3682eb8ffcb8239adc3ca6e439a048d4c387f26c7fdde908748dfe7fd18"], 0x98}, 0x83c2)
sendmsg$sock(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000300)="97224712bdc58ebc597dd394c8f80b35cd35c0f1089b1cdad15ecbf6ccae94dc86c8f12a7ff1950614d2524a8d208545f47df93fd2e20e6be579d352f06f38461bb5f518269e9863d5a8f6e9971ee6235ba13d8df633", 0x56}, {&(0x7f00000008c0)="9680b16c366650fadc77cf4641fc1b96ef3c99376bd0491817d6a71bee41917d5f30fdf5f595e13b77ff09912aaa56e7328f6058ff352ab242cb6326408890b14abef06a", 0x44}, {&(0x7f0000000680)="ca9d03c2c38a0602", 0x8}, {&(0x7f00000006c0)="a20ae2b7929ecec1cb6790680f379f486b587898bd5e37cf34fb9a6b55ffc058e1bab2f4622ad31314532ca05680903ed0f8a0a4c8f8", 0x36}, {&(0x7f0000000780)="9992bf74d2df53cfc88d6be88fe164d9aa67353737875e6f015f2e4c4bc9091809dfe33648d41ae8caa9574864f037793825b63f827b8e4b186b8474ccca866c8602f28df84db8040000001cfa5438e44c434e9b0611ef9a7cb4179a5a692e1b08bcf6b0ea7ddc377f2a51e70ac0fb05b1209499de701295cb57211e3c8c55821d24df6b93", 0x85}], 0x5}, 0x4c880)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, &(0x7f00000001c0)={{@host, 0xffffffff}, @local, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x1})
capset(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8, 0x0, 0x7f, 0x4}, @func={0x2}]}}, 0x0, 0x36}, 0x20)
setxattr$incfs_size(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000280), &(0x7f00000002c0)=0x8001, 0x8, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8)
sendfile(0xffffffffffffffff, r0, 0x0, 0x3a)

kernel console output (not intermixed with test programs):

  512.166602][T10354] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  512.427979][T10215] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  512.435860][T10215] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  512.556355][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  512.598208][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  513.207378][    T8] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  513.219314][ T5181] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  513.396904][    T8] usb 4-1: device descriptor read/64, error -71
[  513.429712][ T5181] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  513.451734][ T5181] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  513.472441][ T5181] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  513.491571][ T5181] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  513.524305][ T5181] usb 3-1: Manufacturer: syz
[  513.544631][ T5181] usb 3-1: config 0 descriptor??
[  513.796793][    T8] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  513.846793][ T5181] rc_core: IR keymap rc-hauppauge not found
[  513.852778][ T5181] Registered IR keymap rc-empty
[  513.861886][ T5181] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  513.879060][ T5181] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input11
[  513.954434][ T5181] usb 3-1: USB disconnect, device number 29
[  513.963050][    T8] usb 4-1: device descriptor read/64, error -71
[  514.097419][    T8] usb usb4-port1: attempt power cycle
[  514.404148][T10620] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  514.556633][    T8] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  514.608287][    T8] usb 4-1: device descriptor read/8, error -71
[  514.896858][    T8] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  514.948786][    T8] usb 4-1: device descriptor read/8, error -71
[  515.859809][    T8] usb usb4-port1: unable to enumerate USB device
[  518.036637][ T9483] usb 3-1: new full-speed USB device number 30 using dummy_hcd
[  518.959607][ T9483] usb 3-1: config 0 has an invalid interface number: 44 but max is 0
[  518.997157][ T9483] usb 3-1: config 0 has no interface number 0
[  519.016729][ T9483] usb 3-1: config 0 interface 44 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  519.038866][ T9483] usb 3-1: config 0 interface 44 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  519.061989][ T9483] usb 3-1: config 0 interface 44 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  519.088056][ T9483] usb 3-1: New USB device found, idVendor=0856, idProduct=ac33, bcdDevice= d.43
[  519.106627][ T9483] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.128858][ T9483] usb 3-1: Product: syz
[  519.170322][ T9483] usb 3-1: Manufacturer: syz
[  519.174992][ T9483] usb 3-1: SerialNumber: syz
[  519.195082][ T9483] usb 3-1: config 0 descriptor??
[  519.243939][ T9483] usb 3-1: can't set config #0, error -71
[  519.284022][ T9483] usb 3-1: USB disconnect, device number 30
[  522.475377][T10680] input: syz0 as /devices/virtual/input/input12
[  526.579299][ T5103] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  526.934022][ T5094] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  526.942977][ T5094] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  526.952857][ T5094] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  526.960819][ T5094] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  526.968733][ T5094] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  527.499149][T10734] netlink: 9412 bytes leftover after parsing attributes in process `syz.2.1087'.
[  527.862054][ T1046] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.125252][T10739] team0: Port device team_slave_0 removed
[  528.259889][ T1046] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.477672][ T1046] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.251458][ T4480] Bluetooth: hci3: command tx timeout
[  529.700708][ T1046] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.252468][   T29] kauditd_printk_skb: 47 callbacks suppressed
[  530.259727][   T29] audit: type=1326 audit(1720303085.759:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10765 comm="syz.2.1098" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x0
[  531.089657][T10724] chnl_net:caif_netlink_parms(): no params data found
[  531.119946][ T1046] bridge_slave_1: left allmulticast mode
[  531.125651][ T1046] bridge_slave_1: left promiscuous mode
[  531.155142][ T1046] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.209264][ T1046] bridge_slave_0: left allmulticast mode
[  531.236744][ T1046] bridge_slave_0: left promiscuous mode
[  531.242609][ T1046] bridge0: port 1(bridge_slave_0) entered disabled state
[  531.336805][ T4480] Bluetooth: hci3: command tx timeout
[  533.406945][ T4480] Bluetooth: hci3: command tx timeout
[  533.519051][ T1046] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  533.534173][ T1046] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  533.548536][ T1046] bond0 (unregistering): Released all slaves
[  534.796885][   T29] audit: type=1326 audit(1720303090.299:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10802 comm="syz.4.1109" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x0
[  535.487233][ T4480] Bluetooth: hci3: command tx timeout
[  535.959271][ T1046] hsr_slave_0: left promiscuous mode
[  536.024532][ T1046] hsr_slave_1: left promiscuous mode
[  536.043350][ T1046] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  536.069179][ T1046] batman_adv: batadv0: Removing interface: batadv_slave_0
[  536.108042][ T1046] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  536.162820][ T1046] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.316911][ T1046] veth1_macvtap: left promiscuous mode
[  536.336997][ T1046] veth0_macvtap: left promiscuous mode
[  536.342717][ T1046] veth1_vlan: left promiscuous mode
[  536.350322][ T1046] veth0_vlan: left promiscuous mode
[  536.516886][ T5181] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  536.701974][T10842] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1119'.
[  536.798641][   T29] audit: type=1326 audit(1720303092.309:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10839 comm="syz.3.1119" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x0
[  536.826772][ T5181] usb 3-1: Using ep0 maxpacket: 32
[  536.839538][ T5181] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  536.854257][ T5181] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  536.872522][ T5181] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  536.898062][ T5181] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  536.925087][ T5181] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[  536.945282][ T5181] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  536.963596][ T5181] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.983946][ T5181] usb 3-1: Product: syz
[  537.078842][ T5181] usb 3-1: Manufacturer: syz
[  537.096804][ T5181] usb 3-1: SerialNumber: syz
[  537.117020][T10849] sctp: [Deprecated]: syz.4.1120 (pid 10849) Use of int in max_burst socket option.
[  537.117020][T10849] Use struct sctp_assoc_value instead
[  538.894045][ T1046] team0 (unregistering): Port device team_slave_1 removed
[  538.973276][ T1046] team0 (unregistering): Port device team_slave_0 removed
[  539.952736][T10724] bridge0: port 1(bridge_slave_0) entered blocking state
[  539.962365][T10724] bridge0: port 1(bridge_slave_0) entered disabled state
[  539.971910][T10724] bridge_slave_0: entered allmulticast mode
[  539.983377][T10724] bridge_slave_0: entered promiscuous mode
[  539.994396][T10724] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.003875][T10724] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.016148][T10724] bridge_slave_1: entered allmulticast mode
[  540.029275][T10724] bridge_slave_1: entered promiscuous mode
[  540.253007][T10724] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  540.286026][ T5181] cdc_ncm 3-1:1.0: bind() failure
[  540.321511][ T5181] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  540.345080][T10724] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  540.351830][ T5181] cdc_ncm 3-1:1.1: bind() failure
[  540.434254][ T5181] usb 3-1: USB disconnect, device number 31
[  540.659162][T10724] team0: Port device team_slave_0 added
[  540.704686][T10724] team0: Port device team_slave_1 added
[  540.764555][T10724] batman_adv: batadv0: Adding interface: batadv_slave_0
[  540.771837][ T5182] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  540.785549][T10724] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  540.820600][T10724] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  540.835328][T10724] batman_adv: batadv0: Adding interface: batadv_slave_1
[  540.856724][T10724] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  540.884150][T10724] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  540.917620][ T5181] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  541.007274][ T5182] usb 5-1: Using ep0 maxpacket: 16
[  541.016611][ T5182] usb 5-1: config 0 has an invalid interface number: 7 but max is 0
[  541.027312][ T5182] usb 5-1: config 0 has no interface number 0
[  541.045984][ T5182] usb 5-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  541.056240][ T5182] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  541.068488][ T5182] usb 5-1: Product: syz
[  541.081057][T10724] hsr_slave_0: entered promiscuous mode
[  541.087255][ T5182] usb 5-1: Manufacturer: syz
[  541.094726][T10724] hsr_slave_1: entered promiscuous mode
[  541.104678][ T5182] usb 5-1: SerialNumber: syz
[  541.109691][T10724] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  541.117123][ T5182] usb 5-1: config 0 descriptor??
[  541.123177][T10724] Cannot create hsr debugfs directory
[  541.150915][ T5181] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  541.202335][ T5181] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  541.214184][ T5181] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.229386][ T5181] usb 3-1: config 0 descriptor??
[  541.638988][ T5181] ath6kl: Failed to submit usb control message: -71
[  541.700480][ T5181] ath6kl: unable to send the bmi data to the device: -71
[  541.742659][ T5181] ath6kl: Unable to send get target info: -71
[  541.784184][ T5181] ath6kl: Failed to init ath6kl core: -71
[  541.814366][ T5181] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71
[  541.859318][ T5181] usb 3-1: USB disconnect, device number 32
[  542.541819][T10724] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  542.585948][T10724] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  542.647959][T10724] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  542.713759][T10724] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  543.005626][T10724] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.080706][T10724] 8021q: adding VLAN 0 to HW filter on device team0
[  543.166758][T10724] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  543.187403][T10724] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  543.239040][ T5237] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.246279][ T5237] bridge0: port 1(bridge_slave_0) entered forwarding state
[  543.392698][ T5237] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.400037][ T5237] bridge0: port 2(bridge_slave_1) entered forwarding state
[  544.077444][T10901] MD5 Hash not found for [fe80::bb].0->[ff02::1].20002 [FSP]L3 index 0
[  545.629454][   T29] audit: type=1326 audit(1720303100.859:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10919 comm="syz.3.1138" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x0
[  545.984173][T10724] 8021q: adding VLAN 0 to HW filter on device batadv0
[  546.122807][ T5181] usb 5-1: USB disconnect, device number 26
[  546.311778][T10724] veth0_vlan: entered promiscuous mode
[  546.352522][T10724] veth1_vlan: entered promiscuous mode
[  546.509918][T10724] veth0_macvtap: entered promiscuous mode
[  546.539515][T10724] veth1_macvtap: entered promiscuous mode
[  546.600089][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  546.624183][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.836110][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  546.847334][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.860341][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  547.583745][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  547.614184][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  547.656577][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  547.688614][T10724] batman_adv: batadv0: Interface activated: batadv_slave_0
[  547.784710][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  547.915462][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  547.950808][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  547.992280][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  548.178608][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  548.198801][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  548.233766][T10724] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.097398][T10724] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.112997][T10724] batman_adv: batadv0: Interface activated: batadv_slave_1
[  549.127340][   T29] audit: type=1326 audit(1720303103.789:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10958 comm="syz.0.1149" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x0
[  549.154029][T10724] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  549.219931][T10724] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  549.239609][T10724] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  549.251910][T10724] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  549.635003][ T1046] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.674787][ T1046] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  549.871756][T10215] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.904494][T10215] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  551.279274][T10997] Process accounting resumed
[  552.375582][T11025] autofs: Unknown parameter './file1'
[  553.188829][   T29] audit: type=1326 audit(1720303108.589:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.496216][   T29] audit: type=1326 audit(1720303108.589:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.617066][   T29] audit: type=1326 audit(1720303108.589:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.641288][   T29] audit: type=1326 audit(1720303108.589:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.696277][   T29] audit: type=1326 audit(1720303108.589:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.718194][   T29] audit: type=1326 audit(1720303108.589:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.755731][   T29] audit: type=1326 audit(1720303108.589:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  555.831942][   T29] audit: type=1326 audit(1720303108.589:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11030 comm="syz.0.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  556.957134][T11079] vivid-000: disconnect
[  557.208602][T11069] vivid-000: reconnect
[  557.280765][ T5139] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  557.327811][T11087] =======================================================
[  557.327811][T11087] WARNING: The mand mount option has been deprecated and
[  557.327811][T11087]          and is ignored by this kernel. Remove the mand
[  557.327811][T11087]          option from the mount to silence this warning.
[  557.327811][T11087] =======================================================
[  557.498584][ T5139] usb 5-1: Using ep0 maxpacket: 16
[  557.553058][ T5139] usb 5-1: config 0 has an invalid interface number: 7 but max is 0
[  557.580305][ T5139] usb 5-1: config 0 has no interface number 0
[  557.620546][ T5139] usb 5-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  557.655874][ T5139] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  557.686893][ T5139] usb 5-1: Product: syz
[  557.713291][ T5139] usb 5-1: Manufacturer: syz
[  557.746559][ T5139] usb 5-1: SerialNumber: syz
[  557.822110][ T5139] usb 5-1: config 0 descriptor??
[  560.253358][   T29] audit: type=1326 audit(1720303115.759:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11129 comm="syz.0.1200" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x0
[  561.263313][ T5141] usb 5-1: USB disconnect, device number 27
[  563.329411][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  563.342384][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  564.225715][   T29] audit: type=1326 audit(1720303119.719:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11178 comm="syz.1.1215" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x0
[  564.727557][T11186] FAULT_INJECTION: forcing a failure.
[  564.727557][T11186] name failslab, interval 1, probability 0, space 0, times 0
[  564.759028][T11186] CPU: 0 PID: 11186 Comm: syz.2.1213 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  564.769259][T11186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  564.779338][T11186] Call Trace:
[  564.782619][T11186]  <TASK>
[  564.785579][T11186]  dump_stack_lvl+0x241/0x360
[  564.790279][T11186]  ? __pfx_dump_stack_lvl+0x10/0x10
[  564.795498][T11186]  ? __pfx__printk+0x10/0x10
[  564.800105][T11186]  ? __pfx___might_resched+0x10/0x10
[  564.805411][T11186]  should_fail_ex+0x3b0/0x4e0
[  564.810103][T11186]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  564.815832][T11186]  should_failslab+0x9/0x20
[  564.820349][T11186]  __kmalloc_noprof+0xd8/0x400
[  564.825128][T11186]  ? kfree+0x4e/0x360
[  564.829127][T11186]  tomoyo_realpath_from_path+0xcf/0x5e0
[  564.834696][T11186]  tomoyo_path_number_perm+0x23a/0x880
[  564.840185][T11186]  ? tomoyo_path_number_perm+0x208/0x880
[  564.845834][T11186]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  564.851867][T11186]  ? __fget_files+0x29/0x470
[  564.856475][T11186]  ? __fget_files+0x3f6/0x470
[  564.861168][T11186]  ? __fget_files+0x29/0x470
[  564.865770][T11186]  security_file_ioctl+0x75/0xb0
[  564.870724][T11186]  __se_sys_ioctl+0x47/0x170
[  564.875345][T11186]  do_syscall_64+0xf3/0x230
[  564.879876][T11186]  ? clear_bhb_loop+0x35/0x90
[  564.884578][T11186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.890491][T11186] RIP: 0033:0x7fbbad575bd9
[  564.894916][T11186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.914533][T11186] RSP: 002b:00007fbbae280048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  564.922958][T11186] RAX: ffffffffffffffda RBX: 00007fbbad704038 RCX: 00007fbbad575bd9
[  564.930935][T11186] RDX: 0000000020001080 RSI: 00000000c0487c04 RDI: 0000000000000008
[  564.938913][T11186] RBP: 00007fbbae2800a0 R08: 0000000000000000 R09: 0000000000000000
[  564.946893][T11186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  564.954867][T11186] R13: 000000000000006e R14: 00007fbbad704038 R15: 00007ffd7c7c4948
[  564.962948][T11186]  </TASK>
[  565.045690][T11186] ERROR: Out of memory at tomoyo_realpath_from_path.
[  565.161943][T11203] vivid-008: disconnect
[  565.466666][ T5237] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  565.478035][T11196] vivid-008: reconnect
[  565.646711][ T5237] usb 2-1: Using ep0 maxpacket: 16
[  565.659398][ T5237] usb 2-1: config 0 has an invalid interface number: 7 but max is 0
[  565.668324][ T5237] usb 2-1: config 0 has no interface number 0
[  565.690421][ T5237] usb 2-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  565.730239][ T5237] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  565.744644][ T5237] usb 2-1: Product: syz
[  565.753575][ T5237] usb 2-1: Manufacturer: syz
[  565.773550][ T5237] usb 2-1: SerialNumber: syz
[  565.806140][ T5237] usb 2-1: config 0 descriptor??
[  567.500379][T11229] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1230'.
[  567.987247][T11252] vivid-008: disconnect
[  567.996606][ T5141] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  568.073216][T11249] vivid-008: reconnect
[  568.197895][ T5141] usb 4-1: Using ep0 maxpacket: 8
[  568.212876][ T5141] usb 4-1: New USB device found, idVendor=2040, idProduct=7300, bcdDevice=db.79
[  568.227373][ T5141] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  568.235518][ T5141] usb 4-1: Product: syz
[  568.252450][ T5141] usb 4-1: Manufacturer: syz
[  568.257286][ T5141] usb 4-1: SerialNumber: syz
[  568.266881][ T5141] usb 4-1: config 0 descriptor??
[  568.276660][ T5141] pvrusb2: Hardware description: WinTV HVR-1900 Model 73xxx
[  568.295906][T11260] MD5 Hash not found for [fe80::bb].0->[ff02::1].20002 [FSP]L3 index 0
[  568.521813][ T5141] usb 4-1: USB disconnect, device number 19
[  568.564542][ T1977] usb 4-1: Direct firmware load for v4l-pvrusb2-73xxx-01.fw failed with error -2
[  568.595161][ T1977] usb 4-1: Falling back to sysfs fallback for: v4l-pvrusb2-73xxx-01.fw
[  569.372104][T11270] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1243'.
[  569.488828][ T9483] usb 2-1: USB disconnect, device number 23
[  569.925930][T11291] vivid-006: disconnect
[  570.048539][T11282] vivid-006: reconnect
[  572.297596][T11325] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1261'.
[  572.417180][T11333] vivid-008: disconnect
[  572.436792][ T5088] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  572.488135][T11330] vivid-008: reconnect
[  572.626694][ T5088] usb 3-1: Using ep0 maxpacket: 16
[  572.634330][ T5088] usb 3-1: config 0 has an invalid interface number: 7 but max is 0
[  572.648359][ T5088] usb 3-1: config 0 has no interface number 0
[  572.664698][ T5088] usb 3-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  572.677151][ T5088] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  572.685620][ T5088] usb 3-1: Product: syz
[  572.695829][ T5088] usb 3-1: Manufacturer: syz
[  572.704760][ T5088] usb 3-1: SerialNumber: syz
[  572.717622][ T5088] usb 3-1: config 0 descriptor??
[  575.766071][T11371] vivid-002: disconnect
[  575.828283][T11372] vivid-006: disconnect
[  575.914040][T11377] MD5 Hash not found for [fe80::bb].0->[ff02::1].20002 [FSP]L3 index 0
[  575.942829][T11367] vivid-002: reconnect
[  575.982881][T11369] vivid-006: reconnect
[  576.029044][T11379] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1279'.
[  577.235719][   T25] usb 3-1: USB disconnect, device number 33
[  577.251393][T11391] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.1282'.
[  578.027670][   T29] audit: type=1326 audit(1720303133.479:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.032333][   T29] audit: type=1326 audit(1720303133.479:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.056646][   T29] audit: type=1326 audit(1720303133.479:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.201395][   T29] audit: type=1326 audit(1720303133.479:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.260127][   T29] audit: type=1326 audit(1720303133.479:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.304863][   T29] audit: type=1326 audit(1720303133.489:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.412197][   T29] audit: type=1326 audit(1720303133.489:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.810007][   T29] audit: type=1326 audit(1720303133.489:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  579.830046][T11424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1293'.
[  580.011550][   T29] audit: type=1326 audit(1720303133.489:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  580.168530][T11427] vivid-000: disconnect
[  580.171132][   T29] audit: type=1326 audit(1720303133.489:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11407 comm="syz.4.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  580.859711][T11419] vivid-000: reconnect
[  582.841566][T11461] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1302'.
[  583.246600][ T5182] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  583.297782][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  583.297804][   T29] audit: type=1326 audit(1720303138.789:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  583.402209][   T29] audit: type=1326 audit(1720303138.789:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  583.446834][ T5182] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  584.047512][ T5182] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  584.066333][ T5182] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  584.074692][   T29] audit: type=1326 audit(1720303138.799:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  584.646849][ T5182] usb 3-1: config 0 descriptor??
[  584.673481][   T29] audit: type=1326 audit(1720303138.799:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  584.786073][   T29] audit: type=1326 audit(1720303138.799:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.014531][   T29] audit: type=1326 audit(1720303138.799:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.235061][   T29] audit: type=1326 audit(1720303138.799:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.263681][   T29] audit: type=1326 audit(1720303138.799:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.299572][T11475] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1306'.
[  585.362318][   T29] audit: type=1326 audit(1720303138.799:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.623805][   T29] audit: type=1326 audit(1720303138.799:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11462 comm="syz.1.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f217b775bd9 code=0x7ffc0000
[  585.819204][ T5182] ath6kl: Failed to submit usb control message: -110
[  585.826014][ T5182] ath6kl: unable to send the bmi data to the device: -110
[  585.828015][T11490] vivid-000: disconnect
[  585.835504][ T5182] ath6kl: Unable to send get target info: -110
[  585.844800][ T5182] ath6kl: Failed to init ath6kl core: -110
[  585.869127][ T5182] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -110
[  585.915818][ T5182] usb 3-1: USB disconnect, device number 34
[  585.998826][T11480] vivid-000: reconnect
[  586.217007][T11507] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1315'.
[  587.688429][T11524] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1322'.
[  587.758788][T11527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1324'.
[  587.991405][T11539] vivid-002: disconnect
[  588.069449][T11538] vivid-002: reconnect
[  588.454263][T11551] FAULT_INJECTION: forcing a failure.
[  588.454263][T11551] name failslab, interval 1, probability 0, space 0, times 0
[  588.467521][T11551] CPU: 0 PID: 11551 Comm: syz.1.1330 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  588.477810][T11551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  588.487906][T11551] Call Trace:
[  588.491217][T11551]  <TASK>
[  588.494180][T11551]  dump_stack_lvl+0x241/0x360
[  588.498915][T11551]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.504163][T11551]  ? __pfx__printk+0x10/0x10
[  588.508891][T11551]  ? __lock_acquire+0x1346/0x1fd0
[  588.513968][T11551]  should_fail_ex+0x3b0/0x4e0
[  588.518682][T11551]  ? __alloc_skb+0x1c3/0x440
[  588.523289][T11551]  should_failslab+0x9/0x20
[  588.527817][T11551]  kmem_cache_alloc_node_noprof+0x71/0x320
[  588.533643][T11551]  __alloc_skb+0x1c3/0x440
[  588.538080][T11551]  ? __pfx___alloc_skb+0x10/0x10
[  588.543030][T11551]  ? __pfx___might_resched+0x10/0x10
[  588.548429][T11551]  alloc_skb_with_frags+0xc3/0x770
[  588.553577][T11551]  sock_alloc_send_pskb+0x91a/0xa60
[  588.558820][T11551]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  588.564575][T11551]  ? dev_get_by_index+0x23/0x2d0
[  588.569542][T11551]  packet_sendmsg+0x3ace/0x6150
[  588.574427][T11551]  ? mark_lock+0x9a/0x350
[  588.578799][T11551]  ? __lock_acquire+0x1346/0x1fd0
[  588.583850][T11551]  ? smack_socket_sendmsg+0x1b5/0x540
[  588.589345][T11551]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  588.595077][T11551]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  588.601510][T11551]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  588.608296][T11551]  ? __pfx_packet_sendmsg+0x10/0x10
[  588.613523][T11551]  ? __fget_files+0x29/0x470
[  588.618127][T11551]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  588.623417][T11551]  ? security_socket_sendmsg+0x87/0xb0
[  588.628896][T11551]  ? __pfx_packet_sendmsg+0x10/0x10
[  588.634107][T11551]  __sock_sendmsg+0x221/0x270
[  588.638798][T11551]  __sys_sendto+0x3a4/0x4f0
[  588.643320][T11551]  ? __pfx___sys_sendto+0x10/0x10
[  588.648377][T11551]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.654453][T11551]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.660816][T11551]  __x64_sys_sendto+0xde/0x100
[  588.665591][T11551]  do_syscall_64+0xf3/0x230
[  588.670107][T11551]  ? clear_bhb_loop+0x35/0x90
[  588.674817][T11551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.680735][T11551] RIP: 0033:0x7f217b775bd9
[  588.685177][T11551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.704990][T11551] RSP: 002b:00007f217c5bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  588.713447][T11551] RAX: ffffffffffffffda RBX: 00007f217b903f60 RCX: 00007f217b775bd9
[  588.721442][T11551] RDX: 00000000000010b2 RSI: 00000000200000c0 RDI: 0000000000000003
[  588.729431][T11551] RBP: 00007f217c5bc0a0 R08: 0000000020000540 R09: 0000000000000014
[  588.737425][T11551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  588.745403][T11551] R13: 000000000000000b R14: 00007f217b903f60 R15: 00007fff35a64a88
[  588.753397][T11551]  </TASK>
[  589.043906][T11564] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1334'.
[  590.009296][T11569] vivid-006: disconnect
[  590.218686][T11565] vivid-006: reconnect
[  590.366815][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1341'.
[  590.527406][T11597] batadv0: entered promiscuous mode
[  591.137046][   T29] kauditd_printk_skb: 147 callbacks suppressed
[  591.137099][   T29] audit: type=1326 audit(1720303146.609:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.854412][   T29] audit: type=1326 audit(1720303146.609:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.887806][   T29] audit: type=1326 audit(1720303146.609:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.912927][   T29] audit: type=1326 audit(1720303146.609:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.934915][   T29] audit: type=1326 audit(1720303146.609:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.962864][   T29] audit: type=1326 audit(1720303146.609:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  591.984758][   T29] audit: type=1326 audit(1720303146.609:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  592.246635][   T29] audit: type=1326 audit(1720303146.609:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  592.342063][   T29] audit: type=1326 audit(1720303146.609:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  592.364204][   T29] audit: type=1326 audit(1720303146.609:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11599 comm="syz.3.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd11b175bd9 code=0x7ffc0000
[  592.504957][T11627] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1352'.
[  592.521838][T11626] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.1353'.
[  592.766723][ T5237] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  593.001845][ T5237] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  593.050234][ T5237] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  593.120180][ T5237] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.216093][ T5237] usb 2-1: config 0 descriptor??
[  593.244476][ T5237] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  593.664305][ T9549] usb 2-1: USB disconnect, device number 24
[  594.109181][T11653] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1362'.
[  594.498101][T11660] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.1364'.
[  595.950139][T11670] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1367'.
[  596.925894][T11690] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1373'.
[  599.417162][T11714] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1383'.
[  601.246667][ T5094] Bluetooth: hci6: command 0x0406 tx timeout
[  601.667179][T11749] FAULT_INJECTION: forcing a failure.
[  601.667179][T11749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  601.775826][T11749] CPU: 0 PID: 11749 Comm: syz.4.1392 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  601.786056][T11749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  601.796157][T11749] Call Trace:
[  601.799479][T11749]  <TASK>
[  601.802448][T11749]  dump_stack_lvl+0x241/0x360
[  601.807189][T11749]  ? __pfx_dump_stack_lvl+0x10/0x10
[  601.812449][T11749]  ? __pfx__printk+0x10/0x10
[  601.817103][T11749]  ? snprintf+0xda/0x120
[  601.821404][T11749]  should_fail_ex+0x3b0/0x4e0
[  601.826165][T11749]  _copy_to_user+0x2f/0xb0
[  601.830631][T11749]  simple_read_from_buffer+0xca/0x150
[  601.836064][T11749]  proc_fail_nth_read+0x1e9/0x250
[  601.841152][T11749]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  601.846766][T11749]  ? rw_verify_area+0x520/0x6b0
[  601.851670][T11749]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  601.857271][T11749]  vfs_read+0x204/0xbc0
[  601.861479][T11749]  ? __pfx_lock_release+0x10/0x10
[  601.866596][T11749]  ? __pfx_vfs_read+0x10/0x10
[  601.871323][T11749]  ? __fget_files+0x29/0x470
[  601.875970][T11749]  ? __fget_files+0x3f6/0x470
[  601.880720][T11749]  ksys_read+0x1a0/0x2c0
[  601.885005][T11749]  ? irqentry_exit+0x63/0x90
[  601.889633][T11749]  ? lockdep_hardirqs_on+0x99/0x150
[  601.894877][T11749]  ? __pfx_ksys_read+0x10/0x10
[  601.899705][T11749]  do_syscall_64+0xf3/0x230
[  601.904258][T11749]  ? clear_bhb_loop+0x35/0x90
[  601.909010][T11749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.914950][T11749] RIP: 0033:0x7f23cef746bc
[  601.919405][T11749] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  601.939059][T11749] RSP: 002b:00007f23cfd85040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  601.947533][T11749] RAX: ffffffffffffffda RBX: 00007f23cf103f60 RCX: 00007f23cef746bc
[  601.955555][T11749] RDX: 000000000000000f RSI: 00007f23cfd850b0 RDI: 0000000000000006
[  601.963582][T11749] RBP: 00007f23cfd850a0 R08: 0000000000000000 R09: 0000000000000000
[  601.971601][T11749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  601.979617][T11749] R13: 000000000000000b R14: 00007f23cf103f60 R15: 00007ffe33188538
[  601.987658][T11749]  </TASK>
[  602.666061][T11767] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.1398'.
[  603.646618][ T4480] Bluetooth: hci3: command tx timeout
[  603.681661][T11754] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  603.846650][T11754] usb 5-1: device descriptor read/64, error -71
[  605.116610][T11754] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  605.292743][T11754] usb 5-1: device descriptor read/64, error -71
[  605.421828][T11754] usb usb5-port1: attempt power cycle
[  607.222644][T11821] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1414'.
[  608.868506][T11831] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1418'.
[  608.872270][T11833] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1419'.
[  608.946792][T11831] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  609.206871][   T45] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  609.446742][   T45] usb 2-1: Using ep0 maxpacket: 32
[  609.466822][   T45] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.508519][   T45] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  609.519909][   T45] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  609.530132][   T45] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  609.545488][   T45] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[  609.594439][   T45] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  609.604230][   T45] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  609.615117][   T45] usb 2-1: Product: syz
[  609.622423][   T45] usb 2-1: Manufacturer: syz
[  609.650034][   T45] usb 2-1: SerialNumber: syz
[  610.232631][   T45] cdc_ncm 2-1:1.0: bind() failure
[  611.046825][   T45] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  611.058395][   T45] cdc_ncm 2-1:1.1: bind() failure
[  611.071477][   T45] usb 2-1: USB disconnect, device number 25
[  612.042614][   T45] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  612.100816][T11874] FAULT_INJECTION: forcing a failure.
[  612.100816][T11874] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  612.153411][T11874] CPU: 1 PID: 11874 Comm: syz.2.1429 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  612.163645][T11874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  612.173716][T11874] Call Trace:
[  612.177000][T11874]  <TASK>
[  612.179953][T11874]  dump_stack_lvl+0x241/0x360
[  612.184685][T11874]  ? __pfx_dump_stack_lvl+0x10/0x10
[  612.189900][T11874]  ? __pfx__printk+0x10/0x10
[  612.194504][T11874]  ? snprintf+0xda/0x120
[  612.198758][T11874]  should_fail_ex+0x3b0/0x4e0
[  612.203458][T11874]  _copy_to_user+0x2f/0xb0
[  612.207899][T11874]  simple_read_from_buffer+0xca/0x150
[  612.213312][T11874]  proc_fail_nth_read+0x1e9/0x250
[  612.218354][T11874]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  612.223906][T11874]  ? rw_verify_area+0x520/0x6b0
[  612.229288][T11874]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  612.234857][T11874]  vfs_read+0x204/0xbc0
[  612.239026][T11874]  ? __pfx_lock_release+0x10/0x10
[  612.244058][T11874]  ? __pfx_vfs_read+0x10/0x10
[  612.248764][T11874]  ? __fget_files+0x29/0x470
[  612.253358][T11874]  ? __fget_files+0x3f6/0x470
[  612.258046][T11874]  ksys_read+0x1a0/0x2c0
[  612.262302][T11874]  ? __pfx_ksys_read+0x10/0x10
[  612.267099][T11874]  ? do_syscall_64+0x100/0x230
[  612.271879][T11874]  ? do_syscall_64+0xb6/0x230
[  612.276577][T11874]  do_syscall_64+0xf3/0x230
[  612.281094][T11874]  ? clear_bhb_loop+0x35/0x90
[  612.285809][T11874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  612.291720][T11874] RIP: 0033:0x7fbbad5746bc
[  612.296185][T11874] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  612.315802][T11874] RSP: 002b:00007fbbae2a1040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  612.324241][T11874] RAX: ffffffffffffffda RBX: 00007fbbad703f60 RCX: 00007fbbad5746bc
[  612.332221][T11874] RDX: 000000000000000f RSI: 00007fbbae2a10b0 RDI: 0000000000000007
[  612.340220][T11874] RBP: 00007fbbae2a10a0 R08: 0000000000000000 R09: 0000000000000000
[  612.348206][T11874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  612.356180][T11874] R13: 000000000000000b R14: 00007fbbad703f60 R15: 00007ffd7c7c4948
[  612.364178][T11874]  </TASK>
[  612.418239][   T45] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  612.440437][   T45] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  612.472115][   T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  612.505687][   T45] usb 2-1: config 0 descriptor??
[  612.936644][ T5139] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  613.062306][ T5094] Bluetooth: hci3: unknown advertising packet type: 0x65
[  613.062454][ T5094] Bluetooth: hci3: Dropping invalid advertising data
[  613.077134][ T5094] Bluetooth: hci3: Malformed LE Event: 0x02
[  613.126902][ T5139] usb 3-1: Using ep0 maxpacket: 8
[  613.137492][ T5139] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  613.153766][ T5139] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.166344][ T5139] usb 3-1: config 0 descriptor??
[  613.247488][ T5181] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  613.323136][   T45] ath6kl: Failed to submit usb control message: -71
[  613.376630][   T45] ath6kl: unable to send the bmi data to the device: -71
[  613.417839][   T45] ath6kl: Unable to send get target info: -71
[  613.436646][   T45] ath6kl: Failed to init ath6kl core: -71
[  613.444176][   T45] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  613.508946][ T5181] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  613.698824][   T45] usb 2-1: USB disconnect, device number 26
[  613.733657][ T5181] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  614.576107][ T5181] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  614.597330][ T5181] usb 5-1: config 0 descriptor??
[  615.363241][ T5181] ath6kl: Failed to submit usb control message: -71
[  615.386805][ T5181] ath6kl: unable to send the bmi data to the device: -71
[  615.394308][ T5181] ath6kl: Unable to send get target info: -71
[  615.401426][ T5103] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  615.414881][ T5181] ath6kl: Failed to init ath6kl core: -71
[  615.422428][ T5181] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  615.436911][ T5181] usb 5-1: USB disconnect, device number 31
[  615.446888][ T5103] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  615.458810][ T5103] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  615.467587][ T5103] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  615.475537][ T5103] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  615.487121][ T5103] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  616.244824][T11910] chnl_net:caif_netlink_parms(): no params data found
[  616.376729][ T5182] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  616.503441][ T5139] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  616.517019][ T5139] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[  616.543066][ T5139] asix 3-1:0.0: probe with driver asix failed with error -71
[  616.558245][ T5139] usb 3-1: USB disconnect, device number 35
[  616.596682][ T5182] usb 2-1: Using ep0 maxpacket: 16
[  616.610486][ T4480] Bluetooth: hci1: command 0x0406 tx timeout
[  616.646899][ T5182] usb 2-1: config 0 has an invalid interface number: 7 but max is 0
[  616.675382][ T5182] usb 2-1: config 0 has no interface number 0
[  616.719017][ T5182] usb 2-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  616.753688][T11910] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.775978][ T5182] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  616.798537][T11910] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.807540][T11910] bridge_slave_0: entered allmulticast mode
[  616.820541][ T5182] usb 2-1: Product: syz
[  616.824780][ T5182] usb 2-1: Manufacturer: syz
[  616.826201][T11910] bridge_slave_0: entered promiscuous mode
[  616.854611][T11910] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.876737][ T5182] usb 2-1: SerialNumber: syz
[  616.899771][ T5182] usb 2-1: config 0 descriptor??
[  616.899892][T11910] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.934732][T11910] bridge_slave_1: entered allmulticast mode
[  616.958753][T11910] bridge_slave_1: entered promiscuous mode
[  617.658206][ T5094] Bluetooth: hci4: command tx timeout
[  618.071235][T11910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  618.095164][T11910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.530932][T11910] team0: Port device team_slave_0 added
[  618.589142][T11910] team0: Port device team_slave_1 added
[  618.780196][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.863847][T11910] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.882148][T11910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.913543][T11910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  619.005376][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.053079][T11971] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1452'.
[  619.763552][ T5094] Bluetooth: hci4: command tx timeout
[  620.226696][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.283882][T11910] batman_adv: batadv0: Adding interface: batadv_slave_1
[  620.308904][T11910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  620.309791][ T5181] usb 2-1: USB disconnect, device number 27
[  620.378935][T11910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  620.478174][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.640288][T11910] hsr_slave_0: entered promiscuous mode
[  620.648484][T11910] hsr_slave_1: entered promiscuous mode
[  620.657007][T11910] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  620.664624][T11910] Cannot create hsr debugfs directory
[  621.712942][   T11] bridge_slave_1: left allmulticast mode
[  621.736860][   T11] bridge_slave_1: left promiscuous mode
[  621.754060][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.806758][ T5094] Bluetooth: hci4: command tx timeout
[  621.823611][   T11] bridge_slave_0: left allmulticast mode
[  621.834289][   T11] bridge_slave_0: left promiscuous mode
[  621.847443][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.869003][ T5181] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  623.064023][ T5181] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  623.085383][ T5181] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  623.106166][ T5181] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.130800][ T5181] usb 2-1: config 0 descriptor??
[  623.210248][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  623.233231][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  623.254181][   T11] bond0 (unregistering): Released all slaves
[  623.603317][ T5094] Bluetooth: hci3: unknown advertising packet type: 0x65
[  623.603378][ T5094] Bluetooth: hci3: Dropping invalid advertising data
[  623.617747][ T5094] Bluetooth: hci3: Malformed LE Event: 0x02
[  623.746160][ T5181] ath6kl: Failed to submit usb control message: -71
[  623.756400][ T5181] ath6kl: unable to send the bmi data to the device: -71
[  623.764604][ T5181] ath6kl: Unable to send get target info: -71
[  623.787799][ T5181] ath6kl: Failed to init ath6kl core: -71
[  623.795073][ T5181] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  623.819520][ T5181] usb 2-1: USB disconnect, device number 28
[  623.857850][   T11] hsr_slave_0: left promiscuous mode
[  623.875275][   T11] hsr_slave_1: left promiscuous mode
[  623.881795][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  623.889417][ T5094] Bluetooth: hci4: command tx timeout
[  623.898070][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  623.906090][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  623.913729][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  623.945256][   T11] veth1_macvtap: left promiscuous mode
[  623.951340][   T11] veth0_macvtap: left promiscuous mode
[  623.958540][   T11] veth1_vlan: left promiscuous mode
[  623.963880][   T11] veth0_vlan: left promiscuous mode
[  624.009585][ T9483] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  624.216661][ T9483] usb 5-1: Using ep0 maxpacket: 16
[  624.252061][ T9483] usb 5-1: config 0 has an invalid interface number: 7 but max is 0
[  624.267935][ T9483] usb 5-1: config 0 has no interface number 0
[  624.279119][ T9483] usb 5-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  624.301966][ T9483] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  624.310275][ T9483] usb 5-1: Product: syz
[  624.327051][ T9483] usb 5-1: Manufacturer: syz
[  624.331808][ T9483] usb 5-1: SerialNumber: syz
[  624.351198][ T9483] usb 5-1: config 0 descriptor??
[  624.773361][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  624.782864][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  625.035892][   T11] team0 (unregistering): Port device team_slave_1 removed
[  625.175111][   T11] team0 (unregistering): Port device team_slave_0 removed
[  626.252004][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  626.252031][   T29] audit: type=1326 audit(1720303181.759:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  626.449486][   T29] audit: type=1326 audit(1720303181.759:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  626.709882][   T29] audit: type=1326 audit(1720303181.759:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.000675][   T29] audit: type=1326 audit(1720303181.759:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.036594][   T29] audit: type=1326 audit(1720303181.759:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.086000][   T29] audit: type=1326 audit(1720303181.759:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.127601][   T29] audit: type=1326 audit(1720303181.759:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.157314][   T29] audit: type=1326 audit(1720303181.759:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.231052][   T29] audit: type=1326 audit(1720303181.759:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.276640][   T29] audit: type=1326 audit(1720303181.759:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12075 comm="syz.2.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  627.596574][T12087] MD5 Hash not found for [fe80::bb].0->[ff02::1].20002 [FSP]L3 index 0
[  627.860243][T11910] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  627.904933][T11910] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  627.943638][T11910] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  627.967902][T11910] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  628.313951][T11910] 8021q: adding VLAN 0 to HW filter on device bond0
[  628.410473][T11910] 8021q: adding VLAN 0 to HW filter on device team0
[  628.520642][ T5182] bridge0: port 1(bridge_slave_0) entered blocking state
[  628.527958][ T5182] bridge0: port 1(bridge_slave_0) entered forwarding state
[  628.600675][ T5182] bridge0: port 2(bridge_slave_1) entered blocking state
[  628.607975][ T5182] bridge0: port 2(bridge_slave_1) entered forwarding state
[  628.624324][ T5139] usb 5-1: USB disconnect, device number 32
[  628.784822][T11910] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  628.957498][ T5182] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  629.238075][ T5182] usb 2-1: Using ep0 maxpacket: 32
[  629.245651][ T5182] usb 2-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  629.279300][ T5182] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  629.292901][T11910] 8021q: adding VLAN 0 to HW filter on device batadv0
[  629.319060][ T5182] usb 2-1: config 0 descriptor??
[  629.338991][ T5182] usb 2-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  629.366574][ T5181] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  629.384396][ T5182] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  629.405682][ T5182] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  629.420203][ T5182] usb 2-1: media controller created
[  629.422909][T11910] veth0_vlan: entered promiscuous mode
[  629.453913][T11910] veth1_vlan: entered promiscuous mode
[  629.506225][T11910] veth0_macvtap: entered promiscuous mode
[  629.509938][ T5182] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  629.533177][T11910] veth1_macvtap: entered promiscuous mode
[  629.583983][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  629.597224][ T5181] usb 5-1: Using ep0 maxpacket: 16
[  629.636585][ T5181] usb 5-1: config 0 has an invalid interface number: 7 but max is 0
[  629.637976][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.645250][ T5182] usb 2-1: selecting invalid altsetting 1
[  629.677321][ T5181] usb 5-1: config 0 has no interface number 0
[  629.700808][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  629.705562][ T5182] set interface failed
[  629.711465][ T5181] usb 5-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  629.733552][ T5182] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  629.752183][ T5181] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  629.753272][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.762285][ T5182] error writing reg: 0xff, val: 0x00
[  629.799953][ T5181] usb 5-1: Product: syz
[  629.805009][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  629.823305][ T5181] usb 5-1: Manufacturer: syz
[  629.833866][ T5181] usb 5-1: SerialNumber: syz
[  629.850165][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.871747][ T5181] usb 5-1: config 0 descriptor??
[  629.905576][ T1977] pvrusb2: request_firmware fatal error with code=-110
[  629.913843][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  629.950134][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.970489][ T1977] pvrusb2: Failure uploading firmware1
[  629.976000][ T1977] pvrusb2: Device initialization was not successful.
[  630.027331][ T1977] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  630.038515][T11910] batman_adv: batadv0: Interface activated: batadv_slave_0
[  630.085093][ T1977] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  630.104415][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  630.107759][ T5182] dvb_usb_mxl111sf 2-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  630.153938][ T5141] pvrusb2: Device being rendered inoperable
[  630.163164][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  630.186382][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  630.197469][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  630.229454][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  630.247733][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  630.261915][T11910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  630.273771][T11910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  630.314871][T11910] batman_adv: batadv0: Interface activated: batadv_slave_1
[  630.360029][T11910] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  630.393569][T11910] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  630.415950][T11910] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  630.425276][T11910] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  630.644409][ T2434] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  630.661592][ T2434] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  630.733025][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  630.752438][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  630.941195][T11754] usb 2-1: USB disconnect, device number 29
[  630.951749][T12158] vivid-004: disconnect
[  631.107502][T12153] vivid-004: reconnect
[  631.438966][T12172] netlink: 'syz.2.1503': attribute type 13 has an invalid length.
[  631.991651][T12197] netlink: 'syz.2.1510': attribute type 7 has an invalid length.
[  632.086999][T12201] MD5 Hash not found for [fe80::bb].0->[ff02::1].20002 [FSP]L3 index 0
[  632.287931][T12209] vivid-004: disconnect
[  632.460725][T12203] vivid-004: reconnect
[  633.230464][ T5182] usb 5-1: USB disconnect, device number 33
[  633.521929][T12252] vivid-008: disconnect
[  633.633440][T12254] fuse: Unknown parameter 'roo�ode'
[  633.695499][T12249] vivid-008: reconnect
[  635.244000][T12280] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  635.727091][T12298] vivid-000: disconnect
[  635.756612][ T5139] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  635.917607][T12303] netlink: 296 bytes leftover after parsing attributes in process `syz.1.1541'.
[  635.934995][T12296] vivid-000: reconnect
[  635.976609][ T5139] usb 3-1: Using ep0 maxpacket: 16
[  635.988864][ T5139] usb 3-1: config 0 has an invalid interface number: 7 but max is 0
[  636.003944][ T5139] usb 3-1: config 0 has no interface number 0
[  636.015510][ T5139] usb 3-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  636.026656][ T5139] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  636.046031][ T5139] usb 3-1: Product: syz
[  636.055307][ T5139] usb 3-1: Manufacturer: syz
[  636.065631][ T5139] usb 3-1: SerialNumber: syz
[  636.069293][T12310] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1542'.
[  636.185688][ T5139] usb 3-1: config 0 descriptor??
[  639.076975][ T5139] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  639.247593][ T5139] usb 2-1: device descriptor read/64, error -71
[  639.349667][T12343] netlink: 296 bytes leftover after parsing attributes in process `syz.0.1554'.
[  639.574800][ T5139] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  640.477798][ T5141] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  640.485752][ T5139] usb 2-1: device descriptor read/64, error -71
[  640.503035][ T5137] usb 3-1: USB disconnect, device number 36
[  640.653479][ T5139] usb usb2-port1: attempt power cycle
[  640.675984][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  640.676004][   T29] audit: type=1326 audit(1720303196.179:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.717664][   T29] audit: type=1326 audit(1720303196.189:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.739679][   T29] audit: type=1326 audit(1720303196.189:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.777895][ T5141] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  640.802977][ T5141] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  640.814092][ T5141] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.822416][   T29] audit: type=1326 audit(1720303196.189:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.837175][ T5141] usb 4-1: config 0 descriptor??
[  640.864657][   T29] audit: type=1326 audit(1720303196.189:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.894437][   T29] audit: type=1326 audit(1720303196.189:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.920534][   T29] audit: type=1326 audit(1720303196.189:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.951813][   T29] audit: type=1326 audit(1720303196.189:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  640.968524][T12368] tipc: Failed to remove unknown binding: 66,1,1/0:2487777408/2487777410
[  640.982635][T12368] tipc: Failed to remove unknown binding: 66,1,1/0:2487777408/2487777410
[  640.999734][   T29] audit: type=1326 audit(1720303196.189:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  641.022515][   T29] audit: type=1326 audit(1720303196.189:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.2.1559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  641.086562][ T5139] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  641.130979][ T5139] usb 2-1: device descriptor read/8, error -71
[  641.150878][ T5094] Bluetooth: hci4: unknown advertising packet type: 0x65
[  641.151030][ T5094] Bluetooth: hci4: Dropping invalid advertising data
[  641.168445][ T5141] ath6kl: Failed to submit usb control message: -71
[  641.175130][ T5141] ath6kl: unable to send the bmi data to the device: -71
[  641.186526][ T5094] Bluetooth: hci4: Malformed LE Event: 0x02
[  641.188592][T12373] program syz.0.1563 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  641.206527][ T5141] ath6kl: Unable to send get target info: -71
[  641.220361][ T5141] ath6kl: Failed to init ath6kl core: -71
[  641.227504][ T5141] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  641.240863][ T5141] usb 4-1: USB disconnect, device number 20
[  641.333499][T12380] netlink: 296 bytes leftover after parsing attributes in process `syz.2.1567'.
[  641.338968][T12373] loop0: detected capacity change from 0 to 7
[  641.468440][T12373]  loop0: [POWERTEC] p1 p2 p3
[  641.477481][T12373] loop0: p1 start 1869768547 is beyond EOD, truncated
[  641.500950][T12373] loop0: p2 size 16 extends beyond EOD, truncated
[  641.561013][T12373] loop0: p3 size 8436070 extends beyond EOD, truncated
[  641.626610][ T5139] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  641.677005][ T5139] usb 2-1: device descriptor read/8, error -71
[  641.846499][ T5139] usb usb2-port1: unable to enumerate USB device
[  642.708691][ T9483] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  642.878597][T12409] netlink: 296 bytes leftover after parsing attributes in process `syz.0.1578'.
[  642.946632][ T9483] usb 5-1: Using ep0 maxpacket: 16
[  642.977268][ T9483] usb 5-1: config 0 has an invalid interface number: 7 but max is 0
[  642.987654][ T9483] usb 5-1: config 0 has no interface number 0
[  642.998458][ T9483] usb 5-1: New USB device found, idVendor=05c6, idProduct=9062, bcdDevice=21.5a
[  643.017006][ T9483] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  643.035310][ T9483] usb 5-1: Product: syz
[  643.040216][ T9483] usb 5-1: Manufacturer: syz
[  643.048428][ T9483] usb 5-1: SerialNumber: syz
[  643.450831][ T9483] usb 5-1: config 0 descriptor??
[  643.868383][T12426] vivid-000: disconnect
[  643.941233][T12423] vivid-000: reconnect
[  644.188046][T11754] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  644.244339][ T5182] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  646.035793][T11754] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  646.074605][T11754] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  646.092603][ T5139] usb 5-1: USB disconnect, device number 34
[  646.124696][T11754] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.189295][T11754] usb 2-1: config 0 descriptor??
[  646.342578][ T5182] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  646.388116][ T5182] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  646.417521][ T5182] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.451126][ T5182] usb 4-1: config 0 descriptor??
[  646.471177][ T5094] Bluetooth: hci3: unknown advertising packet type: 0x65
[  646.471314][ T5094] Bluetooth: hci3: Dropping invalid advertising data
[  646.487754][ T5094] Bluetooth: hci3: Malformed LE Event: 0x02
[  646.539686][T11754] ath6kl: Failed to submit usb control message: -71
[  646.597896][T11754] ath6kl: unable to send the bmi data to the device: -71
[  646.692823][T11754] ath6kl: Unable to send get target info: -71
[  646.726885][T11754] ath6kl: Failed to init ath6kl core: -71
[  646.747957][T11754] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  646.859173][T11754] usb 2-1: USB disconnect, device number 34
[  647.433205][ T5094] Bluetooth: hci4: unknown advertising packet type: 0x65
[  647.433266][ T5094] Bluetooth: hci4: Dropping invalid advertising data
[  647.456636][ T5094] Bluetooth: hci4: Malformed LE Event: 0x02
[  647.518282][T12450] Bluetooth: MGMT ver 1.22
[  647.522761][ T5182] ath6kl: Failed to submit usb control message: -71
[  647.545389][ T5182] ath6kl: unable to send the bmi data to the device: -71
[  647.579322][ T5182] ath6kl: Unable to send get target info: -71
[  647.606622][ T5182] ath6kl: Failed to init ath6kl core: -71
[  647.653656][ T5182] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  647.693169][ T5182] usb 4-1: USB disconnect, device number 21
[  648.028540][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  648.028561][   T29] audit: type=1326 audit(1720303203.539:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.097494][   T29] audit: type=1326 audit(1720303203.539:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.153282][   T29] audit: type=1326 audit(1720303203.539:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.177974][   T29] audit: type=1326 audit(1720303203.539:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.199990][   T29] audit: type=1326 audit(1720303203.539:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.263937][   T29] audit: type=1326 audit(1720303203.539:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.364465][   T29] audit: type=1326 audit(1720303203.539:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.409407][   T29] audit: type=1326 audit(1720303203.539:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.433799][   T29] audit: type=1326 audit(1720303203.539:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  648.456864][   T29] audit: type=1326 audit(1720303203.539:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12477 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  649.292587][T12501] libceph: resolve 'c8' (ret=-3): failed
[  649.576887][ T5139] usb 4-1: new full-speed USB device number 22 using dummy_hcd
[  649.795382][ T5139] usb 4-1: unable to get BOS descriptor or descriptor too short
[  649.818205][ T5139] usb 4-1: not running at top speed; connect to a high speed hub
[  649.833904][ T5139] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  649.854650][ T5139] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  650.037333][ T5139] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.045783][ T5139] usb 4-1: Product: syz
[  650.050554][ T5139] usb 4-1: Manufacturer: syz
[  650.055307][ T5139] usb 4-1: SerialNumber: syz
[  651.318259][T12520] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  651.408308][T12524] Bluetooth: hci5: Frame reassembly failed (-84)
[  651.425649][T10215] Bluetooth: hci5: Frame reassembly failed (-84)
[  651.526083][T12526] netlink: 'syz.0.1614': attribute type 1 has an invalid length.
[  651.563936][T12526] netlink: 'syz.0.1614': attribute type 2 has an invalid length.
[  653.486812][ T5094] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  655.422001][T12569] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1627'.
[  656.358785][ T5141] usb 4-1: USB disconnect, device number 22
[  663.586798][   T29] kauditd_printk_skb: 44 callbacks suppressed
[  663.586823][   T29] audit: type=1326 audit(1720303219.079:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  663.846307][   T29] audit: type=1326 audit(1720303219.079:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  663.951625][   T29] audit: type=1326 audit(1720303219.079:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.002681][   T29] audit: type=1326 audit(1720303219.079:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.053277][   T29] audit: type=1326 audit(1720303219.079:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.126526][   T29] audit: type=1326 audit(1720303219.079:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.182275][   T29] audit: type=1326 audit(1720303219.079:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.244995][   T29] audit: type=1326 audit(1720303219.079:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.297479][   T29] audit: type=1326 audit(1720303219.079:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.330979][   T29] audit: type=1326 audit(1720303219.079:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12672 comm="syz.0.1665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  664.455347][T12703] block nbd3: NBD_DISCONNECT
[  666.528000][ T9549] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  666.568656][T12732] vivid-006: disconnect
[  666.684258][T12728] vivid-006: reconnect
[  666.796994][ T9549] usb 5-1: config 1 has an invalid descriptor of length 235, skipping remainder of the config
[  666.835616][ T9549] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  666.883812][ T9549] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  666.944142][ T9549] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  666.966076][ T9549] usb 5-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  666.986755][ T5182] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  667.005159][ T9549] usb 5-1: Product: syz
[  667.015365][ T9549] usb 5-1: Manufacturer: syz
[  667.020204][ T9549] usb 5-1: SerialNumber: syz
[  667.032968][ T9549] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  667.050868][ T9549] cdc_ncm 5-1:1.0: bind() failure
[  667.209121][ T5182] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.04
[  667.220472][ T5182] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  667.243191][ T5182] usb 2-1: config 0 descriptor??
[  667.253541][ T5182] go7007 2-1:0.0: probe with driver go7007 failed with error -12
[  667.458808][ T5182] usb 2-1: USB disconnect, device number 35
[  668.564525][ T5139] usb 5-1: USB disconnect, device number 35
[  669.644889][ T5182] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  669.880746][ T5182] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  669.902587][ T5182] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  669.943797][ T5182] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  669.967774][ T5182] usb 4-1: config 0 descriptor??
[  670.302472][ T4480] Bluetooth: hci4: unknown advertising packet type: 0x65
[  670.302572][ T4480] Bluetooth: hci4: Dropping invalid advertising data
[  670.302594][ T4480] Bluetooth: hci4: Malformed LE Event: 0x02
[  670.369117][ T5182] ath6kl: Failed to submit usb control message: -71
[  670.369160][ T5182] ath6kl: unable to send the bmi data to the device: -71
[  670.369174][ T5182] ath6kl: Unable to send get target info: -71
[  670.369945][ T5182] ath6kl: Failed to init ath6kl core: -71
[  670.370998][ T5182] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  670.402488][ T5182] usb 4-1: USB disconnect, device number 23
[  670.406717][ T5139] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  670.785891][ T5139] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  670.785949][ T5139] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  670.785975][ T5139] usb 3-1: Product: syz
[  670.785995][ T5139] usb 3-1: Manufacturer: syz
[  670.786014][ T5139] usb 3-1: SerialNumber: syz
[  671.847464][ T5139] r8152-cfgselector 3-1: Unknown version 0x0000
[  671.847499][ T5139] r8152-cfgselector 3-1: config 0 descriptor??
[  673.058523][ T5139] r8152-cfgselector 3-1: Unknown version 0x0000
[  673.058700][ T5139] r8152-cfgselector 3-1: bad CDC descriptors
[  673.066981][ T5139] r8152-cfgselector 3-1: USB disconnect, device number 37
[  675.313359][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  675.313380][   T29] audit: type=1326 audit(1720303230.809:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.293655][   T29] audit: type=1326 audit(1720303230.809:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.316116][   T29] audit: type=1326 audit(1720303230.809:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.363487][   T29] audit: type=1326 audit(1720303230.809:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.414161][   T29] audit: type=1326 audit(1720303230.809:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.523386][   T29] audit: type=1326 audit(1720303230.809:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.638758][   T29] audit: type=1326 audit(1720303230.809:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.790683][T12906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1731'.
[  676.813829][   T29] audit: type=1326 audit(1720303230.809:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.856212][   T29] audit: type=1326 audit(1720303230.809:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  676.946501][   T29] audit: type=1326 audit(1720303230.809:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12892 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  677.264132][T12917] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  680.005004][T12959] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  680.020092][T12960] FAULT_INJECTION: forcing a failure.
[  680.020092][T12960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  680.033795][T12960] CPU: 0 PID: 12960 Comm: syz.2.1745 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  680.043989][T12960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  680.054064][T12960] Call Trace:
[  680.057356][T12960]  <TASK>
[  680.060293][T12960]  dump_stack_lvl+0x241/0x360
[  680.065026][T12960]  ? __pfx_dump_stack_lvl+0x10/0x10
[  680.070257][T12960]  ? __pfx__printk+0x10/0x10
[  680.074893][T12960]  ? snprintf+0xda/0x120
[  680.079154][T12960]  should_fail_ex+0x3b0/0x4e0
[  680.083883][T12960]  _copy_to_user+0x2f/0xb0
[  680.088326][T12960]  simple_read_from_buffer+0xca/0x150
[  680.093752][T12960]  proc_fail_nth_read+0x1e9/0x250
[  680.098822][T12960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  680.104417][T12960]  ? rw_verify_area+0x520/0x6b0
[  680.109316][T12960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  680.114905][T12960]  vfs_read+0x204/0xbc0
[  680.119111][T12960]  ? __pfx_lock_release+0x10/0x10
[  680.124291][T12960]  ? __pfx_vfs_read+0x10/0x10
[  680.128984][T12960]  ? __fget_files+0x29/0x470
[  680.133601][T12960]  ? __fget_files+0x3f6/0x470
[  680.138314][T12960]  ksys_read+0x1a0/0x2c0
[  680.142591][T12960]  ? __pfx_ksys_read+0x10/0x10
[  680.147377][T12960]  ? do_syscall_64+0x100/0x230
[  680.152167][T12960]  ? do_syscall_64+0xb6/0x230
[  680.156865][T12960]  do_syscall_64+0xf3/0x230
[  680.161387][T12960]  ? clear_bhb_loop+0x35/0x90
[  680.166089][T12960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.172000][T12960] RIP: 0033:0x7fbbad5746bc
[  680.176437][T12960] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  680.196068][T12960] RSP: 002b:00007fbbae2a1040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  680.204498][T12960] RAX: ffffffffffffffda RBX: 00007fbbad703f60 RCX: 00007fbbad5746bc
[  680.212486][T12960] RDX: 000000000000000f RSI: 00007fbbae2a10b0 RDI: 0000000000000003
[  680.220466][T12960] RBP: 00007fbbae2a10a0 R08: 0000000000000000 R09: 0000000000000000
[  680.228442][T12960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  680.236518][T12960] R13: 000000000000000b R14: 00007fbbad703f60 R15: 00007ffd7c7c4948
[  680.244528][T12960]  </TASK>
[  680.782145][ T4480] Bluetooth: hci3: unexpected event 0x03 length: 249 > 11
[  682.004124][T12988] tipc: Started in network mode
[  682.080256][T12988] tipc: Node identity fffffff9, cluster identity 4711
[  682.126846][T12988] tipc: Node number set to 4294967289
[  682.292054][T12995] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1755'.
[  682.548486][   T45] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  682.776143][   T45] usb 4-1: config 1 has an invalid descriptor of length 235, skipping remainder of the config
[  682.816168][   T45] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  682.850034][   T45] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  682.883218][   T45] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  682.897958][   T45] usb 4-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  682.925515][   T45] usb 4-1: Product: syz
[  682.943340][   T45] usb 4-1: Manufacturer: syz
[  682.959374][   T45] usb 4-1: SerialNumber: syz
[  682.998772][   T45] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  683.012943][   T45] cdc_ncm 4-1:1.0: bind() failure
[  684.753459][T13029] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  685.056848][T13037] PKCS7: Unknown OID: [5] (bad)
[  685.075328][T13037] PKCS7: Only support pkcs7_signedData type
[  685.550423][T13043] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1769'.
[  685.919450][ T9549] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  686.136571][ T9549] usb 2-1: Using ep0 maxpacket: 8
[  686.152309][ T9549] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  686.191247][ T9549] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  686.210535][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  686.217738][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  686.221186][ T9549] usb 2-1: New USB device found, idVendor=2040, idProduct=7300, bcdDevice=db.79
[  686.278610][ T9549] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  686.325244][ T9549] usb 2-1: Product: syz
[  686.340449][ T9549] usb 2-1: Manufacturer: syz
[  686.367847][ T9549] usb 2-1: SerialNumber: syz
[  686.392399][ T9549] usb 2-1: config 0 descriptor??
[  686.561252][   T45] usb 4-1: USB disconnect, device number 24
[  687.567654][T13075] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1779'.
[  688.620679][T13092] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  688.714077][ T5182] usb 2-1: USB disconnect, device number 36
[  690.793939][T13127] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  693.892248][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  693.892268][   T29] audit: type=1326 audit(1720303249.389:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  694.692814][   T29] audit: type=1326 audit(1720303249.389:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  694.873559][   T29] audit: type=1326 audit(1720303249.389:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  694.928811][   T29] audit: type=1326 audit(1720303249.389:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  694.954805][T13176] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  694.974114][   T29] audit: type=1326 audit(1720303249.389:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.086961][T13174] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  695.103290][   T29] audit: type=1326 audit(1720303249.389:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.110196][T13177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1810'.
[  695.143432][   T29] audit: type=1326 audit(1720303249.389:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.204735][   T29] audit: type=1326 audit(1720303249.389:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.255879][   T29] audit: type=1326 audit(1720303249.389:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.339016][   T29] audit: type=1326 audit(1720303249.389:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13166 comm="syz.3.1807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  695.618740][ T5137] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  696.214990][ T5137] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[  696.293345][ T5137] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  696.371495][ T5137] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  696.422313][ T5137] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  696.433640][T13195] autofs: Bad value for 'fd'
[  696.440196][ T5137] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.476292][ T5137] usb 3-1: config 0 descriptor??
[  696.492282][T13185] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  696.916224][ T5137] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  696.961217][ T5137] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  697.090313][ T5137] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  698.436901][T13214] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  698.651070][T13221] autofs4:pid:13221:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e)
[  698.669595][T13218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1825'.
[  699.738343][ T5137] usb 3-1: USB disconnect, device number 38
[  699.990125][T13239] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  700.260213][   T29] kauditd_printk_skb: 65 callbacks suppressed
[  700.260234][   T29] audit: type=1326 audit(1720303255.769:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.360640][   T29] audit: type=1326 audit(1720303255.769:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.419652][T13250] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1837'.
[  700.427514][   T29] audit: type=1326 audit(1720303255.809:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.471177][   T29] audit: type=1326 audit(1720303255.809:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.492901][    C1] vkms_vblank_simulate: vblank timer overrun
[  700.505750][   T29] audit: type=1326 audit(1720303255.809:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.597020][   T29] audit: type=1326 audit(1720303255.809:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.812979][   T29] audit: type=1326 audit(1720303255.809:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.870866][   T29] audit: type=1326 audit(1720303255.809:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  700.911031][T13259] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1838'.
[  701.006232][   T29] audit: type=1326 audit(1720303255.809:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  701.257425][   T29] audit: type=1326 audit(1720303255.809:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13245 comm="syz.0.1835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f64d8175bd9 code=0x7ffc0000
[  702.053371][T13261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1840'.
[  703.059677][T13270] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  703.408491][T13296] netlink: 17279 bytes leftover after parsing attributes in process `syz.4.1850'.
[  704.779452][T13308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1855'.
[  705.462283][T13328] vlan2: entered promiscuous mode
[  705.480907][T13328] syz_tun: entered promiscuous mode
[  705.546080][T13328] team0: Port device vlan2 added
[  707.414064][T13343] netlink: 17279 bytes leftover after parsing attributes in process `syz.4.1867'.
[  707.976043][T13352] No control pipe specified
[  711.007262][ T5182] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  711.220416][ T5182] usb 5-1: device descriptor read/64, error -71
[  711.826048][T13383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  711.926163][ T5182] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  712.007484][T13383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  712.126311][T13387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  712.616552][ T9549] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  712.801028][ T9549] usb 3-1: Using ep0 maxpacket: 8
[  712.812415][ T9549] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  712.826210][ T9549] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.849251][ T9549] usb 3-1: config 0 descriptor??
[  715.052365][ T9549] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  715.065659][T13435] libceph: resolve 'c8' (ret=-3): failed
[  715.087151][ T9549] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  715.104142][ T9549] asix 3-1:0.0: probe with driver asix failed with error -71
[  715.123248][ T9549] usb 3-1: USB disconnect, device number 39
[  717.896496][T13459] FAULT_INJECTION: forcing a failure.
[  717.896496][T13459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  718.065782][T13459] CPU: 0 PID: 13459 Comm: syz.3.1902 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  718.076011][T13459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  718.086080][T13459] Call Trace:
[  718.089395][T13459]  <TASK>
[  718.092332][T13459]  dump_stack_lvl+0x241/0x360
[  718.097033][T13459]  ? __pfx_dump_stack_lvl+0x10/0x10
[  718.102279][T13459]  ? __pfx__printk+0x10/0x10
[  718.106881][T13459]  ? __pfx_lock_release+0x10/0x10
[  718.111924][T13459]  should_fail_ex+0x3b0/0x4e0
[  718.116653][T13459]  _copy_from_user+0x2f/0xe0
[  718.121303][T13459]  copy_msghdr_from_user+0xae/0x680
[  718.126520][T13459]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  718.132355][T13459]  __sys_sendmsg+0x23d/0x3a0
[  718.136970][T13459]  ? __pfx___sys_sendmsg+0x10/0x10
[  718.142092][T13459]  ? vfs_write+0x7c4/0xc90
[  718.146556][T13459]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  718.152980][T13459]  ? do_syscall_64+0x100/0x230
[  718.157773][T13459]  ? do_syscall_64+0xb6/0x230
[  718.162487][T13459]  do_syscall_64+0xf3/0x230
[  718.167014][T13459]  ? clear_bhb_loop+0x35/0x90
[  718.171831][T13459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  718.177828][T13459] RIP: 0033:0x7fba2a975bd9
[  718.182286][T13459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  718.201938][T13459] RSP: 002b:00007fba2b6a3048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  718.210374][T13459] RAX: ffffffffffffffda RBX: 00007fba2ab04038 RCX: 00007fba2a975bd9
[  718.218389][T13459] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000006
[  718.226476][T13459] RBP: 00007fba2b6a30a0 R08: 0000000000000000 R09: 0000000000000000
[  718.234492][T13459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  718.242506][T13459] R13: 000000000000006e R14: 00007fba2ab04038 R15: 00007ffc278675e8
[  718.250534][T13459]  </TASK>
[  718.856785][ T4480] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  718.867918][ T4480] Bluetooth: hci4: Injecting HCI hardware error event
[  718.876302][ T4480] Bluetooth: hci4: hardware error 0x00
[  719.869489][T13476] vivid-008: disconnect
[  720.281365][T13486] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1910'.
[  720.631248][T13474] vivid-008: reconnect
[  721.096747][ T4480] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  722.011100][T13497] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  723.676610][T13518] FAULT_INJECTION: forcing a failure.
[  723.676610][T13518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  723.719346][T13518] CPU: 0 PID: 13518 Comm: syz.0.1921 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  723.729584][T13518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  723.739688][T13518] Call Trace:
[  723.742284][T13523] vivid-004: disconnect
[  723.742984][T13518]  <TASK>
[  723.750137][T13518]  dump_stack_lvl+0x241/0x360
[  723.754875][T13518]  ? __pfx_dump_stack_lvl+0x10/0x10
[  723.760288][T13518]  ? __pfx__printk+0x10/0x10
[  723.764912][T13518]  ? __pfx_lock_release+0x10/0x10
[  723.769958][T13518]  ? vfs_write+0x7c4/0xc90
[  723.774415][T13518]  should_fail_ex+0x3b0/0x4e0
[  723.779129][T13518]  _copy_from_user+0x2f/0xe0
[  723.783918][T13518]  __sys_bpf+0x1a4/0x810
[  723.788197][T13518]  ? __pfx___sys_bpf+0x10/0x10
[  723.793003][T13518]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  723.799015][T13518]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  723.805366][T13518]  ? do_syscall_64+0x100/0x230
[  723.810158][T13518]  __x64_sys_bpf+0x7c/0x90
[  723.814597][T13518]  do_syscall_64+0xf3/0x230
[  723.819124][T13518]  ? clear_bhb_loop+0x35/0x90
[  723.823827][T13518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.829742][T13518] RIP: 0033:0x7f64d8175bd9
[  723.834170][T13518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.853884][T13518] RSP: 002b:00007f64d8ebb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  723.862320][T13518] RAX: ffffffffffffffda RBX: 00007f64d8303f60 RCX: 00007f64d8175bd9
[  723.870305][T13518] RDX: 0000000000000090 RSI: 0000000020000680 RDI: 0000000000000005
[  723.878286][T13518] RBP: 00007f64d8ebb0a0 R08: 0000000000000000 R09: 0000000000000000
[  723.886271][T13518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  723.894255][T13518] R13: 000000000000000b R14: 00007f64d8303f60 R15: 00007fff7001baa8
[  723.902255][T13518]  </TASK>
[  723.932376][T13525] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1924'.
[  724.199128][T13508] Bluetooth: hci3: command 0x0406 tx timeout
[  724.317303][T13519] vivid-004: reconnect
[  725.415280][T13541] program syz.2.1927 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  725.508167][T13546] netlink: 'syz.1.1930': attribute type 1 has an invalid length.
[  725.521855][T13546] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  726.890654][T13568] vivid-008: disconnect
[  727.689506][T13565] vivid-008: reconnect
[  727.722427][T13581] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.1939'.
[  728.036761][ T5182] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  728.946503][ T5182] usb 4-1: Using ep0 maxpacket: 32
[  728.957913][ T5182] usb 4-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  728.967740][ T5182] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  728.975829][ T5182] usb 4-1: Product: syz
[  728.998570][ T5182] usb 4-1: Manufacturer: syz
[  729.033810][ T5182] usb 4-1: SerialNumber: syz
[  729.048925][ T5182] usb 4-1: config 0 descriptor??
[  729.195422][T13605] FAULT_INJECTION: forcing a failure.
[  729.195422][T13605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  729.225498][T13605] CPU: 1 PID: 13605 Comm: syz.2.1947 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  729.235721][T13605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  729.245818][T13605] Call Trace:
[  729.249135][T13605]  <TASK>
[  729.252101][T13605]  dump_stack_lvl+0x241/0x360
[  729.256840][T13605]  ? __pfx_dump_stack_lvl+0x10/0x10
[  729.262102][T13605]  ? __pfx__printk+0x10/0x10
[  729.266759][T13605]  should_fail_ex+0x3b0/0x4e0
[  729.271496][T13605]  _copy_from_user+0x2f/0xe0
[  729.276141][T13605]  bpf_test_init+0x11f/0x180
[  729.280788][T13605]  bpf_prog_test_run_skb+0x2a0/0x13a0
[  729.286214][T13605]  ? __pfx_lock_release+0x10/0x10
[  729.291296][T13605]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  729.297165][T13605]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  729.302992][T13605]  bpf_prog_test_run+0x33a/0x3b0
[  729.307961][T13605]  __sys_bpf+0x48d/0x810
[  729.312256][T13605]  ? __pfx___sys_bpf+0x10/0x10
[  729.317050][T13605]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  729.323049][T13605]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  729.329404][T13605]  ? do_syscall_64+0x100/0x230
[  729.334212][T13605]  __x64_sys_bpf+0x7c/0x90
[  729.338661][T13605]  do_syscall_64+0xf3/0x230
[  729.343194][T13605]  ? clear_bhb_loop+0x35/0x90
[  729.347889][T13605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.353809][T13605] RIP: 0033:0x7fbbad575bd9
[  729.358240][T13605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.377863][T13605] RSP: 002b:00007fbbae280048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  729.386424][T13605] RAX: ffffffffffffffda RBX: 00007fbbad704038 RCX: 00007fbbad575bd9
[  729.394435][T13605] RDX: 0000000000000050 RSI: 00000000200002c0 RDI: 000000000000000a
[  729.402413][T13605] RBP: 00007fbbae2800a0 R08: 0000000000000000 R09: 0000000000000000
[  729.410398][T13605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  729.418397][T13605] R13: 000000000000006e R14: 00007fbbad704038 R15: 00007ffd7c7c4948
[  729.426400][T13605]  </TASK>
[  730.245180][T13584] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  730.271256][T13584] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  730.334870][ T5182] (unnamed net_device) (uninitialized): Assigned a random MAC address: c2:83:4b:a1:5f:e4
[  730.338899][T13622] vivid-002: disconnect
[  730.415187][ T5182] rtl8150 4-1:0.0: eth1: rtl8150 is detected
[  730.573468][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  730.573489][   T29] audit: type=1326 audit(1720303286.079:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.619375][ T5182] usb 4-1: USB disconnect, device number 25
[  730.638315][   T29] audit: type=1326 audit(1720303286.079:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.690792][   T29] audit: type=1326 audit(1720303286.079:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.728416][   T29] audit: type=1326 audit(1720303286.079:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.763630][   T29] audit: type=1326 audit(1720303286.079:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.792071][   T29] audit: type=1326 audit(1720303286.079:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.883516][   T29] audit: type=1326 audit(1720303286.079:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.911348][   T29] audit: type=1326 audit(1720303286.079:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.944230][   T29] audit: type=1326 audit(1720303286.079:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  730.968552][T13618] vivid-002: reconnect
[  730.973782][   T29] audit: type=1326 audit(1720303286.079:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13624 comm="syz.2.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbad575bd9 code=0x7ffc0000
[  731.038250][T13634] openvswitch: netlink: Message has 4 unknown bytes.
[  732.121658][T13648] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1962'.
[  732.986877][T13659] libceph: resolve 'c8' (ret=-3): failed
[  733.026821][ T9549] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  733.110513][T13664] binder: 13662:13664 ioctl 1 20001200 returned -22
[  733.626724][ T5141] usb 2-1: new full-speed USB device number 37 using dummy_hcd
[  733.668098][ T9549] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  733.705362][ T9549] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  733.734974][ T9549] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  733.752202][ T9549] usb 4-1: config 0 descriptor??
[  733.836178][ T5141] usb 2-1: unable to get BOS descriptor or descriptor too short
[  733.885904][ T5141] usb 2-1: not running at top speed; connect to a high speed hub
[  733.895559][ T5141] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  733.928498][T13680] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1971'.
[  733.947982][ T5141] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  733.965074][ T5141] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  733.965141][T13680] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[  733.981696][ T5141] usb 2-1: Product: syz
[  733.995573][ T5141] usb 2-1: Manufacturer: syz
[  734.006645][ T5141] usb 2-1: SerialNumber: syz
[  734.366046][T13644] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1961'.
[  736.313866][T13644] netlink: 'syz.3.1961': attribute type 1 has an invalid length.
[  736.338273][ T9549] usbhid 4-1:0.0: can't add hid device: -71
[  736.344400][ T9549] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  736.361542][ T9549] usb 4-1: USB disconnect, device number 26
[  737.740158][ T5141] usb 2-1: USB disconnect, device number 37
[  737.929795][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  737.929815][   T29] audit: type=1326 audit(1720303293.429:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.291562][   T29] audit: type=1326 audit(1720303293.429:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.376804][   T29] audit: type=1326 audit(1720303293.429:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.430441][   T29] audit: type=1326 audit(1720303293.429:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.483054][   T29] audit: type=1326 audit(1720303293.429:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.553360][   T29] audit: type=1326 audit(1720303293.429:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.645534][   T29] audit: type=1326 audit(1720303293.429:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.704390][   T29] audit: type=1326 audit(1720303293.429:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.735335][   T29] audit: type=1326 audit(1720303293.429:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.759384][ T5237] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  738.786060][   T29] audit: type=1326 audit(1720303293.429:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13706 comm="syz.3.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba2a975bd9 code=0x7ffc0000
[  738.893589][T13726] FAULT_INJECTION: forcing a failure.
[  738.893589][T13726] name failslab, interval 1, probability 0, space 0, times 0
[  738.913017][T13726] CPU: 1 PID: 13726 Comm: syz.4.1984 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  738.923250][T13726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  738.933351][T13726] Call Trace:
[  738.936662][T13726]  <TASK>
[  738.939621][T13726]  dump_stack_lvl+0x241/0x360
[  738.944340][T13726]  ? __pfx_dump_stack_lvl+0x10/0x10
[  738.949553][T13726]  ? __pfx__printk+0x10/0x10
[  738.954162][T13726]  ? __pfx___might_resched+0x10/0x10
[  738.959470][T13726]  should_fail_ex+0x3b0/0x4e0
[  738.964189][T13726]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  738.969919][T13726]  should_failslab+0x9/0x20
[  738.974423][T13726]  __kmalloc_noprof+0xd8/0x400
[  738.979191][T13726]  ? kfree+0x4e/0x360
[  738.983181][T13726]  tomoyo_realpath_from_path+0xcf/0x5e0
[  738.988745][T13726]  tomoyo_path_number_perm+0x23a/0x880
[  738.994219][T13726]  ? tomoyo_path_number_perm+0x208/0x880
[  738.999861][T13726]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  739.005879][T13726]  ? __fget_files+0x29/0x470
[  739.010505][T13726]  ? __fget_files+0x3f6/0x470
[  739.015185][T13726]  ? __fget_files+0x29/0x470
[  739.019783][T13726]  security_file_ioctl+0x75/0xb0
[  739.024723][T13726]  __se_sys_ioctl+0x47/0x170
[  739.029325][T13726]  do_syscall_64+0xf3/0x230
[  739.033836][T13726]  ? clear_bhb_loop+0x35/0x90
[  739.038525][T13726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.044423][T13726] RIP: 0033:0x7f23cef75bd9
[  739.048837][T13726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.068453][T13726] RSP: 002b:00007f23cfd85048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  739.076884][T13726] RAX: ffffffffffffffda RBX: 00007f23cf103f60 RCX: 00007f23cef75bd9
[  739.084871][T13726] RDX: ffffffffffffffff RSI: 0000000000004c07 RDI: 0000000000000003
[  739.092837][T13726] RBP: 00007f23cfd850a0 R08: 0000000000000000 R09: 0000000000000000
[  739.100804][T13726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  739.108783][T13726] R13: 000000000000000b R14: 00007f23cf103f60 R15: 00007ffe33188538
[  739.116763][T13726]  </TASK>
[  739.140401][T13726] ERROR: Out of memory at tomoyo_realpath_from_path.
[  739.169824][ T5237] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  739.185983][ T5237] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  739.201330][ T5237] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.227847][ T5237] usb 4-1: config 0 descriptor??
[  739.865709][ T5237] ath6kl: Failed to submit usb control message: -71
[  739.883255][ T5237] ath6kl: unable to send the bmi data to the device: -71
[  739.903840][ T5237] ath6kl: Unable to send get target info: -71
[  739.947745][ T5237] ath6kl: Failed to init ath6kl core: -71
[  739.996077][ T5237] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  740.046246][T13737] libceph: resolve 'c8' (ret=-3): failed
[  740.056019][ T5237] usb 4-1: USB disconnect, device number 27
[  740.091139][T13739] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  743.766571][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  743.766592][   T29] audit: type=1326 audit(1720303299.269:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  743.931805][   T29] audit: type=1326 audit(1720303299.269:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  743.953413][    C1] vkms_vblank_simulate: vblank timer overrun
[  744.203374][   T29] audit: type=1326 audit(1720303299.269:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.314921][   T29] audit: type=1326 audit(1720303299.269:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.451061][   T29] audit: type=1326 audit(1720303299.279:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.508221][T13794] FAULT_INJECTION: forcing a failure.
[  744.508221][T13794] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  744.546630][   T29] audit: type=1326 audit(1720303299.279:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.563573][T13794] CPU: 1 PID: 13794 Comm: syz.3.2003 Not tainted 6.10.0-rc6-syzkaller-00212-g1dd28064d416 #0
[  744.578488][T13794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  744.588609][T13794] Call Trace:
[  744.591903][T13794]  <TASK>
[  744.594847][T13794]  dump_stack_lvl+0x241/0x360
[  744.599560][T13794]  ? __pfx_dump_stack_lvl+0x10/0x10
[  744.605046][T13794]  ? __pfx__printk+0x10/0x10
[  744.610015][T13794]  should_fail_ex+0x3b0/0x4e0
[  744.614716][T13794]  strncpy_from_user+0x36/0x2f0
[  744.619587][T13794]  ? kmem_cache_alloc_noprof+0x185/0x2a0
[  744.625327][T13794]  getname_flags+0xfa/0x4f0
[  744.629854][T13794]  user_path_at_empty+0x2c/0x60
[  744.634726][T13794]  __se_sys_mount+0x29a/0x3c0
[  744.639419][T13794]  ? __pfx___se_sys_mount+0x10/0x10
[  744.644658][T13794]  ? do_syscall_64+0x100/0x230
[  744.649444][T13794]  ? __x64_sys_mount+0x20/0xc0
[  744.654218][T13794]  do_syscall_64+0xf3/0x230
[  744.658745][T13794]  ? clear_bhb_loop+0x35/0x90
[  744.663447][T13794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.669446][T13794] RIP: 0033:0x7fba2a975bd9
[  744.673878][T13794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  744.693512][T13794] RSP: 002b:00007fba2b6c4048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  744.701943][T13794] RAX: ffffffffffffffda RBX: 00007fba2ab03f60 RCX: 00007fba2a975bd9
[  744.709930][T13794] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000000000000
[  744.717916][T13794] RBP: 00007fba2b6c40a0 R08: 0000000020000400 R09: 0000000000000000
[  744.725902][T13794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  744.733886][T13794] R13: 000000000000000b R14: 00007fba2ab03f60 R15: 00007ffc278675e8
[  744.741884][T13794]  </TASK>
[  744.745028][    C1] vkms_vblank_simulate: vblank timer overrun
[  744.816595][   T29] audit: type=1326 audit(1720303299.279:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.838354][    C1] vkms_vblank_simulate: vblank timer overrun
[  744.916538][   T29] audit: type=1326 audit(1720303299.279:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.938229][    C1] vkms_vblank_simulate: vblank timer overrun
[  744.964983][   T29] audit: type=1326 audit(1720303299.279:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  744.986534][    C1] vkms_vblank_simulate: vblank timer overrun
[  745.033249][   T29] audit: type=1326 audit(1720303299.279:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13786 comm="syz.4.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23cef75bd9 code=0x7ffc0000
[  745.054957][    C1] vkms_vblank_simulate: vblank timer overrun
[  745.679864][T13808] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2007'.
[  746.527022][T13810] overlayfs: missing 'workdir'
[  746.867935][T13810] kAFS: unparsable volume name
[  747.160534][T13828] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2012'.
[  747.916507][ T5137] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  748.097707][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  748.104100][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  748.136576][T13508] Bluetooth: hci3: command 0x0406 tx timeout
[  809.089211][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  853.606366][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  853.613365][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P13832/1:b..l
[  853.622011][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=84917, q=169 ncpus=2)
[  853.629727][    C1] task:syz.4.2014      state:R  running task     stack:24672 pid:13832 tgid:13832 ppid:9792   flags:0x00000002
[  853.642717][    C1] Call Trace:
[  853.646025][    C1]  <TASK>
[  853.648959][    C1]  __schedule+0x1796/0x49d0
[  853.653501][    C1]  ? __pfx___schedule+0x10/0x10
[  853.658360][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  853.664347][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[  853.669634][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  853.674746][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  853.680492][    C1]  irqentry_exit+0x5e/0x90
[  853.684929][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  853.690941][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x37/0x70
[  853.697115][    C1] Code: 80 d4 03 00 65 8b 15 b0 ad 6d 7e f7 c2 00 01 ff 00 74 11 f7 c2 00 01 00 00 74 35 83 b9 1c 16 00 00 00 74 2c 8b 91 f8 15 00 00 <83> fa 02 75 21 48 8b 91 00 16 00 00 48 8b 32 48 8d 7e 01 8b 89 fc
[  853.716738][    C1] RSP: 0018:ffffc90003dbf758 EFLAGS: 00000246
[  853.722809][    C1] RAX: ffffffff8b732209 RBX: ffff88807ef29498 RCX: ffff88805b440000
[  853.730780][    C1] RDX: 0000000000000000 RSI: 0000000000000300 RDI: 0000000000000300
[  853.738750][    C1] RBP: ffffc90003dbf950 R08: ffffffff8b7321de R09: ffffffff8b732305
[  853.746728][    C1] R10: 0000000000000003 R11: ffff88805b440000 R12: 1ffff920007b7f0f
[  853.754698][    C1] R13: dffffc0000000000 R14: ffff88807ef29340 R15: 0000000000000000
[  853.762680][    C1]  ? mt_validate+0x4375/0x4aa0
[  853.767457][    C1]  ? mt_validate+0x424e/0x4aa0
[  853.772221][    C1]  ? mt_validate+0x4279/0x4aa0
[  853.777029][    C1]  mt_validate+0x4279/0x4aa0
[  853.781664][    C1]  ? mt_validate+0x1a1/0x4aa0
[  853.786369][    C1]  ? __pfx_mt_validate+0x10/0x10
[  853.791381][    C1]  validate_mm+0xe7/0x530
[  853.795746][    C1]  ? vma_set_page_prot+0x1d7/0x530
[  853.800888][    C1]  ? __pfx_validate_mm+0x10/0x10
[  853.806020][    C1]  mmap_region+0x1a61/0x2090
[  853.810633][    C1]  ? __pfx_mmap_region+0x10/0x10
[  853.815581][    C1]  ? thp_get_unmapped_area_vmflags+0x269/0x380
[  853.821734][    C1]  ? cap_mmap_addr+0x163/0x2c0
[  853.826532][    C1]  ? __get_unmapped_area+0x2f0/0x360
[  853.831825][    C1]  do_mmap+0x8ad/0xfa0
[  853.835903][    C1]  ? __pfx_do_mmap+0x10/0x10
[  853.840496][    C1]  ? __pfx_ima_file_mmap+0x10/0x10
[  853.845633][    C1]  vm_mmap_pgoff+0x1dd/0x3d0
[  853.850240][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  853.855383][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  853.861730][    C1]  ? do_syscall_64+0x100/0x230
[  853.866502][    C1]  ? ksys_mmap_pgoff+0xdf/0x720
[  853.871355][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  853.876127][    C1]  do_syscall_64+0xf3/0x230
[  853.880635][    C1]  ? clear_bhb_loop+0x35/0x90
[  853.885323][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.891227][    C1] RIP: 0033:0x7f23cef75c13
[  853.895638][    C1] RSP: 002b:00007ffe331884d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  853.904138][    C1] RAX: ffffffffffffffda RBX: 00007f23cd8006c0 RCX: 00007f23cef75c13
[  853.912478][    C1] RDX: 0000000000000000 RSI: 0000000000021000 RDI: 0000000000000000
[  853.920630][    C1] RBP: 0000000000000000 R08: 00000000ffffffff R09: 0000000000000000
[  853.928610][    C1] R10: 0000000000020022 R11: 0000000000000246 R12: 00007ffe33188730
[  853.936587][    C1] R13: ffffffffffffffc0 R14: 0000000000001000 R15: 0000000000000000
[  853.944713][    C1]  </TASK>
[  853.947743][    C1] rcu: rcu_preempt kthread starved for 10307 jiffies! g84917 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  853.959039][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  853.969013][    C1] rcu: RCU grace-period kthread stack dump:
[  853.974894][    C1] task:rcu_preempt     state:R  running task     stack:24912 pid:17    tgid:17    ppid:2      flags:0x00004000
[  853.986659][    C1] Call Trace:
[  853.989939][    C1]  <TASK>
[  853.992969][    C1]  __schedule+0x1796/0x49d0
[  853.997511][    C1]  ? __pfx___schedule+0x10/0x10
[  854.002375][    C1]  ? __pfx_lock_release+0x10/0x10
[  854.007423][    C1]  ? __asan_memset+0x23/0x50
[  854.012057][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  854.017876][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  854.024237][    C1]  ? schedule+0x90/0x320
[  854.028490][    C1]  schedule+0x14b/0x320
[  854.032677][    C1]  schedule_timeout+0x1be/0x310
[  854.037562][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  854.042947][    C1]  ? __pfx_process_timeout+0x10/0x10
[  854.048261][    C1]  ? prepare_to_swait_event+0x32e/0x350
[  854.053851][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  854.058720][    C1]  ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10
[  854.064789][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  854.070071][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  854.075975][    C1]  ? finish_swait+0xd4/0x1e0
[  854.080565][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  854.085174][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  854.090391][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  854.096316][    C1]  ? __kthread_parkme+0x169/0x1d0
[  854.101679][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  854.106897][    C1]  kthread+0x2f0/0x390
[  854.110980][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  854.116183][    C1]  ? __pfx_kthread+0x10/0x10
[  854.120813][    C1]  ret_from_fork+0x4b/0x80
[  854.125240][    C1]  ? __pfx_kthread+0x10/0x10
[  854.129856][    C1]  ret_from_fork_asm+0x1a/0x30
[  854.134646][    C1]  </TASK>
[  854.137665][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  854.143986][    C1] Sending NMI from CPU 1 to CPUs 0:
[  854.149209][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x21/0x30