last executing test programs:

1m22.975259262s ago: executing program 3 (id=890):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r0, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRESHEX], 0x69)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1}}, 0x40)

1m22.533088079s ago: executing program 3 (id=894):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x0, 0x3, @vifc_lcl_addr=@remote, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000033f67a1f796787c0fa67ed34360b1c9f305fc72d88fee7f8535b1a63902497b7bd45a3ebbdb759b2442f9e06679797c9f8fdf0"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
unshare(0x68040200)

1m19.217594916s ago: executing program 0 (id=919):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001"], 0x140}}, 0x0)

1m18.931252926s ago: executing program 4 (id=920):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000005c0)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x1, 0xffffffff}}}}}, 0x0)

1m18.891806181s ago: executing program 2 (id=922):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
r1 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x10000000})

1m18.669266602s ago: executing program 4 (id=923):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x8c}}, 0x0)

1m18.483795241s ago: executing program 2 (id=925):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000000)='./file0/bus\x00', 0x40000a00)
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x24000408)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)

1m18.302413497s ago: executing program 4 (id=926):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m18.034719047s ago: executing program 0 (id=928):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
link(0x0, 0x0)

1m18.006465416s ago: executing program 2 (id=929):
r0 = syz_io_uring_setup(0xc13, 0x0, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
unshare(0x28000600)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)='./file0\x00', 0x84, 0x0, 0x1})
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

1m17.839276675s ago: executing program 4 (id=930):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000980)={{}, &(0x7f0000000900), &(0x7f0000000940)='%pB    \x00'}, 0x20)
open(&(0x7f0000000080)='./bus\x00', 0x143862, 0x0)
mount(&(0x7f0000000540), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

1m17.69520305s ago: executing program 0 (id=932):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000002480)={'gretap0\x00', &(0x7f00000023c0)={'ip_vti0\x00', 0x0, 0x8000, 0x7800, 0x7fff, 0x5, {{0x19, 0x4, 0x1, 0x5, 0x64, 0x65, 0x0, 0x0, 0x0, 0x0, @private=0xa010100, @multicast1, {[@timestamp_prespec={0x44, 0x4c, 0x4b, 0x3, 0x0, [{@broadcast, 0x843}, {@dev={0xac, 0x14, 0x14, 0x44}, 0x80}, {@broadcast, 0x1}, {@multicast2, 0x40}, {@multicast1, 0x2000}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x400}, {@multicast1, 0x6}, {@rand_addr=0x64010102, 0x38}, {@empty, 0x8}]}, @noop]}}}}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="110000000400000004000000ff00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
gettid()
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x0)
setresuid(0x0, r5, 0x0)
getgid()
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r6, 0x4, 0xfffffe13, 0x31, 0x0, 0x0, 0x3, 0x0, 0x0, 0x35, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r3, &(0x7f0000000140), &(0x7f0000000080)=@tcp6=r4, 0x2}, 0x20)

1m17.639177912s ago: executing program 2 (id=933):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x654a, 0x4)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x34)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

1m17.563233025s ago: executing program 4 (id=934):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000084000000008000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x1}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000070000000300"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='kfree\x00', r9, 0x0, 0x80000000000}, 0x18)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000c80)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000000000040c000000180001801400020076657468315f766972745f77696669000c00038004"], 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000a00)='scsi_dispatch_cmd_start\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_SNDMTU(r12, 0x112, 0xc, &(0x7f0000000380)=0x3, &(0x7f00000003c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0xc, &(0x7f0000000880)=ANY=[@ANYRES16=r4, @ANYRESDEC=r11, @ANYRESDEC=r3, @ANYRESDEC=r7], 0x0, 0xfffffffd, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r13}, 0x10)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x1, 0x2400c8f1, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
close(r0)

1m17.490678962s ago: executing program 1 (id=935):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
r1 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x10000000})

1m17.159151474s ago: executing program 0 (id=936):
socket$kcm(0x29, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940))
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000380))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe2$9p(&(0x7f0000000240), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)

1m17.156608971s ago: executing program 4 (id=937):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f000049b000/0x400000)=nil, 0x400000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000240)=0x154, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_sctp(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
io_setup(0xc, &(0x7f0000000000)=<r3=>0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x1010, r0, 0x8797c000)
io_submit(r3, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000000000002040040001280080001007369740034000280050004000400000006001000ff07000006000e00784d000006001000080d0000060008003f00000048ff12004e2000001400350073697430"], 0x74}, 0x1, 0xd, 0x0, 0x20000000}, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000d00)={0x28, 0x2, 0x1, 0x301, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_FILTER={0x14, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x400}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x820}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x9000)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x40, 0x2, 0x1, 0x0, 0x0, 0x0, {0x2}, [@CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0xfffffffb}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xd}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x101}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x5}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000}, 0x4)

1m17.152817787s ago: executing program 1 (id=938):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={0x0, 0x2, 0x6}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

1m17.127536197s ago: executing program 3 (id=939):
syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getrlimit(0xb, 0x0)
flistxattr(0xffffffffffffffff, &(0x7f0000000180)=""/5, 0x11)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r2, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x1000000, 0x0, 0x4000401}, 0x44084)

1m16.740739874s ago: executing program 0 (id=940):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00'})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000009c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000008c0), &(0x7f0000000980)='%pB    \x00'}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000a40)={r3, &(0x7f0000000dc0), 0x0}, 0x20)

1m16.719014801s ago: executing program 1 (id=941):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="48c5", @ANYRESHEX], 0x69)
r1 = open$dir(0x0, 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1}}, 0x40)

1m16.367317715s ago: executing program 0 (id=942):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000000c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000006c0)=""/83, 0x53}}, 0x120)
writev(r0, &(0x7f0000000780)=[{0x0}], 0x1)

1m16.36702054s ago: executing program 2 (id=943):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket$netlink(0x10, 0x3, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="380000000314010000000000000008000900020073797a310000000008004100736977001400330073797a6b616c6c657230"], 0x38}}, 0x0)

1m16.299001841s ago: executing program 1 (id=944):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000005c0)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x1, 0xffffffff}}}}}, 0x0)

1m16.227948803s ago: executing program 3 (id=945):
ioperm(0x0, 0x2, 0x3)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f00000001c0)=@urb_type_iso={0x4, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m15.953843299s ago: executing program 1 (id=946):
r0 = syz_open_dev$usbfs(&(0x7f0000002000), 0xd, 0x20041)
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000000), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m15.843048925s ago: executing program 3 (id=947):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000580)='kfree\x00', r1, 0x0, 0x400000006}, 0x18)
socket$kcm(0x1e, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmmsg$inet(r0, &(0x7f0000002f40)=[{{&(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10, 0x0}}], 0x1, 0x20004094)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1m15.706996987s ago: executing program 2 (id=948):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
r1 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x10000000})

1m6.041125927s ago: executing program 1 (id=949):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x3e, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xc0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000580)=[{0x0, 0x0, 0x3ff, 0x8}], 0x3e0000)

1m4.293424611s ago: executing program 3 (id=950):
open(&(0x7f0000000140)='./file0\x00', 0x2e4c0, 0x1c9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

43.942413056s ago: executing program 32 (id=942):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000000c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000006c0)=""/83, 0x53}}, 0x120)
writev(r0, &(0x7f0000000780)=[{0x0}], 0x1)

0s ago: executing program 33 (id=948):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
r1 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x10000000})

kernel console output (not intermixed with test programs):

 T5868] usb 4-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  184.013293][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.030391][ T5868] usb 4-1: Product: syz
[  184.036249][ T5868] usb 4-1: Manufacturer: syz
[  184.040868][ T5868] usb 4-1: SerialNumber: syz
[  184.068607][ T5868] usb 4-1: config 0 descriptor??
[  184.119979][  T973] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  184.161389][ T5868] msi2500 4-1:0.0: Registered as swradio24
[  184.178308][ T5868] msi2500 4-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  184.292670][  T973] usb 3-1: config 129 has an invalid interface number: 249 but max is 0
[  184.301068][  T973] usb 3-1: config 129 has no interface number 0
[  185.109042][   T80] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  185.218626][  T973] usb 3-1: config 129 interface 249 has no altsetting 0
[  185.295967][   T80] usb 2-1: Using ep0 maxpacket: 8
[  185.334334][  T973] usb 3-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  185.393320][   T80] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  185.489044][  T973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.587467][   T80] usb 2-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  185.653328][   T80] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.672455][   T80] usb 2-1: Product: syz
[  185.685943][   T80] usb 2-1: Manufacturer: syz
[  185.688536][    T8] usb 4-1: USB disconnect, device number 8
[  185.716836][   T80] usb 2-1: SerialNumber: syz
[  185.739406][   T80] usb 2-1: config 0 descriptor??
[  185.860251][  T973] usb 3-1: string descriptor 0 read error: -71
[  185.909581][  T973] redrat3 3-1:129.249: Couldn't find all endpoints
[  186.000336][  T973] usb 3-1: USB disconnect, device number 8
[  187.071468][   T80] msi2500 2-1:0.0: Registered as swradio24
[  187.077335][   T80] msi2500 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  188.633259][ T6737] netlink: 12 bytes leftover after parsing attributes in process `syz.0.174'.
[  192.961420][ T5865] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  193.254689][ T5903] usb 2-1: USB disconnect, device number 7
[  194.376309][ T5133] Bluetooth: hci1: command 0x0406 tx timeout
[  194.382389][ T5133] Bluetooth: hci2: command 0x0406 tx timeout
[  194.389101][ T5133] Bluetooth: hci3: command 0x0406 tx timeout
[  194.393892][ T5825] Bluetooth: hci0: command 0x0406 tx timeout
[  194.414736][ T6769] overlayfs: failed to resolve './file1': -2
[  194.444022][ T5865] usb 3-1: Using ep0 maxpacket: 8
[  194.459611][ T5865] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.760436][ T6776] Bluetooth: hci4: link tx timeout
[  195.146551][ T6776] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  196.142144][ T5865] usb 3-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  196.178971][ T5865] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.488615][ T5865] usb 3-1: config 0 descriptor??
[  197.290156][ T5865] usb 3-1: can't set config #0, error -71
[  197.572708][ T5865] usb 3-1: USB disconnect, device number 9
[  198.545464][ T6776] Bluetooth: hci4: command 0x0406 tx timeout
[  201.010464][ T5903] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  201.979780][ T5865] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  201.995945][ T6823] overlayfs: failed to resolve './file1': -2
[  202.144292][ T5865] usb 2-1: Using ep0 maxpacket: 8
[  202.975402][ T5865] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.048444][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  203.054878][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  203.582041][ T5865] usb 2-1: string descriptor 0 read error: -71
[  203.638035][ T5865] usb 2-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  203.648548][ T5865] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.919878][ T5865] usb 2-1: config 0 descriptor??
[  203.932192][ T5865] usb 2-1: can't set config #0, error -71
[  204.225608][ T6842] tipc: Started in network mode
[  204.230686][ T6842] tipc: Node identity , cluster identity 4711
[  204.236779][ T6842] tipc: Failed to set node id, please configure manually
[  204.244148][ T6842] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  204.926533][ T5865] usb 2-1: USB disconnect, device number 8
[  204.926620][ T5825] Bluetooth: hci4: ACL packet for unknown connection handle 201
[  205.282051][ T6850] delete_channel: no stack
[  206.358785][ T5915] libceph: connect (1)[c::]:6789 error -101
[  206.365282][ T5915] libceph: mon0 (1)[c::]:6789 connect error
[  206.409940][ T5893] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  206.628648][ T6853] ceph: No mds server is up or the cluster is laggy
[  206.645035][ T5893] usb 3-1: Using ep0 maxpacket: 16
[  206.654241][ T5893] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  206.672121][ T5903] libceph: connect (1)[c::]:6789 error -101
[  207.370447][ T5893] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  207.381386][ T5893] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  207.391123][ T5893] usb 3-1: config 1 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 20
[  207.429877][ T5893] usb 3-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  207.430848][ T5903] libceph: mon0 (1)[c::]:6789 connect error
[  207.509821][ T5893] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  207.553728][ T5893] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.576306][ T5893] usb 3-1: Product: syz
[  207.580735][ T5893] usb 3-1: Manufacturer: syz
[  207.595629][ T5893] usb 3-1: SerialNumber: syz
[  207.973625][ T6848] netlink: set zone limit has 4 unknown bytes
[  210.103855][ T5893] usb-storage 3-1:1.2: USB Mass Storage device detected
[  210.740230][ T5893] usb 3-1: USB disconnect, device number 10
[  210.792140][ T6884] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  210.800922][ T6889] bridge_slave_0: left allmulticast mode
[  211.274984][ T6889] bridge_slave_0: left promiscuous mode
[  211.589855][ T6889] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.628208][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  211.720150][ T6884] kvm: emulating exchange as write
[  211.771431][ T6889] bridge_slave_1: left allmulticast mode
[  211.787448][ T6889] bridge_slave_1: left promiscuous mode
[  211.819519][ T6889] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.843019][ T6889] bond0: (slave bond_slave_0): Releasing backup interface
[  211.857165][ T6889] bond0: (slave bond_slave_1): Releasing backup interface
[  211.878596][ T6889] team0: Port device team_slave_0 removed
[  211.888961][ T6889] team0: Port device team_slave_1 removed
[  211.895830][ T6889] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  211.903372][ T6889] batman_adv: batadv0: Removing interface: batadv_slave_0
[  211.917582][ T6889] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  211.925111][ T6889] batman_adv: batadv0: Removing interface: batadv_slave_1
[  211.951270][ T6898] syz_tun: entered promiscuous mode
[  211.981624][ T6900] vlan0: entered promiscuous mode
[  211.998753][ T6900] team0: Port device vlan0 added
[  212.541490][ T6911] ISOFS: Unable to identify CD-ROM format.
[  212.718628][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.0.215'.
[  213.586686][ T6900] syz.3.210 (6900) used greatest stack depth: 18320 bytes left
[  214.046797][ T6919] sit0: entered promiscuous mode
[  214.742234][ T6919] netlink: 'syz.0.215': attribute type 1 has an invalid length.
[  214.767442][ T6919] netlink: 1 bytes leftover after parsing attributes in process `syz.0.215'.
[  215.578632][ T6941] overlayfs: missing 'lowerdir'
[  217.336092][   T80] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  217.564420][   T80] usb 3-1: Using ep0 maxpacket: 8
[  217.590533][   T80] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  217.615777][   T80] usb 3-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  217.647190][   T80] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.689309][   T80] usb 3-1: Product: syz
[  217.712100][   T80] usb 3-1: Manufacturer: syz
[  217.795341][   T80] usb 3-1: SerialNumber: syz
[  218.841182][   T80] usb 3-1: config 0 descriptor??
[  218.873153][ T6970] netlink: 'syz.3.229': attribute type 1 has an invalid length.
[  219.744604][ T6970] netlink: 134708 bytes leftover after parsing attributes in process `syz.3.229'.
[  220.334512][   T80] msi2500 3-1:0.0: Registered as swradio24
[  220.342411][   T80] msi2500 3-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  220.415626][   T80] usb 3-1: USB disconnect, device number 11
[  223.384699][ T5913] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  223.888969][ T5913] usb 3-1: Using ep0 maxpacket: 8
[  223.896717][ T5913] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  223.916451][ T5913] usb 3-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  223.927863][ T5913] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.939178][ T5913] usb 3-1: Product: syz
[  223.957883][ T5913] usb 3-1: Manufacturer: syz
[  223.962538][ T5913] usb 3-1: SerialNumber: syz
[  224.088684][ T5913] usb 3-1: config 0 descriptor??
[  224.155847][ T5913] msi2500 3-1:0.0: Registered as swradio24
[  224.162475][ T5913] msi2500 3-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  224.231061][   T80] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  224.409568][   T80] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  224.792716][   T80] usb 1-1: New USB device found, idVendor=0471, idProduct=0308, bcdDevice=e4.df
[  224.904807][   T80] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.910895][    T8] usb 3-1: USB disconnect, device number 12
[  224.931423][   T80] usb 1-1: config 0 descriptor??
[  224.971432][   T80] pwc: Philips PCVC680K (Vesta Pro) USB webcam detected.
[  225.203483][   T80] pwc: send_video_command error -71
[  226.059176][   T80] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  226.067667][   T80] Philips webcam 1-1:0.0: probe with driver Philips webcam failed with error -71
[  226.189120][   T80] usb 1-1: USB disconnect, device number 4
[  227.859617][ T5893] IPVS: starting estimator thread 0...
[  228.021023][ T7050] IPVS: using max 24 ests per chain, 57600 per kthread
[  229.968317][ T7072] netlink: 64 bytes leftover after parsing attributes in process `syz.3.252'.
[  229.999282][ T7072] warning: `syz.3.252' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  230.141219][ T7074] FAULT_INJECTION: forcing a failure.
[  230.141219][ T7074] name failslab, interval 1, probability 0, space 0, times 0
[  230.510856][ T7074] CPU: 1 UID: 0 PID: 7074 Comm: syz.0.254 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  230.510885][ T7074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  230.510899][ T7074] Call Trace:
[  230.510905][ T7074]  <TASK>
[  230.510912][ T7074]  dump_stack_lvl+0x241/0x360
[  230.510951][ T7074]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.510991][ T7074]  should_fail_ex+0x3b0/0x4e0
[  230.511013][ T7074]  should_failslab+0xac/0x100
[  230.511034][ T7074]  ? ep_insert+0x4d7/0x1ab0
[  230.511055][ T7074]  kmem_cache_alloc_noprof+0x70/0x380
[  230.511081][ T7074]  ep_insert+0x4d7/0x1ab0
[  230.511115][ T7074]  ? __pfx_ep_insert+0x10/0x10
[  230.511135][ T7074]  ? __pfx___mutex_lock+0x10/0x10
[  230.511160][ T7074]  ? bpf_lsm_capable+0x9/0x10
[  230.511184][ T7074]  do_epoll_ctl+0x8bc/0xf80
[  230.511213][ T7074]  __x64_sys_epoll_ctl+0x161/0x1a0
[  230.511238][ T7074]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  230.511270][ T7074]  ? do_syscall_64+0x100/0x230
[  230.511290][ T7074]  ? do_syscall_64+0xb6/0x230
[  230.511309][ T7074]  do_syscall_64+0xf3/0x230
[  230.511327][ T7074]  ? clear_bhb_loop+0x35/0x90
[  230.511351][ T7074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.511370][ T7074] RIP: 0033:0x7f98eb38cd29
[  230.511390][ T7074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.511403][ T7074] RSP: 002b:00007f98ec1f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  230.511425][ T7074] RAX: ffffffffffffffda RBX: 00007f98eb5a5fa0 RCX: 00007f98eb38cd29
[  230.511437][ T7074] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000003
[  230.511446][ T7074] RBP: 00007f98ec1f7090 R08: 0000000000000000 R09: 0000000000000000
[  230.511456][ T7074] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  230.511466][ T7074] R13: 0000000000000000 R14: 00007f98eb5a5fa0 R15: 00007fff69f2e1d8
[  230.511492][ T7074]  </TASK>
[  230.924647][ T7076] FAULT_INJECTION: forcing a failure.
[  230.924647][ T7076] name failslab, interval 1, probability 0, space 0, times 0
[  230.975903][ T7076] CPU: 0 UID: 0 PID: 7076 Comm: syz.1.255 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  230.975927][ T7076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  230.975937][ T7076] Call Trace:
[  230.975943][ T7076]  <TASK>
[  230.975950][ T7076]  dump_stack_lvl+0x241/0x360
[  230.975981][ T7076]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.976004][ T7076]  ? __pfx__printk+0x10/0x10
[  230.976029][ T7076]  ? fs_reclaim_acquire+0x93/0x130
[  230.976052][ T7076]  ? __pfx___might_resched+0x10/0x10
[  230.976072][ T7076]  should_fail_ex+0x3b0/0x4e0
[  230.976094][ T7076]  should_failslab+0xac/0x100
[  230.976115][ T7076]  __kmalloc_noprof+0xdd/0x4c0
[  230.976133][ T7076]  ? tomoyo_encode+0x26f/0x540
[  230.976159][ T7076]  tomoyo_encode+0x26f/0x540
[  230.976186][ T7076]  tomoyo_realpath_from_path+0x59e/0x5e0
[  230.976219][ T7076]  tomoyo_path_number_perm+0x236/0x860
[  230.976237][ T7076]  ? __lock_acquire+0x1397/0x2100
[  230.976258][ T7076]  ? tomoyo_path_number_perm+0x206/0x860
[  230.976280][ T7076]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  230.976342][ T7076]  ? __fget_files+0x2a/0x410
[  230.976364][ T7076]  ? __fget_files+0x2a/0x410
[  230.976388][ T7076]  security_file_ioctl+0xc6/0x2a0
[  230.976409][ T7076]  __se_sys_ioctl+0x46/0x170
[  230.976435][ T7076]  do_syscall_64+0xf3/0x230
[  230.976454][ T7076]  ? clear_bhb_loop+0x35/0x90
[  230.976477][ T7076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.976497][ T7076] RIP: 0033:0x7fc4a278cd29
[  230.976512][ T7076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.976524][ T7076] RSP: 002b:00007fc4a3661038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  230.976542][ T7076] RAX: ffffffffffffffda RBX: 00007fc4a29a5fa0 RCX: 00007fc4a278cd29
[  230.976553][ T7076] RDX: 0000000020000100 RSI: 0000000081785501 RDI: 0000000000000003
[  230.976563][ T7076] RBP: 00007fc4a3661090 R08: 0000000000000000 R09: 0000000000000000
[  230.976573][ T7076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.976582][ T7076] R13: 0000000000000000 R14: 00007fc4a29a5fa0 R15: 00007fffe56bb2a8
[  230.976611][ T7076]  </TASK>
[  231.137479][ T7076] ERROR: Out of memory at tomoyo_realpath_from_path.
[  231.368006][ T7083] 9pnet_fd: Insufficient options for proto=fd
[  231.406816][ T7085] netlink: 'syz.0.258': attribute type 1 has an invalid length.
[  231.414514][ T7085] netlink: 134708 bytes leftover after parsing attributes in process `syz.0.258'.
[  231.548297][ T7092] FAULT_INJECTION: forcing a failure.
[  231.548297][ T7092] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  231.616017][ T7092] CPU: 0 UID: 0 PID: 7092 Comm: syz.1.261 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  231.616042][ T7092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  231.616051][ T7092] Call Trace:
[  231.616057][ T7092]  <TASK>
[  231.616065][ T7092]  dump_stack_lvl+0x241/0x360
[  231.616097][ T7092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.616120][ T7092]  ? __pfx__printk+0x10/0x10
[  231.616147][ T7092]  ? snprintf+0xda/0x120
[  231.616164][ T7092]  should_fail_ex+0x3b0/0x4e0
[  231.616187][ T7092]  _copy_to_user+0x31/0xb0
[  231.616204][ T7092]  simple_read_from_buffer+0xca/0x150
[  231.616225][ T7092]  proc_fail_nth_read+0x1e9/0x250
[  231.616246][ T7092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.616267][ T7092]  ? rw_verify_area+0x243/0x630
[  231.616289][ T7092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.616309][ T7092]  vfs_read+0x1f8/0xb40
[  231.616332][ T7092]  ? fdget_pos+0x254/0x320
[  231.616352][ T7092]  ? __pfx___mutex_lock+0x10/0x10
[  231.616372][ T7092]  ? __pfx_vfs_read+0x10/0x10
[  231.616397][ T7092]  ? __fget_files+0x2a/0x410
[  231.616417][ T7092]  ? __fget_files+0x395/0x410
[  231.616435][ T7092]  ? __fget_files+0x2a/0x410
[  231.616462][ T7092]  ksys_read+0x18f/0x2b0
[  231.616487][ T7092]  ? __pfx_ksys_read+0x10/0x10
[  231.616510][ T7092]  ? do_syscall_64+0x100/0x230
[  231.616532][ T7092]  ? do_syscall_64+0xb6/0x230
[  231.616553][ T7092]  do_syscall_64+0xf3/0x230
[  231.616572][ T7092]  ? clear_bhb_loop+0x35/0x90
[  231.616596][ T7092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.616616][ T7092] RIP: 0033:0x7fc4a278b73c
[  231.616630][ T7092] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  231.616643][ T7092] RSP: 002b:00007fc4a3661030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  231.616660][ T7092] RAX: ffffffffffffffda RBX: 00007fc4a29a5fa0 RCX: 00007fc4a278b73c
[  231.616672][ T7092] RDX: 000000000000000f RSI: 00007fc4a36610a0 RDI: 0000000000000005
[  231.616682][ T7092] RBP: 00007fc4a3661090 R08: 0000000000000000 R09: 0000000000000000
[  231.616692][ T7092] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  231.616701][ T7092] R13: 0000000000000000 R14: 00007fc4a29a5fa0 R15: 00007fffe56bb2a8
[  231.616728][ T7092]  </TASK>
[  231.982837][ T7097] capability: warning: `syz.2.260' uses deprecated v2 capabilities in a way that may be insecure
[  232.689106][ T7103] netlink: 8 bytes leftover after parsing attributes in process `syz.2.263'.
[  232.717488][ T7103] netlink: 12 bytes leftover after parsing attributes in process `syz.2.263'.
[  232.756404][ T7103] netlink: 20 bytes leftover after parsing attributes in process `syz.2.263'.
[  236.062178][ T5868] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  236.294649][ T7138] FAULT_INJECTION: forcing a failure.
[  236.294649][ T7138] name failslab, interval 1, probability 0, space 0, times 0
[  236.350689][ T7138] CPU: 1 UID: 0 PID: 7138 Comm: syz.4.273 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  236.350714][ T7138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  236.350724][ T7138] Call Trace:
[  236.350730][ T7138]  <TASK>
[  236.350737][ T7138]  dump_stack_lvl+0x241/0x360
[  236.350768][ T7138]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.350791][ T7138]  ? __pfx__printk+0x10/0x10
[  236.350816][ T7138]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  236.350838][ T7138]  ? __pfx___might_resched+0x10/0x10
[  236.350860][ T7138]  should_fail_ex+0x3b0/0x4e0
[  236.350882][ T7138]  should_failslab+0xac/0x100
[  236.350903][ T7138]  kmem_cache_alloc_node_noprof+0x77/0x380
[  236.350922][ T7138]  ? __alloc_skb+0x1c3/0x440
[  236.350946][ T7138]  __alloc_skb+0x1c3/0x440
[  236.350970][ T7138]  ? __pfx___alloc_skb+0x10/0x10
[  236.350992][ T7138]  ? netlink_autobind+0xd6/0x2f0
[  236.351013][ T7138]  ? netlink_autobind+0x2b0/0x2f0
[  236.351039][ T7138]  netlink_sendmsg+0x638/0xcb0
[  236.351071][ T7138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.351104][ T7138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.351124][ T7138]  __sock_sendmsg+0x221/0x270
[  236.351145][ T7138]  ____sys_sendmsg+0x52a/0x7e0
[  236.351174][ T7138]  ? __pfx_____sys_sendmsg+0x10/0x10
[  236.351194][ T7138]  ? __fget_files+0x2a/0x410
[  236.351217][ T7138]  ? __fget_files+0x2a/0x410
[  236.351244][ T7138]  __sys_sendmsg+0x269/0x350
[  236.351270][ T7138]  ? __pfx___sys_sendmsg+0x10/0x10
[  236.351303][ T7138]  ? do_sys_openat2+0x17a/0x1d0
[  236.351362][ T7138]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  236.351385][ T7138]  ? do_syscall_64+0x100/0x230
[  236.351408][ T7138]  ? do_syscall_64+0xb6/0x230
[  236.351429][ T7138]  do_syscall_64+0xf3/0x230
[  236.351448][ T7138]  ? clear_bhb_loop+0x35/0x90
[  236.351472][ T7138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.351492][ T7138] RIP: 0033:0x7f605118cd29
[  236.351507][ T7138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.351519][ T7138] RSP: 002b:00007f6052077038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  236.351537][ T7138] RAX: ffffffffffffffda RBX: 00007f60513a5fa0 RCX: 00007f605118cd29
[  236.351568][ T7138] RDX: 0000000004008840 RSI: 0000000020000000 RDI: 0000000000000003
[  236.351578][ T7138] RBP: 00007f6052077090 R08: 0000000000000000 R09: 0000000000000000
[  236.351588][ T7138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.351598][ T7138] R13: 0000000000000000 R14: 00007f60513a5fa0 R15: 00007ffe43d10b88
[  236.351623][ T7138]  </TASK>
[  236.614121][ T7140] FAULT_INJECTION: forcing a failure.
[  236.614121][ T7140] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.627295][ T7140] CPU: 1 UID: 0 PID: 7140 Comm: syz.2.272 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  236.627317][ T7140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  236.627327][ T7140] Call Trace:
[  236.627334][ T7140]  <TASK>
[  236.627340][ T7140]  dump_stack_lvl+0x241/0x360
[  236.627371][ T7140]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.627395][ T7140]  ? __pfx__printk+0x10/0x10
[  236.627419][ T7140]  ? __pfx_lock_release+0x10/0x10
[  236.627447][ T7140]  should_fail_ex+0x3b0/0x4e0
[  236.627468][ T7140]  _copy_from_user+0x2d/0xb0
[  236.627485][ T7140]  copy_msghdr_from_user+0xae/0x680
[  236.627509][ T7140]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  236.627525][ T7140]  ? __fget_files+0x2a/0x410
[  236.627547][ T7140]  ? __fget_files+0x2a/0x410
[  236.627575][ T7140]  __sys_sendmmsg+0x32b/0x720
[  236.627607][ T7140]  ? __pfx___sys_sendmmsg+0x10/0x10
[  236.627656][ T7140]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  236.627677][ T7140]  ? do_raw_spin_unlock+0x13c/0x8b0
[  236.627697][ T7140]  ? finish_task_switch+0x1e5/0x870
[  236.627725][ T7140]  ? lockdep_hardirqs_on+0x99/0x150
[  236.627744][ T7140]  ? finish_task_switch+0x1e5/0x870
[  236.627771][ T7140]  ? __schedule+0x1822/0x4b90
[  236.627788][ T7140]  ? vfs_write+0x7fa/0xd10
[  236.627826][ T7140]  ? __pfx___schedule+0x10/0x10
[  236.627855][ T7140]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  236.627877][ T7140]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  236.627898][ T7140]  ? do_syscall_64+0x100/0x230
[  236.627921][ T7140]  __x64_sys_sendmmsg+0xa0/0xb0
[  236.627945][ T7140]  do_syscall_64+0xf3/0x230
[  236.627964][ T7140]  ? clear_bhb_loop+0x35/0x90
[  236.627987][ T7140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.628008][ T7140] RIP: 0033:0x7f5afdf8cd29
[  236.628023][ T7140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.628035][ T7140] RSP: 002b:00007f5afedc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  236.628053][ T7140] RAX: ffffffffffffffda RBX: 00007f5afe1a6160 RCX: 00007f5afdf8cd29
[  236.628065][ T7140] RDX: 0400000000000239 RSI: 0000000020002980 RDI: 0000000000000007
[  236.628076][ T7140] RBP: 00007f5afedc2090 R08: 0000000000000000 R09: 0000000000000000
[  236.628086][ T7140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.628095][ T7140] R13: 0000000000000000 R14: 00007f5afe1a6160 R15: 00007ffe74604cd8
[  236.628121][ T7140]  </TASK>
[  237.003012][ T7139] netlink: 8 bytes leftover after parsing attributes in process `syz.0.274'.
[  237.098990][ T7139] netlink: 12 bytes leftover after parsing attributes in process `syz.0.274'.
[  237.452742][ T5868] usb 2-1: unable to get BOS descriptor or descriptor too short
[  237.461339][ T5868] usb 2-1: not running at top speed; connect to a high speed hub
[  237.508300][ T5868] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  237.527993][ T5868] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  237.565228][ T5868] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  237.586496][ T5868] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  237.820349][ T5868] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.828385][ T5868] usb 2-1: Product: syz
[  238.117545][ T7161] overlayfs: missing 'lowerdir'
[  238.795173][ T5868] usb 2-1: Manufacturer: syz
[  238.799821][ T5868] usb 2-1: SerialNumber: syz
[  238.834451][ T5868] usb 2-1: can't set config #1, error -71
[  238.862691][ T5868] usb 2-1: USB disconnect, device number 10
[  239.968675][ T7180] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  240.095801][ T5868] libceph: connect (1)[c::]:6789 error -101
[  240.096333][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  240.409238][ T5868] libceph: connect (1)[c::]:6789 error -101
[  240.410269][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  240.996065][ T5868] libceph: connect (1)[c::]:6789 error -101
[  241.002150][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  242.319217][ T5903] libceph: connect (1)[c::]:6789 error -101
[  242.342340][ T5903] libceph: mon0 (1)[c::]:6789 connect error
[  242.422168][ T7182] ceph: No mds server is up or the cluster is laggy
[  242.790423][   T80] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  243.016336][   T80] usb 2-1: Using ep0 maxpacket: 16
[  243.042208][   T80] usb 2-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.075369][   T80] usb 2-1: config 0 interface 0 has no altsetting 0
[  243.082179][ T5903] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  243.104325][   T80] usb 2-1: New USB device found, idVendor=046d, idProduct=c517, bcdDevice= 0.00
[  243.136242][   T80] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.156970][   T80] usb 2-1: config 0 descriptor??
[  243.507312][ T5903] usb 1-1: Using ep0 maxpacket: 8
[  243.515437][ T5903] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.538133][ T5903] usb 1-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  244.291334][ T7233] fuse: Bad value for 'fd'
[  244.332095][ T5903] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.345106][   T80] logitech-djreceiver 0003:046D:C517.0001: hidraw0: USB HID v0.05 Device [HID 046d:c517] on usb-dummy_hcd.1-1/input0
[  244.357989][ T5903] usb 1-1: Product: syz
[  244.362619][ T5903] usb 1-1: Manufacturer: syz
[  244.369833][ T5903] usb 1-1: SerialNumber: syz
[  244.385589][ T5903] usb 1-1: config 0 descriptor??
[  244.447388][   T80] usb 2-1: USB disconnect, device number 11
[  244.543904][ T5903] msi2500 1-1:0.0: Registered as swradio24
[  244.578433][ T5903] msi2500 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  245.074324][ T5865] usb 1-1: USB disconnect, device number 5
[  245.074338][ T7241] loop7: detected capacity change from 0 to 16384
[  245.229752][   T29] audit: type=1326 audit(1737889131.540:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  245.473274][   T29] audit: type=1326 audit(1737889131.540:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  245.504174][   T29] audit: type=1326 audit(1737889131.540:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  245.529166][   T29] audit: type=1326 audit(1737889131.540:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  245.604090][   T29] audit: type=1326 audit(1737889131.540:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  246.314883][ T7252] x_tables: ip_tables: osf match: only valid for protocol 6
[  246.502468][   T29] audit: type=1326 audit(1737889131.540:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  246.523777][   T29] audit: type=1326 audit(1737889131.540:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  246.545072][   T29] audit: type=1326 audit(1737889131.578:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  246.628666][   T29] audit: type=1326 audit(1737889131.578:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  247.122783][   T29] audit: type=1326 audit(1737889131.578:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7243 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f605118cd29 code=0x7ffc0000
[  251.720477][ T7294] netlink: 28 bytes leftover after parsing attributes in process `syz.1.312'.
[  251.741219][ T7297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.311'.
[  251.764924][ T7298] netlink: 12 bytes leftover after parsing attributes in process `syz.4.313'.
[  251.797978][ T7298] syz.4.313 uses obsolete (PF_INET,SOCK_PACKET)
[  251.905824][ T7294] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present
[  251.932245][ T7297] netlink: 16 bytes leftover after parsing attributes in process `syz.0.311'.
[  253.058095][ T7317] FAULT_INJECTION: forcing a failure.
[  253.058095][ T7317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  253.071968][ T7317] CPU: 0 UID: 0 PID: 7317 Comm: syz.3.317 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  253.071999][ T7317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  253.072008][ T7317] Call Trace:
[  253.072014][ T7317]  <TASK>
[  253.072021][ T7317]  dump_stack_lvl+0x241/0x360
[  253.072052][ T7317]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.072074][ T7317]  ? __pfx__printk+0x10/0x10
[  253.072095][ T7317]  ? get_sigframe+0x5e2/0x800
[  253.072120][ T7317]  should_fail_ex+0x3b0/0x4e0
[  253.072141][ T7317]  _copy_to_user+0x31/0xb0
[  253.072158][ T7317]  copy_siginfo_to_user+0x24/0xc0
[  253.072176][ T7317]  x64_setup_rt_frame+0x7b7/0xd20
[  253.072192][ T7317]  ? lockdep_hardirqs_on+0x99/0x150
[  253.072211][ T7317]  ? _raw_spin_unlock_irq+0x2e/0x50
[  253.072240][ T7317]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  253.072257][ T7317]  ? __sys_bpf+0x48d/0x810
[  253.072277][ T7317]  arch_do_signal_or_restart+0x458/0x860
[  253.072297][ T7317]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  253.072313][ T7317]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.072343][ T7317]  ? syscall_exit_to_user_mode+0xa3/0x340
[  253.072363][ T7317]  syscall_exit_to_user_mode+0xce/0x340
[  253.072383][ T7317]  do_syscall_64+0x100/0x230
[  253.072401][ T7317]  ? clear_bhb_loop+0x35/0x90
[  253.072424][ T7317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.072444][ T7317] RIP: 0033:0x7f5394f8cd29
[  253.072458][ T7317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.072469][ T7317] RSP: 002b:00007f5395d28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  253.072486][ T7317] RAX: ffffffffffffffea RBX: 00007f53951a5fa0 RCX: 00007f5394f8cd29
[  253.072498][ T7317] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a
[  253.072507][ T7317] RBP: 00007f5395d28090 R08: 0000000000000000 R09: 0000000000000000
[  253.072517][ T7317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.072526][ T7317] R13: 0000000000000000 R14: 00007f53951a5fa0 R15: 00007ffe21004468
[  253.072551][ T7317]  </TASK>
[  253.359068][ T7313] netlink: 16 bytes leftover after parsing attributes in process `syz.4.316'.
[  253.419007][ T7313] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3991866543 (7983733086 ns) > initial count (4279149104 ns). Using initial count to start timer.
[  253.531191][ T7326] Driver unsupported XDP return value 0 on prog  (id 33) dev N/A, expect packet loss!
[  253.855105][ T7338] 9pnet_fd: Insufficient options for proto=fd
[  254.061061][ T5865] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  254.240970][ T5865] usb 4-1: Using ep0 maxpacket: 32
[  254.262733][ T5865] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  254.319905][ T5865] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  254.366230][ T5865] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.482045][ T5865] usb 4-1: Product: syz
[  254.504431][ T5865] usb 4-1: Manufacturer: syz
[  254.521625][ T5865] usb 4-1: SerialNumber: syz
[  254.551219][ T5865] usb 4-1: config 0 descriptor??
[  255.448416][ T7352] random: crng reseeded on system resumption
[  257.335868][ T7372] fuse: Unknown parameter '00000000000000000000'
[  258.531025][    T8] usb 4-1: USB disconnect, device number 10
[  259.741786][    T8] libceph: connect (1)[c::]:6789 error -101
[  259.748132][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  259.771616][ T7388] 9pnet_fd: Insufficient options for proto=fd
[  259.895117][   T80] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  260.025547][ T5868] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  260.066448][    T8] libceph: connect (1)[c::]:6789 error -101
[  260.090040][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  260.410137][ T7404] overlayfs: failed to resolve './file1': -2
[  260.849852][    T8] libceph: connect (1)[c::]:6789 error -101
[  260.855927][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  260.944570][   T80] usb 1-1: Using ep0 maxpacket: 8
[  260.971188][   T80] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  261.019493][   T80] usb 1-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  261.256196][ T5868] usb 4-1: Using ep0 maxpacket: 8
[  261.279667][   T80] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.381555][ T5868] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  261.394621][   T80] usb 1-1: Product: syz
[  261.398899][   T80] usb 1-1: Manufacturer: syz
[  261.413792][   T80] usb 1-1: SerialNumber: syz
[  261.447248][ T5868] usb 4-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  261.520045][ T7390] ceph: No mds server is up or the cluster is laggy
[  261.528710][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.540197][ T5868] usb 4-1: Product: syz
[  261.572285][   T80] usb 1-1: config 0 descriptor??
[  261.593516][ T5868] usb 4-1: Manufacturer: syz
[  261.624196][ T5868] usb 4-1: SerialNumber: syz
[  261.668824][ T5868] usb 4-1: config 0 descriptor??
[  262.484356][    T8] libceph: connect (1)[c::]:6789 error -101
[  262.530071][   T80] msi2500 1-1:0.0: Registered as swradio24
[  262.537041][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  262.614267][ T5868] videodev: could not get a free minor
[  262.624000][   T80] msi2500 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  262.641985][ T5868] msi2500 4-1:0.0: Failed to register as video device (-23)
[  262.654119][ T5868] msi2500 4-1:0.0: probe with driver msi2500 failed with error -23
[  262.662685][   T80] usb 1-1: USB disconnect, device number 6
[  262.670500][  T973] libceph: connect (1)[c::]:6789 error -101
[  262.676830][  T973] libceph: mon0 (1)[c::]:6789 connect error
[  262.706360][ T5868] usb 4-1: USB disconnect, device number 11
[  262.964964][  T973] libceph: connect (1)[c::]:6789 error -101
[  262.970968][  T973] libceph: mon0 (1)[c::]:6789 connect error
[  263.109305][ T7420] ceph: No mds server is up or the cluster is laggy
[  263.362323][ T7437] netlink: 16 bytes leftover after parsing attributes in process `syz.3.343'.
[  264.546926][ T7447] 9pnet_fd: Insufficient options for proto=fd
[  265.096666][ T5826] Bluetooth: hci5: sending frame failed (-49)
[  265.104327][ T6776] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  266.474747][ T7469] overlayfs: failed to resolve './file1': -2
[  267.138671][ T5868] libceph: connect (1)[c::]:6789 error -101
[  267.144842][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  267.387286][ T7474] ceph: No mds server is up or the cluster is laggy
[  267.427991][ T5868] libceph: connect (1)[c::]:6789 error -101
[  267.444977][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  267.506808][  T976] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  267.656388][  T976] usb 4-1: device descriptor read/64, error -71
[  267.671092][   T80] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  267.788661][ T5868] libceph: connect (1)[c::]:6789 error -101
[  267.794905][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  267.830153][ T7497] FAULT_INJECTION: forcing a failure.
[  267.830153][ T7497] name failslab, interval 1, probability 0, space 0, times 0
[  267.848908][   T80] usb 1-1: Using ep0 maxpacket: 8
[  267.853209][ T7497] CPU: 0 UID: 0 PID: 7497 Comm: syz.1.357 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  267.853229][ T7497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  267.853239][ T7497] Call Trace:
[  267.853245][ T7497]  <TASK>
[  267.853252][ T7497]  dump_stack_lvl+0x241/0x360
[  267.853282][ T7497]  ? __pfx_dump_stack_lvl+0x10/0x10
[  267.853304][ T7497]  ? __pfx__printk+0x10/0x10
[  267.853327][ T7497]  ? __kmalloc_noprof+0xb5/0x4c0
[  267.853347][ T7497]  ? __pfx___might_resched+0x10/0x10
[  267.853369][ T7497]  should_fail_ex+0x3b0/0x4e0
[  267.853390][ T7497]  should_failslab+0xac/0x100
[  267.853410][ T7497]  __kmalloc_noprof+0xdd/0x4c0
[  267.853427][ T7497]  ? sock_kmalloc+0xd7/0x160
[  267.853453][ T7497]  sock_kmalloc+0xd7/0x160
[  267.853477][ T7497]  skcipher_recvmsg+0x5ff/0x1230
[  267.853512][ T7497]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  267.853530][ T7497]  ? __might_fault+0xaa/0x120
[  267.853553][ T7497]  ? __pfx_lock_release+0x10/0x10
[  267.853570][ T7497]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  267.853590][ T7497]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  267.853609][ T7497]  sock_recvmsg+0x22f/0x280
[  267.853630][ T7497]  ____sys_recvmsg+0x1c6/0x480
[  267.853666][ T7497]  ? __pfx_____sys_recvmsg+0x10/0x10
[  267.853713][ T7497]  __sys_recvmsg+0x291/0x390
[  267.853739][ T7497]  ? __pfx___sys_recvmsg+0x10/0x10
[  267.853771][ T7497]  ? __fget_files+0x2a/0x410
[  267.853807][ T7497]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  267.853827][ T7497]  ? do_syscall_64+0x100/0x230
[  267.853848][ T7497]  ? do_syscall_64+0xb6/0x230
[  267.853868][ T7497]  do_syscall_64+0xf3/0x230
[  267.853886][ T7497]  ? clear_bhb_loop+0x35/0x90
[  267.853908][ T7497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.853927][ T7497] RIP: 0033:0x7fc4a278cd29
[  267.853942][ T7497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.853953][ T7497] RSP: 002b:00007fc4a3661038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  267.853970][ T7497] RAX: ffffffffffffffda RBX: 00007fc4a29a5fa0 RCX: 00007fc4a278cd29
[  267.853982][ T7497] RDX: 0000000000000040 RSI: 0000000020000500 RDI: 0000000000000004
[  267.853991][ T7497] RBP: 00007fc4a3661090 R08: 0000000000000000 R09: 0000000000000000
[  267.854001][ T7497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.854009][ T7497] R13: 0000000000000000 R14: 00007fc4a29a5fa0 R15: 00007fffe56bb2a8
[  267.854034][ T7497]  </TASK>
[  268.107218][ T5868] libceph: connect (1)[c::]:6789 error -101
[  268.116520][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  268.119114][  T976] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[  268.172889][   T80] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  268.212395][   T80] usb 1-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  268.230584][   T80] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.243076][   T80] usb 1-1: Product: syz
[  268.243191][ T7493] ceph: No mds server is up or the cluster is laggy
[  268.257310][ T7501] 9pnet_fd: Insufficient options for proto=fd
[  268.298655][  T976] usb 4-1: device descriptor read/64, error -71
[  268.317114][   T80] usb 1-1: Manufacturer: syz
[  268.337565][   T80] usb 1-1: SerialNumber: syz
[  268.396121][   T80] usb 1-1: config 0 descriptor??
[  268.426661][  T976] usb usb4-port1: attempt power cycle
[  268.639041][   T80] msi2500 1-1:0.0: Registered as swradio24
[  268.649052][   T80] msi2500 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  268.742591][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  268.767410][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  268.810327][  T976] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  268.943968][  T976] usb 4-1: device descriptor read/8, error -71
[  269.181343][    T8] usb 1-1: USB disconnect, device number 7
[  269.257580][  T976] usb 4-1: new full-speed USB device number 15 using dummy_hcd
[  269.295103][  T976] usb 4-1: device descriptor read/8, error -71
[  269.441906][  T976] usb usb4-port1: unable to enumerate USB device
[  275.669369][ T7554] 9pnet_fd: Insufficient options for proto=fd
[  275.923730][   T80] libceph: connect (1)[c::]:6789 error -101
[  275.992372][   T80] libceph: mon0 (1)[c::]:6789 connect error
[  276.110341][ T7560] ceph: No mds server is up or the cluster is laggy
[  276.365475][    T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  277.245842][    T8] usb 5-1: Using ep0 maxpacket: 32
[  277.255465][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  277.270481][    T8] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  277.295859][    T8] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  277.321216][ T7579] net veth1_virt_wifi �����6: renamed from virt_wifi0
[  277.326506][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.358943][    T8] usb 5-1: Product: syz
[  277.384315][    T8] usb 5-1: Manufacturer: syz
[  277.406515][    T8] usb 5-1: SerialNumber: syz
[  277.448729][    T8] usb 5-1: config 0 descriptor??
[  277.463191][    T8] hub 5-1:0.0: bad descriptor, ignoring hub
[  277.476341][    T8] hub 5-1:0.0: probe with driver hub failed with error -5
[  277.498984][    T8] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input6
[  277.540144][    T8] usbtouchscreen 5-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -90
[  278.542090][    T8] usbtouchscreen 5-1:0.0: probe with driver usbtouchscreen failed with error -90
[  280.227268][ T7597] 9pnet_fd: Insufficient options for proto=fd
[  281.111562][    T8] usb 5-1: USB disconnect, device number 5
[  282.038003][ T5868] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  282.808684][ T7629] fuse: Bad value for 'user_id'
[  282.813623][ T7629] fuse: Bad value for 'user_id'
[  283.232572][ T5868] usb 5-1: Using ep0 maxpacket: 8
[  283.298637][ T5868] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  283.358840][ T5868] usb 5-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  283.372521][   T80] libceph: connect (1)[c::]:6789 error -101
[  283.378573][   T80] libceph: mon0 (1)[c::]:6789 connect error
[  283.385086][ T5868] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.394627][ T5868] usb 5-1: Product: syz
[  283.398893][ T5868] usb 5-1: Manufacturer: syz
[  283.403927][ T5868] usb 5-1: SerialNumber: syz
[  283.422097][   T80] libceph: connect (1)[c::]:6789 error -101
[  283.429345][ T5868] usb 5-1: config 0 descriptor??
[  283.434511][   T80] libceph: mon0 (1)[c::]:6789 connect error
[  283.490616][ T5868] msi2500 5-1:0.0: Registered as swradio24
[  283.500228][ T5868] msi2500 5-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  283.614088][ T7633] ceph: No mds server is up or the cluster is laggy
[  284.245627][    T8] usb 5-1: USB disconnect, device number 6
[  284.468379][ T7653] FAULT_INJECTION: forcing a failure.
[  284.468379][ T7653] name failslab, interval 1, probability 0, space 0, times 0
[  284.503198][ T7653] CPU: 1 UID: 0 PID: 7653 Comm: syz.3.395 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  284.503223][ T7653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  284.503233][ T7653] Call Trace:
[  284.503239][ T7653]  <TASK>
[  284.503246][ T7653]  dump_stack_lvl+0x241/0x360
[  284.503278][ T7653]  ? __pfx_dump_stack_lvl+0x10/0x10
[  284.503302][ T7653]  ? __pfx__printk+0x10/0x10
[  284.503327][ T7653]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  284.503348][ T7653]  ? __pfx___might_resched+0x10/0x10
[  284.503369][ T7653]  should_fail_ex+0x3b0/0x4e0
[  284.503392][ T7653]  should_failslab+0xac/0x100
[  284.503413][ T7653]  __kmalloc_node_noprof+0xe1/0x4d0
[  284.503441][ T7653]  ? __kvmalloc_node_noprof+0x72/0x190
[  284.503467][ T7653]  __kvmalloc_node_noprof+0x72/0x190
[  284.503491][ T7653]  proc_sys_call_handler+0x45f/0x920
[  284.503522][ T7653]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  284.503555][ T7653]  vfs_write+0xacf/0xd10
[  284.503583][ T7653]  ? __pfx_proc_sys_write+0x10/0x10
[  284.503604][ T7653]  ? __pfx_vfs_write+0x10/0x10
[  284.503624][ T7653]  ? do_sys_openat2+0x17a/0x1d0
[  284.503647][ T7653]  ? __fget_files+0x2a/0x410
[  284.503669][ T7653]  ? __fget_files+0x2a/0x410
[  284.503697][ T7653]  ksys_write+0x18f/0x2b0
[  284.503722][ T7653]  ? __pfx_ksys_write+0x10/0x10
[  284.503745][ T7653]  ? do_syscall_64+0x100/0x230
[  284.503768][ T7653]  ? do_syscall_64+0xb6/0x230
[  284.503789][ T7653]  do_syscall_64+0xf3/0x230
[  284.503808][ T7653]  ? clear_bhb_loop+0x35/0x90
[  284.503832][ T7653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.503851][ T7653] RIP: 0033:0x7f5394f8cd29
[  284.503866][ T7653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.503878][ T7653] RSP: 002b:00007f5395d28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  284.503896][ T7653] RAX: ffffffffffffffda RBX: 00007f53951a5fa0 RCX: 00007f5394f8cd29
[  284.503907][ T7653] RDX: 0000000000000009 RSI: 0000000020001880 RDI: 0000000000000003
[  284.503915][ T7653] RBP: 00007f5395d28090 R08: 0000000000000000 R09: 0000000000000000
[  284.503925][ T7653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.503934][ T7653] R13: 0000000000000000 R14: 00007f53951a5fa0 R15: 00007ffe21004468
[  284.503961][ T7653]  </TASK>
[  284.670647][ T7655] 9pnet_fd: Insufficient options for proto=fd
[  284.760294][ T7659] capability: warning: `syz.3.397' uses 32-bit capabilities (legacy support in use)
[  286.409947][ T7669] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  287.668434][    T8] libceph: connect (1)[c::]:6789 error -101
[  288.353440][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  288.516173][ T7703] 9pnet_fd: Insufficient options for proto=fd
[  288.740399][    T8] libceph: connect (1)[c::]:6789 error -101
[  288.891172][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  289.094075][ T7698] ceph: No mds server is up or the cluster is laggy
[  290.508200][ T7735] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  292.076210][ T7754] FAULT_INJECTION: forcing a failure.
[  292.076210][ T7754] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.094471][ T7754] CPU: 0 UID: 0 PID: 7754 Comm: syz.3.423 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  292.094493][ T7754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  292.094503][ T7754] Call Trace:
[  292.094517][ T7754]  <TASK>
[  292.094524][ T7754]  dump_stack_lvl+0x241/0x360
[  292.094555][ T7754]  ? __pfx_dump_stack_lvl+0x10/0x10
[  292.094578][ T7754]  ? __pfx__printk+0x10/0x10
[  292.094603][ T7754]  ? __pfx_lock_release+0x10/0x10
[  292.094621][ T7754]  ? tomoyo_path_number_perm+0x6f9/0x860
[  292.094640][ T7754]  ? __lock_acquire+0x1397/0x2100
[  292.094665][ T7754]  should_fail_ex+0x3b0/0x4e0
[  292.094686][ T7754]  _copy_from_user+0x2d/0xb0
[  292.094703][ T7754]  wext_handle_ioctl+0xef/0x280
[  292.094723][ T7754]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  292.094746][ T7754]  ? __asan_memset+0x23/0x50
[  292.094768][ T7754]  ? smack_file_ioctl+0x29e/0x3a0
[  292.094789][ T7754]  sock_ioctl+0x17c/0x8e0
[  292.094809][ T7754]  ? __pfx_sock_ioctl+0x10/0x10
[  292.094824][ T7754]  ? __fget_files+0x2a/0x410
[  292.094846][ T7754]  ? __fget_files+0x2a/0x410
[  292.094873][ T7754]  ? __pfx_sock_ioctl+0x10/0x10
[  292.094890][ T7754]  __se_sys_ioctl+0xf5/0x170
[  292.094914][ T7754]  do_syscall_64+0xf3/0x230
[  292.094933][ T7754]  ? clear_bhb_loop+0x35/0x90
[  292.094955][ T7754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.094974][ T7754] RIP: 0033:0x7f5394f8cd29
[  292.094987][ T7754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.095000][ T7754] RSP: 002b:00007f5395d28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.095017][ T7754] RAX: ffffffffffffffda RBX: 00007f53951a5fa0 RCX: 00007f5394f8cd29
[  292.095029][ T7754] RDX: 0000000020000000 RSI: 0000000000008b04 RDI: 0000000000000005
[  292.095039][ T7754] RBP: 00007f5395d28090 R08: 0000000000000000 R09: 0000000000000000
[  292.095049][ T7754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.095058][ T7754] R13: 0000000000000000 R14: 00007f53951a5fa0 R15: 00007ffe21004468
[  292.095083][ T7754]  </TASK>
[  292.159374][   T80] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  292.161028][    C0] vkms_vblank_simulate: vblank timer overrun
[  292.312078][    C0] vkms_vblank_simulate: vblank timer overrun
[  292.383745][    T8] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  292.517554][   T80] usb 2-1: Using ep0 maxpacket: 32
[  292.525361][   T80] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  292.542162][   T80] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  292.544063][    T8] usb 3-1: Using ep0 maxpacket: 16
[  292.564083][   T80] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  292.586866][    T8] usb 3-1: config 1 has an invalid descriptor of length 194, skipping remainder of the config
[  292.597670][    T8] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  292.608963][    T8] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  292.618141][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.626574][    T8] usb 3-1: Product: syz
[  292.634692][   T80] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  292.637522][    T8] usb 3-1: Manufacturer: syz
[  292.654943][    T8] usb 3-1: SerialNumber: syz
[  292.862856][   T80] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  292.873766][   T80] usb 2-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  293.338395][ T7767] overlayfs: failed to resolve './file0': -2
[  293.950551][   T80] usb 2-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf
[  294.058848][   T80] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.091846][   T80] usb 2-1: Product: syz
[  294.104725][   T80] usb 2-1: Manufacturer: syz
[  294.117727][   T80] usb 2-1: SerialNumber: syz
[  294.122040][    T8] usb 3-1: 0:2 : does not exist
[  294.134223][    T8] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  294.168837][    T8] usb 3-1: USB disconnect, device number 13
[  294.256219][   T80] usb 2-1: config 0 descriptor??
[  294.262674][ T7749] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  294.297396][ T7771] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  294.327009][   T80] pn533_usb 2-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  294.451883][ T5909] libceph: connect (1)[c::]:6789 error -101
[  294.489509][ T5909] libceph: mon0 (1)[c::]:6789 connect error
[  294.498278][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  294.534568][ T5909] usb 2-1: USB disconnect, device number 12
[  294.614509][ T7775] ceph: No mds server is up or the cluster is laggy
[  297.205659][ T5903] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  297.213451][   T80] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  297.451400][ T7800] fuse: Bad value for 'user_id'
[  297.456322][ T7800] fuse: Bad value for 'user_id'
[  297.739843][ T5903] usb 1-1: Using ep0 maxpacket: 16
[  298.002317][   T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  298.016706][ T5903] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.028108][   T80] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  298.038052][ T5903] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.049342][   T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  298.125756][ T5903] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  298.138914][   T80] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  298.151656][ T5903] usb 1-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[  298.162469][   T80] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  298.174627][ T5903] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.184364][   T80] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.344064][ T5903] usb 1-1: config 0 descriptor??
[  298.410757][   T80] usb 4-1: config 0 descriptor??
[  298.905011][   T80] hdpvr 4-1:0.0: firmware version 0x1e dated �
[  299.184626][ T5903] usbhid 1-1:0.0: can't add hid device: -71
[  299.353707][ T5903] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  299.465900][   T80] hdpvr 4-1:0.0: device init failed
[  299.620174][   T80] hdpvr 4-1:0.0: probe with driver hdpvr failed with error -12
[  299.647919][ T5903] usb 1-1: USB disconnect, device number 8
[  299.917309][   T80] usb 4-1: USB disconnect, device number 16
[  301.503034][ T5909] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  301.610212][    T8] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  301.882594][    T8] usb 5-1: Using ep0 maxpacket: 8
[  302.218508][ T5909] usb 1-1: config 129 has an invalid interface number: 249 but max is 0
[  302.244325][ T5909] usb 1-1: config 129 has no interface number 0
[  302.250850][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  302.261972][ T5909] usb 1-1: config 129 interface 249 has no altsetting 0
[  302.272814][ T5909] usb 1-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  302.282065][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  302.293680][ T5909] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.302084][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  302.312351][ T5865] libceph: connect (1)[c::]:6789 error -101
[  302.325084][ T5865] libceph: mon0 (1)[c::]:6789 connect error
[  302.400920][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  302.416316][    T8] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  302.426042][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.436022][    T8] usb 5-1: config 0 descriptor??
[  302.463343][ T7830] ceph: No mds server is up or the cluster is laggy
[  302.672859][    T8] usb 5-1: USB disconnect, device number 7
[  302.875981][ T7849] netlink: 'syz.3.446': attribute type 1 has an invalid length.
[  303.116906][ T5909] usb 1-1: string descriptor 0 read error: -71
[  303.126410][ T5909] redrat3 1-1:129.249: Couldn't find all endpoints
[  303.148711][ T5909] usb 1-1: USB disconnect, device number 9
[  306.038498][ T7881] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  306.408423][ T5909] libceph: connect (1)[c::]:6789 error -101
[  306.414570][ T5909] libceph: mon0 (1)[c::]:6789 connect error
[  306.580878][ T7884] ceph: No mds server is up or the cluster is laggy
[  306.698854][ T5909] libceph: connect (1)[c::]:6789 error -101
[  306.705288][ T5909] libceph: mon0 (1)[c::]:6789 connect error
[  307.261016][ T5903] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  307.510993][ T5903] usb 1-1: config 129 has an invalid interface number: 249 but max is 0
[  307.519378][ T5903] usb 1-1: config 129 has no interface number 0
[  307.543369][ T5903] usb 1-1: config 129 interface 249 has no altsetting 0
[  307.550353][ T5903] usb 1-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  307.615226][ T5903] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.668485][ T7922] (syz.3.466,7922,0):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "��~g��<+��(��.�1 1'�Ɖ�" or missing value
[  308.745289][ T7922] (syz.3.466,7922,0):ocfs2_fill_super:1178 ERROR: status = -22
[  309.119009][ T5903] usb 1-1: string descriptor 0 read error: -71
[  309.148613][ T5903] redrat3 1-1:129.249: Couldn't find all endpoints
[  309.185584][ T5903] usb 1-1: USB disconnect, device number 10
[  309.467001][ T7930] FAULT_INJECTION: forcing a failure.
[  309.467001][ T7930] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.480170][ T7930] CPU: 1 UID: 0 PID: 7930 Comm: syz.0.469 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  309.480186][ T7930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  309.480194][ T7930] Call Trace:
[  309.480199][ T7930]  <TASK>
[  309.480205][ T7930]  dump_stack_lvl+0x241/0x360
[  309.480231][ T7930]  ? __pfx_dump_stack_lvl+0x10/0x10
[  309.480252][ T7930]  ? __pfx__printk+0x10/0x10
[  309.480270][ T7930]  ? tomoyo_path_number_perm+0x6f9/0x860
[  309.480287][ T7930]  ? __pfx_lock_release+0x10/0x10
[  309.480304][ T7930]  ? tomoyo_path_number_perm+0x206/0x860
[  309.480322][ T7930]  should_fail_ex+0x3b0/0x4e0
[  309.480341][ T7930]  _copy_from_user+0x2d/0xb0
[  309.480355][ T7930]  video_usercopy+0x378/0x1180
[  309.480383][ T7930]  ? __pfx___video_do_ioctl+0x10/0x10
[  309.480396][ T7930]  ? __pfx_video_usercopy+0x10/0x10
[  309.480411][ T7930]  ? smack_file_ioctl+0x2f7/0x3a0
[  309.480435][ T7930]  ? __fget_files+0x2a/0x410
[  309.480457][ T7930]  ? __fget_files+0x2a/0x410
[  309.480474][ T7930]  v4l2_ioctl+0x189/0x1e0
[  309.480492][ T7930]  ? __pfx_v4l2_ioctl+0x10/0x10
[  309.480512][ T7930]  __se_sys_ioctl+0xf5/0x170
[  309.480535][ T7930]  do_syscall_64+0xf3/0x230
[  309.480554][ T7930]  ? clear_bhb_loop+0x35/0x90
[  309.480575][ T7930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.480594][ T7930] RIP: 0033:0x7f98eb38cd29
[  309.480608][ T7930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.480620][ T7930] RSP: 002b:00007f98ec1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  309.480638][ T7930] RAX: ffffffffffffffda RBX: 00007f98eb5a6080 RCX: 00007f98eb38cd29
[  309.480649][ T7930] RDX: 0000000020000000 RSI: 00000000c0405602 RDI: 0000000000000005
[  309.480659][ T7930] RBP: 00007f98ec1d6090 R08: 0000000000000000 R09: 0000000000000000
[  309.480669][ T7930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.480678][ T7930] R13: 0000000000000000 R14: 00007f98eb5a6080 R15: 00007fff69f2e1d8
[  309.480703][ T7930]  </TASK>
[  309.884613][ T7936] vivid-006: disconnect
[  310.086399][ T7929] vivid-006: reconnect
[  310.491967][ T7942] overlayfs: invalid redirect ((null))
[  310.728089][ T5868] libceph: connect (1)[c::]:6789 error -101
[  310.734547][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  310.760613][ T5903] libceph: connect (1)[c::]:6789 error -101
[  310.772054][ T5903] libceph: mon0 (1)[c::]:6789 connect error
[  311.210388][ T5868] libceph: connect (1)[c::]:6789 error -101
[  311.221953][ T5868] libceph: mon0 (1)[c::]:6789 connect error
[  311.230645][ T7945] ceph: No mds server is up or the cluster is laggy
[  313.647553][ T5868] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  314.060914][ T7984] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  314.175840][ T5868] usb 2-1: config 129 has an invalid interface number: 249 but max is 0
[  314.204130][ T5868] usb 2-1: config 129 has no interface number 0
[  314.204311][ T5868] usb 2-1: config 129 interface 249 has no altsetting 0
[  314.263217][ T7991] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  314.325376][ T5868] usb 2-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  314.478358][ T5868] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.059835][ T5903] libceph: connect (1)[c::]:6789 error -101
[  315.135937][ T5903] libceph: mon0 (1)[c::]:6789 connect error
[  315.338001][ T8003] ceph: No mds server is up or the cluster is laggy
[  315.394675][ T5868] usb 2-1: string descriptor 0 read error: -71
[  315.894744][   T80] libceph: connect (1)[c::]:6789 error -101
[  315.912888][   T80] libceph: mon0 (1)[c::]:6789 connect error
[  315.921794][ T5868] redrat3 2-1:129.249: Couldn't find all endpoints
[  316.015466][ T5868] usb 2-1: USB disconnect, device number 13
[  318.963686][ T8043] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  320.521583][ T5868] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  321.051711][ T8060] FAULT_INJECTION: forcing a failure.
[  321.051711][ T8060] name failslab, interval 1, probability 0, space 0, times 0
[  321.065611][ T8060] CPU: 1 UID: 0 PID: 8060 Comm: syz.4.501 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  321.065632][ T8060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  321.065645][ T8060] Call Trace:
[  321.065651][ T8060]  <TASK>
[  321.065658][ T8060]  dump_stack_lvl+0x241/0x360
[  321.065689][ T8060]  ? __pfx_dump_stack_lvl+0x10/0x10
[  321.065712][ T8060]  ? __pfx__printk+0x10/0x10
[  321.065746][ T8060]  should_fail_ex+0x3b0/0x4e0
[  321.065768][ T8060]  should_failslab+0xac/0x100
[  321.065788][ T8060]  ? alloc_empty_file+0x9e/0x1d0
[  321.065807][ T8060]  kmem_cache_alloc_noprof+0x70/0x380
[  321.065832][ T8060]  alloc_empty_file+0x9e/0x1d0
[  321.065852][ T8060]  path_openat+0x107/0x3580
[  321.065897][ T8060]  ? mark_lock+0x9a/0x360
[  321.065921][ T8060]  ? __lock_acquire+0x1397/0x2100
[  321.065944][ T8060]  ? __pfx_path_openat+0x10/0x10
[  321.065984][ T8060]  do_filp_open+0x27f/0x4e0
[  321.066008][ T8060]  ? __pfx_do_filp_open+0x10/0x10
[  321.066028][ T8060]  ? do_raw_spin_lock+0x14f/0x370
[  321.066078][ T8060]  do_sys_openat2+0x13e/0x1d0
[  321.066099][ T8060]  ? __pfx_do_sys_openat2+0x10/0x10
[  321.066117][ T8060]  ? __fget_files+0x2a/0x410
[  321.066139][ T8060]  ? __fget_files+0x2a/0x410
[  321.066170][ T8060]  __x64_sys_openat+0x247/0x2a0
[  321.066191][ T8060]  ? __pfx___x64_sys_openat+0x10/0x10
[  321.066214][ T8060]  ? do_syscall_64+0x100/0x230
[  321.066237][ T8060]  ? do_syscall_64+0xb6/0x230
[  321.066258][ T8060]  do_syscall_64+0xf3/0x230
[  321.066277][ T8060]  ? clear_bhb_loop+0x35/0x90
[  321.066301][ T8060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.066321][ T8060] RIP: 0033:0x7f605118cd29
[  321.066335][ T8060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.066348][ T8060] RSP: 002b:00007f6052035038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  321.066366][ T8060] RAX: ffffffffffffffda RBX: 00007f60513a6160 RCX: 00007f605118cd29
[  321.066378][ T8060] RDX: 0000000000008001 RSI: 00000000200001c0 RDI: 00000000ffffff9c
[  321.066389][ T8060] RBP: 00007f6052035090 R08: 0000000000000000 R09: 0000000000000000
[  321.066399][ T8060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.066408][ T8060] R13: 0000000000000001 R14: 00007f60513a6160 R15: 00007ffe43d10b88
[  321.066434][ T8060]  </TASK>
[  321.916239][ T5868] usb 2-1: config 129 has an invalid interface number: 249 but max is 0
[  321.968124][ T5868] usb 2-1: config 129 has no interface number 0
[  322.007870][ T5868] usb 2-1: config 129 interface 249 has no altsetting 0
[  322.014874][ T5868] usb 2-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  322.120583][ T5868] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.384893][ T8070] infiniband syz2: set active
[  322.389784][ T8070] infiniband syz2: added team_slave_1
[  322.605459][ T8070] RDS/IB: syz2: added
[  322.608017][ T8070] smc: adding ib device syz2 with port count 1
[  322.608725][ T8070] smc:    ib device syz2 port 1 has pnetid 
[  324.421166][ T5868] usb 2-1: string descriptor 0 read error: -71
[  324.461478][ T5868] redrat3 2-1:129.249: Couldn't find all endpoints
[  324.606970][ T8084] FAULT_INJECTION: forcing a failure.
[  324.606970][ T8084] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.693016][ T8084] CPU: 0 UID: 0 PID: 8084 Comm: syz.3.510 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  324.693040][ T8084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  324.693050][ T8084] Call Trace:
[  324.693056][ T8084]  <TASK>
[  324.693063][ T8084]  dump_stack_lvl+0x241/0x360
[  324.693094][ T8084]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.693118][ T8084]  ? __pfx__printk+0x10/0x10
[  324.693146][ T8084]  ? snprintf+0xda/0x120
[  324.693164][ T8084]  should_fail_ex+0x3b0/0x4e0
[  324.693187][ T8084]  _copy_to_user+0x31/0xb0
[  324.693205][ T8084]  simple_read_from_buffer+0xca/0x150
[  324.693228][ T8084]  proc_fail_nth_read+0x1e9/0x250
[  324.693250][ T8084]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.693270][ T8084]  ? rw_verify_area+0x243/0x630
[  324.693292][ T8084]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.693312][ T8084]  vfs_read+0x1f8/0xb40
[  324.693335][ T8084]  ? fdget_pos+0x254/0x320
[  324.693355][ T8084]  ? __pfx___mutex_lock+0x10/0x10
[  324.693376][ T8084]  ? __pfx_vfs_read+0x10/0x10
[  324.693395][ T8084]  ? ipv6_setsockopt+0xe2/0x170
[  324.693415][ T8084]  ? __fget_files+0x2a/0x410
[  324.693436][ T8084]  ? __fget_files+0x395/0x410
[  324.693453][ T8084]  ? __fget_files+0x2a/0x410
[  324.693480][ T8084]  ksys_read+0x18f/0x2b0
[  324.693504][ T8084]  ? __pfx_ksys_read+0x10/0x10
[  324.693527][ T8084]  ? do_syscall_64+0x100/0x230
[  324.693548][ T8084]  ? do_syscall_64+0xb6/0x230
[  324.693610][ T8084]  do_syscall_64+0xf3/0x230
[  324.693631][ T8084]  ? clear_bhb_loop+0x35/0x90
[  324.693654][ T8084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.693674][ T8084] RIP: 0033:0x7f5394f8b73c
[  324.693689][ T8084] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  324.693701][ T8084] RSP: 002b:00007f5395d28030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  324.693718][ T8084] RAX: ffffffffffffffda RBX: 00007f53951a5fa0 RCX: 00007f5394f8b73c
[  324.693730][ T8084] RDX: 000000000000000f RSI: 00007f5395d280a0 RDI: 0000000000000004
[  324.693740][ T8084] RBP: 00007f5395d28090 R08: 0000000000000000 R09: 0000000000000000
[  324.693749][ T8084] R10: 00000000200001c0 R11: 0000000000000246 R12: 0000000000000001
[  324.693758][ T8084] R13: 0000000000000000 R14: 00007f53951a5fa0 R15: 00007ffe21004468
[  324.693784][ T8084]  </TASK>
[  324.926917][    C0] vkms_vblank_simulate: vblank timer overrun
[  324.946928][ T5868] usb 2-1: USB disconnect, device number 14
[  329.353839][ T8117] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  329.368256][ T8117] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  329.378697][ T8117] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  329.387847][ T8117] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  329.399744][ T8117] geneve2: entered promiscuous mode
[  329.405124][ T8117] geneve2: entered allmulticast mode
[  330.733702][ T8128] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  330.772759][ T8128] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  330.977135][ T5868] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  331.511639][ T5868] usb 5-1: config 129 has an invalid interface number: 249 but max is 0
[  331.520794][ T5868] usb 5-1: config 129 has no interface number 0
[  331.544917][ T5868] usb 5-1: config 129 interface 249 has no altsetting 0
[  331.572976][ T5868] usb 5-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  331.595745][ T5868] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.492635][ T8141] dlm: no locking on control device
[  332.811231][ T5868] usb 5-1: string descriptor 0 read error: -71
[  332.834998][ T5868] redrat3 5-1:129.249: Couldn't find all endpoints
[  332.868822][ T5868] usb 5-1: USB disconnect, device number 8
[  333.065497][ T8150] netlink: 'syz.1.530': attribute type 2 has an invalid length.
[  333.087218][ T8149] random: crng reseeded on system resumption
[  333.094248][ T8150] netlink: 212912 bytes leftover after parsing attributes in process `syz.1.530'.
[  334.248168][  T976] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  334.637846][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  334.818788][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  334.844556][  T976] usb 1-1: config 4 has an invalid interface number: 144 but max is 0
[  334.852920][  T976] usb 1-1: config 4 has no interface number 0
[  334.859176][  T976] usb 1-1: too many endpoints for config 4 interface 144 altsetting 88: 72, using maximum allowed: 30
[  334.898927][  T976] usb 1-1: config 4 interface 144 altsetting 88 has 0 endpoint descriptors, different from the interface descriptor's value: 72
[  334.989505][  T976] usb 1-1: config 4 interface 144 has no altsetting 0
[  335.538269][  T976] usb 1-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  335.595309][  T976] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.603343][  T976] usb 1-1: Product: syz
[  335.632455][  T976] usb 1-1: Manufacturer: syz
[  335.637093][  T976] usb 1-1: SerialNumber: syz
[  337.129887][  T976] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  337.174836][  T976] vp7045: USB control message 'out' went wrong.
[  337.191407][  T976] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  337.202805][  T976] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  337.241981][  T976] usb 1-1: USB disconnect, device number 11
[  337.551538][  T973] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  339.358292][  T973] usb 4-1: config 129 has an invalid interface number: 249 but max is 0
[  340.400020][  T973] usb 4-1: config 129 has no interface number 0
[  340.884316][  T973] usb 4-1: config 129 interface 249 has no altsetting 0
[  340.884459][  T973] usb 4-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  340.884530][  T973] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.003393][  T973] usb 4-1: can't set config #129, error -71
[  341.073161][  T973] usb 4-1: USB disconnect, device number 17
[  342.907768][ T5868] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  343.347823][ T5868] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  343.366977][ T5868] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  343.421176][ T5868] usb 2-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  343.432358][ T5868] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.723743][ T5868] usb 2-1: config 0 descriptor??
[  345.012550][ T5868] uclogic 0003:5543:0042.0002: No inputs registered, leaving
[  345.074616][ T5868] uclogic 0003:5543:0042.0002: hidraw0: USB HID v0.00 Device [HID 5543:0042] on usb-dummy_hcd.1-1/input0
[  346.681435][ T5868] usb 2-1: USB disconnect, device number 15
[  348.080021][ T8279] can0: slcan on ttyS3.
[  349.836419][ T8273] can0 (unregistered): slcan off ttyS3.
[  350.060765][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  350.060783][   T29] audit: type=1326 audit(1737889229.580:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8281 comm="syz.3.567" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5394f8cd29 code=0x0
[  350.116840][ T5868] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  350.961116][ T8296] netlink: 188 bytes leftover after parsing attributes in process `syz.1.570'.
[  350.970343][ T8296] netlink: 60 bytes leftover after parsing attributes in process `syz.1.570'.
[  351.577748][ T5915] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  352.014236][ T5915] usb 1-1: Using ep0 maxpacket: 32
[  352.020913][ T5915] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  352.033994][ T5915] usb 1-1: config 0 has no interface number 0
[  352.044872][ T5915] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  352.055811][ T5915] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.066091][ T5915] usb 1-1: Product: syz
[  352.285155][ T8325] FAULT_INJECTION: forcing a failure.
[  352.285155][ T8325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.298376][ T8325] CPU: 1 UID: 0 PID: 8325 Comm: syz.4.576 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  352.298398][ T8325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  352.298408][ T8325] Call Trace:
[  352.298414][ T8325]  <TASK>
[  352.298421][ T8325]  dump_stack_lvl+0x241/0x360
[  352.298453][ T8325]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.298477][ T8325]  ? __pfx__printk+0x10/0x10
[  352.298506][ T8325]  ? snprintf+0xda/0x120
[  352.298524][ T8325]  should_fail_ex+0x3b0/0x4e0
[  352.298547][ T8325]  _copy_to_user+0x31/0xb0
[  352.298566][ T8325]  simple_read_from_buffer+0xca/0x150
[  352.298588][ T8325]  proc_fail_nth_read+0x1e9/0x250
[  352.298610][ T8325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  352.298631][ T8325]  ? rw_verify_area+0x243/0x630
[  352.298654][ T8325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  352.298674][ T8325]  vfs_read+0x1f8/0xb40
[  352.298697][ T8325]  ? fdget_pos+0x254/0x320
[  352.298719][ T8325]  ? __pfx___mutex_lock+0x10/0x10
[  352.298739][ T8325]  ? __pfx_vfs_read+0x10/0x10
[  352.298764][ T8325]  ? __fget_files+0x2a/0x410
[  352.298785][ T8325]  ? __fget_files+0x395/0x410
[  352.298803][ T8325]  ? __fget_files+0x2a/0x410
[  352.298832][ T8325]  ksys_read+0x18f/0x2b0
[  352.298856][ T8325]  ? __pfx_ksys_read+0x10/0x10
[  352.298890][ T8325]  do_syscall_64+0xf3/0x230
[  352.298910][ T8325]  ? clear_bhb_loop+0x35/0x90
[  352.298934][ T8325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.298955][ T8325] RIP: 0033:0x7f605118b73c
[  352.298970][ T8325] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  352.298984][ T8325] RSP: 002b:00007f6052035030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  352.299002][ T8325] RAX: ffffffffffffffda RBX: 00007f60513a6160 RCX: 00007f605118b73c
[  352.299014][ T8325] RDX: 000000000000000f RSI: 00007f60520350a0 RDI: 0000000000000007
[  352.299025][ T8325] RBP: 00007f6052035090 R08: 0000000000000000 R09: 0000000000000000
[  352.299035][ T8325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  352.299045][ T8325] R13: 0000000000000000 R14: 00007f60513a6160 R15: 00007ffe43d10b88
[  352.299072][ T8325]  </TASK>
[  352.532170][ T5915] usb 1-1: Manufacturer: syz
[  352.536803][ T5915] usb 1-1: SerialNumber: syz
[  352.552378][ T5915] usb 1-1: config 0 descriptor??
[  352.563276][ T5915] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  352.977123][ T5915] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  353.036288][ T5915] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  353.174955][ T8308] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  353.197229][ T8308] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  355.643721][  T976] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  355.935739][  T976] usb 4-1: device descriptor read/64, error -71
[  355.961751][ T8308] xt_hashlimit: max too large, truncated to 1048576
[  355.995762][ T8308] xt_limit: Overflow, try lower: 0/0
[  356.156364][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  356.157268][ T5893] usb 1-1: USB disconnect, device number 12
[  356.191033][ T5893] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  356.218709][  T976] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  356.233353][ T5893] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  356.286902][ T5893] quatech2 1-1:0.51: device disconnected
[  356.388866][  T976] usb 4-1: device descriptor read/64, error -71
[  357.181191][  T976] usb usb4-port1: attempt power cycle
[  357.244896][ T5909] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  357.484993][ T5909] usb 2-1: not running at top speed; connect to a high speed hub
[  357.805458][ T5909] usb 2-1: config 3 has an invalid interface number: 20 but max is 1
[  357.921571][ T5909] usb 2-1: config 3 has an invalid interface number: 186 but max is 1
[  357.962948][ T5909] usb 2-1: config 3 has an invalid descriptor of length 36, skipping remainder of the config
[  357.973717][ T5909] usb 2-1: config 3 has no interface number 0
[  357.980726][ T5909] usb 2-1: config 3 has no interface number 1
[  357.980768][ T5909] usb 2-1: config 3 interface 20 altsetting 64 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  357.980791][ T5909] usb 2-1: config 3 interface 20 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  357.980817][ T5909] usb 2-1: config 3 interface 186 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  357.980841][ T5909] usb 2-1: config 3 interface 20 has no altsetting 0
[  357.980859][ T5909] usb 2-1: config 3 interface 186 has no altsetting 0
[  358.001701][ T5909] usb 2-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=85.11
[  358.001729][ T5909] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.001748][ T5909] usb 2-1: Product: syz
[  358.001763][ T5909] usb 2-1: Manufacturer: ᣛ鴾ᵯኒⷲ㟍垑琑恐ᮓ줹௓ᐬಎ徹턲婒┛醞붯沩❠䣡眒䡧晚샰⧐꒢㝴췛妠皏曪᳋俲江稥식뽬ἷ궷햖픰
[  358.001783][ T5909] usb 2-1: SerialNumber: syz
[  358.300280][ T8395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  358.300650][ T8395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  358.464535][ T8401] evm: overlay not supported
[  358.841876][ T5915] usb 4-1: new full-speed USB device number 21 using dummy_hcd
[  358.995849][ T8382] tty tty2: ldisc open failed (-12), clearing slot 1
[  359.009405][ T5915] usb 4-1: config 0 has an invalid interface number: 8 but max is 0
[  359.028526][ T5915] usb 4-1: config 0 has no interface number 0
[  359.037795][ T8385] tty tty1: ldisc open failed (-12), clearing slot 0
[  359.067065][ T5909] viperboard 2-1:3.20: version 0.00 found at bus 002 address 016
[  359.078843][ T5915] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  359.088049][ T5909] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  359.098864][ T5909] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  359.111161][ T5915] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  359.130567][ T5915] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  359.140072][ T5915] usb 4-1: Product: syz
[  359.161741][ T5915] usb 4-1: SerialNumber: syz
[  359.173436][ T5909] viperboard 2-1:3.186: version 0.00 found at bus 002 address 016
[  359.191125][ T5915] usb 4-1: config 0 descriptor??
[  359.205043][ T5915] cm109 4-1:0.8: invalid payload size 3, expected 4
[  359.208249][ T5909] viperboard-i2c viperboard-i2c.5.auto: failure setting i2c_bus_freq to 100
[  359.222848][ T5915] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input8
[  359.231685][ T5909] viperboard-i2c viperboard-i2c.5.auto: probe with driver viperboard-i2c failed with error -5
[  359.264386][ T5909] usb 2-1: USB disconnect, device number 16
[  359.433224][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.441532][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.448693][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.455835][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.462979][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.470127][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.477645][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.484785][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.491920][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.499024][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  359.521636][ T5915] usb 4-1: USB disconnect, device number 21
[  359.521728][    C1] cm109 4-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  359.617264][ T5915] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  359.798746][  T976] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  360.683829][  T976] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  360.697214][  T976] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  360.706905][  T976] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  360.716758][  T976] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  360.726603][  T976] usb 1-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  360.790152][    T8] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  360.803681][  T976] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.821056][  T976] usb 1-1: config 0 descriptor??
[  361.173923][    T8] usb 3-1: Using ep0 maxpacket: 8
[  361.269522][    T8] usb 3-1: config index 0 descriptor too short (expected 6427, got 27)
[  361.280339][  T976] hdpvr 1-1:0.0: unexpected answer of status request, len -71
[  361.312363][    T8] usb 3-1: config 0 has an invalid interface number: 21 but max is 0
[  361.327373][  T976] hdpvr 1-1:0.0: device init failed
[  361.509934][  T976] hdpvr 1-1:0.0: probe with driver hdpvr failed with error -12
[  361.517896][    T8] usb 3-1: config 0 has no interface number 0
[  361.528086][    T8] usb 3-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  361.540174][  T976] usb 1-1: USB disconnect, device number 13
[  361.633633][    T8] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  361.647391][    T8] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  361.661398][    T8] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  361.674462][    T8] usb 3-1: New USB device strings: Mfr=31, Product=1, SerialNumber=0
[  361.690916][    T8] usb 3-1: Product: syz
[  361.706259][    T8] usb 3-1: Manufacturer: syz
[  361.726690][    T8] usb 3-1: config 0 descriptor??
[  361.736175][ T8412] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  361.901514][ T8428] tmpfs: Bad value for 'mpol'
[  362.393366][    T8] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.21/input/input9
[  363.470022][ T5893] usb 3-1: USB disconnect, device number 14
[  363.476028][    C0] keyspan_remote 3-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19
[  363.633998][ T8446] FAULT_INJECTION: forcing a failure.
[  363.633998][ T8446] name failslab, interval 1, probability 0, space 0, times 0
[  364.395868][ T8446] CPU: 0 UID: 0 PID: 8446 Comm: syz.3.602 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  364.395898][ T8446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  364.395908][ T8446] Call Trace:
[  364.395915][ T8446]  <TASK>
[  364.395922][ T8446]  dump_stack_lvl+0x241/0x360
[  364.395953][ T8446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  364.395976][ T8446]  ? __pfx__printk+0x10/0x10
[  364.395999][ T8446]  ? __kmalloc_noprof+0xb5/0x4c0
[  364.396033][ T8446]  ? __pfx___might_resched+0x10/0x10
[  364.396055][ T8446]  should_fail_ex+0x3b0/0x4e0
[  364.396076][ T8446]  should_failslab+0xac/0x100
[  364.396096][ T8446]  __kmalloc_noprof+0xdd/0x4c0
[  364.396114][ T8446]  ? sock_kmalloc+0xd7/0x160
[  364.396141][ T8446]  sock_kmalloc+0xd7/0x160
[  364.396171][ T8446]  ____sys_sendmsg+0x216/0x7e0
[  364.396201][ T8446]  ? __pfx_____sys_sendmsg+0x10/0x10
[  364.396221][ T8446]  ? __fget_files+0x2a/0x410
[  364.396244][ T8446]  ? __fget_files+0x2a/0x410
[  364.396275][ T8446]  __sys_sendmsg+0x269/0x350
[  364.396351][ T8446]  ? __pfx___sys_sendmsg+0x10/0x10
[  364.396385][ T8446]  ? do_sys_openat2+0x17a/0x1d0
[  364.396428][ T8446]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  364.396450][ T8446]  ? do_syscall_64+0x100/0x230
[  364.396473][ T8446]  ? do_syscall_64+0xb6/0x230
[  364.396495][ T8446]  do_syscall_64+0xf3/0x230
[  364.396513][ T8446]  ? clear_bhb_loop+0x35/0x90
[  364.396537][ T8446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.396556][ T8446] RIP: 0033:0x7f5394f8cd29
[  364.396572][ T8446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.396585][ T8446] RSP: 002b:00007f5395d28038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  364.396603][ T8446] RAX: ffffffffffffffda RBX: 00007f53951a5fa0 RCX: 00007f5394f8cd29
[  364.396615][ T8446] RDX: 0000000000000000 RSI: 0000000020001180 RDI: 0000000000000003
[  364.396626][ T8446] RBP: 00007f5395d28090 R08: 0000000000000000 R09: 0000000000000000
[  364.396636][ T8446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.396645][ T8446] R13: 0000000000000000 R14: 00007f53951a5fa0 R15: 00007ffe21004468
[  364.396671][ T8446]  </TASK>
[  365.949042][ T8452] =======================================================
[  365.949042][ T8452] WARNING: The mand mount option has been deprecated and
[  365.949042][ T8452]          and is ignored by this kernel. Remove the mand
[  365.949042][ T8452]          option from the mount to silence this warning.
[  365.949042][ T8452] =======================================================
[  366.353569][ T8453] overlayfs: missing 'workdir'
[  366.623032][ T8468] FAULT_INJECTION: forcing a failure.
[  366.623032][ T8468] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.636808][ T8468] CPU: 0 UID: 0 PID: 8468 Comm: syz.0.608 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  366.636839][ T8468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  366.636855][ T8468] Call Trace:
[  366.636862][ T8468]  <TASK>
[  366.636870][ T8468]  dump_stack_lvl+0x241/0x360
[  366.636902][ T8468]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.636926][ T8468]  ? __pfx__printk+0x10/0x10
[  366.636950][ T8468]  ? __pfx_lock_release+0x10/0x10
[  366.636977][ T8468]  should_fail_ex+0x3b0/0x4e0
[  366.636999][ T8468]  _copy_from_user+0x2d/0xb0
[  366.637016][ T8468]  bpf_test_init+0x11f/0x180
[  366.637040][ T8468]  bpf_prog_test_run_xdp+0x48e/0x11e0
[  366.637066][ T8468]  ? __pfx_lock_release+0x10/0x10
[  366.637093][ T8468]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  366.637115][ T8468]  ? __fget_files+0x2a/0x410
[  366.637139][ T8468]  ? __fget_files+0x2a/0x410
[  366.637161][ T8468]  ? fput+0x21b/0x290
[  366.637179][ T8468]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  366.637203][ T8468]  bpf_prog_test_run+0x2e4/0x360
[  366.637226][ T8468]  __sys_bpf+0x48d/0x810
[  366.637246][ T8468]  ? __pfx___sys_bpf+0x10/0x10
[  366.637275][ T8468]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  366.637297][ T8468]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  366.637319][ T8468]  ? do_syscall_64+0x100/0x230
[  366.637343][ T8468]  __x64_sys_bpf+0x7c/0x90
[  366.637360][ T8468]  do_syscall_64+0xf3/0x230
[  366.637379][ T8468]  ? clear_bhb_loop+0x35/0x90
[  366.637403][ T8468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.637423][ T8468] RIP: 0033:0x7f98eb38cd29
[  366.637438][ T8468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.637452][ T8468] RSP: 002b:00007f98ec1f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  366.637469][ T8468] RAX: ffffffffffffffda RBX: 00007f98eb5a5fa0 RCX: 00007f98eb38cd29
[  366.637482][ T8468] RDX: 0000000000000057 RSI: 0000000020000240 RDI: 000000000000000a
[  366.637493][ T8468] RBP: 00007f98ec1f7090 R08: 0000000000000000 R09: 0000000000000000
[  366.637503][ T8468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.637513][ T8468] R13: 0000000000000000 R14: 00007f98eb5a5fa0 R15: 00007fff69f2e1d8
[  366.637539][ T8468]  </TASK>
[  367.823170][ T8478] random: crng reseeded on system resumption
[  373.510404][   T80] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  374.520233][   T80] usb 1-1: Using ep0 maxpacket: 8
[  374.536354][   T80] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  374.552417][   T80] usb 1-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  374.561474][   T80] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.573945][   T80] usb 1-1: Product: syz
[  374.578133][   T80] usb 1-1: Manufacturer: syz
[  374.583903][   T80] usb 1-1: SerialNumber: syz
[  374.590685][   T80] usb 1-1: config 0 descriptor??
[  374.656038][   T80] msi2500 1-1:0.0: Registered as swradio24
[  374.665463][   T80] msi2500 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  374.909594][ T5893] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  375.183205][ T5893] usb 4-1: Using ep0 maxpacket: 16
[  375.207101][ T5893] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  375.233700][ T5893] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.300771][ T5893] usb 4-1: config 0 descriptor??
[  375.333641][ T5893] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  375.942228][    T8] usb 1-1: USB disconnect, device number 14
[  375.960474][ T5893] usb 4-1: Detected FT232A
[  375.974372][ T5893] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  378.186868][    T8] usb 4-1: USB disconnect, device number 22
[  378.235015][    T8] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  378.443251][    T8] ftdi_sio 4-1:0.0: device disconnected
[  378.639221][ T8584] netlink: 28 bytes leftover after parsing attributes in process `syz.4.637'.
[  378.690812][ T8584] tipc: Started in network mode
[  378.718280][ T8584] tipc: Node identity 7, cluster identity 5
[  378.757282][ T8584] tipc: Node number set to 7
[  378.924264][    T8] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  379.094727][    T8] usb 4-1: Using ep0 maxpacket: 8
[  379.143191][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  379.203529][    T8] usb 4-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  379.285324][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.334887][    T8] usb 4-1: Product: syz
[  379.350204][    T8] usb 4-1: Manufacturer: syz
[  379.371727][    T8] usb 4-1: SerialNumber: syz
[  379.402021][    T8] usb 4-1: config 0 descriptor??
[  379.428618][   T80] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  379.537926][ T8600] netlink: 194488 bytes leftover after parsing attributes in process `syz.1.639'.
[  379.629712][   T80] usb 3-1: Using ep0 maxpacket: 32
[  379.642032][   T80] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  379.677746][   T80] usb 3-1: config 0 has no interface number 0
[  379.756569][   T80] usb 3-1: config 0 interface 184 has no altsetting 0
[  379.869907][   T80] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  380.091599][   T80] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.097273][ T8605] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  380.194666][ T8605] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present
[  380.236211][   T80] usb 3-1: Product: syz
[  380.239516][    T8] msi2500 4-1:0.0: Registered as swradio24
[  380.250130][   T80] usb 3-1: Manufacturer: syz
[  380.256632][    T8] msi2500 4-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  380.262644][   T80] usb 3-1: SerialNumber: syz
[  380.307347][   T80] usb 3-1: config 0 descriptor??
[  380.314233][    T8] usb 4-1: USB disconnect, device number 23
[  380.362011][   T80] smsc75xx v1.0.0
[  380.495439][ T8613] netlink: 'syz.0.642': attribute type 12 has an invalid length.
[  381.491218][ T8580] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  381.565028][ T8580] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  381.636918][   T80] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  381.675287][   T80] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  381.701158][   T80] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  381.722829][   T80] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -71
[  381.823979][   T80] usb 3-1: USB disconnect, device number 15
[  383.209051][ T8631] netlink: 8 bytes leftover after parsing attributes in process `syz.2.648'.
[  383.736534][ T8637] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  386.069589][ T8657] dlm: no locking on control device
[  386.738349][ T8671] netlink: 36 bytes leftover after parsing attributes in process `syz.2.659'.
[  386.805369][ T8674] netlink: 'syz.2.659': attribute type 10 has an invalid length.
[  387.102445][ T8674] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.109775][ T8674] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.122346][ T8674] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.129603][ T8674] bridge0: port 2(bridge_slave_1) entered forwarding state
[  388.137060][ T8674] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.144963][ T8674] bridge0: port 1(bridge_slave_0) entered forwarding state
[  388.282968][ T8674] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  389.449055][ T8688] autofs: Unknown parameter 'fd0x0000000000000000'
[  390.367010][ T5903] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  390.677768][ T5903] usb 5-1: Using ep0 maxpacket: 32
[  390.736198][ T5903] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  390.794225][ T5903] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  390.817088][ T5903] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.842072][ T5903] usb 5-1: Product: syz
[  390.875623][ T5903] usb 5-1: Manufacturer: syz
[  390.900928][ T5903] usb 5-1: SerialNumber: syz
[  391.031013][ T5903] usb 5-1: config 0 descriptor??
[  391.064557][ T5903] usb 5-1: bad CDC descriptors
[  391.069599][ T5868] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  391.101203][ T5903] usb 5-1: unsupported MDLM descriptors
[  391.264060][ T5868] usb 2-1: config 129 has an invalid interface number: 249 but max is 0
[  391.327984][ T5868] usb 2-1: config 129 has no interface number 0
[  391.346704][ T5868] usb 2-1: config 129 interface 249 has no altsetting 0
[  391.369347][ T5868] usb 2-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  391.410444][ T5868] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.432983][ T8692] netlink: 'syz.4.666': attribute type 1 has an invalid length.
[  391.469042][ T8692] netlink: 'syz.4.666': attribute type 2 has an invalid length.
[  391.506214][ T5903] usb 5-1: USB disconnect, device number 10
[  391.784992][ T8710] dlm: no locking on control device
[  392.378423][ T5868] usb 2-1: string descriptor 0 read error: -71
[  392.716517][ T5868] redrat3 2-1:129.249: Couldn't find all endpoints
[  392.934036][ T5868] usb 2-1: USB disconnect, device number 17
[  394.340979][ T5903] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  394.473207][ T8727] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  394.521999][ T5903] usb 3-1: Using ep0 maxpacket: 16
[  394.628700][    T8] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  394.676123][ T5903] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.713208][ T5903] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  394.728516][ T5903] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  394.737768][ T5903] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.826803][    T8] usb 5-1: config 129 has an invalid interface number: 249 but max is 0
[  395.450763][ T5903] usb 3-1: config 0 descriptor??
[  395.504375][    T8] usb 5-1: config 129 has no interface number 0
[  395.631837][    T8] usb 5-1: config 129 interface 249 has no altsetting 0
[  395.707271][    T8] usb 5-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=99.21
[  395.753117][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.509368][ T5903] elan 0003:04F3:0755.0003: unbalanced collection at end of report description
[  396.525541][ T5903] elan 0003:04F3:0755.0003: Hid Parse failed
[  396.534705][ T5903] elan 0003:04F3:0755.0003: probe with driver elan failed with error -22
[  396.553707][ T5903] usb 3-1: USB disconnect, device number 16
[  396.591146][    T8] usb 5-1: string descriptor 0 read error: -71
[  396.597910][  T976] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  396.615790][    T8] redrat3 5-1:129.249: Couldn't find all endpoints
[  396.656248][    T8] usb 5-1: USB disconnect, device number 11
[  396.799082][  T976] usb 1-1: Using ep0 maxpacket: 8
[  396.817182][  T976] usb 1-1: config 254 has an invalid interface number: 240 but max is 0
[  396.831058][  T976] usb 1-1: config 254 has an invalid descriptor of length 0, skipping remainder of the config
[  396.856579][ T8753] ALSA: seq fatal error: cannot create timer (-22)
[  396.859674][  T976] usb 1-1: config 254 has no interface number 0
[  396.879977][  T976] usb 1-1: config 254 interface 240 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  397.153766][   T29] audit: type=1326 audit(1737889273.665:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  397.236104][  T976] usb 1-1: New USB device found, idVendor=17ef, idProduct=3069, bcdDevice=3e.9b
[  397.292580][  T976] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.351481][  T976] usb 1-1: Product: syz
[  397.361860][  T976] usb 1-1: Manufacturer: syz
[  397.400382][  T976] usb 1-1: SerialNumber: syz
[  397.406653][   T29] audit: type=1326 audit(1737889273.665:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  397.435742][ T8767] process 'syz.2.689' launched '/dev/fd/5' with NULL argv: empty string added
[  397.556383][  T976] r8152-cfgselector 1-1: Unknown version 0x0000
[  397.591112][   T29] audit: type=1326 audit(1737889273.665:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  397.743707][   T29] audit: type=1326 audit(1737889273.665:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  397.810787][ T8771] netlink: 12 bytes leftover after parsing attributes in process `syz.4.691'.
[  397.861342][   T29] audit: type=1326 audit(1737889273.665:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  397.912348][ T5903] r8152-cfgselector 1-1: USB disconnect, device number 15
[  398.082031][   T29] audit: type=1326 audit(1737889273.665:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  398.255122][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  398.263884][   T29] audit: type=1326 audit(1737889273.684:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  398.326261][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  398.343295][ T8782] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  398.355803][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  398.391822][   T29] audit: type=1326 audit(1737889273.684:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  398.541767][   T29] audit: type=1326 audit(1737889273.684:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  398.668737][   T29] audit: type=1326 audit(1737889273.684:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8757 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  398.948858][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  398.965055][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  398.997204][ T8780] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  400.095089][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  400.124355][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  400.627798][ T5868] kernel write not supported for file bpf-prog (pid: 5868 comm: kworker/1:5)
[  400.806808][ T8830] netlink: 16 bytes leftover after parsing attributes in process `syz.2.715'.
[  401.197704][ T8840] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  401.776513][ T8854] netlink: 16 bytes leftover after parsing attributes in process `syz.3.727'.
[  401.856387][ T8860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.730'.
[  402.538904][   T29] kauditd_printk_skb: 82 callbacks suppressed
[  402.538921][   T29] audit: type=1326 audit(1737889278.698:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.602320][   T29] audit: type=1326 audit(1737889278.726:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.657997][   T29] audit: type=1326 audit(1737889278.735:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.723344][   T29] audit: type=1326 audit(1737889278.735:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.756444][ T8880] netlink: 'syz.1.738': attribute type 27 has an invalid length.
[  402.764913][   T29] audit: type=1326 audit(1737889278.735:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.787521][   T29] audit: type=1326 audit(1737889278.735:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.814865][   T29] audit: type=1326 audit(1737889278.735:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.839174][   T29] audit: type=1326 audit(1737889278.735:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.861442][   T29] audit: type=1326 audit(1737889278.735:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  402.885092][   T29] audit: type=1326 audit(1737889278.735:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8877 comm="syz.1.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a278cd29 code=0x7ffc0000
[  403.892873][ T8890] netlink: 4 bytes leftover after parsing attributes in process `syz.2.743'.
[  404.343603][ T8890] netlink: 36 bytes leftover after parsing attributes in process `syz.2.743'.
[  404.414542][ T8890] netlink: 16 bytes leftover after parsing attributes in process `syz.2.743'.
[  404.489932][ T8890] netlink: 36 bytes leftover after parsing attributes in process `syz.2.743'.
[  404.550834][ T8890] netlink: 36 bytes leftover after parsing attributes in process `syz.2.743'.
[  406.847946][    C0] sched: DL replenish lagged too much
[  410.029362][ T8880] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.036671][ T8880] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.357641][ T8880] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  410.413588][ T8880] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  410.608405][ T8880] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  410.633000][ T8880] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  410.641892][ T8880] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  410.691334][ T8880] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  411.420821][ T8919] netlink: 16 bytes leftover after parsing attributes in process `syz.2.753'.
[  411.853709][ T8929] netlink: 'syz.1.758': attribute type 10 has an invalid length.
[  411.929879][ T8929] batman_adv: batadv0: Adding interface: macvtap0
[  411.946545][ T8929] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.049232][ T8929] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active
[  416.754345][ T8960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.770'.
[  416.799959][ T8960] IPVS: Error joining to the multicast group
[  416.983376][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  416.983392][   T29] audit: type=1326 audit(1737889292.205:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8966 comm="syz.0.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98eb38cd29 code=0x7ffc0000
[  417.143159][   T29] audit: type=1326 audit(1737889292.205:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8966 comm="syz.0.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f98eb38cd29 code=0x7ffc0000
[  417.304909][   T29] audit: type=1326 audit(1737889292.205:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8966 comm="syz.0.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98eb38cd29 code=0x7ffc0000
[  417.555293][ T8974] netlink: 48 bytes leftover after parsing attributes in process `syz.3.776'.
[  417.867433][ T8976] xt_hashlimit: max too large, truncated to 1048576
[  421.731117][ T9008] netlink: 'syz.4.791': attribute type 12 has an invalid length.
[  422.361361][ T9020] netlink: 8 bytes leftover after parsing attributes in process `syz.3.797'.
[  422.393570][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.2.796'.
[  422.824189][ T9030] netlink: 216 bytes leftover after parsing attributes in process `syz.2.800'.
[  423.747494][ T9052] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.807'.
[  423.843101][ T9045] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.807'.
[  424.900298][ T9066] bridge: RTM_NEWNEIGH with unconfigured vlan 3 on bridge_slave_0
[  426.653762][ T9089] netlink: 4 bytes leftover after parsing attributes in process `syz.4.826'.
[  426.999830][ T9096] tipc: Started in network mode
[  427.059508][ T9096] tipc: Node identity 52e9137b94d7, cluster identity 4711
[  427.138407][ T9096] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  427.286909][ T9090] tipc: Resetting bearer <eth:syzkaller0>
[  427.372404][ T9104] netlink: 8 bytes leftover after parsing attributes in process `syz.4.831'.
[  427.789608][   T29] audit: type=1107 audit(1737889302.316:149): pid=9109 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='`'
[  428.224037][ T5903] tipc: Node number set to 3325956987
[  431.659233][ T9090] tipc: Disabling bearer <eth:syzkaller0>
[  431.706081][ T9102] syzkaller0: entered allmulticast mode
[  431.772164][ T9110] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  431.996523][ T9122] netlink: 'syz.0.838': attribute type 12 has an invalid length.
[  434.427343][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807894a000: rx timeout, send abort
[  434.437342][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807894b000: rx timeout, send abort
[  434.445762][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807894a000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  434.461114][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807894b000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  436.621717][ T9205] netlink: 'syz.4.870': attribute type 12 has an invalid length.
[  436.994731][ T9215] xt_hashlimit: max too large, truncated to 1048576
[  437.108874][ T9215] xt_bpf: check failed: parse error
[  437.827118][   T29] audit: type=1326 audit(1737889311.689:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.010735][   T29] audit: type=1326 audit(1737889311.689:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.160909][   T29] audit: type=1326 audit(1737889311.689:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.332351][   T29] audit: type=1326 audit(1737889311.689:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.535010][   T29] audit: type=1326 audit(1737889311.689:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.759519][   T29] audit: type=1326 audit(1737889311.689:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  438.941036][   T29] audit: type=1326 audit(1737889311.689:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  439.155504][   T29] audit: type=1326 audit(1737889311.689:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  439.363521][   T29] audit: type=1326 audit(1737889311.689:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  439.439864][ T9256] netlink: 8 bytes leftover after parsing attributes in process `syz.0.887'.
[  439.483052][   T29] audit: type=1326 audit(1737889311.689:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9213 comm="syz.2.873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7fc00000
[  439.512581][ T9256] IPVS: Error joining to the multicast group
[  442.091193][ T9303] netlink: 'syz.2.905': attribute type 10 has an invalid length.
[  442.192268][ T9303] 8021q: adding VLAN 0 to HW filter on device batadv0
[  442.245933][ T9303] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  443.479602][   T29] kauditd_printk_skb: 262 callbacks suppressed
[  443.479620][   T29] audit: type=1326 audit(1737889316.993:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  443.543888][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  443.597263][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  443.665386][   T29] audit: type=1326 audit(1737889317.021:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  443.697040][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  443.794061][   T29] audit: type=1326 audit(1737889317.021:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  443.955344][   T29] audit: type=1326 audit(1737889317.030:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  444.014276][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  444.054843][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  444.090267][ T9331] netlink: 108 bytes leftover after parsing attributes in process `syz.0.919'.
[  444.134189][   T29] audit: type=1326 audit(1737889317.030:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  444.256136][   T29] audit: type=1326 audit(1737889317.030:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  444.457564][   T29] audit: type=1326 audit(1737889317.030:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  444.603960][   T29] audit: type=1326 audit(1737889317.040:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  444.735788][   T29] audit: type=1326 audit(1737889317.040:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9328 comm="syz.2.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afdf8cd29 code=0x7ffc0000
[  445.920824][ T9377] team0: Port device vlan0 removed
[  446.028107][ T9375] team0: Mode changed to "loadbalance"
[  446.437319][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.444927][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.482637][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.493808][ T9385] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  446.501249][ T9385] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  446.527459][ T9389] usb usb8: usbfs: process 9389 (syz.3.945) did not claim interface 0 before use
[  446.693812][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.701242][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.757662][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.765083][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.799076][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.806488][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.842126][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.849541][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.888579][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.918290][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.925710][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  447.011995][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  447.966505][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  447.973951][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  449.325435][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  449.356628][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  451.005998][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  451.026693][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  451.045729][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  452.724907][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  459.351761][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  459.359216][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  460.581857][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  460.596128][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  462.169078][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  462.183301][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  462.190709][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  466.290201][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  466.301933][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  466.461936][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  466.481101][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  466.488518][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  471.420054][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  471.427500][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  473.154305][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  475.344862][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  475.352307][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  478.115588][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  478.566504][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  479.105411][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  482.780321][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  483.143562][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  486.324659][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  486.381257][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  488.220112][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  491.176438][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  491.183896][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  494.997937][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  496.238157][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  500.686511][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  500.700868][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  500.708281][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  503.918893][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  503.926332][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  507.302945][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  508.604706][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  510.974755][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  510.982200][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  513.175606][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  513.190008][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  517.840672][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  517.854848][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  522.205413][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  525.302254][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  525.309701][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  531.632771][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  531.644217][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  542.765749][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  543.346637][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  543.354089][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  546.397720][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  546.725385][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  546.732828][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  551.324099][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  553.810819][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  556.128438][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  556.158678][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  573.462386][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  573.469819][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  574.555207][ T5195] udevd[5195]: worker [9169] /devices/virtual/block/loop1 is taking a long time
[  579.431968][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  580.720256][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  580.727704][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.006703][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  590.577759][ T5866] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  597.804594][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  598.114559][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  602.014604][   T30] INFO: task syz.0.942:9382 blocked for more than 143 seconds.
[  602.027872][   T30]       Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  602.035184][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  606.602007][   T30] task:syz.0.942       state:D stack:25920 pid:9382  tgid:9382  ppid:5831   flags:0x00004006
[  606.612258][   T30] Call Trace:
[  606.741087][   T30]  <TASK>
[  606.744078][   T30]  __schedule+0x181a/0x4b90
[  606.748627][   T30]  ? __pfx___schedule+0x10/0x10
[  606.884146][   T30]  ? __pfx_lock_release+0x10/0x10
[  606.889262][   T30]  ? schedule+0x90/0x320
[  606.987371][   T30]  schedule+0x14b/0x320
[  606.998235][   T30]  schedule_timeout+0xb0/0x290
[  607.003049][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  607.104550][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  607.110588][   T30]  ? wait_for_completion+0x2fe/0x620
[  607.189989][   T30]  ? wait_for_completion+0x2fe/0x620
[  607.195325][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  607.200553][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  607.339671][   T30]  ? wait_for_completion+0x2fe/0x620
[  607.345021][   T30]  wait_for_completion+0x355/0x620
[  607.382416][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  607.388108][   T30]  __flush_work+0xa47/0xc60
[  607.392644][   T30]  ? __flush_work+0xe9/0xc60
[  607.489592][   T30]  ? __pfx___flush_work+0x10/0x10
[  607.494673][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  607.564185][   T30]  ? __pfx___cancel_work+0x10/0x10
[  607.569357][   T30]  ? __wake_up_common_lock+0x18c/0x1e0
[  607.617456][ T5866] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  607.639132][   T30]  __cancel_work_sync+0xbc/0x110
[  607.644113][   T30]  uhid_char_release+0xac/0x600
[  607.649174][   T30]  ? __pfx_uhid_char_release+0x10/0x10
[  607.724535][   T30]  __fput+0x3e9/0x9f0
[  607.728576][   T30]  task_work_run+0x24f/0x310
[  607.733191][   T30]  ? _raw_spin_unlock+0x28/0x50
[  607.804251][   T30]  ? __pfx_task_work_run+0x10/0x10
[  607.809420][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[  607.874297][   T30]  syscall_exit_to_user_mode+0x13f/0x340
[  607.879975][   T30]  do_syscall_64+0x100/0x230
[  607.884607][   T30]  ? clear_bhb_loop+0x35/0x90
[  607.991962][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.997909][   T30] RIP: 0033:0x7f98eb38cd29
[  608.002347][   T30] RSP: 002b:00007fff69f2e338 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  608.111731][   T30] RAX: 0000000000000000 RBX: 0000000000067055 RCX: 00007f98eb38cd29
[  608.119757][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  608.237649][   T30] RBP: 00007f98eb5a7ba0 R08: 0000000000000001 R09: 00007fff69f2e62f
[  608.267322][   T30] R10: 00007f98eb200000 R11: 0000000000000246 R12: 00000000000670e4
[  608.338696][   T30] R13: 00007f98eb5a5fa0 R14: 0000000000000032 R15: ffffffffffffffff
[  608.379265][   T30]  </TASK>
[  608.382362][   T30] 
[  608.382362][   T30] Showing all locks held in the system:
[  608.472954][   T30] 2 locks held by kworker/u8:1/12:
[  608.478118][   T30]  #0: ffff8880b863e758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xb0/0x140
[  608.614333][   T30]  #1: ffffc90000117c60 ((work_completion)(&(&krcp->krw_arr[i].rcu_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  608.782887][   T30] 3 locks held by kdevtmpfs/27:
[  608.787774][   T30] 1 lock held by khungtaskd/30:
[  608.792632][   T30]  #0: ffffffff8e93a020 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  608.921915][   T30] 1 lock held by klogd/5184:
[  608.926535][   T30] 2 locks held by udevd/5195:
[  608.931222][   T30] 5 locks held by dhcpcd/5489:
[  609.018071][   T30] 2 locks held by getty/5576:
[  609.022778][   T30]  #0: ffff8880354f20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  609.135669][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  609.145840][   T30] 1 lock held by syz-executor/5818:
[  609.242590][   T30] 1 lock held by syz-executor/5833:
[  609.247824][   T30] 2 locks held by kworker/1:8/5913:
[  609.253038][   T30] 2 locks held by syz.2.352/7478:
[  609.356220][   T30] 1 lock held by udevd/9169:
[  609.413637][   T30] 2 locks held by syz.0.942/9382:
[  609.418704][   T30]  #0: ffff888056701a20 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xce/0x7c0
[  609.499156][   T30]  #1: ffffffff8fafc230 (minors_rwsem){+.+.}-{4:4}, at: hidraw_disconnect+0x42/0x60
[  609.509398][   T30] 1 lock held by syz-executor/9401:
[  609.531223][   T30] 3 locks held by syz-executor/9404:
[  609.536535][   T30] 1 lock held by syz-executor/9405:
[  609.541770][   T30] 
[  609.558409][   T30] =============================================
[  609.558409][   T30] 
[  609.606129][   T30] NMI backtrace for cpu 1
[  609.606150][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  609.606169][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  609.606179][   T30] Call Trace:
[  609.606185][   T30]  <TASK>
[  609.606192][   T30]  dump_stack_lvl+0x241/0x360
[  609.606223][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  609.606246][   T30]  ? __pfx__printk+0x10/0x10
[  609.606276][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  609.606297][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  609.606317][   T30]  ? _printk+0xd5/0x120
[  609.606335][   T30]  ? __pfx__printk+0x10/0x10
[  609.606356][   T30]  ? __wake_up_klogd+0xcc/0x110
[  609.606373][   T30]  ? __pfx__printk+0x10/0x10
[  609.606394][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  609.606412][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  609.606428][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  609.606455][   T30]  watchdog+0xff6/0x1040
[  609.606474][   T30]  ? watchdog+0x1ea/0x1040
[  609.606496][   T30]  ? __pfx_watchdog+0x10/0x10
[  609.606513][   T30]  kthread+0x7a9/0x920
[  609.606532][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606553][   T30]  ? __pfx_watchdog+0x10/0x10
[  609.606571][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606588][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606607][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606631][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  609.606647][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  609.606663][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606684][   T30]  ret_from_fork+0x4b/0x80
[  609.606700][   T30]  ? __pfx_kthread+0x10/0x10
[  609.606717][   T30]  ret_from_fork_asm+0x1a/0x30
[  609.606745][   T30]  </TASK>
[  609.606752][   T30] Sending NMI from CPU 1 to CPUs 0:
[  609.777418][    C0] NMI backtrace for cpu 0
[  609.777432][    C0] CPU: 0 UID: 0 PID: 9169 Comm: udevd Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  609.777449][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  609.777459][    C0] RIP: 0010:check_preemption_disabled+0x5c/0x120
[  609.777484][    C0] Code: 25 28 00 00 00 48 3b 44 24 08 0f 85 ce 00 00 00 89 d8 48 83 c4 10 5b 41 5c 41 5e 41 5f c3 cc cc cc cc 48 c7 04 24 00 00 00 00 <9c> 8f 04 24 f7 04 24 00 02 00 00 74 c5 49 89 f6 49 89 ff 65 4c 8b
[  609.777497][    C0] RSP: 0018:ffffc900103573c8 EFLAGS: 00000046
[  609.777511][    C0] RAX: 0000000080000000 RBX: 0000000000000000 RCX: ffffffff81c721fc
[  609.777523][    C0] RDX: 0000000000000000 RSI: ffffffff8c5f5680 RDI: ffffffff8c5f5640
[  609.777533][    C0] RBP: 0000000000042a20 R08: ffffffff901a6177 R09: 1ffffffff2034c2e
[  609.777545][    C0] R10: dffffc0000000000 R11: fffffbfff2034c2f R12: 0000000000000001
[  609.777555][    C0] R13: ffffea0007a7f000 R14: 0000000000000001 R15: ffff88801ac41dc0
[  609.777565][    C0] FS:  00007efddc6b6c80(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  609.777579][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  609.777589][    C0] CR2: 00007fc4a2716700 CR3: 000000004f24c000 CR4: 00000000003526f0
[  609.777603][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  609.777612][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  609.777621][    C0] Call Trace:
[  609.777627][    C0]  <NMI>
[  609.777633][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  609.777648][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  609.777668][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  609.777691][    C0]  ? nmi_handle+0x2a/0x5a0
[  609.777718][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  609.777735][    C0]  ? nmi_handle+0x14f/0x5a0
[  609.777754][    C0]  ? nmi_handle+0x2a/0x5a0
[  609.777774][    C0]  ? check_preemption_disabled+0x5c/0x120
[  609.777794][    C0]  ? default_do_nmi+0x63/0x160
[  609.777816][    C0]  ? exc_nmi+0x123/0x1f0
[  609.777836][    C0]  ? end_repeat_nmi+0xf/0x53
[  609.777860][    C0]  ? trace_irq_disable+0x2c/0x120
[  609.777878][    C0]  ? check_preemption_disabled+0x5c/0x120
[  609.777898][    C0]  ? check_preemption_disabled+0x5c/0x120
[  609.777918][    C0]  ? check_preemption_disabled+0x5c/0x120
[  609.777937][    C0]  </NMI>
[  609.777943][    C0]  <TASK>
[  609.777967][    C0]  put_cpu_partial+0x56/0x250
[  609.777989][    C0]  ? put_cpu_partial+0x70/0x250
[  609.778013][    C0]  __slab_free+0x290/0x380
[  609.778028][    C0]  ? __phys_addr+0xba/0x170
[  609.778050][    C0]  qlist_free_all+0x9a/0x140
[  609.778065][    C0]  kasan_quarantine_reduce+0x14f/0x170
[  609.778081][    C0]  __kasan_slab_alloc+0x23/0x80
[  609.778098][    C0]  __kmalloc_node_track_caller_noprof+0x237/0x4c0
[  609.778118][    C0]  ? __alloc_skb+0x1f3/0x440
[  609.778138][    C0]  ? __alloc_skb+0x1f3/0x440
[  609.778156][    C0]  kmalloc_reserve+0x111/0x2a0
[  609.778177][    C0]  __alloc_skb+0x1f3/0x440
[  609.778198][    C0]  ? __pfx___alloc_skb+0x10/0x10
[  609.778221][    C0]  alloc_skb_with_frags+0xc3/0x820
[  609.778241][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  609.778261][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  609.778284][    C0]  sock_alloc_send_pskb+0x91a/0xa60
[  609.778305][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  609.778335][    C0]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  609.778361][    C0]  ? smack_socket_getpeersec_dgram+0x306/0x410
[  609.778387][    C0]  unix_dgram_sendmsg+0x5f1/0x1df0
[  609.778405][    C0]  ? smack_socket_sendmsg+0x178/0x540
[  609.778426][    C0]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  609.778448][    C0]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  609.778474][    C0]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  609.778498][    C0]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  609.778513][    C0]  __sock_sendmsg+0x221/0x270
[  609.778530][    C0]  sock_write_iter+0x2d7/0x3f0
[  609.778546][    C0]  ? __pfx_sock_write_iter+0x10/0x10
[  609.778570][    C0]  vfs_write+0xacf/0xd10
[  609.778593][    C0]  ? __pfx_sock_write_iter+0x10/0x10
[  609.778608][    C0]  ? __pfx_vfs_write+0x10/0x10
[  609.778631][    C0]  ? rcu_is_watching+0x15/0xb0
[  609.778660][    C0]  ksys_write+0x18f/0x2b0
[  609.778682][    C0]  ? __pfx_ksys_write+0x10/0x10
[  609.778704][    C0]  ? do_syscall_64+0x100/0x230
[  609.778723][    C0]  ? do_syscall_64+0xb6/0x230
[  609.778742][    C0]  do_syscall_64+0xf3/0x230
[  609.778759][    C0]  ? clear_bhb_loop+0x35/0x90
[  609.778781][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  609.778801][    C0] RIP: 0033:0x7efddc316bf2
[  609.778813][    C0] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[  609.778825][    C0] RSP: 002b:00007ffea7865678 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  609.778840][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efddc316bf2
[  609.778850][    C0] RDX: 0000000000000000 RSI: 00007ffea78656cf RDI: 000000000000000a
[  609.778860][    C0] RBP: 00007ffea78656cf R08: 0000000000000001 R09: 0000000000000000
[  609.778869][    C0] R10: 000000000000010f R11: 0000000000000246 R12: 000000000000000a
[  609.778878][    C0] R13: 00007efddc6b6ae0 R14: 0000000000000000 R15: 0000564f2175a910
[  609.778895][    C0]  </TASK>
[  610.498776][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  610.505665][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  610.515911][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  610.525979][   T30] Call Trace:
[  610.529274][   T30]  <TASK>
[  610.532215][   T30]  dump_stack_lvl+0x241/0x360
[  610.536924][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  610.542146][   T30]  ? __pfx__printk+0x10/0x10
[  610.546754][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  610.552765][   T30]  ? vscnprintf+0x5d/0x90
[  610.557110][   T30]  panic+0x349/0x880
[  610.561027][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  610.567197][   T30]  ? __pfx_panic+0x10/0x10
[  610.571628][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  610.577018][   T30]  ? __irq_work_queue_local+0x137/0x410
[  610.582579][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  610.587970][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  610.594141][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  610.600317][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  610.606491][   T30]  watchdog+0x1035/0x1040
[  610.610838][   T30]  ? watchdog+0x1ea/0x1040
[  610.615282][   T30]  ? __pfx_watchdog+0x10/0x10
[  610.619979][   T30]  kthread+0x7a9/0x920
[  610.624067][   T30]  ? __pfx_kthread+0x10/0x10
[  610.628678][   T30]  ? __pfx_watchdog+0x10/0x10
[  610.633371][   T30]  ? __pfx_kthread+0x10/0x10
[  610.637976][   T30]  ? __pfx_kthread+0x10/0x10
[  610.642584][   T30]  ? __pfx_kthread+0x10/0x10
[  610.647191][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  610.652396][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  610.657607][   T30]  ? __pfx_kthread+0x10/0x10
[  610.662216][   T30]  ret_from_fork+0x4b/0x80
[  610.666649][   T30]  ? __pfx_kthread+0x10/0x10
[  610.671255][   T30]  ret_from_fork_asm+0x1a/0x30
[  610.676047][   T30]  </TASK>
[  610.679324][   T30] Kernel Offset: disabled
[  610.683644][   T30] Rebooting in 86400 seconds..