last executing test programs:

15.580327778s ago: executing program 4 (id=2185):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c0000000000002020207b1af8ff00000000bfa10000000000000701000005ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[], 0x34}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009b746308d10703339df6010203010902120001000000000904cf000094fb3e1f9256909ce1004a5611a077b38fede980a30d8b3c2f913d7df8e2d7ad9c475cbab9d4fd73c8849923b26d3fb7ee04c2cf38da01a62ff466da394804598face5b03915285da64da98d566d2139a0dfee10204daf862b0d427869648f686631c046950685534fc257eee9698d82fab6b4691719e67d7829aa7141ab45380f9e6e2d3a9cafb0cdac131323647a40aaa7ea17d036252f5febcbabb3bd66388ad1e3de41d130dddf86be82e6b3677882e1f1db841da21b8bf3dbf0a019a329f85e1681"], 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_VDPA_GET_STATUS(r3, 0x8001af71, &(0x7f0000000140))
futex_waitv(&(0x7f0000000180)=[{0x0, 0x0, 0x82}], 0x1, 0x0, &(0x7f0000000240)={0x77359400}, 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(0xffffffffffffffff, 0x111, 0x3, 0x0, 0x4)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)

14.330564985s ago: executing program 3 (id=2188):
socket$packet(0x11, 0x2, 0x300)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r2, 0x4068aea3, &(0x7f0000000080)={0x8f, 0x0, 0x4})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000940)={0x0, 0x0, 0x0, 0xe, 0x0, "00120dd608f500001e2a000080c90a008000"})
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000040)=0xd)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x686900, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000140)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'bond0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r4, 0x4008b100, 0x0)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'veth0_macvtap\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="6400000010000b0500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800c0001006d6163766c616e00240002800800010010000000100005800a000400aaaaaaaaaaaa0000080003000300000008000500", @ANYRES32=r9, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}}, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000580)={0xc5, 0x0, r5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

13.965833963s ago: executing program 3 (id=2193):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_RATE={0x6}]}, 0x38}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0)
fcntl$setlease(r4, 0x400, 0x0)
mq_unlink(&(0x7f0000000340)='eth0\x00')
sendmsg$NFT_BATCH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ec0)=ANY=[@ANYBLOB], 0xcc}}, 0x0)
ftruncate(0xffffffffffffffff, 0x4)
r5 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r5, &(0x7f00000000c0), 0x10)
sendto$l2tp(r5, &(0x7f0000000040)="e5786a0d000000000000c83b", 0xc, 0x0, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)
recvfrom$l2tp(r5, 0x0, 0x0, 0x142, 0x0, 0x0)
fchmod(r1, 0xe0)

12.999285844s ago: executing program 2 (id=2194):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x47f)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21}, 0x10)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x8001, 0xfffe}, 0x14)
shutdown(r0, 0x2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
getdents64(r1, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000500)={{0x9, 0x2, 0x1, 0xa, 'syz0\x00', 0xfff}, 0x3, 0x20000000, 0x401, r2, 0x7, 0x9, 'syz1\x00', &(0x7f00000001c0)=['f', '#@,\x00', '!\x00', '\x00', '\x00', 'sched_switch\x00', 'GPL\x00'], 0x1a})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000005fc0), &(0x7f0000006040)=0x68)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r5, 0xc0845657, &(0x7f0000000440)={0x0, @bt={0x8001, 0x0, 0x1, 0x1, 0xf, 0x7, 0x2, 0x80000000, 0x6, 0xeb0d, 0x3, 0x5, 0x4, 0x9, 0x5, 0x10, {0xc, 0x800}, 0x3, 0x1}})

12.930841094s ago: executing program 4 (id=2195):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000e40)=ANY=[], 0xe)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
accept(r1, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f00000012c0))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000080)={0x60, 0x0, &(0x7f0000002000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, 0x0, 0x30})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4008, 0x3, 0x328, 0x1b8, 0x32, 0x148, 0x0, 0x148, 0x290, 0x240, 0x240, 0x290, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x190, 0x1b8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@inet=@ecn={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x0, &(0x7f0000000000), 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_io_uring_setup(0x2ed7, 0x0, 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r9, 0x4138ae84, 0x0)
r10 = syz_genetlink_get_family_id$batadv(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000003c0)={'batadv0\x00', <r11=>0x0})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)={0x1c, r10, 0x703, 0x0, 0x0, {0xb}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r11}]}, 0x1c}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)

12.82954521s ago: executing program 3 (id=2197):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r0, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x40b80, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(r3, 0x5423, &(0x7f0000000080)=0x7)
r4 = openat$vicodec1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$binfmt_aout(r4, 0x0, 0x6b1)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100000004000000060ec970000288900fe8000400000000000000000000000aaff020000000000000000000000000001"], 0xffe)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = io_uring_setup(0x6c65, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x3ce})
open(&(0x7f0000000000)='.\x00', 0x20403, 0x0)
vmsplice(r7, &(0x7f0000001ac0)=[{&(0x7f0000000140)="40fc52fd66db9c6ea7bc347d151f95dc1d314318f2467991", 0x18}, {0x0}, {0x0}, {&(0x7f0000001a00)="decb899613db07c8276cedcaecc3e5267fb3cdcd5ae43d28c5903df5ed14f2e7ec87cea096d82086406def3ba60ff2", 0x2f}], 0x4, 0x4)
fsopen(&(0x7f0000000280)='ceph\x00', 0x1)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xb8}}, 0x0)

11.937700812s ago: executing program 2 (id=2198):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000001a80), 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1a, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180080000000000000000000000000000dc6c7aee8f1112000000000"], &(0x7f0000000180)='syzkaller\x00', 0xb, 0xff8, &(0x7f0000001e00)=""/4088}, 0x90)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r7, 0x0, 0x0}, 0x20)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)

11.870849138s ago: executing program 1 (id=2199):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='rcu_utilization\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1f8a, &(0x7f0000000300)={0x0, 0xfffffffe, 0x2, 0xfffffffe}, &(0x7f0000000100), &(0x7f0000000180))
io_uring_enter(r2, 0x80000054, 0x0, 0xf, 0x0, 0x33)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/rpc\x00')
r4 = fanotify_init(0x0, 0x1)
ioctl$SOUND_MIXER_WRITE_VOLUME(r3, 0xc0044d1e, &(0x7f0000000240)=0x12)
readv(r4, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/183, 0xb7}], 0x1)
fanotify_mark(r4, 0x1, 0x40000011, r3, 0x0)
preadv(r3, 0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/209, 0xd1}], 0x1, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
unshare(0x6a040000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[@ANYBLOB="340000000301011834489e111e77fcfe7da1c4c0d6d46b0400000000000000000a0000000600124000030000100004800c000180050003000900000008000840000002006384815c1c70ec15008bb8be25e73d9f11b52122b25137f80a2c583bd2784b98a2e5833393f54404d8fed8012caf3ffe6f6663cdf423bfb8503d6583ad140dae7c9bd292c15da945fcc0d822355e8f24a28c3031b2e7981510fe7dc9d0f4cfe274644b00281e7751d99d4147d698e813785b79eed642b7a82fbab2fa406966d3b1f20d64a7ca773eb42a21a11d1fa221e0afefa45385a500576cbe6f696669d40e2e4209f161be1b000000000000ab9c42a0249b35"], 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xffffffbb)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0x2, 0x300)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x181341, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})

11.161528102s ago: executing program 4 (id=2201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x4000000000002db, 0x20000000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e1f, 0x0, @mcast2, 0x40}, 0x1c)
listen(0xffffffffffffffff, 0x3)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001040), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
ioctl$CEC_S_MODE(r6, 0x40046109, &(0x7f0000000300)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000ec0), &(0x7f0000000f00)=0x8)

6.606849421s ago: executing program 4 (id=2202):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdir(&(0x7f0000000280)='\x00', 0x1a0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f00000000c0)='./file1\x00', r1, &(0x7f0000000100)='./file1\x00')
r2 = openat(r1, &(0x7f0000000340)='./file1\x00', 0x400002, 0x2)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r2, 0x9362, 0x0)
readlinkat(r1, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)=""/65, 0x41)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$binfmt_script(r3, &(0x7f0000000780)={'#! ', './file0', [], 0xa, "9146158dbf61488e5107826527b9be385e90f2b6cad4b8bc4fc308b8cfa7eaadc1e7283a571a3fedf530d5e713000000000000de0003251b4a264e1801470d1c7d61ef1d7829b0c2e3c85858516393ad59604d8226661c38829a58c4cbcafb1267b66670edfbf4524607120aebca13edaed47ba21e5357"}, 0x82)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
ioctl$TCSETS(r0, 0x89f0, &(0x7f0000000080)={0xfffffffe, 0x0, 0xfffffffd, 0x0, 0x0, "bb5dee4cbd49ae22ae0200"})

6.463879376s ago: executing program 0 (id=2203):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[])
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
read$FUSE(r1, &(0x7f0000002140)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = memfd_secret(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r3, r2, 0x2e, 0x4608, @val=@iter={0xfffffffffffffffd}}, 0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@map=0x1, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000ecff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000917100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0xfffffffffffffffe, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', 0x5c5002, 0x181)
io_setup(0x202, 0x0)
io_submit(0x0, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x0, 0x0, r4, &(0x7f0000000180)='\x00', 0x1001}])
socket$can_bcm(0x1d, 0x2, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb}, {0x3, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_WASH={0x8}, @TCA_CAKE_FLOW_MODE={0x8}]}}]}, 0x44}}, 0x4c050)

6.228722943s ago: executing program 2 (id=2204):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
getdents(r5, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x13}, 0x90)
symlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wg0\x00'})

6.226898459s ago: executing program 3 (id=2205):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
fcntl$getown(0xffffffffffffffff, 0x9)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000009c0)=ANY=[@ANYBLOB="28010000170001003a7dc09c007aab5097000000000000000000000000000000000000ffffac1414000000000000000000ac1414000000000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="e0000002000000000000000000000000ff01000000000000000000000000000100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100"/119], 0x128}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = socket(0x10, 0x80803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000165000/0x1000)=nil, 0x1000, 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x8)

5.997997919s ago: executing program 4 (id=2206):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @local}, 0x10)

5.269485874s ago: executing program 2 (id=2207):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x40b80, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = openat$vicodec1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$binfmt_aout(r3, 0x0, 0x6b1)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100000004000000060ec970000288900fe8000400000000000000000000000aaff020000000000000000000000000001"], 0xffe)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = io_uring_setup(0x6c65, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x3ce})
open(&(0x7f0000000000)='.\x00', 0x20403, 0x0)
vmsplice(r6, &(0x7f0000001ac0)=[{&(0x7f0000000140)="40fc52fd66db9c6ea7bc347d151f95dc1d314318f2467991", 0x18}, {0x0}, {0x0}, {&(0x7f0000001a00)="decb899613db07c8276cedcaecc3e5267fb3cdcd5ae43d28c5903df5ed14f2e7ec87cea096d82086406def3ba60ff2", 0x2f}], 0x4, 0x4)
fsopen(&(0x7f0000000280)='ceph\x00', 0x1)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xb8}}, 0x0)

5.154813922s ago: executing program 0 (id=2208):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
capset(0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r3, &(0x7f0000000580)=ANY=[], 0x8)
pivot_root(0x0, 0x0)

5.088240249s ago: executing program 1 (id=2209):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x4)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x13)

4.105422523s ago: executing program 0 (id=2210):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000003c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000300)={0x1000a4, 0x7a, 0x0, {r2}}, 0x20)

4.045110862s ago: executing program 4 (id=2211):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x38, 0x3, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0x14, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x88}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x190}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x400000)
syz_usb_connect(0x5, 0x24, &(0x7f00000008c0)={{0x12, 0x1, 0x110, 0x9d, 0xf, 0x66, 0x10, 0x19d2, 0xff62, 0xa8cc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0xff, 0x7, 0x40, 0xa, [{{0x9, 0x4, 0xea, 0x44, 0x0, 0xff, 0xff, 0xff, 0xfc}}]}}]}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f00000002c0)={0x18, 0x0, {0xc, @link_local, 'sit0\x00'}}, 0x1e)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001380)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0xfefc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000004, 0x12, r4, 0x0)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r3, 0x5452, 0x20000000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
write$binfmt_script(r2, &(0x7f0000000000)={'#! ', './file0'}, 0xb)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000000), 0x8)

3.972196927s ago: executing program 1 (id=2212):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x4000000000002db, 0x20000000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e1f, 0x0, @mcast2, 0x40}, 0x1c)
listen(0xffffffffffffffff, 0x3)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001040), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
ioctl$CEC_S_MODE(r6, 0x40046109, &(0x7f0000000300)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000ec0), &(0x7f0000000f00)=0x8)

3.870877364s ago: executing program 0 (id=2213):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_RATE={0x6}]}, 0x38}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0)
fcntl$setlease(r4, 0x400, 0x0)
mq_unlink(&(0x7f0000000340)='eth0\x00')
sendmsg$NFT_BATCH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ec0)=ANY=[@ANYBLOB], 0xcc}}, 0x0)
ftruncate(0xffffffffffffffff, 0x4)
r5 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r5, &(0x7f00000000c0), 0x10)
sendto$l2tp(r5, &(0x7f0000000040)="e5786a0d000000000000c83b", 0xc, 0x0, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)
recvfrom$l2tp(r5, 0x0, 0x0, 0x142, 0x0, 0x0)
fchmod(r1, 0xe0)

2.996237308s ago: executing program 1 (id=2214):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x4000000000002db, 0x20000000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e1f, 0x0, @mcast2, 0x40}, 0x1c)
listen(0xffffffffffffffff, 0x3)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001040), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
ioctl$CEC_S_MODE(r6, 0x40046109, &(0x7f0000000300)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r7, 0x0, 0x482, &(0x7f0000000ec0), &(0x7f0000000f00)=0x8)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)

2.906239961s ago: executing program 0 (id=2215):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r0, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x40b80, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(r3, 0x5423, &(0x7f0000000080)=0x7)
r4 = openat$vicodec1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$binfmt_aout(r4, 0x0, 0x6b1)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100000004000000060ec970000288900fe8000400000000000000000000000aaff020000000000000000000000000001"], 0xffe)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = io_uring_setup(0x6c65, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x3ce})
open(&(0x7f0000000000)='.\x00', 0x20403, 0x0)
vmsplice(r7, &(0x7f0000001ac0)=[{&(0x7f0000000140)="40fc52fd66db9c6ea7bc347d151f95dc1d314318f2467991", 0x18}, {0x0}, {0x0}, {&(0x7f0000001a00)="decb899613db07c8276cedcaecc3e5267fb3cdcd5ae43d28c5903df5ed14f2e7ec87cea096d82086406def3ba60ff2", 0x2f}], 0x4, 0x4)
fsopen(&(0x7f0000000280)='ceph\x00', 0x1)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xb8}}, 0x0)

2.031937018s ago: executing program 1 (id=2216):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000001a80), 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1a, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180080000000000000000000000000000dc6c7aee8f1112000000000"], &(0x7f0000000180)='syzkaller\x00', 0xb, 0xff8, &(0x7f0000001e00)=""/4088}, 0x90)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r7, 0x0, 0x0}, 0x20)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)

1.991085359s ago: executing program 2 (id=2217):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x47f)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21}, 0x10)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x8001, 0xfffe}, 0x14)
shutdown(r0, 0x2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
getdents64(r1, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000500)={{0x9, 0x2, 0x1, 0xa, 'syz0\x00', 0xfff}, 0x3, 0x20000000, 0x401, r2, 0x7, 0x9, 'syz1\x00', &(0x7f00000001c0)=['f', '#@,\x00', '!\x00', '\x00', '\x00', 'sched_switch\x00', 'GPL\x00'], 0x1a})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000005fc0), &(0x7f0000006040)=0x68)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r5, 0xc0845657, &(0x7f0000000440)={0x0, @bt={0x8001, 0x0, 0x1, 0x1, 0xf, 0x7, 0x2, 0x80000000, 0x6, 0xeb0d, 0x3, 0x5, 0x4, 0x9, 0x5, 0x10, {0xc, 0x800}, 0x3, 0x1}})

1.896111491s ago: executing program 3 (id=2218):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8}]}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x1b, &(0x7f0000000ac0)=ANY=[@ANYBLOB="05000000000000009500000000000000b7080000000000007b8af8ff00000000b7080000380000007b8af0ff00040000bfa100000000000007010000f8ffffffbff8735d859a25a504e502ca1d6aa400000002000008000000182300", @ANYBLOB="4f4063ae2b917b926a5f03b1e6b63902a3d72e1a3a7d891e52b94cfb3c369665756a47f092cf32ae51befe97f161099c10c9d100a817ae506f93776ee70cd3b465e99451f9a14d37dfc6932817b855fa3a38ca8e43118e5bef2e53c8675b38a0a97b8465fb0170fa8e18bda7fa007ce279a9b9a3fdd0994320e6f59ce9d5a1eb8b425555da3dae8a11fafd021749dffc634d9686845eaf6b870e6c5386145be7f061", @ANYBLOB="0000000000000000b70500000800000085000000a500000018110000", @ANYBLOB="0000000000000000b70200000000000085000000860000000500feff0000000085200000000000001811", @ANYRES32, @ANYBLOB], &(0x7f0000000440)='GPL\x00', 0x401, 0x93, &(0x7f0000000480)=""/147, 0x41000, 0x0, '\x00', 0x0, 0x11, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7, &(0x7f0000000780), &(0x7f0000000980)=[{0x1, 0x1}, {0x1, 0x0, 0xf, 0x1}, {0x5, 0x2, 0x6}, {0x0, 0x0, 0x0, 0x7}, {0x0, 0x3}, {0x0, 0x1}, {0x0, 0x3, 0x0, 0x8}], 0x10, 0x7}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9, 0x84, 0x144}, 0x48)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f00000005c0)={0x0, 0x5c6, 0x0, 0x8})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r5}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r5}, 0x38)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc1}, 0x90)
unshare(0x22020600)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x2c, 0x3b, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@typed={0x4}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x11, 0x0, 0x0, @str='%-^\x00'}]}]}, 0x2c}}, 0x0)
r7 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r8, &(0x7f0000000140)='./file0\x00')

555.528843ms ago: executing program 3 (id=2219):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[])
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
read$FUSE(r1, &(0x7f0000002140)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = memfd_secret(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r3, r2, 0x2e, 0x4608, @val=@iter={0xfffffffffffffffd}}, 0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@map=0x1, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000ecff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000917100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0xfffffffffffffffe, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', 0x5c5002, 0x181)
io_setup(0x202, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x0, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb}, {0x3, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_WASH={0x8}, @TCA_CAKE_FLOW_MODE={0x8}]}}]}, 0x44}}, 0x4c050)

167.583892ms ago: executing program 1 (id=2220):
socket$packet(0x11, 0x0, 0x300)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
openat$bsg(0xffffffffffffff9c, 0x0, 0x80, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x41009432, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000640)={'veth1_to_team\x00', &(0x7f0000000040)=@ethtool_per_queue_op={0x25, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x80000001, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, 0x0, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r5 = open(&(0x7f0000000180)='./bus\x00', 0x400800, 0xd0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r5, 0x0)
ftruncate(r4, 0x1f)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
prlimit64(r2, 0xe, &(0x7f00000002c0)={0x6, 0x2}, &(0x7f0000000340))
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

156.199484ms ago: executing program 2 (id=2221):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000800)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000740)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
recvmsg(r1, &(0x7f000000b680)={0x0, 0x0, &(0x7f000000b600)=[{&(0x7f000000b500)=""/153, 0x99}], 0x1}, 0x0)

0s ago: executing program 0 (id=2222):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000e40)=ANY=[], 0xe)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
accept(r1, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f00000012c0))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000080)={0x60, 0x0, &(0x7f0000002000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, 0x0, 0x30})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4008, 0x3, 0x328, 0x1b8, 0x32, 0x148, 0x0, 0x148, 0x290, 0x240, 0x240, 0x290, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x190, 0x1b8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@inet=@ecn={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x0, &(0x7f0000000000), 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_io_uring_setup(0x2ed7, 0x0, 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r9, 0x4138ae84, &(0x7f0000000100)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xddf8ffdb, 0x0, 0x0, 0x140030})
r10 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000003c0)={'batadv0\x00', <r11=>0x0})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)={0x1c, r10, 0x703, 0x0, 0x0, {0xb}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r11}]}, 0x1c}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)

kernel console output (not intermixed with test programs):

7548][T10734]  should_failslab+0xac/0x100
[  492.347562][T10734]  ? rtnl_newlink+0xf2/0x20a0
[  492.347575][T10734]  __kmalloc_cache_noprof+0x6c/0x2c0
[  492.347593][T10734]  rtnl_newlink+0xf2/0x20a0
[  492.347619][T10734]  ? __mutex_trylock_common+0x183/0x2e0
[  492.347631][T10734]  ? __pfx___might_resched+0x10/0x10
[  492.347644][T10734]  ? __pfx_rtnl_newlink+0x10/0x10
[  492.347658][T10734]  ? __pfx___mutex_trylock_common+0x10/0x10
[  492.347672][T10734]  ? rcu_is_watching+0x15/0xb0
[  492.347687][T10734]  ? trace_contention_end+0x3c/0x120
[  492.347699][T10734]  ? __mutex_lock+0x2ef/0xd70
[  492.347714][T10734]  ? rcu_read_unlock+0x87/0xa0
[  492.347728][T10734]  ? __dev_queue_xmit+0x1763/0x3e90
[  492.347742][T10734]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  492.347751][T10734]  ? __pfx_lock_release+0x10/0x10
[  492.347766][T10734]  ? __pfx___mutex_lock+0x10/0x10
[  492.347784][T10734]  ? __pfx_rtnl_newlink+0x10/0x10
[  492.347798][T10734]  rtnetlink_rcv_msg+0x73f/0xcf0
[  492.347808][T10734]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  492.347822][T10734]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  492.347837][T10734]  ? ref_tracker_free+0x643/0x7e0
[  492.347853][T10734]  netlink_rcv_skb+0x1e3/0x430
[  492.347865][T10734]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  492.347877][T10734]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  492.347902][T10734]  ? netlink_deliver_tap+0x2e/0x1b0
[  492.347915][T10734]  netlink_unicast+0x7f6/0x990
[  492.347935][T10734]  ? __pfx_netlink_unicast+0x10/0x10
[  492.347949][T10734]  ? __virt_addr_valid+0x183/0x530
[  492.347961][T10734]  ? __check_object_size+0x49c/0x900
[  492.347973][T10734]  ? bpf_lsm_netlink_send+0x9/0x10
[  492.347989][T10734]  netlink_sendmsg+0x8e4/0xcb0
[  492.348007][T10734]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.348020][T10734]  ? __import_iovec+0x536/0x820
[  492.348035][T10734]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  492.348047][T10734]  ? security_socket_sendmsg+0x87/0xb0
[  492.348061][T10734]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.348072][T10734]  __sock_sendmsg+0x221/0x270
[  492.348085][T10734]  ____sys_sendmsg+0x525/0x7d0
[  492.348110][T10734]  ? __pfx_____sys_sendmsg+0x10/0x10
[  492.348133][T10734]  __sys_sendmsg+0x2b0/0x3a0
[  492.348148][T10734]  ? __pfx___sys_sendmsg+0x10/0x10
[  492.348161][T10734]  ? vfs_write+0x7c4/0xc90
[  492.348200][T10734]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  492.348215][T10734]  ? do_syscall_64+0x100/0x230
[  492.348228][T10734]  ? do_syscall_64+0xb6/0x230
[  492.348241][T10734]  do_syscall_64+0xf3/0x230
[  492.348252][T10734]  ? clear_bhb_loop+0x35/0x90
[  492.348268][T10734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.348281][T10734] RIP: 0033:0x7f63aa979eb9
[  492.348292][T10734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.348301][T10734] RSP: 002b:00007f63ab774038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  492.348314][T10734] RAX: ffffffffffffffda RBX: 00007f63aab15f80 RCX: 00007f63aa979eb9
[  492.348323][T10734] RDX: 0000000000040800 RSI: 00000000200002c0 RDI: 0000000000000004
[  492.348330][T10734] RBP: 00007f63ab774090 R08: 0000000000000000 R09: 0000000000000000
[  492.348338][T10734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  492.348345][T10734] R13: 0000000000000000 R14: 00007f63aab15f80 R15: 00007fffebe5b828
[  492.348362][T10734]  </TASK>
[  492.377457][T10736] FAULT_INJECTION: forcing a failure.
[  492.377457][T10736] name failslab, interval 1, probability 0, space 0, times 0
[  492.377589][T10736] CPU: 1 UID: 0 PID: 10736 Comm: syz.1.1637 Not tainted 6.11.0-rc6-syzkaller #0
[  492.377612][T10736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  492.377624][T10736] Call Trace:
[  492.377632][T10736]  <TASK>
[  492.377641][T10736]  dump_stack_lvl+0x241/0x360
[  492.377670][T10736]  ? __pfx_dump_stack_lvl+0x10/0x10
[  492.377690][T10736]  ? __pfx__printk+0x10/0x10
[  492.377713][T10736]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  492.377740][T10736]  ? __pfx___might_resched+0x10/0x10
[  492.377770][T10736]  should_fail_ex+0x3b0/0x4e0
[  492.377795][T10736]  should_failslab+0xac/0x100
[  492.377818][T10736]  ? ip_set_create+0x330/0x1900
[  492.377844][T10736]  __kmalloc_cache_noprof+0x6c/0x2c0
[  492.377874][T10736]  ip_set_create+0x330/0x1900
[  492.377896][T10736]  ? trace_raw_output_contention_end+0xca/0xd0
[  492.377924][T10736]  ? __pfx_ip_set_create+0x10/0x10
[  492.377941][T10736]  ? trace_contention_end+0x3c/0x120
[  492.377993][T10736]  ? nfnetlink_rcv_msg+0x225/0x1180
[  492.378016][T10736]  nfnetlink_rcv_msg+0xbec/0x1180
[  492.378036][T10736]  ? kernel_text_address+0xa7/0xe0
[  492.378055][T10736]  ? nfnetlink_rcv_msg+0x225/0x1180
[  492.378097][T10736]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.378142][T10736]  ? netlink_deliver_tap+0x19d/0x1b0
[  492.378160][T10736]  ? netlink_unicast+0x7c4/0x990
[  492.378183][T10736]  ? netlink_sendmsg+0x8e4/0xcb0
[  492.378201][T10736]  ? __sock_sendmsg+0x221/0x270
[  492.378218][T10736]  ? ____sys_sendmsg+0x525/0x7d0
[  492.378239][T10736]  ? __sys_sendmsg+0x2b0/0x3a0
[  492.378259][T10736]  ? do_syscall_64+0xf3/0x230
[  492.378277][T10736]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.378316][T10736]  netlink_rcv_skb+0x1e3/0x430
[  492.378337][T10736]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.378361][T10736]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  492.378395][T10736]  ? safesetid_security_capable+0xb2/0x1d0
[  492.378419][T10736]  ? bpf_lsm_capable+0x9/0x10
[  492.378437][T10736]  ? security_capable+0x90/0xb0
[  492.378470][T10736]  nfnetlink_rcv+0x297/0x2ad0
[  492.378498][T10736]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  492.378528][T10736]  ? __dev_queue_xmit+0x2da/0x3e90
[  492.378553][T10736]  ? __dev_queue_xmit+0x1763/0x3e90
[  492.378575][T10736]  ? kasan_save_track+0x51/0x80
[  492.378603][T10736]  ? do_syscall_64+0xf3/0x230
[  492.378624][T10736]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  492.378644][T10736]  ? __dev_queue_xmit+0x2da/0x3e90
[  492.378673][T10736]  ? __pfx___dev_queue_xmit+0x10/0x10
[  492.378714][T10736]  ? ref_tracker_free+0x643/0x7e0
[  492.378735][T10736]  ? __asan_memcpy+0x40/0x70
[  492.378753][T10736]  ? __pfx_ref_tracker_free+0x10/0x10
[  492.378791][T10736]  ? netlink_deliver_tap+0x2e/0x1b0
[  492.378809][T10736]  ? skb_clone+0x240/0x390
[  492.378832][T10736]  ? __pfx_lock_release+0x10/0x10
[  492.378866][T10736]  ? __netlink_deliver_tap+0x77e/0x7c0
[  492.378898][T10736]  ? netlink_deliver_tap+0x2e/0x1b0
[  492.378921][T10736]  netlink_unicast+0x7f6/0x990
[  492.378956][T10736]  ? __pfx_netlink_unicast+0x10/0x10
[  492.378978][T10736]  ? __virt_addr_valid+0x183/0x530
[  492.379001][T10736]  ? __check_object_size+0x49c/0x900
[  492.379021][T10736]  ? bpf_lsm_netlink_send+0x9/0x10
[  492.379046][T10736]  netlink_sendmsg+0x8e4/0xcb0
[  492.379078][T10736]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.379102][T10736]  ? __import_iovec+0x536/0x820
[  492.379127][T10736]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  492.379149][T10736]  ? security_socket_sendmsg+0x87/0xb0
[  492.379171][T10736]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.379190][T10736]  __sock_sendmsg+0x221/0x270
[  492.379212][T10736]  ____sys_sendmsg+0x525/0x7d0
[  492.379243][T10736]  ? __pfx_____sys_sendmsg+0x10/0x10
[  492.379284][T10736]  __sys_sendmsg+0x2b0/0x3a0
[  492.379310][T10736]  ? __pfx___sys_sendmsg+0x10/0x10
[  492.379331][T10736]  ? vfs_write+0x7c4/0xc90
[  492.379401][T10736]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  492.379426][T10736]  ? do_syscall_64+0x100/0x230
[  492.379449][T10736]  ? do_syscall_64+0xb6/0x230
[  492.379472][T10736]  do_syscall_64+0xf3/0x230
[  492.379491][T10736]  ? clear_bhb_loop+0x35/0x90
[  492.379517][T10736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.379538][T10736] RIP: 0033:0x7ff54f579eb9
[  492.379556][T10736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.379573][T10736] RSP: 002b:00007ff5503f3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  492.379597][T10736] RAX: ffffffffffffffda RBX: 00007ff54f715f80 RCX: 00007ff54f579eb9
[  492.379612][T10736] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  492.379625][T10736] RBP: 00007ff5503f3090 R08: 0000000000000000 R09: 0000000000000000
[  492.379638][T10736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  492.379650][T10736] R13: 0000000000000000 R14: 00007ff54f715f80 R15: 00007fff273bc7e8
[  492.379681][T10736]  </TASK>
[  494.158664][T10752] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1642'.
[  495.035796][T10758] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  499.527148][T10773] netlink: 'syz.2.1648': attribute type 10 has an invalid length.
[  500.601893][T10773] team0: Failed to send options change via netlink (err -105)
[  500.609652][T10773] team0: Port device netdevsim0 added
[  501.070041][T10777] netlink: 'syz.2.1648': attribute type 10 has an invalid length.
[  501.812643][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  502.311859][T10777] team0: Port device netdevsim0 removed
[  502.352734][T10777] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  502.458274][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  502.458288][   T29] audit: type=1326 audit(1725215755.046:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10791 comm="syz.3.1655" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x0
[  505.320587][ T9658] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  505.519371][ T9658] usb 5-1: Using ep0 maxpacket: 16
[  505.530762][ T9658] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  505.648177][ T9658] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  505.697580][ T9658] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.845627][ T9658] usb 5-1: Product: syz
[  506.098346][ T9658] usb 5-1: Manufacturer: syz
[  506.146365][ T9658] usb 5-1: SerialNumber: syz
[  506.285400][ T9658] usb 5-1: config 0 descriptor??
[  506.481607][ T9658] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  506.622187][ T1301] usb 5-1: Failed to submit usb control message: -71
[  506.630004][ T5224] usb 5-1: USB disconnect, device number 26
[  506.636627][ T1301] usb 5-1: unable to send the bmi data to the device: -71
[  506.647568][ T1301] usb 5-1: unable to get target info from device
[  506.672687][ T1301] usb 5-1: could not get target info (-71)
[  506.702086][ T1301] usb 5-1: could not probe fw (-71)
[  509.004977][T10869] FAULT_INJECTION: forcing a failure.
[  509.004977][T10869] name failslab, interval 1, probability 0, space 0, times 0
[  509.018729][T10869] CPU: 0 UID: 0 PID: 10869 Comm: syz.4.1675 Not tainted 6.11.0-rc6-syzkaller #0
[  509.027785][T10869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  509.037860][T10869] Call Trace:
[  509.041145][T10869]  <TASK>
[  509.044073][T10869]  dump_stack_lvl+0x241/0x360
[  509.048751][T10869]  ? __pfx_dump_stack_lvl+0x10/0x10
[  509.053942][T10869]  ? __pfx__printk+0x10/0x10
[  509.058523][T10869]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  509.063978][T10869]  ? __pfx___might_resched+0x10/0x10
[  509.069262][T10869]  should_fail_ex+0x3b0/0x4e0
[  509.073933][T10869]  should_failslab+0xac/0x100
[  509.078601][T10869]  ? sctp_transport_new+0x7e/0x5d0
[  509.083712][T10869]  __kmalloc_cache_noprof+0x6c/0x2c0
[  509.088986][T10869]  ? sctp_copy_one_addr+0x341/0x680
[  509.094178][T10869]  sctp_transport_new+0x7e/0x5d0
[  509.099113][T10869]  sctp_assoc_add_peer+0x228/0x15c0
[  509.104306][T10869]  ? sctp_bind_addr_copy+0x36c/0x3b0
[  509.109588][T10869]  sctp_connect_new_asoc+0x31d/0x6c0
[  509.114866][T10869]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  509.120666][T10869]  ? sctp_sendmsg+0xbb9/0x3520
[  509.125426][T10869]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  509.130966][T10869]  ? security_sctp_bind_connect+0x90/0xb0
[  509.136680][T10869]  sctp_sendmsg+0x219a/0x3520
[  509.141366][T10869]  ? __pfx_sctp_sendmsg+0x10/0x10
[  509.146395][T10869]  ? inet_sendmsg+0x330/0x390
[  509.151072][T10869]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  509.156354][T10869]  ? security_socket_sendmsg+0x87/0xb0
[  509.161809][T10869]  __sock_sendmsg+0x1a6/0x270
[  509.166482][T10869]  __sys_sendto+0x3a4/0x4f0
[  509.170986][T10869]  ? __pfx___sys_sendto+0x10/0x10
[  509.176023][T10869]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  509.181999][T10869]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  509.188323][T10869]  __x64_sys_sendto+0xde/0x100
[  509.193102][T10869]  do_syscall_64+0xf3/0x230
[  509.197650][T10869]  ? clear_bhb_loop+0x35/0x90
[  509.202352][T10869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.208257][T10869] RIP: 0033:0x7fd825f79eb9
[  509.212700][T10869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.232308][T10869] RSP: 002b:00007fd826e3e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  509.240725][T10869] RAX: ffffffffffffffda RBX: 00007fd826115f80 RCX: 00007fd825f79eb9
[  509.248683][T10869] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000003
[  509.256641][T10869] RBP: 00007fd826e3e090 R08: 000000002005ffe4 R09: 000000000000001c
[  509.264693][T10869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  509.272788][T10869] R13: 0000000000000000 R14: 00007fd826115f80 R15: 00007fffe8047a58
[  509.280806][T10869]  </TASK>
[  511.267828][T10890] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1679'.
[  512.521595][T10898] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1683'.
[  514.598136][T10921] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  515.912485][T10923] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  517.442803][T10935] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  518.289545][T10469] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  518.929673][T10469] usb 5-1: Using ep0 maxpacket: 32
[  518.986663][T10469] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  519.031876][T10469] usb 5-1: New USB device found, idVendor=0421, idProduct=04df, bcdDevice=d5.3b
[  519.048322][T10469] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.811659][T10469] usb 5-1: Product: syz
[  519.817137][T10469] usb 5-1: Manufacturer: syz
[  519.822940][T10469] usb 5-1: SerialNumber: syz
[  519.840638][T10469] usb 5-1: config 0 descriptor??
[  519.863622][T10469] rndis_host 5-1:0.0: skipping garbage
[  519.989213][T10469] usb 5-1: bad CDC descriptors
[  519.992754][T10955] FAULT_INJECTION: forcing a failure.
[  519.992754][T10955] name failslab, interval 1, probability 0, space 0, times 0
[  520.007316][T10469] cdc_acm 5-1:0.0: skipping garbage
[  520.022943][T10955] CPU: 1 UID: 0 PID: 10955 Comm: syz.3.1697 Not tainted 6.11.0-rc6-syzkaller #0
[  520.032024][T10955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  520.042085][T10955] Call Trace:
[  520.045363][T10955]  <TASK>
[  520.048283][T10955]  dump_stack_lvl+0x241/0x360
[  520.052959][T10955]  ? __pfx_dump_stack_lvl+0x10/0x10
[  520.058148][T10955]  ? __pfx__printk+0x10/0x10
[  520.062730][T10955]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  520.068792][T10955]  ? __pfx___might_resched+0x10/0x10
[  520.074177][T10955]  should_fail_ex+0x3b0/0x4e0
[  520.078857][T10955]  should_failslab+0xac/0x100
[  520.083530][T10955]  ? __alloc_skb+0x1c3/0x440
[  520.088115][T10955]  kmem_cache_alloc_node_noprof+0x71/0x320
[  520.093916][T10955]  ? __mutex_unlock_slowpath+0x21d/0x750
[  520.099545][T10955]  __alloc_skb+0x1c3/0x440
[  520.103957][T10955]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  520.110017][T10955]  ? __pfx___alloc_skb+0x10/0x10
[  520.114954][T10955]  pfkey_sendmsg+0xce4/0x1050
[  520.119636][T10955]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  520.124752][T10955]  ? __might_fault+0xaa/0x120
[  520.129426][T10955]  ? __pfx_lock_release+0x10/0x10
[  520.134468][T10955]  ? __import_iovec+0x536/0x820
[  520.139343][T10955]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  520.144649][T10955]  ? security_socket_sendmsg+0x87/0xb0
[  520.150194][T10955]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  520.155304][T10955]  __sock_sendmsg+0x221/0x270
[  520.159981][T10955]  ____sys_sendmsg+0x525/0x7d0
[  520.164833][T10955]  ? __pfx_____sys_sendmsg+0x10/0x10
[  520.170124][T10955]  __sys_sendmsg+0x2b0/0x3a0
[  520.174716][T10955]  ? __pfx___sys_sendmsg+0x10/0x10
[  520.179819][T10955]  ? vfs_write+0x7c4/0xc90
[  520.184260][T10955]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  520.190584][T10955]  ? do_syscall_64+0x100/0x230
[  520.195343][T10955]  ? do_syscall_64+0xb6/0x230
[  520.200022][T10955]  do_syscall_64+0xf3/0x230
[  520.204547][T10955]  ? clear_bhb_loop+0x35/0x90
[  520.209322][T10955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.215241][T10955] RIP: 0033:0x7fedd5f79eb9
[  520.219655][T10955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  520.239368][T10955] RSP: 002b:00007fedd6dc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  520.247777][T10955] RAX: ffffffffffffffda RBX: 00007fedd6115f80 RCX: 00007fedd5f79eb9
[  520.255737][T10955] RDX: 0000000000000000 RSI: 0000000020003780 RDI: 0000000000000004
[  520.263700][T10955] RBP: 00007fedd6dc8090 R08: 0000000000000000 R09: 0000000000000000
[  520.271662][T10955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  520.279637][T10955] R13: 0000000000000000 R14: 00007fedd6115f80 R15: 00007ffd180e4298
[  520.287609][T10955]  </TASK>
[  520.866378][T10938] tmpfs: Bad value for 'nr_inodes'
[  520.882336][T10938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  520.927616][T10938] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  520.938023][T10469] usb 5-1: USB disconnect, device number 27
[  524.406858][T10962] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  524.974597][T10981] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  525.695802][T10981] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  525.704348][T10981] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  525.715595][T10981] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  525.723569][T10981] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  525.731459][T10981] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  529.063852][T10981] Bluetooth: hci1: command tx timeout
[  532.805036][T10981] Bluetooth: hci1: command tx timeout
[  532.916131][T10979] chnl_net:caif_netlink_parms(): no params data found
[  532.989661][T11015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1709'.
[  533.125514][T11017] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1712'.
[  533.609410][ T5276] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  534.194735][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.327131][T11027] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1713'.
[  534.367653][ T5276] usb 5-1: Using ep0 maxpacket: 8
[  534.385018][ T5276] usb 5-1: config 0 has an invalid interface number: 207 but max is 0
[  534.405605][ T5276] usb 5-1: config 0 has no interface number 0
[  534.415328][ T5276] usb 5-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  534.466923][ T5276] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  534.596828][ T5276] usb 5-1: Product: syz
[  534.615783][ T5276] usb 5-1: Manufacturer: syz
[  534.636066][ T5276] usb 5-1: SerialNumber: syz
[  534.654633][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.673726][ T5276] usb 5-1: config 0 descriptor??
[  534.879251][T10981] Bluetooth: hci1: command tx timeout
[  536.046556][ T5276] r8712u: register rtl8712_netdev_ops to netdev_ops
[  536.074797][ T5276] usb 5-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  536.929216][T10981] Bluetooth: hci1: command tx timeout
[  537.050849][T10979] bridge0: port 1(bridge_slave_0) entered blocking state
[  537.089204][ T5276] usb 5-1: r8712u: Boot from EFUSE: Autoload Failed
[  537.095852][ T5276] usb 5-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  537.113857][ T5276] usb 5-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  537.127512][ T5276] usb 5-1: USB disconnect, device number 28
[  538.021605][T10979] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.028952][T10979] bridge_slave_0: entered allmulticast mode
[  538.080785][T10979] bridge_slave_0: entered promiscuous mode
[  538.191333][T11052] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1716'.
[  538.235791][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  538.795558][T10979] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.827935][T10979] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.858662][T10979] bridge_slave_1: entered allmulticast mode
[  538.945247][T10979] bridge_slave_1: entered promiscuous mode
[  539.105787][   T12] bond0: (slave netdevsim0): Releasing backup interface
[  539.151829][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.470843][T10979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.128868][T10979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.391809][T11075] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1722'.
[  543.035375][T10979] team0: Port device team_slave_0 added
[  543.091356][T10979] team0: Port device team_slave_1 added
[  543.375219][T10979] batman_adv: batadv0: Adding interface: batadv_slave_0
[  543.383245][T10979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  543.473988][T10981] Bluetooth: hci3: SCO packet for unknown connection handle 200
[  544.039453][T10979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  544.172504][T10979] batman_adv: batadv0: Adding interface: batadv_slave_1
[  544.184236][T10979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  544.353949][T10979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  544.411259][ T5276] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  544.534501][T11090] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  545.365643][ T5276] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  545.553173][ T5276] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  545.979254][ T5276] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  546.022979][ T5276] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.058456][T11080] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  546.096062][ T5276] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  546.826446][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  546.848061][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  546.866228][   T12] bond0 (unregistering): Released all slaves
[  546.922931][T10979] hsr_slave_0: entered promiscuous mode
[  546.945468][T10979] hsr_slave_1: entered promiscuous mode
[  546.952592][T10979] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  546.978348][T10979] Cannot create hsr debugfs directory
[  547.096053][T11106] 8021q: adding VLAN 0 to HW filter on device batadv0
[  547.108457][T11106] team0: Port device batadv0 added
[  548.681018][T11133] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1735'.
[  549.335280][   T12] hsr_slave_0: left promiscuous mode
[  549.393664][   T12] hsr_slave_1: left promiscuous mode
[  549.488469][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  549.948868][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  550.022081][   T25] usb 1-1: USB disconnect, device number 17
[  550.059445][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  550.126190][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  550.159637][T11149] xt_CT: You must specify a L4 protocol and not use inversions on it
[  550.261539][   T12] veth1_macvtap: left promiscuous mode
[  550.285495][   T12] veth0_macvtap: left promiscuous mode
[  550.311942][   T12] veth1_vlan: left promiscuous mode
[  550.346577][   T12] veth0_vlan: left promiscuous mode
[  551.387051][T11169] FAULT_INJECTION: forcing a failure.
[  551.387051][T11169] name failslab, interval 1, probability 0, space 0, times 0
[  551.428037][T11169] CPU: 0 UID: 0 PID: 11169 Comm: syz.1.1743 Not tainted 6.11.0-rc6-syzkaller #0
[  551.437204][T11169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  551.447318][T11169] Call Trace:
[  551.450610][T11169]  <TASK>
[  551.453529][T11169]  dump_stack_lvl+0x241/0x360
[  551.458198][T11169]  ? __pfx_dump_stack_lvl+0x10/0x10
[  551.463385][T11169]  ? __pfx__printk+0x10/0x10
[  551.467973][T11169]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  551.473957][T11169]  ? __pfx___might_resched+0x10/0x10
[  551.479232][T11169]  ? __lock_acquire+0x137a/0x2040
[  551.484268][T11169]  should_fail_ex+0x3b0/0x4e0
[  551.489057][T11169]  should_failslab+0xac/0x100
[  551.493778][T11169]  ? __alloc_skb+0x1c3/0x440
[  551.498382][T11169]  kmem_cache_alloc_node_noprof+0x71/0x320
[  551.504195][T11169]  __alloc_skb+0x1c3/0x440
[  551.508630][T11169]  ? validate_chain+0x11e/0x5900
[  551.513578][T11169]  ? __pfx___alloc_skb+0x10/0x10
[  551.518551][T11169]  ? __lock_acquire+0x1ff0/0x2040
[  551.523610][T11169]  alloc_skb_with_frags+0xc3/0x770
[  551.528753][T11169]  ? mark_lock+0x9a/0x350
[  551.534735][T11169]  ? __lock_acquire+0x137a/0x2040
[  551.539811][T11169]  sock_alloc_send_pskb+0x91a/0xa60
[  551.545067][T11169]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  551.550856][T11169]  ? smack_socket_sendmsg+0x172/0x540
[  551.556240][T11169]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  551.561990][T11169]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  551.568439][T11169]  hci_sock_sendmsg+0x22b/0x11c0
[  551.573412][T11169]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  551.578818][T11169]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  551.584135][T11169]  ? security_socket_sendmsg+0x87/0xb0
[  551.589625][T11169]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  551.595004][T11169]  __sock_sendmsg+0x221/0x270
[  551.599678][T11169]  sock_write_iter+0x2dd/0x400
[  551.604445][T11169]  ? __pfx_sock_write_iter+0x10/0x10
[  551.609736][T11169]  ? bpf_lsm_file_permission+0x9/0x10
[  551.615102][T11169]  ? security_file_permission+0x7f/0xa0
[  551.620660][T11169]  vfs_write+0xa72/0xc90
[  551.624949][T11169]  ? __pfx_sock_write_iter+0x10/0x10
[  551.630232][T11169]  ? __pfx_vfs_write+0x10/0x10
[  551.634997][T11169]  ksys_write+0x1a0/0x2c0
[  551.639340][T11169]  ? __pfx_ksys_write+0x10/0x10
[  551.644187][T11169]  ? do_syscall_64+0x100/0x230
[  551.648938][T11169]  ? do_syscall_64+0xb6/0x230
[  551.653626][T11169]  do_syscall_64+0xf3/0x230
[  551.658117][T11169]  ? clear_bhb_loop+0x35/0x90
[  551.662783][T11169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.668660][T11169] RIP: 0033:0x7ff54f579eb9
[  551.673056][T11169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.692650][T11169] RSP: 002b:00007ff5503f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  551.701053][T11169] RAX: ffffffffffffffda RBX: 00007ff54f715f80 RCX: 00007ff54f579eb9
[  551.709006][T11169] RDX: 0000000000000007 RSI: 0000000020000040 RDI: 0000000000000004
[  551.716958][T11169] RBP: 00007ff5503f3090 R08: 0000000000000000 R09: 0000000000000000
[  551.724911][T11169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  551.732876][T11169] R13: 0000000000000000 R14: 00007ff54f715f80 R15: 00007fff273bc7e8
[  551.740852][T11169]  </TASK>
[  552.491943][T11184] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1746'.
[  553.176789][   T12] team0 (unregistering): Port device team_slave_1 removed
[  553.314588][T11187] xt_CT: You must specify a L4 protocol and not use inversions on it
[  553.344529][   T12] team0 (unregistering): Port device team_slave_0 removed
[  553.514192][T11187] netlink: 'syz.4.1747': attribute type 1 has an invalid length.
[  553.523321][T11187] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.1747'.
[  554.799513][T11197] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1749'.
[  556.393377][T10979] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  556.440309][T10979] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  556.463888][T10979] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  556.486786][T10979] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  557.826349][T11238] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1756'.
[  558.723232][T10979] 8021q: adding VLAN 0 to HW filter on device bond0
[  558.780282][T11245] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1758'.
[  559.434570][T10979] 8021q: adding VLAN 0 to HW filter on device team0
[  559.487159][ T1075] bridge0: port 1(bridge_slave_0) entered blocking state
[  559.494373][ T1075] bridge0: port 1(bridge_slave_0) entered forwarding state
[  559.560767][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  559.567897][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  559.877492][T11255] sp0: Synchronizing with TNC
[  559.893181][T11258] xt_CT: You must specify a L4 protocol and not use inversions on it
[  560.427637][T10979] 8021q: adding VLAN 0 to HW filter on device batadv0
[  561.336614][   T29] audit: type=1326 audit(1725215813.126:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  561.491666][   T29] audit: type=1326 audit(1725215813.136:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  561.513219][    C1] vkms_vblank_simulate: vblank timer overrun
[  561.634843][   T29] audit: type=1326 audit(1725215813.136:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  561.667159][   T29] audit: type=1326 audit(1725215813.136:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  561.847229][T11290] FAULT_INJECTION: forcing a failure.
[  561.847229][T11290] name failslab, interval 1, probability 0, space 0, times 0
[  561.880945][   T29] audit: type=1326 audit(1725215813.136:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  561.902845][T11290] CPU: 1 UID: 0 PID: 11290 Comm: syz.0.1765 Not tainted 6.11.0-rc6-syzkaller #0
[  561.911866][T11290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  561.921907][T11290] Call Trace:
[  561.925168][T11290]  <TASK>
[  561.928078][T11290]  dump_stack_lvl+0x241/0x360
[  561.932743][T11290]  ? __pfx_dump_stack_lvl+0x10/0x10
[  561.937924][T11290]  ? __pfx__printk+0x10/0x10
[  561.942497][T11290]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  561.947940][T11290]  ? __pfx___might_resched+0x10/0x10
[  561.953211][T11290]  should_fail_ex+0x3b0/0x4e0
[  561.957871][T11290]  should_failslab+0xac/0x100
[  561.962539][T11290]  ? __se_sys_mount+0x15a/0x3c0
[  561.967378][T11290]  __kmalloc_cache_noprof+0x6c/0x2c0
[  561.972646][T11290]  ? memdup_user+0x9f/0xc0
[  561.977043][T11290]  __se_sys_mount+0x15a/0x3c0
[  561.981706][T11290]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  561.987688][T11290]  ? __pfx___se_sys_mount+0x10/0x10
[  561.992903][T11290]  ? do_syscall_64+0x100/0x230
[  561.997662][T11290]  ? __x64_sys_mount+0x20/0xc0
[  562.002420][T11290]  do_syscall_64+0xf3/0x230
[  562.006908][T11290]  ? clear_bhb_loop+0x35/0x90
[  562.011576][T11290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.017471][T11290] RIP: 0033:0x7f63aa979eb9
[  562.021884][T11290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.041477][T11290] RSP: 002b:00007f63ab774038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  562.049875][T11290] RAX: ffffffffffffffda RBX: 00007f63aab15f80 RCX: 00007f63aa979eb9
[  562.057835][T11290] RDX: 0000000020000080 RSI: 0000000020000280 RDI: 0000000000000000
[  562.065808][T11290] RBP: 00007f63ab774090 R08: 0000000020000300 R09: 0000000000000000
[  562.073768][T11290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.081719][T11290] R13: 0000000000000000 R14: 00007f63aab15f80 R15: 00007fffebe5b828
[  562.089681][T11290]  </TASK>
[  562.092869][    C1] vkms_vblank_simulate: vblank timer overrun
[  562.107875][   T29] audit: type=1326 audit(1725215813.136:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  562.129453][    C1] vkms_vblank_simulate: vblank timer overrun
[  562.146650][   T29] audit: type=1326 audit(1725215813.146:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  562.198703][   T29] audit: type=1326 audit(1725215813.146:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  562.250839][   T29] audit: type=1326 audit(1725215813.146:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  562.324631][   T29] audit: type=1326 audit(1725215813.146:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11269 comm="syz.0.1762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  562.346279][    C1] vkms_vblank_simulate: vblank timer overrun
[  562.759045][T11302] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1766'.
[  563.129150][T10979] veth0_vlan: entered promiscuous mode
[  563.370118][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  563.638993][T10979] veth1_vlan: entered promiscuous mode
[  563.694475][T11313] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1770'.
[  563.811761][T10979] veth0_macvtap: entered promiscuous mode
[  563.836140][T10979] veth1_macvtap: entered promiscuous mode
[  563.923370][T11325] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1769'.
[  564.556023][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  564.602974][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.649202][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  564.684817][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.715248][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  564.750238][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.786048][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  564.798808][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.819998][T10979] batman_adv: batadv0: Interface activated: batadv_slave_0
[  564.859007][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  564.887759][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.898954][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  564.926442][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.956872][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  564.982150][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  565.024180][T10979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  565.061403][T10979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  565.104346][T10979] batman_adv: batadv0: Interface activated: batadv_slave_1
[  565.281906][T10979] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  565.291349][T10979] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  565.306913][T10979] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  565.317309][T10979] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  566.288945][T11360] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1778'.
[  567.485322][ T2560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  567.506750][ T2560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  567.560895][T11374] sp0: Synchronizing with TNC
[  567.594408][ T2560] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  567.631853][ T2560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  567.654513][T11377] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1782'.
[  568.587962][T11386] netlink: 'syz.4.1784': attribute type 10 has an invalid length.
[  568.689835][T11386] team0: Failed to send options change via netlink (err -105)
[  568.744650][T11386] team0: Port device netdevsim0 added
[  568.932236][T11392] netlink: 'syz.4.1784': attribute type 10 has an invalid length.
[  569.094094][T11402] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1786'.
[  569.913926][T11392] team0: Port device netdevsim0 removed
[  572.162273][T11392] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  572.251919][T11396] netlink: 'syz.2.1785': attribute type 5 has an invalid length.
[  572.415084][T11418] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1790'.
[  573.415246][T11422] @: renamed from vlan0
[  573.437049][T11424] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1793'.
[  573.811684][   T35] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.153330][T11413] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  575.314992][   T35] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.442316][T11445] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1799'.
[  576.049555][   T35] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  576.320621][ T5304] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  576.343112][ T5242] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  576.358787][ T5242] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  576.367805][ T5242] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  576.378396][ T5242] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  576.395953][ T5242] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  576.404140][ T5242] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  576.505359][T11464] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1803'.
[  577.172198][   T35] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  577.182990][ T5304] usb 1-1: Using ep0 maxpacket: 8
[  577.239856][ T5304] usb 1-1: config 0 has an invalid interface number: 207 but max is 0
[  577.260833][ T5304] usb 1-1: config 0 has no interface number 0
[  577.281957][ T5304] usb 1-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  577.317446][ T5304] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.368347][ T5304] usb 1-1: Product: syz
[  577.377510][ T5304] usb 1-1: Manufacturer: syz
[  577.388172][ T5304] usb 1-1: SerialNumber: syz
[  577.526909][ T5304] usb 1-1: config 0 descriptor??
[  577.699631][ T5276] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  577.930288][ T5276] usb 2-1: device descriptor read/64, error -71
[  578.191947][ T5304] r8712u: register rtl8712_netdev_ops to netdev_ops
[  578.209920][ T5304] usb 1-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  578.284021][ T5304] usb 1-1: r8712u: Boot from EFUSE: Autoload Failed
[  578.303915][ T5304] usb 1-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  578.333707][ T5304] usb 1-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  578.341880][ T5276] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  578.386197][ T5304] usb 1-1: USB disconnect, device number 18
[  578.424513][   T35] bridge_slave_1: left allmulticast mode
[  578.449391][ T5242] Bluetooth: hci1: command tx timeout
[  578.452958][   T35] bridge_slave_1: left promiscuous mode
[  578.478047][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  578.510006][   T35] bridge_slave_0: left allmulticast mode
[  578.516094][   T35] bridge_slave_0: left promiscuous mode
[  578.521906][ T5276] usb 2-1: device descriptor read/64, error -71
[  578.528700][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  578.662606][ T5276] usb usb2-port1: attempt power cycle
[  579.399491][ T5276] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  579.452186][ T5276] usb 2-1: device descriptor read/8, error -71
[  579.769757][ T5276] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  579.937933][ T5276] usb 2-1: device descriptor read/8, error -71
[  580.531659][ T5242] Bluetooth: hci1: command tx timeout
[  580.531766][ T5276] usb usb2-port1: unable to enumerate USB device
[  580.789312][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  580.789332][   T29] audit: type=1326 audit(1725215833.366:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  580.882835][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  580.924418][   T29] audit: type=1326 audit(1725215833.366:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  580.976127][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  581.021738][   T35] bond0 (unregistering): Released all slaves
[  581.850784][   T29] audit: type=1326 audit(1725215833.366:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  581.872647][    C0] vkms_vblank_simulate: vblank timer overrun
[  582.027220][   T29] audit: type=1326 audit(1725215833.366:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.108816][T11504] macvlan2: entered promiscuous mode
[  582.205361][   T29] audit: type=1326 audit(1725215833.366:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.206355][T11504] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  582.274433][   T29] audit: type=1326 audit(1725215833.366:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.369570][   T29] audit: type=1326 audit(1725215833.366:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.431981][T11504] team0: Port device macvlan2 added
[  582.444721][   T29] audit: type=1326 audit(1725215833.366:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.573399][   T29] audit: type=1326 audit(1725215833.366:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.619153][T10981] Bluetooth: hci1: command tx timeout
[  582.629565][   T29] audit: type=1326 audit(1725215833.366:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11485 comm="syz.0.1808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63aa979eb9 code=0x7ffc0000
[  582.826005][T11457] chnl_net:caif_netlink_parms(): no params data found
[  584.694186][T10981] Bluetooth: hci1: command tx timeout
[  584.854730][T11516] 8021q: adding VLAN 0 to HW filter on device batadv0
[  584.880860][T11516] team0: Port device batadv0 added
[  585.275254][ T5339] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  585.283455][   T35] hsr_slave_0: left promiscuous mode
[  585.297574][   T35] hsr_slave_1: left promiscuous mode
[  585.304422][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  585.318836][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  585.887691][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  585.895356][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  585.979201][ T5339] usb 2-1: Using ep0 maxpacket: 8
[  586.053666][T11552] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  586.573143][ T5339] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  586.585842][ T5339] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  586.616278][   T35] veth1_macvtap: left promiscuous mode
[  586.620385][ T5339] usb 2-1: config 0 descriptor??
[  586.740495][   T35] veth0_macvtap: left promiscuous mode
[  586.838573][   T35] veth1_vlan: left promiscuous mode
[  586.874465][   T35] veth0_vlan: left promiscuous mode
[  589.165999][T11574] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  590.269524][T11580] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  591.287079][   T35] team0 (unregistering): Port device team_slave_1 removed
[  591.337895][   T35] team0 (unregistering): Port device team_slave_0 removed
[  591.433675][ T9658] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  591.627591][ T9658] usb 5-1: Using ep0 maxpacket: 16
[  591.636758][ T9658] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  591.650317][ T9658] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  591.659645][ T9658] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  591.667665][ T9658] usb 5-1: Product: syz
[  591.675575][ T9658] usb 5-1: Manufacturer: syz
[  591.681211][ T9658] usb 5-1: SerialNumber: syz
[  591.689545][ T9658] usb 5-1: config 0 descriptor??
[  591.719405][ T9658] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  592.055763][ T5339] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  592.057664][ T5309] usb 5-1: USB disconnect, device number 29
[  592.089357][ T5339] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  592.112951][ T1118] usb 5-1: Failed to submit usb control message: -71
[  592.140845][T11457] bridge0: port 1(bridge_slave_0) entered blocking state
[  592.148092][T11457] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.156991][ T1118] usb 5-1: unable to send the bmi data to the device: -71
[  592.169495][ T5339] asix 2-1:0.0: probe with driver asix failed with error -71
[  592.179800][T11457] bridge_slave_0: entered allmulticast mode
[  592.194964][ T1118] usb 5-1: unable to get target info from device
[  592.198819][T11457] bridge_slave_0: entered promiscuous mode
[  592.213923][ T5339] usb 2-1: USB disconnect, device number 23
[  592.219993][ T1118] usb 5-1: could not get target info (-71)
[  592.236071][ T1118] usb 5-1: could not probe fw (-71)
[  592.290302][T11457] bridge0: port 2(bridge_slave_1) entered blocking state
[  592.322009][T11457] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.333726][T11457] bridge_slave_1: entered allmulticast mode
[  592.370593][T11457] bridge_slave_1: entered promiscuous mode
[  592.616508][T11457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  592.701782][T11457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  592.841738][T11591] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1827'.
[  593.349434][T11591] Κό: entered promiscuous mode
[  593.396131][T11457] team0: Port device team_slave_0 added
[  593.460771][T11457] team0: Port device team_slave_1 added
[  593.580035][T11457] batman_adv: batadv0: Adding interface: batadv_slave_0
[  593.597949][T11457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.653811][ T9658] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  593.719281][T11457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  593.748579][T11457] batman_adv: batadv0: Adding interface: batadv_slave_1
[  593.783086][T11457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.868871][T11457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  593.881960][ T9658] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  593.905296][ T9658] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  593.945054][ T9658] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  594.000708][ T9658] usb 1-1: Product: syz
[  594.005494][ T9658] usb 1-1: Manufacturer: syz
[  594.020064][ T9658] usb 1-1: SerialNumber: syz
[  594.365757][T11457] hsr_slave_0: entered promiscuous mode
[  594.380911][T11457] hsr_slave_1: entered promiscuous mode
[  594.399536][T11457] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  594.407140][T11457] Cannot create hsr debugfs directory
[  595.065832][T11625] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1832'.
[  595.375807][ T5309] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  596.092325][ T9658] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  596.104605][ T5309] usb 5-1: Using ep0 maxpacket: 8
[  596.114204][ T9658] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  596.135161][ T5309] usb 5-1: config 0 has an invalid interface number: 207 but max is 0
[  596.146154][ T9658] cdc_ncm 1-1:1.0: setting rx_max = 2048
[  596.155170][ T5309] usb 5-1: config 0 has no interface number 0
[  596.174616][ T5309] usb 5-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  596.201788][ T5309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  596.221992][ T5309] usb 5-1: Product: syz
[  596.226199][ T5309] usb 5-1: Manufacturer: syz
[  596.256406][ T5309] usb 5-1: SerialNumber: syz
[  596.271894][ T5309] usb 5-1: config 0 descriptor??
[  596.304997][ T9658] cdc_ncm 1-1:1.0: setting tx_max = 88
[  596.667933][ T9658] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  596.685918][ T5309] r8712u: register rtl8712_netdev_ops to netdev_ops
[  596.713535][ T5309] usb 5-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  596.723522][ T9658] usb 1-1: USB disconnect, device number 19
[  596.744844][ T9658] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[  596.754232][ T5309] usb 5-1: r8712u: Boot from EFUSE: Autoload Failed
[  596.765653][ T5309] usb 5-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  596.775607][ T5309] usb 5-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  596.791635][ T5309] usb 5-1: USB disconnect, device number 30
[  597.350616][T11457] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  597.365860][T11457] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  597.474978][T11457] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  597.526656][T11666] sp0: Synchronizing with TNC
[  597.533427][T11457] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  598.742366][T11457] 8021q: adding VLAN 0 to HW filter on device bond0
[  598.842905][T11457] 8021q: adding VLAN 0 to HW filter on device team0
[  598.876605][ T1075] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.883757][ T1075] bridge0: port 1(bridge_slave_0) entered forwarding state
[  598.956153][ T1118] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.963430][ T1118] bridge0: port 2(bridge_slave_1) entered forwarding state
[  599.010752][T11457] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  599.013104][T11688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1843'.
[  599.027961][T11457] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  599.149320][T11688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1843'.
[  599.579926][ T5309] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  599.614011][T11457] 8021q: adding VLAN 0 to HW filter on device batadv0
[  599.810676][T11457] veth0_vlan: entered promiscuous mode
[  599.822080][ T5309] usb 1-1: New USB device found, idVendor=1235, idProduct=000e, bcdDevice=f0.ee
[  600.006331][T11457] veth1_vlan: entered promiscuous mode
[  600.105051][ T5309] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.122112][ T5309] usb 1-1: config 0 descriptor??
[  600.131587][ T5309] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  600.191085][ T5309] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -2
[  600.237142][T11468] udevd[11468]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  600.319947][T11457] veth0_macvtap: entered promiscuous mode
[  600.519876][T11457] veth1_macvtap: entered promiscuous mode
[  600.679793][T11730] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  601.361745][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.378434][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.415869][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.427635][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.443573][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.467572][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.481245][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.494359][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.535478][T11457] batman_adv: batadv0: Interface activated: batadv_slave_0
[  601.582263][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.708443][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.788623][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.871346][ T5339] usb 1-1: USB disconnect, device number 20
[  601.919962][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.953616][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.995049][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.006929][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  602.051175][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.097475][T11457] batman_adv: batadv0: Interface activated: batadv_slave_1
[  602.176852][T11457] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  602.209270][T11457] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  602.230539][T11457] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  602.243297][T11457] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  602.510883][ T1118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.548774][ T1118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.667874][ T1118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.720082][ T1118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.855461][T11773] syz.4.1858[11773] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  602.855606][T11773] syz.4.1858[11773] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  604.101077][T11790] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1860'.
[  604.426367][T11788] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1798'.
[  608.150863][T11836] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1868'.
[  609.415012][ T5275] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  611.401465][ T5275] usb 5-1: device descriptor read/64, error -71
[  612.369428][T11844] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1872'.
[  612.539554][T11856] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1873'.
[  613.019141][ T5224] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  613.361165][ T5275] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  613.389299][ T5224] usb 4-1: Using ep0 maxpacket: 8
[  613.415234][ T5224] usb 4-1: config 0 has an invalid interface number: 207 but max is 0
[  613.445575][ T5224] usb 4-1: config 0 has no interface number 0
[  613.514438][ T5224] usb 4-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  613.529224][ T5224] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  613.557564][ T5224] usb 4-1: Product: syz
[  613.565739][ T5224] usb 4-1: Manufacturer: syz
[  613.689160][ T5224] usb 4-1: SerialNumber: syz
[  613.749190][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  613.769105][ T5224] usb 4-1: config 0 descriptor??
[  613.779161][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  613.796862][ T5275] usb 5-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[  613.839419][ T5275] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.946100][ T5275] usb 5-1: config 0 descriptor??
[  614.206233][ T5224] r8712u: register rtl8712_netdev_ops to netdev_ops
[  614.226516][ T5224] usb 4-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  614.259835][T11852] netlink: 'syz.4.1875': attribute type 10 has an invalid length.
[  614.277912][ T5224] usb 4-1: r8712u: Boot from EFUSE: Autoload Failed
[  614.284708][T11852] netlink: 55 bytes leftover after parsing attributes in process `syz.4.1875'.
[  614.295839][ T5224] usb 4-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  614.308164][ T5224] usb 4-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  614.369297][ T5224] usb 4-1: USB disconnect, device number 24
[  614.812009][ T5275] usbhid 5-1:0.0: can't add hid device: -71
[  614.837874][ T5275] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  614.877520][ T5275] usb 5-1: USB disconnect, device number 32
[  614.884691][T11895] netlink: 'syz.2.1883': attribute type 10 has an invalid length.
[  614.937583][T11895] team0: Failed to send options change via netlink (err -105)
[  614.976864][T11895] team0: Port device netdevsim0 added
[  614.999961][ T1301] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  615.117763][T11900] netlink: 'syz.2.1883': attribute type 10 has an invalid length.
[  615.175717][T11900] team0: Failed to send options change via netlink (err -105)
[  615.230167][T11900] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  615.311166][T11900] team0: Port device netdevsim0 removed
[  615.353526][T11900] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  615.864727][T11927] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  616.510703][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  616.510720][   T29] audit: type=1326 audit(1725215869.096:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  616.650418][   T29] audit: type=1326 audit(1725215869.096:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  616.689539][   T29] audit: type=1326 audit(1725215869.096:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  616.711726][    C0] vkms_vblank_simulate: vblank timer overrun
[  616.816219][   T29] audit: type=1326 audit(1725215869.096:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  616.954449][   T29] audit: type=1326 audit(1725215869.096:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  617.033427][T11940] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1891'.
[  617.179106][   T29] audit: type=1326 audit(1725215869.096:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  617.464880][   T29] audit: type=1326 audit(1725215869.096:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  617.846434][T11954] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1895'.
[  618.146033][   T29] audit: type=1326 audit(1725215869.096:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  618.227693][   T29] audit: type=1326 audit(1725215869.096:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  618.349984][   T29] audit: type=1326 audit(1725215869.096:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11904 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  618.489201][ T5304] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  618.497037][ T9474] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  618.649456][ T9474] usb 3-1: device descriptor read/64, error -71
[  618.679268][ T5304] usb 2-1: Using ep0 maxpacket: 8
[  618.687249][ T5304] usb 2-1: config 0 has an invalid interface number: 207 but max is 0
[  618.696218][ T5304] usb 2-1: config 0 has no interface number 0
[  618.727416][ T5304] usb 2-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  618.753996][ T5304] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.776263][ T5304] usb 2-1: Product: syz
[  618.781561][ T5304] usb 2-1: Manufacturer: syz
[  618.788226][ T5304] usb 2-1: SerialNumber: syz
[  618.818959][ T5304] usb 2-1: config 0 descriptor??
[  618.919354][ T9474] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  619.049374][ T5304] r8712u: register rtl8712_netdev_ops to netdev_ops
[  619.075010][ T5304] usb 2-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  619.089477][ T9474] usb 3-1: device descriptor read/64, error -71
[  619.111334][ T5304] usb 2-1: r8712u: Boot from EFUSE: Autoload Failed
[  619.117991][ T5304] usb 2-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  619.130312][ T5304] usb 2-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  619.159440][ T5304] usb 2-1: USB disconnect, device number 24
[  619.252666][ T9474] usb usb3-port1: attempt power cycle
[  619.979355][ T5224] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  620.193228][ T5224] usb 1-1: config 0 has an invalid interface number: 5 but max is 0
[  620.202570][ T5224] usb 1-1: config 0 has no interface number 0
[  620.226153][ T5224] usb 1-1: config 0 interface 5 altsetting 0 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  620.250011][ T5224] usb 1-1: config 0 interface 5 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  620.269620][ T5224] usb 1-1: New USB device found, idVendor=3923, idProduct=7a0b, bcdDevice= 2.32
[  620.285326][ T5224] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  620.295441][ T5224] usb 1-1: Product: syz
[  620.303848][ T5224] usb 1-1: Manufacturer: syz
[  620.310903][ T5224] usb 1-1: SerialNumber: syz
[  620.319641][ T9474] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  620.327263][ T5224] usb 1-1: config 0 descriptor??
[  620.342302][ T5224] cp210x 1-1:0.5: cp210x converter detected
[  620.436348][ T9474] usb 3-1: device descriptor read/8, error -71
[  620.565107][T11986] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1904'.
[  622.721895][ T5224] cp210x 1-1:0.5: failed to get vendor val 0x370b size 1: -71
[  622.737380][ T5224] cp210x 1-1:0.5: querying part number failed
[  622.757395][ T5224] usb 1-1: cp210x converter now attached to ttyUSB0
[  622.775354][ T5224] usb 1-1: USB disconnect, device number 21
[  622.790200][ T5224] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  622.813354][ T5224] cp210x 1-1:0.5: device disconnected
[  622.925123][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  622.925143][   T29] audit: type=1326 audit(1725215875.506:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.153337][   T29] audit: type=1326 audit(1725215875.506:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.174954][    C0] vkms_vblank_simulate: vblank timer overrun
[  623.323501][T12016] xt_CT: You must specify a L4 protocol and not use inversions on it
[  623.378097][   T29] audit: type=1326 audit(1725215875.506:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.489188][   T29] audit: type=1326 audit(1725215875.506:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.522440][   T29] audit: type=1326 audit(1725215875.506:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.546760][   T29] audit: type=1326 audit(1725215875.506:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.610975][   T29] audit: type=1326 audit(1725215875.506:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.633488][   T29] audit: type=1326 audit(1725215875.506:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.668094][   T29] audit: type=1326 audit(1725215875.506:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  623.695280][T12000] delete_channel: no stack
[  623.756736][   T29] audit: type=1326 audit(1725215875.506:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11983 comm="syz.1.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  624.409336][ T5275] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  624.619355][ T5275] usb 1-1: Using ep0 maxpacket: 8
[  624.634031][ T5275] usb 1-1: config 0 has an invalid interface number: 207 but max is 0
[  624.652387][ T5275] usb 1-1: config 0 has no interface number 0
[  624.664801][ T5275] usb 1-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  624.677219][ T5275] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  624.688285][ T5275] usb 1-1: Product: syz
[  624.692744][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  624.709230][ T5275] usb 1-1: Manufacturer: syz
[  624.714297][ T5275] usb 1-1: SerialNumber: syz
[  624.743046][ T5275] usb 1-1: config 0 descriptor??
[  624.964816][ T5275] r8712u: register rtl8712_netdev_ops to netdev_ops
[  624.979832][ T5275] usb 1-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  624.996097][ T5275] usb 1-1: r8712u: Boot from EFUSE: Autoload Failed
[  625.004056][ T5275] usb 1-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  625.015870][ T5275] usb 1-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  625.044472][ T5275] usb 1-1: USB disconnect, device number 22
[  625.620599][T12059] input: syz1 as /devices/virtual/input/input7
[  627.285816][T12078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1928'.
[  628.069290][ T5224] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  632.594279][ T5224] usb 2-1: device descriptor read/all, error -71
[  633.206176][T12122] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  633.231641][T12122] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1941'.
[  634.375628][T12134] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1943'.
[  634.399336][ T9474] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  634.659374][ T9474] usb 4-1: Using ep0 maxpacket: 8
[  635.060256][T12137] af_packet: tpacket_rcv: packet too big, clamped from 57 to 4294967272. macoff=96
[  635.068965][ T9474] usb 4-1: config 135 has an invalid interface number: 230 but max is 0
[  635.162464][ T9474] usb 4-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  635.243372][ T9474] usb 4-1: config 135 has no interface number 0
[  635.254399][ T9474] usb 4-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30
[  635.381784][ T9474] usb 4-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53
[  635.395515][ T9474] usb 4-1: config 135 interface 230 has no altsetting 0
[  635.409908][ T9474] usb 4-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  635.419118][ T9474] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  635.438210][ T9474] usb 4-1: Product: syz
[  635.442633][ T9474] usb 4-1: Manufacturer: syz
[  635.447587][ T9474] usb 4-1: SerialNumber: syz
[  636.653507][ T9474] usb 4-1: can't set config #135, error -71
[  636.830075][ T9474] usb 4-1: USB disconnect, device number 25
[  638.089256][ T5276] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  638.189243][ T9658] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  638.280173][ T5276] usb 3-1: Using ep0 maxpacket: 8
[  638.295875][ T5276] usb 3-1: config 0 has an invalid interface number: 207 but max is 0
[  638.313864][ T5276] usb 3-1: config 0 has no interface number 0
[  638.328099][ T5276] usb 3-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  638.338475][ T5276] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.349349][ T5276] usb 3-1: Product: syz
[  638.353615][ T5276] usb 3-1: Manufacturer: syz
[  638.358367][ T5276] usb 3-1: SerialNumber: syz
[  638.366392][ T5276] usb 3-1: config 0 descriptor??
[  638.419249][ T9658] usb 2-1: Using ep0 maxpacket: 8
[  638.495771][ T9658] usb 2-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=32.a3
[  638.581228][ T9658] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.659788][ T5276] r8712u: register rtl8712_netdev_ops to netdev_ops
[  638.694023][ T5276] usb 3-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  638.709149][ T9658] usb 2-1: Product: syz
[  638.709755][ T5276] usb 3-1: r8712u: Boot from EFUSE: Autoload Failed
[  638.732735][ T9658] usb 2-1: Manufacturer: syz
[  638.747668][ T5276] usb 3-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  638.754929][ T9658] usb 2-1: SerialNumber: syz
[  638.775665][ T9658] usb 2-1: config 0 descriptor??
[  638.800518][ T5276] usb 3-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  638.865454][ T5276] usb 3-1: USB disconnect, device number 29
[  639.026987][ T9658] msi2500 2-1:0.0: Registered as swradio16
[  639.055010][ T9658] msi2500 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  639.431062][T12180] netlink: 'syz.4.1957': attribute type 10 has an invalid length.
[  639.484192][T12180] bond0: (slave netdevsim0): Releasing backup interface
[  639.692151][T12180] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  639.703216][T12180] team0: Failed to send options change via netlink (err -105)
[  639.711156][T12180] team0: Port device netdevsim0 added
[  639.758256][T12182] netlink: 'syz.4.1957': attribute type 10 has an invalid length.
[  639.767470][ T5276] usb 2-1: USB disconnect, device number 27
[  639.936022][T12182] team0: Failed to send options change via netlink (err -105)
[  640.005780][T12182] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  640.050675][T12182] team0: Port device netdevsim0 removed
[  640.206472][T12182] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  641.094733][T12204] netlink: 'syz.4.1963': attribute type 10 has an invalid length.
[  641.168050][T12206] binder: 12205:12206 ioctl c018620c 20000000 returned -22
[  641.191699][T12204] bond0: (slave netdevsim0): Releasing backup interface
[  641.204897][T12204] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  641.219423][T12204] team0: Failed to send options change via netlink (err -105)
[  641.228536][T12204] team0: Port device netdevsim0 added
[  641.235309][T12208] netlink: 'syz.4.1963': attribute type 10 has an invalid length.
[  641.265522][T12208] team0: Failed to send options change via netlink (err -105)
[  641.274663][T12208] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  641.286176][T12208] team0: Port device netdevsim0 removed
[  641.294547][T12208] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  641.409296][   T57] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  641.473879][ T5276] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  641.529256][ T9658] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  641.599125][   T57] usb 4-1: Using ep0 maxpacket: 16
[  641.606791][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  641.621333][   T57] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  641.638354][   T57] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  641.646803][   T57] usb 4-1: Product: syz
[  641.651154][   T57] usb 4-1: Manufacturer: syz
[  641.655848][   T57] usb 4-1: SerialNumber: syz
[  641.664574][   T57] usb 4-1: config 0 descriptor??
[  641.683763][ T5276] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.703243][   T57] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  641.716096][ T5276] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  641.730343][ T9658] usb 1-1: Using ep0 maxpacket: 8
[  641.745599][ T9658] usb 1-1: config 0 has an invalid interface number: 207 but max is 0
[  641.755225][ T9658] usb 1-1: config 0 has no interface number 0
[  641.762563][ T5276] usb 2-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[  641.764446][ T9658] usb 1-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  641.785621][ T9658] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  641.793982][ T9658] usb 1-1: Product: syz
[  641.798236][ T9658] usb 1-1: Manufacturer: syz
[  641.802965][ T9658] usb 1-1: SerialNumber: syz
[  641.807681][ T5276] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  641.819326][ T9658] usb 1-1: config 0 descriptor??
[  641.840771][ T5276] usb 2-1: config 0 descriptor??
[  642.011235][ T1301] usb 4-1: Failed to submit usb control message: -71
[  642.018506][ T1301] usb 4-1: unable to send the bmi data to the device: -71
[  642.031925][ T5304] usb 4-1: USB disconnect, device number 26
[  642.090269][T12206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  642.105370][ T1301] usb 4-1: unable to get target info from device
[  642.116146][T12206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  642.118330][ T9658] r8712u: register rtl8712_netdev_ops to netdev_ops
[  642.145599][ T1301] usb 4-1: could not get target info (-71)
[  642.162361][ T1301] usb 4-1: could not probe fw (-71)
[  642.172826][ T9658] usb 1-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  642.197290][ T9658] usb 1-1: r8712u: Boot from EFUSE: Autoload Failed
[  642.216852][ T9658] usb 1-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  642.228864][ T9658] usb 1-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  642.282200][ T9658] usb 1-1: USB disconnect, device number 23
[  642.333355][T12206] netlink: 'syz.1.1965': attribute type 10 has an invalid length.
[  642.388396][T12206] bond0: (slave bond_slave_0): Releasing backup interface
[  642.481852][T12206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  642.489401][   T57] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  642.508504][T12206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  642.534722][ T5276] usbhid 2-1:0.0: can't add hid device: -71
[  642.540924][ T5276] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  642.558784][ T5276] usb 2-1: USB disconnect, device number 28
[  642.679116][   T57] usb 3-1: Using ep0 maxpacket: 8
[  642.694856][   T57] usb 3-1: New USB device found, idVendor=0763, idProduct=2880, bcdDevice=d0.ab
[  642.721290][   T57] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  642.747136][   T57] usb 3-1: Product: syz
[  642.755515][   T57] usb 3-1: Manufacturer: syz
[  642.770544][   T57] usb 3-1: SerialNumber: syz
[  642.880197][   T57] usb 3-1: config 0 descriptor??
[  642.887115][T12235] netlink: 'syz.0.1974': attribute type 10 has an invalid length.
[  642.985409][T12235] team0: Failed to send options change via netlink (err -105)
[  642.993436][T12235] team0: Port device netdevsim0 added
[  643.460548][T12244] netlink: 'syz.0.1974': attribute type 10 has an invalid length.
[  643.804429][T12244] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  643.879811][T12244] team0: Failed to send options change via netlink (err -105)
[  643.914621][T12244] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  643.945540][T12244] team0: Port device netdevsim0 removed
[  643.964870][T12244] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  644.189154][ T5276] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  644.409197][ T5276] usb 5-1: Using ep0 maxpacket: 16
[  644.418654][ T5276] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  644.429939][ T5276] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  644.439778][ T5276] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40
[  644.455406][ T5276] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.476650][ T5276] usb 5-1: config 0 descriptor??
[  646.111781][T10469] usb 3-1: USB disconnect, device number 30
[  647.958007][ T9474] usb 5-1: USB disconnect, device number 33
[  648.173474][T12289] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1987'.
[  648.649685][ T9658] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  650.358232][ T9658] usb 3-1: Using ep0 maxpacket: 8
[  650.375208][ T9658] usb 3-1: config 0 has an invalid interface number: 207 but max is 0
[  650.389911][ T9658] usb 3-1: config 0 has no interface number 0
[  650.401436][ T9658] usb 3-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  650.419463][ T9658] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.446189][ T9658] usb 3-1: Product: syz
[  650.450618][ T9658] usb 3-1: Manufacturer: syz
[  650.455239][ T9658] usb 3-1: SerialNumber: syz
[  650.470627][ T9658] usb 3-1: config 0 descriptor??
[  650.724328][ T9658] r8712u: register rtl8712_netdev_ops to netdev_ops
[  650.736638][ T9658] usb 3-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  650.746718][ T9658] usb 3-1: r8712u: Boot from EFUSE: Autoload Failed
[  650.753514][ T9658] usb 3-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  650.761202][ T9658] usb 3-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  650.783507][ T9658] usb 3-1: USB disconnect, device number 31
[  651.045487][ T9474] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  651.119378][T10469] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  651.189274][ T5276] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  651.259300][ T9474] usb 5-1: Using ep0 maxpacket: 8
[  651.270089][ T9474] usb 5-1: config 0 has an invalid interface number: 207 but max is 0
[  651.278359][ T9474] usb 5-1: config 0 has no interface number 0
[  651.286978][ T9474] usb 5-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  651.296653][ T9474] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.307654][ T9474] usb 5-1: Product: syz
[  651.383425][T10469] usb 2-1: Using ep0 maxpacket: 16
[  651.388936][ T9474] usb 5-1: Manufacturer: syz
[  651.394669][T12321] xt_CT: You must specify a L4 protocol and not use inversions on it
[  651.404638][ T9474] usb 5-1: SerialNumber: syz
[  651.409679][ T5276] usb 4-1: Using ep0 maxpacket: 8
[  651.417371][T10469] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  651.436416][ T5276] usb 4-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  651.449301][ T9474] usb 5-1: config 0 descriptor??
[  651.469923][T10469] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  651.492413][ T5276] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  651.502786][T10469] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.516719][ T5276] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.527180][T10469] usb 2-1: Product: syz
[  652.204168][T10469] usb 2-1: Manufacturer: syz
[  652.213233][T10469] usb 2-1: SerialNumber: syz
[  652.230439][ T9474] r8712u: register rtl8712_netdev_ops to netdev_ops
[  652.251461][T10469] usb 2-1: config 0 descriptor??
[  652.258634][ T9474] usb 5-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  652.278421][ T9474] usb 5-1: r8712u: Boot from EFUSE: Autoload Failed
[  652.291927][ T9474] usb 5-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  652.305908][T10469] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  652.354850][ T9474] usb 5-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  652.409538][ T9474] usb 5-1: USB disconnect, device number 34
[  652.604052][   T57] usb 2-1: USB disconnect, device number 29
[  652.610214][ T1298] usb 2-1: Failed to submit usb control message: -71
[  652.617581][ T1298] usb 2-1: unable to send the bmi data to the device: -71
[  652.631221][ T1298] usb 2-1: unable to get target info from device
[  652.647119][ T1298] usb 2-1: could not get target info (-71)
[  652.653164][ T1298] usb 2-1: could not probe fw (-71)
[  652.779207][T10469] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  652.999101][T10469] usb 1-1: Using ep0 maxpacket: 16
[  653.092372][T10469] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=29.00
[  653.103263][T10469] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.112421][T10469] usb 1-1: Product: syz
[  653.117459][T10469] usb 1-1: Manufacturer: syz
[  653.124885][T10469] usb 1-1: SerialNumber: syz
[  653.723928][T10469] usb 1-1: config 0 descriptor??
[  653.735019][T10469] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  653.743947][T10469] usb 1-1: Detected FT4233HP
[  653.753820][T12344] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  653.867380][T12344] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  653.940502][ T9474] usb 4-1: USB disconnect, device number 27
[  653.978378][T12333] 9pnet_fd: Insufficient options for proto=fd
[  654.003690][T10469] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  654.034432][T10469] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  654.053873][T10469] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  654.081694][T10469] usb 1-1: USB disconnect, device number 24
[  654.096666][T12353] netlink: 'syz.3.2007': attribute type 10 has an invalid length.
[  654.107777][T10469] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  654.160680][T10469] ftdi_sio 1-1:0.0: device disconnected
[  654.182046][T12353] team0: Failed to send options change via netlink (err -105)
[  654.231708][T12353] team0: Port device netdevsim0 added
[  654.238925][T12355] netlink: 'syz.3.2007': attribute type 10 has an invalid length.
[  654.390052][T12355] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  654.435158][T12355] team0: Failed to send options change via netlink (err -105)
[  654.446160][T12355] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  654.469567][T12355] team0: Port device netdevsim0 removed
[  654.505120][T12355] bond0: (slave netdevsim0): Enslaving as an active interface with a down link
[  654.515958][T12363] netlink: 'syz.2.2009': attribute type 10 has an invalid length.
[  654.557927][T12363] bond0: (slave netdevsim0): Releasing backup interface
[  654.581099][T12363] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  654.581294][T12363] team0: Failed to send options change via netlink (err -105)
[  654.581313][T12363] team0: Port device netdevsim0 added
[  654.586342][T12364] netlink: 'syz.2.2009': attribute type 10 has an invalid length.
[  654.674689][T12364] team0: Failed to send options change via netlink (err -105)
[  654.693983][T12364] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  654.733554][T12364] team0: Port device netdevsim0 removed
[  654.805493][T12364] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  654.841145][T12370] netlink: 'syz.0.2012': attribute type 58 has an invalid length.
[  654.888870][T12371] Cannot find add_set index 0 as target
[  655.767434][T12381] xt_CT: You must specify a L4 protocol and not use inversions on it
[  655.882049][T12386] netlink: 'syz.1.2015': attribute type 10 has an invalid length.
[  655.987271][T12386] team0: Failed to send options change via netlink (err -105)
[  656.011251][T12386] team0: Port device netdevsim0 added
[  656.025142][T12388] netlink: 'syz.1.2015': attribute type 10 has an invalid length.
[  656.186320][T12388] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  656.336041][T12388] team0: Failed to send options change via netlink (err -105)
[  656.356770][T12388] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  656.376784][T12388] team0: Port device netdevsim0 removed
[  656.441888][T12388] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  657.816699][T12408] netlink: 'syz.4.2022': attribute type 11 has an invalid length.
[  657.882766][T12411] netlink: 'syz.3.2023': attribute type 10 has an invalid length.
[  657.912751][T12411] bond0: (slave netdevsim0): Releasing backup interface
[  657.952769][T12411] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  658.001879][T12411] team0: Failed to send options change via netlink (err -105)
[  658.020788][T12411] team0: Port device netdevsim0 added
[  658.053625][T12414] netlink: 'syz.3.2023': attribute type 10 has an invalid length.
[  658.128623][T12414] team0: Failed to send options change via netlink (err -105)
[  658.138584][T12414] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  658.152937][T12414] team0: Port device netdevsim0 removed
[  658.171064][T12414] bond0: (slave netdevsim0): Enslaving as an active interface with a down link
[  658.201483][T12422] fuse: Unknown parameter '0x0000000000000006'
[  658.245343][T12422] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  658.355461][   T57] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  658.659470][   T57] usb 1-1: Using ep0 maxpacket: 32
[  658.671416][   T57] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  658.690777][   T57] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  658.719256][   T57] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.727543][   T57] usb 1-1: Product: syz
[  658.731994][   T57] usb 1-1: Manufacturer: syz
[  658.736808][   T57] usb 1-1: SerialNumber: syz
[  658.802561][   T57] usb 1-1: config 0 descriptor??
[  658.834649][T12421] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  659.367268][   T57] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  660.273299][T12442] xt_CT: You must specify a L4 protocol and not use inversions on it
[  660.603359][T12421] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  660.759805][ T9474] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  661.220158][ T9474] usb 3-1: Using ep0 maxpacket: 16
[  661.303585][ T9474] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  661.339148][ T9474] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  661.355498][ T9474] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40
[  661.365043][ T9474] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.387652][T12421] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  661.397096][ T9474] usb 3-1: config 0 descriptor??
[  662.824608][ T5275] usb 1-1: USB disconnect, device number 25
[  663.305338][T12470] 8021q: adding VLAN 0 to HW filter on device batadv0
[  663.326969][T12470] team0: Port device batadv0 added
[  663.341047][T12473] netlink: 'syz.0.2039': attribute type 10 has an invalid length.
[  663.404084][T12473] bond0: (slave netdevsim0): Releasing backup interface
[  663.418100][T12473] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  663.436159][T12473] team0: Failed to send options change via netlink (err -105)
[  663.453073][T12473] team0: Port device netdevsim0 added
[  663.466519][T12476] netlink: 'syz.0.2039': attribute type 10 has an invalid length.
[  663.512716][T12476] team0: Failed to send options change via netlink (err -105)
[  663.525136][T12476] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  663.538074][T12476] team0: Port device netdevsim0 removed
[  663.624831][T12476] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  663.848681][   T57] usb 3-1: USB disconnect, device number 32
[  664.870970][T12497] xt_CT: You must specify a L4 protocol and not use inversions on it
[  665.752485][T12506] FAULT_INJECTION: forcing a failure.
[  665.752485][T12506] name failslab, interval 1, probability 0, space 0, times 0
[  665.779176][T12506] CPU: 1 UID: 0 PID: 12506 Comm: syz.1.2050 Not tainted 6.11.0-rc6-syzkaller #0
[  665.788331][T12506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  665.798381][T12506] Call Trace:
[  665.801650][T12506]  <TASK>
[  665.804576][T12506]  dump_stack_lvl+0x241/0x360
[  665.809247][T12506]  ? __pfx_dump_stack_lvl+0x10/0x10
[  665.814429][T12506]  ? __pfx__printk+0x10/0x10
[  665.819007][T12506]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  665.824556][T12506]  ? __pfx___might_resched+0x10/0x10
[  665.829833][T12506]  should_fail_ex+0x3b0/0x4e0
[  665.834503][T12506]  ? getname_flags+0xb7/0x540
[  665.839172][T12506]  should_failslab+0xac/0x100
[  665.843875][T12506]  ? getname_flags+0xb7/0x540
[  665.848574][T12506]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  665.853976][T12506]  getname_flags+0xb7/0x540
[  665.858505][T12506]  do_sys_openat2+0xd2/0x1d0
[  665.863126][T12506]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  665.869126][T12506]  ? __pfx_do_sys_openat2+0x10/0x10
[  665.874340][T12506]  ? __fget_files+0x3f6/0x470
[  665.879048][T12506]  __x64_sys_openat+0x247/0x2a0
[  665.883921][T12506]  ? __pfx___x64_sys_openat+0x10/0x10
[  665.889324][T12506]  ? do_syscall_64+0x100/0x230
[  665.894111][T12506]  ? do_syscall_64+0xb6/0x230
[  665.898810][T12506]  do_syscall_64+0xf3/0x230
[  665.903338][T12506]  ? clear_bhb_loop+0x35/0x90
[  665.908034][T12506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.913950][T12506] RIP: 0033:0x7ff54f578850
[  665.918390][T12506] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  665.938020][T12506] RSP: 002b:00007ff5503f2f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  665.946439][T12506] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff54f578850
[  665.954406][T12506] RDX: 0000000000000002 RSI: 00007ff5503f2fa0 RDI: 00000000ffffff9c
[  665.962369][T12506] RBP: 00007ff5503f2fa0 R08: 0000000000000000 R09: 00007ff5503f2cd7
[  665.970334][T12506] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  665.978331][T12506] R13: 0000000000000000 R14: 00007ff54f715f80 R15: 00007fff273bc7e8
[  665.986320][T12506]  </TASK>
[  666.268473][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  666.268492][   T29] audit: type=1326 audit(1725215918.846:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.343921][   T29] audit: type=1326 audit(1725215918.846:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.597740][   T29] audit: type=1326 audit(1725215918.846:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.641762][   T29] audit: type=1326 audit(1725215918.846:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.700922][   T29] audit: type=1326 audit(1725215918.846:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.722707][    C0] vkms_vblank_simulate: vblank timer overrun
[  666.797225][   T29] audit: type=1326 audit(1725215918.856:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.872121][   T29] audit: type=1326 audit(1725215918.856:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  666.940477][   T29] audit: type=1326 audit(1725215918.856:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  667.046975][   T29] audit: type=1326 audit(1725215918.856:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  667.090123][   T29] audit: type=1326 audit(1725215918.856:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12507 comm="syz.4.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd825f79eb9 code=0x7ffc0000
[  670.202498][T12560] 8021q: adding VLAN 0 to HW filter on device batadv0
[  670.228107][T12560] team0: Port device batadv0 added
[  670.235270][T12556] netlink: 'syz.1.2064': attribute type 10 has an invalid length.
[  670.270586][T12556] bond0: (slave netdevsim0): Releasing backup interface
[  670.304557][T12556] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  670.329384][T12556] team0: Failed to send options change via netlink (err -105)
[  670.336896][T12556] team0: Port device netdevsim0 added
[  670.362927][T12566] netlink: 'syz.1.2064': attribute type 10 has an invalid length.
[  670.389856][T10469] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  670.411276][T12566] team0: Failed to send options change via netlink (err -105)
[  670.419708][T12566] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  670.439771][T12566] team0: Port device netdevsim0 removed
[  670.448959][T12566] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  670.579196][T10469] usb 5-1: Using ep0 maxpacket: 32
[  670.591983][T10469] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  670.616457][T10469] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  670.740769][T10469] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  670.748818][T10469] usb 5-1: Product: syz
[  670.754061][T10469] usb 5-1: Manufacturer: syz
[  670.759817][T10469] usb 5-1: SerialNumber: syz
[  670.780601][T10469] usb 5-1: config 0 descriptor??
[  670.800515][T12552] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  671.139809][T10469] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  671.842503][ T5275] IPVS: starting estimator thread 0...
[  672.150583][T12586] IPVS: using max 23 ests per chain, 55200 per kthread
[  672.778000][T12552] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  672.931878][T12552] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  673.145048][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  673.145853][   T29] audit: type=1326 audit(1725215925.736:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.217583][ T5275] usb 5-1: USB disconnect, device number 35
[  673.311282][   T29] audit: type=1326 audit(1725215925.736:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.454939][   T29] audit: type=1326 audit(1725215925.736:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.493552][   T29] audit: type=1326 audit(1725215925.736:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.667647][   T29] audit: type=1326 audit(1725215925.736:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.692785][   T29] audit: type=1326 audit(1725215925.736:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.954001][   T29] audit: type=1326 audit(1725215925.736:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  673.985611][   T29] audit: type=1326 audit(1725215925.736:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  674.008141][   T29] audit: type=1326 audit(1725215925.736:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  674.008188][   T29] audit: type=1326 audit(1725215925.736:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12594 comm="syz.1.2072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff54f579eb9 code=0x7ffc0000
[  675.165738][T12621] FAULT_INJECTION: forcing a failure.
[  675.165738][T12621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  675.199448][T12621] CPU: 0 UID: 0 PID: 12621 Comm: syz.3.2080 Not tainted 6.11.0-rc6-syzkaller #0
[  675.208521][T12621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  675.218586][T12621] Call Trace:
[  675.221867][T12621]  <TASK>
[  675.224787][T12621]  dump_stack_lvl+0x241/0x360
[  675.229461][T12621]  ? __pfx_dump_stack_lvl+0x10/0x10
[  675.234649][T12621]  ? __pfx__printk+0x10/0x10
[  675.239229][T12621]  ? __pfx_lock_release+0x10/0x10
[  675.244247][T12621]  ? vfs_write+0x7c4/0xc90
[  675.248657][T12621]  should_fail_ex+0x3b0/0x4e0
[  675.253329][T12621]  _copy_from_user+0x2f/0xe0
[  675.257913][T12621]  get_nodes+0x40c/0x4e0
[  675.262153][T12621]  ? __fget_files+0x3f6/0x470
[  675.266823][T12621]  ? __pfx_get_nodes+0x10/0x10
[  675.271586][T12621]  __x64_sys_set_mempolicy+0x197/0x210
[  675.277043][T12621]  ? __pfx___x64_sys_set_mempolicy+0x10/0x10
[  675.283013][T12621]  ? do_syscall_64+0x100/0x230
[  675.287774][T12621]  ? do_syscall_64+0xb6/0x230
[  675.292442][T12621]  do_syscall_64+0xf3/0x230
[  675.296937][T12621]  ? clear_bhb_loop+0x35/0x90
[  675.301607][T12621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  675.307489][T12621] RIP: 0033:0x7fedd5f79eb9
[  675.311893][T12621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  675.331488][T12621] RSP: 002b:00007fedd6dc8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[  675.339894][T12621] RAX: ffffffffffffffda RBX: 00007fedd6115f80 RCX: 00007fedd5f79eb9
[  675.347857][T12621] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000001
[  675.355815][T12621] RBP: 00007fedd6dc8090 R08: 0000000000000000 R09: 0000000000000000
[  675.363774][T12621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  675.371734][T12621] R13: 0000000000000001 R14: 00007fedd6115f80 R15: 00007ffd180e4298
[  675.379792][T12621]  </TASK>
[  675.458386][T12623] netlink: 'syz.4.2078': attribute type 10 has an invalid length.
[  675.503992][T12623] bond0: (slave netdevsim0): Releasing backup interface
[  675.533559][T12623] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  675.575933][T12623] team0: Failed to send options change via netlink (err -105)
[  675.583944][T12623] team0: Port device netdevsim0 added
[  675.724958][T12630] netlink: 'syz.4.2078': attribute type 10 has an invalid length.
[  675.770056][T12630] team0: Failed to send options change via netlink (err -105)
[  675.789399][T12630] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  675.834842][T12630] team0: Port device netdevsim0 removed
[  675.881366][T10469] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  675.881617][T12634] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2083'.
[  675.942106][T12630] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  675.996162][T12639] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2085'.
[  676.061204][T10469] usb 1-1: device descriptor read/64, error -71
[  676.824410][T10469] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  676.989152][T10469] usb 1-1: device descriptor read/64, error -71
[  677.109640][T10469] usb usb1-port1: attempt power cycle
[  677.773055][T12668] netlink: 'syz.1.2093': attribute type 10 has an invalid length.
[  677.808954][T12668] bond0: (slave netdevsim0): Releasing backup interface
[  677.832603][T12668] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  677.845819][T12668] team0: Failed to send options change via netlink (err -105)
[  677.856292][T12668] team0: Port device netdevsim0 added
[  677.871664][T12669] netlink: 'syz.1.2093': attribute type 10 has an invalid length.
[  678.039415][T12669] team0: Failed to send options change via netlink (err -105)
[  678.052086][T12669] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  678.082367][T12669] team0: Port device netdevsim0 removed
[  678.108558][T12669] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  678.119214][T10469] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  678.190901][T10469] usb 1-1: device descriptor read/8, error -71
[  678.303784][T12680] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2096'.
[  678.382599][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  678.382618][   T29] audit: type=1804 audit(1725215930.976:1087): pid=12682 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.4.2098" name="/newroot/459/bus/cgroup.controllers" dev="overlay" ino=2447 res=1 errno=0
[  678.383334][T12682] FAULT_INJECTION: forcing a failure.
[  678.383334][T12682] name failslab, interval 1, probability 0, space 0, times 0
[  678.439239][T12682] CPU: 1 UID: 0 PID: 12682 Comm: syz.4.2098 Not tainted 6.11.0-rc6-syzkaller #0
[  678.448305][T12682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  678.458348][T12682] Call Trace:
[  678.461630][T12682]  <TASK>
[  678.464568][T12682]  dump_stack_lvl+0x241/0x360
[  678.469260][T12682]  ? __pfx_dump_stack_lvl+0x10/0x10
[  678.474487][T12682]  ? __pfx__printk+0x10/0x10
[  678.479073][T12682]  ? __kmalloc_noprof+0xb0/0x400
[  678.484008][T12682]  ? __pfx___might_resched+0x10/0x10
[  678.489319][T12682]  should_fail_ex+0x3b0/0x4e0
[  678.494013][T12682]  ? alloc_pipe_info+0x1ff/0x4d0
[  678.498951][T12682]  should_failslab+0xac/0x100
[  678.503630][T12682]  ? alloc_pipe_info+0x1ff/0x4d0
[  678.508552][T12682]  __kmalloc_noprof+0xd8/0x400
[  678.513307][T12682]  alloc_pipe_info+0x1ff/0x4d0
[  678.518144][T12682]  splice_direct_to_actor+0xaac/0xc90
[  678.523517][T12682]  ? __pfx_direct_splice_actor+0x10/0x10
[  678.529135][T12682]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  678.535012][T12682]  ? __fget_files+0x29/0x470
[  678.539527][T10469] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  678.539575][T12682]  ? __pfx_lock_release+0x10/0x10
[  678.552117][T12682]  do_splice_direct+0x28c/0x3e0
[  678.556961][T12682]  ? __pfx_do_splice_direct+0x10/0x10
[  678.562320][T12682]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  678.568199][T12682]  ? security_file_permission+0x7f/0xa0
[  678.573732][T12682]  ? rw_verify_area+0x1d2/0x6b0
[  678.578572][T12682]  do_sendfile+0x56d/0xe20
[  678.582982][T12682]  ? __pfx_do_sendfile+0x10/0x10
[  678.588023][T12682]  __se_sys_sendfile64+0x17c/0x1e0
[  678.593126][T12682]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  678.598747][T12682]  ? do_syscall_64+0x100/0x230
[  678.603496][T12682]  ? do_syscall_64+0xb6/0x230
[  678.608156][T12682]  do_syscall_64+0xf3/0x230
[  678.612645][T12682]  ? clear_bhb_loop+0x35/0x90
[  678.617395][T12682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.623272][T12682] RIP: 0033:0x7fd825f79eb9
[  678.627669][T12682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  678.647265][T12682] RSP: 002b:00007fd826e3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  678.655790][T12682] RAX: ffffffffffffffda RBX: 00007fd826115f80 RCX: 00007fd825f79eb9
[  678.663746][T12682] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  678.671705][T12682] RBP: 00007fd826e3e090 R08: 0000000000000000 R09: 0000000000000000
[  678.679658][T12682] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[  678.687627][T12682] R13: 0000000000000000 R14: 00007fd826115f80 R15: 00007fffe8047a58
[  678.695596][T12682]  </TASK>
[  678.698609][    C1] vkms_vblank_simulate: vblank timer overrun
[  678.749784][T10469] usb 1-1: device descriptor read/8, error -71
[  678.890533][T10469] usb usb1-port1: unable to enumerate USB device
[  679.639262][ T5224] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  679.820363][ T5224] usb 2-1: Using ep0 maxpacket: 16
[  679.861310][ T5224] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  679.899438][ T5224] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  679.908590][ T5224] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  679.950779][ T5224] usb 2-1: Product: syz
[  679.954991][ T5224] usb 2-1: Manufacturer: syz
[  679.974770][ T5224] usb 2-1: SerialNumber: syz
[  679.996020][ T5224] usb 2-1: config 0 descriptor??
[  680.025315][T12703] netlink: 'syz.4.2104': attribute type 10 has an invalid length.
[  680.036228][ T5224] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  680.375168][T12703] bond0: (slave netdevsim0): Releasing backup interface
[  680.385124][ T5224] usb 2-1: USB disconnect, device number 30
[  680.391533][ T1075] usb 2-1: Failed to submit usb control message: -71
[  680.410928][T12703] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  680.416321][ T1075] usb 2-1: unable to send the bmi data to the device: -71
[  680.427232][T12703] team0: Failed to send options change via netlink (err -105)
[  680.427290][T12703] team0: Port device netdevsim0 added
[  680.458120][T12707] netlink: 'syz.4.2104': attribute type 10 has an invalid length.
[  680.482879][ T1075] usb 2-1: unable to get target info from device
[  680.489756][ T1075] usb 2-1: could not get target info (-71)
[  680.495743][ T1075] usb 2-1: could not probe fw (-71)
[  680.526903][T12707] team0: Failed to send options change via netlink (err -105)
[  680.571351][T12707] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  680.585322][T12707] team0: Port device netdevsim0 removed
[  680.663923][T12711] Illegal XDP return value 37853 on prog  (id 697) dev N/A, expect packet loss!
[  680.819608][T12707] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  682.559261][   T29] audit: type=1326 audit(1725215935.146:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12729 comm="syz.3.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  682.581614][   T29] audit: type=1326 audit(1725215935.146:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12729 comm="syz.3.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd5f79eb9 code=0x7ffc0000
[  682.814982][T12742] netlink: 'syz.0.2109': attribute type 10 has an invalid length.
[  684.361599][T12728] netlink: 'syz.0.2109': attribute type 10 has an invalid length.
[  684.500697][T12728] bond0: (slave netdevsim0): Releasing backup interface
[  684.794223][T12728] team0: Port device netdevsim0 added
[  685.835243][T12765] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2116'.
[  686.141484][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  687.509134][ T5224] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  687.709527][ T5224] usb 1-1: Using ep0 maxpacket: 16
[  687.726992][ T5224] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  687.950623][ T5224] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  688.278230][ T5224] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  688.823286][ T5224] usb 1-1: Product: syz
[  688.990045][ T5224] usb 1-1: Manufacturer: syz
[  690.642869][ T5224] usb 1-1: SerialNumber: syz
[  690.709879][ T5224] usb 1-1: config 0 descriptor??
[  691.680156][ T5224] usb 1-1: can't set config #0, error -71
[  691.807068][ T5224] usb 1-1: USB disconnect, device number 30
[  691.839839][T12811] netlink: 'syz.4.2129': attribute type 10 has an invalid length.
[  691.975300][T12811] bond0: (slave netdevsim0): Releasing backup interface
[  692.234291][T12811] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  692.250197][T12811] team0: Failed to send options change via netlink (err -105)
[  692.259776][T12811] team0: Port device netdevsim0 added
[  692.314645][T12817] netlink: 'syz.4.2129': attribute type 10 has an invalid length.
[  692.498346][T12817] team0: Failed to send options change via netlink (err -105)
[  692.529510][T12817] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  692.590357][T12817] team0: Port device netdevsim0 removed
[  692.607590][T12817] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  692.666715][T12820] netlink: 'syz.0.2132': attribute type 10 has an invalid length.
[  692.741679][T12824] netlink: 'syz.0.2132': attribute type 10 has an invalid length.
[  692.791158][T12824] team0: Port device netdevsim0 removed
[  692.854075][T12824] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  693.027184][T12831] binder_alloc: binder_alloc_mmap_handler: 12808 20ffc000-20ffd000 already mapped failed -16
[  696.971343][ T5276] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  697.159203][ T5276] usb 4-1: Using ep0 maxpacket: 16
[  697.161280][ T5276] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  697.167531][ T5276] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  697.206066][ T5276] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  697.206099][ T5276] usb 4-1: Product: syz
[  697.206116][ T5276] usb 4-1: Manufacturer: syz
[  697.206132][ T5276] usb 4-1: SerialNumber: syz
[  697.229278][ T5276] usb 4-1: config 0 descriptor??
[  697.367620][ T5276] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  697.527002][T12889] binder_alloc: binder_alloc_mmap_handler: 12879 20ffc000-20ffd000 already mapped failed -16
[  698.103837][ T1062] usb 4-1: Failed to submit usb control message: -71
[  698.103926][ T1062] usb 4-1: unable to send the bmi data to the device: -71
[  698.103947][ T1062] usb 4-1: unable to get target info from device
[  698.103963][ T1062] usb 4-1: could not get target info (-71)
[  698.104002][ T1062] usb 4-1: could not probe fw (-71)
[  698.135002][ T5275] usb 4-1: USB disconnect, device number 28
[  700.408902][T12911] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  702.659252][T12928] netlink: 'syz.3.2156': attribute type 10 has an invalid length.
[  704.325638][ T5242] Bluetooth: hci1: command 0x0406 tx timeout
[  704.331462][T12936] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  704.810290][T12928] bond0: (slave netdevsim0): Releasing backup interface
[  704.900722][T12928] team0: Port device netdevsim0 added
[  707.430224][ T5275] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  707.543154][T12964] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  708.183059][T12966] FAULT_INJECTION: forcing a failure.
[  708.183059][T12966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  708.196419][T12966] CPU: 1 UID: 0 PID: 12966 Comm: syz.3.2166 Not tainted 6.11.0-rc6-syzkaller #0
[  708.205479][T12966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  708.215561][T12966] Call Trace:
[  708.218852][T12966]  <TASK>
[  708.221786][T12966]  dump_stack_lvl+0x241/0x360
[  708.226458][T12966]  ? __pfx_dump_stack_lvl+0x10/0x10
[  708.231651][T12966]  ? __pfx__printk+0x10/0x10
[  708.236262][T12966]  ? __pfx_lock_release+0x10/0x10
[  708.241283][T12966]  should_fail_ex+0x3b0/0x4e0
[  708.245961][T12966]  _copy_from_user+0x2f/0xe0
[  708.250568][T12966]  copy_msghdr_from_user+0xae/0x680
[  708.255754][T12966]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  708.261554][T12966]  __sys_sendmsg+0x23d/0x3a0
[  708.266142][T12966]  ? __pfx___sys_sendmsg+0x10/0x10
[  708.271259][T12966]  ? vfs_write+0x7c4/0xc90
[  708.275686][T12966]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  708.282015][T12966]  ? do_syscall_64+0x100/0x230
[  708.286787][T12966]  ? do_syscall_64+0xb6/0x230
[  708.291462][T12966]  do_syscall_64+0xf3/0x230
[  708.295965][T12966]  ? clear_bhb_loop+0x35/0x90
[  708.300665][T12966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.306551][T12966] RIP: 0033:0x7fedd5f79eb9
[  708.310955][T12966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.330570][T12966] RSP: 002b:00007fedd6dc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  708.339009][T12966] RAX: ffffffffffffffda RBX: 00007fedd6115f80 RCX: 00007fedd5f79eb9
[  708.347075][T12966] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004
[  708.355049][T12966] RBP: 00007fedd6dc8090 R08: 0000000000000000 R09: 0000000000000000
[  708.363036][T12966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  708.371028][T12966] R13: 0000000000000000 R14: 00007fedd6115f80 R15: 00007ffd180e4298
[  708.379032][T12966]  </TASK>
[  708.513577][ T5275] usb 2-1: Using ep0 maxpacket: 16
[  709.474906][ T5275] usb 2-1: device descriptor read/all, error -71
[  710.679710][T12986] netlink: 'syz.1.2173': attribute type 10 has an invalid length.
[  710.832837][T12986] bond0: (slave netdevsim0): Releasing backup interface
[  710.923170][T12986] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  710.945315][T12986] team0: Failed to send options change via netlink (err -105)
[  710.953127][T12986] team0: Port device netdevsim0 added
[  711.192895][T12999] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  713.324344][T13021] netlink: 'syz.1.2181': attribute type 10 has an invalid length.
[  713.379248][ T5276] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  713.394509][T13021] netlink: 'syz.1.2181': attribute type 10 has an invalid length.
[  713.615319][ T5276] usb 4-1: device descriptor read/64, error -71
[  713.653270][T13021] team0: Port device netdevsim0 removed
[  713.694897][T13021] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  713.910606][ T5276] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  714.051115][ T5275] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  714.069122][ T5276] usb 4-1: device descriptor read/64, error -71
[  714.160152][ T5309] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  714.191232][ T5276] usb usb4-port1: attempt power cycle
[  714.269390][ T5275] usb 3-1: Using ep0 maxpacket: 16
[  714.286411][ T5275] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  714.322077][ T5275] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  714.337907][ T5275] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.358529][ T5275] usb 3-1: Product: syz
[  714.370072][ T5275] usb 3-1: Manufacturer: syz
[  714.379601][ T5309] usb 5-1: Using ep0 maxpacket: 8
[  714.386580][ T5275] usb 3-1: SerialNumber: syz
[  714.405308][ T5309] usb 5-1: config 0 has an invalid interface number: 207 but max is 0
[  714.427978][ T5275] usb 3-1: config 0 descriptor??
[  714.436328][ T5309] usb 5-1: config 0 has no interface number 0
[  714.475181][ T5275] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  714.486289][ T5309] usb 5-1: New USB device found, idVendor=07d1, idProduct=3303, bcdDevice=f6.9d
[  714.513097][ T5309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.524357][ T5309] usb 5-1: Product: syz
[  714.528559][ T5309] usb 5-1: Manufacturer: syz
[  714.533617][ T5309] usb 5-1: SerialNumber: syz
[  714.549744][ T5309] usb 5-1: config 0 descriptor??
[  714.629202][ T5276] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  714.693894][T10469] usb 3-1: USB disconnect, device number 33
[  714.700880][ T1298] usb 3-1: Failed to submit usb control message: -71
[  714.708315][ T5276] usb 4-1: device descriptor read/8, error -71
[  714.728160][ T1298] usb 3-1: unable to send the bmi data to the device: -71
[  714.764959][ T1298] usb 3-1: unable to get target info from device
[  714.810012][ T5309] r8712u: register rtl8712_netdev_ops to netdev_ops
[  714.834318][ T1298] usb 3-1: could not get target info (-71)
[  714.859148][ T5309] usb 5-1: r8712u: USB_SPEED_HIGH with 0 endpoints
[  714.869177][ T1298] usb 3-1: could not probe fw (-71)
[  714.924747][ T5309] usb 5-1: r8712u: Boot from EFUSE: Autoload Failed
[  714.961180][ T5309] usb 5-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  714.977774][ T5309] usb 5-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  715.033249][ T5309] usb 5-1: USB disconnect, device number 36
[  716.629738][T13093] xt_CT: You must specify a L4 protocol and not use inversions on it
[  717.401227][T13098] netlink: 'syz.2.2198': attribute type 10 has an invalid length.
[  717.582382][T13098] bond0: (slave netdevsim0): Releasing backup interface
[  717.932893][T13098] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  717.946413][T13098] team0: Failed to send options change via netlink (err -105)
[  717.956170][T13098] team0: Port device netdevsim0 added
[  717.986602][T13103] netlink: 'syz.2.2198': attribute type 10 has an invalid length.
[  718.157810][T13125] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2199'.
[  722.632854][T13103] team0: Port device netdevsim0 removed
[  722.671392][T13103] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  724.115110][T13157] netlink: 'syz.4.2206': attribute type 10 has an invalid length.
[  726.379755][ T9658] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  727.229824][ T9658] usb 5-1: Using ep0 maxpacket: 16
[  727.292544][T13198] netlink: 'syz.1.2216': attribute type 10 has an invalid length.
[  727.317045][ T9658] usb 5-1: config 255 has an invalid interface number: 234 but max is 0
[  727.336808][ T9658] usb 5-1: config 255 has no interface number 0
[  727.372589][ T9658] usb 5-1: config 255 interface 234 has no altsetting 0
[  727.381605][T13198] bond0: (slave netdevsim0): Releasing backup interface
[  727.395348][ T9658] usb 5-1: New USB device found, idVendor=19d2, idProduct=ff62, bcdDevice=a8.cc
[  727.556040][T13198] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  727.581218][T13198] team0: Failed to send options change via netlink (err -105)
[  727.589608][T13198] team0: Port device netdevsim0 added
[  727.596748][ T9658] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.601995][T13200] netlink: 'syz.1.2216': attribute type 10 has an invalid length.
[  727.627370][ T9658] usb 5-1: Product: syz
[  727.632336][ T9658] usb 5-1: Manufacturer: syz
[  727.906067][ T9658] usb 5-1: SerialNumber: syz
[  727.949602][T13200] team0: Failed to send options change via netlink (err -105)
[  728.065463][T13215] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  728.729490][T13200] team0: Port device netdevsim0 removed
[  728.782596][T13200] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  747.573279][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  834.398971][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  834.405974][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P13237/3:b..l P13234/1:b..l P13232/3:b..l
[  834.418091][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=49845, q=82 ncpus=2)
[  834.425814][    C0] task:modprobe        state:R  running task     stack:23088 pid:13232 tgid:13232 ppid:1075   flags:0x00000002
[  834.438962][    C0] Call Trace:
[  834.442258][    C0]  <TASK>
[  834.445207][    C0]  __schedule+0x17ae/0x4a10
[  834.449759][    C0]  ? __pfx___schedule+0x10/0x10
[  834.454635][    C0]  ? lock_release+0x658/0xa30
[  834.459331][    C0]  ? preempt_schedule+0xe1/0xf0
[  834.464195][    C0]  preempt_schedule_common+0x84/0xd0
[  834.469498][    C0]  preempt_schedule+0xe1/0xf0
[  834.474278][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  834.479715][    C0]  preempt_schedule_thunk+0x1a/0x30
[  834.484924][    C0]  _raw_spin_unlock+0x3e/0x50
[  834.489617][    C0]  filemap_map_pages+0x1707/0x1e70
[  834.494750][    C0]  ? filemap_map_pages+0x24f/0x1e70
[  834.499975][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  834.505452][    C0]  ? handle_pte_fault+0x331/0x6fc0
[  834.510578][    C0]  ? __pfx_lock_release+0x10/0x10
[  834.515624][    C0]  ? pte_offset_map_nolock+0x137/0x1f0
[  834.521104][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  834.526577][    C0]  handle_pte_fault+0x309e/0x6fc0
[  834.531614][    C0]  ? __pfx_validate_chain+0x10/0x10
[  834.536821][    C0]  ? handle_pte_fault+0x2207/0x6fc0
[  834.542042][    C0]  ? mark_lock+0x9a/0x350
[  834.546389][    C0]  ? __pfx_handle_pte_fault+0x10/0x10
[  834.551787][    C0]  ? reacquire_held_locks+0x3eb/0x690
[  834.557162][    C0]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  834.562470][    C0]  ? __pfx_reacquire_held_locks+0x10/0x10
[  834.568205][    C0]  handle_mm_fault+0x1056/0x1ad0
[  834.573188][    C0]  ? __pfx_handle_mm_fault+0x10/0x10
[  834.578480][    C0]  ? lock_vma_under_rcu+0x592/0x6e0
[  834.583707][    C0]  ? exc_page_fault+0x113/0x8c0
[  834.588568][    C0]  exc_page_fault+0x459/0x8c0
[  834.593258][    C0]  asm_exc_page_fault+0x26/0x30
[  834.598121][    C0] RIP: 0033:0x7f51981f3b47
[  834.602541][    C0] RSP: 002b:00007ffc0e2a6268 EFLAGS: 00010246
[  834.608619][    C0] RAX: 00007f51981f3b47 RBX: 00007f5198160000 RCX: 0000000000000000
[  834.616606][    C0] RDX: 0000000000000000 RSI: 00007f519817e540 RDI: 0000000000000000
[  834.624589][    C0] RBP: 00007ffc0e2a6370 R08: 00007ffc0e2a0000 R09: 00007f519840cab0
[  834.632566][    C0] R10: 00007f5198164ab8 R11: 0000000000000025 R12: 00007f51983d45c0
[  834.640543][    C0] R13: 00007f5198400eda R14: 00007f51983018c8 R15: 00007f5198164ab8
[  834.648537][    C0]  </TASK>
[  834.651649][    C0] task:sed             state:R  running task     stack:23680 pid:13234 tgid:13234 ppid:13233  flags:0x00000000
[  834.663392][    C0] Call Trace:
[  834.666673][    C0]  <TASK>
[  834.669613][    C0]  __schedule+0x17ae/0x4a10
[  834.674156][    C0]  ? __pfx_mas_wr_modify+0x10/0x10
[  834.679277][    C0]  ? validate_chain+0x11e/0x5900
[  834.684222][    C0]  ? __pfx___schedule+0x10/0x10
[  834.689092][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  834.695104][    C0]  ? preempt_schedule_irq+0xf0/0x1c0
[  834.700423][    C0]  preempt_schedule_irq+0xfb/0x1c0
[  834.705568][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  834.711334][    C0]  irqentry_exit+0x5e/0x90
[  834.715766][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  834.721757][    C0] RIP: 0010:lock_is_held_type+0x13b/0x190
[  834.727460][    C0] Code: 75 44 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00 02 00 00 75 4c 41 f7 c4 00 02 00 00 74 01 fb 65 48 8b 04 25 28 00 00 00 <48> 3b 44 24 08 75 42 89 d8 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f
[  834.747046][    C0] RSP: 0018:ffffc90010b17278 EFLAGS: 00000206
[  834.753094][    C0] RAX: 88e4f68ec99bdc00 RBX: 0000000000000001 RCX: ffff88802f4f5a00
[  834.761049][    C0] RDX: 0000000000000000 RSI: ffffffff8beae6c0 RDI: ffffffff8c3fb900
[  834.768997][    C0] RBP: 0000000000000000 R08: ffffffff8ba6a153 R09: fffffbfff34a2610
[  834.776981][    C0] R10: dffffc0000000000 R11: fffffbfff34a2610 R12: 0000000000000246
[  834.785110][    C0] R13: ffff88802f4f5a00 R14: 00000000ffffffff R15: ffff8880568dd718
[  834.793093][    C0]  ? mt_validate+0x953/0x4aa0
[  834.797763][    C0]  mt_validate+0x9a0/0x4aa0
[  834.802252][    C0]  ? mt_validate+0x1a1/0x4aa0
[  834.806994][    C0]  ? __pfx_mt_validate+0x10/0x10
[  834.811915][    C0]  ? vma_complete+0x543/0xb60
[  834.816570][    C0]  ? __pfx_lock_release+0x10/0x10
[  834.821580][    C0]  ? mas_store_prealloc+0x2db/0x5f0
[  834.826764][    C0]  validate_mm+0xe7/0x530
[  834.831079][    C0]  ? __pfx_validate_mm+0x10/0x10
[  834.836003][    C0]  ? vma_complete+0xaef/0xb60
[  834.840678][    C0]  __split_vma+0xaca/0xc30
[  834.845122][    C0]  ? __pfx___split_vma+0x10/0x10
[  834.850059][    C0]  do_vmi_align_munmap+0x433/0x18c0
[  834.855255][    C0]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  834.860873][    C0]  ? mtree_range_walk+0x6fd/0x8e0
[  834.865888][    C0]  ? mas_find+0x8c0/0xbb0
[  834.870205][    C0]  do_vmi_munmap+0x261/0x2f0
[  834.874778][    C0]  mmap_region+0x72f/0x2090
[  834.879259][    C0]  ? mark_lock+0x9a/0x350
[  834.883584][    C0]  ? __pfx_mmap_region+0x10/0x10
[  834.888505][    C0]  ? thp_get_unmapped_area_vmflags+0x269/0x380
[  834.894637][    C0]  ? cap_mmap_addr+0x163/0x2c0
[  834.899385][    C0]  ? __get_unmapped_area+0x2f0/0x360
[  834.904650][    C0]  do_mmap+0x8f9/0x1010
[  834.908790][    C0]  ? __pfx_do_mmap+0x10/0x10
[  834.913355][    C0]  ? __pfx_down_write_killable+0x10/0x10
[  834.918963][    C0]  ? __pfx_ima_file_mmap+0x10/0x10
[  834.924053][    C0]  ? security_mmap_file+0x178/0x1a0
[  834.929254][    C0]  vm_mmap_pgoff+0x1dd/0x3d0
[  834.933854][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  834.938959][    C0]  ? __fget_files+0x29/0x470
[  834.943535][    C0]  ? __fget_files+0x3f6/0x470
[  834.948214][    C0]  ksys_mmap_pgoff+0x4f1/0x720
[  834.952965][    C0]  ? __x64_sys_mmap+0x7f/0x140
[  834.957737][    C0]  do_syscall_64+0xf3/0x230
[  834.962230][    C0]  ? clear_bhb_loop+0x35/0x90
[  834.966888][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.972761][    C0] RIP: 0033:0x7eff15b42b74
[  834.977155][    C0] RSP: 002b:00007ffc376151c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  834.985551][    C0] RAX: ffffffffffffffda RBX: 00007ffc37615278 RCX: 00007eff15b42b74
[  834.993517][    C0] RDX: 0000000000000003 RSI: 0000000000002000 RDI: 00007eff15896000
[  835.001555][    C0] RBP: 00007ffc376155a0 R08: 0000000000000003 R09: 0000000000022000
[  835.009502][    C0] R10: 0000000000000812 R11: 0000000000000246 R12: 00007eff15b1efc0
[  835.017467][    C0] R13: 00007ffc37615628 R14: 0000000000021bd8 R15: 0000000000000000
[  835.025428][    C0]  </TASK>
[  835.028427][    C0] task:syz.0.2222      state:R  running task     stack:27952 pid:13237 tgid:13236 ppid:5958   flags:0x00004000
[  835.040135][    C0] Call Trace:
[  835.043394][    C0]  <TASK>
[  835.046308][    C0]  __schedule+0x17ae/0x4a10
[  835.050807][    C0]  ? __pfx___schedule+0x10/0x10
[  835.055687][    C0]  ? preempt_schedule+0xe1/0xf0
[  835.060538][    C0]  preempt_schedule_common+0x84/0xd0
[  835.065820][    C0]  preempt_schedule+0xe1/0xf0
[  835.070487][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  835.075851][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  835.081733][    C0]  preempt_schedule_thunk+0x1a/0x30
[  835.086920][    C0]  _raw_spin_unlock+0x3e/0x50
[  835.091579][    C0]  filemap_map_pages+0x1707/0x1e70
[  835.096686][    C0]  ? filemap_map_pages+0x24f/0x1e70
[  835.101873][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  835.107314][    C0]  ? handle_pte_fault+0x331/0x6fc0
[  835.112406][    C0]  ? __pfx_lock_release+0x10/0x10
[  835.117409][    C0]  ? pte_offset_map_nolock+0x137/0x1f0
[  835.122892][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  835.128372][    C0]  handle_pte_fault+0x309e/0x6fc0
[  835.133387][    C0]  ? __pfx_validate_chain+0x10/0x10
[  835.138579][    C0]  ? handle_pte_fault+0x2207/0x6fc0
[  835.143848][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  835.148855][    C0]  ? mark_lock+0x9a/0x350
[  835.153179][    C0]  ? __pfx_handle_pte_fault+0x10/0x10
[  835.158543][    C0]  ? reacquire_held_locks+0x3eb/0x690
[  835.163889][    C0]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  835.169074][    C0]  ? __pfx_reacquire_held_locks+0x10/0x10
[  835.174772][    C0]  handle_mm_fault+0x1056/0x1ad0
[  835.179703][    C0]  ? __pfx_handle_mm_fault+0x10/0x10
[  835.184980][    C0]  ? lock_vma_under_rcu+0x592/0x6e0
[  835.190170][    C0]  exc_page_fault+0x459/0x8c0
[  835.194827][    C0]  asm_exc_page_fault+0x26/0x30
[  835.199671][    C0] RIP: 0033:0x7f63aa910840
[  835.204075][    C0] RSP: 002b:00007f63ab774118 EFLAGS: 00010246
[  835.210136][    C0] RAX: fffffffffffffeb8 RBX: 00007f63ab7746c0 RCX: 00007f63aa9adee9
[  835.218188][    C0] RDX: 00007f63ab774d78 RSI: 0000000000000058 RDI: 00007f63ab7746c0
[  835.226223][    C0] RBP: 0000000000000000 R08: 00007f63ab7746c0 R09: 00007fffebe5b827
[  835.234169][    C0] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffa8
[  835.242155][    C0] R13: 000000000000000b R14: 00007fffebe5b740 R15: 00007fffebe5b828
[  835.250143][    C0]  </TASK>
[  835.253159][    C0] rcu: rcu_preempt kthread starved for 10533 jiffies! g49845 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  835.257144][ T9658] option 5-1:255.234: GSM modem (1-port) converter detected
[  835.264338][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  835.264355][    C0] rcu: RCU grace-period kthread stack dump:
[  835.264362][    C0] task:rcu_preempt     state:R  running task     stack:26576 pid:17    tgid:17    ppid:2      flags:0x00004000
[  835.264404][    C0] Call Trace:
[  835.290673][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  835.299200][    C0]  <TASK>
[  835.299216][    C0]  __schedule+0x17ae/0x4a10
[  835.299265][    C0]  ? __pfx___schedule+0x10/0x10
[  835.321022][    C0]  ? __pfx_lock_release+0x10/0x10
[  835.326032][    C0]  ? __asan_memset+0x23/0x50
[  835.330613][    C0]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  835.336407][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  835.342730][    C0]  ? schedule+0x90/0x320
[  835.346971][    C0]  schedule+0x14b/0x320
[  835.351125][    C0]  schedule_timeout+0x1be/0x310
[  835.355959][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  835.361315][    C0]  ? __pfx_process_timeout+0x10/0x10
[  835.366581][    C0]  ? prepare_to_swait_event+0x32e/0x350
[  835.372112][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[  835.377072][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  835.382308][    C0]  ? rcu_gp_init+0x1256/0x1630
[  835.387775][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  835.392721][    C0]  ? __pfx_dyntick_save_progress_counter+0x10/0x10
[  835.399217][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  835.404483][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  835.410366][    C0]  ? finish_swait+0xd4/0x1e0
[  835.414943][    C0]  rcu_gp_kthread+0xa7/0x3b0
[  835.419521][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  835.424714][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  835.430597][    C0]  ? __kthread_parkme+0x169/0x1d0
[  835.435611][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  835.440815][    C0]  kthread+0x2f0/0x390
[  835.444894][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  835.450094][    C0]  ? __pfx_kthread+0x10/0x10
[  835.454704][    C0]  ret_from_fork+0x4b/0x80
[  835.459108][    C0]  ? __pfx_kthread+0x10/0x10
[  835.463781][    C0]  ret_from_fork_asm+0x1a/0x30
[  835.468536][    C0]  </TASK>
[  835.471535][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  835.477838][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.11.0-rc6-syzkaller #0
[  835.487105][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  835.497145][    C0] RIP: 0010:acpi_safe_halt+0x21/0x30
[  835.502435][    C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 c0 d6 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 85 3d 98 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[  835.522471][    C0] RSP: 0018:ffffffff8e407ca8 EFLAGS: 00000246
[  835.528521][    C0] RAX: ffffffff8e494680 RBX: ffff888020a84864 RCX: 0000000000d76c91
[  835.536478][    C0] RDX: 0000000000000001 RSI: ffff888020a84800 RDI: ffff888020a84864
[  835.544637][    C0] RBP: 000000000003a638 R08: ffff8880b8837c7b R09: 1ffff11017106f8f
[  835.552765][    C0] R10: dffffc0000000000 R11: ffffffff8bb12cf0 R12: ffff88801ffa5000
[  835.560802][    C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8eed1c40
[  835.568752][    C0] FS:  0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000
[  835.577659][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  835.584331][    C0] CR2: 00007eff15b1f290 CR3: 000000007fa08000 CR4: 00000000003526f0
[  835.592388][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  835.600367][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  835.608777][    C0] Call Trace:
[  835.612147][    C0]  <IRQ>
[  835.615253][    C0]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  835.621592][    C0]  ? print_other_cpu_stall+0x1470/0x15a0
[  835.627221][    C0]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  835.633043][    C0]  ? __pfx_lock_release+0x10/0x10
[  835.638073][    C0]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  835.644309][    C0]  ? rcu_sched_clock_irq+0xa2c/0x10d0
[  835.649686][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  835.655300][    C0]  ? hrtimer_run_queues+0x16c/0x460
[  835.660659][    C0]  ? update_process_times+0x1ce/0x230
[  835.666124][    C0]  ? tick_nohz_handler+0x37c/0x500
[  835.671650][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  835.677089][    C0]  ? __hrtimer_run_queues+0x551/0xd50
[  835.682456][    C0]  ? ktime_get_update_offsets_now+0x3c/0x250
[  835.688425][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  835.694143][    C0]  ? ktime_get_update_offsets_now+0x22d/0x250
[  835.700194][    C0]  ? hrtimer_interrupt+0x396/0x990
[  835.705323][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x3f0
[  835.711465][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  835.717281][    C0]  </IRQ>
[  835.720203][    C0]  <TASK>
[  835.723120][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  835.729355][    C0]  ? __pfx_acpi_idle_enter+0x10/0x10
[  835.734632][    C0]  ? acpi_safe_halt+0x21/0x30
[  835.739378][    C0]  acpi_idle_enter+0xe4/0x140
[  835.744035][    C0]  cpuidle_enter_state+0x112/0x480
[  835.749128][    C0]  ? __pfx_menu_select+0x10/0x10
[  835.754050][    C0]  cpuidle_enter+0x5d/0xa0
[  835.758446][    C0]  do_idle+0x375/0x5d0
[  835.762500][    C0]  ? __pfx_do_idle+0x10/0x10
[  835.767070][    C0]  ? poll_idle+0x80/0xb0
[  835.771318][    C0]  ? rest_init+0x31/0x300
[  835.775674][    C0]  cpu_startup_entry+0x42/0x60
[  835.780452][    C0]  rest_init+0x2dc/0x300
[  835.784690][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  835.790223][    C0]  start_kernel+0x47a/0x500
[  835.794728][    C0]  x86_64_start_reservations+0x2a/0x30
[  835.800181][    C0]  x86_64_start_kernel+0x9f/0xa0
[  835.805271][    C0]  common_startup_64+0x13e/0x147
[  835.810199][    C0]  </TASK>
[  836.102368][ T9474] usb 5-1: USB disconnect, device number 37
[  836.111797][ T9474] option 5-1:255.234: device disconnected
SYZFAIL: failed to send rpc
fd=3 want=9288 sent=0 n=-1 (errno 32: Broken pipe)
[  837.701024][ T1118] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  837.861312][ T1118] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  837.957514][ T1118] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  838.055311][ T1118] bond0: (slave netdevsim0): Releasing backup interface
[  838.064139][ T1118] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  838.695856][ T1118] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  838.706674][ T1118] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  838.717742][ T1118] bond0 (unregistering): Released all slaves
[  839.029259][ T1118] hsr_slave_0: left promiscuous mode
[  839.035388][ T1118] hsr_slave_1: left promiscuous mode
[  839.042054][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  839.058379][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  839.066882][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  839.080164][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_1
[  839.105337][ T1118] veth1_macvtap: left promiscuous mode
[  839.112398][ T1118] veth0_macvtap: left promiscuous mode
[  839.118075][ T1118] veth1_vlan: left promiscuous mode
[  839.128358][ T1118] veth0_vlan: left promiscuous mode
[  839.662011][ T1118] team0 (unregistering): Port device team_slave_1 removed
[  839.715112][ T1118] team0 (unregistering): Port device team_slave_0 removed
[  839.742894][    T9] kworker/0:1 (9) used greatest stack depth: 18712 bytes left
[  840.016235][ T1118] team0 (unregistering): Port device batadv0 removed
[  840.604504][ T1118] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  840.712261][ T1118] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  840.792938][ T1118] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  840.886246][ T1118] bond0: (slave netdevsim0): Releasing backup interface
[  840.898175][ T1118] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.065463][ T1118] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.145544][ T1118] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.223101][ T1118] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.289789][ T1118] bond0: (slave netdevsim0): Releasing backup interface
[  841.302767][ T1118] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.485034][ T1118] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.601965][ T1118] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.683363][ T1118] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.742574][ T1118] bond0: (slave netdevsim0): Releasing backup interface
[  841.754027][ T1118] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.930376][ T1118] bridge_slave_1: left allmulticast mode
[  841.936076][ T1118] bridge_slave_1: left promiscuous mode
[  841.952795][ T1118] bridge0: port 2(bridge_slave_1) entered disabled state
[  841.967601][ T1118] bridge_slave_0: left allmulticast mode
[  841.974277][ T1118] bridge_slave_0: left promiscuous mode
[  841.984961][ T1118] bridge0: port 1(bridge_slave_0) entered disabled state
[  842.753486][ T1118] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  842.763809][ T1118] bond0 (unregistering): Released all slaves
[  842.891619][ T1118] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  842.903424][ T1118] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  842.913908][ T1118] bond0 (unregistering): Released all slaves
[  843.047902][ T1118] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  843.058742][ T1118] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  843.069372][ T1118] bond0 (unregistering): Released all slaves
[  843.173580][ T1118] Κό: left promiscuous mode
[  843.238062][ T1118] tipc: Left network mode
[  843.924315][ T1118] hsr_slave_0: left promiscuous mode
[  843.931903][ T1118] hsr_slave_1: left promiscuous mode
[  843.938738][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  843.947254][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  843.962500][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  843.970674][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_1
[  843.983324][ T1118] hsr_slave_0: left promiscuous mode
[  843.990381][ T1118] hsr_slave_1: left promiscuous mode
[  843.996333][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  844.004647][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  844.012541][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  844.020116][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_1
[  844.031480][ T1118] hsr_slave_0: left promiscuous mode
[  844.038494][ T1118] hsr_slave_1: left promiscuous mode
[  844.044685][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  844.052412][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  844.060811][ T1118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  844.068283][ T1118] batman_adv: batadv0: Removing interface: batadv_slave_1
[  844.109126][ T1118] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  844.116307][ T1118] veth1_macvtap: left promiscuous mode
[  844.121990][ T1118] veth0_macvtap: left promiscuous mode
[  844.127563][ T1118] veth1_vlan: left promiscuous mode
[  844.134764][ T1118] veth1_macvtap: left promiscuous mode
[  844.140306][ T1118] veth0_macvtap: left promiscuous mode
[  844.145926][ T1118] veth1_vlan: left promiscuous mode
[  844.151353][ T1118] veth0_vlan: left promiscuous mode
[  844.159678][ T1118] veth1_macvtap: left promiscuous mode
[  844.165197][ T1118] veth0_macvtap: left promiscuous mode
[  844.172205][ T1118] veth1_vlan: left promiscuous mode
[  844.177476][ T1118] veth0_vlan: left promiscuous mode