last executing test programs:

14.725080711s ago: executing program 1 (id=7039):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x2093, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4000}, 0x48)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a31000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008b000000ff07000052cc00000900000006000000955cc98c0422b7540ebaf9364c6fe2724c4ee30837a3625afef3cf5496b378164733b5130078f24e6f67b8fe0b433e3b6f282e9de25a0f34"], 0x1a3)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000950000000000000000000000d00000"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r6, 0x0, 0x80, &(0x7f0000000000)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x2, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a800000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r7}, 0xc)
r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='pids.current\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000500)={'#! ', './file0', [{0x20, 'pids.current\x00'}, {}, {0x20, '\x00'}]}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r9, 0x0)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f00000008c0)={{r9}, "778ced1609d72e43fdf0264278f01ef9669999f47b4401f74d3fb1d12b9c66f57794e558ad571ab3709e7243cbc6f00c4cd8c3cc10a7a57aeacde97a819bc92f0a55a19eba323d93b6d3d4153ae142a703f9f3481a0785a58750b8667ac6602a0082ce93a281b17ec52554092f7730e9504e07d06b73e1b4c36d9957247e5e71300fc376c7c4fa94f8b9344f3131c5e698f8d9bb48163bbccd55cd716f33794d21dfeb41847493f4b85655fd8ca29ea8c46a6e9cfcc2cae870c4fcdb7cffa6b06ffffbae5daa5ac513aab5973aa663a6ccfb1e63811ee3ce532ab759f1df6b871865d99fa582869b7c3fac3f97f41de449ea1a740e05e8c3bfbb868aba217ccec05c7cb2690509b32b7ee023f1341d461ac66cfd41857f25420fc122dd0198bfc150bdf46cfe90f2aa078dc1ce798ecdd8da7d7e9cf1f3d0aab786a82a454bb14dfe0b31a028841cfe795c6d6ad61013eff211c73dae76a1428e8e4576c8a35255a106e6718b67c712af3b6ee98f0266f1ed353b6d75d131b9ab80d2d7d19b91665a2c854ce96fd0aad13f7f35da9b140a3f0d4bad50494aec03a1d4d1db8af54c6259d57f3a24309878d9d3e412d29197813c85f655ab4bfe383a0278341191ca9ef702b1978382879a1f00aaf53333f71c0523247b1010c03d6995aacb720f41023f9d2ca4b5aa9443d9a897a3864d0354faa4026b66b9297a8cdff94331f80a892c07a6a92bd43556ff3e304a48d0a6dc38a7c8fdcdedff841cdf3fd10c3276e5fffe41138314e445ecdbe00100b0480c5192619dcf1d1fd37f841b4eadcbaeb3c5a55866701ec075e700f5b4df8691b5897cfcc499a12a5c713c64462387a0dd081b9f6bf2749169d1073695c20aebef95812a7283b507c380660b4f8579fbd745e393872942d02bef4b99c8dde76a29273c2df2645a9e934cc01afe0aa669abddc87deae3001dc119dbb514838def3fab73dd05dfac8151df549a443cd2136615de06a8d4707052416a7aa91d61dfd26f6376924b46ef20f2447e08666343bb93cce81f0f09caf48c9ac770b10b071bbd87b4676183ff62b448db10f1a82dee957f1996601f107e77188297ecf662792629ca70919c9931317b3dd6fbb7cfa18a955222c2e198b41b5685a277d82d9548811c25e1d63e9c9edebb4b88191622abf714e8394c5dcc1317793933f7b6c828d4aa40292fd946ffa12272839fe30e67f3810678c41f0b7f6270818d3d4e0dda4aa11e913483528cae09ce54835aa8e30180bb652ebd94844fe0991c5d547855e2d48658d3f956d41991e4792be5765bc765b20f63d3fa01b6962a12f9987b721a76f48b268eac0690a45966d92ef5251cff45ccf15bbcbfc8e39cab2ebf49a28254d7d98d1cf125193b153a84bc0c58bb4de663f6182f9f271e1a1c71a35106401d3269fb0c6bc95e765166fd6d60f13dc1d998f9fcd936995aada2892969738cd4c4e15e574a81f04c9329b7945a7bd7c14df21836b832dc70700af3d4d4c5ae106233831e014ac522f8b2b9db6d337425d2cf761a1845358242998b6d10c7ad637ba162c6e9ab0c5bab313e80e3d0ce7dd6145e85d98430ec6a42297b1bb62ff04ff477483ceabe337db403224e0b1c5e24327679702e6caf097e9c90ac3a459f4fd984013c199f9d8d65cb10191ead4844a51848e157c9ce706b0be06ff2578bfe5339bf453765fdb9b2b3d7a196128669681d8f60b43c25666351c8c377508f83fad3b5dc23cb176816a606052c35097e1aa9b80b3cbfe118fca4aee34885aeb140018964efba2629c1861c8019842b013287bd26477f72f9de553d18d4cf43a1851a4bdb2dd0dd9780b6ef3f487934a93552b199b4fb996af4098904bdf26a0c94e23929fcb1e5d7d44dae67a1aecd206bfd77ab9c1236d303b9d599f5e7dc8655ced9ce60204673eac77a0290e043c39ab1e03d012ea447a194b7a70c9a3e0f72ad90b754c207e72112cb05b10852b3308c2b63937061ab55e2996bcf28413ffb7113184ee9b8382294bf3ba34f2ed89c3650145392d9d1851b9338edc9ed71737e5e4883793b51104e194863745e03c272443fa7a8e68af700c0b2ec3830189dec701b0ebd0a79e9bef9acc5f70bf4b2b768392b046534c56a1f5be700bc615214008d25cea35a44e21a09abae38be1414fc8b1a85e538235a018f9b9079b627c134c3b6ebd8d8d30d4b6335d4141093e1d70ba4116c88c640ff91c19d510d375244d7b2ef10d3efb015e2c00ad8cd03ac11d9501bcc0248779eb5a7bfe0371c7869410912639dd1711ac7d7b7c0748051a70f67bbcee8fd1430ee8e64a52521f2fc622d4ec1cdfe36ee337ecde83128a966c393c53311daf5e790b4c26b85364f8d7629b5681365314fccdff5fa10b61589584dd02b52c490a587e906cbcf3a6220fc21ae3d0b0f06ff63076b9f02d0f957e3796fe37e7b8b6acf7754c3527a0baf2ffedb259b8e1a4eccce4a5c628e175c9f88bec78916796a34f16447e479b4f481d9c991ca00d6833d09304461799af55856f43e0f6625520d6136ac8bf7d45934f1173f97ebfafc98a122f9e2d4b621e8ffdb523c2a9bd0c3b3c5580fe448bdfad6bc7a832fcc452cc7cb1b6cb7ef5e809694080d789d945e686ebc18cf8c10019376448d8865f8b73ad2c012bfd99fb1c07b0c42f30e8aef961a58468ecc2dd5e045534f9eed537967c20edb78d38bb05dc7b9b6d6883aac25e9da7d1461d26274789d085f895d883e82e3d683aefa298860886ccd3bca44b4bb7c50df8fe4ea79944416193e9235672dc965811ba0222ac5f6de9fc6ad0bfe457a11b060b0aca68056059046911cd8ca07f4dfa66e42a05f867b7d27851ef4108a58d4a22faa8840f7e91ed5b50d84203ce31bc9c84813b29a17e6930f7106f7a2b8e0d8e378d292464e5d7f6db681bf3a6efe3c1400ddd8a13798acade8d0d13a96ce45d230a50a543bfb234796bbbfb90ac64c82e8fe3bf13fed4e282d2c832c6d80b87d844f39ef4cf093a63f0ca02cd12dcc182b8678af67e88af59347b389e7d3f39d559c9954df503e71bfc3ab2aec2766d7d1e64dce1a8f9e7e1416b9d0452dbcaa3ea06d9aa967ec6afab7feb6dd29263a237d417ae680fd3e04481ebaff4fedef033cecfd59dde702a1fc7430fda1879f4ca6477c412a4a2d219a0d52eb587d7dce71eb92f4148efa2cd9e677a2bb16244472da9131fa78d646de43503e436d1d98f70973ecadcdf36513ee20406e5efa7d7bb492bb7ac35c9f144fef76463bc5eaf651bea91ee5f716dda6f972b238bc5ce8b611c1dac84fe50a4512b579ad6c12dc03732f51e7787c332d34c9ad2be45aee6c936ab5655839fa02a332bebbce5bb19006f116718b325d71e4a6087610d4788d48557243a10876b82b24a586010942c6109b62e42296b541965e9ef5db9c30eed67e7a200125841bba0e35e460ad8d60d0fde6d4ca45df322588358b3d40d3a87b1346fb4ad2697316866a3a27cd99c2ce034b78b579d7083179d9ee9eb07e482ff06867d799bc55bbbfc9cf5d8092fa971b2e7ec395e3a9e8cbbfe42eda952ba2697c4f3a2015b4638c048d7898bd10e2f0ba570115c9c11ad3ed3e97a5f8807541277712a7218f3e00d053487311bfcaacfa0cf9c4ccdeb57192e75ef0afed2f5d70cbf1f55c57b8a9d362e563dc3ebba2076ce427af123af15ce8f00c72627ff057d6056c8cbd86096bddd66d9ae656b1406b73dd5937e6bffc8703e20e4ca8ec8426e39229ff2ac57feceee367bedca6d5dff923c7b1272a61b987dee1e4fea8470fcdf268f0d764a4702581a7842ad1a1c2b7bce43e25805bb7cd5fe97ea0bd4b0f02f7c90c9fa640b20f8c7ac2f56ba7ed3b5772964443538366ae464929b78d410cfd2d61f0056d76443b4ad2287f2eda279a44e741e225a0a043cd601426b9ad93da4eb4ee15886922ce4830d40955e749f11ecc928db23eb0f6d938f663eef85c493483c169c1dd41d392f5da53292a190e1c518de08770a0efbb8d01f4f6272d94d11fca0eef0fb6d0dc42e144eb6bf8cbdcd4fa73c0f7a7573d6e70b61adeb2c26aff507e5e7980e816e54f2cbd4a3c195badfef467655a51212da2d0759d0a872d49ad2dfbc271fa33ccf5c6d27c3cc0382372dcfd3b48d799787fb66e24c40368da66a1d8cecc63e154144f90c08b001f9db9858f88cb14ed3aefe036fafcb1bf8871e33c2a137ef0ef6fb72fd7416069aeb3a81c5186881ac31767ae48f5b2109ebaeaca548ca87556e48c9bafd7c13ec3c08efa4813742a2050a3a03000acb6fef677c6864e2ea49d5dfbfb84f3730c743c24a1c5aaf576c3441b059fb9b2643453fdc8da0c4ab8a83b42dca372345165fd9a585f8dc01cc1e543bb00c3d663d71156afe4f032e952a92f72b9bc113dbaea89f21de94cfb7eab5e93258b0e7f3f60fe01388f6468205e2a0e1bf37c8484d33ebcf51f79688b2676a4cff25da99aadcf48afd96b11ecd99cdd6f62d665e3bb3f1559b220e763296692c3729918f0cd453fe29f2516541a8723524c7416a3cbc28ac8da3ec661456b26962d18bda6a6246265f666fa44ec304caad855e8a6476e6b3f0c21cb98dcf4dd12696a60937332940b34ed47f66aed47a76bbd6338c91ca452326d8d73ff2c9b68a240b1162764ff1fc9baf955f1f26557ede4ebdb7f512e93e538ad455ba80afd7bbc7fab1a7dd6b15224b86c2eeb0841f72c48a978a6802e885293e260c883e8a19f96416b6a119c9bd7934440141de29a07bda4ba36f75028bd92fd7862dd05930bc62ccf72f314eb327ccf880045dc17a9db12cd133db12f699c5e834c236a6428ff45ee951bfdc9b16e42df50a0bede0fae367b3540e89f94f812e0cfc40b0334f530f1aa4fcb298e62c9a815d18a8e4e6e12638d3ce63adc93860a3565d615b77467212a3c0ab0f124158d03b662b088c5bc9a0e8abcb717939c1462cd5731059f96d44231dc3940edc15fae711ad3a18ed26f706edce2cd66c6add8110cabd498cad9a1ea71b514c2a2c28fec2769c2de6b9bb7edca33b7f5e93528ed6109ad6c5dbfbb7b4212d6271dfc8a7f4b5de46b325436cf5d396ce8cfd3dd33fef307ca039443fa0dd7fda9786efb785ba9df6256d065b32411c5f8e3e7e1451d8f5006b31c81bc467ecd5beff874e7d078a080035071389d0a62f5c0eb8ea0ff8f7cde2e0f95ed4afce812d7a160f0959fb68efde047f5a8bee57354859a50649441e6bf8d2a19301a88e7a2425389811c41eee0b9e3c73917250d0e273b3b5c990e8ece1164c6cc4ba2fdf2b018505952993c48a5dd205b83197d4b8c32d3a8bf5923728be3be6427c8036d39f2d12f2d97e95ad6e99ce3fd21a31727f171e3b3eb925b17af520d02f822804ed02b5e80c277648c636ac5af7c75080de926193f26688590fe1de3302dfbe11982d3c5b7f154b4cb2bfb8863dd6e0312da9de9b6be77de65e842044b806352bc1b849fbc563f941f39952d7b6470a8a40a641b9c5bf68abacf857ddf0a1aead64d3833027a2c86054b14a27e2c12b7980372628df84b9a8127228ac1c2ce23acf3cf972bd82557d58fc4769c90ca72a02548913435f7f967f2e390805129b369a37deb6c51e6a1f6847b42eeac8560041f591d8de26dbd52acf8b26b94f5950e6d18520574205be24e16f536e700813ed383b58151df2bddc0dbe90cf25b5c9b2cf0b1b86e909ea7cbcb5df920dbe43dfefdd46323c7da0426b5c6"})
write(0xffffffffffffffff, &(0x7f0000000400)="6f88b2a60614ef91a3f8ef9e1220b2675bce0f59b2336b1e3eb222ffa77b91bd642da8472b07a5059831e5c03734ccff6480db993a9be5198f428be1838bef5847f8452dab06605676dc879a87d9c28bf128eb784296078f", 0x58)
sendmsg$netlink(r10, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)={0x1c0, 0x24, 0x100, 0x70bd2a, 0x25dfdbff, "", [@typed={0x8, 0x45, 0x0, 0x0, @u32=0x4}, @nested={0xfd, 0x120, 0x0, 0x1, [@generic="0f4a9c7ed4ecf0d2bd0de6bd2f8b4903146054e024ae6ca8cfe3a330f1cf9812dd49bfa2e12f69226b0f4ec072d36999ce8046e1f6eb9084f29f2e1dc9c1fce5e5e0c21d38c77f1915510481becc5fcceb7f6e11876956150fc0f00f5bae21e12fe7872f45060cf9da523ece75ae24f234331f1e35de6d0c30c5776ee6517fe39dfe3203021516079cb4b25f1193e005556c69c6bf2466a85c1da0a897a1e1c71cf33296e1562da8f2eab8ad7da0cf5ac7b845151d5eab72f4460056905f8acbe730b50cd2e68a66333423a3173d09f005e7aa5be9df02058dbfd691881354cfdd5afc4fbd857eae1ade8afbf330fd1700e4eead44d3351d4d"]}, @generic="f6ff70630b5ecee1c38768f90a4d3755492522013581464e7ecb09a867e451150bc6e38400d4f4469780f43a78c0b64635a3a8bb60c729c09d586208b6b25663e9eaf834af8574d6fdd6d84024a14403eb926b41c73d92e40dfc830f572db67eca60e0157c7fa0bc5b8a2f1cd35d72a457c93069c602c8bb8e4aba7d1c8f519831e59090bb4a268f257ac0641f39b1af780478e36f01ffe9", @typed={0x8, 0x4e, 0x0, 0x0, @fd}, @typed={0x8, 0xfb, 0x0, 0x0, @fd=r8}]}, 0x1c0}], 0x1}, 0x0)
r11 = dup(r8)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r12 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r12, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000840)="0f0666baf80cb804a48d8b660f382a590066bafc0ced470f01d166b86f008ee8460f08c421d973d67e0f01f866460fd4030f2156b9800000c00f32440100bf000f3066ed", 0x44}], 0x1, 0x20, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="c5", 0x1, 0x0, 0x0, 0x0)
r13 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r9, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000083f4718b4490e74ed4c524d1b147102ace273073542019350aaa4b423d0733389132cddd7ac69241a79ab935d4f350", @ANYRES16=r13, @ANYBLOB="000429bd7000fddbdf25140000000800170009000000080014000a0000000800100004000000080012000200000008000a0008000000"], 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0xc8c1)

14.613596054s ago: executing program 3 (id=7040):
socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = dup(0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r6 = dup3(0xffffffffffffffff, r4, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)=ANY=[@ANYRESHEX=r3, @ANYRES16=r3, @ANYRESDEC=r6, @ANYRESHEX=r5])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_setup(0x0, 0x0)
r7 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendto$llc(r7, &(0x7f0000000300)="8d", 0x1, 0x0, 0x0, 0x0)

13.594680756s ago: executing program 3 (id=7041):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000a80)=[{&(0x7f000004ca80)=""/102397, 0x18ffd}, {0x0}], 0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000001980)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={r2}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x108, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f09df33c9f7b986", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_usb_connect$hid(0x4, 0x0, 0x0, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
socket$igmp6(0xa, 0x3, 0x2)
syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0)
readlink(0x0, 0x0, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)='\x00', 0x1, 0x4, &(0x7f0000000240)={0x2f, 0x0, 0x0, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}}, 0x14)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000080)={0x1, 0x0, [{0x100000, 0x1000, &(0x7f0000000a40)=""/4096}]})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000000680)=""/93, &(0x7f0000000700)=""/83, 0x3000})
ioctl$VHOST_SET_LOG_BASE(r4, 0x4008af04, &(0x7f00000002c0)=&(0x7f0000000200))
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000001c0)=0x1)

13.429508004s ago: executing program 1 (id=7043):
pipe(&(0x7f0000000580)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000008e25900ee8d386dd601646b085a2009a2f00ff020000000000000000000000000001fc010000000000000000000000000000000000000000000005020000000000000420880b00460000670c12d787bc48454ad5ab0dbcd795bf5fb1f628b38949083230"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a010200000000000000000200000009000100"], 0x1e4}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

12.838492736s ago: executing program 3 (id=7045):
open(&(0x7f0000000040)='./file0\x00', 0x147042, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
fcntl$setlease(r2, 0x400, 0x3)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000100), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
copy_file_range(r1, 0x0, r3, 0x0, 0x0, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc7000000000001090224000100000000090400000103000000092100"], 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000000), 0x8001ff, 0x2)
r6 = dup(r5)
ioctl$USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000001340)={0x80, 0x6, 0x300, 0x2, 0x0, 0x8, 0x0})
syz_usb_control_io(r4, &(0x7f0000000400)={0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB="f8db0ef570ab61db321c239e4ecd4fa1cd7f993bacc5628369b3e9208a7fe5cb718db14199f4dbbe9d97a35dda923856b352ee0918043ee2f9e8fd2b20a62b281b42069eda5e41f053e9ec364e0767e2fd5090785fa129009d355fc12fce"], 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x218080, 0x0)
chdir(0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000004440)={0x0, 0x0, &(0x7f00000043c0)=[{&(0x7f00000020c0)=ANY=[], 0x18}], 0x1}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r8 = dup(0xffffffffffffffff)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0xc080)
dup(r9)

11.412762806s ago: executing program 1 (id=7049):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00')
write$vhost_msg(r0, &(0x7f00000003c0)={0x1, {0x0, 0x0, 0x0, 0x1, 0x3}}, 0x48)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x20000002)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private2, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@private2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
r3 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000001c0), 0x4)
ioctl$PPPIOCSMRU(0xffffffffffffffff, 0x40047452, 0x0)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0xb8}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
syz_usb_connect(0x0, 0x24, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xc3, 0xa1, 0xd7, 0x8, 0xccd, 0x99, 0x950d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xbc, 0x71, 0xf9}}]}}]}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000002000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r7 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r5, 0xc0709411, &(0x7f00000002c0)={{<r8=>0x0, 0xf5, 0x6, 0x4, 0x6, 0xa148, 0x808a, 0xfffffff4, 0xffffff15, 0x7, 0xff, 0xffffffffffffff60, 0x6, 0x4, 0x400}, 0x10, [0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r7, 0xd0009411, &(0x7f0000000600)={{r8, 0x8000000000, 0x8, 0xd82, 0xb, 0x5, 0x4, 0xfffffffe, 0x5b698fb8, 0x2, 0x9, 0x1, 0xffffffffffffffff, 0x10001, 0x1}})
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000002100004000000000ff"])
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
getsockopt$netlink(r0, 0x10e, 0x6, &(0x7f0000000080)=""/5, &(0x7f00000000c0)=0x5)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000040)=0xf)

11.231020851s ago: executing program 2 (id=7050):
socket$inet6(0xa, 0x200000000003, 0x87)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000400)={0x1, 0x0, {0x2, 0x0, 0x0, 0x16, 0x0, 0x100}})
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000a000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfff}, 0x96)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
write$uinput_user_dev(r3, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_SET_RELBIT(r3, 0x40045566, 0x8)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x2)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x1)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$UI_DEV_DESTROY(0xffffffffffffffff, 0x5502)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f0000000080)={r2, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
chdir(&(0x7f0000000280)='./file1\x00')
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f00000000c0)='./file1\x00', r4, &(0x7f0000000100)='./file1\x00')
socket$inet6(0xa, 0x5, 0x9)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)

11.029722255s ago: executing program 2 (id=7052):
syz_open_dev$vcsn(0x0, 0x1, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x0, "741cb976"}]}}, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000e80)={0x2c, 0x0, &(0x7f0000000d80)={0x0, 0x3, 0x4, @lang_id={0x4}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0xc, @string={0xc, 0x3, "3b772b5c38e2870b4e77"}}, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000440)={0x24, 0x0, &(0x7f0000000640)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0)

9.242310907s ago: executing program 1 (id=7057):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000940)=ANY=[@ANYBLOB="1201000041436120410e515001d6000000010902f98a5c01000000090401001186eee20009058217048a"], 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001400add427323b472545b45602117fffffff81000e220e227f000008925aa80013007b0009008000", 0x2c}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x2def, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
capset(&(0x7f0000000000), &(0x7f0000000280))
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x48802)
ioctl$SCSI_IOCTL_SEND_COMMAND(r8, 0x1, &(0x7f0000000000)={0xb00, 0x0, 0x54})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000140)={r7, 0x0, 0x25, 0x1, @val=@netkit={@prog_id}}, 0x40)
socket$packet(0x11, 0x3, 0x300)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_usb_control_io(r0, 0x0, 0x0)

8.82966012s ago: executing program 0 (id=7059):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0xe, &(0x7f00000002c0)=ANY=[@ANYBLOB="b700000012edfffebfa30000000000007603000028feffff7a0af0fff8ffffff61a4f0ff000000005d040000000000007f0000000000000027"], 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x0, 0x10, &(0x7f0000000300)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@exit]}, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (fail_nth: 1)

8.499239891s ago: executing program 0 (id=7060):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
syz_pidfd_open(0xffffffffffffffff, 0x0)
syz_open_dev$video4linux(&(0x7f0000000280), 0xb9, 0x0)
syz_emit_vhci(&(0x7f00000002c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_INQUIRY_CANCEL={{}, 0x71}}}, 0x7)
ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getdents(0xffffffffffffffff, 0x0, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000300), &(0x7f0000000280)=0xc)
mount$tmpfs(0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000002480)=ANY=[@ANYRESHEX, @ANYBLOB, @ANYRESHEX, @ANYBLOB=','])
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000380)=[{0x0, 0x2a4}], 0x1, &(0x7f00000007c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18, 0xa001}, 0x40)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000006b1142000000000006000000000000009500800c00000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

7.513578567s ago: executing program 0 (id=7061):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, &(0x7f0000000040)='fd/4\x00')
pread64(r3, &(0x7f00000002c0)=""/80, 0x50, 0x7fffffff) (fail_nth: 1)

7.381526563s ago: executing program 3 (id=7063):
r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
r1 = socket(0x200000100000011, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r3, 0x0, 0x0)
ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000300)=""/15)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f000001f480)=ANY=[@ANYRESOCT, @ANYBLOB="0000000000000000b7080000120000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
socket$inet6_sctp(0xa, 0x0, 0x84)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000980)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)='4', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000003c0)='C', 0x1}], 0x1}}], 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000c80)="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", 0x34000, 0x0, 0x0, 0x0)

7.068522697s ago: executing program 2 (id=7064):
socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = dup(0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r6 = dup3(0xffffffffffffffff, r4, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)=ANY=[@ANYRESHEX=r3, @ANYRES16=r3, @ANYRESDEC=r6, @ANYRESHEX=r5])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendto$llc(r7, &(0x7f0000000300)="8d", 0x1, 0x0, 0x0, 0x0)

5.892356065s ago: executing program 0 (id=7066):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r4, &(0x7f0000000040)=[{&(0x7f0000000480)="db", 0x1}], 0x1, 0x4000001, 0x0)
sendfile(r3, r4, 0x0, 0x8000fb00)

5.863409367s ago: executing program 2 (id=7067):
socket$isdn(0x22, 0x3, 0x21)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000100)={0x9, 0xbb, {<r0=>0x0}, {0xee00}, 0x100})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = syz_open_procfs(0x0, 0x0)
read$FUSE(r2, &(0x7f00000007c0)={0x2020}, 0x2020)
r3 = syz_genetlink_get_family_id$gtp(0x0, r2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000}, 0x48)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = open(&(0x7f0000000300)='./bus\x00', 0x16707e, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000feffff000000a6d49772a67efa000166008018380000020000000000000000000000b09932a4d78cfc090000001c94d13500"/70, @ANYRES32=r6, @ANYRES32=r3, @ANYRES64=r4, @ANYBLOB="000000000000000025240800ffffffff180000000700000000000000070000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x37, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r10 = socket(0x1e, 0x4, 0x0)
socket$packet(0x11, 0x3, 0x300)
connect$tipc(r10, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
sendmmsg$unix(r10, &(0x7f0000004400), 0x400000000000203, 0x0)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r12 = openat$cgroup_int(r11, &(0x7f0000000080)='cpuset.mem_exclusive\x00', 0x2, 0x0)
sendfile(r12, r12, 0x0, 0x2000000000000002)
write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000140)={0x28, 0x0, 0x0, {{0x5, 0x7f, 0x1, r0}}}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)

3.643379932s ago: executing program 2 (id=7069):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}]}], {0x14, 0x10}}, 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x8, 0x0, 0x0, {{0x21, 0x4, 0x0, 0x2, 0x84, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0x4, 0xc8, 0x3, 0x1}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2, 0x7}, {@private=0xa010101}, {@multicast2}, {@broadcast, 0x52b1}, {@multicast2, 0x7}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0x5c, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0)
r4 = dup(r2)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x1fc)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r0}, 0x38)

3.641785513s ago: executing program 3 (id=7070):
socket$inet6(0xa, 0x0, 0x41008)
openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r4 = dup(r3)
r5 = creat(&(0x7f0000000300)='./file1\x00', 0x120)
close(r5)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
r7 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, &(0x7f0000000200)={0x1, 0x7b})
ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000240)=r7)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000040)={0x1, r7})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f00000001c0)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/71, &(0x7f0000000500)=""/73})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000015640)=""/102400, 0x19000)
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000000000)=0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x12, r4, 0x52a35000)
write$binfmt_script(r4, &(0x7f0000000840)={'#! ', './file1/file0', [{0x20, '/\xf4'}, {0x20, 'Q\x84\xf6ui\xfa\xf5\x16i\x859o\xe5\x13\xd5gV\x04\x00\x98\xb0\bQ+\xe2G\xa1\x1e\x01\xa9\xd6w\xdf\xa6\x9d\xcc<\x86\xfd\x18\x99\x19\xed\xc2\xdc\xf4\xbdV\xfeF)T\xb6\xc6\v`\xbf\xec2\xf5\x12R\xa1\x18\x9a<\x8fx\xf4\xcc\x18\xfc\xdb\x0e\xe7\xde^\x88vN\xe0\xe4P\x1dj\xd6&7\x7f\xe82\x92w\x12\t\xff\x19$\x93\xd5\xa4\xe2}\x9aA9p\xffk0\x8c\xc3\xae[n1\xb4\xd7\xe6\xa4\xc2\x86M\x83\x1d\xd7\x84\xa4\x85n(\xd3\x95\x82\xe0\xff\x89=\xe6\xceM\x12'}, {0x20, '/dev/nullb0\x00'}, {0x20, '\x00\x00\x00\x00\x00'}, {0x20, '\t\x00\x00\x00\x00\x00\x00\x00\xb2%}\x88\xd0\xfd\xa3\xf7i\x00!\x00J\xd1\xa7\xb1\xb1\xae\x1b\xb4\xf2\x985\xe6M5Px\xbe\x00'/47}, {}, {0x20, '\xfe]\xe9a<$\x01)\xa3\x03D%\x06\xf9}iv\xfc\xe0\xc7s\xc1\xa5c\xa4\xfd\xb8\xea\xe5\x9a\x82w\xc6\\]\x8cB\xfb\xea\xbd\xe3\x8c@\x8aqX\xcd\xf5?\xe6\xa2z\xbdPF_\x01K5\xbf\xc0\x83=\xa9]S\xe2`\x02j;\xce\x8a\x9fY\xdc\x90L\x1f\x9cS\x83\xb4\xc3\xfb\xe9$\x80\xbd\x85\x8bu-a\x9a\xb3\xb0{\xed\xcc\xdd\xeeG\xeb\x98\xb2\xfa\xc8\xa1\x04\xd5N\x9f\xda\x95\xf8\x8c\x92v\xf3\xf6I\xeb6\xe9`\xcbt\x0f`\xb3dl\x0f\x8e\x93\x10\x97n@\xc4\xcb\xc6\x80\x17O\x8dM#x\xe2\xe9T\xda\x1d\xe6\xb1\x1b\x06\x89\x94Q\xcb\x8f\x92N\xade\xf9l\xca\x81\xd3\xd1\x84`6\xed\x98\x9a\x90:\x13\xdb\x8f\x87\xd6\xe8w\xfdb\x17}\x14*z\x98\xb3\x96\x9dW\xa7\x81\x0e\x11Q3\xc2\xbfx\x94\xbb\x13\x9b\xd2\xec/\xfac^\xa2\x8e8\xbeM\x11\xcb\x89P\xba\xd9E}\xe4\xa7M~?\xbdiMh\xce\xb2\b\x9d\xf0\xbd\xc5\xa7=A\xc9\xf6\x9c\\\x9c\xf0\xaa=\xb7\x83\x80\x10.%\t\xed\xb6\xacP\"\a\xc6\x8a\xf6GB\xd2a\x83\xa4\xa4\x1bRO\x1a\xe2N\xe6\xc8\xf2Cm\xb0\xe7\xeb\xcf\xc3\xba\xbd\xf4\xde\x8aZ@\xcd\xc9\xcbLJi8\x04q+\xf9x\xeas\xb2\xa1D\xd5\xc7\xfa\x919\x93_\xc7/:R2\xc5\xc0\xb4\"\x85\xe8THI$\xe5\xac\xb7\x13\xb2\xa5\x93\xbf\x83g5.\xb9\xd0\x89\xef\x8f\r\xa2\xfe\x90\x1b\xc8['}]}, 0x259)
ioctl$BLKRRPART(r4, 0x125f, 0x0)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000580)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x17, 0xf, &(0x7f0000000480)=ANY=[@ANYRESOCT=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000bb000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b7000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)

3.511583556s ago: executing program 1 (id=7071):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x3c, r1, 0x9, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY={0x14, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_IDX={0x5}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x3c}}, 0x0) (fail_nth: 1)

3.144091576s ago: executing program 0 (id=7073):
open(&(0x7f0000000040)='./file0\x00', 0x147042, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
fcntl$setlease(r2, 0x400, 0x3)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000100), 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
copy_file_range(r1, 0x0, r3, 0x0, 0x0, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc7000000000001090224000100000000090400000103000000092100"], 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000000), 0x8001ff, 0x2)
r6 = dup(r5)
ioctl$USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000001340)={0x80, 0x6, 0x300, 0x2, 0x0, 0x8, 0x0})
syz_usb_control_io(r4, &(0x7f0000000400)={0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB="f8db0ef570ab61db321c239e4ecd4fa1cd7f993bacc5628369b3e9208a7fe5cb718db14199f4dbbe9d97a35dda923856b352ee0918043ee2f9e8fd2b20a62b281b42069eda5e41f053e9ec364e0767e2fd5090785fa129009d355fc12fce"], 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x218080, 0x0)
chdir(0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000004440)={0x0, 0x0, &(0x7f00000043c0)=[{&(0x7f00000020c0)=ANY=[], 0x18}], 0x1}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r8 = dup(0xffffffffffffffff)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0xc080)
dup(r9)

2.719342608s ago: executing program 4 (id=7074):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="020380090a0000002dbd700004000000030006003c000000020000007f000001000000000000000002000100000000000000060300000020030005000000000002"], 0x50}, 0x1, 0x7}, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r2 = socket(0x22, 0x2, 0x4)
ioctl$IMGETCOUNT(r2, 0x80044943, &(0x7f0000000000))
ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000000500))
setsockopt$netlink_NETLINK_CAP_ACK(r2, 0x10e, 0xa, &(0x7f0000000100)=0x6, 0x4)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
syz_clone(0x84800280, &(0x7f0000000200), 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000300))

2.718836709s ago: executing program 1 (id=7075):
syz_open_dev$vcsn(0x0, 0x1, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x0, "741cb976"}]}}, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001840)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000e80)={0x2c, 0x0, &(0x7f0000000d80)={0x0, 0x3, 0x4, @lang_id={0x4}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0xc, @string={0xc, 0x3, "3b772b5c38e2870b4e77"}}, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000440)={0x24, 0x0, &(0x7f0000000640)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0)

2.54811885s ago: executing program 2 (id=7076):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)

2.176057378s ago: executing program 4 (id=7077):
socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = dup(0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r6 = dup3(0xffffffffffffffff, r4, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)=ANY=[@ANYRESHEX=r3, @ANYRES16=r3, @ANYRESDEC=r6, @ANYRESHEX=r5])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendto$llc(r7, &(0x7f0000000300)="8d", 0x1, 0x0, 0x0, 0x0)

1.139372138s ago: executing program 4 (id=7078):
r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000180), 0x501, 0x0)
ioctl$CAPI_REGISTER(r0, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0x800})
writev(r0, &(0x7f0000000200)=[{&(0x7f0000001940)="5dbe9d5a31427569", 0x8}], 0x1)

984.446474ms ago: executing program 4 (id=7079):
r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000180), 0x501, 0x0)
ioctl$CAPI_REGISTER(r0, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0x800})
writev(r0, &(0x7f0000000200)=[{&(0x7f0000001940)="5dbe9d5a31427569", 0x8}], 0x1) (fail_nth: 1)

419.099074ms ago: executing program 4 (id=7080):
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
pwritev(r2, &(0x7f00000003c0)=[{&(0x7f0000000380)="e809b37a33c9d575f6731dec80ae7acc9698e6b052", 0x15}], 0x1, 0x0, 0x0) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
write$binfmt_script(r2, &(0x7f0000000340), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) (async)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3) (async)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async)
r4 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'}) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

102.772337ms ago: executing program 3 (id=7081):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000000c0)="1a00000082000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = syz_usb_connect(0x5, 0x4ae, &(0x7f0000000580)={{0x12, 0x1, 0x200, 0xed, 0xf0, 0x8e, 0x40, 0x4ce, 0x300, 0x3d99, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x49c, 0x1, 0x8, 0x3, 0x10, 0x9, [{{0x9, 0x4, 0x49, 0x9, 0xe, 0x27, 0xab, 0x7f, 0x5, [@uac_as={[@format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0xdb4c, 0x8, 0xff, "cecc277f02285c4c01"}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x5, 0x1, 0x24, 0x4, "27af432187217f18"}]}], [{{0x9, 0x5, 0x1, 0x0, 0x6c61739129cc9f34, 0xe, 0x2, 0x0, [@generic={0x15, 0x0, "93aea03b382c5a52ca191417afb36b3365fc10"}]}}, {{0x9, 0x5, 0x0, 0x4, 0x2d94d56d15a4b7ab, 0x0, 0x4, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x0, 0x2}]}}, {{0x9, 0x5, 0xa, 0x8, 0x10, 0xc, 0x5, 0xf1, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x6, 0xd}]}}, {{0x9, 0x5, 0x80, 0x2, 0x3ff, 0x3, 0x9, 0xfb, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x7, 0x1}]}}, {{0x9, 0x5, 0xf, 0x2, 0x400, 0x5, 0x7, 0x40, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x8, 0x7}]}}, {{0x9, 0x5, 0xe, 0x10, 0x10, 0x1, 0x9, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0xfff7}, @generic={0x72, 0x21, "82614ab850d198d2e8c3f3515b80ec6d4054ec0e13711017eaef9c3f1170b44d17a5c32b443067365cd0fee5184716c0bd063210e72d24fe06ae2277043842d8196439c76c97d27b80bcf541e12b8bbc535d66c3798760c959b3682a60c9c3000683a8a23d41c89f6858a02fadb01c9f"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x200, 0x5, 0x1, 0x6, [@generic={0x6b, 0x9, "115a0b3862221ab0bd079e466cfc04d65d29ab12a1524585c56aed2069d44f4625eef3e502dc696823199b52f41ab771e44e8948ce59950fca8a7861498c6498202886b45345d7ff38b3282de320fda6474df0f420b3a63c65f21318d6f89e155a1287a8f5e4867a18"}]}}, {{0x9, 0x5, 0xd, 0x4, 0x3ff, 0xfd, 0x2, 0xc, [@generic={0xaf, 0x8, "ed587f94fde481ae573adb3dd1c1d943e19547e8a4b46ad6159c868ef8fd7d7ffcfdbfc5bf87685d2b6000ec911850f18b84989ec47c366bbb85866a6d1f28f8681910119a9990e285a65c132287523658e5d8c0e9369638222fc1fb5b8f462b467b779aeac963b4f643950f0ccbb7884f026c5c90f944a61f4b302a33ca414f5523c10f40c953a353cafddb006e5f664f6a6662e8c822c3388c284f23be63cb8fcb6466f108864ab56ff70eea"}, @generic={0x83, 0x30, "df6c3e9ce91a423d3080a252c66dcc2500e30df97ddb0b6fb747a634b18cceda0c1ce90b360c5b6685bc65f06758f882757e669cefebf56d7eae00660edf920b793b0bc84b05141015b1dd2257434a10dac064c5f1ea88bc4db1276c1831f4f429920ac41b07ecee67f95b00f588027ede60b6f6dc7d5ceb1bd0a7502ffb87fa5a"}]}}, {{0x9, 0x5, 0x3, 0x10, 0x10, 0x40, 0x80, 0x78, [@generic={0x3f, 0x1, "69db1c101df1506df2082014da42724f0332798b5fc80fc8696218ba99484fa3d0ed89cad8f46374c562148d1255bf8795adbbe73b97a192ac56bcf45e"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x1, 0x1ff}]}}, {{0x9, 0x5, 0x3, 0x0, 0x400, 0x4, 0x3, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xa3, 0x6}]}}, {{0x9, 0x5, 0xe, 0x4, 0x1c7, 0x1, 0xcb, 0x5, [@generic={0x26, 0x8, "6fba092514a7d0cf70b72e1fc2e6050eb6127d31f76265dbce3d23615aa689a588db0083"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x1, 0x2800}]}}, {{0x9, 0x5, 0xf, 0x0, 0x200, 0x40, 0x5, 0xff, [@generic={0x71, 0x31, "316cf3ca63044cb298402e5585278e552ace304ae97efa327eb8efafbdcc82d427831853b2d017e5f8f9c74ac2b8f6da3aea8abaddd31665456ba4ed7f058b3e72fb62f6c352a42b6dba1b99db6dc8626970a6a537fe48740a0f6f0c74bc136f82eb6d5ec8dd1c91d7d20c896bbf45"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x0, 0x7}]}}, {{0x9, 0x5, 0xf, 0x2, 0x20, 0x0, 0x1, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xd8, 0x3}, @generic={0xa3, 0x21, "0f0affa676c801cab93390df09a6f0b3676d0cfdfa76015ac17987125adef553a7c6d3c42ec0b2b232a20eb9101bd493f3c1dd4f990e1d23bc994e1e28ba1bac8825839432121d5e0ceb9a28a868427cfc7939a525180a6a04bf05c46e6a9404936d98eba449fcde21cb6a54c0e60644d6e04f2d84a2553a392054eeba61d5e35bdfaa47472cf3abceb71589b4499d1e79dfcd9a07dc5e7ab15d9bf3ce3ea7a463"}]}}, {{0x9, 0x5, 0xa, 0x0, 0x20, 0x49, 0x5, 0x4e, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x9, 0x8}]}}]}}]}}]}}, &(0x7f0000000240)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x310, 0xe4, 0x18, 0xf, 0x40, 0x40}, 0x36, &(0x7f0000000100)={0x5, 0xf, 0x36, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0xc, 0x7, 0x8, 0x5}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "688a8f9d19d6851f687ed552dc5b3524"}, @wireless={0xb, 0x10, 0x1, 0x4, 0x23, 0x9b, 0x76, 0x3, 0xf6}, @wireless={0xb, 0x10, 0x1, 0xc, 0x1, 0x6, 0x9, 0x6, 0x8c}]}, 0x1, [{0x79, &(0x7f0000000180)=@string={0x79, 0x3, "8fd67a014a8f5dc3c5fe07faa7c17ffd103334fd932cccf1098cf9077abd392d7cd2c0eb4f79f776847b381a82f5fa6a0c7adac7877fbd8eea9ce05ad6e935001208f1ee898fd3faa3c88e152b9b2b920ce760a3c236acdd17566035cce27d920d67cf20d26737f680c9377f73f68a752cd3c7995bf49c"}}]})
syz_usb_control_io$hid(r2, &(0x7f00000003c0)={0x24, &(0x7f0000000280)={0x20, 0x21, 0x6, {0x6, 0x1, "87061bb4"}}, &(0x7f0000000300)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x458}}, &(0x7f0000000340)={0x0, 0x22, 0x2d, {[@local=@item_4={0x3, 0x2, 0x5, "e91fbeb5"}, @local=@item_4={0x3, 0x2, 0x8, "232bd5b0"}, @local=@item_4={0x3, 0x2, 0x7, "4b0716fb"}, @local=@item_4={0x3, 0x2, 0x13, "8d114d4f"}, @global=@item_4={0x3, 0x1, 0x9, "e08e95ea"}, @global=@item_4={0x3, 0x1, 0xe, "b83e463a"}, @main=@item_4={0x3, 0x0, 0xb, "a4b0149b"}, @global=@item_4={0x3, 0x1, 0xc, "bc7d4608"}, @local=@item_4={0x3, 0x2, 0xa, "c27f9dc8"}]}}, &(0x7f0000000380)={0x0, 0x21, 0x9, {0x9, 0x21, 0x5ac8, 0xde, 0x1, {0x22, 0x28e}}}}, &(0x7f0000000c80)={0x2c, &(0x7f0000000b40)={0x20, 0x1, 0xcc, "a5a14b89c7528f0c026ea094aaa5ec90ddf8c685da26074825ea0e08ee8634f0ff2cd19a09078c4bc6168baa82f87aaac71d0d562c10849ef204ffa1d3a50e72ebc4d8f5de9ce7acbe2a70af4abcdef3a2b4f6703cda5e831c8d5b6223c2c038c1d546e06f7b55d39758a081a9fabad18470ac4aa592f960d9221094d0da564c97a5c0b8fc5b59f07ccf3e86e6f000b22e91ab29627874484ce559fa89786834adbdc18d9f65c0cdf1153bc4b8f812b6e50cc62a4aa3031f6cb46c906beae07902f1f71e34b0de5245a33a50"}, &(0x7f0000000400)={0x0, 0xa, 0x1, 0x38}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0xb1}, &(0x7f0000000a40)={0x20, 0x1, 0x5e, "8247ace88b59ea6bd8c9a37759b413660c1628b2013c77619a5e22419a2a957690eead660263363ea893f3106e44fc85556082302104c89c1e69c6349f9ba54cae0fdb09f9b9d8ba341517f39b02f500f12a2ca9a45af55705423c9b07e2"}, &(0x7f0000000c40)={0x20, 0x3, 0x1, 0xf0}})
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$setsig(0x4203, r6, 0x20000000000000, &(0x7f0000000ac0)={0x0, 0x1, 0x40002})

64.10878ms ago: executing program 0 (id=7082):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) (fail_nth: 1)

0s ago: executing program 4 (id=7083):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00'})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
recvmsg$inet_nvme(r0, &(0x7f00000005c0)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000400)=""/222, 0xde}, {&(0x7f0000000640)=""/242, 0xf2}], 0x2, &(0x7f0000001d40)=""/4096, 0x1000}, 0x1)
r2 = gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(r2, 0x1, &(0x7f0000000080)=0x800)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x2, &(0x7f0000000740)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
rmdir(&(0x7f00000001c0)='./file1\x00')
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
linkat(r4, &(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYRES64=r1], 0x38}, 0x1, 0x0, 0x0, 0x1040}, 0x40810)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

kernel console output (not intermixed with test programs):

s unique to avoid problems!
[ 1788.717775][T26550] RIP: 0033:0x7f80ba3779f9
[ 1788.717796][T26550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1788.717812][T26550] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1788.717834][T26550] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1788.717848][T26550] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 000000000000ff42
[ 1788.717860][T26550] RBP: 00007f80bb0c3090 R08: 0000000020000140 R09: 0000000000000000
[ 1788.717873][T26550] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[ 1788.717887][T26550] R13: 0000000000000001 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1788.717918][T26550]  </TASK>
[ 1788.937219][ T5267] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1788.948736][ T5267] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1788.971637][ T5267] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1788.997796][ T5267] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1789.008698][T26342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1789.022619][T26342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1789.028414][ T5267] usb 3-1: config 0 descriptor??
[ 1789.122063][T26342] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1789.171188][T26342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1789.208725][T26342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1789.237776][T26342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1789.447051][T26342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1790.491821][T26342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1790.548181][T26342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1790.562566][T26342] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1790.573836][T26342] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1790.587424][T26342] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1790.613359][T26342] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1790.640169][T26342] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1790.665880][T26342] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1790.689955][T26342] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1790.729208][ T5267] uclogic 0003:256C:006D.0056: failed retrieving string descriptor #200: -71
[ 1790.779937][ T5267] uclogic 0003:256C:006D.0056: failed retrieving pen parameters: -71
[ 1790.789578][ T5267] uclogic 0003:256C:006D.0056: failed probing pen v2 parameters: -71
[ 1790.804375][ T5267] uclogic 0003:256C:006D.0056: failed probing parameters: -71
[ 1790.868809][ T5267] uclogic 0003:256C:006D.0056: probe with driver uclogic failed with error -71
[ 1790.938088][ T5267] usb 3-1: USB disconnect, device number 13
[ 1791.062252][T22721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1791.079293][ T5633] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1791.109169][T22721] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1791.127830][ T5633] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1791.513333][T26594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6833'.
[ 1792.331721][ T1269] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.347760][ T1269] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.591321][T26603] mkiss: ax0: crc mode is auto.
[ 1792.607165][T26606] netlink: 168 bytes leftover after parsing attributes in process `syz.4.6835'.
[ 1792.719053][T26602] netlink: 'syz.1.6833': attribute type 4 has an invalid length.
[ 1792.744315][T26602] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.6833'.
[ 1792.865519][   T29] audit: type=1326 audit(1723463977.044:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26617 comm="syz.3.6837" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb0a9d779f9 code=0x0
[ 1792.935945][T18764] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[ 1792.997833][T26579] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1793.147719][T18764] usb 5-1: Using ep0 maxpacket: 8
[ 1793.165207][T18764] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1793.194754][T18764] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1793.215307][T18764] usb 5-1: Product: syz
[ 1793.219834][T18764] usb 5-1: Manufacturer: syz
[ 1793.224686][T18764] usb 5-1: SerialNumber: syz
[ 1793.238284][T26579] usb 3-1: Using ep0 maxpacket: 8
[ 1793.254905][T18764] usb 5-1: config 0 descriptor??
[ 1793.268677][ T5267] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1793.283994][T26579] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1793.302487][T26579] usb 3-1: config 11 has an invalid interface number: 244 but max is 0
[ 1793.318023][T26579] usb 3-1: config 11 has no interface number 0
[ 1793.324553][T26579] usb 3-1: config 11 interface 244 altsetting 5 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1793.341547][T26579] usb 3-1: config 11 interface 244 has no altsetting 0
[ 1793.357543][T26579] usb 3-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=57.8a
[ 1793.375831][T26579] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1793.386725][T26579] usb 3-1: Product: syz
[ 1793.391618][T26579] usb 3-1: Manufacturer: syz
[ 1793.396362][T26579] usb 3-1: SerialNumber: syz
[ 1793.489883][T18764] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1793.500259][T18764] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1793.513349][T18764] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1793.513847][ T5267] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1793.532882][T18764] dvb_usb_af9035 5-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1793.557920][T23688] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1793.565844][ T5267] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1793.572227][T18764] usb 5-1: USB disconnect, device number 29
[ 1793.582618][ T5267] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[ 1793.610505][ T5267] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1793.626086][T26579] usb 3-1: USB disconnect, device number 14
[ 1793.646451][ T5267] usb 4-1: config 0 descriptor??
[ 1793.777789][T23688] usb 2-1: Using ep0 maxpacket: 8
[ 1793.786506][T23688] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1793.796673][T23688] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1793.806756][T23688] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1793.817011][T23688] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1793.827117][T23688] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1793.842830][T23688] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1793.852185][T23688] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1794.078790][T23688] usb 2-1: usb_control_msg returned -32
[ 1794.086731][T23688] usbtmc 2-1:16.0: can't read capabilities
[ 1794.171331][ T5267] hid-led 0003:27B8:01ED.0057: item fetching failed at offset 3/5
[ 1794.205305][ T5267] hid-led 0003:27B8:01ED.0057: probe with driver hid-led failed with error -22
[ 1794.448091][T18764] usb 4-1: USB disconnect, device number 15
[ 1794.466835][   T29] audit: type=1326 audit(1723463978.644:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.474450][T26643] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6844'.
[ 1794.519595][   T29] audit: type=1326 audit(1723463978.644:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.527806][T26643] netlink: 31 bytes leftover after parsing attributes in process `syz.0.6844'.
[ 1794.546710][ T5267] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[ 1794.550650][T26643] netlink: 'syz.0.6844': attribute type 3 has an invalid length.
[ 1794.558447][   T29] audit: type=1326 audit(1723463978.644:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.576076][T26643] netlink: 'syz.0.6844': attribute type 2 has an invalid length.
[ 1794.589894][   T29] audit: type=1326 audit(1723463978.644:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.620856][T26643] netlink: 31 bytes leftover after parsing attributes in process `syz.0.6844'.
[ 1794.635596][   T29] audit: type=1326 audit(1723463978.644:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.657730][   T29] audit: type=1326 audit(1723463978.644:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.657903][T23688] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[ 1794.697990][   T29] audit: type=1326 audit(1723463978.644:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.732311][   T29] audit: type=1326 audit(1723463978.644:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.760542][   T29] audit: type=1326 audit(1723463978.644:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26642 comm="syz.0.6844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f80ba3779f9 code=0x7ffc0000
[ 1794.787007][ T5267] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1794.798850][ T5267] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1794.811861][ T5267] usb 5-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1794.822916][ T5267] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1794.833094][ T5267] usb 5-1: config 0 descriptor??
[ 1794.848028][ T5267] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[ 1794.870371][T23688] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1794.879016][T23688] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1794.887847][T23688] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1794.897212][T23688] usb 3-1: config 1 has no interface number 0
[ 1794.903517][T23688] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1794.916377][T23688] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 35332, setting to 64
[ 1794.931527][T23688] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1794.944833][T23688] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d6.01
[ 1794.957174][T23688] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1794.990059][T26639] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1795.006131][T23688] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[ 1795.312610][T26650] program syz.2.6843 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1795.373606][T26650] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1795.406102][T23688] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[ 1796.200795][ T5267] usb 2-1: USB disconnect, device number 37
[ 1796.320332][T26660] netlink: 'syz.0.6848': attribute type 11 has an invalid length.
[ 1804.678175][T23688] snd_usb_pod 3-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[ 1804.919647][T26665] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6849'.
[ 1805.220583][ T5267] usb 3-1: USB disconnect, device number 15
[ 1805.279544][ T5267] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[ 1805.317697][ T5313] usb 5-1: USB disconnect, device number 30
[ 1805.382171][T26665] mkiss: ax0: crc mode is auto.
[ 1805.895811][ T5232] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1805.906124][ T5232] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1805.919211][ T5232] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1805.929491][ T5232] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1805.937374][ T5232] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1805.960827][ T5232] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1806.068679][T26694] netlink: 168 bytes leftover after parsing attributes in process `syz.1.6857'.
[ 1806.314352][T25191] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1806.329236][T25191] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1806.340197][T25191] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1806.348602][ T5313] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1806.385815][T25191] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1806.398485][T25191] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1806.407882][T25191] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1806.548099][ T5313] usb 2-1: Using ep0 maxpacket: 8
[ 1806.553593][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1806.568037][ T5313] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1806.587766][ T5313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1806.598433][ T5313] usb 2-1: Product: syz
[ 1806.608019][ T5313] usb 2-1: Manufacturer: syz
[ 1806.618043][ T5313] usb 2-1: SerialNumber: syz
[ 1806.631670][ T5313] usb 2-1: config 0 descriptor??
[ 1806.744177][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1806.907954][ T5313] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1806.925505][ T5313] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1806.945451][ T5313] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1806.953940][ T5313] dvb_usb_af9035 2-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1806.957029][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1806.976817][ T5313] usb 2-1: USB disconnect, device number 38
[ 1807.221368][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1807.438724][T26688] chnl_net:caif_netlink_parms(): no params data found
[ 1807.794368][T26709] FAULT_INJECTION: forcing a failure.
[ 1807.794368][T26709] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1807.812312][T26709] CPU: 1 UID: 0 PID: 26709 Comm: syz.0.6858 Not tainted 6.11.0-rc3-syzkaller #0
[ 1807.821374][T26709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1807.831704][T26709] Call Trace:
[ 1807.834991][T26709]  <TASK>
[ 1807.837924][T26709]  dump_stack_lvl+0x241/0x360
[ 1807.842621][T26709]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1807.847830][T26709]  ? __pfx__printk+0x10/0x10
[ 1807.852433][T26709]  ? __pfx_lock_release+0x10/0x10
[ 1807.857480][T26709]  should_fail_ex+0x3b0/0x4e0
[ 1807.862182][T26709]  _copy_from_user+0x2f/0xe0
[ 1807.866783][T26709]  copy_msghdr_from_user+0xae/0x680
[ 1807.872093][T26709]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1807.877940][T26709]  do_recvmmsg+0x40f/0xae0
[ 1807.882381][T26709]  ? __pfx_lock_release+0x10/0x10
[ 1807.887601][T26709]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1807.892579][T26709]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1807.898497][T26709]  ? ksys_write+0x23e/0x2c0
[ 1807.903008][T26709]  ? __pfx_lock_release+0x10/0x10
[ 1807.908053][T26709]  ? vfs_write+0x7c4/0xc90
[ 1807.912483][T26709]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1807.918136][T26709]  ? __fget_files+0x3f6/0x470
[ 1807.922844][T26709]  __x64_sys_recvmmsg+0x199/0x250
[ 1807.927891][T26709]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1807.933455][T26709]  ? do_syscall_64+0x100/0x230
[ 1807.938244][T26709]  ? do_syscall_64+0xb6/0x230
[ 1807.942936][T26709]  do_syscall_64+0xf3/0x230
[ 1807.947454][T26709]  ? clear_bhb_loop+0x35/0x90
[ 1807.952152][T26709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1807.958054][T26709] RIP: 0033:0x7f80ba3779f9
[ 1807.962481][T26709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1807.982094][T26709] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1807.990524][T26709] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1807.998501][T26709] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000003
[ 1808.006478][T26709] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1808.014454][T26709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1808.022526][T26709] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1808.030529][T26709]  </TASK>
[ 1808.078042][ T5232] Bluetooth: hci4: command tx timeout
[ 1808.195105][   T12] bridge_slave_1: left allmulticast mode
[ 1808.197779][T23688] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1808.207669][   T12] bridge_slave_1: left promiscuous mode
[ 1808.214299][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1808.273214][   T12] bridge_slave_0: left allmulticast mode
[ 1808.282363][   T12] bridge_slave_0: left promiscuous mode
[ 1808.295790][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1808.485841][T26723] Option 'ÍÎÛ^
%ë¼ÞåË' to dns_resolver key: bad/missing value
[ 1808.568900][T23688] usb 2-1: Using ep0 maxpacket: 8
[ 1808.659638][ T5232] Bluetooth: hci0: command tx timeout
[ 1808.724990][T23688] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1808.740175][T23688] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1810.008357][T23688] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1810.057800][T23688] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1810.123078][T23688] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1810.142526][T26729] FAULT_INJECTION: forcing a failure.
[ 1810.142526][T26729] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.157514][ T5232] Bluetooth: hci4: command tx timeout
[ 1810.167776][T23688] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1810.180642][T23688] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1810.216927][T26729] CPU: 0 UID: 0 PID: 26729 Comm: syz.3.6863 Not tainted 6.11.0-rc3-syzkaller #0
[ 1810.226080][T26729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1810.236153][T26729] Call Trace:
[ 1810.239450][T26729]  <TASK>
[ 1810.242399][T26729]  dump_stack_lvl+0x241/0x360
[ 1810.247111][T26729]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1810.252336][T26729]  ? __pfx__printk+0x10/0x10
[ 1810.256952][T26729]  ? fs_reclaim_acquire+0x93/0x140
[ 1810.262081][T26729]  ? __pfx___might_resched+0x10/0x10
[ 1810.267393][T26729]  should_fail_ex+0x3b0/0x4e0
[ 1810.272106][T26729]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1810.277854][T26729]  should_failslab+0xac/0x100
[ 1810.282564][T26729]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1810.288305][T26729]  __kmalloc_noprof+0xd8/0x400
[ 1810.293084][T26729]  ? kfree+0x4e/0x360
[ 1810.297087][T26729]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1810.302668][T26729]  tomoyo_path_number_perm+0x23a/0x880
[ 1810.308156][T26729]  ? tomoyo_path_number_perm+0x208/0x880
[ 1810.313806][T26729]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1810.319847][T26729]  ? __fget_files+0x29/0x470
[ 1810.324463][T26729]  ? __fget_files+0x3f6/0x470
[ 1810.329149][T26729]  ? __fget_files+0x29/0x470
[ 1810.333742][T26729]  security_file_ioctl+0x75/0xb0
[ 1810.338682][T26729]  __se_sys_ioctl+0x47/0x170
[ 1810.343270][T26729]  do_syscall_64+0xf3/0x230
[ 1810.347763][T26729]  ? clear_bhb_loop+0x35/0x90
[ 1810.352437][T26729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1810.358329][T26729] RIP: 0033:0x7fb0a9d779f9
[ 1810.362744][T26729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1810.382352][T26729] RSP: 002b:00007fb0aab06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1810.390780][T26729] RAX: ffffffffffffffda RBX: 00007fb0a9f05f80 RCX: 00007fb0a9d779f9
[ 1810.398750][T26729] RDX: 0000000000000000 RSI: 000000000000894c RDI: 0000000000000003
[ 1810.406714][T26729] RBP: 00007fb0aab06090 R08: 0000000000000000 R09: 0000000000000000
[ 1810.414682][T26729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1810.422655][T26729] R13: 0000000000000000 R14: 00007fb0a9f05f80 R15: 00007ffd97f2a158
[ 1810.430637][T26729]  </TASK>
[ 1810.451595][T26729] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1810.460911][T23688] usb 2-1: usb_control_msg returned -32
[ 1810.466623][T23688] usbtmc 2-1:16.0: can't read capabilities
[ 1810.708705][ T5232] Bluetooth: hci0: command tx timeout
[ 1810.875490][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1810.894170][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1810.904867][   T12] bond0 (unregistering): Released all slaves
[ 1811.181871][T26688] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1811.207860][T26688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1811.209815][T26745] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6865'.
[ 1811.215224][T26688] bridge_slave_0: entered allmulticast mode
[ 1811.231905][T26688] bridge_slave_0: entered promiscuous mode
[ 1811.241337][T26688] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1811.249168][T26688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1811.257518][T26688] bridge_slave_1: entered allmulticast mode
[ 1811.272657][T26688] bridge_slave_1: entered promiscuous mode
[ 1811.314482][T26747] cgroup: Unknown subsys name 'fsmagic'
[ 1811.342837][T26697] chnl_net:caif_netlink_parms(): no params data found
[ 1811.971366][T23688] usb 2-1: USB disconnect, device number 39
[ 1812.045585][T26755] FAULT_INJECTION: forcing a failure.
[ 1812.045585][T26755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1812.061404][T26749] Falling back ldisc for pts0.
[ 1812.075339][T26755] CPU: 1 UID: 0 PID: 26755 Comm: syz.0.6866 Not tainted 6.11.0-rc3-syzkaller #0
[ 1812.084401][T26755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1812.094471][T26755] Call Trace:
[ 1812.097763][T26755]  <TASK>
[ 1812.100706][T26755]  dump_stack_lvl+0x241/0x360
[ 1812.105412][T26755]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1812.110634][T26755]  ? __pfx__printk+0x10/0x10
[ 1812.115264][T26755]  ? snprintf+0xda/0x120
[ 1812.119532][T26755]  should_fail_ex+0x3b0/0x4e0
[ 1812.124238][T26755]  _copy_to_user+0x2f/0xb0
[ 1812.128679][T26755]  simple_read_from_buffer+0xca/0x150
[ 1812.134078][T26755]  proc_fail_nth_read+0x1e9/0x250
[ 1812.139132][T26755]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1812.144709][T26755]  ? rw_verify_area+0x520/0x6b0
[ 1812.149580][T26755]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1812.155121][T26755]  vfs_read+0x204/0xbc0
[ 1812.159274][T26755]  ? __pfx_lock_release+0x10/0x10
[ 1812.164287][T26755]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 1812.170191][T26755]  ? __pfx_vfs_read+0x10/0x10
[ 1812.174876][T26755]  ? __fget_files+0x29/0x470
[ 1812.179467][T26755]  ? __fget_files+0x3f6/0x470
[ 1812.184176][T26755]  ksys_read+0x1a0/0x2c0
[ 1812.188442][T26755]  ? __pfx_ksys_read+0x10/0x10
[ 1812.193215][T26755]  ? do_syscall_64+0x100/0x230
[ 1812.197982][T26755]  ? do_syscall_64+0xb6/0x230
[ 1812.202669][T26755]  do_syscall_64+0xf3/0x230
[ 1812.207167][T26755]  ? clear_bhb_loop+0x35/0x90
[ 1812.211851][T26755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1812.217728][T26755] RIP: 0033:0x7f80ba37643c
[ 1812.222131][T26755] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[ 1812.241738][T26755] RSP: 002b:00007f80bb0c3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1812.250159][T26755] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba37643c
[ 1812.258116][T26755] RDX: 000000000000000f RSI: 00007f80bb0c30a0 RDI: 0000000000000006
[ 1812.266072][T26755] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1812.274033][T26755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1812.282000][T26755] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1812.289986][T26755]  </TASK>
[ 1812.302051][ T5232] Bluetooth: hci4: command tx timeout
[ 1812.611783][T26688] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1812.662079][T26688] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1812.688844][T26697] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1812.695992][T26697] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1812.728024][T26697] bridge_slave_0: entered allmulticast mode
[ 1812.736527][T26697] bridge_slave_0: entered promiscuous mode
[ 1812.787826][ T5232] Bluetooth: hci0: command tx timeout
[ 1813.032061][T26697] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1813.045488][T26697] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1813.052875][T26697] bridge_slave_1: entered allmulticast mode
[ 1813.068922][T26697] bridge_slave_1: entered promiscuous mode
[ 1813.131007][T26688] team0: Port device team_slave_0 added
[ 1813.238439][T26688] team0: Port device team_slave_1 added
[ 1813.333756][   T12] hsr_slave_0: left promiscuous mode
[ 1813.357975][ T5267] usb 4-1: new low-speed USB device number 16 using dummy_hcd
[ 1813.380886][   T12] hsr_slave_1: left promiscuous mode
[ 1813.430552][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1813.459143][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1813.517810][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1813.547945][ T5267] usb 4-1: device descriptor read/64, error -71
[ 1813.553230][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1813.698159][   T12] veth1_macvtap: left promiscuous mode
[ 1813.703865][   T12] veth0_macvtap: left promiscuous mode
[ 1813.725266][   T12] veth1_vlan: left promiscuous mode
[ 1813.738676][   T12] veth0_vlan: left promiscuous mode
[ 1813.906054][ T5267] usb 4-1: new low-speed USB device number 17 using dummy_hcd
[ 1814.338044][ T5267] usb 4-1: device descriptor read/64, error -71
[ 1814.417881][ T5232] Bluetooth: hci4: command tx timeout
[ 1814.512255][ T5267] usb usb4-port1: attempt power cycle
[ 1814.873446][ T5232] Bluetooth: hci0: command tx timeout
[ 1815.117755][ T5267] usb 4-1: new low-speed USB device number 18 using dummy_hcd
[ 1815.188814][ T5267] usb 4-1: device descriptor read/8, error -71
[ 1815.478719][ T5267] usb 4-1: new low-speed USB device number 19 using dummy_hcd
[ 1815.531190][ T5267] usb 4-1: device descriptor read/8, error -71
[ 1815.659780][ T5267] usb usb4-port1: unable to enumerate USB device
[ 1815.928071][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1816.004915][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1816.167856][T18764] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[ 1816.389869][T18764] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1816.407848][T18764] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1816.416644][T18764] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1816.437695][T18764] usb 4-1: config 1 has no interface number 0
[ 1816.451966][T18764] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1816.477716][T18764] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1816.517761][T18764] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1816.560356][T18764] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d6.01
[ 1816.569590][T18764] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1816.612336][T18764] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[ 1816.845620][T26697] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1816.936531][T18764] snd_usb_pod 4-1:1.1: cannot start listening: -90
[ 1816.968273][T18764] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[ 1816.980692][T18764] snd_usb_pod 4-1:1.1: probe with driver snd_usb_pod failed with error -90
[ 1817.434735][T18764] usb 4-1: USB disconnect, device number 20
[ 1817.460170][T26697] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1817.484814][T26688] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1817.499247][T26688] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1817.554630][T26688] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1817.584277][T26688] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1817.595989][T26688] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1817.626217][T26688] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1817.744532][T26805] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6876'.
[ 1817.809330][T26688] hsr_slave_0: entered promiscuous mode
[ 1817.828730][T26688] hsr_slave_1: entered promiscuous mode
[ 1817.856067][T26688] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1817.874093][T26688] Cannot create hsr debugfs directory
[ 1817.887019][T26697] team0: Port device team_slave_0 added
[ 1817.899155][T26697] team0: Port device team_slave_1 added
[ 1817.914011][T26806] mkiss: ax0: crc mode is auto.
[ 1817.977859][T26579] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1818.031411][T26697] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1818.050564][T26697] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1818.094544][T26697] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1818.151733][T26697] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1818.172000][T26697] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1818.198966][T26579] usb 2-1: Using ep0 maxpacket: 8
[ 1818.217481][T26579] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1818.229057][T26579] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1818.256280][T26579] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1818.267410][T26697] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1818.278232][T26579] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1818.328017][T26579] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1818.350104][T26579] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1818.386393][T26579] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1818.416825][T26821] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1818.612496][T26697] hsr_slave_0: entered promiscuous mode
[ 1818.639110][T26579] usb 2-1: usb_control_msg returned -32
[ 1818.646938][T26579] usbtmc 2-1:16.0: can't read capabilities
[ 1818.655581][T26697] hsr_slave_1: entered promiscuous mode
[ 1818.682353][T26697] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1818.702494][T26697] Cannot create hsr debugfs directory
[ 1818.907457][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1819.192436][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1819.364714][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1819.539556][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1819.739644][   T12] bridge_slave_1: left allmulticast mode
[ 1819.769017][   T12] bridge_slave_1: left promiscuous mode
[ 1819.779411][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1819.794771][   T12] bridge_slave_0: left allmulticast mode
[ 1819.806695][   T12] bridge_slave_0: left promiscuous mode
[ 1819.817247][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1820.367524][T26861] FAULT_INJECTION: forcing a failure.
[ 1820.367524][T26861] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1820.386885][T26861] CPU: 1 UID: 0 PID: 26861 Comm: syz.3.6882 Not tainted 6.11.0-rc3-syzkaller #0
[ 1820.395935][T26861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1820.406090][T26861] Call Trace:
[ 1820.409378][T26861]  <TASK>
[ 1820.412326][T26861]  dump_stack_lvl+0x241/0x360
[ 1820.417024][T26861]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1820.422230][T26861]  ? __pfx__printk+0x10/0x10
[ 1820.426823][T26861]  ? __pfx_lock_release+0x10/0x10
[ 1820.431847][T26861]  ? vfs_write+0x7c4/0xc90
[ 1820.436262][T26861]  should_fail_ex+0x3b0/0x4e0
[ 1820.440940][T26861]  _copy_from_user+0x2f/0xe0
[ 1820.445529][T26861]  __sys_bpf+0x1a4/0x810
[ 1820.449771][T26861]  ? __pfx___sys_bpf+0x10/0x10
[ 1820.454534][T26861]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1820.460510][T26861]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1820.466831][T26861]  ? do_syscall_64+0x100/0x230
[ 1820.471588][T26861]  __x64_sys_bpf+0x7c/0x90
[ 1820.475995][T26861]  do_syscall_64+0xf3/0x230
[ 1820.480489][T26861]  ? clear_bhb_loop+0x35/0x90
[ 1820.485159][T26861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1820.491041][T26861] RIP: 0033:0x7fb0a9d779f9
[ 1820.495449][T26861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1820.515048][T26861] RSP: 002b:00007fb0aab06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1820.523461][T26861] RAX: ffffffffffffffda RBX: 00007fb0a9f05f80 RCX: 00007fb0a9d779f9
[ 1820.531482][T26861] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000005
[ 1820.539456][T26861] RBP: 00007fb0aab06090 R08: 0000000000000000 R09: 0000000000000000
[ 1820.547426][T26861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1820.555391][T26861] R13: 0000000000000000 R14: 00007fb0a9f05f80 R15: 00007ffd97f2a158
[ 1820.563375][T26861]  </TASK>
[ 1820.690888][T11966] usb 2-1: USB disconnect, device number 40
[ 1820.812751][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1820.831258][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1820.844723][   T12] bond0 (unregistering): Released all slaves
[ 1821.306627][   T12] hsr_slave_0: left promiscuous mode
[ 1821.317046][   T12] hsr_slave_1: left promiscuous mode
[ 1821.327457][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1821.351917][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1821.370893][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1821.386266][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1821.423954][   T12] veth1_macvtap: left promiscuous mode
[ 1821.430074][   T12] veth0_macvtap: left promiscuous mode
[ 1821.437839][ T5313] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1821.440731][   T12] veth1_vlan: left promiscuous mode
[ 1821.455308][   T12] veth0_vlan: left promiscuous mode
[ 1821.644360][ T5313] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1821.665679][ T5313] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1821.698642][ T5313] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1821.716793][ T5313] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1821.778339][ T5313] usb 4-1: config 0 descriptor??
[ 1821.870075][T26885] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6886'.
[ 1822.221310][ T5313] plantronics 0003:047F:FFFF.0058: No inputs registered, leaving
[ 1822.245048][ T5313] plantronics 0003:047F:FFFF.0058: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[ 1822.287025][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1822.340559][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1822.839068][T26886] Falling back ldisc for pts0.
[ 1823.272050][T26897] fuse: Unknown parameter 'f'
[ 1823.808093][T23688] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1824.017971][T23688] usb 2-1: Using ep0 maxpacket: 8
[ 1824.036440][T23688] usb 2-1: config 0 has no interfaces?
[ 1824.051966][T23688] usb 2-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[ 1824.073534][T23688] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1824.093830][T23688] usb 2-1: Product: syz
[ 1824.103872][T23688] usb 2-1: Manufacturer: syz
[ 1824.113609][T23688] usb 2-1: SerialNumber: syz
[ 1824.136377][T23688] usb 2-1: config 0 descriptor??
[ 1824.160572][T26688] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1824.236286][T26688] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1824.311182][T26688] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1824.333211][T23688] usb 4-1: USB disconnect, device number 21
[ 1824.548203][T18764] usb 2-1: USB disconnect, device number 41
[ 1825.413931][T26688] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1825.757846][T18764] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1825.792152][T26688] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1825.834537][T26688] 8021q: adding VLAN 0 to HW filter on device team0
[ 1825.875964][  T148] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1825.883158][  T148] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1825.896930][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1825.904090][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1825.915447][T26697] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1825.927416][T26697] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1825.939409][T26697] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1825.954433][T26697] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1825.961304][T18764] usb 4-1: Using ep0 maxpacket: 8
[ 1825.976432][T18764] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1825.991103][T18764] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1826.004635][T18764] usb 4-1: Product: syz
[ 1826.014804][T18764] usb 4-1: Manufacturer: syz
[ 1826.019637][T18764] usb 4-1: SerialNumber: syz
[ 1826.026950][T18764] usb 4-1: config 0 descriptor??
[ 1826.236421][T26697] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1826.251731][T18764] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1826.272078][T18764] dvb_usb_af9015 4-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1826.285341][T26697] 8021q: adding VLAN 0 to HW filter on device team0
[ 1826.289114][T18764] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1826.305419][T18764] dvb_usb_af9035 4-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1826.331401][T18764] usb 4-1: USB disconnect, device number 22
[ 1826.348055][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1826.355216][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1826.406343][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1826.413581][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1826.474781][T26688] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1826.505924][T26697] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1826.527728][   T58] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1826.732657][   T58] usb 2-1: Using ep0 maxpacket: 16
[ 1826.750117][   T58] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1826.772296][   T58] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1826.823247][T26697] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1826.825908][   T58] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1826.846764][   T58] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1826.880599][   T58] usb 2-1: Product: syz
[ 1826.898213][   T58] usb 2-1: Manufacturer: syz
[ 1826.902852][   T58] usb 2-1: SerialNumber: syz
[ 1826.924514][   T58] usb 2-1: config 0 descriptor??
[ 1826.955272][T26697] veth0_vlan: entered promiscuous mode
[ 1826.964883][T26959] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6897'.
[ 1826.993262][T26697] veth1_vlan: entered promiscuous mode
[ 1827.125191][T26688] veth0_vlan: entered promiscuous mode
[ 1827.145218][T26962] mkiss: ax0: crc mode is auto.
[ 1827.181700][T26688] veth1_vlan: entered promiscuous mode
[ 1827.213201][T26697] veth0_macvtap: entered promiscuous mode
[ 1827.259445][T26697] veth1_macvtap: entered promiscuous mode
[ 1827.375221][T26688] veth0_macvtap: entered promiscuous mode
[ 1827.400540][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.418273][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.429584][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.440472][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.451705][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.466075][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.497542][T26697] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1827.562984][T26688] veth1_macvtap: entered promiscuous mode
[ 1827.586172][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1827.620439][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.640666][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1827.668035][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.687711][T26697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1827.700230][T26697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.712323][T26697] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1827.737390][T26697] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1827.754572][T26697] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1827.771383][T26697] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1827.780517][T26697] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1827.834300][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.846669][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.860509][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.871286][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.881509][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.893527][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.905283][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1827.921954][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1827.933932][T26688] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1827.975578][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1828.005094][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1828.017726][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1828.029479][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1828.039623][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1828.050815][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1828.061475][T26688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1828.072300][T26688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1828.084441][T26688] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1828.145261][T26688] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1828.157806][T26688] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1828.166631][T26688] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1828.182646][T26688] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1828.203911][ T5520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1828.223381][ T5520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1828.291893][  T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1828.349687][  T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1828.436232][T22670] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1828.462452][T22670] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1828.545037][T22670] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1828.558632][T22670] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1828.718463][T27011] FAULT_INJECTION: forcing a failure.
[ 1828.718463][T27011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1828.748435][T27011] CPU: 1 UID: 0 PID: 27011 Comm: syz.4.6851 Not tainted 6.11.0-rc3-syzkaller #0
[ 1828.757506][T27011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1828.767582][T27011] Call Trace:
[ 1828.770872][T27011]  <TASK>
[ 1828.773796][T27011]  dump_stack_lvl+0x241/0x360
[ 1828.778492][T27011]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1828.783681][T27011]  ? __pfx__printk+0x10/0x10
[ 1828.788266][T27011]  ? __pfx_lock_release+0x10/0x10
[ 1828.793279][T27011]  ? __lock_acquire+0x137a/0x2040
[ 1828.798295][T27011]  should_fail_ex+0x3b0/0x4e0
[ 1828.802963][T27011]  _copy_from_user+0x2f/0xe0
[ 1828.807542][T27011]  do_ipv6_setsockopt+0x2f1/0x3630
[ 1828.812653][T27011]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1828.818204][T27011]  ? get_pid_task+0x23/0x1f0
[ 1828.822800][T27011]  ? __pfx_lock_release+0x10/0x10
[ 1828.827815][T27011]  ? kstrtouint_from_user+0x128/0x190
[ 1828.833522][T27011]  ? mark_lock+0x9a/0x350
[ 1828.837842][T27011]  ? __lock_acquire+0x137a/0x2040
[ 1828.842865][T27011]  ? __pfx_lock_acquire+0x10/0x10
[ 1828.847877][T27011]  ipv6_setsockopt+0x5c/0x1a0
[ 1828.852548][T27011]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1828.858430][T27011]  do_sock_setsockopt+0x3af/0x720
[ 1828.863441][T27011]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1828.868969][T27011]  ? __fget_files+0x29/0x470
[ 1828.873559][T27011]  ? __fget_files+0x3f6/0x470
[ 1828.878249][T27011]  __sys_setsockopt+0x1ae/0x250
[ 1828.883091][T27011]  __x64_sys_setsockopt+0xb5/0xd0
[ 1828.888102][T27011]  do_syscall_64+0xf3/0x230
[ 1828.892589][T27011]  ? clear_bhb_loop+0x35/0x90
[ 1828.897249][T27011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1828.903124][T27011] RIP: 0033:0x7f4d493779f9
[ 1828.907525][T27011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1828.927136][T27011] RSP: 002b:00007f4d4a223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1828.935565][T27011] RAX: ffffffffffffffda RBX: 00007f4d49505f80 RCX: 00007f4d493779f9
[ 1828.943524][T27011] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000003
[ 1828.951486][T27011] RBP: 00007f4d4a223090 R08: 0000000000000010 R09: 0000000000000000
[ 1828.959441][T27011] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[ 1828.967417][T27011] R13: 0000000000000000 R14: 00007f4d49505f80 R15: 00007ffc18d023c8
[ 1828.975384][T27011]  </TASK>
[ 1830.083664][T22779] usb 2-1: USB disconnect, device number 42
[ 1830.268397][T27033] FAULT_INJECTION: forcing a failure.
[ 1830.268397][T27033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1830.332427][T27035] FAULT_INJECTION: forcing a failure.
[ 1830.332427][T27035] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1830.357837][T27033] CPU: 1 UID: 0 PID: 27033 Comm: syz.1.6905 Not tainted 6.11.0-rc3-syzkaller #0
[ 1830.366904][T27033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1830.376972][T27033] Call Trace:
[ 1830.380260][T27033]  <TASK>
[ 1830.383203][T27033]  dump_stack_lvl+0x241/0x360
[ 1830.387920][T27033]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1830.393155][T27033]  ? __pfx__printk+0x10/0x10
[ 1830.397780][T27033]  ? __pfx_lock_release+0x10/0x10
[ 1830.402835][T27033]  should_fail_ex+0x3b0/0x4e0
[ 1830.407536][T27033]  _copy_from_user+0x2f/0xe0
[ 1830.412154][T27033]  copy_msghdr_from_user+0xae/0x680
[ 1830.417380][T27033]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1830.423225][T27033]  __sys_sendmsg+0x23d/0x3a0
[ 1830.427839][T27033]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1830.432965][T27033]  ? vfs_write+0x7c4/0xc90
[ 1830.437434][T27033]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1830.443785][T27033]  ? do_syscall_64+0x100/0x230
[ 1830.448569][T27033]  ? do_syscall_64+0xb6/0x230
[ 1830.453264][T27033]  do_syscall_64+0xf3/0x230
[ 1830.457782][T27033]  ? clear_bhb_loop+0x35/0x90
[ 1830.462473][T27033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1830.468381][T27033] RIP: 0033:0x7f9a6c3779f9
[ 1830.472810][T27033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1830.492432][T27033] RSP: 002b:00007f9a6d15f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1830.500846][T27033] RAX: ffffffffffffffda RBX: 00007f9a6c505f80 RCX: 00007f9a6c3779f9
[ 1830.508813][T27033] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[ 1830.516792][T27033] RBP: 00007f9a6d15f090 R08: 0000000000000000 R09: 0000000000000000
[ 1830.524763][T27033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1830.532728][T27033] R13: 0000000000000000 R14: 00007f9a6c505f80 R15: 00007ffcf07651e8
[ 1830.540711][T27033]  </TASK>
[ 1830.562204][T27035] CPU: 0 UID: 0 PID: 27035 Comm: syz.3.6906 Not tainted 6.11.0-rc3-syzkaller #0
[ 1830.571288][T27035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1830.581370][T27035] Call Trace:
[ 1830.584676][T27035]  <TASK>
[ 1830.587626][T27035]  dump_stack_lvl+0x241/0x360
[ 1830.592340][T27035]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1830.597567][T27035]  ? __pfx__printk+0x10/0x10
[ 1830.602189][T27035]  ? __pfx_lock_release+0x10/0x10
[ 1830.607243][T27035]  ? vfs_write+0x7c4/0xc90
[ 1830.611686][T27035]  should_fail_ex+0x3b0/0x4e0
[ 1830.616392][T27035]  _copy_from_user+0x2f/0xe0
[ 1830.621015][T27035]  __sys_bpf+0x1a4/0x810
[ 1830.625281][T27035]  ? __pfx___sys_bpf+0x10/0x10
[ 1830.630080][T27035]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1830.636095][T27035]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1830.642453][T27035]  ? do_syscall_64+0x100/0x230
[ 1830.647244][T27035]  __x64_sys_bpf+0x7c/0x90
[ 1830.651689][T27035]  do_syscall_64+0xf3/0x230
[ 1830.656218][T27035]  ? clear_bhb_loop+0x35/0x90
[ 1830.660921][T27035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1830.666835][T27035] RIP: 0033:0x7fb0a9d779f9
[ 1830.671268][T27035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1830.690898][T27035] RSP: 002b:00007fb0aab06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1830.699342][T27035] RAX: ffffffffffffffda RBX: 00007fb0a9f05f80 RCX: 00007fb0a9d779f9
[ 1830.707333][T27035] RDX: 0000000000000050 RSI: 0000000020000180 RDI: 000000000000000a
[ 1830.715327][T27035] RBP: 00007fb0aab06090 R08: 0000000000000000 R09: 0000000000000000
[ 1830.723320][T27035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1830.731309][T27035] R13: 0000000000000000 R14: 00007fb0a9f05f80 R15: 00007ffd97f2a158
[ 1830.731682][T27049] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1830.739295][T27035]  </TASK>
[ 1830.965490][T27060] FAULT_INJECTION: forcing a failure.
[ 1830.965490][T27060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1830.988558][T23688] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1831.003347][T27060] CPU: 1 UID: 0 PID: 27060 Comm: syz.0.6912 Not tainted 6.11.0-rc3-syzkaller #0
[ 1831.012415][T27060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1831.022492][T27060] Call Trace:
[ 1831.025790][T27060]  <TASK>
[ 1831.028740][T27060]  dump_stack_lvl+0x241/0x360
[ 1831.033457][T27060]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1831.038682][T27060]  ? __pfx__printk+0x10/0x10
[ 1831.043396][T27060]  should_fail_ex+0x3b0/0x4e0
[ 1831.048101][T27060]  _copy_from_user+0x2f/0xe0
[ 1831.052718][T27060]  copy_from_sockptr+0x62/0xa0
[ 1831.057513][T27060]  packet_setsockopt+0x631/0x1970
[ 1831.062673][T27060]  ? __pfx_packet_setsockopt+0x10/0x10
[ 1831.068159][T27060]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1831.073647][T27060]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1831.079566][T27060]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1831.085239][T27060]  ? sb_end_write+0xe9/0x1c0
[ 1831.089856][T27060]  ? vfs_write+0x7c4/0xc90
[ 1831.094308][T27060]  ? __pfx_vfs_write+0x10/0x10
[ 1831.099089][T27060]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 1831.104659][T27060]  ? security_socket_setsockopt+0x87/0xb0
[ 1831.110408][T27060]  ? __pfx_packet_setsockopt+0x10/0x10
[ 1831.115886][T27060]  do_sock_setsockopt+0x3af/0x720
[ 1831.120938][T27060]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1831.126523][T27060]  __sys_setsockopt+0x1ae/0x250
[ 1831.131404][T27060]  __x64_sys_setsockopt+0xb5/0xd0
[ 1831.136457][T27060]  do_syscall_64+0xf3/0x230
[ 1831.140982][T27060]  ? clear_bhb_loop+0x35/0x90
[ 1831.145680][T27060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1831.151592][T27060] RIP: 0033:0x7f80ba3779f9
[ 1831.156026][T27060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1831.175651][T27060] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1831.184096][T27060] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1831.192094][T27060] RDX: 0000000000000017 RSI: 0000000000000107 RDI: 0000000000000003
[ 1831.200090][T27060] RBP: 00007f80bb0c3090 R08: 0000000000000004 R09: 0000000000000000
[ 1831.208082][T27060] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[ 1831.216071][T27060] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1831.224078][T27060]  </TASK>
[ 1831.240858][ T5267] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1831.307805][   T58] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 1831.372372][T23688] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1831.393876][T23688] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1831.409048][T23688] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1831.418973][T23688] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1831.430768][T23688] usb 2-1: config 0 descriptor??
[ 1831.459563][T27076] FAULT_INJECTION: forcing a failure.
[ 1831.459563][T27076] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1831.482178][T27076] CPU: 0 UID: 0 PID: 27076 Comm: syz.4.6914 Not tainted 6.11.0-rc3-syzkaller #0
[ 1831.491250][T27076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1831.501327][T27076] Call Trace:
[ 1831.504621][T27076]  <TASK>
[ 1831.507565][T27076]  dump_stack_lvl+0x241/0x360
[ 1831.512273][T27076]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1831.517489][T27076]  ? __pfx__printk+0x10/0x10
[ 1831.522089][T27076]  ? __pfx_lock_release+0x10/0x10
[ 1831.527119][T27076]  should_fail_ex+0x3b0/0x4e0
[ 1831.531802][T27076]  _copy_from_user+0x2f/0xe0
[ 1831.536392][T27076]  do_ipt_set_ctl+0x731/0x1250
[ 1831.541177][T27076]  ? __pfx___might_resched+0x10/0x10
[ 1831.546469][T27076]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[ 1831.551679][T27076]  ? __pfx_lock_release+0x10/0x10
[ 1831.556719][T27076]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1831.562361][T27076]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1831.567739][T27076]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1831.573737][T27076]  ? module_put+0x13a/0x2d0
[ 1831.578253][T27076]  nf_setsockopt+0x295/0x2c0
[ 1831.582859][T27076]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1831.588758][T27076]  do_sock_setsockopt+0x3af/0x720
[ 1831.593791][T27076]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1831.599332][T27076]  ? __fget_files+0x29/0x470
[ 1831.603948][T27076]  ? __fget_files+0x3f6/0x470
[ 1831.608637][T27076]  __sys_setsockopt+0x1ae/0x250
[ 1831.613489][T27076]  __x64_sys_setsockopt+0xb5/0xd0
[ 1831.618514][T27076]  do_syscall_64+0xf3/0x230
[ 1831.623016][T27076]  ? clear_bhb_loop+0x35/0x90
[ 1831.627699][T27076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1831.633584][T27076] RIP: 0033:0x7f4d493779f9
[ 1831.637995][T27076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1831.657600][T27076] RSP: 002b:00007f4d4a223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1831.666007][T27076] RAX: ffffffffffffffda RBX: 00007f4d49505f80 RCX: 00007f4d493779f9
[ 1831.673985][T27076] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[ 1831.681962][T27076] RBP: 00007f4d4a223090 R08: 00000000000004b8 R09: 0000000000000000
[ 1831.689940][T27076] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[ 1831.697940][T27076] R13: 0000000000000000 R14: 00007f4d49505f80 R15: 00007ffc18d023c8
[ 1831.705928][T27076]  </TASK>
[ 1831.709050][   T58] usb 3-1: Using ep0 maxpacket: 32
[ 1831.736664][   T58] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1831.762062][   T58] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1831.797933][   T58] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1831.807050][   T58] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1831.817974][ T5267] usb 4-1: Using ep0 maxpacket: 8
[ 1831.827105][   T58] usb 3-1: config 0 descriptor??
[ 1831.832325][ T5267] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1831.832355][ T5267] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1831.832377][ T5267] usb 4-1: Product: syz
[ 1831.832392][ T5267] usb 4-1: Manufacturer: syz
[ 1831.832408][ T5267] usb 4-1: SerialNumber: syz
[ 1831.859684][ T5267] usb 4-1: config 0 descriptor??
[ 1831.869297][   T58] hub 3-1:0.0: USB hub found
[ 1832.170263][ T5267] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1832.188883][ T5267] dvb_usb_af9015 4-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1832.229863][ T5267] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1832.239483][ T5267] dvb_usb_af9035 4-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1832.282787][ T5267] usb 4-1: USB disconnect, device number 23
[ 1832.325637][   T58] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1832.362148][   T58] usbhid 3-1:0.0: can't add hid device: -71
[ 1832.419665][   T58] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1832.482073][   T58] usb 3-1: USB disconnect, device number 16
[ 1832.536807][T23688] uclogic 0003:256C:006D.0059: interface is invalid, ignoring
[ 1832.562385][T23688] usb 2-1: USB disconnect, device number 43
[ 1833.157750][T23688] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1833.358907][T23688] usb 4-1: Using ep0 maxpacket: 16
[ 1833.387266][T23688] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1833.430617][T23688] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1833.447089][T23688] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1833.456186][T23688] usb 4-1: Product: syz
[ 1833.461033][T23688] usb 4-1: Manufacturer: syz
[ 1833.465713][T23688] usb 4-1: SerialNumber: syz
[ 1833.478034][T23688] usb 4-1: config 0 descriptor??
[ 1833.818708][ T5267] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1834.013010][ T5267] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1834.026975][ T5267] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1834.043112][ T5267] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1834.054516][ T5267] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1834.078315][T27150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6921'.
[ 1834.104813][ T5267] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1834.119884][ T5267] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1834.137252][ T5267] usb 5-1: Manufacturer: syz
[ 1834.157405][ T5267] usb 5-1: config 0 descriptor??
[ 1834.601763][ T5267] appleir 0003:05AC:8243.005A: unknown main item tag 0x0
[ 1834.616348][ T5267] appleir 0003:05AC:8243.005A: No inputs registered, leaving
[ 1834.643490][ T5267] appleir 0003:05AC:8243.005A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[ 1834.868184][T26579] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1835.641727][    T8] usb 5-1: USB disconnect, device number 31
[ 1835.761939][T26579] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1835.784151][T26579] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1835.801979][T26579] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1835.812157][T26579] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1835.852870][T26579] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1835.868700][T26579] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1835.891825][T26579] usb 2-1: Manufacturer: syz
[ 1835.905055][T26579] usb 2-1: config 0 descriptor??
[ 1835.940786][T27177] FAULT_INJECTION: forcing a failure.
[ 1835.940786][T27177] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1835.941039][    T8] usb 4-1: USB disconnect, device number 24
[ 1835.976840][T27177] CPU: 1 UID: 0 PID: 27177 Comm: syz.0.6927 Not tainted 6.11.0-rc3-syzkaller #0
[ 1835.985906][T27177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1835.995977][T27177] Call Trace:
[ 1835.999273][T27177]  <TASK>
[ 1836.002216][T27177]  dump_stack_lvl+0x241/0x360
[ 1836.006925][T27177]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1836.012145][T27177]  ? __pfx__printk+0x10/0x10
[ 1836.016749][T27177]  ? __pfx_lock_release+0x10/0x10
[ 1836.021804][T27177]  should_fail_ex+0x3b0/0x4e0
[ 1836.026541][T27177]  _copy_from_user+0x2f/0xe0
[ 1836.031148][T27177]  copy_msghdr_from_user+0xae/0x680
[ 1836.036374][T27177]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1836.042213][T27177]  __sys_sendmsg+0x23d/0x3a0
[ 1836.046829][T27177]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1836.051957][T27177]  ? vfs_write+0x7c4/0xc90
[ 1836.056433][T27177]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1836.062770][T27177]  ? do_syscall_64+0x100/0x230
[ 1836.067537][T27177]  ? do_syscall_64+0xb6/0x230
[ 1836.072229][T27177]  do_syscall_64+0xf3/0x230
[ 1836.076747][T27177]  ? clear_bhb_loop+0x35/0x90
[ 1836.081436][T27177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1836.087335][T27177] RIP: 0033:0x7f80ba3779f9
[ 1836.091740][T27177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1836.111351][T27177] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1836.119763][T27177] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1836.127744][T27177] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[ 1836.135729][T27177] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1836.143711][T27177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1836.151685][T27177] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1836.159673][T27177]  </TASK>
[ 1836.172965][ T5232] Bluetooth: hci0: command 0x0406 tx timeout
[ 1836.198175][T25191] Bluetooth: hci0: Malformed HCI Event: 0x22
[ 1836.272989][T27184] FAULT_INJECTION: forcing a failure.
[ 1836.272989][T27184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1836.290591][T27184] CPU: 1 UID: 0 PID: 27184 Comm: syz.4.6929 Not tainted 6.11.0-rc3-syzkaller #0
[ 1836.299650][T27184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1836.309721][T27184] Call Trace:
[ 1836.313013][T27184]  <TASK>
[ 1836.315956][T27184]  dump_stack_lvl+0x241/0x360
[ 1836.320662][T27184]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1836.325883][T27184]  ? __pfx__printk+0x10/0x10
[ 1836.330494][T27184]  ? __pfx_lock_release+0x10/0x10
[ 1836.335536][T27184]  should_fail_ex+0x3b0/0x4e0
[ 1836.340211][T27184]  _copy_from_user+0x2f/0xe0
[ 1836.344805][T27184]  netlink_setsockopt+0x12a/0xa50
[ 1836.349831][T27184]  ? __pfx_netlink_setsockopt+0x10/0x10
[ 1836.355373][T27184]  ? __fget_files+0x29/0x470
[ 1836.359961][T27184]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1836.365595][T27184]  ? __pfx_lock_release+0x10/0x10
[ 1836.370613][T27184]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 1836.376152][T27184]  ? security_socket_setsockopt+0x87/0xb0
[ 1836.381866][T27184]  ? __pfx_netlink_setsockopt+0x10/0x10
[ 1836.387409][T27184]  do_sock_setsockopt+0x3af/0x720
[ 1836.392435][T27184]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1836.397970][T27184]  ? __fget_files+0x29/0x470
[ 1836.402557][T27184]  ? __fget_files+0x3f6/0x470
[ 1836.407232][T27184]  __sys_setsockopt+0x1ae/0x250
[ 1836.412078][T27184]  __x64_sys_setsockopt+0xb5/0xd0
[ 1836.417096][T27184]  do_syscall_64+0xf3/0x230
[ 1836.421676][T27184]  ? clear_bhb_loop+0x35/0x90
[ 1836.426348][T27184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1836.432233][T27184] RIP: 0033:0x7f4d493779f9
[ 1836.436644][T27184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1836.456245][T27184] RSP: 002b:00007f4d4a223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1836.464656][T27184] RAX: ffffffffffffffda RBX: 00007f4d49505f80 RCX: 00007f4d493779f9
[ 1836.472620][T27184] RDX: 0000000000000001 RSI: 000000000000010e RDI: 0000000000000003
[ 1836.480581][T27184] RBP: 00007f4d4a223090 R08: 0000000000000004 R09: 0000000000000000
[ 1836.488544][T27184] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[ 1836.496509][T27184] R13: 0000000000000000 R14: 00007f4d49505f80 R15: 00007ffc18d023c8
[ 1836.504493][T27184]  </TASK>
[ 1836.512748][T26579] appleir 0003:05AC:8243.005B: unknown main item tag 0x0
[ 1836.527083][T26579] appleir 0003:05AC:8243.005B: No inputs registered, leaving
[ 1836.554457][T26579] appleir 0003:05AC:8243.005B: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[ 1836.830719][T27190] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6932'.
[ 1838.271033][   T58] usb 2-1: USB disconnect, device number 44
[ 1838.392197][T27204] bridge0: port 3(macvlan0) entered blocking state
[ 1838.399987][T27204] bridge0: port 3(macvlan0) entered disabled state
[ 1838.406733][T27204] macvlan0: entered allmulticast mode
[ 1838.416715][T27204] veth1_vlan: entered allmulticast mode
[ 1838.432385][T27204] macvlan0: entered promiscuous mode
[ 1838.448693][T27204] bridge0: port 3(macvlan0) entered blocking state
[ 1838.455391][T27204] bridge0: port 3(macvlan0) entered forwarding state
[ 1838.737897][    T8] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[ 1839.989446][    T8] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1839.998108][    T8] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1840.017209][    T8] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1840.056164][    T8] usb 3-1: config 1 has no interface number 0
[ 1840.070034][   T58] usb 4-1: new low-speed USB device number 25 using dummy_hcd
[ 1840.072683][    T8] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1840.117510][    T8] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 35332, setting to 64
[ 1840.134042][    T8] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1840.147078][    T8] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d6.01
[ 1840.156396][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1840.168123][T27202] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1840.211934][    T8] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[ 1840.212850][T27218] FAULT_INJECTION: forcing a failure.
[ 1840.212850][T27218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1840.249813][T27218] CPU: 1 UID: 0 PID: 27218 Comm: syz.1.6939 Not tainted 6.11.0-rc3-syzkaller #0
[ 1840.258877][T27218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1840.268947][T27218] Call Trace:
[ 1840.272244][T27218]  <TASK>
[ 1840.275267][T27218]  dump_stack_lvl+0x241/0x360
[ 1840.279964][T27218]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1840.285169][T27218]  ? __pfx__printk+0x10/0x10
[ 1840.289765][T27218]  ? __pfx_lock_release+0x10/0x10
[ 1840.294792][T27218]  ? vfs_write+0x7c4/0xc90
[ 1840.299222][T27218]  should_fail_ex+0x3b0/0x4e0
[ 1840.303890][T27218]  _copy_from_user+0x2f/0xe0
[ 1840.308475][T27218]  __sys_bpf+0x1a4/0x810
[ 1840.312737][T27218]  ? __pfx___sys_bpf+0x10/0x10
[ 1840.317510][T27218]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1840.323503][T27218]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1840.329833][T27218]  ? do_syscall_64+0x100/0x230
[ 1840.334598][T27218]  __x64_sys_bpf+0x7c/0x90
[ 1840.339025][T27218]  do_syscall_64+0xf3/0x230
[ 1840.343534][T27218]  ? clear_bhb_loop+0x35/0x90
[ 1840.348226][T27218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1840.354124][T27218] RIP: 0033:0x7f9a6c3779f9
[ 1840.358538][T27218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1840.378167][T27218] RSP: 002b:00007f9a6d15f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1840.386605][T27218] RAX: ffffffffffffffda RBX: 00007f9a6c505f80 RCX: 00007f9a6c3779f9
[ 1840.394578][T27218] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000012
[ 1840.402551][T27218] RBP: 00007f9a6d15f090 R08: 0000000000000000 R09: 0000000000000000
[ 1840.410531][T27218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1840.418516][T27218] R13: 0000000000000000 R14: 00007f9a6c505f80 R15: 00007ffcf07651e8
[ 1840.426515][T27218]  </TASK>
[ 1840.470776][   T58] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[ 1840.489412][   T58] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[ 1840.507024][   T58] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 1840.534652][   T58] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[ 1840.565736][   T58] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1840.616172][T27223] ubi0: attaching mtd0
[ 1840.687046][   T58] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[ 1840.699028][   T58] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1840.706894][T27223] ubi0: scanning is finished
[ 1840.708545][   T58] usb 4-1: Manufacturer: 凣
[ 1840.718632][T27224] program syz.2.6933 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1840.728176][T27223] ubi0: empty MTD device detected
[ 1840.742184][   T58] usb 4-1: config 0 descriptor??
[ 1840.765195][   T58] hub 4-1:0.0: bad descriptor, ignoring hub
[ 1840.771463][T27224] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1840.774687][   T58] hub 4-1:0.0: probe with driver hub failed with error -5
[ 1840.824856][   T58] input: 凣 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input71
[ 1841.041651][    T8] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[ 1841.547964][T27233] netlink: 'syz.4.6943': attribute type 10 has an invalid length.
[ 1841.561869][T27223] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1841.571800][T27223] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1841.580112][T27223] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1841.587978][T27233] netlink: 55 bytes leftover after parsing attributes in process `syz.4.6943'.
[ 1841.617928][T27223] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[ 1841.625382][T27223] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1841.650372][T27223] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1841.688325][    T8] usb 3-1: USB disconnect, device number 17
[ 1841.700863][T27223] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3239306260
[ 1841.721054][T27223] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1841.732585][T27234] ubi0: background thread "ubi_bgt0d" started, PID 27234
[ 1841.747742][    T8] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[ 1841.768398][ T5313] usb 4-1: USB disconnect, device number 25
[ 1842.424193][T27243] ntfs3: Bad value for 'gid'
[ 1842.429579][T27243] ntfs3: Bad value for 'gid'
[ 1842.700429][T27249] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1843.733704][T27267] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6950'.
[ 1843.837715][T27269] FAULT_INJECTION: forcing a failure.
[ 1843.837715][T27269] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1843.851885][T27269] CPU: 0 UID: 0 PID: 27269 Comm: syz.3.6952 Not tainted 6.11.0-rc3-syzkaller #0
[ 1843.860948][T27269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1843.871014][T27269] Call Trace:
[ 1843.874289][T27269]  <TASK>
[ 1843.877220][T27269]  dump_stack_lvl+0x241/0x360
[ 1843.881907][T27269]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1843.887104][T27269]  ? __pfx__printk+0x10/0x10
[ 1843.891697][T27269]  ? __pfx_lock_release+0x10/0x10
[ 1843.896733][T27269]  should_fail_ex+0x3b0/0x4e0
[ 1843.901406][T27269]  _copy_from_user+0x2f/0xe0
[ 1843.905992][T27269]  copy_msghdr_from_user+0xae/0x680
[ 1843.911197][T27269]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1843.917015][T27269]  __sys_sendmsg+0x23d/0x3a0
[ 1843.921602][T27269]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1843.926713][T27269]  ? irqtime_account_irq+0x18e/0x1e0
[ 1843.932003][T27269]  ? __irq_exit_rcu+0xf4/0x1c0
[ 1843.936775][T27269]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1843.943103][T27269]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1843.949423][T27269]  ? __irq_exit_rcu+0x100/0x1c0
[ 1843.954267][T27269]  ? do_syscall_64+0xb6/0x230
[ 1843.958937][T27269]  do_syscall_64+0xf3/0x230
[ 1843.963433][T27269]  ? clear_bhb_loop+0x35/0x90
[ 1843.968115][T27269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1843.974014][T27269] RIP: 0033:0x7fb0a9d779f9
[ 1843.978422][T27269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1843.998022][T27269] RSP: 002b:00007fb0aab06038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1844.006428][T27269] RAX: ffffffffffffffda RBX: 00007fb0a9f05f80 RCX: 00007fb0a9d779f9
[ 1844.014393][T27269] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[ 1844.022354][T27269] RBP: 00007fb0aab06090 R08: 0000000000000000 R09: 0000000000000000
[ 1844.030313][T27269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1844.038276][T27269] R13: 0000000000000000 R14: 00007fb0a9f05f80 R15: 00007ffd97f2a158
[ 1844.046248][T27269]  </TASK>
[ 1844.395073][T27279] FAULT_INJECTION: forcing a failure.
[ 1844.395073][T27279] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1844.733773][T27279] CPU: 0 UID: 0 PID: 27279 Comm: syz.0.6954 Not tainted 6.11.0-rc3-syzkaller #0
[ 1844.742841][T27279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1844.752905][T27279] Call Trace:
[ 1844.756190][T27279]  <TASK>
[ 1844.759125][T27279]  dump_stack_lvl+0x241/0x360
[ 1844.763823][T27279]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1844.769041][T27279]  ? __pfx__printk+0x10/0x10
[ 1844.773658][T27279]  ? __pfx_lock_release+0x10/0x10
[ 1844.778704][T27279]  ? vfs_write+0x7c4/0xc90
[ 1844.783133][T27279]  should_fail_ex+0x3b0/0x4e0
[ 1844.787836][T27279]  _copy_from_user+0x2f/0xe0
[ 1844.792446][T27279]  __sys_bpf+0x1a4/0x810
[ 1844.796703][T27279]  ? __pfx___sys_bpf+0x10/0x10
[ 1844.801489][T27279]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1844.807484][T27279]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1844.813827][T27279]  ? do_syscall_64+0x100/0x230
[ 1844.818604][T27279]  __x64_sys_bpf+0x7c/0x90
[ 1844.823033][T27279]  do_syscall_64+0xf3/0x230
[ 1844.827541][T27279]  ? clear_bhb_loop+0x35/0x90
[ 1844.832229][T27279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1844.838131][T27279] RIP: 0033:0x7f80ba3779f9
[ 1844.842559][T27279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1844.862169][T27279] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1844.870599][T27279] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1844.878585][T27279] RDX: 0000000000000090 RSI: 0000000020000400 RDI: 0000000000000005
[ 1844.886565][T27279] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1844.894547][T27279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1844.902532][T27279] R13: 0000000000000001 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1844.910527][T27279]  </TASK>
[ 1845.356619][T27285] cgroup: Unknown subsys name 'fsmagic'
[ 1845.958398][T27287] netlink: 184 bytes leftover after parsing attributes in process `syz.2.6955'.
[ 1846.219085][   T58] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[ 1846.309094][T27298] tmpfs: Bad value for 'mpol'
[ 1846.407827][   T58] usb 4-1: Using ep0 maxpacket: 16
[ 1846.472608][   T58] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1846.483981][   T58] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1846.498150][   T58] usb 4-1: New USB device found, idVendor=05ac, idProduct=8240, bcdDevice= 0.00
[ 1846.507520][   T58] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1846.533438][ T5266] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[ 1846.552322][   T58] usb 4-1: config 0 descriptor??
[ 1846.837834][ T5266] usb 3-1: Using ep0 maxpacket: 8
[ 1846.859647][ T5266] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 1846.868202][ T5266] usb 3-1: config 179 has no interface number 0
[ 1846.874964][ T5266] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1846.886838][ T5266] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1846.948559][ T5266] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1846.968235][ T5266] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1846.993213][ T5266] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1847.003361][ T5266] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1847.032181][T27297] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1847.759948][ T5267] usb 3-1: USB disconnect, device number 18
[ 1847.759960][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1847.775196][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1848.210983][   T58] usbhid 4-1:0.0: can't add hid device: -71
[ 1848.227074][ T5266] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1848.243232][   T58] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1848.270539][   T58] usb 4-1: USB disconnect, device number 26
[ 1848.280796][ T5266] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input72
[ 1848.360244][ T5267] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1848.466157][T27320] FAULT_INJECTION: forcing a failure.
[ 1848.466157][T27320] name failslab, interval 1, probability 0, space 0, times 0
[ 1848.526799][T27320] CPU: 0 UID: 0 PID: 27320 Comm: syz.2.6970 Not tainted 6.11.0-rc3-syzkaller #0
[ 1848.535875][T27320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1848.545954][T27320] Call Trace:
[ 1848.549249][T27320]  <TASK>
[ 1848.552191][T27320]  dump_stack_lvl+0x241/0x360
[ 1848.556901][T27320]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1848.562130][T27320]  ? __pfx__printk+0x10/0x10
[ 1848.566749][T27320]  ? __kmalloc_node_noprof+0xb7/0x440
[ 1848.572151][T27320]  ? __pfx___might_resched+0x10/0x10
[ 1848.577469][T27320]  should_fail_ex+0x3b0/0x4e0
[ 1848.582184][T27320]  should_failslab+0xac/0x100
[ 1848.586888][T27320]  __kmalloc_node_noprof+0xdf/0x440
[ 1848.592108][T27320]  ? __kvmalloc_node_noprof+0x72/0x190
[ 1848.597592][T27320]  __kvmalloc_node_noprof+0x72/0x190
[ 1848.602902][T27320]  seq_read_iter+0x202/0xd60
[ 1848.607519][T27320]  ? __lock_acquire+0x137a/0x2040
[ 1848.612575][T27320]  seq_read+0x3a4/0x4f0
[ 1848.616755][T27320]  ? __pfx_seq_read+0x10/0x10
[ 1848.621456][T27320]  ? debugfs_file_get+0x4cc/0x630
[ 1848.626520][T27320]  full_proxy_read+0x119/0x1d0
[ 1848.631302][T27320]  ? __pfx_full_proxy_read+0x10/0x10
[ 1848.636609][T27320]  vfs_read+0x204/0xbc0
[ 1848.640786][T27320]  ? __pfx_lock_release+0x10/0x10
[ 1848.645835][T27320]  ? __pfx_vfs_read+0x10/0x10
[ 1848.650535][T27320]  ? __fget_files+0x29/0x470
[ 1848.655141][T27320]  ? __fget_files+0x3f6/0x470
[ 1848.659847][T27320]  ksys_read+0x1a0/0x2c0
[ 1848.664106][T27320]  ? __pfx_ksys_read+0x10/0x10
[ 1848.668878][T27320]  ? do_syscall_64+0x100/0x230
[ 1848.673658][T27320]  ? do_syscall_64+0xb6/0x230
[ 1848.678357][T27320]  do_syscall_64+0xf3/0x230
[ 1848.682876][T27320]  ? clear_bhb_loop+0x35/0x90
[ 1848.687568][T27320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1848.693472][T27320] RIP: 0033:0x7efe05d779f9
[ 1848.697898][T27320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1848.717521][T27320] RSP: 002b:00007efe06b61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1848.725954][T27320] RAX: ffffffffffffffda RBX: 00007efe05f05f80 RCX: 00007efe05d779f9
[ 1848.733923][T27320] RDX: 0000000000002020 RSI: 0000000020005180 RDI: 0000000000000003
[ 1848.741888][T27320] RBP: 00007efe06b61090 R08: 0000000000000000 R09: 0000000000000000
[ 1848.749849][T27320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1848.757807][T27320] R13: 0000000000000000 R14: 00007efe05f05f80 R15: 00007fff2e588638
[ 1848.765783][T27320]  </TASK>
[ 1848.894025][T27324] cgroup: Unknown subsys name 'fsmagic'
[ 1849.540201][    T8] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1849.617552][T27332] netlink: 184 bytes leftover after parsing attributes in process `syz.2.6972'.
[ 1849.691909][T27330] overlayfs: failed to resolve './file1': -2
[ 1849.887695][    T8] usb 5-1: Using ep0 maxpacket: 8
[ 1849.898692][    T8] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 1849.923826][    T8] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1849.961710][    T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1850.002325][T27339] cgroup: Unknown subsys name 'fsmagic'
[ 1850.442325][    T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1850.715290][    T8] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1850.729288][    T8] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1850.738390][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1850.863093][T27348] FAULT_INJECTION: forcing a failure.
[ 1850.863093][T27348] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1850.876495][T27348] CPU: 0 UID: 0 PID: 27348 Comm: syz.1.6978 Not tainted 6.11.0-rc3-syzkaller #0
[ 1850.885522][T27348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1850.895582][T27348] Call Trace:
[ 1850.898852][T27348]  <TASK>
[ 1850.901764][T27348]  dump_stack_lvl+0x241/0x360
[ 1850.906438][T27348]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1850.911625][T27348]  ? __pfx__printk+0x10/0x10
[ 1850.916206][T27348]  ? __pfx_lock_release+0x10/0x10
[ 1850.921221][T27348]  ? vfs_write+0x7c4/0xc90
[ 1850.925622][T27348]  should_fail_ex+0x3b0/0x4e0
[ 1850.930304][T27348]  _copy_from_user+0x2f/0xe0
[ 1850.934916][T27348]  __sys_bpf+0x1a4/0x810
[ 1850.939179][T27348]  ? __pfx___sys_bpf+0x10/0x10
[ 1850.943955][T27348]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1850.949954][T27348]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1850.956281][T27348]  ? do_syscall_64+0x100/0x230
[ 1850.961033][T27348]  __x64_sys_bpf+0x7c/0x90
[ 1850.965436][T27348]  do_syscall_64+0xf3/0x230
[ 1850.969936][T27348]  ? clear_bhb_loop+0x35/0x90
[ 1850.974602][T27348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1850.980488][T27348] RIP: 0033:0x7f9a6c3779f9
[ 1850.984886][T27348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1851.004485][T27348] RSP: 002b:00007f9a6d15f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1851.012896][T27348] RAX: ffffffffffffffda RBX: 00007f9a6c505f80 RCX: 00007f9a6c3779f9
[ 1851.020857][T27348] RDX: 000000000000002a RSI: 00000000200002c0 RDI: 0000000000000002
[ 1851.028837][T27348] RBP: 00007f9a6d15f090 R08: 0000000000000000 R09: 0000000000000000
[ 1851.036801][T27348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1851.044762][T27348] R13: 0000000000000000 R14: 00007f9a6c505f80 R15: 00007ffcf07651e8
[ 1851.052738][T27348]  </TASK>
[ 1851.068203][T27346] tmpfs: Bad value for 'mpol'
[ 1851.075795][    T8] usb 5-1: usb_control_msg returned -32
[ 1851.086830][    T8] usbtmc 5-1:16.0: can't read capabilities
[ 1851.245856][T20821] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[ 1852.219643][T20821] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1852.231461][T20821] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1852.241432][T20821] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1852.250545][T20821] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1852.275842][T20821] usb 4-1: config 0 descriptor??
[ 1853.188812][    T8] usb 5-1: USB disconnect, device number 32
[ 1853.375394][T20821] uclogic 0003:256C:006D.005C: interface is invalid, ignoring
[ 1853.477391][T27376] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6985'.
[ 1853.512466][ T1269] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.518840][ T1269] ieee802154 phy1 wpan1: encryption failed: -22
[ 1853.595405][T20821] usb 4-1: USB disconnect, device number 27
[ 1854.805373][T27393] FAULT_INJECTION: forcing a failure.
[ 1854.805373][T27393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1854.829138][T27393] CPU: 1 UID: 0 PID: 27393 Comm: syz.3.6989 Not tainted 6.11.0-rc3-syzkaller #0
[ 1854.838203][T27393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1854.848272][T27393] Call Trace:
[ 1854.851566][T27393]  <TASK>
[ 1854.854511][T27393]  dump_stack_lvl+0x241/0x360
[ 1854.859216][T27393]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1854.864439][T27393]  ? __pfx__printk+0x10/0x10
[ 1854.869057][T27393]  ? __pfx_lock_release+0x10/0x10
[ 1854.874104][T27393]  ? vfs_write+0x7c4/0xc90
[ 1854.878546][T27393]  should_fail_ex+0x3b0/0x4e0
[ 1854.883244][T27393]  _copy_from_user+0x2f/0xe0
[ 1854.887858][T27393]  get_timespec64+0x97/0x280
[ 1854.892478][T27393]  ? __pfx_get_timespec64+0x10/0x10
[ 1854.897712][T27393]  __se_sys_clock_nanosleep+0x1a5/0x3c0
[ 1854.903282][T27393]  ? __pfx___se_sys_clock_nanosleep+0x10/0x10
[ 1854.909366][T27393]  ? do_syscall_64+0x100/0x230
[ 1854.914129][T27393]  ? do_syscall_64+0xb6/0x230
[ 1854.918800][T27393]  do_syscall_64+0xf3/0x230
[ 1854.923293][T27393]  ? clear_bhb_loop+0x35/0x90
[ 1854.927967][T27393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1854.933867][T27393] RIP: 0033:0x7fb0a9d779f9
[ 1854.938274][T27393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1854.957872][T27393] RSP: 002b:00007fb0aab06038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[ 1854.966275][T27393] RAX: ffffffffffffffda RBX: 00007fb0a9f05f80 RCX: 00007fb0a9d779f9
[ 1854.974234][T27393] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 000000000000000b
[ 1854.982193][T27393] RBP: 00007fb0aab06090 R08: 0000000000000000 R09: 0000000000000000
[ 1854.990153][T27393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1854.998109][T27393] R13: 0000000000000001 R14: 00007fb0a9f05f80 R15: 00007ffd97f2a158
[ 1855.006083][T27393]  </TASK>
[ 1855.062290][T27395] netdevsim netdevsim0: Direct firmware load for e 02bc 012b 0000 0000 0000
[ 1855.062290][T27395]  failed with error -2
[ 1855.152150][T27400] tmpfs: Bad value for 'mpol'
[ 1855.188486][T27395] netdevsim netdevsim0: Falling back to sysfs fallback for: e 02bc 012b 0000 0000 0000
[ 1855.188486][T27395] 
[ 1855.447774][   T58] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[ 1855.687778][ T5266] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1857.057680][ T5232] Bluetooth: hci0: command 0x0406 tx timeout
[ 1857.815854][T27410] program syz.3.6993 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1859.333994][T20821] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1859.471680][T27420] cgroup: Unknown subsys name 'fsmagic'
[ 1859.967659][T20821] usb 2-1: Using ep0 maxpacket: 32
[ 1860.007766][T20821] usb 2-1: config 0 has an invalid interface number: 214 but max is 2
[ 1860.041696][T20821] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1860.064741][T20821] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1860.074954][T20821] usb 2-1: config 0 has no interface number 0
[ 1860.105826][T20821] usb 2-1: config 0 interface 214 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[ 1860.278605][T20821] usb 2-1: config 0 interface 214 has no altsetting 0
[ 1860.323942][T20821] usb 2-1: New USB device found, idVendor=0c45, idProduct=6138, bcdDevice=69.18
[ 1860.352092][T20821] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1860.386867][T20821] usb 2-1: Product: ఌ
[ 1860.405678][T20821] usb 2-1: Manufacturer: ч
[ 1860.430368][T20821] usb 2-1: SerialNumber: ႚ趫
[ 1860.565271][T20821] usb 2-1: config 0 descriptor??
[ 1860.999546][T20821] gspca_main: sonixj-2.14.0 probing 0c45:6138
[ 1861.034674][T20821] gspca_sonixj: reg_w1 err -71
[ 1861.046224][T27437] FAULT_INJECTION: forcing a failure.
[ 1861.046224][T27437] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1861.047683][T20821] sonixj 2-1:0.214: probe with driver sonixj failed with error -71
[ 1861.064351][T27437] CPU: 1 UID: 0 PID: 27437 Comm: syz.2.7003 Not tainted 6.11.0-rc3-syzkaller #0
[ 1861.076340][T27437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1861.086410][T27437] Call Trace:
[ 1861.089705][T27437]  <TASK>
[ 1861.092650][T27437]  dump_stack_lvl+0x241/0x360
[ 1861.097356][T27437]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1861.102574][T27437]  ? __pfx__printk+0x10/0x10
[ 1861.104600][T20821] usb 2-1: USB disconnect, device number 45
[ 1861.107175][T27437]  ? __pfx_lock_release+0x10/0x10
[ 1861.118085][T27437]  ? vfs_write+0x7c4/0xc90
[ 1861.122517][T27437]  should_fail_ex+0x3b0/0x4e0
[ 1861.127224][T27437]  _copy_from_user+0x2f/0xe0
[ 1861.131839][T27437]  __sys_bpf+0x1a4/0x810
[ 1861.136110][T27437]  ? __pfx___sys_bpf+0x10/0x10
[ 1861.140907][T27437]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1861.146915][T27437]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1861.153268][T27437]  ? do_syscall_64+0x100/0x230
[ 1861.158061][T27437]  __x64_sys_bpf+0x7c/0x90
[ 1861.162491][T27437]  do_syscall_64+0xf3/0x230
[ 1861.166989][T27437]  ? clear_bhb_loop+0x35/0x90
[ 1861.171669][T27437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1861.177554][T27437] RIP: 0033:0x7efe05d779f9
[ 1861.181967][T27437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1861.201563][T27437] RSP: 002b:00007efe06b61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1861.209975][T27437] RAX: ffffffffffffffda RBX: 00007efe05f05f80 RCX: 00007efe05d779f9
[ 1861.217950][T27437] RDX: 0000000000000050 RSI: 00000000200002c0 RDI: 000000000000000a
[ 1861.225914][T27437] RBP: 00007efe06b61090 R08: 0000000000000000 R09: 0000000000000000
[ 1861.233877][T27437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1861.241839][T27437] R13: 0000000000000000 R14: 00007efe05f05f80 R15: 00007fff2e588638
[ 1861.249815][T27437]  </TASK>
[ 1861.544404][T27440] FAULT_INJECTION: forcing a failure.
[ 1861.544404][T27440] name failslab, interval 1, probability 0, space 0, times 0
[ 1861.557101][T27440] CPU: 1 UID: 0 PID: 27440 Comm: syz.1.7005 Not tainted 6.11.0-rc3-syzkaller #0
[ 1861.566134][T27440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1861.576180][T27440] Call Trace:
[ 1861.579454][T27440]  <TASK>
[ 1861.582376][T27440]  dump_stack_lvl+0x241/0x360
[ 1861.587049][T27440]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1861.592244][T27440]  ? __pfx__printk+0x10/0x10
[ 1861.596843][T27440]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1861.602391][T27440]  ? __pfx___might_resched+0x10/0x10
[ 1861.607674][T27440]  should_fail_ex+0x3b0/0x4e0
[ 1861.612372][T27440]  ? getname_flags+0xb7/0x540
[ 1861.617064][T27440]  should_failslab+0xac/0x100
[ 1861.621739][T27440]  ? getname_flags+0xb7/0x540
[ 1861.626418][T27440]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1861.631794][T27440]  getname_flags+0xb7/0x540
[ 1861.636292][T27440]  __x64_sys_rename+0x5d/0x90
[ 1861.640967][T27440]  do_syscall_64+0xf3/0x230
[ 1861.645458][T27440]  ? clear_bhb_loop+0x35/0x90
[ 1861.650123][T27440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1861.656007][T27440] RIP: 0033:0x7f9a6c3779f9
[ 1861.660421][T27440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1861.680033][T27440] RSP: 002b:00007f9a6d15f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 1861.688463][T27440] RAX: ffffffffffffffda RBX: 00007f9a6c505f80 RCX: 00007f9a6c3779f9
[ 1861.696429][T27440] RDX: 0000000000000000 RSI: 0000000020000800 RDI: 00000000200001c0
[ 1861.704389][T27440] RBP: 00007f9a6d15f090 R08: 0000000000000000 R09: 0000000000000000
[ 1861.712351][T27440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1861.720311][T27440] R13: 0000000000000000 R14: 00007f9a6c505f80 R15: 00007ffcf07651e8
[ 1861.728291][T27440]  </TASK>
[ 1861.771511][T27447] tmpfs: Bad value for 'mpol'
[ 1861.887739][ T5266] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1862.077678][ T5266] usb 5-1: Using ep0 maxpacket: 8
[ 1862.100634][ T5266] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1862.110084][ T5266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1862.118171][ T5266] usb 5-1: Product: syz
[ 1862.122349][ T5266] usb 5-1: Manufacturer: syz
[ 1862.127051][ T5266] usb 5-1: SerialNumber: syz
[ 1862.134943][ T5266] usb 5-1: config 0 descriptor??
[ 1862.408207][ T5266] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1862.422661][ T5266] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1862.448431][ T5266] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1862.454822][ T5266] dvb_usb_af9035 5-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1862.480008][ T5266] usb 5-1: USB disconnect, device number 34
[ 1862.684010][T27462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7012'.
[ 1862.717778][    T8] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 1862.746102][T27462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7012'.
[ 1862.917681][    T8] usb 3-1: Using ep0 maxpacket: 32
[ 1862.925789][    T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1862.942894][    T8] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1862.952297][    T8] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1862.962714][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1862.974887][    T8] usb 3-1: config 0 descriptor??
[ 1864.914451][T27495] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7020'.
[ 1864.969724][T27496] tmpfs: Bad value for 'mpol'
[ 1865.458938][T20821] usb 3-1: USB disconnect, device number 19
[ 1865.985994][T27516] usb usb8: usbfs: process 27516 (syz.4.7027) did not claim interface 0 before use
[ 1866.043113][T20821] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 1866.088097][T27518] FAULT_INJECTION: forcing a failure.
[ 1866.088097][T27518] name failslab, interval 1, probability 0, space 0, times 0
[ 1866.101782][T27518] CPU: 0 UID: 0 PID: 27518 Comm: syz.4.7028 Not tainted 6.11.0-rc3-syzkaller #0
[ 1866.110863][T27518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1866.120913][T27518] Call Trace:
[ 1866.124184][T27518]  <TASK>
[ 1866.127136][T27518]  dump_stack_lvl+0x241/0x360
[ 1866.131819][T27518]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1866.137012][T27518]  ? __pfx__printk+0x10/0x10
[ 1866.141599][T27518]  ? fs_reclaim_acquire+0x93/0x140
[ 1866.146705][T27518]  ? __pfx___might_resched+0x10/0x10
[ 1866.151987][T27518]  should_fail_ex+0x3b0/0x4e0
[ 1866.156668][T27518]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1866.162471][T27518]  should_failslab+0xac/0x100
[ 1866.167143][T27518]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1866.172864][T27518]  __kmalloc_noprof+0xd8/0x400
[ 1866.177623][T27518]  ? kfree+0x4e/0x360
[ 1866.181601][T27518]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1866.187155][T27518]  tomoyo_path_number_perm+0x23a/0x880
[ 1866.192624][T27518]  ? tomoyo_path_number_perm+0x208/0x880
[ 1866.198256][T27518]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1866.204256][T27518]  ? __fget_files+0x29/0x470
[ 1866.208840][T27518]  ? __fget_files+0x3f6/0x470
[ 1866.213514][T27518]  ? __fget_files+0x29/0x470
[ 1866.218127][T27518]  security_file_ioctl+0x75/0xb0
[ 1866.223060][T27518]  __se_sys_ioctl+0x47/0x170
[ 1866.227655][T27518]  do_syscall_64+0xf3/0x230
[ 1866.232151][T27518]  ? clear_bhb_loop+0x35/0x90
[ 1866.236822][T27518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1866.242707][T27518] RIP: 0033:0x7f4d493779f9
[ 1866.247114][T27518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1866.266711][T27518] RSP: 002b:00007f4d4a223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1866.275118][T27518] RAX: ffffffffffffffda RBX: 00007f4d49505f80 RCX: 00007f4d493779f9
[ 1866.283082][T27518] RDX: 0000000020000340 RSI: 00000000c0185502 RDI: 0000000000000003
[ 1866.291049][T27518] RBP: 00007f4d4a223090 R08: 0000000000000000 R09: 0000000000000000
[ 1866.299014][T27518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1866.306974][T27518] R13: 0000000000000000 R14: 00007f4d49505f80 R15: 00007ffc18d023c8
[ 1866.314958][T27518]  </TASK>
[ 1866.326016][ T5313] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1866.340185][T27518] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1866.348401][T27518] usb usb8: usbfs: process 27518 (syz.4.7028) did not claim interface 0 before use
[ 1866.437953][T20821] usb 3-1: Using ep0 maxpacket: 16
[ 1866.456029][T20821] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1866.476431][T20821] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1866.490139][T20821] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1866.500974][T20821] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1866.511108][T20821] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1866.525769][ T5313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1866.537498][ T5313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1866.549781][ T5313] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1866.560894][ T5313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1866.569444][T20821] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1866.592417][T20821] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1866.606482][ T5313] usb 2-1: config 0 descriptor??
[ 1866.622009][T20821] usb 3-1: Manufacturer: syz
[ 1866.653234][T20821] usb 3-1: config 0 descriptor??
[ 1867.657162][ T5313] uclogic 0003:256C:006D.005D: interface is invalid, ignoring
[ 1867.886769][ T5313] usb 2-1: USB disconnect, device number 46
[ 1868.567883][T27505] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1868.873333][T20821] rc_core: IR keymap rc-hauppauge not found
[ 1868.896982][T20821] Registered IR keymap rc-empty
[ 1868.914369][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1868.956521][T27537] FAULT_INJECTION: forcing a failure.
[ 1868.956521][T27537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1868.983087][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1868.988898][T27537] CPU: 1 UID: 0 PID: 27537 Comm: syz.0.7033 Not tainted 6.11.0-rc3-syzkaller #0
[ 1868.999339][T27537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1869.009407][T27537] Call Trace:
[ 1869.012696][T27537]  <TASK>
[ 1869.015636][T27537]  dump_stack_lvl+0x241/0x360
[ 1869.020337][T27537]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1869.025648][T27537]  ? __pfx__printk+0x10/0x10
[ 1869.030262][T27537]  ? __pfx_lock_release+0x10/0x10
[ 1869.035301][T27537]  ? __fget_files+0x3f6/0x470
[ 1869.039996][T27537]  should_fail_ex+0x3b0/0x4e0
[ 1869.044695][T27537]  _copy_from_user+0x2f/0xe0
[ 1869.049316][T27537]  __x64_sys_epoll_ctl+0x124/0x1a0
[ 1869.049708][T20821] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[ 1869.054434][T27537]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 1869.054465][T27537]  ? do_syscall_64+0x100/0x230
[ 1869.054487][T27537]  ? do_syscall_64+0xb6/0x230
[ 1869.054507][T27537]  do_syscall_64+0xf3/0x230
[ 1869.054526][T27537]  ? clear_bhb_loop+0x35/0x90
[ 1869.054550][T27537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1869.054568][T27537] RIP: 0033:0x7f80ba3779f9
[ 1869.054588][T27537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1869.054605][T27537] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 1869.054628][T27537] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1869.054642][T27537] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 1869.054656][T27537] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1869.054669][T27537] R10: 00000000200021c0 R11: 0000000000000246 R12: 0000000000000001
[ 1869.054683][T27537] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1869.054712][T27537]  </TASK>
[ 1869.337048][T27542] Option 'ÍÎÛ^
%ë¼ÞåË' to dns_resolver key: bad/missing value
[ 1870.213707][T27548] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7037'.
[ 1870.225922][T20821] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input73
[ 1870.283482][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.338487][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.390145][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.457818][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.537847][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.607923][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.668330][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.741036][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.807750][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.868730][T20821] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[ 1870.947638][T20821] mceusb 3-1:0.0: Registered  with mce emulator interface version 1
[ 1871.327662][T20821] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1871.357824][T20821] usb 3-1: USB disconnect, device number 20
[ 1871.463246][T27558] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 1
[ 1872.538622][T20821] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[ 1872.639079][T27577] netlink: 172 bytes leftover after parsing attributes in process `syz.1.7043'.
[ 1872.661094][T27576] tmpfs: Bad value for 'mpol'
[ 1872.757648][T20821] usb 3-1: Using ep0 maxpacket: 32
[ 1872.774212][T20821] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1872.792908][T20821] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1872.806702][T20821] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1872.816072][T20821] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1872.844028][T20821] usb 3-1: config 0 descriptor??
[ 1873.112136][    T8] usb 3-1: USB disconnect, device number 21
[ 1874.728774][T27594] autofs: Unknown parameter '
'
[ 1874.752795][T27594] input: syz1 as /devices/virtual/input/input74
[ 1874.860541][T11966] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[ 1874.982915][T20821] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1875.078940][T11966] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1875.180489][T11966] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1875.276791][T11966] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1875.333427][T11966] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1875.408309][   T58] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[ 1875.450027][T11966] usb 4-1: config 0 descriptor??
[ 1875.580642][T11966] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1875.670546][   T58] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1875.682387][   T58] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1875.693154][   T58] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1875.702424][   T58] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1875.714346][T27606] netlink: 172 bytes leftover after parsing attributes in process `syz.0.7053'.
[ 1875.721816][   T58] usb 3-1: config 0 descriptor??
[ 1875.778044][T20821] usb 2-1: Using ep0 maxpacket: 8
[ 1875.792546][T20821] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1875.806936][T20821] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1875.821067][T20821] usb 2-1: Product: syz
[ 1875.825328][T20821] usb 2-1: Manufacturer: syz
[ 1875.837512][T20821] usb 2-1: SerialNumber: syz
[ 1875.846386][T20821] usb 2-1: config 0 descriptor??
[ 1876.071877][T20821] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1876.082265][T20821] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1876.095903][T20821] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1876.102752][T20821] dvb_usb_af9035 2-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1876.118649][T20821] usb 2-1: USB disconnect, device number 47
[ 1877.009497][   T58] uclogic 0003:256C:006D.005E: failed retrieving string descriptor #100: -71
[ 1877.027977][T20821] usb 2-1: new full-speed USB device number 48 using dummy_hcd
[ 1877.028814][   T58] uclogic 0003:256C:006D.005E: failed retrieving pen parameters: -71
[ 1877.046740][   T58] uclogic 0003:256C:006D.005E: failed probing pen v1 parameters: -71
[ 1877.057170][   T58] uclogic 0003:256C:006D.005E: failed probing parameters: -71
[ 1877.064794][   T58] uclogic 0003:256C:006D.005E: probe with driver uclogic failed with error -71
[ 1877.105559][   T58] usb 3-1: USB disconnect, device number 22
[ 1877.170245][T27629] FAULT_INJECTION: forcing a failure.
[ 1877.170245][T27629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1877.185397][T27629] CPU: 0 UID: 0 PID: 27629 Comm: syz.0.7059 Not tainted 6.11.0-rc3-syzkaller #0
[ 1877.194443][T27629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1877.204488][T27629] Call Trace:
[ 1877.207762][T27629]  <TASK>
[ 1877.210683][T27629]  dump_stack_lvl+0x241/0x360
[ 1877.215364][T27629]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1877.220568][T27629]  ? __pfx__printk+0x10/0x10
[ 1877.225148][T27629]  ? __pfx_lock_release+0x10/0x10
[ 1877.230161][T27629]  ? vfs_write+0x7c4/0xc90
[ 1877.234561][T27629]  should_fail_ex+0x3b0/0x4e0
[ 1877.239228][T27629]  _copy_from_user+0x2f/0xe0
[ 1877.243809][T27629]  __sys_bpf+0x1a4/0x810
[ 1877.248045][T27629]  ? __pfx___sys_bpf+0x10/0x10
[ 1877.252804][T27629]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1877.258781][T27629]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1877.265096][T27629]  ? do_syscall_64+0x100/0x230
[ 1877.269848][T27629]  __x64_sys_bpf+0x7c/0x90
[ 1877.274252][T27629]  do_syscall_64+0xf3/0x230
[ 1877.278741][T27629]  ? clear_bhb_loop+0x35/0x90
[ 1877.283449][T27629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1877.289332][T27629] RIP: 0033:0x7f80ba3779f9
[ 1877.293733][T27629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1877.313336][T27629] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1877.321745][T27629] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1877.329703][T27629] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[ 1877.337665][T27629] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1877.345628][T27629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1877.353587][T27629] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1877.361553][T27629]  </TASK>
[ 1877.485448][T20821] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1877.596154][T20821] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1877.613510][T20821] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1877.625280][T20821] usb 2-1: config 1 has no interface number 0
[ 1877.638570][T20821] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1878.407650][T20821] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 35332, setting to 64
[ 1878.419651][T20821] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1878.432942][T20821] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d6.01
[ 1878.477617][T20821] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1878.520597][T27638] FAULT_INJECTION: forcing a failure.
[ 1878.520597][T27638] name failslab, interval 1, probability 0, space 0, times 0
[ 1878.527257][ T5313] usb 4-1: USB disconnect, device number 29
[ 1878.549510][T27623] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1878.562296][T27638] CPU: 1 UID: 0 PID: 27638 Comm: syz.0.7061 Not tainted 6.11.0-rc3-syzkaller #0
[ 1878.571350][T27638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1878.581405][T27638] Call Trace:
[ 1878.584679][T27638]  <TASK>
[ 1878.587606][T27638]  dump_stack_lvl+0x241/0x360
[ 1878.592291][T27638]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1878.597576][T27638]  ? __pfx__printk+0x10/0x10
[ 1878.602168][T27638]  ? fs_reclaim_acquire+0x93/0x140
[ 1878.607306][T27638]  ? __pfx___might_resched+0x10/0x10
[ 1878.612645][T27638]  should_fail_ex+0x3b0/0x4e0
[ 1878.617338][T27638]  ? jbd2__journal_start+0x14d/0x5d0
[ 1878.622639][T27638]  should_failslab+0xac/0x100
[ 1878.627323][T27638]  ? jbd2__journal_start+0x14d/0x5d0
[ 1878.632608][T27638]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1878.637977][T27638]  ? __pfx_lock_acquire+0x10/0x10
[ 1878.643007][T27638]  jbd2__journal_start+0x14d/0x5d0
[ 1878.648119][T27638]  __ext4_journal_start_sb+0x239/0x600
[ 1878.653572][T27638]  ext4_dirty_inode+0x92/0x110
[ 1878.658330][T27638]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1878.663689][T27638]  __mark_inode_dirty+0x325/0xe20
[ 1878.668713][T27638]  ? filemap_read+0xdc5/0xfa0
[ 1878.673391][T27638]  touch_atime+0x413/0x690
[ 1878.677817][T27638]  filemap_read+0xdc5/0xfa0
[ 1878.682347][T27638]  ? __pfx_filemap_read+0x10/0x10
[ 1878.687399][T27638]  vfs_read+0x9bd/0xbc0
[ 1878.691553][T27638]  ? __pfx_lock_release+0x10/0x10
[ 1878.696580][T27638]  ? __pfx_vfs_read+0x10/0x10
[ 1878.701280][T27638]  __x64_sys_pread64+0x1aa/0x230
[ 1878.706218][T27638]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1878.711671][T27638]  ? do_syscall_64+0x100/0x230
[ 1878.716426][T27638]  ? do_syscall_64+0xb6/0x230
[ 1878.721104][T27638]  do_syscall_64+0xf3/0x230
[ 1878.725602][T27638]  ? clear_bhb_loop+0x35/0x90
[ 1878.730276][T27638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1878.736168][T27638] RIP: 0033:0x7f80ba3779f9
[ 1878.740582][T27638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1878.760282][T27638] RSP: 002b:00007f80bb0c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1878.768696][T27638] RAX: ffffffffffffffda RBX: 00007f80ba505f80 RCX: 00007f80ba3779f9
[ 1878.776661][T27638] RDX: 0000000000000050 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1878.784629][T27638] RBP: 00007f80bb0c3090 R08: 0000000000000000 R09: 0000000000000000
[ 1878.792594][T27638] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000001
[ 1878.800557][T27638] R13: 0000000000000000 R14: 00007f80ba505f80 R15: 00007ffc6f660a88
[ 1878.808539][T27638]  </TASK>
[ 1878.847323][T20821] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[ 1878.950683][T27650] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[ 1878.968654][T27650] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[ 1878.989302][T27650] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[ 1879.703403][T27657] Option 'ÍÎÛ^
%ë¼ÞåË' to dns_resolver key: bad/missing value
[ 1882.324712][T20821] snd_usb_pod 2-1:1.1: set_interface failed
[ 1882.331504][T20821] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[ 1882.349508][T20821] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -71
[ 1882.401635][T20821] usb 2-1: USB disconnect, device number 48
[ 1882.781514][T27683] FAULT_INJECTION: forcing a failure.
[ 1882.781514][T27683] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1882.825995][T27683] CPU: 0 UID: 0 PID: 27683 Comm: syz.1.7071 Not tainted 6.11.0-rc3-syzkaller #0
[ 1882.835080][T27683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1882.845153][T27683] Call Trace:
[ 1882.848444][T27683]  <TASK>
[ 1882.851385][T27683]  dump_stack_lvl+0x241/0x360
[ 1882.856095][T27683]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1882.861317][T27683]  ? __pfx__printk+0x10/0x10
[ 1882.865929][T27683]  ? __pfx_lock_release+0x10/0x10
[ 1882.870984][T27683]  should_fail_ex+0x3b0/0x4e0
[ 1882.875685][T27683]  _copy_from_user+0x2f/0xe0
[ 1882.880300][T27683]  copy_msghdr_from_user+0xae/0x680
[ 1882.885529][T27683]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1882.891364][T27683]  __sys_sendmsg+0x23d/0x3a0
[ 1882.895957][T27683]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1882.901061][T27683]  ? vfs_write+0x7c4/0xc90
[ 1882.905500][T27683]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1882.911828][T27683]  ? do_syscall_64+0x100/0x230
[ 1882.916583][T27683]  ? do_syscall_64+0xb6/0x230
[ 1882.921253][T27683]  do_syscall_64+0xf3/0x230
[ 1882.925746][T27683]  ? clear_bhb_loop+0x35/0x90
[ 1882.930418][T27683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1882.936301][T27683] RIP: 0033:0x7f9a6c3779f9
[ 1882.940711][T27683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1882.960311][T27683] RSP: 002b:00007f9a6d15f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1882.968720][T27683] RAX: ffffffffffffffda RBX: 00007f9a6c505f80 RCX: 00007f9a6c3779f9
[ 1882.976683][T27683] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[ 1882.984651][T27683] RBP: 00007f9a6d15f090 R08: 0000000000000000 R09: 0000000000000000
[ 1882.992619][T27683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1883.000585][T27683] R13: 0000000000000000 R14: 00007f9a6c505f80 R15: 00007ffcf07651e8
[ 1883.008559][T27683]  </TASK>
[ 1883.557753][T18764] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1883.752737][T18764] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1883.764538][T18764] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1883.802076][T18764] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1883.818004][T20821] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 1883.825867][T18764] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1883.879728][T18764] usb 2-1: config 0 descriptor??
[ 1884.717644][T20821] usb 3-1: Using ep0 maxpacket: 32
[ 1884.735631][T20821] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1884.774249][T20821] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1884.822797][T20821] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1884.837759][T20821] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1884.855761][T20821] usb 3-1: config 0 descriptor??
[ 1884.884777][T20821] hub 3-1:0.0: bad descriptor, ignoring hub
[ 1884.893245][T20821] hub 3-1:0.0: probe with driver hub failed with error -5
[ 1884.914311][T20821] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[ 1885.116910][T27715] FAULT_INJECTION: forcing a failure.
[ 1885.116910][T27715] name failslab, interval 1, probability 0, space 0, times 0
[ 1885.145924][T27715] CPU: 1 UID: 0 PID: 27715 Comm: syz.4.7079 Not tainted 6.11.0-rc3-syzkaller #0
[ 1885.154982][T27715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1885.165023][T27715] Call Trace:
[ 1885.168295][T27715]  <TASK>
[ 1885.171209][T27715]  dump_stack_lvl+0x241/0x360
[ 1885.175881][T27715]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1885.181070][T27715]  ? __pfx__printk+0x10/0x10
[ 1885.185737][T27715]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1885.191702][T27715]  ? __pfx___might_resched+0x10/0x10
[ 1885.196983][T27715]  should_fail_ex+0x3b0/0x4e0
[ 1885.201651][T27715]  should_failslab+0xac/0x100
[ 1885.206311][T27715]  ? __alloc_skb+0x1c3/0x440
[ 1885.210887][T27715]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1885.216685][T27715]  __alloc_skb+0x1c3/0x440
[ 1885.221082][T27715]  ? get_pid_task+0x23/0x1f0
[ 1885.225679][T27715]  ? __pfx___alloc_skb+0x10/0x10
[ 1885.230600][T27715]  ? __lock_acquire+0x137a/0x2040
[ 1885.235644][T27715]  capi_write+0xc5/0x750
[ 1885.239884][T27715]  vfs_writev+0x5af/0xbb0
[ 1885.244201][T27715]  ? __pfx_capi_write+0x10/0x10
[ 1885.249123][T27715]  ? __pfx_vfs_writev+0x10/0x10
[ 1885.253953][T27715]  ? vfs_write+0x7c4/0xc90
[ 1885.258354][T27715]  ? __fget_files+0x29/0x470
[ 1885.262932][T27715]  do_writev+0x1b1/0x350
[ 1885.267158][T27715]  ? __pfx_do_writev+0x10/0x10
[ 1885.271911][T27715]  ? do_syscall_64+0x100/0x230
[ 1885.276656][T27715]  ? do_syscall_64+0xb6/0x230
[ 1885.281314][T27715]  do_syscall_64+0xf3/0x230
[ 1885.285798][T27715]  ? clear_bhb_loop+0x35/0x90
[ 1885.290461][T27715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1885.296340][T27715] RIP: 0033:0x7f4d493779f9
[ 1885.300745][T27715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1885.320337][T27715] RSP: 002b:00007f4d4a223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1885.328733][T27715] RAX: ffffffffffffffda RBX: 00007f4d49505f80 RCX: 00007f4d493779f9
[ 1885.336692][T27715] RDX: 0000000000000001 RSI: 0000000020000200 RDI: 0000000000000003
[ 1885.344647][T27715] RBP: 00007f4d4a223090 R08: 0000000000000000 R09: 0000000000000000
[ 1885.352604][T27715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1885.360567][T27715] R13: 0000000000000000 R14: 00007f4d49505f80 R15: 00007ffc18d023c8
[ 1885.368538][T27715]  </TASK>
[ 1885.584023][T18764] uclogic 0003:256C:006D.005F: failed retrieving string descriptor #100: -71
[ 1885.604261][T18764] uclogic 0003:256C:006D.005F: failed retrieving pen parameters: -71
[ 1885.617843][T18764] uclogic 0003:256C:006D.005F: failed probing pen v1 parameters: -71
[ 1885.646265][T18764] uclogic 0003:256C:006D.005F: failed probing parameters: -71
[ 1885.689393][T18764] uclogic 0003:256C:006D.005F: probe with driver uclogic failed with error -71
[ 1885.738385][T18764] usb 2-1: USB disconnect, device number 49
[ 1889.313022][T11966] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 1996.937526][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1996.944498][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P4882/1:b..l
[ 1996.952897][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=185785, q=279 ncpus=2)
[ 1996.960684][    C1] task:dhcpcd          state:R  running task     stack:23424 pid:4882  tgid:4882  ppid:1      flags:0x00000002
[ 1996.973503][    C1] Call Trace:
[ 1996.976770][    C1]  <TASK>
[ 1996.979687][    C1]  __schedule+0x17ae/0x4a10
[ 1996.984187][    C1]  ? __pfx___schedule+0x10/0x10
[ 1996.989022][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1996.994998][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[ 1997.000274][    C1]  preempt_schedule_irq+0xfb/0x1c0
[ 1997.005366][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1997.011069][    C1]  ? deref_stack_reg+0x1c7/0x260
[ 1997.015999][    C1]  irqentry_exit+0x5e/0x90
[ 1997.020397][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1997.026356][    C1] RIP: 0010:kernel_text_address+0x37/0xe0
[ 1997.032072][    C1] Code: c0 00 00 00 81 bd 01 00 00 00 48 39 c7 72 0c 48 c7 c0 00 00 e0 8b 48 39 c3 72 0c 48 89 df e8 80 2e a1 ff 85 c0 74 0b 89 e8 5b <41> 5e 5d c3 cc cc cc cc 48 c7 c0 80 5f f6 8f 48 c1 e8 03 48 b9 00
[ 1997.051673][    C1] RSP: 0018:ffffc90002eff5d0 EFLAGS: 00000287
[ 1997.057737][    C1] RAX: 0000000000000001 RBX: ffffffff84668d5f RCX: ffff8880286c8000
[ 1997.065692][    C1] RDX: ffff8880286c8000 RSI: 0000000000000001 RDI: ffffffff84668d5f
[ 1997.073652][    C1] RBP: 0000000000000001 R08: ffffffff814115c7 R09: ffffffff814130bf
[ 1997.081605][    C1] R10: 0000000000000003 R11: ffff8880286c8000 R12: ffff8880286c8000
[ 1997.089562][    C1] R13: ffffffff817f1da0 R14: dffffc0000000000 R15: 1ffff920005dfecd
[ 1997.097526][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1997.103763][    C1]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1997.109466][    C1]  ? unwind_next_frame+0x196f/0x2a00
[ 1997.114729][    C1]  ? unwind_get_return_address+0x37/0xc0
[ 1997.120343][    C1]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1997.126058][    C1]  __kernel_text_address+0xd/0x40
[ 1997.131094][    C1]  unwind_get_return_address+0x5d/0xc0
[ 1997.136534][    C1]  ? __kmalloc_noprof+0x1a6/0x400
[ 1997.141545][    C1]  arch_stack_walk+0x125/0x1b0
[ 1997.146291][    C1]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1997.151997][    C1]  stack_trace_save+0x118/0x1d0
[ 1997.156834][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1997.162282][    C1]  save_stack+0xfb/0x1f0
[ 1997.166505][    C1]  ? __pfx_save_stack+0x10/0x10
[ 1997.171335][    C1]  ? free_unref_page+0xd19/0xea0
[ 1997.176249][    C1]  ? __slab_free+0x31b/0x3d0
[ 1997.180818][    C1]  ? qlist_free_all+0x9e/0x140
[ 1997.185559][    C1]  ? kasan_quarantine_reduce+0x14f/0x170
[ 1997.191166][    C1]  ? __kasan_slab_alloc+0x23/0x80
[ 1997.196171][    C1]  ? __kmalloc_noprof+0x1a6/0x400
[ 1997.201182][    C1]  ? page_ext_get+0x20/0x2a0
[ 1997.205750][    C1]  __reset_page_owner+0x75/0x3f0
[ 1997.210671][    C1]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 1997.216546][    C1]  free_unref_page+0xd19/0xea0
[ 1997.221320][    C1]  __slab_free+0x31b/0x3d0
[ 1997.225715][    C1]  ? __phys_addr+0xba/0x170
[ 1997.230198][    C1]  qlist_free_all+0x9e/0x140
[ 1997.234766][    C1]  kasan_quarantine_reduce+0x14f/0x170
[ 1997.240207][    C1]  __kasan_slab_alloc+0x23/0x80
[ 1997.245035][    C1]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1997.250736][    C1]  __kmalloc_noprof+0x1a6/0x400
[ 1997.255571][    C1]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1997.261111][    C1]  tomoyo_path_number_perm+0x23a/0x880
[ 1997.266564][    C1]  ? group_send_sig_info+0x2e0/0x310
[ 1997.271827][    C1]  ? tomoyo_path_number_perm+0x208/0x880
[ 1997.277435][    C1]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1997.283422][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1997.288458][    C1]  ? __pfx_bpf_trace_run2+0x10/0x10
[ 1997.293659][    C1]  security_file_ioctl+0x75/0xb0
[ 1997.298594][    C1]  __se_sys_ioctl+0x47/0x170
[ 1997.303173][    C1]  do_syscall_64+0xf3/0x230
[ 1997.307661][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1997.312324][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1997.318200][    C1] RIP: 0033:0x7fb124b5ad49
[ 1997.322600][    C1] RSP: 002b:00007ffe89595ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1997.330997][    C1] RAX: ffffffffffffffda RBX: 000056216f581aa0 RCX: 00007fb124b5ad49
[ 1997.338954][    C1] RDX: 00007ffe89596000 RSI: 0000000000008921 RDI: 0000000000000011
[ 1997.346907][    C1] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000000000000035
[ 1997.354947][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe89596000
[ 1997.362907][    C1] R13: 000056215e1bef88 R14: 000056216f581aa0 R15: 000056216f56b8d0
[ 1997.370871][    C1]  </TASK>
[ 1997.373880][    C1] rcu: rcu_preempt kthread starved for 10260 jiffies! g185785 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1997.385136][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1997.395171][    C1] rcu: RCU grace-period kthread stack dump:
[ 1997.401036][    C1] task:rcu_preempt     state:R  running task     stack:25008 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1997.412745][    C1] Call Trace:
[ 1997.416006][    C1]  <TASK>
[ 1997.418920][    C1]  __schedule+0x17ae/0x4a10
[ 1997.423421][    C1]  ? __pfx___schedule+0x10/0x10
[ 1997.428256][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1997.433265][    C1]  ? __asan_memset+0x23/0x50
[ 1997.437838][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[ 1997.443622][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1997.450018][    C1]  ? schedule+0x90/0x320
[ 1997.454238][    C1]  schedule+0x14b/0x320
[ 1997.458380][    C1]  schedule_timeout+0x1be/0x310
[ 1997.463216][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1997.468574][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1997.473841][    C1]  ? prepare_to_swait_event+0x32e/0x350
[ 1997.479369][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1997.484200][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1997.489384][    C1]  ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10
[ 1997.495431][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1997.500696][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1997.506572][    C1]  ? finish_swait+0xd4/0x1e0
[ 1997.511146][    C1]  rcu_gp_kthread+0xa7/0x3b0
[ 1997.515719][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1997.520893][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1997.526766][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1997.531779][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1997.536956][    C1]  kthread+0x2f0/0x390
[ 1997.541031][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1997.546234][    C1]  ? __pfx_kthread+0x10/0x10
[ 1997.550815][    C1]  ret_from_fork+0x4b/0x80
[ 1997.555222][    C1]  ? __pfx_kthread+0x10/0x10
[ 1997.559803][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1997.564580][    C1]  </TASK>
[ 1997.567597][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1997.573895][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1997.579100][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x21/0x30