last executing test programs:

12m23.225667241s ago: executing program 3 (id=91):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)
r2 = io_uring_setup(0x28fe, &(0x7f0000000080)={0x0, 0x0, 0x2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f00000002c0)=0x9)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x11, &(0x7f00000002c0), 0x2)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x13c, 0x10, 0x413, 0x0, 0x0, {{@in6=@loopback, @in6=@loopback, 0x0, 0x0, 0x4e24, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0xee00}, {@in6=@ipv4={'\x00', '\xff\xff', @empty}, 0x40000000, 0x32}, @in=@dev, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x8}, {0x0, 0x0, 0xcc}, {}, 0x4, 0x0, 0xa, 0x0, 0x1}, [@algo_aead={0x4c, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x0, 0x80}}]}, 0x13c}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="8fedcb7924001175f37538e486dd63"], 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r5, 0x18000000000002a0, 0xe80, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f086dd", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r6, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

12m21.323806755s ago: executing program 3 (id=98):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vmci(0xffffff9c, &(0x7f0000001640), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000480)={0x40, 0x4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1a00000004000100000000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x2)

12m20.410494004s ago: executing program 3 (id=102):
syz_usb_connect$cdc_ncm(0x5, 0x76, &(0x7f0000000440)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010040000904000001020d0000052406000105240000000d240f0100000000000000000006241a00000008241cc0ff0a0a200905810300020000000904010000020d00000904011131d4ad651cdcf734ed2cae9504bd51c3a6b32adf178071448442b1438b4027c9d82e695d653d6faa1759e18fbcb103b58b2700291979ea95deb59fba6112a1f713db891991dcab90215d98c2458e62bd3bb5c7863e3db7641d9cdfdd860b8988eb14488f75cb3dd1bb65edd46a51d0f69ccc2bdfd175c62452d12dc86a42e6e9e407e312274ec57e832164cadfa2da"], 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, 0x0)
ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000180)={0x0, 0x0})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000de8000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000000c0)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000f7dbdf2515000000050029000000000008000300", @ANYRES32=r6, @ANYBLOB="5be0b1babfa7e762291d8c5974a54dab69d1b80fe9acd1be2d10efd1d1656f000000000959852f591fb99468593bc02a029a8e9e1be69ccf4010a932576b1d24c0379bda206dcbb0b90d0879be4bbfa3ac15047d55653698e49e3c3f2beacd57bb0aaa7f4e9db8246cc907270c6e6a1385cf41ca62e90c8493a7892b37cd"], 0x24}}, 0xc4)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000000)=""/9)
syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000980e5b4035120e00eef0000000010902120001000000000904"], 0x0)

12m17.860581839s ago: executing program 3 (id=110):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x92)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x3)
ioctl$TCSETSW2(r1, 0x5425, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@empty, 0x20001100, 0x3c}, @in6=@remote, {0x0, 0x0, 0x0, 0x5}, {0x0, 0x6}, {}, 0x0, 0x0, 0x2}, [@coaddr={0x14, 0xe, @in6=@ipv4={'\x00', '\xff\xff', @remote}}]}, 0x104}, 0x1, 0x0, 0x0, 0x20}, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x6000}})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[])

12m17.391814459s ago: executing program 3 (id=113):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vmci(0xffffff9c, &(0x7f0000001640), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000480)={0x40, 0x4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1a00000004000100000000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x2)

12m16.894106241s ago: executing program 3 (id=115):
r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket(0x2a, 0x2, 0x5)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r5, &(0x7f0000000240)={0xa, 0x0, 0x1, @private2, 0x3}, 0x1c)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f00000001c0)='wg0\x00', 0x4)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x101)
bind$can_j1939(r1, &(0x7f00000002c0)={0x1d, r3, 0x2, {0x0, 0x1, 0x4}, 0x1}, 0x18)
set_mempolicy(0x4003, &(0x7f00000001c0)=0x8000000100000003, 0xe1)
modify_ldt$write2(0x11, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, 0x0)

12m16.234311376s ago: executing program 32 (id=115):
r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket(0x2a, 0x2, 0x5)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r5, &(0x7f0000000240)={0xa, 0x0, 0x1, @private2, 0x3}, 0x1c)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f00000001c0)='wg0\x00', 0x4)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x101)
bind$can_j1939(r1, &(0x7f00000002c0)={0x1d, r3, 0x2, {0x0, 0x1, 0x4}, 0x1}, 0x18)
set_mempolicy(0x4003, &(0x7f00000001c0)=0x8000000100000003, 0xe1)
modify_ldt$write2(0x11, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, 0x0)

3m17.640863806s ago: executing program 0 (id=2053):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = dup3(r3, r2, 0x80000)
sendmsg$nl_generic(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x28, 0x19, 0x2, 0x9, 0x25dfdbfb, {0x5}, [@typed={0x14, 0x2d, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x8010}, 0x44084)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, 0x0, &(0x7f0000000040))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000ac0))
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000000080102000000000000000000000006040004800900010073797a31001900000500031084000000060002"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x5f58a3b36f04a945)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newsa={0x258, 0x10, 0x1, 0x70bd2d, 0x0, {{@in=@rand_addr=0x64010102, @in6=@loopback}, {@in=@remote, 0x2, 0x32}, @in6=@loopback, {0x0, 0x0, 0x800000000, 0x0, 0x9, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x1}, {}, 0x0, 0x0, 0x2, 0x2, 0x0, 0xbf}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_crypt={0x11e, 0x2, {{'essiv-cbc-aes-sha256-ce\x00'}, 0x6b0, "38bd8a283d6085b584f2071c8db3ceddb06c2cc8865a6cab3425202823923096fb8fcf4f251c01bfc6de4b08de2f5a0956548e0a08c3e8a569e33ee6c4d84d5e6cb1dc02b36bbc43b5caa4fca00e05b68da8b6f3ab202a95ce9ee242694b02144b8cd1991af34202a39c67d2b5d2739deeb4d964930576f3a3aa5ac464b961890f487019b194f8d6c10ecc778fc30d3d5bfe9b9e137ebb0f6d0aab99cf34410a6395e6d01fade47c685b8189b0d62220933f8025051e3a0755e953d0f87150d3a0bce8b4df85f72031f64a62235d0c001e5610e10a3b"}}]}, 0x258}, 0x1, 0x0, 0x0, 0x4048091}, 0x0)
socket(0x26, 0x80000, 0x7fffffff)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000000)='wg1\x00', 0x4)

3m16.337776493s ago: executing program 0 (id=2056):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x54, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xffffffe4, 0x8e, 0x2}, {0xc, 0x90, 0x6}, {0xc, 0x90, 0x8000000000000001}}]}, 0x54}, 0x1, 0x3f00, 0x0, 0x4014}, 0x0)

3m15.872914679s ago: executing program 0 (id=2058):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000080600000008000300", @ANYRES32=r2, @ANYBLOB="0a0018"], 0x28}}, 0x0)

3m15.715441461s ago: executing program 0 (id=2062):
r0 = syz_open_dev$dri(0x0, 0x9237, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
pipe2$9p(0x0, 0x80)
fcntl$setlease(0xffffffffffffffff, 0x407, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x9, 0x80, 0x3, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x404}, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000340)=[@window, @mss={0x2, 0x1}, @window, @timestamp, @sack_perm, @timestamp, @timestamp, @sack_perm], 0x2000000000000024)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000001240)={&(0x7f0000001180)="b7", 0x1, <r2=>0x0})
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/fib_trie\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000300), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
lseek(r3, 0x7fffffffffffffff, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000180)={r2})
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_CONTEXT(r5, 0x84, 0x11, 0x0, &(0x7f0000000080))

3m14.54650558s ago: executing program 0 (id=2064):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x6}, 0x2)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r4, 0x4030ae7b, &(0x7f0000000040)={0xffff, 0x4, 0x494, 0x8000000000000000, 0x6})
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt(r5, 0x0, 0x82, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x1c)
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000003c0)=@nat={'nat\x00', 0x670, 0x5, 0x390, 0xa8, 0x1c0, 0xfeffffff, 0xa8, 0xa8, 0x310, 0x310, 0xffffffff, 0x310, 0x310, 0x5, 0x0, {[{{@uncond, 0x0, 0xf0, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x6800, {0x0, @multicast2, @rand_addr, @port, @gre_key}}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {0x0, 0x7}, [@common=@osf={{0x50}, {'syz0\x00'}}, @common=@ah={{0x30}}]}, @common=@unspec=@STANDARD={0x28}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @rand_addr, @local}}}}, {{@ip={@multicast2, @multicast2, 0x0, 0x0, 'veth1_virt_wifi\x00', 'pim6reg0\x00'}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, @port, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x408)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x11}}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r2, 0xc, &(0x7f00000000c0), 0xfff1, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={'sha384-generic\x00'}})
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r7, 0x40049366, &(0x7f0000000180))

3m12.787990193s ago: executing program 0 (id=2070):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000018000000000008000000630124000000000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)

2m57.750847491s ago: executing program 33 (id=2070):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000018000000000008000000630124000000000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)

43.363204896s ago: executing program 6 (id=2638):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000a400)={0x2020, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r1, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000000340)={0x50, 0x0, r2}, 0x50)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r3, &(0x7f0000000000)={{0x6, @rose, 0x1}, [@null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x7, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0x100, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x20, 0xb}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e23, @private=0xa010102}}]}, 0x60}}, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x803}, 0xe)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x7ffffffff000)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_BT_POWER(r6, 0x112, 0x9, &(0x7f0000000000)=0x8, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000050a03000900000000000000020000000c00024000000000000000010900010073797a30000000002c000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000001400000011000100006ea68b61a347133de902a8df000000000000000000000a"], 0x80}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f00000001c0)=@newtaction={0x80, 0x30, 0x0, 0x70bd2b, 0x0, {}, [{0x6c, 0x1, [@m_skbedit={0x68, 0x7, 0x0, 0x0, {{0xc}, {0x3c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x9, 0x3, 0xfffffffffffffffa, 0x5535, 0xfffffffd}}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e", 0x23}], 0x1}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

42.111597226s ago: executing program 6 (id=2646):
r0 = socket$nl_route(0x10, 0x3, 0x0)
semop(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x5, 0xbc}, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x6})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
socket(0x10, 0x80002, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000340))
ppoll(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000400)=0x200002)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
dup(0xffffffffffffffff)
mknod$loop(0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x854)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x9, 0x8, 0x40, 0x42, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_dev$sndpcmc(&(0x7f0000000140), 0x2, 0x20800)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000000), 0x86, r3}, 0x38)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETTABLE(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001980)={0x14, 0x1, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4040010}, 0x24008080)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000003f40)={'bridge_slave_0\x00'})

40.656893853s ago: executing program 6 (id=2654):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$kcm(0x10, 0x2, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x101000, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x10)
getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000002180)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xffffffff, 0x0, 0x5}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
readv(r2, &(0x7f0000002140)=[{&(0x7f00000002c0)=""/39, 0xfffffffffffffd79}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x3c1, 0x3, 0x480, 0x2c0, 0x9403, 0x0, 0x2c0, 0x2c0, 0x3b0, 0x3d8, 0x3d8, 0x3b0, 0x3d8, 0x3, 0x0, {[{{@ipv6={@private2, @private0, [], [], 'veth0_to_batadv\x00', 'batadv0\x00'}, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x4, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111530000000000bf8db17744094c4a95000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x40000005, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r1}, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0xb, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000880)=@can_delroute={0x1c, 0x19, 0x1, 0x70bd29, 0x25dfdbff, {0x1d, 0x1, 0x2}, [@CGW_LIM_HOPS={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r7}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r9, 0xc004743e, 0x20001400)
syz_clone(0x4eb82100, 0x0, 0x0, 0x0, 0x0, 0x0)

40.363723734s ago: executing program 6 (id=2656):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x6, &(0x7f00000000c0)=0x408)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$user(&(0x7f0000000780), 0x0, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000440)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
syz_open_dev$loop(&(0x7f0000000240), 0x20364, 0x1)
keyctl$chown(0x4, 0x0, 0x0, 0x0)
setgroups(0x0, &(0x7f0000000340))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCGPKT(r4, 0x80045438, &(0x7f0000000140))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)={0x64, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x21}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x64}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000030603000000000000000300000000000500010007000000"], 0x1c}}, 0x0)
r6 = syz_open_dev$video4linux(&(0x7f0000000000), 0x3ff, 0x101000)
ioctl$VIDIOC_QUERY_EXT_CTRL(r6, 0xc0445624, &(0x7f0000000140)={0x80f0f000, 0x8, "9a555c14c966e134d198b9aaaa7da80f8e4fa888dece6ffdb507a3c83e58e128", 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, 0x0, [0x0, 0x2]})

39.11861101s ago: executing program 6 (id=2658):
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x42280, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xb, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r1)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r5, 0x707}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

38.113274353s ago: executing program 6 (id=2662):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FD_FRAMES(r1, 0x65, 0x8, 0x0, &(0x7f00000023c0))
r2 = dup(r0)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0000000000000ab284dc9a94095f54e34f11a5a480d2115805745f8a24d"], 0xb0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x20002)
r4 = dup(r3)
write$FUSE_LSEEK(r4, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRES32=r2, @ANYRES32=r4, @ANYBLOB=',cache=loose,'])

22.475288222s ago: executing program 34 (id=2662):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FD_FRAMES(r1, 0x65, 0x8, 0x0, &(0x7f00000023c0))
r2 = dup(r0)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0000000000000ab284dc9a94095f54e34f11a5a480d2115805745f8a24d"], 0xb0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x20002)
r4 = dup(r3)
write$FUSE_LSEEK(r4, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRES32=r2, @ANYRES32=r4, @ANYBLOB=',cache=loose,'])

14.093593068s ago: executing program 4 (id=2741):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x68402)
socket$rds(0x15, 0x5, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f00000000c0)={0x1, 0xaa4, 0x0, &(0x7f0000000100)})
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_io_uring_setup(0xd3f, &(0x7f0000000880), &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINKAT={0x27, 0x50, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x400})
r3 = io_uring_setup(0x1de0, &(0x7f0000000440))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0x1b, 0x20000038, r4)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x24, 0x0, 0x0, 0x0, &(0x7f0000c0e000/0x4000)=nil, 0x4000, 0x16, 0x3, {0x0, r4}})
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r5, 0x4188aec6, &(0x7f0000000040))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x34, r7, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_USECS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2400c000}, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x100000)

10.96385562s ago: executing program 4 (id=2745):
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000010c0), 0x13f, 0x1}}, 0x20)
socket(0x23, 0x800000003, 0x3)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-blowfish-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r3, 0x4, 0x0, 0x0, @void, @value}, 0x10)
r4 = socket(0x1, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r2, &(0x7f0000000680), &(0x7f0000000080)=@udp6=r4}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)

10.484024083s ago: executing program 4 (id=2747):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r2)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x14, r3, 0x5, 0x0, 0x0, {0x22}}, 0x14}}, 0x4000000)
r4 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r4, 0x0, &(0x7f0000000000)={0x34, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000000)
write$char_usb(r5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r6, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x44, 0x3, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88e5}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6004}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004000}, 0x80)

8.325285937s ago: executing program 4 (id=2758):
r0 = syz_open_dev$dri(&(0x7f0000000740), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x9237, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
pipe2$9p(&(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
fcntl$setlease(r5, 0x407, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x9, 0x80, 0x3, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x404}, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r6, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r6, 0x6, 0x16, &(0x7f0000000340)=[@window, @mss={0x2, 0x1}, @window, @timestamp, @sack_perm, @timestamp, @timestamp, @sack_perm], 0x2000000000000024)
setsockopt$inet_tcp_TCP_REPAIR(r6, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r6, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000001240)={&(0x7f0000001180)="b7", 0x1, <r7=>0x0})
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/fib_trie\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f0000000300), 0x0, 0x0)
bind$802154_raw(0xffffffffffffffff, &(0x7f0000000080)={0x24, @short={0x2, 0x1, 0xaaa2}}, 0x4c)
lseek(r8, 0x7fffffffffffffff, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r1, 0xc00464be, &(0x7f0000000180)={r7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="850400006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_CONTEXT(r9, 0x84, 0x11, 0x0, &(0x7f0000000080))

8.151857259s ago: executing program 2 (id=2759):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
quotactl$Q_QUOTAOFF(0xffffffff80000300, &(0x7f0000000040)=@sr0, 0xee00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r1 = open(0x0, 0x0, 0x0)
syz_emit_ethernet(0x2a7, &(0x7f0000000780)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x271, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0xe, 0xa, "a78c000005dc8080a2030003004003493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x1, "000005000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0x9, "17dcea468000000000054740a5d4901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2bce9ac946a3f0e2bc4000091394c02bcfbbb7d71138537d68e2d2c6393a9f3cc27"}, {0xe}]}}}}}}, 0x0)
mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0)
getpgid(0x0)
setns(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_MASTER={0x8}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bridge_slave_1\x00'}]}, 0x3c}}, 0x24008000)
renameat2(r1, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
open$dir(&(0x7f00000005c0)='./file1\x00', 0x101102, 0x40)

7.02273878s ago: executing program 2 (id=2761):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
setsockopt$sock_int(r2, 0x1, 0x28, &(0x7f0000000040)=0x80000000, 0x4)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@random="9b43a409aa81", @empty, @void, {@can={0xc, {{0x2, 0x1, 0x0, 0x1}, 0x2, 0x1, 0x0, 0x0, "15dba51daa8f771f"}}}}, 0x0)
read$FUSE(r2, &(0x7f0000000b80)={0x2020}, 0x2020)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x11)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x75, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x4f, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000540)={'gre0\x00', &(0x7f0000000400)={'syztnl1\x00', r3, 0x10, 0x10, 0x7, 0xd, {{0x44, 0x4, 0x3, 0x1f, 0x110, 0x68, 0x0, 0x7, 0x4, 0x0, @loopback, @private=0xa010100, {[@end, @timestamp_addr={0x44, 0x2c, 0xd6, 0x1, 0x3, [{@local, 0x5}, {@rand_addr=0x64010102}, {@remote, 0x8}, {@loopback, 0x1}, {@empty, 0x5}]}, @cipso={0x86, 0x1e, 0xffffffffffffffff, [{0x7, 0x12, "6babca95dd4bf2238ce7a5b57d081376"}, {0x7, 0x6, "45087e1e"}]}, @timestamp_addr={0x44, 0x54, 0x6d, 0x1, 0x6, [{@private=0xa010100, 0x3}, {@loopback, 0x10}, {@local, 0xe58b}, {@rand_addr=0x64010102, 0x800}, {@broadcast, 0x5}, {@multicast1, 0x9}, {@remote, 0x1}, {@broadcast, 0x6}, {@empty, 0x7}, {@multicast2, 0x800}]}, @generic={0x86, 0x9, "ecbc9a6baf5496"}, @timestamp={0x44, 0x20, 0xa1, 0x0, 0x8, [0x4, 0x4, 0x5, 0x1000, 0x2, 0x0, 0xd36]}, @cipso={0x86, 0x32, 0x3, [{0x0, 0x6, "7e6ecb53"}, {0x1, 0x11, "b7c4106d71738f97ea942f6669bf55"}, {0x4, 0x8, "9119f4e43336"}, {0x5, 0x5, "4e40c1"}, {0x6, 0x8, "bdaadd296c6f"}]}]}}}}})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), r2)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f00000007c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000780)={&(0x7f0000000600)={0x174, r4, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8000000000000001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xe822f583}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xdae9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x81}, @TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x80000000}]}, @TIPC_NLA_MEDIA={0x64, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4f4}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffff}]}, @TIPC_NLA_NET={0x58, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x96aebe8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7fffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5f6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x100}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x41ac816f}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x80}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x240084d1}, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000440)='/sys/power/pm_trace', 0x0, 0x0)
ioctl$TIOCGPTPEER(r5, 0x541b, 0x1000020000000)
epoll_create(0x80000000)

6.888632449s ago: executing program 4 (id=2763):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000400)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={0x0, 0x34}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
r1 = socket$pppoe(0x18, 0x1, 0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000413b88400819151300000000000109022b0000100000000904"], 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xc, @broadcast, 'veth1_to_team\x00'}}, 0x1e)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x15)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r3 = socket$kcm(0x21, 0x2, 0x2)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000040000000400", @ANYRES32=0x1, @ANYBLOB="faffffff000000000000c8db78ba0f47e310500060608b6f00"/34, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100), 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ede6d67200000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32, @ANYRES32=r3, @ANYBLOB="000000000300000000000000000000000000000000000000cb000000"], 0x48)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socket(0x200000100000011, 0x803, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f00000000c0))

6.524426153s ago: executing program 7 (id=2765):
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
io_uring_setup(0x1de0, &(0x7f0000000440)={0x0, 0x30b})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@updpolicy={0xfc, 0x19, 0xfd3649826d894c67, 0xfc, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x31}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0x1619}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x2, 0x0, 0x0, 0x2c1}]}]}, 0xfc}}, 0x4048850)

5.633532166s ago: executing program 2 (id=2767):
socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
add_key(0x0, &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001500)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000f3437b00001e3b"], 0x1c}, 0x1, 0x4000}, 0x0)
recvmmsg$unix(r4, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10000, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r5 = socket$unix(0x1, 0x3, 0x0)
bind$unix(r5, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
socket$unix(0x1, 0x3, 0x0)
bind$unix(r5, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x200200, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@remote, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
connect$unix(r5, 0x0, 0x0)
mprotect(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0)

5.443630619s ago: executing program 7 (id=2768):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0xe0000000, 0x111180)
ioctl$USBDEVFS_RESETEP(r0, 0x80045503, &(0x7f0000000100))

4.557821481s ago: executing program 2 (id=2769):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000140)={0x3c, @rand_addr=0x64010100, 0x4e21, 0x0, 'sh\x00', 0x9, 0x7, 0x18}, 0x2c)
r2 = syz_open_dev$vim2m(&(0x7f0000000340), 0x4000000000001, 0x2)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r3, 0x104, 0x0, &(0x7f0000000040), 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYRESDEC=r3, @ANYBLOB="3c0937de1e73176aca3938e7bfc09645cd6b2d0b53cf2ccba125345bfa932e04c2d061b1bb317f1509398de54d76d6c9a2293043edf763c236c28a4c01f49261b8f5d2a92c477900463f8141de90f979831170a28f95d1ca00cea4c1e275", @ANYRES32=<r5=>0x0, @ANYRES32, @ANYRESDEC=r1, @ANYRES64=r2], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vm(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5800005, 0x11, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCFLSH(r7, 0x40384708, 0x20000000)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000180)={0x28, 0x0, 0x0, @host}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRES32=r4], 0x80}, 0x1, 0x0, 0x0, 0x1}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1)
r9 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000500)=@newtaction={0x13c, 0x30, 0x0, 0x0, 0x0, {}, [{0x128, 0x1, [@m_ctinfo={0x124, 0x18, 0x0, 0x0, {{0xb}, {0x4}, {0xf6, 0x6, "a74036469fc84b4afd8e28a9894b3196f26aa4c25558a305ea0359feeec394a31052fd9088aa288ada9c09b0ae54020f29b0a7dd0895caec32b4a939c5ccb1a7b10581316333bb149d3ab0dcad0fca273615f004b65458a9d3f4d7998856f4ce4f5c9c115a4badfa090d63e8bd1017aafc7a45049f86b47e45f397bb89076d3f5cb49eec25448d3425915df61154c5e1af20ef8ae0472ffb7f7682c4f79c1c65da34c248f15bd0c5148ecc947638ba4e25d18746c4e4ef2c76a4b42a7ac153f3a4e7b0ae2184cb1f1bae7b16aab56848406e9de8c45fb923c0f0d3ede0a6be6ba01805a1423ac58457bcc3e2f3410dc7ab20"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x13c}}, 0x0)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e370248018088a817008035", 0x33fe0}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYRES64=r2, @ANYRESOCT=r5, @ANYRES64=r6], 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)

4.443831363s ago: executing program 7 (id=2771):
openat$vimc0(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0xffffffffffffff61)
socket$inet6(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r6=>0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$can_j1939(r4, &(0x7f0000002480)={0x1d, r6, 0xffffffffffffffff, {0x0, 0xf0, 0x1}}, 0x18)
r7 = socket(0x1e, 0x4, 0x0)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
close_range(r3, 0xffffffffffffffff, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r9, 0x800c6613, 0x0)
ioctl$SNDCTL_SEQ_GETINCOUNT(r9, 0x80045105, &(0x7f00000000c0))

3.08668278s ago: executing program 2 (id=2772):
socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
r0 = getpid()
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000300)=r0)
select(0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r4, 0xc0385720, &(0x7f00000000c0)={0x1})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key(0x0, &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000080)="000001020200", 0x6, 0xfffffffffffffffb)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mount(&(0x7f0000001000)=@md0, &(0x7f0000000040)='.\x00', &(0x7f0000000140)='hfs\x00', 0x800040, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB], 0x23)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x169802, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r7, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='stack\x00')
ioctl$BLKRRPART(r7, 0x125f, 0xfbff)

2.849511006s ago: executing program 5 (id=2773):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$vmci(0xffffff9c, &(0x7f0000000680), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000005c0)='btrfs_convert_extent_bit\x00', r4, 0x0, 0xe}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1a00000003000000000000000100000000800000", @ANYRES32=0x1, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x7, 0xa480)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f00000002c0)={r6, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00000014000800000000000000007f"}})
ioctl$LOOP_GET_STATUS64(r5, 0x4c05, &(0x7f0000000400))
openat$ttyS3(0xffffff9c, &(0x7f0000000500), 0x84140, 0x0)
getsockopt(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000000)=""/166, &(0x7f00000000c0)=0xa6)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000005000000fd0900008700000005010000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000300000000000000000000000000000000020000b0ae5fc51586ca3dc1cbdd6eb7b903b95f59195434a251785a08d010bc75348cc27a440bd965c098f79dfb5bb4b8359ee357c770462994bad21630f784b7e708f94035ad0f20f6568e5a20cc253310b802269b796418fc5791331c28f73730a9200082d7be7b9c46e6cef0d5eca0be5a15e2737691f847a30ea3bf4008e798"], 0x50)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)="3453f6290a986cf338b084691d47d24c87be48217dbaf9ecaf42e0b35ff2830d7c69b955278e67747f8856fd036347a76d3f1a1d153b3ce9b1df4561ee6d558d86918390769db5f375568ab8dd87f2cf668175798a27ee7af092805d7de2ae2a006699a115cf3c54445afdcf2d732287310aa54304eba4dded890148f3032947be7210018750232b4dc1b4946109004ae5a6a35f3f51d450d9540e08d1452a659f14ce2d92e04730141d4b0d", 0xac}], 0x1)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000000c0)={@hyper})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b0, &(0x7f0000001100)={0x0})
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_CAPBSET_READ(0x59616d61, 0xffffffff)

2.223598295s ago: executing program 4 (id=2774):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x4d031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
keyctl$KEYCTL_CAPABILITIES(0x1f, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x20, 0x56a, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x20}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x0, ')'}]}}, 0x0}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000019c0))
read(r2, &(0x7f0000000240)=""/235, 0xeb)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f0000001980)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1c}}, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f00000000c0)={0x0, 0xd18c9b60, &(0x7f0000000080)=[{&(0x7f0000000100)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
r4 = syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141)
syz_usb_disconnect(0xffffffffffffffff)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000100000ffffffffed000000000000000a20000000000a01020000000000000000010000000900010073797a300000000078000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000253c0011800a0001006c696d69740000002c0002800c0002400000080000000003080003400000000808000440000000010c0001"], 0xc0}, 0x1, 0x0, 0x0, 0x40c0}, 0xc4)
pwritev(r4, &(0x7f0000000140)=[{&(0x7f0000000200)="f319345267461af997b7b1b096558c3a829231e9da7e8f4c", 0xff90}], 0x1, 0xfffffffe, 0x0)
recvmsg$unix(r0, &(0x7f00000038c0)={0x0, 0x0, 0x0}, 0x1)
recvmsg$unix(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000000c0)=""/109, 0x6d}], 0x1}, 0x0)
r6 = userfaultfd(0x4554f5df5841434c)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r7, &(0x7f0000007d80)={0x0, 0x0, &(0x7f0000007d00)=[{&(0x7f0000000140)={0xc0, 0x68, 0x15, 0x0, 0x0, "", [@nested={0xae, 0x0, 0x0, 0x1, [@generic="1fdd8c4228e5e0db83e5ab5c131bdc2283410dffa054f12b2d4219cfad52d5864558bcb2fd85918bd965520332c71f642d25dc22bbf0fd58b53d5b344403965339060b76aef9eee70f32b949d5c80dc24e61cb4eb842ed6d5570c2400833579189436988f9301e8d89bd95ec515bfe0002f0335ed46ec6f40c76c23d48fa7866fa3e19bcfb26bff9e4d76f7954bd5d90713df53d163c3953f1ef7dd2f5b064f37b4328b9c2acd67f5439"]}]}, 0xc0}], 0x1}, 0x40c4)
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r6, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x105000, 0x8a)
getdents(r8, &(0x7f0000000240)=""/29, 0x1d)

2.207797213s ago: executing program 7 (id=2775):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x98, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x84, 0x1, [@m_tunnel_key={0x80, 0x1, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @empty}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @empty}, @TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xe}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f00000001c0)=0x2) (async)
ioctl$VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f0000000480)={0x1ff, 0x200, 0x2, {0x4, @pix={0x7, 0x8, 0x34565559, 0x5, 0x0, 0xfffffff3, 0x5, 0x983e, 0x1, 0x3, 0x2}}, 0x9})
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000000140)) (async)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000280)={'vlan1\x00', &(0x7f0000000180)=@ethtool_cmd={0x13, 0x80000001, 0x80000000, 0x2e, 0x8, 0x8, 0x55, 0x9, 0x81, 0x7, 0x3, 0x9, 0x2, 0x0, 0x0, 0x1, [0x67fb, 0x8]}})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$pptp(0x18, 0x1, 0x2) (async)
r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB="2d6e65745f636c73202d63707561636374202d6e65745f636c733135b03d284113e98b202b696f20"], 0x1f) (async)
connect$pptp(r4, &(0x7f0000000480)={0x18, 0x2, {0x2, @multicast1}}, 0x1e) (async)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001e00)=@newlink={0x3c, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4000, 0x61}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x4}}}]}, 0x3c}}, 0x0) (async)
syz_emit_ethernet(0x7e, &(0x7f00000005c0)={@multicast, @random="28feee412b8f", @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ddff00", 0x48, 0x2f, 0x0, @private2, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x88a8, 0x0, 0x0, [0x7ff]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x6]}}}}}}}, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r6, 0x0) (async)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r6, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r7, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@L2TP_ATTR_MTU={0x6, 0x1c, 0x8}, @L2TP_ATTR_MRU={0x6, 0x1d, 0xffbe}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_SESSION_ID={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

2.049918194s ago: executing program 2 (id=2776):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000e4ffffffffffff9400000000000000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x24, r1, 0x331, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
r5 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ab9fd540501d6f60d49fbc0000010902120001000040000904"], 0x0)
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r5, 0x0, &(0x7f0000000400)={0x44, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r5, 0x0, &(0x7f00000006c0)={0x44, &(0x7f0000000300)=ANY=[@ANYBLOB="200e28000000f67d2323bf85a96da826094c7835cb89605c4a156100cce37b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io$uac1(r5, 0x0, &(0x7f0000000800)={0x44, &(0x7f0000000340)=ANY=[@ANYBLOB="201748"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = io_uring_setup(0x497c, &(0x7f00000001c0)={0x0, 0x7fffd, 0x0, 0x2, 0x21})
r7 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
read$midi(r7, 0x0, 0x14)
close_range(r6, 0xffffffffffffffff, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r8, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02000003010000000000000002000020d3"])

1.95131984s ago: executing program 5 (id=2778):
gettid()
timer_create(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x4)
accept$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
semop(0x0, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[], 0x48)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r3=>0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
timer_gettime(r3, &(0x7f0000000040))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000002b00)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000027c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000140)="80", 0x1}], 0x1}}], 0x2, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x2001, 0x0)
shutdown(r2, 0x2)
r4 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@rand_addr=0x64010102, @in6=@dev, 0x4e22, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2f}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa788}, 0xfffffffe, 0x0, 0x2, 0x1}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x33}, 0x0, @in6=@empty, 0x0, 0x3, 0x1, 0x7}}, 0xe8)

1.895881296s ago: executing program 7 (id=2779):
r0 = syz_io_uring_setup(0x7793, &(0x7f0000000440)={0x0, 0x51b9, 0x40, 0x6, 0x2d7}, &(0x7f0000000300), &(0x7f0000000140))
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000004c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3})
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffe000/0x2000)=nil, 0x2000}})
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x1e, &(0x7f0000000180), 0x1)

1.840186s ago: executing program 1 (id=2780):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0xfffffffffffffffe, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = getpgrp(0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e23, @remote}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(r2, 0xe, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r5, &(0x7f0000000180)=ANY=[], 0x78)
sendfile(r4, r5, &(0x7f00000001c0), 0x8)
fcntl$addseals(r5, 0x409, 0x8)
fallocate(r5, 0x3, 0x0, 0x3)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
r7 = socket$unix(0x1, 0x5, 0x0)
dup2(r7, r6)

1.24866894s ago: executing program 7 (id=2781):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001d122610d118af1e79070102030109021b0001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000340)={0x1c, &(0x7f0000000000)=ANY=[@ANYBLOB="df17c8"], 0x0, 0x0})
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={<r2=>0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000000c0)={r2, 0xb}, 0x8)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB="3401000016008502000000000000000020010000000000000000000000000002e000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="c95af045165ae13bbf00"/23], 0x134}}, 0x0)
sendmsg$nl_xfrm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001c0001000000000000000000ff000000e424c7abd5dcbc621535f84e48cd877f7470540cc8eac2c48058f176986ae522bc5c34935ce6f0873626ff6336527c121cb2eef12289febccdfb21a263c48b3c68c714ff872c73362b2298f508e3a8721c101a247e4bfdf89706a5869255ef7267c857e6da13e093ee52f3c28e80fb6b4e43079974521061a64792c0a4045e56e9809c3e3a6aebae3360ceabb54e87a917bb604925"], 0x14}}, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000040), 0x1, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000003f000bf7ffffffffffffff00030000000c000200edffffff00000000"], 0x20}}, 0x0)
pipe2$watch_queue(&(0x7f0000001400)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80)
io_setup(0x80, &(0x7f0000000000)=<r7=>0x0)
r8 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x1, 0x2)
io_submit(r7, 0x2, &(0x7f0000001380)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r6, 0x0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x0, r8, 0x0}])
ioctl$VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000240)={0x6, @sliced={0xfff8, [0x1ff, 0xf509, 0x0, 0x9, 0x8, 0x4, 0x4003, 0x8, 0xe1, 0x1, 0x1006, 0xd4, 0x7, 0xfe33, 0x4, 0x100, 0xffff, 0x0, 0x3, 0x0, 0x1, 0x8, 0x839f, 0x8000, 0x0, 0x6, 0xd, 0x1, 0x7f, 0x4, 0x3, 0x1cd, 0xf8, 0x7, 0x2, 0xb, 0x5, 0x1, 0x8003, 0x400, 0x0, 0xd0b1, 0x8, 0x81, 0x4, 0x7, 0x504, 0x5], 0x8001}})

1.071577815s ago: executing program 5 (id=2782):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xd4, 0x0, 0x4, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_SERVICE={0x6c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x22}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x200}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0xe, 0x22}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2c}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x11, 0x8}}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x5}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xffffffb5}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x20081, 0x0)

654.258166ms ago: executing program 1 (id=2783):
socket(0x28, 0x5, 0x0)
fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
memfd_create(&(0x7f0000000100)='+\x88\xc7s\x00\x00\x942nodev\x00\x00\x8cZ_Pv\x03\xa7\xc1\b\xec\x90Q\x85\x83\xcd\x16\xdcw\'\x8a\xe5N\x8c\x17\xfd\xc5\xad\xd5y\x15\x1fx\x17\f\xbc\xd1.\x8cA\x17\x86\xb7-j!Y\x92\xd9\xc4\r8\xd0\xc9X\xa7\x11\xa3\xf0\x8a*\xbc\x87\xcd\x1fl\xfc\xf3]\xb8\xbd\x02\v<\fl\xa6]\xa5\xfb\x05\xcb\x9c\xe2\xc8\x05\xa5\xa5\xeb\xa9\xef\xe3\xf1b\x81\xec\xac\xb6\x80\xd5\xf5S\x85\x06O\x05\xb8\xa1\x15\xcc\x17\xe8s\x95\x95B\xee_\x98\x91)\xe7\xa8+\x8c\xee\x83@q\x16\xcf3\x0f\x81\xa8\xa9`i\x01m:\xcc\x1c\xed<\xcfA3n\xfd\n>\x03\xae\f \xdbH\'\x05\x82\xdbLE\x14\xcdq\x1abcf\xdb8\xe9a\xa8\x00'/201, 0x2)
userfaultfd(0x1)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000240))
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
epoll_create1(0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

380.282549ms ago: executing program 5 (id=2784):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000002c0)={0x10000, "421ae3753785259249154c944122ad063ff47d3b4c879afae6889cba3ab4c981", <r1=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r1, 0xc0303e03, &(0x7f00000000c0)={"e50d1af889b4ea0700000000000000f3c49e4906eddfecd83634e4a37ef94add", r1, <r2=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r2, 0x40103e05, &(0x7f00000001c0)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r3 = syz_io_uring_complete(0x0)
read$msr(r3, &(0x7f0000000300)=""/219, 0xdb)

379.297323ms ago: executing program 5 (id=2785):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000100), 0x10)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_int(r1, 0x1, 0x10, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1000000000001, 0x7}, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x68eb80)
syz_open_dev$sndctrl(0x0, 0x4, 0x482000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x9, &(0x7f0000000140)={0x4, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000002c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0xc4c85513, &(0x7f0000000040)={0x8, 0x0, 0x0, 0x9, '\x00', 0x1000000})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000000680)=""/102388, 0x18ff4)
socket$key(0xf, 0x3, 0x2)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x8, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x2}, 0x1c)
socket$inet6(0x10, 0x2, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0xffffffffffffffff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0xffffdffc)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x0, 0x4080)

356.037017ms ago: executing program 1 (id=2786):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r1 = socket$inet6(0xa, 0x805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xf, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$bt_hci(r1, 0x84, 0x81, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{0x1, <r2=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f00000001c0)='%+9llu \x00'}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xdd}, [@map_fd={0x18, 0x1, 0x1, 0x0, r2}]}, &(0x7f0000000000)='syzkaller\x00', 0xf, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000180)={0x0, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)

220.676392ms ago: executing program 1 (id=2787):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x200000000000011, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008009776b7040000000000008500000033"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=r3, @ANYBLOB="0000000000800200380012800b0001006272696467650000280002800c002300fbffffffffffffff05002400000000010500240001000000060027"], 0x58}}, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x40007f})

83.736764ms ago: executing program 5 (id=2788):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000006000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f21df33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)=<r3=>0x0)
sched_getparam(r3, &(0x7f00000002c0))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000000500)=""/102392, 0x18ff8)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r4, &(0x7f0000000500)={@val={0x0, 0x800}, @val={0x0, 0x85, 0xe, 0xffff, 0x13, 0x6}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x3, 0x3, 0x24, 0x64, 0x0, 0x7, 0x21, 0x0, @empty, @loopback}, {{0x4e24, 0x4e23, 0x4, 0x1, 0x5, 0x0, 0x0, 0x3, 0x5, "78cfcf", 0xff, "59e768"}}}}}, 0x32)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000300)={<r6=>0x0, 0x4}, &(0x7f0000000340)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000380)={r6, @in6={{0xa, 0x4e22, 0x82, @ipv4={'\x00', '\xff\xff', @remote}, 0xa5}}, 0x86, 0x0, 0xf4, 0x4, 0x84, 0x1, 0x8}, &(0x7f00000004c0)=0x9c)

83.360728ms ago: executing program 1 (id=2789):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
accept(r0, &(0x7f0000000100)=@nfc, &(0x7f0000000180)=0x80)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='lp\x00', 0x3)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000080))

0s ago: executing program 1 (id=2790):
syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_gettime(0x0, &(0x7f0000000080)={<r0=>0x0, <r1=>0x0})
rt_sigtimedwait(&(0x7f0000000000)={[0x7]}, &(0x7f0000000180), &(0x7f0000000200)={r0, r1+10000000}, 0x8)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x1, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x7, 0x0, 0x100, 0x6, 0x2, 0x5, 0x6, 0x5, 0x8})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_misc(r7, &(0x7f0000000080), 0xd)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r8}, 0x10)
sendmsg$NFT_MSG_GETTABLE(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x48000}, 0x4044010)
connect$inet6(r3, 0x0, 0xd7cc5d556c3ede87)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
r9 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r9, 0xc0d05605, &(0x7f00000002c0)={0x1, @raw_data="abe8e989c096f76451c077912fcea28fc33e2de0f18247526d628e9ff500bbf3be012f121f67d2bc75981f21022da3684044f750918441df15e6539aabbe52c41d979d4c265d1e71ec06188d0d9f0603187c6286be7454d4f43c08173e40f9b8db05201d42c5eaa846274b08caaf34637a8ec484903c5c09cb846c2a5348b27e09efdcd99541a3ba847c5f516c9d2db073029ed18f4688954a8291bc165fe7d09822d1a1a18b2778d23367102c6f9920fb21205ac8ebc275661d11ace92116c0a7cad1cd274dde42"})
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f00000002c0)=@nullb, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

1] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  697.492318][T14241] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  697.534851][T14246] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2246'.
[  697.890517][   T29] audit: type=1400 audit(1732658846.447:11553): avc:  denied  { create } for  pid=14261 comm="syz.2.2239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  697.921332][T14263] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2239'.
[  697.931480][   T29] audit: type=1400 audit(1732658846.477:11554): avc:  denied  { setopt } for  pid=14261 comm="syz.2.2239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  697.971709][T14263] 8021q: adding VLAN 0 to HW filter on device bond4
[  697.978964][T14262] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2239'.
[  697.998985][    T8] usb 6-1: new high-speed USB device number 61 using dummy_hcd
[  698.612328][ T5888] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[  698.633703][    T8] usb 6-1: config 1 has an invalid descriptor of length 220, skipping remainder of the config
[  698.644507][    T8] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  698.656508][    T8] usb 6-1: too many endpoints for config 1 interface 1 altsetting 17: 49, using maximum allowed: 30
[  698.665941][ T3071] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  698.668823][    T8] usb 6-1: config 1 interface 1 altsetting 17 has 0 endpoint descriptors, different from the interface descriptor's value: 49
[  698.688993][    T8] usb 6-1: config 1 interface 1 has no altsetting 1
[  698.698501][    T8] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  698.707985][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.716443][    T8] usb 6-1: Product: syz
[  698.720692][    T8] usb 6-1: Manufacturer: syz
[  698.725737][    T8] usb 6-1: SerialNumber: syz
[  698.742621][    T8] usb 6-1: selecting invalid altsetting 1
[  698.842263][ T5888] usb 7-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  698.867759][ T5888] usb 7-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  698.902487][ T3071] usb 3-1: device descriptor read/64, error -71
[  698.915383][ T5888] usb 7-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 14
[  698.981715][ T5888] usb 7-1: config 0 interface 0 has no altsetting 0
[  699.003751][ T5888] usb 7-1: New USB device found, idVendor=046d, idProduct=c534, bcdDevice= 0.00
[  699.022310][ T5888] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  699.192833][ T3071] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  699.218904][ T5888] usb 7-1: config 0 descriptor??
[  699.353567][T14275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  699.364089][T14275] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  699.682434][ T3071] usb 3-1: device descriptor read/64, error -71
[  699.751276][    T8] cdc_ncm 6-1:1.0: bind() failure
[  699.765846][    T8] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  699.797426][    T8] cdc_ncm 6-1:1.1: bind() failure
[  699.810508][    T8] usb 6-1: USB disconnect, device number 61
[  699.833979][ T3071] usb usb3-port1: attempt power cycle
[  699.836561][ T5888] logitech-djreceiver 0003:046D:C534.0029: unknown main item tag 0x0
[  699.852003][ T5888] logitech-djreceiver 0003:046D:C534.0029: unknown main item tag 0x0
[  700.187836][ T5888] logitech-djreceiver 0003:046D:C534.0029: item fetching failed at offset 2/5
[  700.218417][ T5888] logitech-djreceiver 0003:046D:C534.0029: logi_dj_probe: parse failed
[  700.241403][ T5888] logitech-djreceiver 0003:046D:C534.0029: probe with driver logitech-djreceiver failed with error -22
[  700.257297][ T5888] usb 7-1: USB disconnect, device number 4
[  700.327086][   T29] audit: type=1400 audit(1732658848.887:11555): avc:  denied  { getopt } for  pid=14288 comm="syz.4.2259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  700.346634][    C0] vkms_vblank_simulate: vblank timer overrun
[  700.367914][T14289] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2259'.
[  700.412375][ T3071] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  700.433040][ T3071] usb 3-1: device descriptor read/8, error -71
[  701.172472][ T3071] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  701.217043][ T3071] usb 3-1: device descriptor read/8, error -71
[  701.243268][T14299] erofs (device erofs): cannot find valid erofs superblock
[  701.353445][ T3071] usb usb3-port1: unable to enumerate USB device
[  702.947693][T14322] dlm: no local IP address has been set
[  702.953814][T14322] dlm: cannot start dlm midcomms -107
[  703.597900][   T29] audit: type=1107 audit(1732658852.157:11556): pid=14335 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  704.840019][T14359] trusted_key: encrypted_key: key trusted:syz not found
[  705.086442][T14360] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2279'.
[  707.546542][   T29] audit: type=1326 audit(1732658856.067:11557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14390 comm="syz.2.2287" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x0
[  708.047314][ T7318] IPVS: starting estimator thread 0...
[  708.152409][T14393] IPVS: using max 31 ests per chain, 74400 per kthread
[  708.723502][ T5888] usb 6-1: new high-speed USB device number 62 using dummy_hcd
[  708.932415][ T5888] usb 6-1: Using ep0 maxpacket: 8
[  708.940310][ T5888] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  708.962057][ T5888] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  708.984729][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.009360][ T5888] usb 6-1: config 0 descriptor??
[  709.230043][T14399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  709.267639][T14399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.288048][T14399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  709.579602][T14399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.696291][T14423] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2293'.
[  709.717467][T14399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  709.838043][T14399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.940091][T14399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  710.041515][T14399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  710.054126][T14399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  710.063930][T14399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  710.153845][ T5888] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  710.174059][ T5888] usb 6-1: USB disconnect, device number 62
[  710.176143][ T5888] iowarrior 6-1:0.0: I/O-Warror #0 now disconnected
[  711.292451][T14433] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2297'.
[  711.592934][T14443] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2297'.
[  711.632137][T14450] binder: 14445:14450 ioctl c0306201 20000580 returned -22
[  712.344924][T14456] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  712.397377][    T8] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  712.430786][T14458] netlink: 'syz.2.2303': attribute type 10 has an invalid length.
[  712.461522][T14458] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  712.513325][T14458] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  712.916211][    T8] usb 7-1: Using ep0 maxpacket: 8
[  712.959682][    T8] usb 7-1: config 2 has an invalid interface number: 18 but max is 0
[  713.165866][    T8] usb 7-1: config 2 has no interface number 0
[  713.174972][    T8] usb 7-1: config 2 interface 18 has no altsetting 0
[  713.240965][    T8] usb 7-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=33.ac
[  713.295529][    T8] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  713.342448][    T8] usb 7-1: Product: syz
[  713.475850][ T7318] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[  713.576361][    T8] usb 7-1: Manufacturer: syz
[  713.581038][    T8] usb 7-1: SerialNumber: syz
[  713.653691][   T29] audit: type=1400 audit(1732658862.207:11558): avc:  denied  { write } for  pid=14469 comm="syz.5.2306" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  713.678279][    C0] vkms_vblank_simulate: vblank timer overrun
[  713.685980][ T7318] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  713.708022][ T7318] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  713.722470][ T7318] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  713.731575][ T7318] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  713.752107][ T7318] usb 3-1: config 0 descriptor??
[  713.977950][ T7318] usbhid 3-1:0.0: can't add hid device: -71
[  713.979389][T14454] binder: 14453:14454 ioctl 4018620d 0 returned -22
[  713.991428][ T7318] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  714.728735][ T7318] usb 3-1: USB disconnect, device number 49
[  715.147050][T14487] atomic_op ffff888060fca998 conn xmit_atomic 0000000000000000
[  716.661078][T14509] Cannot find add_set index 0 as target
[  717.468490][    T8] usb 7-1: USB disconnect, device number 5
[  719.582609][ T7318] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  719.742374][ T7318] usb 3-1: Using ep0 maxpacket: 32
[  719.752772][ T7318] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  719.772443][ T7318] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  719.799892][ T7318] usb 3-1: config 0 interface 0 has no altsetting 0
[  719.811307][ T7318] usb 3-1: New USB device found, idVendor=056a, idProduct=00c4, bcdDevice= 0.00
[  719.820716][ T7318] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.831307][ T7318] usb 3-1: config 0 descriptor??
[  721.209475][   T29] audit: type=1400 audit(1732658868.697:11559): avc:  denied  { listen } for  pid=14548 comm="syz.4.2330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  721.573725][T14529] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.2323'.
[  721.777322][T13875] Bluetooth: hci5: unexpected event 0x08 length: 5 > 4
[  722.308782][T14529] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2323'.
[  723.442054][T14587] PKCS7: Unknown OID: [4] 2.19.13055.170809666(bad)
[  723.449986][T14587] PKCS7: Only support pkcs7_signedData type
[  723.733938][ T7318] usbhid 3-1:0.0: can't add hid device: -71
[  723.751513][ T7318] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  723.856554][ T5149] Bluetooth: hci5: command 0x0406 tx timeout
[  723.863008][ T7318] usb 3-1: USB disconnect, device number 50
[  724.137823][T14597] 9pnet_fd: Insufficient options for proto=fd
[  724.141593][T14607] bridge0: port 2(vlan0) entered disabled state
[  724.228666][T14604] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2345'.
[  724.310282][T14607] vlan0 (unregistering): left promiscuous mode
[  724.328841][T14607] bridge0: port 2(vlan0) entered disabled state
[  724.341595][T14604] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2345'.
[  724.388078][T14610] pimreg: entered allmulticast mode
[  724.405074][T14615] pimreg: left allmulticast mode
[  724.593253][T14603] ALSA: mixer_oss: invalid OSS volume 'ELF'
[  724.599540][T14603] ALSA: mixer_oss: invalid OSS volume 'Ô©6À~fơ`{îđÆÄÍXS¥Ô’j†́?)]0��¡\'
[  724.618943][T14603] ALSA: mixer_oss: invalid OSS volume 'ô²]qMˆ¦3³TóƯ=Đöæ\S‚¯1å2$�®*'
[  724.648645][T14603] ALSA: mixer_oss: invalid OSS volume ';*†ç7£â„á³ưµ”†cç+PÎ÷q�g­°ùU'
[  724.673345][T14603] ALSA: mixer_oss: invalid OSS volume 'øäh�€�v9gO©‚=ÑRpÑ€äH[ĂtÓ77˜'
[  724.685471][T14625] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.2350'.
[  726.298711][ T7318] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  726.341111][ T7318] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  726.552489][    T8] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  726.763427][ T5888] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[  726.772715][T14651] FAULT_INJECTION: forcing a failure.
[  726.772715][T14651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  726.785887][T14651] CPU: 0 UID: 0 PID: 14651 Comm: syz.6.2356 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  726.796284][T14651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  726.806321][T14651] Call Trace:
[  726.809578][T14651]  <TASK>
[  726.812493][T14651]  dump_stack_lvl+0x16c/0x1f0
[  726.817159][T14651]  should_fail_ex+0x497/0x5b0
[  726.821823][T14651]  _copy_from_user+0x2e/0xd0
[  726.826399][T14651]  kstrtouint_from_user+0xd7/0x1c0
[  726.831491][T14651]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  726.837203][T14651]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  726.842870][T14651]  proc_fail_nth_write+0x84/0x250
[  726.847903][T14651]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  726.853522][T14651]  ? ksys_write+0x12b/0x250
[  726.858056][T14651]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  726.863674][T14651]  vfs_write+0x24c/0x1150
[  726.867988][T14651]  ? __fget_files+0x1fc/0x3a0
[  726.872648][T14651]  ? __pfx___mutex_lock+0x10/0x10
[  726.877658][T14651]  ? __pfx_vfs_write+0x10/0x10
[  726.882409][T14651]  ? __fget_files+0x206/0x3a0
[  726.887074][T14651]  ksys_write+0x12b/0x250
[  726.891385][T14651]  ? __pfx_ksys_write+0x10/0x10
[  726.896223][T14651]  do_syscall_64+0xcd/0x250
[  726.900712][T14651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.906601][T14651] RIP: 0033:0x7f3a63b7d2ff
[  726.911008][T14651] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  726.930595][T14651] RSP: 002b:00007f3a648e6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  726.938991][T14651] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3a63b7d2ff
[  726.946943][T14651] RDX: 0000000000000001 RSI: 00007f3a648e60a0 RDI: 000000000000000a
[  726.954900][T14651] RBP: 00007f3a648e6090 R08: 0000000000000000 R09: 0000000000000000
[  726.962859][T14651] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  726.970813][T14651] R13: 0000000000000000 R14: 00007f3a63d35fa0 R15: 00007ffd8e6e6988
[  726.978777][T14651]  </TASK>
[  726.981854][    C0] vkms_vblank_simulate: vblank timer overrun
[  727.017886][    T8] usb 7-1: unable to get BOS descriptor or descriptor too short
[  727.029538][    T8] usb 7-1: no configurations
[  727.034634][    T8] usb 7-1: can't read configurations, error -22
[  727.066889][   T29] audit: type=1400 audit(1732658875.627:11560): avc:  denied  { write } for  pid=14662 comm="syz.6.2362" name="/" dev="9p" ino=1694025360095192279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  727.100363][   T29] audit: type=1400 audit(1732658875.637:11561): avc:  denied  { add_name } for  pid=14662 comm="syz.6.2362" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  727.122528][  T968] usb 6-1: new high-speed USB device number 63 using dummy_hcd
[  727.134114][   T29] audit: type=1400 audit(1732658875.637:11562): avc:  denied  { create } for  pid=14662 comm="syz.6.2362" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  727.155976][ T5888] usb 5-1: Using ep0 maxpacket: 16
[  727.156011][   T29] audit: type=1400 audit(1732658875.637:11563): avc:  denied  { associate } for  pid=14662 comm="syz.6.2362" name="bus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  727.176689][ T5888] usb 5-1: config 5 has an invalid interface number: 218 but max is 0
[  727.196516][ T5888] usb 5-1: config 5 has no interface number 0
[  727.205991][ T5888] usb 5-1: config 5 interface 218 altsetting 2 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  727.219726][ T5888] usb 5-1: config 5 interface 218 altsetting 2 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  727.235725][ T5888] usb 5-1: config 5 interface 218 altsetting 2 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[  727.247076][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has a duplicate endpoint with address 0xE, skipping
[  727.259108][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[  727.270701][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has a duplicate endpoint with address 0x4, skipping
[  727.287355][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has a duplicate endpoint with address 0x2, skipping
[  727.298477][  T968] usb 6-1: device descriptor read/64, error -71
[  727.315388][ T5888] usb 5-1: config 5 interface 218 altsetting 2 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  727.329460][ T5888] usb 5-1: config 5 interface 218 altsetting 2 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  727.350067][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has an endpoint descriptor with address 0xAD, changing to 0x8D
[  727.370811][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has a duplicate endpoint with address 0x8D, skipping
[  727.388657][    T8] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  727.396949][ T5888] usb 5-1: config 5 interface 218 altsetting 2 has 13 endpoint descriptors, different from the interface descriptor's value: 12
[  727.436243][ T5888] usb 5-1: config 5 interface 218 has no altsetting 0
[  727.446082][ T5888] usb 5-1: New USB device found, idVendor=0711, idProduct=0903, bcdDevice=e6.58
[  727.460032][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.482297][ T5888] usb 5-1: Product: �
[  727.494371][ T5888] usb 5-1: Manufacturer: င
[  727.499298][ T5888] usb 5-1: SerialNumber: syz
[  727.563353][  T968] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[  727.659922][    T8] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  727.703641][T14658] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  727.748178][  T968] usb 6-1: device descriptor read/64, error -71
[  727.780115][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  727.953393][  T968] usb usb6-port1: attempt power cycle
[  727.969400][    T8] usb 7-1: config 0 descriptor??
[  728.188170][T14658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  728.204991][    T8] [drm] vendor descriptor length:6 data:06 5f 01 ed 27 88 00 00 00 00 00
[  728.213704][    T8] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  728.221811][T14658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  728.247810][T14658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  728.258405][T14658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  728.688323][T14658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  728.697901][    T8] [drm:udl_init] *ERROR* Selecting channel failed
[  728.775793][  T968] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[  728.806736][T14658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  728.883912][  T968] usb 6-1: device descriptor read/8, error -71
[  728.891764][ T5888] sisusb 5-1:5.218: Invalid USB2VGA device
[  728.900871][    T8] [drm] Initialized udl 0.0.1 for 7-1:0.0 on minor 2
[  728.907826][ T5888] sisusb 5-1:5.218: probe with driver sisusb failed with error -22
[  728.915824][    T8] [drm] Initialized udl on minor 2
[  728.929953][ T5888] usb 5-1: USB disconnect, device number 64
[  728.939232][    T8] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  728.961779][    T8] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  728.983301][ T5886] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  728.995315][    T8] usb 7-1: USB disconnect, device number 7
[  729.002184][ T5886] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  729.056974][T14682] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2369'.
[  729.142621][  T968] usb 6-1: new high-speed USB device number 66 using dummy_hcd
[  729.173060][  T968] usb 6-1: device descriptor read/8, error -71
[  729.283871][  T968] usb usb6-port1: unable to enumerate USB device
[  729.968088][T14701] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2378'.
[  730.302815][T14707] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  730.489515][T14713] bridge_slave_1: left allmulticast mode
[  730.496465][T14713] bridge0: port 2(bridge_slave_1) entered disabled state
[  731.003053][T14719] xt_hashlimit: max too large, truncated to 1048576
[  731.056985][T14724] netlink: 260 bytes leftover after parsing attributes in process `syz.6.2382'.
[  731.078221][T14724] netlink: 260 bytes leftover after parsing attributes in process `syz.6.2382'.
[  731.101381][T14707] usb 3-1: config 0 has an invalid interface number: 61 but max is 0
[  731.117711][T14707] usb 3-1: config 0 has no interface number 0
[  731.128170][T14707] usb 3-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice=fe.09
[  731.144717][T14729] fuse: Bad value for 'user_id'
[  731.149745][T14729] fuse: Bad value for 'user_id'
[  731.155486][T14707] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.328538][T14707] usb 3-1: config 0 descriptor??
[  732.659750][T14707] snd-usb-audio 3-1:0.61: probe with driver snd-usb-audio failed with error -110
[  732.756663][   T29] audit: type=1400 audit(1732658881.307:11564): avc:  denied  { read } for  pid=14754 comm="syz.5.2389" path="socket:[44449]" dev="sockfs" ino=44449 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  732.800684][T14707] usb 3-1: USB disconnect, device number 51
[  733.003228][T14763] random: crng reseeded on system resumption
[  733.054825][T14765] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=14765 comm=syz.5.2391
[  736.369690][T14782] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2398'.
[  737.333650][  T968] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  737.397087][ T5888] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[  737.664222][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  737.692568][ T5888] usb 6-1: Using ep0 maxpacket: 8
[  737.794192][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  737.832858][ T5888] usb 6-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  738.422181][  T968] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  738.435309][ T5888] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  738.450005][ T5888] usb 6-1: Product: syz
[  738.454286][ T5888] usb 6-1: Manufacturer: syz
[  738.458886][ T5888] usb 6-1: SerialNumber: syz
[  738.463582][  T968] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  738.473812][  T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  738.510733][ T5888] usb 6-1: config 0 descriptor??
[  738.517374][  T968] usb 3-1: config 0 descriptor??
[  738.544060][ T5888] gspca_main: se401-2.14.0 probing 047d:5003
[  738.544832][T14793] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  738.814689][T14815] overlayfs: overlapping lowerdir path
[  738.862548][ T3071] usb 5-1: new full-speed USB device number 65 using dummy_hcd
[  739.037394][ T3071] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[  739.369886][ T5888] input: se401 as /devices/platform/dummy_hcd.5/usb6/6-1/input/input81
[  739.397284][T13268] Bluetooth: hci0: Frame reassembly failed (-84)
[  739.412297][ T3071] usb 5-1: config 0 interface 0 has no altsetting 0
[  739.419378][ T3071] usb 5-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=fe.c3
[  739.429318][ T3071] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.439934][ T3071] usb 5-1: config 0 descriptor??
[  740.348000][  T968] usbhid 3-1:0.0: can't add hid device: -71
[  740.360243][  T968] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  740.385685][  T968] usb 3-1: USB disconnect, device number 52
[  741.452405][ T5149] Bluetooth: hci0: command 0x1003 tx timeout
[  741.460332][T13875] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  741.543451][ T3071] usb 5-1: string descriptor 0 read error: -71
[  741.562118][ T5889] usb 6-1: USB disconnect, device number 67
[  741.602725][ T3071] usb 5-1: ucan: probing device on interface #0
[  741.609108][ T3071] usb 5-1: ucan: invalid endpoint configuration
[  741.642440][ T3071] usb 5-1: ucan: probe failed; try to update the device firmware
[  741.862262][ T3071] usb 5-1: USB disconnect, device number 65
[  741.872473][   T29] audit: type=1400 audit(1732658890.427:11565): avc:  denied  { append } for  pid=14844 comm="syz.5.2416" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  741.895954][    C0] vkms_vblank_simulate: vblank timer overrun
[  743.029822][T14860] Invalid logical block size (18)
[  743.489188][ T3071] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[  743.702954][ T3071] usb 5-1: Using ep0 maxpacket: 32
[  743.771637][ T5888] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  743.786391][ T3071] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  743.866808][ T3071] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  744.210920][ T5888] usb 3-1: config 0 has an invalid interface number: 50 but max is 0
[  744.229823][ T5888] usb 3-1: config 0 has no interface number 0
[  744.246500][ T5888] usb 3-1: config 0 interface 50 has no altsetting 0
[  745.043272][ T5888] usb 3-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=dc.3c
[  745.053031][ T5888] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  745.088186][ T3071] usb 5-1: string descriptor 0 read error: -71
[  745.098905][ T3071] usb 5-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  745.122378][ T3071] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  745.143089][ T3071] usb 5-1: config 0 descriptor??
[  745.148456][ T3071] usb 5-1: can't set config #0, error -71
[  745.174013][ T3071] usb 5-1: USB disconnect, device number 66
[  745.190213][ T5888] usb 3-1: config 0 descriptor??
[  745.219591][ T5888] usb_8dev 3-1:0.50 can0: sending command message failed
[  745.228391][ T5888] usb_8dev 3-1:0.50 can0: can't get firmware version
[  746.507748][T14863] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  746.526592][T14863] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  746.536839][ T5888] usb_8dev 3-1:0.50: probe with driver usb_8dev failed with error -22
[  746.565615][   T29] audit: type=1400 audit(1732658895.127:11566): avc:  denied  { setopt } for  pid=14893 comm="syz.6.2427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  746.602438][   T29] audit: type=1326 audit(1732658895.147:11567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14889 comm="syz.1.2428" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x0
[  746.668550][T14863] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  746.686905][T14863] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  746.707729][T14863] netlink: 'syz.2.2420': attribute type 4 has an invalid length.
[  746.730524][ T3071] usb 3-1: USB disconnect, device number 53
[  746.882422][ T7318] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  747.112900][ T7318] usb 7-1: Using ep0 maxpacket: 16
[  747.162803][ T7318] usb 7-1: unable to get BOS descriptor or descriptor too short
[  747.208483][ T7318] usb 7-1: config 3 interface 1 has no altsetting 0
[  747.251304][ T7318] usb 7-1: config 3 interface 0 has no altsetting 0
[  747.302597][ T7318] usb 7-1: New USB device found, idVendor=0421, idProduct=000e, bcdDevice=d4.89
[  747.314392][ T7318] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  747.322555][ T7318] usb 7-1: Product: syz
[  747.326831][ T7318] usb 7-1: Manufacturer: syz
[  747.337754][ T7318] usb 7-1: SerialNumber: syz
[  747.352427][ T5888] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[  747.554435][ T5888] usb 6-1: Using ep0 maxpacket: 32
[  747.606705][ T5888] usb 6-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  747.641261][ T5888] usb 6-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  748.126242][ T5888] usb 6-1: config 0 interface 0 has no altsetting 0
[  748.132954][ T5888] usb 6-1: New USB device found, idVendor=056a, idProduct=00c4, bcdDevice= 0.00
[  748.142000][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  748.152817][ T5888] usb 6-1: config 0 descriptor??
[  748.320439][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  748.326884][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  748.977987][ T5888] wacom 0003:056A:00C4.002B: unknown main item tag 0x0
[  749.002437][ T5888] wacom 0003:056A:00C4.002B: hidraw0: USB HID v0.00 Device [HID 056a:00c4] on usb-dummy_hcd.5-1/input0
[  749.097101][T14895] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.2426'.
[  750.484980][ T5889] usb 6-1: USB disconnect, device number 68
[  750.730748][T14935] QAT: Device 8 not found
[  750.754784][ T7318] usb 7-1: bad CDC descriptors
[  750.838089][ T7318] cdc_acm 7-1:3.1: Zero length descriptor references
[  750.965394][ T7318] cdc_acm 7-1:3.1: probe with driver cdc_acm failed with error -22
[  751.289978][ T7318] usb 7-1: USB disconnect, device number 8
[  752.230889][T14953] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2445'.
[  752.727120][   T29] audit: type=1400 audit(1732658901.287:11568): avc:  denied  { accept } for  pid=14961 comm="syz.2.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  752.828042][   T29] audit: type=1400 audit(1732658901.387:11569): avc:  denied  { mount } for  pid=14967 comm="syz.4.2449" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  752.860344][   T29] audit: type=1400 audit(1732658901.417:11570): avc:  denied  { remount } for  pid=14967 comm="syz.4.2449" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  752.994187][T14977] netlink: 'syz.2.2453': attribute type 1 has an invalid length.
[  753.102438][    T8] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[  753.538763][T14983] 8021q: adding VLAN 0 to HW filter on device bond5
[  753.744541][T14989] netlink: 'syz.5.2455': attribute type 1 has an invalid length.
[  753.833017][    T8] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  753.842092][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  753.855964][T14989] FAULT_INJECTION: forcing a failure.
[  753.855964][T14989] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  753.895156][    T8] usb 5-1: config 0 descriptor??
[  753.924894][T14989] CPU: 0 UID: 0 PID: 14989 Comm: syz.5.2455 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  753.935351][T14989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  753.945409][T14989] Call Trace:
[  753.948686][T14989]  <TASK>
[  753.951613][T14989]  dump_stack_lvl+0x16c/0x1f0
[  753.956312][T14989]  should_fail_ex+0x497/0x5b0
[  753.961007][T14989]  _copy_from_user+0x2e/0xd0
[  753.965613][T14989]  copy_msghdr_from_user+0x99/0x160
[  753.970826][T14989]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  753.976664][T14989]  ___sys_sendmsg+0xff/0x1e0
[  753.981267][T14989]  ? __pfx____sys_sendmsg+0x10/0x10
[  753.986480][T14989]  ? __pfx_lock_release+0x10/0x10
[  753.991498][T14989]  ? trace_lock_acquire+0x146/0x1e0
[  753.996695][T14989]  ? __fget_files+0x206/0x3a0
[  754.001367][T14989]  __sys_sendmsg+0x16e/0x220
[  754.006000][T14989]  ? __pfx___sys_sendmsg+0x10/0x10
[  754.011111][T14989]  do_syscall_64+0xcd/0x250
[  754.015610][T14989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.021496][T14989] RIP: 0033:0x7fc21557e819
[  754.025901][T14989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.045497][T14989] RSP: 002b:00007fc216448038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  754.053899][T14989] RAX: ffffffffffffffda RBX: 00007fc215735fa0 RCX: 00007fc21557e819
[  754.061861][T14989] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 000000000000000d
[  754.069818][T14989] RBP: 00007fc216448090 R08: 0000000000000000 R09: 0000000000000000
[  754.077784][T14989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  754.085741][T14989] R13: 0000000000000000 R14: 00007fc215735fa0 R15: 00007ffc8f5d6148
[  754.093709][T14989]  </TASK>
[  754.096726][    C0] vkms_vblank_simulate: vblank timer overrun
[  754.128198][    T8] gspca_main: cpia1-2.14.0 probing 0813:0001
[  754.602366][    T8] cpia1 5-1:0.0: unexpected state after lo power cmd: 4e
[  755.078396][   T29] audit: type=1804 audit(1732658903.627:11571): pid=15018 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.2461" name="/newroot/448/bus/bus" dev="overlay" ino=2437 res=1 errno=0
[  755.175372][T15019] evm: overlay not supported
[  755.459074][    T8] cpia1 5-1:0.0: only firmware version 1 is supported (got: 9)
[  756.273766][ T5888] usb 5-1: USB disconnect, device number 67
[  756.519270][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2465'.
[  756.543868][   T29] audit: type=1326 audit(1732658905.077:11572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  756.855946][   T29] audit: type=1326 audit(1732658905.077:11573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  756.872127][T15034] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2466'.
[  756.879499][    C0] vkms_vblank_simulate: vblank timer overrun
[  756.919855][   T29] audit: type=1326 audit(1732658905.077:11574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  756.920113][T15036] binder: 15035:15036 ioctl 4008ae89 20000640 returned -22
[  756.943531][    C0] vkms_vblank_simulate: vblank timer overrun
[  757.008473][   T29] audit: type=1326 audit(1732658905.077:11575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  757.032024][    C0] vkms_vblank_simulate: vblank timer overrun
[  757.111002][   T29] audit: type=1326 audit(1732658905.077:11576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  757.279058][   T29] audit: type=1326 audit(1732658905.077:11577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3a63b80737 code=0x7ffc0000
[  757.873512][ T7318] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  757.892334][   T29] audit: type=1326 audit(1732658905.087:11578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  758.141016][   T29] audit: type=1326 audit(1732658905.087:11579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  758.164595][    C0] vkms_vblank_simulate: vblank timer overrun
[  758.662585][ T7318] usb 7-1: config 1 has an invalid descriptor of length 220, skipping remainder of the config
[  758.673004][ T7318] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  758.684083][ T7318] usb 7-1: too many endpoints for config 1 interface 1 altsetting 17: 49, using maximum allowed: 30
[  758.695066][ T7318] usb 7-1: config 1 interface 1 altsetting 17 has 0 endpoint descriptors, different from the interface descriptor's value: 49
[  758.698865][   T29] audit: type=1326 audit(1732658905.087:11580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  758.708175][ T7318] usb 7-1: config 1 interface 1 has no altsetting 1
[  758.710647][ T7318] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  758.731693][    C0] vkms_vblank_simulate: vblank timer overrun
[  758.765116][   T29] audit: type=1326 audit(1732658905.087:11581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  758.770693][ T7318] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  758.839533][   T29] audit: type=1326 audit(1732658905.087:11582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  758.868407][ T7318] usb 7-1: Product: syz
[  758.878355][ T7318] usb 7-1: Manufacturer: syz
[  758.891225][ T7318] usb 7-1: SerialNumber: syz
[  758.947475][   T29] audit: type=1326 audit(1732658905.087:11583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  759.817338][   T29] audit: type=1326 audit(1732658905.087:11584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  759.843624][    C0] vkms_vblank_simulate: vblank timer overrun
[  759.868264][ T7318] usb 7-1: selecting invalid altsetting 1
[  759.927133][T15070] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  759.938276][   T29] audit: type=1326 audit(1732658905.087:11585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  760.335302][   T29] audit: type=1326 audit(1732658905.087:11586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  760.732334][ T7318] cdc_ncm 7-1:1.0: bind() failure
[  760.737836][   T29] audit: type=1326 audit(1732658905.087:11587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15024 comm="syz.6.2464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a63b7e819 code=0x7ffc0000
[  761.144993][ T7318] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  761.188910][ T7318] cdc_ncm 7-1:1.1: bind() failure
[  761.218221][ T7318] usb 7-1: USB disconnect, device number 9
[  762.300230][T15100] netlink: 'syz.6.2487': attribute type 10 has an invalid length.
[  762.440182][T15096] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2
[  762.509430][ T3597] Bluetooth: hci0: Frame reassembly failed (-84)
[  762.521127][T15100] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  762.955435][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  762.955451][   T29] audit: type=1326 audit(1732658911.517:11645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.032567][   T29] audit: type=1326 audit(1732658911.517:11646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.198063][   T29] audit: type=1326 audit(1732658911.547:11647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.399537][   T29] audit: type=1326 audit(1732658911.547:11648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.424431][   T29] audit: type=1326 audit(1732658911.547:11649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.469490][T15120] Cannot find set identified by id 0 to match
[  763.532170][   T29] audit: type=1326 audit(1732658911.547:11650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe9b1d80737 code=0x7ffc0000
[  763.571074][   T29] audit: type=1326 audit(1732658911.547:11651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.605012][   T29] audit: type=1326 audit(1732658911.547:11652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.631139][   T29] audit: type=1326 audit(1732658911.547:11653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.660098][   T29] audit: type=1326 audit(1732658911.547:11654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.1.2491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9b1d7e819 code=0x7ffc0000
[  763.762530][ T7318] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[  763.932409][ T7318] usb 5-1: Using ep0 maxpacket: 32
[  763.944427][ T7318] usb 5-1: unable to read config index 0 descriptor/start: -61
[  763.953224][ T7318] usb 5-1: can't read configurations, error -61
[  764.199469][ T7318] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[  764.452547][ T7318] usb 5-1: Using ep0 maxpacket: 32
[  764.483980][ T7318] usb 5-1: unable to read config index 0 descriptor/start: -61
[  764.493155][T13875] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  764.606271][ T7318] usb 5-1: can't read configurations, error -61
[  764.771448][ T7318] usb usb5-port1: attempt power cycle
[  765.101154][T15156] netlink: 'syz.5.2507': attribute type 15 has an invalid length.
[  765.123925][T15156] netlink: 666 bytes leftover after parsing attributes in process `syz.5.2507'.
[  765.233019][ T7318] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[  765.306404][ T7318] usb 5-1: Using ep0 maxpacket: 32
[  765.334970][ T7318] usb 5-1: unable to read config index 0 descriptor/start: -61
[  765.357101][ T7318] usb 5-1: can't read configurations, error -61
[  765.772432][ T7318] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[  765.804521][ T7318] usb 5-1: Using ep0 maxpacket: 32
[  765.813082][ T7318] usb 5-1: unable to read config index 0 descriptor/start: -61
[  765.821030][ T7318] usb 5-1: can't read configurations, error -61
[  765.834883][ T7318] usb usb5-port1: unable to enumerate USB device
[  766.555564][T15180] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15180 comm=syz.5.2513
[  766.568637][T15180] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2513'.
[  766.578044][T15180] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2513'.
[  766.588940][T15180] kernel profiling enabled (shift: 17)
[  767.137823][T15187] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2514'.
[  767.142488][T15186] veth1_to_team: entered promiscuous mode
[  767.159140][T15187] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2514'.
[  768.459451][T15186] veth1_to_team: left promiscuous mode
[  768.685103][T15215] FAULT_INJECTION: forcing a failure.
[  768.685103][T15215] name failslab, interval 1, probability 0, space 0, times 0
[  768.718247][T15215] CPU: 0 UID: 0 PID: 15215 Comm: syz.2.2522 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  768.728705][T15215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  768.738846][T15215] Call Trace:
[  768.742111][T15215]  <TASK>
[  768.745045][T15215]  dump_stack_lvl+0x16c/0x1f0
[  768.749717][T15215]  should_fail_ex+0x497/0x5b0
[  768.754389][T15215]  ? fs_reclaim_acquire+0xae/0x150
[  768.759507][T15215]  should_failslab+0xc2/0x120
[  768.764181][T15215]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  768.769541][T15215]  ? __pfx_lock_release+0x10/0x10
[  768.774560][T15215]  ? trace_lock_acquire+0x146/0x1e0
[  768.779746][T15215]  ? getname_flags.part.0+0x4c/0x550
[  768.785029][T15215]  getname_flags.part.0+0x4c/0x550
[  768.790128][T15215]  getname_flags+0x93/0xf0
[  768.794527][T15215]  user_path_at+0x24/0x60
[  768.798838][T15215]  inotify_find_inode+0x2e/0x160
[  768.803826][T15215]  __x64_sys_inotify_add_watch+0x20d/0x360
[  768.809640][T15215]  ? __pfx___x64_sys_inotify_add_watch+0x10/0x10
[  768.815959][T15215]  do_syscall_64+0xcd/0x250
[  768.820459][T15215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  768.826344][T15215] RIP: 0033:0x7fe7fb17e819
[  768.830745][T15215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  768.850344][T15215] RSP: 002b:00007fe7fbf4b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fe
[  768.858764][T15215] RAX: ffffffffffffffda RBX: 00007fe7fb335fa0 RCX: 00007fe7fb17e819
[  768.866723][T15215] RDX: 00000000c5000152 RSI: 0000000020000000 RDI: 0000000000000003
[  768.874674][T15215] RBP: 00007fe7fbf4b090 R08: 0000000000000000 R09: 0000000000000000
[  768.882625][T15215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  768.890575][T15215] R13: 0000000000000000 R14: 00007fe7fb335fa0 R15: 00007ffead1d87d8
[  768.898553][T15215]  </TASK>
[  768.901657][    C0] vkms_vblank_simulate: vblank timer overrun
[  770.342529][ T7318] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[  770.562403][ T7318] usb 6-1: device descriptor read/64, error -71
[  771.545064][ T7318] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[  772.022541][   T29] kauditd_printk_skb: 27 callbacks suppressed
[  772.022590][   T29] audit: type=1326 audit(1732658920.517:11682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15252 comm="syz.4.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  772.178387][   T29] audit: type=1326 audit(1732658920.527:11683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15252 comm="syz.4.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  772.226231][   T29] audit: type=1326 audit(1732658920.637:11684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15252 comm="syz.4.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc93f980737 code=0x7ffc0000
[  772.407881][   T29] audit: type=1326 audit(1732658920.667:11685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15252 comm="syz.4.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  772.452962][   T29] audit: type=1326 audit(1732658920.737:11686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15252 comm="syz.4.2534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  773.298832][T15274] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.2541'.
[  774.672799][ T7318] usb 3-1: new low-speed USB device number 54 using dummy_hcd
[  774.914550][ T7318] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  775.009404][ T7318] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  775.057917][ T7318] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 14
[  775.094264][ T7318] usb 3-1: config 0 interface 0 has no altsetting 0
[  775.101125][ T7318] usb 3-1: New USB device found, idVendor=046d, idProduct=c534, bcdDevice= 0.00
[  775.206706][ T7318] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  775.238724][ T7318] usb 3-1: config 0 descriptor??
[  775.309206][T15310] kAFS: unable to lookup cell '/'
[  775.472031][   T29] audit: type=1400 audit(1732658924.027:11687): avc:  denied  { setattr } for  pid=15287 comm="syz.2.2546" name="tun" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1
[  775.516885][   T29] audit: type=1400 audit(1732658924.077:11688): avc:  denied  { setattr } for  pid=15311 comm="syz.1.2554" name="[userfaultfd]" dev="anon_inodefs" ino=45962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  776.089503][   T29] audit: type=1400 audit(1732658924.617:11689): avc:  denied  { execmod } for  pid=15311 comm="syz.1.2554" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=46455 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  776.482381][   T29] audit: type=1400 audit(1732658924.987:11690): avc:  denied  { create } for  pid=15314 comm="syz.6.2555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  776.652505][ T7318] usbhid 3-1:0.0: can't add hid device: -71
[  776.695455][ T7318] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  776.765489][ T7318] usb 3-1: USB disconnect, device number 54
[  778.125888][   T29] audit: type=1107 audit(1732658926.687:11691): pid=15351 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  778.500058][T15372] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2566'.
[  778.682282][   T29] audit: type=1326 audit(1732658927.207:11692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15349 comm="syz.1.2561" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe9b1d7e819 code=0x0
[  778.753434][T15372] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2566'.
[  779.116205][    T9] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  779.556636][    T9] usb 7-1: device descriptor read/64, error -71
[  779.880095][   T29] audit: type=1400 audit(1732658928.267:11693): avc:  denied  { write } for  pid=15382 comm="syz.4.2569" name="map_files" dev="proc" ino=46519 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  779.902601][   T29] audit: type=1400 audit(1732658928.277:11694): avc:  denied  { add_name } for  pid=15382 comm="syz.4.2569" name="cpu.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  779.925892][T15387] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  779.970177][   T29] audit: type=1400 audit(1732658928.297:11695): avc:  denied  { create } for  pid=15382 comm="syz.4.2569" name="cpu.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  780.002347][    T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  780.045356][   T29] audit: type=1400 audit(1732658928.317:11696): avc:  denied  { associate } for  pid=15382 comm="syz.4.2569" name="cpu.stat" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  780.059766][T15392] erofs (device erofs): cannot find valid erofs superblock
[  780.243121][    T9] usb 7-1: device descriptor read/64, error -71
[  780.353316][    T9] usb usb7-port1: attempt power cycle
[  780.737041][    T9] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  780.762598][   T29] audit: type=1326 audit(1732658929.267:11697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15410 comm="syz.4.2578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  780.845959][    T9] usb 7-1: device descriptor read/8, error -71
[  780.851216][   T29] audit: type=1326 audit(1732658929.277:11698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15410 comm="syz.4.2578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  781.039801][   T29] audit: type=1326 audit(1732658929.327:11699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15410 comm="syz.4.2578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  781.105787][   T29] audit: type=1326 audit(1732658929.327:11700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15410 comm="syz.4.2578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  781.129739][    T9] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  781.154807][    T9] usb 7-1: device descriptor read/8, error -71
[  781.262999][    T9] usb usb7-port1: unable to enumerate USB device
[  782.592408][ T5888] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[  783.329770][ T5888] usb 6-1: Using ep0 maxpacket: 16
[  783.525385][ T5889] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  783.755425][ T5889] usb 7-1: config 1 has an invalid descriptor of length 220, skipping remainder of the config
[  783.792460][ T5889] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  783.803601][ T5888] usb 6-1: config 0 has an invalid interface number: 142 but max is 0
[  783.811809][ T5888] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  783.840120][ T5888] usb 6-1: config 0 has no interface number 0
[  783.841912][ T5889] usb 7-1: too many endpoints for config 1 interface 1 altsetting 17: 49, using maximum allowed: 30
[  783.846539][ T5888] usb 6-1: config 0 interface 142 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  783.887132][ T5889] usb 7-1: config 1 interface 1 altsetting 17 has 0 endpoint descriptors, different from the interface descriptor's value: 49
[  783.898846][ T5888] usb 6-1: New USB device found, idVendor=1943, idProduct=2255, bcdDevice=91.0d
[  783.912384][ T5888] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  783.930639][ T5888] usb 6-1: Product: syz
[  783.934905][ T5889] usb 7-1: config 1 interface 1 has no altsetting 1
[  783.951760][ T5888] usb 6-1: Manufacturer: syz
[  783.951800][ T5889] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  783.960861][ T5888] usb 6-1: SerialNumber: syz
[  783.986431][ T5889] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  784.010516][ T5889] usb 7-1: Product: syz
[  784.015580][ T5889] usb 7-1: Manufacturer: syz
[  784.016237][ T5888] usb 6-1: config 0 descriptor??
[  784.020426][ T5889] usb 7-1: SerialNumber: syz
[  784.054969][ T5888] s2255 6-1:0.142: Could not find bulk-in endpoint
[  784.065051][ T5888] Sensoray 2255 driver load failed: 0xfffffff4
[  784.072224][ T5889] usb 7-1: selecting invalid altsetting 1
[  784.081070][T15441] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  784.089949][ T5888] s2255 6-1:0.142: probe with driver s2255 failed with error -12
[  784.110168][T15441] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  784.197714][T15452] netlink: 'syz.2.2589': attribute type 1 has an invalid length.
[  784.218286][T15452] netlink: 'syz.2.2589': attribute type 3 has an invalid length.
[  784.228980][T15452] netlink: 216 bytes leftover after parsing attributes in process `syz.2.2589'.
[  784.245853][T15452] NCSI netlink: No device for ifindex 813332851
[  784.264436][ T5888] usb 6-1: USB disconnect, device number 71
[  784.285576][T15430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  784.294417][T15430] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  784.305132][ T5889] cdc_ncm 7-1:1.0: bind() failure
[  784.313111][T14707] usb 5-1: new full-speed USB device number 72 using dummy_hcd
[  784.334767][ T5889] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  784.348449][ T5889] cdc_ncm 7-1:1.1: bind() failure
[  784.362103][ T5889] usb 7-1: USB disconnect, device number 14
[  784.501055][T15458] pim6reg527: entered allmulticast mode
[  784.536876][T14707] usb 5-1: config 4 has an invalid interface number: 231 but max is 0
[  784.554049][T14707] usb 5-1: config 4 has no interface number 0
[  785.056923][T14707] usb 5-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  785.080129][T14707] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  785.097779][T14707] usb 5-1: Product: syz
[  785.104850][T14707] usb 5-1: Manufacturer: syz
[  785.109545][T14707] usb 5-1: SerialNumber: syz
[  785.119749][T14707] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  785.777919][T14707] vp7045: USB control message 'out' went wrong.
[  785.790510][T14707] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  785.801151][T14707] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  785.813248][T14707] usb 5-1: USB disconnect, device number 72
[  786.964335][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  786.964405][   T29] audit: type=1326 audit(1732658935.527:11735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15465 comm="syz.5.2593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  786.995410][    C0] vkms_vblank_simulate: vblank timer overrun
[  787.898884][   T29] audit: type=1326 audit(1732658935.527:11736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15465 comm="syz.5.2593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  788.146835][T15480] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2596'.
[  788.412988][T15492] 9pnet_fd: Insufficient options for proto=fd
[  788.792074][T15497] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  788.951767][T15505] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2603'.
[  789.629231][T15513] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2604'.
[  789.638923][T15513] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2604'.
[  791.202393][    T9] usb 6-1: new high-speed USB device number 72 using dummy_hcd
[  791.252490][ T7318] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  791.292402][ T5149] Bluetooth: hci5: command 0x0406 tx timeout
[  791.387092][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  791.407695][    T9] usb 6-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  791.439044][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  791.440046][T15532] sctp: [Deprecated]: syz.2.2612 (pid 15532) Use of int in max_burst socket option deprecated.
[  791.440046][T15532] Use struct sctp_assoc_value instead
[  791.463097][ T7318] usb 7-1: Using ep0 maxpacket: 8
[  791.470301][    T9] usb 6-1: config 0 descriptor??
[  791.473217][ T7318] usb 7-1: config 0 has an invalid interface number: 246 but max is 0
[  791.483813][ T7318] usb 7-1: config 0 has no interface number 0
[  791.491637][ T7318] usb 7-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  791.501163][ T7318] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  791.517508][T15532] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2612'.
[  791.526815][ T7318] usb 7-1: Product: syz
[  791.530997][ T7318] usb 7-1: Manufacturer: syz
[  791.546190][ T7318] usb 7-1: SerialNumber: syz
[  791.552456][T15532] xt_nat: multiple ranges no longer supported
[  791.560923][ T7318] usb 7-1: config 0 descriptor??
[  791.668958][ T7318] msi2500 7-1:0.246: Registered as swradio24
[  791.676007][ T7318] msi2500 7-1:0.246: SDR API is still slightly experimental and functionality changes may follow
[  791.821032][T15525] xt_bpf: check failed: parse error
[  791.905740][    T9] petalynx 0003:18B1:0037.002C: unknown main item tag 0x0
[  791.944639][  T968] usb 7-1: USB disconnect, device number 15
[  791.971862][    T9] petalynx 0003:18B1:0037.002C: unknown main item tag 0x0
[  791.998819][    T9] petalynx 0003:18B1:0037.002C: unknown main item tag 0x0
[  792.086543][    T9] petalynx 0003:18B1:0037.002C: unknown main item tag 0x0
[  792.146998][    T9] petalynx 0003:18B1:0037.002C: unknown main item tag 0x0
[  792.207756][    T9] petalynx 0003:18B1:0037.002C: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.5-1/input0
[  792.516326][    T9] usb 6-1: USB disconnect, device number 72
[  792.839023][   T29] audit: type=1326 audit(1732658941.397:11737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  793.272333][   T29] audit: type=1326 audit(1732658941.397:11738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  793.337501][T15554] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2616'.
[  793.383134][   T29] audit: type=1326 audit(1732658941.397:11739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  793.612392][   T29] audit: type=1326 audit(1732658941.397:11740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  793.659986][   T29] audit: type=1326 audit(1732658941.397:11741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  793.912447][   T29] audit: type=1326 audit(1732658941.397:11742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  794.413283][   T29] audit: type=1326 audit(1732658941.407:11743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  794.498602][   T29] audit: type=1326 audit(1732658941.407:11744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  794.612390][   T29] audit: type=1326 audit(1732658941.407:11745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  794.695653][   T29] audit: type=1326 audit(1732658941.407:11746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15551 comm="syz.2.2616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7fb17e819 code=0x7ffc0000
[  795.294081][    T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  795.614833][ T7318] usb 5-1: new high-speed USB device number 73 using dummy_hcd
[  795.728565][    T9] usb 7-1: device descriptor read/64, error -71
[  795.795903][ T7318] usb 5-1: config 1 has an invalid descriptor of length 220, skipping remainder of the config
[  795.872272][ T7318] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  795.931928][ T7318] usb 5-1: too many endpoints for config 1 interface 1 altsetting 17: 49, using maximum allowed: 30
[  795.997017][ T7318] usb 5-1: config 1 interface 1 altsetting 17 has 0 endpoint descriptors, different from the interface descriptor's value: 49
[  796.002452][    T9] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  796.074988][ T7318] usb 5-1: config 1 interface 1 has no altsetting 1
[  796.112828][ T7318] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  796.154234][ T7318] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  796.248404][ T7318] usb 5-1: Product: syz
[  796.268559][ T7318] usb 5-1: Manufacturer: syz
[  796.292412][    T9] usb 7-1: device descriptor read/64, error -71
[  796.301755][ T7318] usb 5-1: SerialNumber: syz
[  796.366566][ T7318] usb 5-1: selecting invalid altsetting 1
[  796.437344][    T9] usb usb7-port1: attempt power cycle
[  796.918631][    T9] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  797.028112][    T9] usb 7-1: device descriptor read/8, error -71
[  797.051098][T15572] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  797.059814][T15572] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  797.078748][ T7318] cdc_ncm 5-1:1.0: bind() failure
[  797.123278][ T7318] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  797.160921][ T7318] cdc_ncm 5-1:1.1: bind() failure
[  797.194327][ T7318] usb 5-1: USB disconnect, device number 73
[  797.323764][    T9] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  797.367759][    T9] usb 7-1: device descriptor read/8, error -71
[  797.615749][    T9] usb usb7-port1: unable to enumerate USB device
[  798.592348][ T7318] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  798.762572][ T7318] usb 3-1: device descriptor read/64, error -71
[  799.012437][ T7318] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[  799.172538][T15628] fuse: Bad value for 'fd'
[  799.185949][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  799.185961][   T29] audit: type=1400 audit(1732658947.737:11801): avc:  denied  { bind } for  pid=15627 comm="syz.6.2638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  799.192573][ T7318] usb 3-1: device descriptor read/64, error -71
[  799.354889][T15626] 9pnet_fd: Insufficient options for proto=fd
[  799.403423][ T7318] usb usb3-port1: attempt power cycle
[  799.508268][T15638] overlayfs: failed to clone upperpath
[  799.762532][ T7318] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  799.793295][ T7318] usb 3-1: device descriptor read/8, error -71
[  800.042709][ T7318] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  800.353941][ T7318] usb 3-1: device descriptor read/8, error -71
[  800.472501][ T7318] usb usb3-port1: unable to enumerate USB device
[  800.641118][   T29] audit: type=1107 audit(1732658949.197:11802): pid=15661 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  800.742490][  T968] usb 5-1: new high-speed USB device number 74 using dummy_hcd
[  800.833663][    C0] vkms_vblank_simulate: vblank timer overrun
[  801.476366][   T29] audit: type=1400 audit(1732658949.997:11803): avc:  denied  { name_connect } for  pid=15672 comm="syz.2.2653" dest=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  801.595448][T15669] 9pnet_fd: Insufficient options for proto=fd
[  802.848039][  T968] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  802.910281][  T968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  802.952770][  T968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  802.984853][  T968] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  803.104083][  T968] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  803.114037][  T968] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  803.320049][  T968] usb 5-1: config 0 descriptor??
[  803.356153][T15659] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  803.634768][  T968] usbhid 5-1:0.0: can't add hid device: -71
[  803.647270][  T968] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  803.803940][  T968] usb 5-1: USB disconnect, device number 74
[  804.099086][T15706] 9pnet_fd: Insufficient options for proto=fd
[  804.179415][   T29] audit: type=1107 audit(1732658952.737:11804): pid=15699 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  805.340360][   T29] audit: type=1400 audit(1732658953.897:11805): avc:  denied  { accept } for  pid=15718 comm="syz.4.2667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  805.492489][ T5889] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  805.722303][ T5889] usb 3-1: Using ep0 maxpacket: 16
[  805.755673][ T5889] usb 3-1: config 0 has an invalid interface number: 248 but max is 0
[  805.769272][ T5889] usb 3-1: config 0 has no interface number 0
[  805.796669][ T5889] usb 3-1: config 0 interface 248 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  805.845728][ T5889] usb 3-1: config 0 interface 248 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[  806.002437][ T5889] usb 3-1: config 0 interface 248 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  806.583888][ T5889] usb 3-1: config 0 interface 248 has no altsetting 0
[  806.594055][ T5889] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  806.603465][ T5889] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  806.611497][ T5889] usb 3-1: Manufacturer: syz
[  806.668066][ T5889] usb 3-1: config 0 descriptor??
[  807.623178][T14707] usb 3-1: USB disconnect, device number 59
[  807.990536][ T5149] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  808.000130][ T5149] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  808.014529][ T5149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  808.023754][ T5149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  808.033672][ T5149] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  808.040960][ T5149] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  808.158699][T15742] chnl_net:caif_netlink_parms(): no params data found
[  808.193128][  T968] usb 6-1: new high-speed USB device number 73 using dummy_hcd
[  808.261456][T15742] bridge0: port 1(bridge_slave_0) entered blocking state
[  808.271085][T15753] FAULT_INJECTION: forcing a failure.
[  808.271085][T15753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  808.284910][T15742] bridge0: port 1(bridge_slave_0) entered disabled state
[  808.292657][T15742] bridge_slave_0: entered allmulticast mode
[  808.298621][T15753] CPU: 1 UID: 0 PID: 15753 Comm: syz.2.2676 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  808.309032][T15753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  808.313374][T15742] bridge_slave_0: entered promiscuous mode
[  808.319073][T15753] Call Trace:
[  808.328159][T15753]  <TASK>
[  808.331092][T15753]  dump_stack_lvl+0x16c/0x1f0
[  808.335797][T15753]  should_fail_ex+0x497/0x5b0
[  808.336883][T15742] bridge0: port 2(bridge_slave_1) entered blocking state
[  808.340481][T15753]  _copy_from_user+0x2e/0xd0
[  808.352098][T15753]  io_register_pbuf_ring+0x107/0x8e0
[  808.355783][  T968] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  808.357457][T15753]  ? __pfx_io_register_pbuf_ring+0x10/0x10
[  808.357490][T15753]  ? __mutex_trylock_common+0xea/0x250
[  808.379619][T15753]  ? __pfx___mutex_trylock_common+0x10/0x10
[  808.385514][T15753]  __io_uring_register+0xf42/0x2290
[  808.390761][T15753]  ? trace_contention_end+0xea/0x140
[  808.396038][T15753]  ? __pfx___io_uring_register+0x10/0x10
[  808.401660][T15753]  ? __mutex_lock+0x1cc/0xa60
[  808.406332][T15753]  ? __fget_files+0x1fc/0x3a0
[  808.410999][T15753]  ? __x64_sys_io_uring_register+0x168/0x2a0
[  808.416970][T15753]  ? __pfx_lock_release+0x10/0x10
[  808.421989][T15753]  ? __pfx___mutex_lock+0x10/0x10
[  808.427009][T15753]  ? __fget_files+0x40/0x3a0
[  808.431593][T15753]  ? __fget_files+0x206/0x3a0
[  808.436264][T15753]  __x64_sys_io_uring_register+0x17a/0x2a0
[  808.442065][T15753]  do_syscall_64+0xcd/0x250
[  808.446567][T15753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.452455][T15753] RIP: 0033:0x7fe7fb17e819
[  808.456859][T15753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  808.476456][T15753] RSP: 002b:00007fe7fbf4b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  808.484859][T15753] RAX: ffffffffffffffda RBX: 00007fe7fb335fa0 RCX: 00007fe7fb17e819
[  808.492821][T15753] RDX: 0000000020000002 RSI: 0000000000000016 RDI: 0000000000000004
[  808.501215][T15753] RBP: 00007fe7fbf4b090 R08: 0000000000000000 R09: 0000000000000000
[  808.509176][T15753] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  808.517137][T15753] R13: 0000000000000000 R14: 00007fe7fb335fa0 R15: 00007ffead1d87d8
[  808.525109][T15753]  </TASK>
[  808.528883][  T968] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  808.534194][T15742] bridge0: port 2(bridge_slave_1) entered disabled state
[  808.539952][  T968] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  808.555300][  T968] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  808.557307][T15742] bridge_slave_1: entered allmulticast mode
[  808.567029][T15741] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  808.577663][T15742] bridge_slave_1: entered promiscuous mode
[  808.672024][  T968] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  808.685555][T15742] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  808.716068][T15742] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  808.771238][T15742] team0: Port device team_slave_0 added
[  808.780787][T15742] team0: Port device team_slave_1 added
[  808.796280][ T5889] usb 6-1: USB disconnect, device number 73
[  809.029147][T15742] batman_adv: batadv0: Adding interface: batadv_slave_0
[  809.042868][   T29] audit: type=1107 audit(1732658957.497:11806): pid=15759 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  809.088242][T15742] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  809.283600][T15742] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  809.335384][  T968] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[  809.347681][T15742] batman_adv: batadv0: Adding interface: batadv_slave_1
[  809.362483][T15742] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  809.401016][T15742] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  809.480946][T15742] hsr_slave_0: entered promiscuous mode
[  809.489305][T15742] hsr_slave_1: entered promiscuous mode
[  809.496034][T15742] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  809.502535][  T968] usb 3-1: Using ep0 maxpacket: 32
[  809.504501][T15742] Cannot create hsr debugfs directory
[  809.510546][  T968] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  809.535597][  T968] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  809.564492][  T968] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  809.623725][  T968] usb 3-1: config 1 has no interface number 0
[  809.637247][  T968] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  809.684657][  T968] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  809.707781][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  809.725448][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  809.745529][  T968] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  809.780512][  T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  809.800887][T15742] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  809.815679][T15742] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  809.839622][  T968] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  810.005745][T15742] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  810.051115][  T968] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  810.057099][T15742] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  810.093803][T13875] Bluetooth: hci0: command tx timeout
[  810.205808][T15742] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  810.225761][T15742] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  810.277633][  T968] usb 3-1: USB disconnect, device number 60
[  810.295143][  T968] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  810.353922][T15742] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  810.377226][T15742] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  810.680895][T15742] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  810.702964][T15742] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  810.720918][T15742] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  810.740959][T15742] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  810.930510][T15742] 8021q: adding VLAN 0 to HW filter on device bond0
[  811.054199][T15742] 8021q: adding VLAN 0 to HW filter on device team0
[  811.165440][T15741] delete_channel: no stack
[  811.470189][   T29] audit: type=1400 audit(1732658960.027:11807): avc:  denied  { append } for  pid=15774 comm="syz.4.2682" name="sg0" dev="devtmpfs" ino=744 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  811.860125][ T3493] bridge0: port 1(bridge_slave_0) entered blocking state
[  811.867317][ T3493] bridge0: port 1(bridge_slave_0) entered forwarding state
[  811.920062][ T3493] bridge0: port 2(bridge_slave_1) entered blocking state
[  811.927223][ T3493] bridge0: port 2(bridge_slave_1) entered forwarding state
[  812.215136][T13875] Bluetooth: hci0: command tx timeout
[  813.651215][T15805] FAULT_INJECTION: forcing a failure.
[  813.651215][T15805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  813.664814][T15805] CPU: 1 UID: 0 PID: 15805 Comm: syz.2.2687 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  813.675247][T15805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  813.685307][T15805] Call Trace:
[  813.688570][T15805]  <TASK>
[  813.691482][T15805]  dump_stack_lvl+0x16c/0x1f0
[  813.696153][T15805]  should_fail_ex+0x497/0x5b0
[  813.700829][T15805]  _copy_from_user+0x2e/0xd0
[  813.705433][T15805]  map_update_elem+0x744/0x8f0
[  813.710202][T15805]  ? __pfx_map_update_elem+0x10/0x10
[  813.715478][T15805]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  813.721369][T15805]  ? selinux_bpf+0xee/0x130
[  813.725872][T15805]  __sys_bpf+0x14bb/0x49c0
[  813.730282][T15805]  ? __pfx_lock_release+0x10/0x10
[  813.735296][T15805]  ? __pfx___sys_bpf+0x10/0x10
[  813.740058][T15805]  ? vfs_write+0x306/0x1150
[  813.744556][T15805]  ? __mutex_unlock_slowpath+0x164/0x690
[  813.750196][T15805]  ? fput+0x67/0x440
[  813.754086][T15805]  ? ksys_write+0x1ba/0x250
[  813.758577][T15805]  ? __pfx_ksys_write+0x10/0x10
[  813.763424][T15805]  __x64_sys_bpf+0x78/0xc0
[  813.767837][T15805]  ? lockdep_hardirqs_on+0x7c/0x110
[  813.773030][T15805]  do_syscall_64+0xcd/0x250
[  813.777529][T15805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  813.783416][T15805] RIP: 0033:0x7fe7fb17e819
[  813.787819][T15805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  813.807428][T15805] RSP: 002b:00007fe7fbf2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  813.815837][T15805] RAX: ffffffffffffffda RBX: 00007fe7fb336080 RCX: 00007fe7fb17e819
[  813.823799][T15805] RDX: 0000000000000020 RSI: 0000000020000100 RDI: 0000000000000002
[  813.831769][T15805] RBP: 00007fe7fbf2a090 R08: 0000000000000000 R09: 0000000000000000
[  813.839731][T15805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  813.847691][T15805] R13: 0000000000000000 R14: 00007fe7fb336080 R15: 00007ffead1d87d8
[  813.855662][T15805]  </TASK>
[  814.530180][   T29] audit: type=1326 audit(1732658962.587:11808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  814.569388][T15742] 8021q: adding VLAN 0 to HW filter on device batadv0
[  814.594663][   T29] audit: type=1326 audit(1732658962.587:11809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  814.873123][T13875] Bluetooth: hci0: command tx timeout
[  814.992401][   T29] audit: type=1326 audit(1732658962.607:11810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.020424][   T29] audit: type=1326 audit(1732658962.607:11811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.044168][   T29] audit: type=1326 audit(1732658962.607:11812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.068028][   T29] audit: type=1326 audit(1732658962.617:11813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc215580737 code=0x7ffc0000
[  815.091833][   T29] audit: type=1326 audit(1732658962.617:11814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.137827][   T29] audit: type=1326 audit(1732658962.617:11815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.185298][T15742] veth0_vlan: entered promiscuous mode
[  815.218241][T15742] veth1_vlan: entered promiscuous mode
[  815.223895][   T29] audit: type=1326 audit(1732658962.637:11816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15803 comm="syz.5.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  815.304491][T15742] veth0_macvtap: entered promiscuous mode
[  815.320674][T15742] veth1_macvtap: entered promiscuous mode
[  815.344134][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.362945][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.376561][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.396053][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.409935][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.427665][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.438861][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.463397][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.495586][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.514537][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.530278][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  815.542592][T14707] usb 6-1: new high-speed USB device number 74 using dummy_hcd
[  815.639201][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.712560][T14707] usb 6-1: Using ep0 maxpacket: 8
[  815.731770][T14707] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  815.762439][T15742] batman_adv: batadv0: Interface activated: batadv_slave_0
[  815.787785][T14707] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  815.889102][T14707] usb 6-1: Product: syz
[  815.904803][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.944900][T14707] usb 6-1: Manufacturer: syz
[  816.004470][T14707] usb 6-1: SerialNumber: syz
[  816.013346][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  816.034394][T14707] usb 6-1: config 0 descriptor??
[  816.036969][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  816.049927][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  816.066512][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  816.079078][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  816.098683][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  816.118107][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  816.135016][T15742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  816.145581][    T9] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[  816.160152][T15742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  816.182839][T15742] batman_adv: batadv0: Interface activated: batadv_slave_1
[  816.221054][T15742] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  816.230228][T15742] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  816.240023][T15742] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  816.254691][T14707] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  816.254760][T15742] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  816.315836][    T9] usb 3-1: Using ep0 maxpacket: 16
[  816.331467][    T9] usb 3-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  816.351196][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  816.376828][    T9] usb 3-1: Product: syz
[  816.492761][    T9] usb 3-1: Manufacturer: syz
[  816.670249][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  816.753690][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  816.939127][    T9] usb 3-1: SerialNumber: syz
[  816.950280][    T9] usb 3-1: config 0 descriptor??
[  816.961772][    T9] as10x_usb: device has been detected
[  816.967364][ T3493] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  816.976363][    T9] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  816.984981][ T3493] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  817.017587][    T9] usb 3-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[  817.053141][T13875] Bluetooth: hci0: command tx timeout
[  817.063627][    T9] as10x_usb: error during firmware upload part1
[  817.070357][    T9] Registered device Sky IT Digital Key (green led)
[  817.237264][T15821] random: crng reseeded on system resumption
[  817.260586][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  817.260603][   T29] audit: type=1400 audit(1732658965.817:11846): avc:  denied  { setopt } for  pid=15831 comm="syz.1.2695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  817.910080][T15817] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2691'.
[  818.097970][ T5889] usb 3-1: USB disconnect, device number 61
[  818.146437][ T5889] Unregistered device Sky IT Digital Key (green led)
[  818.147577][ T5889] as10x_usb: device has been disconnected
[  818.482179][T14707] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  818.513784][T14707] usb 6-1: USB disconnect, device number 74
[  818.527652][T15832] Process accounting resumed
[  819.802819][T15857] tipc: Started in network mode
[  819.807947][T15857] tipc: Node identity ac1414aa, cluster identity 4711
[  819.872616][T15857] tipc: Enabled bearer <udp:s>, priority 10
[  819.888846][T15858] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  820.812741][T13875] Bluetooth: hci5: command 0x0406 tx timeout
[  820.818912][T15846] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[  821.007458][ T5916] tipc: Node number set to 2886997162
[  821.315598][T15889] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2712'.
[  821.331182][   T29] audit: type=1400 audit(1732658969.887:11847): avc:  denied  { ioctl } for  pid=15890 comm="syz.1.2713" path="socket:[48733]" dev="sockfs" ino=48733 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  821.465970][   T29] audit: type=1326 audit(1732658970.027:11848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.503109][   T29] audit: type=1326 audit(1732658970.057:11849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.547211][   T29] audit: type=1326 audit(1732658970.057:11850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.572143][   T29] audit: type=1326 audit(1732658970.057:11851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.608232][   T29] audit: type=1326 audit(1732658970.057:11852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.636400][   T29] audit: type=1326 audit(1732658970.057:11853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc93f980737 code=0x7ffc0000
[  821.665343][   T29] audit: type=1326 audit(1732658970.057:11854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.690575][   T29] audit: type=1326 audit(1732658970.057:11855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15894 comm="syz.4.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93f97e819 code=0x7ffc0000
[  821.722457][T15846] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  821.729201][T15846] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  821.890032][T15846] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  822.042541][ T5149] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  822.055040][ T5149] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  822.072574][ T5149] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  822.112519][ T5149] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  822.125832][ T5149] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  822.142790][ T5149] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  822.262183][T15900] fuse: Unknown parameter 'group_id½00000000000000000000'
[  822.274816][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  822.274832][   T29] audit: type=1400 audit(1732658970.817:11887): avc:  denied  { mounton } for  pid=15898 comm="syz.1.2715" path="/9/file0" dev="rpc_pipefs" ino=49515 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=dir permissive=1
[  822.399592][   T29] audit: type=1400 audit(1732658970.927:11888): avc:  denied  { unmount } for  pid=15742 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  822.487437][T15868] chnl_net:caif_netlink_parms(): no params data found
[  822.507174][T15913] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.2718'.
[  822.532566][T15913] FAULT_INJECTION: forcing a failure.
[  822.532566][T15913] name failslab, interval 1, probability 0, space 0, times 0
[  822.572861][T15913] CPU: 1 UID: 0 PID: 15913 Comm: syz.1.2718 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  822.583302][T15913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  822.593354][T15913] Call Trace:
[  822.596639][T15913]  <TASK>
[  822.599573][T15913]  dump_stack_lvl+0x16c/0x1f0
[  822.604251][T15913]  should_fail_ex+0x497/0x5b0
[  822.608952][T15913]  should_failslab+0xc2/0x120
[  822.613633][T15913]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  822.619029][T15913]  ? skb_clone+0x190/0x3f0
[  822.623467][T15913]  skb_clone+0x190/0x3f0
[  822.627732][T15913]  netlink_deliver_tap+0xabd/0xd30
[  822.632877][T15913]  netlink_unicast+0x6b4/0x7f0
[  822.637931][T15913]  ? __pfx_netlink_unicast+0x10/0x10
[  822.643234][T15913]  ? genl_rcv_msg+0x4bd/0x800
[  822.647937][T15913]  netlink_ack+0x6a8/0xb90
[  822.652378][T15913]  netlink_rcv_skb+0x348/0x440
[  822.657155][T15913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  822.662204][T15913]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  822.667518][T15913]  ? down_read+0xc9/0x330
[  822.671867][T15913]  ? __pfx_down_read+0x10/0x10
[  822.676645][T15913]  ? netlink_deliver_tap+0x1ae/0xd30
[  822.681948][T15913]  genl_rcv+0x28/0x40
[  822.685948][T15913]  netlink_unicast+0x53c/0x7f0
[  822.690740][T15913]  ? __pfx_netlink_unicast+0x10/0x10
[  822.696044][T15913]  ? const_folio_flags.constprop.0+0x56/0x150
[  822.702192][T15913]  netlink_sendmsg+0x8b8/0xd70
[  822.706977][T15913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  822.712286][T15913]  ____sys_sendmsg+0xaaf/0xc90
[  822.717067][T15913]  ? copy_msghdr_from_user+0x10b/0x160
[  822.722549][T15913]  ? __pfx_____sys_sendmsg+0x10/0x10
[  822.727863][T15913]  ___sys_sendmsg+0x135/0x1e0
[  822.732553][T15913]  ? __pfx____sys_sendmsg+0x10/0x10
[  822.737784][T15913]  ? __pfx_lock_release+0x10/0x10
[  822.742909][T15913]  ? trace_lock_acquire+0x146/0x1e0
[  822.748140][T15913]  ? __fget_files+0x206/0x3a0
[  822.752845][T15913]  __sys_sendmsg+0x16e/0x220
[  822.757447][T15913]  ? __pfx___sys_sendmsg+0x10/0x10
[  822.762591][T15913]  do_syscall_64+0xcd/0x250
[  822.767119][T15913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.773032][T15913] RIP: 0033:0x7f7e3cb7e819
[  822.777462][T15913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  822.797093][T15913] RSP: 002b:00007f7e3da34038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  822.805530][T15913] RAX: ffffffffffffffda RBX: 00007f7e3cd35fa0 RCX: 00007f7e3cb7e819
[  822.813524][T15913] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  822.821508][T15913] RBP: 00007f7e3da34090 R08: 0000000000000000 R09: 0000000000000000
[  822.829493][T15913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  822.837485][T15913] R13: 0000000000000000 R14: 00007f7e3cd35fa0 R15: 00007ffd387e0e28
[  822.845493][T15913]  </TASK>
[  822.892832][T13875] Bluetooth: hci0: command 0x0c1a tx timeout
[  823.000719][T15868] bridge0: port 1(bridge_slave_0) entered blocking state
[  823.008323][T15868] bridge0: port 1(bridge_slave_0) entered disabled state
[  823.016364][T15868] bridge_slave_0: entered allmulticast mode
[  823.024006][T15868] bridge_slave_0: entered promiscuous mode
[  823.033493][T15868] bridge0: port 2(bridge_slave_1) entered blocking state
[  823.040719][T15868] bridge0: port 2(bridge_slave_1) entered disabled state
[  823.048233][T15868] bridge_slave_1: entered allmulticast mode
[  823.056136][T15868] bridge_slave_1: entered promiscuous mode
[  823.479146][ T5889] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[  823.504520][   T29] audit: type=1400 audit(1732658971.697:11889): avc:  denied  { connect } for  pid=15928 comm="syz.1.2723" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  823.728506][T15931] wireguard0: entered promiscuous mode
[  823.734493][T15931] wireguard0: entered allmulticast mode
[  823.745788][ T5889] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  823.791717][   T29] audit: type=1400 audit(1732658971.707:11890): avc:  denied  { write } for  pid=15928 comm="syz.1.2723" path="socket:[49553]" dev="sockfs" ino=49553 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  823.884090][ T5889] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  823.908261][ T5889] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  823.937941][ T5889] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  823.952314][ T5889] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  823.965522][ T5889] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  823.966885][T15868] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  824.002089][ T5889] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  824.009457][T15868] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  824.034085][ T5889] usb 5-1: Product: syz
[  824.038294][ T5889] usb 5-1: Manufacturer: syz
[  824.075905][ T5889] cdc_wdm 5-1:1.0: skipping garbage
[  824.081161][ T5889] cdc_wdm 5-1:1.0: skipping garbage
[  824.173296][T13875] Bluetooth: hci3: command tx timeout
[  824.179812][ T5889] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  824.209225][T15868] team0: Port device team_slave_0 added
[  824.213211][ T5889] cdc_wdm 5-1:1.0: Unknown control protocol
[  824.227609][T15868] team0: Port device team_slave_1 added
[  824.301381][T15868] batman_adv: batadv0: Adding interface: batadv_slave_0
[  824.317716][T15868] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  824.353231][T15868] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  824.377258][T15868] batman_adv: batadv0: Adding interface: batadv_slave_1
[  824.390398][T15868] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  824.392389][   T29] audit: type=1400 audit(1732658972.947:11891): avc:  denied  { create } for  pid=15938 comm="syz.5.2726" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=blk_file permissive=1
[  824.429232][T15868] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  824.593304][ T5889] usb 5-1: USB disconnect, device number 75
[  824.948062][T15868] hsr_slave_0: entered promiscuous mode
[  824.972466][T13875] Bluetooth: hci0: command 0x0c1a tx timeout
[  824.979307][T15868] hsr_slave_1: entered promiscuous mode
[  824.991162][T15868] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  824.998818][T15868] Cannot create hsr debugfs directory
[  825.064400][T15944] netlink: 'syz.5.2728': attribute type 13 has an invalid length.
[  825.101489][T15944] veth0_macvtap: left promiscuous mode
[  825.109259][T15944] macvtap0: entered promiscuous mode
[  825.174843][T15944] macvtap0: refused to change device tx_queue_len
[  825.241413][T15949] netlink: 'syz.5.2728': attribute type 12 has an invalid length.
[  825.389379][T15949] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2728'.
[  826.109819][T15966] netlink: 'syz.1.2734': attribute type 1 has an invalid length.
[  826.143849][T15966] netlink: 134744 bytes leftover after parsing attributes in process `syz.1.2734'.
[  826.227173][T15868] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  826.252543][T13875] Bluetooth: hci3: command tx timeout
[  826.337932][T15868] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  827.042562][   T29] audit: type=1107 audit(1732658975.067:11892): pid=15971 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  827.053851][T13875] Bluetooth: hci0: command 0x0c1a tx timeout
[  827.145067][    C0] vkms_vblank_simulate: vblank timer overrun
[  827.482944][T15868] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  827.501505][T15868] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  828.392480][T13875] Bluetooth: hci3: command tx timeout
[  828.482151][T15868] 8021q: adding VLAN 0 to HW filter on device bond0
[  828.585649][   T29] audit: type=1400 audit(1732658977.147:11893): avc:  denied  { append } for  pid=15991 comm="syz.4.2741" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  828.600372][T15868] 8021q: adding VLAN 0 to HW filter on device team0
[  828.717677][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  828.724801][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  828.745037][T13268] bridge0: port 2(bridge_slave_1) entered blocking state
[  828.752161][T13268] bridge0: port 2(bridge_slave_1) entered forwarding state
[  829.129990][T15868] 8021q: adding VLAN 0 to HW filter on device batadv0
[  829.397654][T15868] veth0_vlan: entered promiscuous mode
[  829.433264][T15868] veth1_vlan: entered promiscuous mode
[  829.483682][T15868] veth0_macvtap: entered promiscuous mode
[  829.495097][T15868] veth1_macvtap: entered promiscuous mode
[  829.523804][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.545429][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.572496][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.592339][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.602184][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.642272][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.652123][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.663143][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.674198][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.690395][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.700707][T13875] Bluetooth: hci5: command 0x0406 tx timeout
[  829.714368][T15983] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[  829.720517][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.740219][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.750450][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  829.772576][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.796429][T15868] batman_adv: batadv0: Interface activated: batadv_slave_0
[  829.815060][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.839929][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.862331][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.873001][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.890334][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.900895][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.916210][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.927567][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.942437][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.963600][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  829.980482][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  829.999229][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  830.011420][T15868] batman_adv: batadv0: Interface activated: batadv_slave_1
[  830.037101][T15868] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  830.046635][T15868] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  830.063215][T15868] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  830.071950][T15868] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  830.310532][   T29] audit: type=1326 audit(1732658978.867:11894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.416472][   T29] audit: type=1326 audit(1732658978.897:11895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.440654][   T29] audit: type=1326 audit(1732658978.907:11896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.472521][   T29] audit: type=1326 audit(1732658978.907:11897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.498888][   T29] audit: type=1326 audit(1732658978.907:11898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.523371][   T29] audit: type=1326 audit(1732658978.907:11899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc215580737 code=0x7ffc0000
[  830.554971][T13875] Bluetooth: hci3: command tx timeout
[  830.576976][   T29] audit: type=1326 audit(1732658978.907:11900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.604045][T15983] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  830.614698][T15983] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  830.621573][T15983] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  830.820772][   T29] audit: type=1326 audit(1732658978.907:11901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.854261][   T29] audit: type=1326 audit(1732658978.907:11902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16009 comm="syz.5.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  830.892012][T15983] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  831.379646][T13268] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.408676][T13268] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  831.520229][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  831.541233][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  831.575476][T16023] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  831.590310][T16022] IPVS: stopping master sync thread 16023 ...
[  831.783250][T13875] Bluetooth: hci0: command 0x0c1a tx timeout
[  831.813009][ T5886] usb 5-1: new high-speed USB device number 76 using dummy_hcd
[  832.132349][ T5886] usb 5-1: Using ep0 maxpacket: 8
[  832.139167][ T5886] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  832.156471][ T5886] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  832.196423][ T5886] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  832.230545][T16032] bridge_slave_1: left allmulticast mode
[  832.236570][T16032] bridge0: port 2(bridge_slave_1) entered disabled state
[  832.251175][ T5886] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  832.296678][ T5886] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  832.606518][ T5886] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  832.616438][ T5886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  832.652577][T13875] Bluetooth: hci3: command 0x0c1a tx timeout
[  832.841674][ T5886] usb 5-1: GET_CAPABILITIES returned 0
[  832.870317][ T5886] usbtmc 5-1:16.0: can't read capabilities
[  833.067547][ T5886] usb 5-1: USB disconnect, device number 76
[  833.223265][ T5889] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  833.440956][ T5889] usb 8-1: config 0 has no interfaces?
[  833.484394][ T5889] usb 8-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  833.517656][ T5889] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  833.545280][ T5889] usb 8-1: config 0 descriptor??
[  834.611934][ T5888] usb 8-1: USB disconnect, device number 2
[  834.732392][T13875] Bluetooth: hci3: command 0x0c1a tx timeout
[  834.891358][T16070] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  835.202055][T16078] can0: slcan on ttyS3.
[  835.322582][T16078] can0 (unregistered): slcan off ttyS3.
[  835.372715][ T5886] usb 5-1: new high-speed USB device number 77 using dummy_hcd
[  835.436199][   T29] kauditd_printk_skb: 27 callbacks suppressed
[  835.436218][   T29] audit: type=1400 audit(1732658983.997:11930): avc:  denied  { unmount } for  pid=15868 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  835.534199][ T5886] usb 5-1: config 16 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  835.570939][ T5886] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  836.251688][ T5886] usb 5-1: config 16 has no interfaces?
[  836.335732][ T5886] usb 5-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  836.532394][ T5886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.822651][T13875] Bluetooth: hci3: command 0x0c1a tx timeout
[  837.722719][T16099] netlink: 'syz.2.2769': attribute type 1 has an invalid length.
[  837.730909][T16099] netlink: 134744 bytes leftover after parsing attributes in process `syz.2.2769'.
[  839.571033][T16117] syz.2.2772: attempt to access beyond end of device
[  839.571033][T16117] md0: rw=0, sector=2, nr_sectors = 1 limit=0
[  839.584286][T16117] hfs: can't find a HFS filesystem on dev md0
[  839.665289][ T5889] usb 5-1: USB disconnect, device number 77
[  840.155004][ T5889] usb 5-1: new high-speed USB device number 78 using dummy_hcd
[  840.242748][ T5916] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[  840.332526][ T5889] usb 5-1: Using ep0 maxpacket: 32
[  840.337905][   T29] audit: type=1326 audit(1732658988.887:11931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  840.404187][ T5889] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  840.473227][ T5916] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[  840.509390][ T5916] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[  840.527360][ T5889] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  840.597502][   T29] audit: type=1326 audit(1732658988.897:11932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  840.635687][ T5916] usb 3-1: Manufacturer: syz
[  840.768191][ T5889] usb 5-1: config 0 interface 0 has no altsetting 0
[  840.833544][ T5916] usb 3-1: config 0 descriptor??
[  840.849384][ T5889] usb 5-1: New USB device found, idVendor=056a, idProduct=00c4, bcdDevice= 0.00
[  840.867710][ T5889] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  840.891292][ T5889] usb 5-1: config 0 descriptor??
[  840.923241][   T29] audit: type=1326 audit(1732658988.897:11933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.040078][   T29] audit: type=1326 audit(1732658988.897:11934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc215580737 code=0x7ffc0000
[  841.192601][T16147] random: crng reseeded on system resumption
[  841.202653][   T29] audit: type=1326 audit(1732658988.897:11935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.259876][ T5916] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  841.278754][   T29] audit: type=1326 audit(1732658988.897:11936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.357795][   T29] audit: type=1326 audit(1732658988.897:11937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.395826][ T5889] wacom 0003:056A:00C4.002E: unknown main item tag 0x0
[  841.402345][ T5888] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  841.416004][ T5889] wacom 0003:056A:00C4.002E: hidraw0: USB HID v0.00 Device [HID 056a:00c4] on usb-dummy_hcd.4-1/input0
[  841.428707][   T29] audit: type=1326 audit(1732658988.897:11938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.456650][   T29] audit: type=1326 audit(1732658988.897:11939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.484203][   T29] audit: type=1326 audit(1732658988.897:11940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.508304][   T29] audit: type=1326 audit(1732658988.897:11941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.5.2778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21557e819 code=0x7ffc0000
[  841.564017][ T5888] usb 8-1: Using ep0 maxpacket: 16
[  841.598180][ T5888] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  841.624607][ T5888] usb 8-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  841.636751][ T5888] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  841.644917][ T5888] usb 8-1: Product: syz
[  841.649584][ T5888] usb 8-1: Manufacturer: syz
[  841.654931][ T5888] usb 8-1: SerialNumber: syz
[  841.662956][ T5888] usb 8-1: config 0 descriptor??
[  841.671148][T16155] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2774'.
[  841.684859][ T5916] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EPIPE)
[  841.704693][ T5916] gs_usb 3-1:0.0: Couldn't register candev for channel 0 (-EINVAL)
[  841.723893][ T5916] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -22
[  841.887211][ T5888] usb 8-1: Invalid number of CPorts: 0
[  841.899788][ T5888] es2_ap_driver 8-1:0.0: probe with driver es2_ap_driver failed with error -22
[  842.021129][T16166] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2774'.
[  947.022349][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  947.029722][    C0] rcu: 	1-...!: (1 ticks this GP) idle=667c/1/0x4000000000000000 softirq=55813/55813 fqs=0
[  947.042396][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=65165, q=163 ncpus=2)
[  947.050209][    C0] Sending NMI from CPU 0 to CPUs 1:
[  947.050423][    C1] NMI backtrace for cpu 1
[  947.050525][    C1] CPU: 1 UID: 0 PID: 16162 Comm: syz.5.2788 Not tainted 6.12.0-syzkaller-09567-g7eef7e306d3c #0
[  947.050560][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  947.050609][    C1] RIP: 0010:hlock_class+0x56/0x130
[  947.050871][    C1] Code: 20 66 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 c0 0c e8 96 e8 b2 38 87 00 48 0f a3 1d 9a 89 7d 15 <73> 13 48 69 c3 c8 00 00 00 5b 48 05 e0 10 e8 96 c3 cc cc cc cc 48
[  947.050891][    C1] RSP: 0018:ffffc90000a18aa0 EFLAGS: 00000047
[  947.050955][    C1] RAX: 0000000000000001 RBX: 000000000000006c RCX: ffffffff816a831e
[  947.050969][    C1] RDX: fffffbfff2dd019a RSI: 0000000000000008 RDI: ffffffff96e80cc8
[  947.050982][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2dd0199
[  947.050994][    C1] R10: ffffffff96e80ccf R11: 0000000000000001 R12: ffffed1004dd7a6b
[  947.051007][    C1] R13: ffff888026ebc880 R14: 0000000000000002 R15: ffff888026ebd388
[  947.051020][    C1] FS:  00007fc2164486c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  947.051040][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  947.051054][    C1] CR2: 000000110c34246d CR3: 000000005113e000 CR4: 00000000003526f0
[  947.051067][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  947.051079][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  947.051091][    C1] Call Trace:
[  947.051117][    C1]  <NMI>
[  947.051126][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  947.051224][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  947.051282][    C1]  ? nmi_handle+0x1a7/0x5c0
[  947.051339][    C1]  ? hlock_class+0x56/0x130
[  947.051365][    C1]  ? default_do_nmi+0x6a/0x160
[  947.051403][    C1]  ? exc_nmi+0x170/0x1e0
[  947.051430][    C1]  ? end_repeat_nmi+0xf/0x53
[  947.051494][    C1]  ? hlock_class+0x4e/0x130
[  947.051520][    C1]  ? hlock_class+0x56/0x130
[  947.051547][    C1]  ? hlock_class+0x56/0x130
[  947.051575][    C1]  ? hlock_class+0x56/0x130
[  947.051601][    C1]  </NMI>
[  947.051608][    C1]  <IRQ>
[  947.051614][    C1]  __lock_acquire+0x13a6/0x3c40
[  947.051641][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  947.051663][    C1]  lock_acquire.part.0+0x11b/0x380
[  947.051685][    C1]  ? debug_object_activate+0x149/0x4a0
[  947.051774][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  947.051796][    C1]  ? rcu_is_watching+0x12/0xc0
[  947.051851][    C1]  ? trace_lock_acquire+0x146/0x1e0
[  947.051878][    C1]  ? debug_object_activate+0x149/0x4a0
[  947.051905][    C1]  ? lock_acquire+0x2f/0xb0
[  947.051925][    C1]  ? debug_object_activate+0x149/0x4a0
[  947.051948][    C1]  _raw_spin_lock_irqsave+0x3a/0x60
[  947.051983][    C1]  ? debug_object_activate+0x149/0x4a0
[  947.052004][    C1]  debug_object_activate+0x149/0x4a0
[  947.052026][    C1]  ? lock_acquire.part.0+0x11b/0x380
[  947.052048][    C1]  ? __pfx_debug_object_activate+0x10/0x10
[  947.052072][    C1]  ? do_raw_spin_lock+0x12d/0x2c0
[  947.052098][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  947.052124][    C1]  ? __pfx_advance_sched+0x10/0x10
[  947.052178][    C1]  enqueue_hrtimer+0x25/0x3c0
[  947.052212][    C1]  __hrtimer_run_queues+0x903/0xae0
[  947.052242][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  947.052269][    C1]  ? read_tsc+0x9/0x20
[  947.052311][    C1]  hrtimer_interrupt+0x392/0x8e0
[  947.052343][    C1]  __sysvec_apic_timer_interrupt+0x10f/0x400
[  947.052372][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  947.052396][    C1]  </IRQ>
[  947.052402][    C1]  <TASK>
[  947.052410][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  947.052437][    C1] RIP: 0010:finish_task_switch.isra.0+0x220/0xcc0
[  947.052503][    C1] Code: a9 0a 00 00 44 8b 0d 43 37 03 0f 45 85 c9 0f 85 c0 01 00 00 48 89 df e8 ae f8 ff ff e8 d9 f1 38 00 fb 65 48 8b 1d f0 4e a6 7e <48> 8d bb f8 15 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1
[  947.052523][    C1] RSP: 0018:ffffc900048cf710 EFLAGS: 00000206
[  947.052540][    C1] RAX: 0000000000001f53 RBX: ffff888026ebc880 RCX: 1ffffffff20c0979
[  947.052554][    C1] RDX: 0000000000000000 RSI: ffffffff8b6cdee0 RDI: ffffffff8bd1d600
[  947.052568][    C1] RBP: ffffc900048cf758 R08: 0000000000000001 R09: 0000000000000001
[  947.052582][    C1] R10: ffffffff90608e17 R11: 0000000000000000 R12: ffff8880b873f9e0
[  947.052596][    C1] R13: ffff88801d28a440 R14: ffff88802d10ba80 R15: ffff8880b863ebc0
[  947.052617][    C1]  ? __switch_to+0x749/0x1190
[  947.052659][    C1]  __schedule+0xe60/0x5ad0
[  947.052680][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  947.052705][    C1]  ? __pfx___schedule+0x10/0x10
[  947.052726][    C1]  ? schedule+0x298/0x350
[  947.052745][    C1]  ? __pfx_lock_release+0x10/0x10
[  947.052767][    C1]  ? lock_acquire+0x2f/0xb0
[  947.052788][    C1]  ? schedule+0x1fd/0x350
[  947.052808][    C1]  schedule+0xe7/0x350
[  947.052828][    C1]  schedule_timeout+0x244/0x280
[  947.052857][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  947.052891][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  947.052916][    C1]  __wait_for_common+0x3e1/0x600
[  947.052939][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  947.052969][    C1]  ? __pfx___wait_for_common+0x10/0x10
[  947.052992][    C1]  ? lockdep_init_map_type+0x16d/0x7d0
[  947.053016][    C1]  ? generic_exec_single+0xbb/0x390
[  947.053081][    C1]  rdmsr_safe_on_cpu+0x1de/0x210
[  947.053144][    C1]  ? __pfx_rdmsr_safe_on_cpu+0x10/0x10
[  947.053168][    C1]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  947.053190][    C1]  ? __might_fault+0x13b/0x190
[  947.053224][    C1]  ? __pfx_lock_release+0x10/0x10
[  947.053254][    C1]  ? _copy_to_user+0x48/0xd0
[  947.053273][    C1]  msr_read+0x19e/0x250
[  947.053312][    C1]  ? __pfx_msr_read+0x10/0x10
[  947.053337][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[  947.053388][    C1]  ? security_file_permission+0x71/0x210
[  947.053425][    C1]  ? __pfx_msr_read+0x10/0x10
[  947.053450][    C1]  vfs_read+0x1df/0xbe0
[  947.053489][    C1]  ? __fget_files+0x1fc/0x3a0
[  947.053518][    C1]  ? __pfx_lock_release+0x10/0x10
[  947.053539][    C1]  ? __pfx_vfs_read+0x10/0x10
[  947.053556][    C1]  ? do_futex+0x123/0x350
[  947.053574][    C1]  ? lock_acquire+0x2f/0xb0
[  947.053594][    C1]  ? __fget_files+0x40/0x3a0
[  947.053615][    C1]  ? __fget_files+0x206/0x3a0
[  947.053637][    C1]  ksys_read+0x12b/0x250
[  947.053685][    C1]  ? __pfx_ksys_read+0x10/0x10
[  947.053721][    C1]  do_syscall_64+0xcd/0x250
[  947.053748][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  947.053774][    C1] RIP: 0033:0x7fc21557e819
[  947.053845][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  947.053863][    C1] RSP: 002b:00007fc216448038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  947.053882][    C1] RAX: ffffffffffffffda RBX: 00007fc215735fa0 RCX: 00007fc21557e819
[  947.053895][    C1] RDX: 0000000000018ff8 RSI: 0000000020000500 RDI: 0000000000000003
[  947.053908][    C1] RBP: 00007fc2155f175e R08: 0000000000000000 R09: 0000000000000000
[  947.053921][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  947.053934][    C1] R13: 0000000000000000 R14: 00007fc215735fa0 R15: 00007ffc8f5d6148
[  947.053952][    C1]  </TASK>
[  947.054300][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g65165 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  947.751654][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=55139
[  947.759541][    C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g65165 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  947.770921][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  947.780887][    C0] rcu: RCU grace-period kthread stack dump:
[  947.786825][    C0] task:rcu_preempt     state:I stack:25776 pid:17    tgid:17    ppid:2      flags:0x00004000
[  947.797119][    C0] Call Trace:
[  947.800398][    C0]  <TASK>
[  947.803335][    C0]  __schedule+0xe58/0x5ad0
[  947.807782][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  947.813063][    C0]  ? __pfx___schedule+0x10/0x10
[  947.817937][    C0]  ? schedule+0x298/0x350
[  947.822275][    C0]  ? __pfx_lock_release+0x10/0x10
[  947.827314][    C0]  ? lock_acquire+0x2f/0xb0
[  947.831831][    C0]  ? schedule+0x1fd/0x350
[  947.836175][    C0]  schedule+0xe7/0x350
[  947.840256][    C0]  schedule_timeout+0x124/0x280
[  947.845123][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  947.850510][    C0]  ? __pfx_process_timeout+0x10/0x10
[  947.855819][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  947.861633][    C0]  ? prepare_to_swait_event+0xf3/0x470
[  947.867163][    C0]  rcu_gp_fqs_loop+0x1eb/0xb00
[  947.871967][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  947.877260][    C0]  ? rcu_gp_init+0xc82/0x1630
[  947.881946][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  947.887156][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  947.892973][    C0]  rcu_gp_kthread+0x271/0x380
[  947.897760][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  947.902974][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  947.908181][    C0]  ? __kthread_parkme+0x148/0x220
[  947.913300][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  947.918506][    C0]  kthread+0x2c1/0x3a0
[  947.922585][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  947.927785][    C0]  ? __pfx_kthread+0x10/0x10
[  947.932396][    C0]  ret_from_fork+0x45/0x80
[  947.936846][    C0]  ? __pfx_kthread+0x10/0x10
[  947.941449][    C0]  ret_from_fork_asm+0x1a/0x30
[  947.946273][    C0]  </TASK>