last executing test programs:

22.19511271s ago: executing program 1 (id=1065):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x3, @pix_mp={0x0, 0x0, 0x34324152}})
sched_setscheduler(0x0, 0x6, &(0x7f00000002c0)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000180)=0x6)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x18000000000002a0, 0x38, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f086dd", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x3df4ff3ed9780f7a)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000077ceb5d48500000084000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ppoll(&(0x7f0000000900)=[{r4}], 0x1, &(0x7f0000000940)={0x77359400}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='rxrpc_peer\x00', r3}, 0x2b)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc001}, 0x24084894)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r5, 0x84, 0x16, &(0x7f0000000000)={0x2, [0x2, 0x9]}, 0x8)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRESDEC, @ANYRES32=0x0, @ANYRESDEC, @ANYBLOB="08001f0009"], 0x44}}, 0x0)

17.129937084s ago: executing program 2 (id=1074):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x201, 0x0)
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000009007110710000000000a6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x81, 0x3, 0xd4a, 0x2481, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="0000ef000020000004000100000000000000218a5e37ea2b0000a81ffd3077d81ad405349215ff001971bf38058443a86f88a9c90fdcb35c284169d7e6651e6fc252fefffdf19e19200cec22cb0edf7861031b04574a80505991"], 0x18}}, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='omfs\x00', 0x0, &(0x7f0000000240))
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f00000007c0)={{}, 'port0\x00'})
socket$inet_smc(0x2b, 0x1, 0x0)
write$dsp(r0, &(0x7f0000002080)="a5", 0x1)
ioctl$LOOP_SET_FD(r4, 0x4c00, r1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000800)={0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xa9}, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff})
recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x1, 0x0, 0xd66}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0, @ANYRES64, @ANYRESHEX=r6, @ANYRES32], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)

15.450549911s ago: executing program 2 (id=1076):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x408001)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r6, &(0x7f0000002400)={0x2020, 0x0, <r7=>0x0}, 0x2020)
open(&(0x7f00000065c0)='./file0\x00', 0x0, 0x0)
write$FUSE_INIT(r6, &(0x7f0000002300)={0x50, 0x0, r7, {0x7, 0x9}}, 0x50)
read$FUSE(r6, &(0x7f0000004580)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r6, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r8}, 0x10)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r9, r6, 0x0)
r10 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r10, 0x80086601, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000003c0)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(0xffffffffffffffff, 0xc03064b7, 0x0)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x702, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)

12.248248506s ago: executing program 1 (id=1081):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet(0x2, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
shmdt(0x0)
syz_emit_ethernet(0x76, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffffffffffb, 0xfeff})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000280)={0x0, 0xea60}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @hyper}, 0xfffffff4)
getsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4)

11.896113822s ago: executing program 4 (id=1083):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x201, 0x0)
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000009007110710000000000a6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x81, 0x3, 0xd4a, 0x2481, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="0000ef000020000004000100000000000000218a5e37ea2b0000a81ffd3077d81ad405349215ff001971bf38058443a86f88a9c90fdcb35c284169d7e6651e6fc252fefffdf19e19200cec22cb0edf7861031b04574a80505991"], 0x18}}, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='omfs\x00', 0x0, &(0x7f0000000240))
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f00000007c0)={{}, 'port0\x00'})
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000080)=0x10000)
write$dsp(r0, &(0x7f0000002080)="a5", 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000800)={0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xa9}, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff})
recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x1, 0x0, 0xd66}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0, @ANYRES64, @ANYRESHEX=r6, @ANYRES32], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)

9.229425949s ago: executing program 1 (id=1084):
r0 = socket$alg(0x26, 0x5, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
io_cancel(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000340)="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", 0x144, 0x6, 0x0, 0x3}, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000001c0), &(0x7f0000000200)=0x30)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6}, @IFLA_GRE_ENCAP_FLAGS={0x6}]}}}]}, 0x48}}, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x4})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r6, 0xfff)
syz_emit_ethernet(0x8e, &(0x7f0000000900)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500580600fc020000000000000000000000000001fc00000000000000000000000000000000004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="608000009878000005000000000800000006080a00000000000000001312d082e275205e5561f7522d0693163d890303000303000402040201131227406263e43d5959a100000000dc000000adf59b1047dadd9037ec6dc7761b7ea269407a4aa5c827965e827d4300a9c9802e8138386dd7d0b11b1a1e1f8c3bda5c58500be1aaa8b19ceda8f61daeede9b095a5daa648ab0ad273171b08a9cf24541e9482eaac4ab7f521cdafb2da81272f5c16ee0a3e15fffdc059ccac590d1f2f37d0787ebb36aefce47618510955f52fde8a79861f9b690e93557f8fd6ffc5ec0b5586b6370f9ab72e"], 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000500)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "800004", 0x24, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0x2, 0x0, 0x0, 0x0, {[@sack={0x5, 0xa, [0x10, 0x9]}, @nop, @generic={0x8, 0x3, "c0"}]}}}}}}}}, 0x0)
accept$alg(r0, 0x0, 0x0)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x20080, 0x0)
syz_usbip_server_init(0x5)

9.031830399s ago: executing program 3 (id=1085):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140), 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
getsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000ab4000/0x1000)=nil, 0x1000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2c, 0x3a, 0xb, 0x0, 0x0, {0x3}, [@nested={0xfffffffffffffec1, 0x0, 0x0, 0x1, [@typed={0x13, 0x3, 0x0, 0x0, @str='\r4\xd8\x02j,'}]}]}, 0x2c}}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='vxfs\x00', 0x0, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)=@newqdisc={0x34, 0x24, 0x40bd8d0cdd7f47b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4, 0x8002}}]}, 0x34}}, 0x0)

8.766120339s ago: executing program 2 (id=1086):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000))
r1 = socket$kcm(0x2b, 0x0, 0x0)
sendmsg$inet(r1, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000488c)
recvmsg$kcm(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
close(r1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x14, 0x0, 0x1, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x47)
openat$kvm(0xffffffffffffff9c, 0x0, 0x1810c0, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706006e652043617074557265272030303030303034303030303030303030303030300a20"], 0xb8)
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
dup3(r6, r5, 0x0)

8.673284686s ago: executing program 4 (id=1087):
r0 = socket(0x40000000015, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0x0, &(0x7f0000000040))
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000003c0)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0xa}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r1, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x284, 0x1, 0x3, 0x401, 0x0, 0x0, {}, [@NFQA_VLAN={0x1c, 0x13, 0x0, 0x1, [@NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x7}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}]}, @NFQA_PAYLOAD={0xd5, 0xa, "7d323b162d2a9702fce8a6bcc046cb7532bb2e938d1accc7c48fcedffa209a8d9badce0b102131d6f5442d9a59f54e336c26dac7607dea93a4103d375ab42342c1b515e56fec1edbdb66e2a5c537b22ebb17dbd3db8573a0fcfefb25d73567bb86b26b0aa44ee52c49b38beb436d1e0f6cc388143bbc3b5eb9845a7fbe5e18fd9941621f6a928dae741e1568a9cefe9bb73add9e82fef0e41627703d757d82543fc301cc2cf66ea8b3dcb6dad55f5d1f4cb7409d5151b6fd44ce5ec87e287fe913420fd3d0bba9ef2ee9a2a6b38f86d23f"}, @NFQA_VLAN={0x14, 0x13, 0x0, 0x1, [@NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}]}, @NFQA_VLAN={0x44, 0x13, 0x0, 0x1, [@NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6}, @NFQA_VLAN_TCI={0x6}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x2}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0xfff}]}, @NFQA_PAYLOAD={0x4a, 0xa, "275ab93f9bd20dc1d517911b08a808820a43504dda589074cdfe783d660851565d9a428429bdd489a75a85fe4bef0a41bec341a85e3d98525590379c8000d623d600e07ce75b"}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_CT={0xd0, 0xb, 0x0, 0x1, [@CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xf, 0x1, 'tftp-20000\x00'}}, @CTA_TUPLE_MASTER={0xc, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'H.245\x00'}}, @CTA_TUPLE_MASTER={0x78, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0xe}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @remote}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3d}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_ID={0x8}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x3a9c}]}]}, 0x284}}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
dup3(r0, r0, 0x0)
connect$unix(r3, &(0x7f0000000280)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
io_uring_setup(0x50a, &(0x7f0000000340)={0x0, 0xac6e, 0x0, 0x3, 0x324})
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCL_BLANKSCREEN(r5, 0x541c, &(0x7f0000000000))
ioctl$TIOCL_UNBLANKSCREEN(r5, 0x541c, &(0x7f00000000c0))
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, 0x0, 0x0)
r6 = inotify_init1(0x0)
r7 = inotify_add_watch(r6, &(0x7f0000000200)='.\x00', 0x400)
r8 = dup(r6)
read$FUSE(r8, &(0x7f0000002280)={0x2020}, 0x2020)
inotify_rm_watch(r8, r7)
ioctl$EVIOCSREP(r8, 0x40084503, &(0x7f0000000180)=[0x4])
socket$kcm(0xa, 0x0, 0x73)

6.489971316s ago: executing program 2 (id=1088):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0)
close(r0)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000001100)={'syz1\x00'}, 0x45c)

6.318747027s ago: executing program 4 (id=1089):
socket$rds(0x15, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
socket$kcm(0x21, 0x0, 0x2)
read$alg(r2, &(0x7f0000000080)=""/16, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x5}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
fchdir(0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000006380)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000000100)={0x50, 0x0, r6, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}}, 0x50)
syz_fuse_handle_req(r5, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dec7505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d9813bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdcd4b1c037c2b30bef455984f3e8ed19d69e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705074fe5e985497dcf052b9f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453541bb79f9e0be9a55588e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff75a6de77a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e439b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10f6791824dbe0a7725d534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb55bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eee747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
io_setup(0x202, &(0x7f0000000200)=<r7=>0x0)
io_submit(r7, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='!', 0xb7f40}])

6.086319851s ago: executing program 2 (id=1090):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x201, 0x0)
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000009007110710000000000a6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x81, 0x3, 0xd4a, 0x2481, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="0000ef000020000004000100000000000000218a5e37ea2b0000a81ffd3077d81ad405349215ff001971bf38058443a86f88a9c90fdcb35c284169d7e6651e6fc252fefffdf19e19200cec22cb0edf7861031b04574a80505991"], 0x18}}, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='omfs\x00', 0x0, &(0x7f0000000240))
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f00000007c0)={{}, 'port0\x00'})
write$dsp(r0, &(0x7f0000002080)="a5", 0x1)
ioctl$LOOP_SET_FD(r4, 0x4c00, r1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000800)={0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xa9}, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff})
recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x1, 0x0, 0xd66}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0, @ANYRES64, @ANYRESHEX=r6, @ANYRES32], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)

5.878603817s ago: executing program 3 (id=1091):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000380)={0x0, <r2=>0x0})
setpgid(0x0, r2)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
socket(0x0, 0x0, 0x0)
clock_gettime(0x4, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x6)
getpid()
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r4, 0x89f8, &(0x7f00000001c0)={'erspan0\x00', &(0x7f0000000280)={'syztnl0\x00', r5, 0x20, 0x700, 0xffffffff, 0xabf8, {{0x12, 0x4, 0x2, 0x30, 0x48, 0x67, 0x0, 0x1, 0x14, 0x0, @private=0xa010102, @rand_addr=0x64010102, {[@timestamp_prespec={0x44, 0x1c, 0x11, 0x3, 0x1, [{}, {@loopback}, {@multicast2}]}, @ssrr={0x89, 0x3, 0x9e}, @lsrr={0x83, 0x7, 0x26, [@empty]}, @rr={0x7, 0xb, 0xa2, [@dev={0xac, 0x14, 0x14, 0x24}, @multicast2]}]}}}}})
getgroups(0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000480)={{{@in6=@dev, @in6=@dev}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0x9362, 0x0)

5.750683588s ago: executing program 0 (id=1092):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
socket$isdn(0x22, 0x2, 0x26)
mknod(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000002c0)={0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x100}, 0x38)
getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, 0xfffffffffffffffc, &(0x7f0000000140)=0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a400000ff000900020073797a31000000000900010073797a30000000000800054000000021800000"], 0x104}}, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)={0x24, r4, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}}, 0x0)
epoll_create(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000080))
sendto$inet6(r2, 0x0, 0x0, 0x8001, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
write$binfmt_misc(r2, &(0x7f0000000e80)=ANY=[], 0xffdc)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r6, &(0x7f0000000180)={0x24, @short}, 0xb)

5.605056239s ago: executing program 1 (id=1093):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x16b301, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet_tcp(0x2, 0x1, 0x0)
ptrace$setsig(0x4203, 0x0, 0xb, &(0x7f0000000140)={0x0, 0x0, 0x800})
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x2, 0x0, 0xee00, 0x0, 0x0, 0x11a, 0x7a}, 0x2, 0x0, 0x0, 0x8, 0x0, r2, 0x7ff})
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0x230)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xff2e)

5.259126324s ago: executing program 3 (id=1094):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet(0x2, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
shmdt(0x0)
syz_emit_ethernet(0x76, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffffffffffb, 0xfeff})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000280)={0x0, 0xea60}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @hyper}, 0xfffffff4)
getsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4)

4.620219675s ago: executing program 0 (id=1095):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
socket$isdn(0x22, 0x2, 0x26)
mknod(0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000002c0)={0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x100}, 0x38)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)={0x24, r4, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}}, 0x0)
epoll_create(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000080))
sendto$inet6(r2, 0x0, 0x0, 0x8001, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
write$binfmt_misc(r2, &(0x7f0000000e80)=ANY=[], 0xffdc)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r6, &(0x7f0000000180)={0x24, @short}, 0xb)

4.391478571s ago: executing program 4 (id=1096):
socket$inet_sctp(0x2, 0x0, 0x84)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$media(&(0x7f0000002940), 0x2, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.25758045s ago: executing program 3 (id=1097):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x408001)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r6, &(0x7f0000002400)={0x2020, 0x0, <r7=>0x0}, 0x2020)
open(&(0x7f00000065c0)='./file0\x00', 0x0, 0x0)
write$FUSE_INIT(r6, &(0x7f0000002300)={0x50, 0x0, r7, {0x7, 0x9}}, 0x50)
read$FUSE(r6, &(0x7f0000004580)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r6, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r8}, 0x10)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r9, r6, 0x0)
r10 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r10, 0x80086601, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000003c0)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(0xffffffffffffffff, 0xc03064b7, 0x0)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x702, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)

3.707146009s ago: executing program 4 (id=1098):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000100000007b8af8ff00000000bfa200000000000007020000faffffffb703000008400000b70600000000feff850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='block_split\x00', r4}, 0x10)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
preadv2(r5, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x5, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001300)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100", @ANYRES32=r6, @ANYBLOB="4400028040000100240001007072690020cd0579000000000000000000005230e4704e58d9139930c1000000050003"], 0x60}}, 0x0)

3.592867851s ago: executing program 0 (id=1099):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
lseek(r0, 0x0, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xd)
write$binfmt_aout(r3, &(0x7f0000000100)=ANY=[], 0xff2e)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x8001001, 0x8, '9P2000.u'}, 0x15)
r6 = dup(r5)
write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_INIT(r6, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0x80}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0), 0x2043000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}})
ioctl$TIOCSTI(r3, 0x5423, &(0x7f00000004c0))
sendmsg$nl_route(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=@ipv4_delroute={0x1c, 0x19, 0x1, 0x0, 0x0, {0x2, 0x90}}, 0x1c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x0, 0x31}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="f0000000100000000000000000000000acf313aa00"/32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff0200000000000000000000000000010000000000000000fe8000"/37], 0xf0}}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r7, 0xc0506617, &(0x7f0000000080)=0x2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

2.98201226s ago: executing program 1 (id=1100):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0)
close(r0)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000001100)={'syz1\x00'}, 0x45c)

2.856842239s ago: executing program 4 (id=1101):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x3, @pix_mp={0x0, 0x0, 0x34324152}})
sched_setscheduler(0x0, 0x6, &(0x7f00000002c0)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000180)=0x6)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x18000000000002a0, 0x38, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f086dd", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x3df4ff3ed9780f7a)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000077ceb5d48500000084000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ppoll(&(0x7f0000000900)=[{r4}], 0x1, &(0x7f0000000940)={0x77359400}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='rxrpc_peer\x00', r3}, 0x2b)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
socket$packet(0x11, 0x0, 0x300)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc001}, 0x24084894)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r5, 0x84, 0x16, &(0x7f0000000000)={0x2, [0x2, 0x9]}, 0x8)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRESDEC, @ANYRES32=0x0, @ANYRESDEC, @ANYBLOB="08001f0009"], 0x44}}, 0x0)

2.810091628s ago: executing program 0 (id=1102):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x1}, 0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x0, &(0x7f00000000c0)}, 0x10)
sendmmsg$unix(r1, &(0x7f0000002a00)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000100)="83b540a9", 0xb583}], 0x1}}], 0x1, 0x0)
syz_open_dev$loop(0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000340)=[@in6={0xa, 0x4e21, 0xf5, @rand_addr=' \x01\x00', 0xffffff00}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x2f, 0x0, 0x100001003)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x44}, {0x6}]})
ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01)
syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x101301)
r3 = syz_open_dev$evdev(&(0x7f00000010c0), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r3, 0x80104592, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0xfffffffe, "00207d2000000000201b14700c1e0ac74f000000001200000000000900"})

2.797059271s ago: executing program 1 (id=1103):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000180)='./file0/file0\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000100), 0x8)
getsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x1, &(0x7f0000000080), &(0x7f00000001c0)=0x4)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000380), 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/98, 0x62}], 0x1, 0x0, 0x0)
ppoll(&(0x7f0000000740)=[{}], 0x1, 0x0, 0x0, 0x0)
close(r3)
syz_usb_connect(0x5, 0x51e, &(0x7f0000000780)={{0x12, 0x1, 0x201, 0x68, 0x2e, 0x35, 0x40, 0x58b, 0x28, 0xf1bf, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x50c, 0x3, 0x9, 0xad, 0x0, 0x6, [{{0x9, 0x4, 0x1, 0xd, 0x5, 0x42, 0x10, 0x3c, 0x0, [@uac_control={{0xa, 0x24, 0x1, 0x7, 0xf9}, [@output_terminal={0x9, 0x24, 0x3, 0x4, 0x304, 0x3, 0x4}, @extension_unit={0x9, 0x24, 0x8, 0x6, 0x2c, 0xd6, "34c2"}, @input_terminal={0xc, 0x24, 0x2, 0x1, 0x101, 0x6, 0xea, 0x0, 0x40, 0x80}, @mixer_unit={0x9, 0x24, 0x4, 0x2, 0x40, "913526e0"}, @mixer_unit={0x9, 0x24, 0x4, 0x1, 0xf8, "186d094d"}, @mixer_unit={0x6, 0x24, 0x4, 0x4, 0x4, 'r'}]}, @uac_as={[@as_header={0x7, 0x24, 0x1, 0x4, 0x6, 0x1002}, @as_header={0x7, 0x24, 0x1, 0x5, 0x4, 0x2}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0x6, 0x4, 0xa, "b187546d3d568f6b"}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0x6, 0xf3, 0x0, "65bb080a458b14b5"}]}], [{{0x9, 0x5, 0x0, 0x8, 0x8, 0x81, 0x0, 0x4}}, {{0x9, 0x5, 0x9, 0x3, 0x8, 0xd, 0xd, 0x7, [@generic={0x2e, 0x17, "c78eeea021b348e20a8de41d42796781fe13ba4bd59fd0f4753edff1ad0c85d9bcd18581857c1e5ac906720a"}]}}, {{0x9, 0x5, 0xe, 0x13, 0x0, 0x1, 0x10, 0xf, [@uac_iso={0x7, 0x25, 0x1, 0x7, 0x3, 0x7bc}]}}, {{0x9, 0x5, 0x8, 0x8, 0x8, 0xff, 0x3, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x10, 0x1}, @generic={0x2, 0x22}]}}, {{0x9, 0x5, 0xe, 0xc, 0x0, 0xa, 0xed, 0x1}}]}}, {{0x9, 0x4, 0x9c, 0x3, 0xf, 0xff, 0x0, 0x0, 0x3, [], [{{0x9, 0x5, 0x0, 0xc, 0x8, 0x1, 0x1, 0xfd, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x78, 0x4}]}}, {{0x9, 0x5, 0xd, 0x0, 0x400, 0xec, 0x8}}, {{0x9, 0x5, 0x5, 0x1, 0x10, 0xd7, 0x7, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xfd, 0xfff}]}}, {{0x9, 0x5, 0x9, 0x0, 0x20, 0x5, 0x0, 0xf}}, {{0x9, 0x5, 0x7, 0x1, 0x10, 0x4, 0x7}}, {{0x9, 0x5, 0x80, 0x0, 0x30a640a82890abae, 0x3, 0x0, 0x2}}, {{0x9, 0x5, 0xc0, 0x10, 0x20, 0xc4, 0x0, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0x7}]}}, {{0x9, 0x5, 0x3, 0x0, 0x200, 0xa0, 0x3, 0x5}}, {{0x9, 0x5, 0x5, 0xc, 0x400, 0x0, 0x40}}, {{0x9, 0x5, 0xd, 0x1, 0x8, 0x5, 0x4, 0x1, [@generic={0xbf, 0x6, "d60020ae9918cfbf19150429ef2e2e50154b2dec86cbc53d0843d12f21aa6280a0b36e46483c94d5bb018da3bfa8d630e2c0f21d0b01d6665565b3a6591e74b4653c1fe601ad9bbc182c7ff143b1ca5ac2c75eda18f4eadbe2899838e44d9466d8bb4cb17739ee86e4be173dca61bca5aa5261e353cab37bed288f3d1f68c4ff4a57bb945a7edf73fa0fbbd802f0f3acccc5b0156637551120a3e69cdf2baaeeab3a126e06313fb6b7e4b00496fc58b80a09ba9a8ae927300e64eb0328"}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0x9}]}}, {{0x9, 0x5, 0x80, 0x0, 0x0, 0x8, 0x2}}, {{0x9, 0x5, 0x7, 0x0, 0x3ff, 0x0, 0x0, 0x12, [@generic={0x74, 0x30, "b38d2e91588fe07f0ffc003bb7428da499b081d22b885bb32985bc95a25b054951eedb796e2fa7890d3708ae9552659e039dc716e3d144f7dbe386970a7d8e1f94e47bb38d8be9491954de1370f3375919fc53e30eaeafd44cb93009bbd159c6b46c858523062349efaf2508ee40a2929a2b"}, @generic={0x56, 0x21, "bc3b3cf06347ac1f181b976e05f0e0b42ac4fa87006d6249359326112ae24591cd5148ca0e03416240db572cca0d4111821054621306f9cf576f8a6bc199bc4eb794cd0ba1437ecd70e4ba434f11f2eb2950b470"}]}}, {{0x9, 0x5, 0x6, 0x0, 0x200, 0xc, 0x9, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x96, 0x4d86}, @generic={0x50, 0x0, "61cbc7f4b11419567854dcc4151af4a89502ab6c533bd310a0be8b70f2e26e54d0040a3258c312bdf286d38f506f5056232606c8c8ab568e8e31cb182b2efe307da6a8c39f4d4fbd413e47fb5341"}]}}, {{0x9, 0x5, 0x8, 0x8, 0x400, 0x0, 0x6, 0x40, [@generic={0x5d, 0x31, "b47ff452bbb6671aa3b1a8b99e3e38c306da3e79730d350f45483f71594b22aa264026aee85e67c0f0f60a631dec09e9c3043b4f1bd7fff3a4c9b470f23d22aa775f8ff456bd18232bdf0798203a247f405e6c746e1cd2146a2b57"}, @generic={0x16, 0xd, "ded027e505c40beef8db9ee175331af73c6d81ac"}]}}, {{0x9, 0x5, 0x80, 0x0, 0x20, 0xf, 0x1c, 0x81, [@generic={0x2, 0x8}]}}]}}, {{0x9, 0x4, 0x66, 0x56, 0x6, 0xd, 0x1c, 0x8c, 0x3, [], [{{0x9, 0x5, 0xd, 0x2, 0x3ff, 0xe, 0x2, 0x2}}, {{0x9, 0x5, 0x6, 0x0, 0x3ff, 0x4, 0xc, 0x9, [@generic={0xd0, 0x21, "13f797c98b9af515c252dedb345d88f67e08e856653924b7e97cf00f21f0e918a06ed0e4c3c839d976bd992d8fd23ab5838ed656f0043f0660ec021ad9bf60cc85df13bde37c70d0f559b20535f7ae582733e6ba7fdd550cd8fee5dbca6db7d9160b87e17b7553cf5ccf3cf604215d5dc18a9cbfbae90c5a481d148b8b1447f4fbb58d07123cb900b8974eba656a275cc8a20182060f2d2bf4fbfc8525b92c7b0e0f6be42aba2d0d57fc77219e9857e098e11ba96d5244745a6fe9f9f63fcc030e34b385a1bbd155b2544ea842b4"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x10, 0x9, 0xf, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x5, 0x40}]}}, {{0x9, 0x5, 0x9, 0x0, 0x3ff, 0xd, 0x6, 0x4f, [@generic={0x2, 0x28}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x8}]}}, {{0x9, 0x5, 0xf, 0x0, 0x0, 0x9, 0x5, 0x2}}, {{0x9, 0x5, 0x5, 0x0, 0x200, 0x5, 0x5d}}]}}]}}]}}, &(0x7f0000001180)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x110, 0x86, 0x6, 0x5, 0x8, 0x6}, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="050f0500cb"], 0x9, [{0x6a, &(0x7f0000000240)=@string={0x6a, 0x3, "8e60358a4552c599fd5f57927f29986ff3be82cbeda0bd3f2da36cf2dcf3013e5d5c686494fb1b301e98bdb624bf7fee943cdc0dbecb5ad83f3a1c6ed710a7e3a13650293d2d411b7056bcf5006609627d7ff3db1b9d4d0bb3772fab9fd50b392041d4d790af2543"}}, {0x3f, &(0x7f0000000300)=@string={0x3f, 0x3, "f9e35ab8044fe0e802d9b7a302b797d72d9fb556355b746c41d4a736b721d9c6d83c8bde913a4f5dbd207c11d9acb506bb6a1b9aaa82d31e7ff8fc84b4"}}, {0xe1, &(0x7f0000000440)=@string={0xe1, 0x3, "c57a75a6a05ed1f69d0cfc82145e885518fdc2f00011eb64560888e75f78b2afe8e69fc2dcca1323ad13981c14bda170bcc654195bd297ef9701b9c469992e80f3fde9d247ddc9a70598a0fbdbb6d3c62e83f9ad6b1ff2ef5afb7bfc843c51d9d066b6bcfe2d46d4cba82b8a4b8e7caebd29203991da5984e7f95bb1c3ef5314a0d6b43d0146afa58883630c17250db8762d603fea417250fc941190cec226b8ea9784ce61e3f88fcb67bca8d1e990460fa9bdc67e106d7d30b0403b229245fa59eadda586ac78d5e6f171357335db97681fd3d6da1632bdd68456aae685a2"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x2c09}}, {0x4, &(0x7f0000000640)=@lang_id={0x4}}, {0x89, &(0x7f0000000680)=@string={0x89, 0x3, "1716948357b653423982c7a9f47eaf275932b4c92ca5fbe195a5710bfd11a1c581f72c85b86cf86deaa8290f3d4aaddfd0c88583cdb8ee3bb50e79dece5c2ec8b2a4d61463333ab60b6a46544c0f3108afb3072eabbd9c08363f73d8654681159563ae1469f427d4a3dbdfd4bedc85f8c2bafc5b134a67075255c65ffcb04e9428a2dbd4e6dba8"}}, {0x79, &(0x7f0000000f80)=@string={0x79, 0x3, "d71eb3da9fc4729451308bba189fdc29dd600462710a6b0f0feb43ff3d7177ea888f58c412afddd82769fbf818fd8a0990aff8f9a9e9503c9c9f17cabae18e8ee7a5a06fbfd1cdd12c89e8a3e4349297f7d925f3b39f19f80165dc09ea97c1e42d8ef3e4f3e5c7fd88fd07ca3d5b88753bb8b50adda3a9"}}, {0x4, &(0x7f0000001040)=@lang_id={0x4, 0x3, 0x42}}, {0xe1, &(0x7f0000001080)=@string={0xe1, 0x3, "8ce5e62208f66d9f0ea16f88a8af171c3d3b5951e337f476faf27ec8610f942d8a7e6d4c238baa8f0f97515bf89f30ff41d8c062833f2c46bd45a43d8a4b704d7f93771e69fc495dbbf1689a377be4bdada1a1bb96a8d3c5a8ade773e20a345673e4d8342470ab5e1ac31d5f02e5cd39c45563ec334b9ea6f4346dfe73b72be1797fc953396021f35b1e3a71d01e2adb6e22dd0b6af99c4da78b3b84e2e39605df5e939ffae862ab6fd1df6a6135816395a2de39c535f8471af318468ea889b54643b68a6f05f61944eba709aab1424bff91621b7e16c8559228f013e22692"}}]})
r4 = openat$cgroup_ro(r2, &(0x7f0000000040)='memory.current\x00', 0x275a, 0x0)
write$cgroup_type(r4, 0x0, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, 0x0, 0xf7)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)

1.838054501s ago: executing program 3 (id=1104):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140003003000000000000000000000000086569d"], 0x3c}}, 0x0) (fail_nth: 5)

1.13473861s ago: executing program 0 (id=1105):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
socket$isdn(0x22, 0x2, 0x26)
mknod(0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000002c0)={0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x100}, 0x38)
getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, 0xfffffffffffffffc, &(0x7f0000000140)=0x4)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)={0x24, r5, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}}, 0x0)
epoll_create(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000080))
sendto$inet6(r3, 0x0, 0x0, 0x8001, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
write$binfmt_misc(r3, &(0x7f0000000e80)=ANY=[], 0xffdc)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r7, &(0x7f0000000180)={0x24, @short}, 0xb)

1.130227324s ago: executing program 2 (id=1106):
r0 = getpid()
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c02ff07", @ANYRES16=r3, @ANYBLOB="010000000000000000001d0000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000d0087006c325f64726f70730000000008008e0000000000"], 0x4c}}, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r8, 0x84, 0x82, &(0x7f0000000580), 0x8)
sendmmsg$inet(r8, 0x0, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005240000000d240f01000000000000"], 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4400ae8f, &(0x7f0000000140))
r9 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r9, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_open_dev$usbfs(&(0x7f0000001f40), 0x200, 0x2a102)
ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000280)={0x2})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r10=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r10, 0x25, 0x2}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff05f7", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xf, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000018110000", @ANYRES32=r11, @ANYRESHEX=r4], &(0x7f0000000200)='GPL\x00', 0xffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdf4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r12, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

957.247792ms ago: executing program 3 (id=1107):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet(0x2, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
shmdt(0x0)
syz_emit_ethernet(0x76, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffffffffffb, 0xfeff})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000280)={0x0, 0xea60}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @hyper}, 0xfffffff4)
getsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4)

0s ago: executing program 0 (id=1108):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x201, 0x0)
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000009007110710000000000a6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x81, 0x3, 0xd4a, 0x2481, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="0000ef000020000004000100000000000000218a5e37ea2b0000a81ffd3077d81ad405349215ff001971bf38058443a86f88a9c90fdcb35c284169d7e6651e6fc252fefffdf19e19200cec22cb0edf7861031b04574a80505991"], 0x18}}, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='omfs\x00', 0x0, &(0x7f0000000240))
socket$inet_smc(0x2b, 0x1, 0x0)
write$dsp(r0, &(0x7f0000002080)="a5", 0x1)
ioctl$LOOP_SET_FD(r4, 0x4c00, r1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000800)={0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xa9}, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff})
recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x1, 0x0, 0xd66}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0, @ANYRES64, @ANYRESHEX=r6, @ANYRES32], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)

kernel console output (not intermixed with test programs):

" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  454.273956][    C0] vkms_vblank_simulate: vblank timer overrun
[  454.329106][ T9108] veth0_macvtap: entered promiscuous mode
[  454.394665][   T29] audit: type=1326 audit(1721695448.566:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  454.574664][   T29] audit: type=1326 audit(1721695448.566:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  454.660691][ T1054] bridge_slave_1: left allmulticast mode
[  454.738878][ T1054] bridge_slave_1: left promiscuous mode
[  454.774603][ T1054] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.251193][   T29] audit: type=1326 audit(1721695448.566:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  455.274476][    C0] vkms_vblank_simulate: vblank timer overrun
[  455.281638][   T29] audit: type=1326 audit(1721695448.566:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  455.311390][   T29] audit: type=1326 audit(1721695448.566:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  455.374430][ T1054] bridge_slave_0: left allmulticast mode
[  455.381150][ T1054] bridge_slave_0: left promiscuous mode
[  455.417865][ T1054] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.427237][   T29] audit: type=1326 audit(1721695448.566:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9241 comm="syz.3.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  455.879911][ T8635] Bluetooth: hci7: Opcode 0x0c1a failed: -110
[  455.886310][ T9057] Bluetooth: hci7: command 0x0c1a tx timeout
[  455.892436][ T8635] Bluetooth: hci7: Error when powering off device on rfkill (-110)
[  458.583958][   T25] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  458.712869][ T9292] input: syz1 as /devices/virtual/input/input25
[  458.856692][   T25] usb 2-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  458.889216][   T25] usb 2-1: config 9 has 1 interface, different from the descriptor's value: 3
[  458.943169][   T25] usb 2-1: config 9 has no interface number 0
[  458.970218][   T25] usb 2-1: config 9 interface 1 altsetting 13 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  459.055483][   T25] usb 2-1: config 9 interface 1 has no altsetting 0
[  459.114450][   T25] usb 2-1: New USB device found, idVendor=058b, idProduct=0028, bcdDevice=f1.bf
[  459.161205][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.179565][   T25] usb 2-1: Product: 竅ꙵ庠ಝ苼帔喈ﴘᄀ擫ࡖ硟꾲슟쫜⌓ᎭᲘ봔炡욼ᥔ퉛Ɨ쒹饩耮ﷳ틩Ꟊ項ﮠ뛛웓茮극Ὣﭚﱻ㲄曐벶ⷾ푆꣋訫蹋깼⦽㤠葙裏녛ᑓ횠㶴䘁ꖯ莈ౣ┗렍⵶㽠䇪偲铼逑싎렦韪캄迸柋ꢼ䚐ꤏ욽ၾ絭뀰㭀鈢海ꗝ겆핸㕱㕳韛Ὠ훓ᛚ봲蓖꩖藦
[  459.237624][   T25] usb 2-1: Manufacturer: 롚伄ꎷ뜂힗鼭嚵嬵汴푁㚧↷웙㳘㪑嵏₽ᅼ곙ڵ檻騛芪ồ蓼
[  459.290042][   T25] usb 2-1: SerialNumber: Ⰹ
[  459.938766][ T1054] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  460.017017][ T1054] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  460.069816][ T1054] bond0 (unregistering): Released all slaves
[  460.095375][ T1054] bond1 (unregistering): Released all slaves
[  460.130064][ T9108] veth1_macvtap: entered promiscuous mode
[  460.199849][ T9180] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.227541][ T9180] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.250605][ T9180] bridge_slave_0: entered allmulticast mode
[  460.271555][ T9180] bridge_slave_0: entered promiscuous mode
[  460.350181][ T9287] netlink: 'syz.0.769': attribute type 10 has an invalid length.
[  460.388805][ T9287] team0: Port device netdevsim0 added
[  460.411496][ T9290] netlink: 'syz.0.769': attribute type 10 has an invalid length.
[  460.450519][ T9290] team0: Port device netdevsim0 removed
[  460.465490][ T9290] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  460.482472][ T9180] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.511087][ T9180] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.550533][ T9180] bridge_slave_1: entered allmulticast mode
[  460.597684][    C0] eth0: bad gso: type: 1, size: 1408
[  460.605831][ T9180] bridge_slave_1: entered promiscuous mode
[  461.009813][ T9299] vxfs: WRONG superblock magic 00000000 at 1
[  461.016882][ T9299] vxfs: WRONG superblock magic 00000000 at 8
[  461.023111][ T9299] vxfs: can't find superblock.
[  461.035403][ T9180] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  461.053239][ T9180] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  461.169711][ T9180] team0: Port device team_slave_0 added
[  461.191529][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.225937][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.250084][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  461.250102][   T29] audit: type=1326 audit(1721695455.646:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  461.283943][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.320730][ T9284] ALSA: mixer_oss: invalid OSS volume ''
[  461.344401][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.370099][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.388921][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.417093][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.462081][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.492345][   T25] ftdi_sio 2-1:9.1: FTDI USB Serial Device converter detected
[  461.502718][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.528739][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.531401][   T25] ftdi_sio ttyUSB0: unknown device type: 0xf1bf
[  461.540237][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.566315][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.584612][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.594305][   T25] usb 2-1: USB disconnect, device number 9
[  461.613002][   T29] audit: type=1326 audit(1721695456.006:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  461.639894][   T25] ftdi_sio 2-1:9.1: device disconnected
[  461.663400][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.687410][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.701473][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.733414][ T9108] batman_adv: batadv0: Interface activated: batadv_slave_0
[  461.747945][   T29] audit: type=1326 audit(1721695456.006:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  461.810697][   T29] audit: type=1326 audit(1721695456.006:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  461.838080][ T9180] team0: Port device team_slave_1 added
[  462.613632][   T29] audit: type=1326 audit(1721695456.006:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  462.648841][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.683651][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.693471][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.733181][   T29] audit: type=1326 audit(1721695456.006:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  462.777459][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.815829][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.829099][   T29] audit: type=1326 audit(1721695456.006:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  462.852442][    C0] vkms_vblank_simulate: vblank timer overrun
[  462.852525][ T9057] Bluetooth: hci8: command 0x0c1a tx timeout
[  462.868525][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.873913][ T8635] Bluetooth: hci8: Opcode 0x0c1a failed: -110
[  462.893654][ T8635] Bluetooth: hci8: Error when powering off device on rfkill (-110)
[  462.899744][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.954345][   T29] audit: type=1326 audit(1721695456.006:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  462.993760][   T29] audit: type=1326 audit(1721695456.036:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9298 comm="syz.3.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  462.995100][    T8] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  463.017053][    C0] vkms_vblank_simulate: vblank timer overrun
[  463.018758][   T29] audit: type=1804 audit(1721695456.406:1163): pid=9316 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.773" name="/newroot/10/bus/bus" dev="overlay" ino=79 res=1 errno=0
[  463.072943][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  463.102536][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  463.153367][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  463.191664][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  463.222441][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  463.243645][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  463.270149][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  463.306617][ T9108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  463.344800][    T8] usb 2-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  463.360904][ T9108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  463.390220][ T9108] batman_adv: batadv0: Interface activated: batadv_slave_1
[  463.405036][    T8] usb 2-1: config 9 has 1 interface, different from the descriptor's value: 3
[  463.427500][    T8] usb 2-1: config 9 has no interface number 0
[  463.467633][    T8] usb 2-1: config 9 interface 1 altsetting 13 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  463.579438][ T9180] batman_adv: batadv0: Adding interface: batadv_slave_0
[  463.607113][ T9180] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.644528][    T8] usb 2-1: config 9 interface 1 has no altsetting 0
[  463.909257][    T8] usb 2-1: New USB device found, idVendor=058b, idProduct=0028, bcdDevice=f1.bf
[  463.923674][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  463.931908][    T8] usb 2-1: Product: 竅ꙵ庠ಝ苼帔喈ﴘᄀ擫ࡖ硟꾲슟쫜⌓ᎭᲘ봔炡욼ᥔ퉛Ɨ쒹饩耮ﷳ틩Ꟊ項ﮠ뛛웓茮극Ὣﭚﱻ㲄曐벶ⷾ푆꣋訫蹋깼⦽㤠葙裏녛ᑓ횠㶴䘁ꖯ莈ౣ┗렍⵶㽠䇪偲铼逑싎렦韪캄迸柋ꢼ䚐ꤏ욽ၾ絭뀰㭀鈢海ꗝ겆핸㕱㕳韛Ὠ훓ᛚ봲蓖꩖藦
[  463.963945][    C0] vkms_vblank_simulate: vblank timer overrun
[  464.036189][ T9325] syz.0.775: attempt to access beyond end of device
[  464.036189][ T9325] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  464.718090][    T8] usb 2-1: Manufacturer: 롚伄ꎷ뜂힗鼭嚵嬵汴푁㚧↷웙㳘㪑嵏₽ᅼ곙ڵ檻騛芪ồ蓼
[  464.764793][    T8] usb 2-1: SerialNumber: Ⰹ
[  464.787804][ T9180] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  464.869748][ T9108] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.902657][ T9108] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  464.933044][ T9108] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  464.958676][ T9108] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.999842][ T9180] batman_adv: batadv0: Adding interface: batadv_slave_1
[  465.009778][ T9180] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  465.058775][ T9180] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  465.219995][    T8] ftdi_sio 2-1:9.1: FTDI USB Serial Device converter detected
[  465.238938][    T8] ftdi_sio ttyUSB0: unknown device type: 0xf1bf
[  465.267063][    T8] usb 2-1: USB disconnect, device number 10
[  465.313420][    T8] ftdi_sio 2-1:9.1: device disconnected
[  466.378222][ T9180] hsr_slave_0: entered promiscuous mode
[  466.407953][ T9180] hsr_slave_1: entered promiscuous mode
[  466.442776][ T9180] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  466.483200][ T9180] Cannot create hsr debugfs directory
[  466.615345][ T9336] netlink: 'syz.0.777': attribute type 10 has an invalid length.
[  466.642777][ T9336] bond0: (slave netdevsim0): Releasing backup interface
[  466.658952][ T9336] team0: Port device netdevsim0 added
[  466.821162][ T9341] netlink: 'syz.3.779': attribute type 10 has an invalid length.
[  466.841800][ T9341] bond0: (slave netdevsim0): Releasing backup interface
[  466.852950][ T9341] team0: Port device netdevsim0 added
[  466.912077][ T9341] netlink: 'syz.3.779': attribute type 10 has an invalid length.
[  466.913720][ T8635] Bluetooth: hci9: Opcode 0x0c1a failed: -110
[  466.923567][ T9057] Bluetooth: hci9: command 0x0c1a tx timeout
[  466.927025][ T8635] Bluetooth: hci9: Error when powering off device on rfkill (-110)
[  466.957461][ T9341] team0: Port device netdevsim0 removed
[  466.978368][ T9341] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  467.131873][ T9180] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.238591][ T9180] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.331738][ T9180] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.421681][ T9180] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.605080][ T9180] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  467.619425][ T9180] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  467.639716][ T9180] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  467.651922][ T9180] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  467.762330][ T9180] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.792588][ T9180] 8021q: adding VLAN 0 to HW filter on device team0
[  467.807197][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.814458][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.832980][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.840120][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  468.072614][ T9180] 8021q: adding VLAN 0 to HW filter on device batadv0
[  468.143228][ T9180] veth0_vlan: entered promiscuous mode
[  468.158517][ T9180] veth1_vlan: entered promiscuous mode
[  468.206618][ T9180] veth0_macvtap: entered promiscuous mode
[  468.220153][ T9180] veth1_macvtap: entered promiscuous mode
[  468.241045][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.252753][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.263377][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.274881][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.285409][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.297774][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.308322][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.318836][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.328787][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.340265][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.350591][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.361271][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.371846][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.382323][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.392173][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.406451][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.416344][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  468.427861][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.440351][ T9180] batman_adv: batadv0: Interface activated: batadv_slave_0
[  468.457215][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.467990][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.479120][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.490691][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.500988][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.511471][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.536862][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.547889][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.558145][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.568684][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.578838][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.589669][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.600864][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.612438][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.622854][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.633336][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.648135][ T9180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  468.658706][ T9180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.670232][ T9180] batman_adv: batadv0: Interface activated: batadv_slave_1
[  468.689502][ T9180] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  468.698668][ T9180] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  468.708880][ T9180] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  468.717709][ T9180] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  469.073825][ T8635] Bluetooth: hci10: Opcode 0x0c1a failed: -110
[  469.074694][ T9057] Bluetooth: hci10: command 0x0c1a tx timeout
[  469.094300][ T8635] Bluetooth: hci10: Error when powering off device on rfkill (-110)
[  470.699228][ T9357] vxfs: WRONG superblock magic 00000000 at 1
[  470.705746][   T29] audit: type=1804 audit(1721695465.036:1164): pid=9368 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.783" name="/newroot/9/bus/bus" dev="overlay" ino=85 res=1 errno=0
[  470.713363][ T9357] vxfs: WRONG superblock magic 00000000 at 8
[  470.735682][ T9357] vxfs: can't find superblock.
[  471.358406][   T29] audit: type=1326 audit(1721695465.756:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9352 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  471.381691][    C0] vkms_vblank_simulate: vblank timer overrun
[  471.409866][   T29] audit: type=1326 audit(1721695465.796:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9352 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  471.433135][    C0] vkms_vblank_simulate: vblank timer overrun
[  471.586324][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  471.604727][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  471.635409][   T29] audit: type=1326 audit(1721695466.036:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9352 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7fc00000
[  471.737352][ T1054] hsr_slave_0: left promiscuous mode
[  471.756176][ T1054] hsr_slave_1: left promiscuous mode
[  471.762487][ T1054] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  471.780503][ T1054] batman_adv: batadv0: Removing interface: batadv_slave_0
[  471.801100][ T1054] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  471.810093][ T1054] batman_adv: batadv0: Removing interface: batadv_slave_1
[  471.851541][ T1054] veth1_macvtap: left promiscuous mode
[  471.859471][ T1054] veth0_macvtap: left promiscuous mode
[  471.865422][ T1054] veth1_vlan: left promiscuous mode
[  471.870757][ T1054] veth0_vlan: left promiscuous mode
[  472.792004][ T1054] team0 (unregistering): Port device team_slave_1 removed
[  472.894979][ T1054] team0 (unregistering): Port device team_slave_0 removed
[  473.884396][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  473.892864][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  474.749425][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  475.183664][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  475.236475][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  475.247946][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  476.082691][   T29] audit: type=1326 audit(1721695470.426:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  476.358324][   T29] audit: type=1326 audit(1721695470.426:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  476.473337][   T29] audit: type=1326 audit(1721695470.426:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fefe0b74950 code=0x7ffc0000
[  476.628120][   T29] audit: type=1326 audit(1721695470.426:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fefe0b776a7 code=0x7ffc0000
[  476.893601][   T29] audit: type=1326 audit(1721695470.426:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  476.916817][    C0] vkms_vblank_simulate: vblank timer overrun
[  477.002485][ T9416] syz.4.736: attempt to access beyond end of device
[  477.002485][ T9416] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  477.762484][   T29] audit: type=1326 audit(1721695470.426:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fefe0b776a7 code=0x7ffc0000
[  477.887469][   T29] audit: type=1326 audit(1721695470.426:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fefe0b74c4a code=0x7ffc0000
[  478.073771][   T29] audit: type=1326 audit(1721695470.426:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  478.802981][   T29] audit: type=1326 audit(1721695470.426:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  479.800828][   T29] audit: type=1326 audit(1721695470.436:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fefe0b75f19 code=0x7ffc0000
[  482.371692][ T2863] bridge_slave_1: left allmulticast mode
[  482.377555][ T2863] bridge_slave_1: left promiscuous mode
[  482.383383][ T2863] bridge0: port 2(bridge_slave_1) entered disabled state
[  482.457812][ T2863] bridge_slave_0: left allmulticast mode
[  482.498601][ T2863] bridge_slave_0: left promiscuous mode
[  482.525202][ T2863] bridge0: port 1(bridge_slave_0) entered disabled state
[  482.605096][ T2863] bridge_slave_1: left allmulticast mode
[  482.623300][ T9465] FAULT_INJECTION: forcing a failure.
[  482.623300][ T9465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.637101][ T9465] CPU: 0 UID: 0 PID: 9465 Comm: syz.1.800 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  482.647463][ T9465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  482.648806][ T2863] bridge_slave_1: left promiscuous mode
[  482.657514][ T9465] Call Trace:
[  482.657526][ T9465]  <TASK>
[  482.657534][ T9465]  dump_stack_lvl+0x16c/0x1f0
[  482.657566][ T9465]  should_fail_ex+0x497/0x5b0
[  482.657603][ T9465]  _copy_to_user+0x30/0xc0
[  482.657630][ T9465]  simple_read_from_buffer+0xd0/0x160
[  482.657661][ T9465]  proc_fail_nth_read+0x1b0/0x290
[  482.657688][ T9465]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  482.657715][ T9465]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  482.657740][ T9465]  vfs_read+0x1d4/0xbd0
[  482.657764][ T9465]  ? __fdget_pos+0xeb/0x180
[  482.657787][ T9465]  ? __pfx_vfs_read+0x10/0x10
[  482.657808][ T9465]  ? __pfx___mutex_lock+0x10/0x10
[  482.657838][ T9465]  ? __fget_files+0x256/0x400
[  482.657873][ T9465]  ksys_read+0x12f/0x260
[  482.657896][ T9465]  ? __pfx_ksys_read+0x10/0x10
[  482.657920][ T9465]  do_syscall_64+0xcd/0x250
[  482.657952][ T9465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.657981][ T9465] RIP: 0033:0x7f0fbe7749fc
[  482.658001][ T9465] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  482.658025][ T9465] RSP: 002b:00007f0fbf5a2040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  482.658050][ T9465] RAX: ffffffffffffffda RBX: 00007f0fbe906038 RCX: 00007f0fbe7749fc
[  482.658067][ T9465] RDX: 000000000000000f RSI: 00007f0fbf5a20b0 RDI: 0000000000000004
[  482.658083][ T9465] RBP: 00007f0fbf5a20a0 R08: 0000000000000000 R09: 0000000000000000
[  482.658099][ T9465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.658115][ T9465] R13: 000000000000006e R14: 00007f0fbe906038 R15: 00007ffc10578a68
[  482.658135][ T9465]  </TASK>
[  482.970637][ T2863] bridge0: port 2(bridge_slave_1) entered disabled state
[  482.992125][ T2863] bridge_slave_0: left allmulticast mode
[  483.075123][ T2863] bridge_slave_0: left promiscuous mode
[  483.126794][ T2863] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.193165][ T2863] bridge_slave_1: left allmulticast mode
[  483.243168][ T2863] bridge_slave_1: left promiscuous mode
[  483.327704][ T2863] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.400550][ T2863] bridge_slave_0: left allmulticast mode
[  483.418294][ T2863] bridge_slave_0: left promiscuous mode
[  483.440818][ T2863] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.495056][ T2863] bridge_slave_1: left allmulticast mode
[  483.555398][ T2863] bridge_slave_1: left promiscuous mode
[  483.592655][ T2863] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.759948][ T2863] bridge_slave_0: left allmulticast mode
[  483.809102][ T2863] bridge_slave_0: left promiscuous mode
[  483.906479][ T2863] bridge0: port 1(bridge_slave_0) entered disabled state
[  484.394900][ T9490] syz.3.802: attempt to access beyond end of device
[  484.394900][ T9490] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  485.328639][ T9493] vxfs: WRONG superblock magic 00000000 at 1
[  485.372359][ T9493] vxfs: WRONG superblock magic 00000000 at 8
[  485.391250][ T9493] vxfs: can't find superblock.
[  487.063985][ T9506] syz.2.805: attempt to access beyond end of device
[  487.063985][ T9506] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  488.162584][ T2863] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  488.184638][ T2863] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  488.201144][ T2863] bond0 (unregistering): Released all slaves
[  488.314774][ T2863] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  488.327432][ T2863] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  488.340689][ T2863] bond0 (unregistering): Released all slaves
[  488.554258][ T2863] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  488.555065][ T9511] FAULT_INJECTION: forcing a failure.
[  488.555065][ T9511] name failslab, interval 1, probability 0, space 0, times 0
[  488.576957][ T9511] CPU: 1 UID: 0 PID: 9511 Comm: syz.2.807 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  488.587233][ T9511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  488.597294][ T9511] Call Trace:
[  488.600572][ T9511]  <TASK>
[  488.603524][ T9511]  dump_stack_lvl+0x16c/0x1f0
[  488.608227][ T9511]  should_fail_ex+0x497/0x5b0
[  488.612920][ T9511]  ? fs_reclaim_acquire+0xae/0x160
[  488.618021][ T9511]  should_failslab+0xc2/0x120
[  488.622692][ T9511]  __kmalloc_noprof+0xcb/0x400
[  488.627532][ T9511]  ? __pfx_lock_acquire+0x10/0x10
[  488.632549][ T9511]  tomoyo_realpath_from_path+0xb9/0x720
[  488.638102][ T9511]  ? tomoyo_profile+0x47/0x60
[  488.642811][ T9511]  tomoyo_path_number_perm+0x245/0x590
[  488.648281][ T9511]  ? tomoyo_path_number_perm+0x232/0x590
[  488.653918][ T9511]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  488.659893][ T9511]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  488.665870][ T9511]  ? __fget_files+0x256/0x400
[  488.670550][ T9511]  security_file_ioctl+0x75/0xc0
[  488.675485][ T9511]  __x64_sys_ioctl+0xbb/0x220
[  488.680160][ T9511]  do_syscall_64+0xcd/0x250
[  488.684675][ T9511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.690587][ T9511] RIP: 0033:0x7f4084175f19
[  488.694996][ T9511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.714599][ T9511] RSP: 002b:00007f4084ff7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  488.723007][ T9511] RAX: ffffffffffffffda RBX: 00007f4084305f60 RCX: 00007f4084175f19
[  488.730973][ T9511] RDX: 0000000000000000 RSI: 0000000000004c09 RDI: 0000000000000003
[  488.738939][ T9511] RBP: 00007f4084ff70a0 R08: 0000000000000000 R09: 0000000000000000
[  488.747340][ T9511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  488.755317][ T9511] R13: 000000000000000b R14: 00007f4084305f60 R15: 00007ffd86334ac8
[  488.763298][ T9511]  </TASK>
[  488.782952][ T9511] ERROR: Out of memory at tomoyo_realpath_from_path.
[  488.811409][ T2863] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  488.851486][ T2863] bond0 (unregistering): Released all slaves
[  489.027666][ T2863] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  489.047979][ T2863] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  489.070269][ T2863] bond0 (unregistering): Released all slaves
[  491.763666][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  491.763687][   T29] audit: type=1326 audit(1721695486.066:1204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9536 comm="syz.0.813" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x0
[  492.214689][ T8649] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  492.637530][ T8649] usb 4-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  492.647849][ T8649] usb 4-1: config 9 has 1 interface, different from the descriptor's value: 3
[  492.656863][ T8649] usb 4-1: config 9 has no interface number 0
[  492.665234][ T8649] usb 4-1: config 9 interface 1 altsetting 13 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  493.385784][ T9553] syz.4.814: attempt to access beyond end of device
[  493.385784][ T9553] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  493.423024][ T8649] usb 4-1: config 9 interface 1 has no altsetting 0
[  493.491633][ T9551] FAULT_INJECTION: forcing a failure.
[  493.491633][ T9551] name failslab, interval 1, probability 0, space 0, times 0
[  493.505045][ T9551] CPU: 1 UID: 0 PID: 9551 Comm: syz.0.815 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  493.515311][ T9551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  493.525382][ T9551] Call Trace:
[  493.528673][ T9551]  <TASK>
[  493.531622][ T9551]  dump_stack_lvl+0x16c/0x1f0
[  493.536316][ T9551]  should_fail_ex+0x497/0x5b0
[  493.540990][ T9551]  ? fs_reclaim_acquire+0xae/0x160
[  493.546106][ T9551]  should_failslab+0xc2/0x120
[  493.550773][ T9551]  __kmalloc_cache_noprof+0x6b/0x300
[  493.556047][ T9551]  ? alloc_pipe_info+0x10e/0x590
[  493.560973][ T9551]  alloc_pipe_info+0x10e/0x590
[  493.565742][ T9551]  ? __pfx___lock_acquire+0x10/0x10
[  493.570958][ T9551]  splice_direct_to_actor+0x79c/0xa40
[  493.576350][ T9551]  ? irqentry_exit+0x3b/0x90
[  493.580934][ T9551]  ? __pfx_direct_splice_actor+0x10/0x10
[  493.586560][ T9551]  ? lockdep_hardirqs_on+0x7c/0x110
[  493.591752][ T9551]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  493.597640][ T9551]  ? do_splice_direct+0x15b/0x250
[  493.602658][ T9551]  ? __pfx_direct_splice_actor+0x10/0x10
[  493.608287][ T9551]  do_splice_direct+0x17e/0x250
[  493.613130][ T9551]  ? __pfx_do_splice_direct+0x10/0x10
[  493.618494][ T9551]  ? avc_policy_seqno+0x9/0x20
[  493.623255][ T9551]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  493.629144][ T9551]  do_sendfile+0xb1e/0xe50
[  493.633567][ T9551]  ? __pfx_do_sendfile+0x10/0x10
[  493.638502][ T9551]  __x64_sys_sendfile64+0x1da/0x220
[  493.643693][ T9551]  ? ksys_write+0x1ab/0x260
[  493.648182][ T9551]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  493.653893][ T9551]  do_syscall_64+0xcd/0x250
[  493.658390][ T9551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.664288][ T9551] RIP: 0033:0x7fefe0b75f19
[  493.668710][ T9551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  493.688315][ T9551] RSP: 002b:00007fefe18d4048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  493.696719][ T9551] RAX: ffffffffffffffda RBX: 00007fefe0d06038 RCX: 00007fefe0b75f19
[  493.704683][ T9551] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[  493.712635][ T9551] RBP: 00007fefe18d40a0 R08: 0000000000000000 R09: 0000000000000000
[  493.720596][ T9551] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  493.728556][ T9551] R13: 000000000000006e R14: 00007fefe0d06038 R15: 00007ffebcaab1b8
[  493.736516][ T9551]  </TASK>
[  493.739546][    C1] vkms_vblank_simulate: vblank timer overrun
[  494.006657][ T8649] usb 4-1: string descriptor 0 read error: -71
[  494.012945][ T8649] usb 4-1: New USB device found, idVendor=058b, idProduct=0028, bcdDevice=f1.bf
[  494.036350][ T8649] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.112121][ T8649] usb 4-1: can't set config #9, error -71
[  494.161718][ T8649] usb 4-1: USB disconnect, device number 9
[  495.459827][ T9562] netlink: 20 bytes leftover after parsing attributes in process `syz.3.820'.
[  495.553567][ T9571] FAULT_INJECTION: forcing a failure.
[  495.553567][ T9571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  495.568451][ T9571] CPU: 0 UID: 0 PID: 9571 Comm: syz.2.818 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  495.578716][ T9571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  495.588778][ T9571] Call Trace:
[  495.592064][ T9571]  <TASK>
[  495.595003][ T9571]  dump_stack_lvl+0x16c/0x1f0
[  495.599700][ T9571]  should_fail_ex+0x497/0x5b0
[  495.604397][ T9571]  _copy_from_user+0x30/0xf0
[  495.609004][ T9571]  __sys_bpf+0x21c/0x4a20
[  495.613353][ T9571]  ? ksys_write+0x21c/0x260
[  495.617876][ T9571]  ? reacquire_held_locks+0x400/0x4c0
[  495.623270][ T9571]  ? __pfx___sys_bpf+0x10/0x10
[  495.628051][ T9571]  ? vfs_write+0x14d/0x1140
[  495.632567][ T9571]  ? __mutex_unlock_slowpath+0x164/0x650
[  495.638228][ T9571]  ? fput+0x32/0x390
[  495.642144][ T9571]  ? ksys_write+0x1ab/0x260
[  495.646664][ T9571]  ? __pfx_ksys_write+0x10/0x10
[  495.651528][ T9571]  __x64_sys_bpf+0x78/0xc0
[  495.655966][ T9571]  ? lockdep_hardirqs_on+0x7c/0x110
[  495.661184][ T9571]  do_syscall_64+0xcd/0x250
[  495.665716][ T9571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.671627][ T9571] RIP: 0033:0x7f4084175f19
[  495.676051][ T9571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.695674][ T9571] RSP: 002b:00007f4084fb5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  495.704103][ T9571] RAX: ffffffffffffffda RBX: 00007f4084306110 RCX: 00007f4084175f19
[  495.712082][ T9571] RDX: 0000000000000038 RSI: 00000000200001c0 RDI: 000000000000001a
[  495.720062][ T9571] RBP: 00007f4084fb50a0 R08: 0000000000000000 R09: 0000000000000000
[  495.728044][ T9571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.736022][ T9571] R13: 000000000000006e R14: 00007f4084306110 R15: 00007ffd86334ac8
[  495.744010][ T9571]  </TASK>
[  496.163739][   T29] audit: type=1804 audit(1721695490.506:1205): pid=9572 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.819" name="/newroot/6/bus/bus" dev="overlay" ino=57 res=1 errno=0
[  497.462695][ T9593] netlink: 12 bytes leftover after parsing attributes in process `syz.1.825'.
[  497.484143][ T2863] hsr_slave_0: left promiscuous mode
[  497.518088][ T2863] hsr_slave_1: left promiscuous mode
[  497.571097][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  497.605018][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.620738][ T9600] FAULT_INJECTION: forcing a failure.
[  497.620738][ T9600] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  497.649692][ T9600] CPU: 1 UID: 0 PID: 9600 Comm: syz.0.826 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  497.659960][ T9600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  497.670013][ T9600] Call Trace:
[  497.673287][ T9600]  <TASK>
[  497.676217][ T9600]  dump_stack_lvl+0x16c/0x1f0
[  497.680915][ T9600]  should_fail_ex+0x497/0x5b0
[  497.685610][ T9600]  _copy_from_user+0x30/0xf0
[  497.690262][ T9600]  copy_msghdr_from_user+0x99/0x160
[  497.695489][ T9600]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  497.701298][ T9600]  ? find_held_lock+0x2d/0x110
[  497.706069][ T9600]  ___sys_recvmsg+0xdc/0x1a0
[  497.710658][ T9600]  ? __pfx____sys_recvmsg+0x10/0x10
[  497.715860][ T9600]  ? __fget_light+0x173/0x210
[  497.720545][ T9600]  do_recvmmsg+0x2ba/0x750
[  497.724967][ T9600]  ? __pfx_do_recvmmsg+0x10/0x10
[  497.729906][ T9600]  ? vfs_write+0x14d/0x1140
[  497.734408][ T9600]  ? __mutex_unlock_slowpath+0x164/0x650
[  497.740047][ T9600]  __x64_sys_recvmmsg+0x239/0x290
[  497.745073][ T9600]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  497.750618][ T9600]  do_syscall_64+0xcd/0x250
[  497.755126][ T9600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.761018][ T9600] RIP: 0033:0x7fefe0b75f19
[  497.765427][ T9600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.785389][ T9600] RSP: 002b:00007fefe18d4048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  497.793810][ T9600] RAX: ffffffffffffffda RBX: 00007fefe0d06038 RCX: 00007fefe0b75f19
[  497.801778][ T9600] RDX: 040000000000049e RSI: 0000000020000300 RDI: 0000000000000006
[  497.809836][ T9600] RBP: 00007fefe18d40a0 R08: 0000000000000000 R09: 0000000000000000
[  497.817815][ T9600] R10: 00001000000000fe R11: 0000000000000246 R12: 0000000000000001
[  497.825786][ T9600] R13: 000000000000006e R14: 00007fefe0d06038 R15: 00007ffebcaab1b8
[  497.833757][ T9600]  </TASK>
[  497.836967][    C1] vkms_vblank_simulate: vblank timer overrun
[  497.979719][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  497.987436][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.022320][ T2863] hsr_slave_0: left promiscuous mode
[  498.028947][ T2863] hsr_slave_1: left promiscuous mode
[  498.052550][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  498.327306][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_0
[  498.338059][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  498.346837][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.389696][ T2863] hsr_slave_0: left promiscuous mode
[  498.404533][ T2863] hsr_slave_1: left promiscuous mode
[  498.422316][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  498.466769][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_0
[  498.506539][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  498.538329][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.561849][ T9610] FAULT_INJECTION: forcing a failure.
[  498.561849][ T9610] name failslab, interval 1, probability 0, space 0, times 0
[  498.582492][ T9610] CPU: 1 UID: 0 PID: 9610 Comm: syz.1.828 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  498.592766][ T9610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  498.602837][ T9610] Call Trace:
[  498.606130][ T9610]  <TASK>
[  498.609075][ T9610]  dump_stack_lvl+0x16c/0x1f0
[  498.613781][ T9610]  should_fail_ex+0x497/0x5b0
[  498.618480][ T9610]  ? fs_reclaim_acquire+0xae/0x160
[  498.623607][ T9610]  should_failslab+0xc2/0x120
[  498.628314][ T9610]  __kmalloc_cache_noprof+0x6b/0x300
[  498.633622][ T9610]  ? alloc_pipe_info+0x10e/0x590
[  498.638580][ T9610]  alloc_pipe_info+0x10e/0x590
[  498.643363][ T9610]  ? __pfx___lock_acquire+0x10/0x10
[  498.648582][ T9610]  splice_direct_to_actor+0x79c/0xa40
[  498.653977][ T9610]  ? __pfx_direct_splice_actor+0x10/0x10
[  498.659631][ T9610]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  498.665548][ T9610]  ? __pfx___might_resched+0x10/0x10
[  498.670856][ T9610]  do_splice_direct+0x17e/0x250
[  498.675730][ T9610]  ? __pfx_do_splice_direct+0x10/0x10
[  498.681126][ T9610]  ? avc_policy_seqno+0x9/0x20
[  498.685915][ T9610]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  498.691832][ T9610]  do_sendfile+0xb1e/0xe50
[  498.696276][ T9610]  ? __pfx_do_sendfile+0x10/0x10
[  498.701239][ T9610]  __x64_sys_sendfile64+0x1da/0x220
[  498.706428][ T9610]  ? ksys_write+0x1ab/0x260
[  498.710928][ T9610]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  498.716637][ T9610]  do_syscall_64+0xcd/0x250
[  498.721132][ T9610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.727014][ T9610] RIP: 0033:0x7f0fbe775f19
[  498.731412][ T9610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.751006][ T9610] RSP: 002b:00007f0fbf5a2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  498.759402][ T9610] RAX: ffffffffffffffda RBX: 00007f0fbe906038 RCX: 00007f0fbe775f19
[  498.767358][ T9610] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[  498.775312][ T9610] RBP: 00007f0fbf5a20a0 R08: 0000000000000000 R09: 0000000000000000
[  498.783266][ T9610] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  498.791229][ T9610] R13: 000000000000006e R14: 00007f0fbe906038 R15: 00007ffc10578a68
[  498.799190][ T9610]  </TASK>
[  498.802258][    C1] vkms_vblank_simulate: vblank timer overrun
[  498.823202][ T2863] hsr_slave_0: left promiscuous mode
[  498.853506][ T2863] hsr_slave_1: left promiscuous mode
[  498.883128][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  498.919775][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_0
[  499.000844][ T2863] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  499.018638][ T2863] batman_adv: batadv0: Removing interface: batadv_slave_1
[  499.222215][ T2863] veth1_macvtap: left promiscuous mode
[  499.242878][ T2863] veth0_macvtap: left promiscuous mode
[  499.248903][ T2863] veth1_vlan: left promiscuous mode
[  499.264294][ T2863] veth0_vlan: left promiscuous mode
[  499.304314][ T2863] veth1_macvtap: left allmulticast mode
[  499.309947][ T2863] veth1_macvtap: left promiscuous mode
[  499.333566][ T2863] veth0_macvtap: left promiscuous mode
[  499.339465][   T29] audit: type=1400 audit(1721695493.726:1206): avc:  denied  { nlmsg_read } for  pid=9622 comm="syz.2.833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  499.343747][ T9623] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  499.367139][ T9623] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  499.374521][ T2863] veth1_vlan: left promiscuous mode
[  499.439168][ T2863] veth0_vlan: left promiscuous mode
[  499.510288][ T2863] veth1_macvtap: left promiscuous mode
[  499.533929][ T2863] veth0_macvtap: left promiscuous mode
[  499.549997][ T2863] veth1_vlan: left promiscuous mode
[  499.561749][ T2863] veth0_vlan: left promiscuous mode
[  499.579150][ T2863] veth1_macvtap: left promiscuous mode
[  499.592057][ T2863] veth0_macvtap: left promiscuous mode
[  499.609208][ T2863] veth1_vlan: left promiscuous mode
[  499.623097][ T2863] veth0_vlan: left promiscuous mode
[  499.802257][ T9626] syz.1.832: attempt to access beyond end of device
[  499.802257][ T9626] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  500.712877][ T9630] sctp: [Deprecated]: syz.0.834 (pid 9630) Use of int in maxseg socket option.
[  500.712877][ T9630] Use struct sctp_assoc_value instead
[  501.055254][ T9633] FAULT_INJECTION: forcing a failure.
[  501.055254][ T9633] name failslab, interval 1, probability 0, space 0, times 0
[  501.101635][ T9633] CPU: 1 UID: 0 PID: 9633 Comm: syz.1.835 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  501.111910][ T9633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  501.121977][ T9633] Call Trace:
[  501.125259][ T9633]  <TASK>
[  501.128206][ T9633]  dump_stack_lvl+0x16c/0x1f0
[  501.132919][ T9633]  should_fail_ex+0x497/0x5b0
[  501.137627][ T9633]  ? fs_reclaim_acquire+0xae/0x160
[  501.142768][ T9633]  should_failslab+0xc2/0x120
[  501.147478][ T9633]  __kmalloc_noprof+0xcb/0x400
[  501.152256][ T9633]  ? __pfx_lock_acquire+0x10/0x10
[  501.157289][ T9633]  tomoyo_realpath_from_path+0xb9/0x720
[  501.162862][ T9633]  ? tomoyo_profile+0x47/0x60
[  501.167551][ T9633]  tomoyo_path_number_perm+0x245/0x590
[  501.173011][ T9633]  ? tomoyo_path_number_perm+0x232/0x590
[  501.178644][ T9633]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  501.184626][ T9633]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  501.190611][ T9633]  ? __fget_files+0x256/0x400
[  501.195295][ T9633]  security_file_ioctl+0x75/0xc0
[  501.200232][ T9633]  __x64_sys_ioctl+0xbb/0x220
[  501.204915][ T9633]  do_syscall_64+0xcd/0x250
[  501.209421][ T9633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.215315][ T9633] RIP: 0033:0x7f0fbe775f19
[  501.219726][ T9633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.239327][ T9633] RSP: 002b:00007f0fbf5c3048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  501.247738][ T9633] RAX: ffffffffffffffda RBX: 00007f0fbe905f60 RCX: 00007f0fbe775f19
[  501.255704][ T9633] RDX: 0000000020000080 RSI: 00000000c0285629 RDI: 0000000000000003
[  501.263670][ T9633] RBP: 00007f0fbf5c30a0 R08: 0000000000000000 R09: 0000000000000000
[  501.271638][ T9633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.279603][ T9633] R13: 000000000000000b R14: 00007f0fbe905f60 R15: 00007ffc10578a68
[  501.287575][ T9633]  </TASK>
[  501.290699][    C1] vkms_vblank_simulate: vblank timer overrun
[  501.317450][ T9633] ERROR: Out of memory at tomoyo_realpath_from_path.
[  501.432767][   T29] audit: type=1400 audit(1721695495.826:1207): avc:  denied  { bind } for  pid=9634 comm="syz.1.836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  501.491758][   T29] audit: type=1400 audit(1721695495.826:1208): avc:  denied  { node_bind } for  pid=9634 comm="syz.1.836" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  501.961163][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[  501.967612][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[  502.042029][ T2863] team0 (unregistering): Port device team_slave_1 removed
[  502.086275][ T2863] team0 (unregistering): Port device team_slave_0 removed
[  502.816560][ T9645] netlink: 12 bytes leftover after parsing attributes in process `syz.1.838'.
[  503.296940][ T2863] team0 (unregistering): Port device team_slave_1 removed
[  503.356177][ T2863] team0 (unregistering): Port device team_slave_0 removed
[  504.080023][   T29] audit: type=1326 audit(1721695498.486:1209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.106460][   T29] audit: type=1326 audit(1721695498.486:1210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.431547][ T2863] team0 (unregistering): Port device team_slave_1 removed
[  504.483406][ T2863] team0 (unregistering): Port device team_slave_0 removed
[  504.578546][   T29] audit: type=1326 audit(1721695498.986:1211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.635315][   T29] audit: type=1326 audit(1721695498.986:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.670052][   T29] audit: type=1326 audit(1721695498.986:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.704955][   T29] audit: type=1326 audit(1721695498.986:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.731759][   T29] audit: type=1326 audit(1721695498.986:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.756960][   T29] audit: type=1326 audit(1721695498.986:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.780659][   T29] audit: type=1326 audit(1721695498.986:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.804399][   T29] audit: type=1326 audit(1721695498.986:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.827992][   T29] audit: type=1326 audit(1721695498.986:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  504.855481][   T29] audit: type=1326 audit(1721695498.986:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9646 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fbe775f19 code=0x7fc00000
[  505.447907][ T2863] team0 (unregistering): Port device team_slave_1 removed
[  505.491956][ T2863] team0 (unregistering): Port device team_slave_0 removed
[  505.964304][ T9624] hsr_slave_0: left promiscuous mode
[  505.970886][ T9624] hsr_slave_1: left promiscuous mode
[  506.185693][ T9659] FAULT_INJECTION: forcing a failure.
[  506.185693][ T9659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  506.266794][ T9659] CPU: 1 UID: 0 PID: 9659 Comm: syz.4.840 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  506.277079][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  506.287151][ T9659] Call Trace:
[  506.290442][ T9659]  <TASK>
[  506.293385][ T9659]  dump_stack_lvl+0x16c/0x1f0
[  506.298090][ T9659]  should_fail_ex+0x497/0x5b0
[  506.302790][ T9659]  _copy_from_user+0x30/0xf0
[  506.307408][ T9659]  copy_msghdr_from_user+0x99/0x160
[  506.312633][ T9659]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  506.318467][ T9659]  ? find_held_lock+0x2d/0x110
[  506.323265][ T9659]  ? __pfx___lock_acquire+0x10/0x10
[  506.328490][ T9659]  ___sys_sendmsg+0xff/0x1e0
[  506.333104][ T9659]  ? __pfx____sys_sendmsg+0x10/0x10
[  506.339896][ T9659]  ? ksys_write+0x21c/0x260
[  506.339925][ T9659]  ? __fget_light+0x173/0x210
[  506.339958][ T9659]  __sys_sendmsg+0x117/0x1f0
[  506.339984][ T9659]  ? __pfx___sys_sendmsg+0x10/0x10
[  506.340014][ T9659]  do_syscall_64+0xcd/0x250
[  506.340046][ T9659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.340081][ T9659] RIP: 0033:0x7f5d66775f19
[  506.340100][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  506.340121][ T9659] RSP: 002b:00007f5d67521048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  506.340146][ T9659] RAX: ffffffffffffffda RBX: 00007f5d66906038 RCX: 00007f5d66775f19
[  506.340163][ T9659] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000008
[  506.340179][ T9659] RBP: 00007f5d675210a0 R08: 0000000000000000 R09: 0000000000000000
[  506.340195][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  506.340209][ T9659] R13: 000000000000006e R14: 00007f5d66906038 R15: 00007ffdb1bd9298
[  506.340227][ T9659]  </TASK>
[  507.470652][ T9664] tty tty1: ldisc open failed (-12), clearing slot 0
[  507.487125][ T9665] tty tty1: ldisc open failed (-12), clearing slot 0
[  507.589844][ T9683] FAULT_INJECTION: forcing a failure.
[  507.589844][ T9683] name failslab, interval 1, probability 0, space 0, times 0
[  507.612378][ T9683] CPU: 0 UID: 0 PID: 9683 Comm: syz.2.847 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  507.622645][ T9683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  507.632697][ T9683] Call Trace:
[  507.635972][ T9683]  <TASK>
[  507.638898][ T9683]  dump_stack_lvl+0x16c/0x1f0
[  507.643585][ T9683]  should_fail_ex+0x497/0x5b0
[  507.648262][ T9683]  ? fs_reclaim_acquire+0xae/0x160
[  507.653371][ T9683]  should_failslab+0xc2/0x120
[  507.658054][ T9683]  kmem_cache_alloc_node_noprof+0x71/0x310
[  507.663860][ T9683]  ? __alloc_skb+0x2b1/0x380
[  507.668449][ T9683]  __alloc_skb+0x2b1/0x380
[  507.672861][ T9683]  ? __pfx___alloc_skb+0x10/0x10
[  507.677795][ T9683]  ? hlock_class+0x4e/0x130
[  507.682290][ T9683]  ? __lock_acquire+0x1620/0x3cb0
[  507.687316][ T9683]  __ip6_append_data.isra.0+0x2976/0x4450
[  507.693044][ T9683]  ? __pfx_raw6_getfrag+0x10/0x10
[  507.698068][ T9683]  ? __pfx___ip6_append_data.isra.0+0x10/0x10
[  507.704140][ T9683]  ? ip6_mtu+0x231/0x4a0
[  507.708380][ T9683]  ? ip6_setup_cork+0xbdc/0x1370
[  507.713320][ T9683]  ip6_append_data+0x1e6/0x500
[  507.718090][ T9683]  ? __pfx_raw6_getfrag+0x10/0x10
[  507.723162][ T9683]  rawv6_sendmsg+0x1565/0x43f0
[  507.727932][ T9683]  ? __pfx_lock_release+0x10/0x10
[  507.732958][ T9683]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  507.738070][ T9683]  ? avc_has_perm_noaudit+0x143/0x3a0
[  507.743448][ T9683]  ? __pfx_avc_has_perm+0x10/0x10
[  507.748476][ T9683]  ? sock_has_perm+0x25a/0x2f0
[  507.753235][ T9683]  ? __pfx_sock_has_perm+0x10/0x10
[  507.758344][ T9683]  ? avc_has_perm_noaudit+0x143/0x3a0
[  507.763718][ T9683]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  507.768828][ T9683]  ? inet_sendmsg+0x119/0x140
[  507.773504][ T9683]  inet_sendmsg+0x119/0x140
[  507.778015][ T9683]  sock_write_iter+0x4b8/0x5c0
[  507.782785][ T9683]  ? __pfx_sock_write_iter+0x10/0x10
[  507.788076][ T9683]  ? __pfx_file_has_perm+0x10/0x10
[  507.793185][ T9683]  do_iter_readv_writev+0x531/0x800
[  507.798390][ T9683]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  507.804123][ T9683]  ? selinux_file_permission+0x125/0x590
[  507.809766][ T9683]  ? security_file_permission+0x98/0xc0
[  507.815315][ T9683]  vfs_writev+0x36f/0xde0
[  507.819650][ T9683]  ? __pfx_vfs_writev+0x10/0x10
[  507.824505][ T9683]  ? __fget_files+0x24c/0x400
[  507.829190][ T9683]  ? do_writev+0x287/0x370
[  507.833612][ T9683]  do_writev+0x287/0x370
[  507.837872][ T9683]  ? __pfx_do_writev+0x10/0x10
[  507.842645][ T9683]  do_syscall_64+0xcd/0x250
[  507.847155][ T9683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.853048][ T9683] RIP: 0033:0x7f4084175f19
[  507.857457][ T9683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.877062][ T9683] RSP: 002b:00007f4084ff7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  507.885471][ T9683] RAX: ffffffffffffffda RBX: 00007f4084305f60 RCX: 00007f4084175f19
[  507.893437][ T9683] RDX: 0000000000000003 RSI: 0000000020000340 RDI: 0000000000000003
[  507.901401][ T9683] RBP: 00007f4084ff70a0 R08: 0000000000000000 R09: 0000000000000000
[  507.909366][ T9683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.917331][ T9683] R13: 000000000000000b R14: 00007f4084305f60 R15: 00007ffd86334ac8
[  507.925303][ T9683]  </TASK>
[  507.928412][    C0] vkms_vblank_simulate: vblank timer overrun
[  508.589039][ T9694] syz.2.849: attempt to access beyond end of device
[  508.589039][ T9694] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  510.218921][ T9705] sctp: [Deprecated]: syz.2.852 (pid 9705) Use of int in maxseg socket option.
[  510.218921][ T9705] Use struct sctp_assoc_value instead
[  512.164249][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  512.164295][   T29] audit: type=1400 audit(1721695506.566:1281): avc:  denied  { setopt } for  pid=9726 comm="syz.3.858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  512.267286][   T29] audit: type=1400 audit(1721695506.566:1282): avc:  denied  { read } for  pid=9726 comm="syz.3.858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  513.546248][ T9744] syz.0.863: attempt to access beyond end of device
[  513.546248][ T9744] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  514.601125][   T29] audit: type=1326 audit(1721695508.996:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  514.752511][   T29] audit: type=1326 audit(1721695509.026:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f862a574950 code=0x7ffc0000
[  514.884424][   T29] audit: type=1326 audit(1721695509.026:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f862a5776a7 code=0x7ffc0000
[  514.928933][   T29] audit: type=1326 audit(1721695509.026:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  514.956448][   T29] audit: type=1326 audit(1721695509.026:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f862a5776a7 code=0x7ffc0000
[  514.961557][ T9756] input: syz1 as /devices/virtual/input/input26
[  515.056190][ T9750] fuse: Bad value for 'fd'
[  515.193963][   T29] audit: type=1326 audit(1721695509.026:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f862a574c4a code=0x7ffc0000
[  515.277059][   T29] audit: type=1326 audit(1721695509.026:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  515.437327][   T29] audit: type=1326 audit(1721695509.026:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9731 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  516.786165][ T9765] delete_channel: no stack
[  520.436857][ T9790] sctp: [Deprecated]: syz.0.871 (pid 9790) Use of int in maxseg socket option.
[  520.436857][ T9790] Use struct sctp_assoc_value instead
[  520.645007][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  520.645027][   T29] audit: type=1804 audit(1721695514.976:1314): pid=9792 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.872" name="/newroot/21/bus/bus" dev="overlay" ino=145 res=1 errno=0
[  527.118241][ T9816] delete_channel: no stack
[  531.748662][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  531.764256][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  531.772375][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  531.785478][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  531.794700][ T5112] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  531.802446][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  531.821875][ T9057] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  531.832811][ T9057] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  531.886845][ T9057] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  531.900640][ T9057] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  531.910029][ T9057] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  531.923289][ T9057] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  532.476864][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.144969][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.398122][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.021672][ T9057] Bluetooth: hci0: command tx timeout
[  534.545241][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.873233][    C0] eth0: bad gso: type: 1, size: 1408
[  535.685521][   T12] bridge_slave_1: left allmulticast mode
[  535.717701][   T12] bridge_slave_1: left promiscuous mode
[  535.755521][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.836203][   T12] bridge_slave_0: left allmulticast mode
[  535.874373][   T12] bridge_slave_0: left promiscuous mode
[  535.900094][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.033784][ T9057] Bluetooth: hci0: command tx timeout
[  536.362326][   T29] audit: type=1400 audit(1721695530.756:1315): avc:  denied  { read } for  pid=9907 comm="syz.2.895" name="mouse0" dev="devtmpfs" ino=840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  536.473865][   T29] audit: type=1400 audit(1721695530.766:1316): avc:  denied  { open } for  pid=9907 comm="syz.2.895" path="/dev/input/mouse0" dev="devtmpfs" ino=840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  536.547533][   T29] audit: type=1400 audit(1721695530.786:1317): avc:  denied  { ioctl } for  pid=9907 comm="syz.2.895" path="/dev/input/mouse0" dev="devtmpfs" ino=840 ioctlcmd=0x9378 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  537.061620][ T9903] delete_channel: no stack
[  538.113718][ T9057] Bluetooth: hci0: command tx timeout
[  539.004185][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  539.031793][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  539.053254][   T12] bond0 (unregistering): Released all slaves
[  539.179800][ T9851] chnl_net:caif_netlink_parms(): no params data found
[  540.284355][ T9057] Bluetooth: hci0: command tx timeout
[  540.535849][ T9938] FAULT_INJECTION: forcing a failure.
[  540.535849][ T9938] name failslab, interval 1, probability 0, space 0, times 0
[  540.561499][ T9938] CPU: 0 UID: 0 PID: 9938 Comm: syz.3.900 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  540.571785][ T9938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  540.581857][ T9938] Call Trace:
[  540.585156][ T9938]  <TASK>
[  540.588096][ T9938]  dump_stack_lvl+0x16c/0x1f0
[  540.592800][ T9938]  should_fail_ex+0x497/0x5b0
[  540.597499][ T9938]  ? fs_reclaim_acquire+0xae/0x160
[  540.602625][ T9938]  should_failslab+0xc2/0x120
[  540.607317][ T9938]  __kmalloc_node_noprof+0xd1/0x430
[  540.612524][ T9938]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[  540.618002][ T9938]  ? __pfx_mark_lock+0x10/0x10
[  540.622761][ T9938]  __kvmalloc_node_noprof+0x9d/0x1a0
[  540.628043][ T9938]  seq_read_iter+0x830/0x12c0
[  540.632717][ T9938]  seq_read+0x390/0x4d0
[  540.636870][ T9938]  ? __pfx_seq_read+0x10/0x10
[  540.641541][ T9938]  ? __pfx___might_resched+0x10/0x10
[  540.646835][ T9938]  ? selinux_file_permission+0x125/0x590
[  540.652501][ T9938]  ? __pfx_seq_read+0x10/0x10
[  540.657206][ T9938]  proc_reg_read+0x243/0x340
[  540.661825][ T9938]  ? __pfx_proc_reg_read+0x10/0x10
[  540.666958][ T9938]  vfs_read+0x1d4/0xbd0
[  540.671106][ T9938]  ? __fdget_pos+0xeb/0x180
[  540.675602][ T9938]  ? __pfx_vfs_read+0x10/0x10
[  540.680266][ T9938]  ? __pfx___mutex_lock+0x10/0x10
[  540.685287][ T9938]  ? __fget_files+0x256/0x400
[  540.689963][ T9938]  ksys_read+0x12f/0x260
[  540.694193][ T9938]  ? __pfx_ksys_read+0x10/0x10
[  540.698944][ T9938]  do_syscall_64+0xcd/0x250
[  540.703442][ T9938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.709331][ T9938] RIP: 0033:0x7f862a575f19
[  540.713731][ T9938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.733326][ T9938] RSP: 002b:00007f862b36a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  540.741730][ T9938] RAX: ffffffffffffffda RBX: 00007f862a706038 RCX: 00007f862a575f19
[  540.749697][ T9938] RDX: 0000000000002020 RSI: 0000000020008180 RDI: 0000000000000005
[  540.757660][ T9938] RBP: 00007f862b36a0a0 R08: 0000000000000000 R09: 0000000000000000
[  540.765622][ T9938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  540.773586][ T9938] R13: 000000000000006e R14: 00007f862a706038 R15: 00007fff613f7a98
[  540.781553][ T9938]  </TASK>
[  542.530373][   T29] audit: type=1400 audit(1721695536.756:1318): avc:  denied  { create } for  pid=9946 comm="syz.2.903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  542.799934][   T29] audit: type=1400 audit(1721695536.786:1319): avc:  denied  { sys_admin } for  pid=9946 comm="syz.2.903" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  543.013703][   T12] hsr_slave_0: left promiscuous mode
[  543.042973][   T12] hsr_slave_1: left promiscuous mode
[  543.076321][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  543.118104][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  543.195513][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  543.256159][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  543.352957][   T12] veth1_macvtap: left promiscuous mode
[  543.373110][   T12] veth0_macvtap: left promiscuous mode
[  543.396094][   T12] veth1_vlan: left promiscuous mode
[  543.426939][   T12] veth0_vlan: left promiscuous mode
[  547.020859][   T12] team0 (unregistering): Port device team_slave_1 removed
[  547.135393][   T12] team0 (unregistering): Port device team_slave_0 removed
[  548.053743][   T29] audit: type=1804 audit(1721695541.716:1320): pid=10008 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.913" name="/newroot/35/bus/bus" dev="overlay" ino=230 res=1 errno=0
[  548.634305][ T9851] bridge0: port 1(bridge_slave_0) entered blocking state
[  548.641589][ T9851] bridge0: port 1(bridge_slave_0) entered disabled state
[  548.648911][ T9851] bridge_slave_0: entered allmulticast mode
[  548.659111][ T9851] bridge_slave_0: entered promiscuous mode
[  548.737585][ T9851] bridge0: port 2(bridge_slave_1) entered blocking state
[  548.803943][ T9851] bridge0: port 2(bridge_slave_1) entered disabled state
[  548.811435][ T9851] bridge_slave_1: entered allmulticast mode
[  548.825586][ T9851] bridge_slave_1: entered promiscuous mode
[  549.004401][ T9851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  549.780760][ T9851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  550.223593][T10017] netlink: 'syz.0.915': attribute type 10 has an invalid length.
[  550.295533][T10023] netlink: 'syz.0.915': attribute type 10 has an invalid length.
[  550.390965][T10017] input: syz1 as /devices/virtual/input/input27
[  550.439973][T10023] team0: Port device netdevsim0 removed
[  550.495630][T10023] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  550.569305][   T29] audit: type=1326 audit(1721695544.946:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  550.592735][    C1] vkms_vblank_simulate: vblank timer overrun
[  550.662316][   T29] audit: type=1326 audit(1721695544.946:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  550.818256][ T9851] team0: Port device team_slave_0 added
[  550.854875][ T9851] team0: Port device team_slave_1 added
[  550.979586][   T29] audit: type=1326 audit(1721695545.366:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  551.031550][ T9851] batman_adv: batadv0: Adding interface: batadv_slave_0
[  551.052769][ T9851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.078705][    C1] vkms_vblank_simulate: vblank timer overrun
[  551.085806][   T29] audit: type=1326 audit(1721695545.366:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  551.109187][    C1] vkms_vblank_simulate: vblank timer overrun
[  551.165796][ T9851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  551.176649][   T29] audit: type=1326 audit(1721695545.366:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  551.358789][   T29] audit: type=1326 audit(1721695545.366:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  551.387700][ T9851] batman_adv: batadv0: Adding interface: batadv_slave_1
[  551.396981][ T9851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  552.178878][ T9851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  552.227058][   T29] audit: type=1326 audit(1721695545.366:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  552.339411][   T29] audit: type=1326 audit(1721695545.366:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  552.362807][    C1] vkms_vblank_simulate: vblank timer overrun
[  552.610661][   T29] audit: type=1326 audit(1721695545.366:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  552.613324][ T9851] hsr_slave_0: entered promiscuous mode
[  552.937045][ T5150] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  552.943398][ T9057] Bluetooth: hci0: command 0x0c1a tx timeout
[  552.949796][ T5150] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  553.396332][ T9851] hsr_slave_1: entered promiscuous mode
[  553.423571][   T29] audit: type=1326 audit(1721695545.366:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  553.447394][ T9851] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  553.487512][ T9851] Cannot create hsr debugfs directory
[  553.523621][   T29] audit: type=1326 audit(1721695545.366:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  553.613773][   T29] audit: type=1326 audit(1721695545.366:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  554.345937][   T29] audit: type=1326 audit(1721695545.366:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  554.404359][   T29] audit: type=1326 audit(1721695545.366:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  554.456564][   T29] audit: type=1326 audit(1721695545.366:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  554.599520][   T29] audit: type=1326 audit(1721695545.366:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10020 comm="syz.2.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4084175f19 code=0x7fc00000
[  554.732116][   T29] audit: type=1326 audit(1721695545.826:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10011 comm="syz.3.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  554.912297][   T29] audit: type=1326 audit(1721695545.826:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10011 comm="syz.3.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f862a575f19 code=0x7ffc0000
[  555.444028][   T29] audit: type=1326 audit(1721695546.596:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10011 comm="syz.3.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f862a574950 code=0x7ffc0000
[  559.104670][ T9851] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  559.159356][ T9851] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  559.192327][ T9851] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  559.263563][ T9851] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  560.726628][ T9851] 8021q: adding VLAN 0 to HW filter on device bond0
[  560.853013][ T9851] 8021q: adding VLAN 0 to HW filter on device team0
[  560.942387][ T5149] bridge0: port 1(bridge_slave_0) entered blocking state
[  560.949545][ T5149] bridge0: port 1(bridge_slave_0) entered forwarding state
[  561.025986][ T5149] bridge0: port 2(bridge_slave_1) entered blocking state
[  561.033186][ T5149] bridge0: port 2(bridge_slave_1) entered forwarding state
[  563.623721][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  563.623741][   T29] audit: type=1804 audit(1721695557.336:1369): pid=10166 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.938" name="/newroot/55/bus/bus" dev="overlay" ino=347 res=1 errno=0
[  563.664197][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[  563.671787][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[  563.714000][ T5149] usb 3-1: new low-speed USB device number 4 using dummy_hcd
[  563.905002][ T5149] usb 3-1: config index 0 descriptor too short (expected 6427, got 27)
[  563.939206][ T5149] usb 3-1: config 0 has an invalid interface number: 21 but max is 0
[  564.750048][ T5149] usb 3-1: config 0 has no interface number 0
[  564.776371][ T5149] usb 3-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  564.814207][ T5149] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  564.843373][ T5149] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  564.865632][ T5149] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  564.907068][ T5149] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  564.970585][ T5149] usb 3-1: config 0 descriptor??
[  566.012595][ T5149] usb 3-1: can't set config #0, error -71
[  566.052451][ T5149] usb 3-1: USB disconnect, device number 4
[  566.173059][ T9851] 8021q: adding VLAN 0 to HW filter on device batadv0
[  568.382875][ T9851] veth0_vlan: entered promiscuous mode
[  568.591713][ T9851] veth1_vlan: entered promiscuous mode
[  569.320584][ T5147] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  569.613121][ T9851] veth0_macvtap: entered promiscuous mode
[  569.637849][ T9851] veth1_macvtap: entered promiscuous mode
[  569.951541][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.603560][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.653545][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.713570][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.763527][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.803636][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.843560][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.891246][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.990454][ T9851] batman_adv: batadv0: Interface activated: batadv_slave_0
[  571.131230][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.172522][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.333610][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.864925][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.875265][   T29] audit: type=1804 audit(1721695565.906:1370): pid=10249 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.951" name="/newroot/48/bus/bus" dev="overlay" ino=323 res=1 errno=0
[  572.074938][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  572.281991][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  572.292060][ T9851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  572.345522][ T9851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  572.393026][ T9851] batman_adv: batadv0: Interface activated: batadv_slave_1
[  572.469441][ T9851] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  572.488598][ T9851] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  572.530671][ T9851] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  572.563733][ T9851] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  572.807395][ T5147] usb 1-1: device descriptor read/all, error -71
[  574.086343][ T2805] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  574.106642][ T2805] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  575.286465][ T2863] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  575.336445][ T2863] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  576.378234][   T29] audit: type=1400 audit(1721695570.776:1371): avc:  denied  { getopt } for  pid=10310 comm="syz.4.959" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  578.058728][T10328] vxfs: WRONG superblock magic 00000000 at 1
[  578.157530][T10328] vxfs: WRONG superblock magic 00000000 at 8
[  578.163774][T10328] vxfs: can't find superblock.
[  578.550283][T10337] syz.0.963: attempt to access beyond end of device
[  578.550283][T10337] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  580.382618][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  580.397655][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  580.407243][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  580.416761][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  580.427964][ T5112] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  580.438012][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  580.942657][ T2805] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.221782][ T2805] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.432590][T10389] xt_CT: You must specify a L4 protocol and not use inversions on it
[  582.523602][ T9057] Bluetooth: hci0: command tx timeout
[  582.902038][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  582.920623][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  582.934647][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  583.678404][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  583.701922][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  583.723002][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  583.878195][T10406] vxfs: WRONG superblock magic 00000000 at 1
[  583.912072][T10406] vxfs: WRONG superblock magic 00000000 at 8
[  583.918729][T10406] vxfs: can't find superblock.
[  583.961099][ T2805] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  584.653706][ T9057] Bluetooth: hci0: command tx timeout
[  585.795529][ T9057] Bluetooth: hci1: command tx timeout
[  586.683760][ T9057] Bluetooth: hci0: command tx timeout
[  587.570014][ T2805] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  587.726079][T10429] syz.0.977: attempt to access beyond end of device
[  587.726079][T10429] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  588.123677][ T9057] Bluetooth: hci1: command tx timeout
[  588.753581][ T9057] Bluetooth: hci0: command tx timeout
[  589.493833][   T29] audit: type=1804 audit(1721695583.316:1372): pid=10437 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.980" name="/newroot/54/bus/bus" dev="overlay" ino=344 res=1 errno=0
[  590.094465][T10351] chnl_net:caif_netlink_parms(): no params data found
[  590.199703][T10455] FAULT_INJECTION: forcing a failure.
[  590.199703][T10455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  590.212853][T10455] CPU: 0 UID: 0 PID: 10455 Comm: syz.2.983 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  590.223193][T10455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  590.233257][T10455] Call Trace:
[  590.236548][T10455]  <TASK>
[  590.239488][T10455]  dump_stack_lvl+0x16c/0x1f0
[  590.244195][T10455]  should_fail_ex+0x497/0x5b0
[  590.248890][T10455]  _copy_from_user+0x30/0xf0
[  590.253497][T10455]  bpf_test_init.isra.0+0xf1/0x150
[  590.258624][T10455]  bpf_prog_test_run_skb+0x246/0x20f0
[  590.264019][T10455]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  590.269847][T10455]  ? fput+0x32/0x390
[  590.273759][T10455]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  590.279575][T10455]  __sys_bpf+0x10d2/0x4a20
[  590.284017][T10455]  ? finish_task_switch.isra.0+0x150/0xcc0
[  590.289842][T10455]  ? __pfx___sys_bpf+0x10/0x10
[  590.294624][T10455]  ? __switch_to+0x749/0x1180
[  590.299314][T10455]  ? __schedule+0xe3f/0x5490
[  590.303918][T10455]  ? __mutex_unlock_slowpath+0x164/0x650
[  590.309574][T10455]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  590.315654][T10455]  __x64_sys_bpf+0x78/0xc0
[  590.320091][T10455]  ? lockdep_hardirqs_on+0x7c/0x110
[  590.325305][T10455]  do_syscall_64+0xcd/0x250
[  590.329827][T10455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.335734][T10455] RIP: 0033:0x7f4084175f19
[  590.340155][T10455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  590.359780][T10455] RSP: 002b:00007f4084fb5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  590.368208][T10455] RAX: ffffffffffffffda RBX: 00007f4084306110 RCX: 00007f4084175f19
[  590.376196][T10455] RDX: 0000000000000048 RSI: 0000000020000340 RDI: 000000000000000a
[  590.384176][T10455] RBP: 00007f4084fb50a0 R08: 0000000000000000 R09: 0000000000000000
[  590.392154][T10455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  590.400129][T10455] R13: 000000000000006e R14: 00007f4084306110 R15: 00007ffd86334ac8
[  590.408117][T10455]  </TASK>
[  590.414107][ T9057] Bluetooth: hci1: command tx timeout
[  590.851066][ T2805] bridge_slave_1: left allmulticast mode
[  590.865118][ T2805] bridge_slave_1: left promiscuous mode
[  590.871467][ T2805] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.900017][   T29] audit: type=1400 audit(1721695585.296:1373): avc:  denied  { ioctl } for  pid=10459 comm="syz.0.984" path="socket:[37329]" dev="sockfs" ino=37329 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  590.924737][    C1] vkms_vblank_simulate: vblank timer overrun
[  590.932632][ T2805] bridge_slave_0: left allmulticast mode
[  590.938541][ T2805] bridge_slave_0: left promiscuous mode
[  590.945173][ T2805] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.386882][   T29] audit: type=1804 audit(1721695586.726:1374): pid=10473 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.987" name="/newroot/70/bus/bus" dev="overlay" ino=436 res=1 errno=0
[  592.409483][    C1] vkms_vblank_simulate: vblank timer overrun
[  592.439821][ T9057] Bluetooth: hci1: command tx timeout
[  593.239550][ T2805] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  593.265046][ T2805] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  593.298230][ T2805] bond0 (unregistering): Released all slaves
[  593.417824][T10484] vxfs: WRONG superblock magic 00000000 at 1
[  593.475669][T10484] vxfs: WRONG superblock magic 00000000 at 8
[  593.667449][T10484] vxfs: can't find superblock.
[  593.814107][T10496] syz.1.990: attempt to access beyond end of device
[  593.814107][T10496] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  594.649418][T10397] chnl_net:caif_netlink_parms(): no params data found
[  594.793570][T10351] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.800749][T10351] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.997713][T10351] bridge_slave_0: entered allmulticast mode
[  595.015258][T10351] bridge_slave_0: entered promiscuous mode
[  596.219746][T10351] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.261391][T10351] bridge0: port 2(bridge_slave_1) entered disabled state
[  596.318347][T10351] bridge_slave_1: entered allmulticast mode
[  596.369435][T10351] bridge_slave_1: entered promiscuous mode
[  596.716203][T10351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  596.984537][ T2805] hsr_slave_0: left promiscuous mode
[  597.009774][ T2805] hsr_slave_1: left promiscuous mode
[  597.079626][ T2805] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  597.088508][T10511] delete_channel: no stack
[  597.098610][ T2805] batman_adv: batadv0: Removing interface: batadv_slave_0
[  597.138459][ T2805] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  597.322514][ T2805] batman_adv: batadv0: Removing interface: batadv_slave_1
[  597.417819][ T2805] veth1_macvtap: left promiscuous mode
[  597.423643][ T2805] veth0_macvtap: left promiscuous mode
[  597.429902][ T2805] veth1_vlan: left promiscuous mode
[  597.436469][ T2805] veth0_vlan: left promiscuous mode
[  599.972053][ T2805] team0 (unregistering): Port device team_slave_1 removed
[  600.132716][ T2805] team0 (unregistering): Port device team_slave_0 removed
[  600.938979][T10563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10563 comm=syz.2.1001
[  601.528063][T10351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  601.680752][T10569] syz.0.1002: attempt to access beyond end of device
[  601.680752][T10569] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  602.516029][T10563] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1001'.
[  602.617609][T10397] bridge0: port 1(bridge_slave_0) entered blocking state
[  602.632819][T10397] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.650632][T10397] bridge_slave_0: entered allmulticast mode
[  602.675218][T10397] bridge_slave_0: entered promiscuous mode
[  602.688140][T10397] bridge0: port 2(bridge_slave_1) entered blocking state
[  602.712094][T10397] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.745016][T10397] bridge_slave_1: entered allmulticast mode
[  602.769339][T10397] bridge_slave_1: entered promiscuous mode
[  602.980358][T10351] team0: Port device team_slave_0 added
[  603.018952][T10351] team0: Port device team_slave_1 added
[  603.158037][T10397] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  603.204769][T10580] Error parsing options; rc = [-22]
[  603.295012][T10397] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.380286][T10351] batman_adv: batadv0: Adding interface: batadv_slave_0
[  603.437144][T10351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.542620][T10351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  603.631764][T10351] batman_adv: batadv0: Adding interface: batadv_slave_1
[  603.785463][T10351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.812700][T10351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  604.572435][T10397] team0: Port device team_slave_0 added
[  604.583379][T10579] delete_channel: no stack
[  604.757230][T10397] team0: Port device team_slave_1 added
[  605.028623][T10397] batman_adv: batadv0: Adding interface: batadv_slave_0
[  605.060002][T10397] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  605.096772][T10397] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  605.235083][T10351] hsr_slave_0: entered promiscuous mode
[  605.321223][T10351] hsr_slave_1: entered promiscuous mode
[  605.349959][T10351] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  605.394699][T10351] Cannot create hsr debugfs directory
[  605.529056][ T2805] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  605.621184][T10397] batman_adv: batadv0: Adding interface: batadv_slave_1
[  605.699134][T10397] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  605.803948][T10397] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  605.890382][ T2805] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.194936][ T2805] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.379670][ T2805] bond0: (slave netdevsim0): Releasing backup interface
[  606.436685][ T2805] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.575242][T10397] hsr_slave_0: entered promiscuous mode
[  606.582538][T10397] hsr_slave_1: entered promiscuous mode
[  606.605236][T10397] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  606.618917][T10397] Cannot create hsr debugfs directory
[  608.351586][ T2805] bridge_slave_1: left allmulticast mode
[  608.359369][ T2805] bridge_slave_1: left promiscuous mode
[  608.401645][ T2805] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.474838][ T2805] bridge_slave_0: left allmulticast mode
[  608.480514][ T2805] bridge_slave_0: left promiscuous mode
[  608.531527][ T2805] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.568707][ T2805] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  609.607935][ T2805] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  609.627812][ T2805] bond0 (unregistering): Released all slaves
[  609.678414][T10655] delete_channel: no stack
[  612.231190][T10661] delete_channel: no stack
[  614.034124][ T2805] hsr_slave_0: left promiscuous mode
[  614.128450][ T2805] hsr_slave_1: left promiscuous mode
[  614.372006][ T2805] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  614.434639][ T2805] batman_adv: batadv0: Removing interface: batadv_slave_0
[  614.478959][ T2805] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  614.510555][ T2805] batman_adv: batadv0: Removing interface: batadv_slave_1
[  614.672395][ T2805] veth1_macvtap: left promiscuous mode
[  614.716691][ T2805] veth0_macvtap: left promiscuous mode
[  614.759087][ T2805] veth1_vlan: left promiscuous mode
[  614.832209][ T2805] veth0_vlan: left promiscuous mode
[  616.028897][ T2805] team0 (unregistering): Port device team_slave_1 removed
[  616.158607][ T2805] team0 (unregistering): Port device team_slave_0 removed
[  619.140249][T10397] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  619.200351][T10397] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  619.224755][T10397] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  619.270857][T10397] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  619.466857][T10719] delete_channel: no stack
[  619.548314][T10351] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  619.740453][T10351] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  619.803036][T10351] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  619.830933][T10351] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  620.001821][T10733] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  620.099838][T10733] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  620.290034][T10397] 8021q: adding VLAN 0 to HW filter on device bond0
[  620.360315][T10725] delete_channel: no stack
[  620.370751][T10351] 8021q: adding VLAN 0 to HW filter on device bond0
[  620.428957][T10397] 8021q: adding VLAN 0 to HW filter on device team0
[  620.449169][T10351] 8021q: adding VLAN 0 to HW filter on device team0
[  620.498294][ T5145] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.505488][ T5145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.538232][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.545462][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.643129][ T5145] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.650391][ T5145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.774476][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.781667][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  621.860547][T10397] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  622.102053][T10351] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  622.202992][T10351] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  622.545194][T10771] vxfs: WRONG superblock magic 00000000 at 1
[  622.564767][T10771] vxfs: WRONG superblock magic 00000000 at 8
[  622.669956][T10771] vxfs: can't find superblock.
[  623.143123][T10397] 8021q: adding VLAN 0 to HW filter on device batadv0
[  624.383198][T10351] 8021q: adding VLAN 0 to HW filter on device batadv0
[  624.436737][T10397] veth0_vlan: entered promiscuous mode
[  624.566274][T10397] veth1_vlan: entered promiscuous mode
[  624.727533][T10397] veth0_macvtap: entered promiscuous mode
[  624.805204][T10397] veth1_macvtap: entered promiscuous mode
[  624.838501][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[  624.846238][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[  624.946056][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  624.984081][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.027349][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.040829][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.051666][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.062575][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.081370][T10397] batman_adv: batadv0: Interface activated: batadv_slave_0
[  625.101062][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.111848][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.144791][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.172624][T10798] delete_channel: no stack
[  625.185705][T10796] delete_channel: no stack
[  625.193228][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.242320][T10397] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.283575][T10397] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.311674][T10397] batman_adv: batadv0: Interface activated: batadv_slave_1
[  625.526081][T10397] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  625.538033][T10397] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  625.547365][T10397] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  625.561815][T10397] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  626.032417][ T2887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  626.048044][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  626.238746][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  626.246674][ T2887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  626.448190][T10351] veth0_vlan: entered promiscuous mode
[  626.492199][T10351] veth1_vlan: entered promiscuous mode
[  626.560806][T10351] veth0_macvtap: entered promiscuous mode
[  626.584892][T10351] veth1_macvtap: entered promiscuous mode
[  626.658841][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  626.813656][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  626.890165][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  626.939575][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  626.949662][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  626.961517][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  626.972160][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  626.982686][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  626.996021][T10351] batman_adv: batadv0: Interface activated: batadv_slave_0
[  628.469555][T10849] syz.3.969: attempt to access beyond end of device
[  628.469555][T10849] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  628.986393][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  629.083183][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.113110][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  629.123925][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.134769][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  629.147576][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.159641][T10351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  629.178509][T10351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  629.237983][T10351] batman_adv: batadv0: Interface activated: batadv_slave_1
[  629.286888][T10351] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  629.355817][T10351] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  629.358776][T10857] vxfs: WRONG superblock magic 00000000 at 1
[  629.371400][T10351] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  629.371703][T10857] vxfs: WRONG superblock magic 00000000 at 8
[  629.386989][T10857] vxfs: can't find superblock.
[  629.392559][T10351] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  629.939452][ T1054] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  629.999079][ T1054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  630.178971][ T2863] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  630.211784][ T2863] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  630.457093][T10868] delete_channel: no stack
[  630.976439][T10874] delete_channel: no stack
[  631.304058][T10891] FAULT_INJECTION: forcing a failure.
[  631.304058][T10891] name failslab, interval 1, probability 0, space 0, times 0
[  631.317819][T10891] CPU: 1 UID: 0 PID: 10891 Comm: syz.1.1052 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  631.328254][T10891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  631.338318][T10891] Call Trace:
[  631.341603][T10891]  <TASK>
[  631.344543][T10891]  dump_stack_lvl+0x16c/0x1f0
[  631.349239][T10891]  should_fail_ex+0x497/0x5b0
[  631.353936][T10891]  ? fs_reclaim_acquire+0xae/0x160
[  631.359062][T10891]  should_failslab+0xc2/0x120
[  631.363759][T10891]  kmem_cache_alloc_lru_noprof+0x72/0x2f0
[  631.369499][T10891]  ? __d_alloc+0x31/0xaa0
[  631.373843][T10891]  __d_alloc+0x31/0xaa0
[  631.378015][T10891]  ? __pfx___schedule+0x10/0x10
[  631.382882][T10891]  d_alloc+0x4a/0x1e0
[  631.386879][T10891]  d_alloc_parallel+0xe9/0x12b0
[  631.391836][T10891]  ? __d_lookup+0x25c/0x4a0
[  631.396359][T10891]  ? irqentry_exit+0x3b/0x90
[  631.400967][T10891]  ? __pfx_d_alloc_parallel+0x10/0x10
[  631.406362][T10891]  ? __d_lookup+0x266/0x4a0
[  631.410882][T10891]  ? d_lookup+0x158/0x180
[  631.415232][T10891]  lookup_open.isra.0+0xaae/0x13c0
[  631.420369][T10891]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  631.425941][T10891]  ? __pfx_down_write+0x10/0x10
[  631.430815][T10891]  ? mnt_get_write_access+0x20c/0x300
[  631.436208][T10891]  path_openat+0xa3b/0x2d20
[  631.440731][T10891]  ? __pfx_path_openat+0x10/0x10
[  631.445680][T10891]  ? __pfx___lock_acquire+0x10/0x10
[  631.450895][T10891]  ? find_held_lock+0x2d/0x110
[  631.455682][T10891]  do_filp_open+0x1dc/0x430
[  631.460204][T10891]  ? __pfx_do_filp_open+0x10/0x10
[  631.465247][T10891]  ? _raw_spin_unlock+0x28/0x50
[  631.470115][T10891]  ? alloc_fd+0x2d7/0x6c0
[  631.474467][T10891]  do_sys_openat2+0x17a/0x1e0
[  631.479165][T10891]  ? __pfx_do_sys_openat2+0x10/0x10
[  631.484387][T10891]  __x64_sys_creat+0xcd/0x120
[  631.489083][T10891]  ? __pfx___x64_sys_creat+0x10/0x10
[  631.494390][T10891]  ? __pfx_ksys_write+0x10/0x10
[  631.499254][T10891]  ? do_syscall_64+0x91/0x250
[  631.503954][T10891]  do_syscall_64+0xcd/0x250
[  631.508475][T10891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.514388][T10891] RIP: 0033:0x7f0fbe775f19
[  631.518811][T10891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  631.538436][T10891] RSP: 002b:00007f0fbf581048 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  631.546867][T10891] RAX: ffffffffffffffda RBX: 00007f0fbe906110 RCX: 00007f0fbe775f19
[  631.554850][T10891] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000440
[  631.563183][T10891] RBP: 00007f0fbf5810a0 R08: 0000000000000000 R09: 0000000000000000
[  631.571163][T10891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  631.579148][T10891] R13: 000000000000006e R14: 00007f0fbe906110 R15: 00007ffc10578a68
[  631.587137][T10891]  </TASK>
[  632.201302][T10899] netlink: 'syz.3.1056': attribute type 9 has an invalid length.
[  632.224878][T10895] vxfs: WRONG superblock magic 00000000 at 1
[  632.240975][T10895] vxfs: WRONG superblock magic 00000000 at 8
[  632.247951][T10895] vxfs: can't find superblock.
[  632.281595][T10899] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1056'.
[  632.460276][T10905] sctp: [Deprecated]: syz.2.1054 (pid 10905) Use of int in max_burst socket option.
[  632.460276][T10905] Use struct sctp_assoc_value instead
[  632.896577][T10902] netlink: 'syz.3.1056': attribute type 9 has an invalid length.
[  632.928816][T10902] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1056'.
[  633.922640][T10916] FAULT_INJECTION: forcing a failure.
[  633.922640][T10916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  633.984782][T10916] CPU: 0 UID: 0 PID: 10916 Comm: syz.0.1058 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  633.995226][T10916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  634.005278][T10916] Call Trace:
[  634.008552][T10916]  <TASK>
[  634.011475][T10916]  dump_stack_lvl+0x16c/0x1f0
[  634.016156][T10916]  should_fail_ex+0x497/0x5b0
[  634.020835][T10916]  _copy_to_user+0x30/0xc0
[  634.025256][T10916]  simple_read_from_buffer+0xd0/0x160
[  634.030633][T10916]  proc_fail_nth_read+0x1b0/0x290
[  634.035667][T10916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  634.041215][T10916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  634.046756][T10916]  vfs_read+0x1d4/0xbd0
[  634.050909][T10916]  ? __fdget_pos+0xeb/0x180
[  634.055410][T10916]  ? __pfx___video_do_ioctl+0x10/0x10
[  634.060784][T10916]  ? __pfx_vfs_read+0x10/0x10
[  634.065456][T10916]  ? __pfx___mutex_lock+0x10/0x10
[  634.070482][T10916]  ? __fget_files+0x256/0x400
[  634.075165][T10916]  ksys_read+0x12f/0x260
[  634.079403][T10916]  ? __pfx_ksys_read+0x10/0x10
[  634.084162][T10916]  do_syscall_64+0xcd/0x250
[  634.088673][T10916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.094567][T10916] RIP: 0033:0x7fefe0b749fc
[  634.098974][T10916] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  634.118580][T10916] RSP: 002b:00007fefe18f5040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  634.126993][T10916] RAX: ffffffffffffffda RBX: 00007fefe0d05f60 RCX: 00007fefe0b749fc
[  634.134958][T10916] RDX: 000000000000000f RSI: 00007fefe18f50b0 RDI: 0000000000000006
[  634.142920][T10916] RBP: 00007fefe18f50a0 R08: 0000000000000000 R09: 0000000000000000
[  634.150885][T10916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.158850][T10916] R13: 000000000000000b R14: 00007fefe0d05f60 R15: 00007ffebcaab1b8
[  634.166820][T10916]  </TASK>
[  635.669741][T10937] vxfs: WRONG superblock magic 00000000 at 1
[  635.698434][T10937] vxfs: WRONG superblock magic 00000000 at 8
[  635.723437][T10941] sctp: [Deprecated]: syz.3.1064 (pid 10941) Use of int in maxseg socket option.
[  635.723437][T10941] Use struct sctp_assoc_value instead
[  635.807346][T10937] vxfs: can't find superblock.
[  635.896521][T10918] delete_channel: no stack
[  636.219014][   T29] audit: type=1400 audit(1721695630.616:1375): avc:  denied  { getopt } for  pid=10950 comm="syz.2.1067" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  637.000836][T10935] delete_channel: no stack
[  637.025240][T10936] delete_channel: no stack
[  637.032856][   T29] audit: type=1804 audit(1721695630.786:1376): pid=10956 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1066" name="/newroot/94/bus/bus" dev="overlay" ino=571 res=1 errno=0
[  637.399151][T10955] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  637.406055][T10955] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  637.437024][T10955] vhci_hcd vhci_hcd.0: Device attached
[  638.481875][T10966] vhci_hcd: connection closed
[  638.487596][ T1042] vhci_hcd: stop threads
[  640.032769][ T5149] usb 14-1: SetAddress Request (2) to port 0
[  640.091512][ T1042] vhci_hcd: release socket
[  640.369041][ T1042] vhci_hcd: disconnect device
[  640.374602][ T5149] usb 14-1: new SuperSpeed USB device number 2 using vhci_hcd
[  640.433097][ T5149] usb 14-1: enqueue for inactive port 0
[  641.353842][T10996] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1072'.
[  641.375691][ T5149] usb usb14-port1: attempt power cycle
[  641.474704][T10997] syz.2.1074: attempt to access beyond end of device
[  641.474704][T10997] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  641.896146][T10996] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1072'.
[  642.867007][T11006] syz.0.1075: attempt to access beyond end of device
[  642.867007][T11006] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  643.806735][ T5149] usb usb14-port1: unable to enumerate USB device
[  644.517064][T11023] sctp: [Deprecated]: syz.0.1079 (pid 11023) Use of int in maxseg socket option.
[  644.517064][T11023] Use struct sctp_assoc_value instead
[  644.908500][T11025] syz.3.1077: attempt to access beyond end of device
[  644.908500][T11025] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  645.817781][T11021] delete_channel: no stack
[  646.756612][T11028] delete_channel: no stack
[  646.843009][T11042] syz.4.1083: attempt to access beyond end of device
[  646.843009][T11042] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  649.363641][ T5096] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  649.492973][T11056] vxfs: WRONG superblock magic 00000000 at 1
[  649.515190][T11056] vxfs: WRONG superblock magic 00000000 at 8
[  649.531520][T11056] vxfs: can't find superblock.
[  649.769700][ T5096] usb 1-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  650.734659][T11072] ALSA: mixer_oss: invalid OSS volume ''
[  650.943877][T11061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  651.756668][ T5096] usb 1-1: config 9 has 1 interface, different from the descriptor's value: 3
[  651.804163][T11073] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(12)
[  651.810793][T11073] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  651.838742][T11073] vhci_hcd vhci_hcd.0: Device attached
[  651.874230][ T5096] usb 1-1: config 9 has no interface number 0
[  651.913899][ T5096] usb 1-1: config 9 interface 1 altsetting 13 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  651.960221][ T5096] usb 1-1: config 9 interface 1 has no altsetting 0
[  651.986167][T11074] vhci_hcd: connection closed
[  651.987886][ T2887] vhci_hcd: stop threads
[  652.100878][ T2887] vhci_hcd: release socket
[  652.128417][ T2887] vhci_hcd: disconnect device
[  652.145029][  T927] usb 12-1: enqueue for inactive port 0
[  652.473931][ T5096] usb 1-1: string descriptor 0 read error: -71
[  652.480178][ T5096] usb 1-1: New USB device found, idVendor=058b, idProduct=0028, bcdDevice=f1.bf
[  652.576067][ T5096] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  652.620389][ T5096] usb 1-1: can't set config #9, error -71
[  652.638888][ T5096] usb 1-1: USB disconnect, device number 8
[  652.750037][T11093] sctp: [Deprecated]: syz.0.1092 (pid 11093) Use of int in maxseg socket option.
[  652.750037][T11093] Use struct sctp_assoc_value instead
[  652.794835][  T927] usb usb12-port1: attempt power cycle
[  653.445255][T11086] delete_channel: no stack
[  653.494762][  T927] usb usb12-port1: unable to enumerate USB device
[  654.005915][T11101] syz.2.1090: attempt to access beyond end of device
[  654.005915][T11101] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  654.404060][T11102] delete_channel: no stack
[  655.027235][T11116] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1098'.
[  655.104269][T11116] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1098'.
[  655.584817][   T29] audit: type=1326 audit(1721695649.976:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11127 comm="syz.0.1102" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fefe0b75f19 code=0x0
[  656.203650][ T5147] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  656.427363][ T5147] usb 2-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  656.455738][ T5147] usb 2-1: config 9 has 1 interface, different from the descriptor's value: 3
[  656.521317][ T5147] usb 2-1: config 9 has no interface number 0
[  656.538491][ T5147] usb 2-1: config 9 interface 1 altsetting 13 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  656.562629][ T5147] usb 2-1: config 9 interface 1 has no altsetting 0
[  656.571409][T11139] FAULT_INJECTION: forcing a failure.
[  656.571409][T11139] name failslab, interval 1, probability 0, space 0, times 0
[  656.646968][T11139] CPU: 1 UID: 0 PID: 11139 Comm: syz.3.1104 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  656.657415][T11139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  656.667461][T11139] Call Trace:
[  656.670724][T11139]  <TASK>
[  656.673649][T11139]  dump_stack_lvl+0x16c/0x1f0
[  656.678344][T11139]  should_fail_ex+0x497/0x5b0
[  656.683027][T11139]  should_failslab+0xc2/0x120
[  656.687707][T11139]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  656.693078][T11139]  ? skb_clone+0x190/0x3f0
[  656.697494][T11139]  skb_clone+0x190/0x3f0
[  656.701739][T11139]  netlink_deliver_tap+0xab3/0xd90
[  656.706854][T11139]  netlink_unicast+0x606/0x830
[  656.711625][T11139]  ? __pfx_netlink_unicast+0x10/0x10
[  656.716919][T11139]  netlink_sendmsg+0x8b8/0xd70
[  656.721688][T11139]  ? __pfx_netlink_sendmsg+0x10/0x10
[  656.726975][T11139]  ? __import_iovec+0x1fd/0x6e0
[  656.731830][T11139]  ____sys_sendmsg+0xab5/0xc90
[  656.736614][T11139]  ? copy_msghdr_from_user+0x10b/0x160
[  656.742082][T11139]  ? __pfx_____sys_sendmsg+0x10/0x10
[  656.747375][T11139]  ? find_held_lock+0x2d/0x110
[  656.752146][T11139]  ? __pfx___lock_acquire+0x10/0x10
[  656.757346][T11139]  ___sys_sendmsg+0x135/0x1e0
[  656.762025][T11139]  ? __pfx____sys_sendmsg+0x10/0x10
[  656.767226][T11139]  ? ksys_write+0x21c/0x260
[  656.771732][T11139]  ? __fget_light+0x173/0x210
[  656.776416][T11139]  __sys_sendmsg+0x117/0x1f0
[  656.781022][T11139]  ? __pfx___sys_sendmsg+0x10/0x10
[  656.786147][T11139]  do_syscall_64+0xcd/0x250
[  656.790673][T11139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.796576][T11139] RIP: 0033:0x7fd256975f19
[  656.800986][T11139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.820594][T11139] RSP: 002b:00007fd25773e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  656.829014][T11139] RAX: ffffffffffffffda RBX: 00007fd256b05f60 RCX: 00007fd256975f19
[  656.836984][T11139] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  656.844953][T11139] RBP: 00007fd25773e0a0 R08: 0000000000000000 R09: 0000000000000000
[  656.852922][T11139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.860890][T11139] R13: 000000000000000b R14: 00007fd256b05f60 R15: 00007fff6edf2d88
[  656.868862][T11139]  </TASK>
[  656.977672][ T5147] usb 2-1: New USB device found, idVendor=058b, idProduct=0028, bcdDevice=f1.bf
[  657.083709][T11131] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11131 comm=syz.4.1101
[  657.111973][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  657.131334][ T5147] usb 2-1: Product: 竅ꙵ庠ಝ苼帔喈ﴘᄀ擫ࡖ硟꾲슟쫜⌓ᎭᲘ봔炡욼ᥔ퉛Ɨ쒹饩耮ﷳ틩Ꟊ項ﮠ뛛웓茮극Ὣﭚﱻ㲄曐벶ⷾ푆꣋訫蹋깼⦽㤠葙裏녛ᑓ횠㶴䘁ꖯ莈ౣ┗렍⵶㽠䇪偲铼逑싎렦韪캄迸柋ꢼ䚐ꤏ욽ၾ絭뀰㭀鈢海ꗝ겆핸㕱㕳韛Ὠ훓ᛚ봲蓖꩖藦
[  657.191247][ T5147] usb 2-1: Manufacturer: 롚伄ꎷ뜂힗鼭嚵嬵汴푁㚧↷웙㳘㪑嵏₽ᅼ곙ڵ檻騛芪ồ蓼
[  657.299403][ T5147] usb 2-1: SerialNumber: Ⰹ
[  657.341124][T11146] sctp: [Deprecated]: syz.0.1105 (pid 11146) Use of int in maxseg socket option.
[  657.341124][T11146] Use struct sctp_assoc_value instead
[  657.348564][T11131] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1101'.
[  657.433632][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  657.623583][    T9] usb 3-1: Using ep0 maxpacket: 8
[  657.664949][    T9] usb 3-1: config 1 has an invalid descriptor of length 100, skipping remainder of the config
[  657.733599][    T9] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  657.774654][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  657.785067][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  657.796476][    T9] usb 3-1: SerialNumber: syz
[  657.839489][    T9] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[  657.892846][    T9] usb-storage 3-1:1.0: USB Mass Storage device detected
[  657.944169][    T9] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  658.013364][T11143] delete_channel: no stack
[  658.058449][   T29] audit: type=1400 audit(1721695652.456:1378): avc:  denied  { map } for  pid=11140 comm="syz.2.1106" path="socket:[41564]" dev="sockfs" ino=41564 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  658.158183][   T29] audit: type=1400 audit(1721695652.456:1379): avc:  denied  { read } for  pid=11140 comm="syz.2.1106" path="socket:[41564]" dev="sockfs" ino=41564 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  658.200327][    C1] ==================================================================
[  658.208425][    C1] BUG: KASAN: slab-use-after-free in __xsk_map_flush+0x2f9/0x310
[  658.216169][    C1] Read of size 8 at addr ffff888020377710 by task syz.2.1106/11145
[  658.224084][    C1] 
[  658.226424][    C1] CPU: 1 UID: 0 PID: 11145 Comm: syz.2.1106 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  658.236859][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  658.246926][    C1] Call Trace:
[  658.250225][    C1]  <IRQ>
[  658.253084][    C1]  dump_stack_lvl+0x116/0x1f0
[  658.257788][    C1]  print_report+0xc3/0x620
[  658.262196][    C1]  ? __virt_addr_valid+0x5e/0x590
[  658.267208][    C1]  ? __phys_addr+0xc6/0x150
[  658.271698][    C1]  kasan_report+0xd9/0x110
[  658.276114][    C1]  ? __xsk_map_flush+0x2f9/0x310
[  658.281043][    C1]  ? __xsk_map_flush+0x2f9/0x310
[  658.285966][    C1]  __xsk_map_flush+0x2f9/0x310
[  658.290723][    C1]  xdp_do_check_flushed+0x175/0x4e0
[  658.295943][    C1]  __napi_poll.constprop.0+0xd1/0x550
[  658.301302][    C1]  net_rx_action+0xa92/0x1010
[  658.305972][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  658.311080][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  658.316282][    C1]  ? sched_clock+0x38/0x60
[  658.320704][    C1]  ? sched_clock_cpu+0x6d/0x4d0
[  658.325561][    C1]  handle_softirqs+0x216/0x8f0
[  658.330333][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  658.335627][    C1]  ? irqtime_account_irq+0x18d/0x2e0
[  658.340920][    C1]  ? tun_rx_batched+0x435/0x780
[  658.345771][    C1]  do_softirq+0xb2/0xf0
[  658.349937][    C1]  </IRQ>
[  658.352858][    C1]  <TASK>
[  658.355784][    C1]  __local_bh_enable_ip+0x100/0x120
[  658.360993][    C1]  tun_rx_batched+0x43a/0x780
[  658.365673][    C1]  ? lock_acquire+0x1f2/0x560
[  658.370351][    C1]  ? __pfx_tun_rx_batched+0x10/0x10
[  658.375552][    C1]  ? tun_get_user+0x1d81/0x3c30
[  658.380408][    C1]  tun_get_user+0x2a5c/0x3c30
[  658.385095][    C1]  ? __pfx_tun_get_user+0x10/0x10
[  658.390132][    C1]  ? find_held_lock+0x2d/0x110
[  658.394907][    C1]  ? __pfx_lock_release+0x10/0x10
[  658.399935][    C1]  tun_chr_write_iter+0xe8/0x210
[  658.404881][    C1]  vfs_write+0x6b6/0x1140
[  658.409209][    C1]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  658.414765][    C1]  ? __pfx_vfs_write+0x10/0x10
[  658.419525][    C1]  ? do_futex+0x123/0x350
[  658.423853][    C1]  ? __fget_files+0x256/0x400
[  658.428539][    C1]  ? __fget_light+0x173/0x210
[  658.433221][    C1]  ksys_write+0x12f/0x260
[  658.437546][    C1]  ? __pfx_ksys_write+0x10/0x10
[  658.442392][    C1]  do_syscall_64+0xcd/0x250
[  658.446901][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.452798][    C1] RIP: 0033:0x7f4084174a9f
[  658.457207][    C1] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  658.476812][    C1] RSP: 002b:00007f4084fd6010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  658.485221][    C1] RAX: ffffffffffffffda RBX: 00007f4084306038 RCX: 00007f4084174a9f
[  658.493189][    C1] RDX: 000000000000004a RSI: 0000000020000200 RDI: 00000000000000c8
[  658.501154][    C1] RBP: 00007f40841e4e68 R08: 0000000000000000 R09: 0000000000000000
[  658.509119][    C1] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000000
[  658.517081][    C1] R13: 000000000000006e R14: 00007f4084306038 R15: 00007ffd86334ac8
[  658.525055][    C1]  </TASK>
[  658.528066][    C1] 
[  658.530375][    C1] Allocated by task 11145:
[  658.534774][    C1]  kasan_save_stack+0x33/0x60
[  658.539454][    C1]  kasan_save_track+0x14/0x30
[  658.544128][    C1]  __kasan_mempool_unpoison_object+0x193/0x1d0
[  658.550287][    C1]  napi_skb_cache_get+0x327/0x890
[  658.555308][    C1]  __napi_build_skb+0x14/0x50
[  658.559980][    C1]  napi_build_skb+0x22/0x280
[  658.564571][    C1]  skb_pp_cow_data+0x2de/0xc00
[  658.569345][    C1]  skb_cow_data_for_xdp+0x88/0xb0
[  658.574371][    C1]  do_xdp_generic+0x3fc/0xd70
[  658.579056][    C1]  __netif_receive_skb_core.constprop.0+0x12f7/0x4330
[  658.585832][    C1]  __netif_receive_skb_one_core+0xb1/0x1e0
[  658.591659][    C1]  __netif_receive_skb+0x1d/0x160
[  658.596699][    C1]  netif_receive_skb+0x13f/0x7b0
[  658.601644][    C1]  tun_rx_batched+0x429/0x780
[  658.606321][    C1]  tun_get_user+0x2a5c/0x3c30
[  658.611005][    C1]  tun_chr_write_iter+0xe8/0x210
[  658.615951][    C1]  vfs_write+0x6b6/0x1140
[  658.620284][    C1]  ksys_write+0x12f/0x260
[  658.624627][    C1]  do_syscall_64+0xcd/0x250
[  658.629145][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.635041][    C1] 
[  658.637352][    C1] Freed by task 11145:
[  658.641404][    C1]  kasan_save_stack+0x33/0x60
[  658.646082][    C1]  kasan_save_track+0x14/0x30
[  658.650756][    C1]  kasan_save_free_info+0x3b/0x60
[  658.655773][    C1]  poison_slab_object+0xf7/0x160
[  658.660711][    C1]  __kasan_slab_free+0x32/0x50
[  658.665479][    C1]  kmem_cache_free+0x12f/0x3a0
[  658.670244][    C1]  kfree_skbmem+0x10e/0x200
[  658.674744][    C1]  sk_skb_reason_drop+0x140/0x210
[  658.679769][    C1]  tcp_v6_rcv+0xea8/0x4120
[  658.684186][    C1]  ip6_protocol_deliver_rcu+0x188/0x1530
[  658.689816][    C1]  ip6_input_finish+0x14f/0x2f0
[  658.694658][    C1]  ip6_input+0xa1/0xd0
[  658.698735][    C1]  ipv6_rcv+0x265/0x680
[  658.702893][    C1]  __netif_receive_skb_one_core+0x12e/0x1e0
[  658.708798][    C1]  __netif_receive_skb+0x1d/0x160
[  658.713837][    C1]  netif_receive_skb+0x13f/0x7b0
[  658.718798][    C1]  tun_rx_batched+0x429/0x780
[  658.723477][    C1]  tun_get_user+0x2a5c/0x3c30
[  658.728159][    C1]  tun_chr_write_iter+0xe8/0x210
[  658.733098][    C1]  vfs_write+0x6b6/0x1140
[  658.737423][    C1]  ksys_write+0x12f/0x260
[  658.741748][    C1]  do_syscall_64+0xcd/0x250
[  658.746255][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.752149][    C1] 
[  658.754462][    C1] The buggy address belongs to the object at ffff888020377640
[  658.754462][    C1]  which belongs to the cache skbuff_head_cache of size 240
[  658.769033][    C1] The buggy address is located 208 bytes inside of
[  658.769033][    C1]  freed 240-byte region [ffff888020377640, ffff888020377730)
[  658.782831][    C1] 
[  658.785146][    C1] The buggy address belongs to the physical page:
[  658.791550][    C1] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x20377
[  658.800306][    C1] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  658.807411][    C1] page_type: 0xfdffffff(slab)
[  658.812081][    C1] raw: 00fff00000000000 ffff888019aa8780 ffffea0001efacc0 dead000000000004
[  658.820657][    C1] raw: 0000000000000000 00000000000c000c 00000001fdffffff 0000000000000000
[  658.829224][    C1] page dumped because: kasan: bad access detected
[  658.835624][    C1] page_owner tracks the page as allocated
[  658.841323][    C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 7330, tgid 7330 (syz-executor), ts 296741864555, free_ts 296738537527
[  658.860681][    C1]  post_alloc_hook+0x2d1/0x350
[  658.865452][    C1]  get_page_from_freelist+0x1351/0x2e50
[  658.871004][    C1]  __alloc_pages_noprof+0x22b/0x2460
[  658.876291][    C1]  alloc_slab_page+0x4e/0xf0
[  658.880891][    C1]  new_slab+0x84/0x260
[  658.884956][    C1]  ___slab_alloc+0xdac/0x1870
[  658.889629][    C1]  __slab_alloc.constprop.0+0x56/0xb0
[  658.894999][    C1]  kmem_cache_alloc_node_noprof+0xed/0x310
[  658.900807][    C1]  __alloc_skb+0x2b1/0x380
[  658.905220][    C1]  netlink_ack+0x164/0xb90
[  658.909658][    C1]  netlink_rcv_skb+0x348/0x440
[  658.914445][    C1]  genl_rcv+0x28/0x40
[  658.918442][    C1]  netlink_unicast+0x544/0x830
[  658.923208][    C1]  netlink_sendmsg+0x8b8/0xd70
[  658.927982][    C1]  __sys_sendto+0x47f/0x4e0
[  658.932488][    C1]  __x64_sys_sendto+0xe0/0x1c0
[  658.937255][    C1] page last free pid 6653 tgid 6653 stack trace:
[  658.943573][    C1]  free_unref_page+0x64a/0xe40
[  658.948341][    C1]  vfree+0x181/0x7a0
[  658.952248][    C1]  do_arpt_get_ctl+0x846/0x9a0
[  658.957023][    C1]  nf_getsockopt+0x79/0xe0
[  658.961440][    C1]  ip_getsockopt+0x18e/0x1e0
[  658.966032][    C1]  tcp_getsockopt+0x9e/0x100
[  658.970631][    C1]  do_sock_getsockopt+0x2e5/0x760
[  658.975661][    C1]  __sys_getsockopt+0x1a1/0x270
[  658.980511][    C1]  __x64_sys_getsockopt+0xbd/0x160
[  658.985619][    C1]  do_syscall_64+0xcd/0x250
[  658.990126][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.996018][    C1] 
[  658.998341][    C1] Memory state around the buggy address:
[  659.003958][    C1]  ffff888020377600: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  659.012011][    C1]  ffff888020377680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  659.020079][    C1] >ffff888020377700: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc
[  659.028130][    C1]                          ^
[  659.032705][    C1]  ffff888020377780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  659.040757][    C1]  ffff888020377800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc
[  659.048804][    C1] ==================================================================
[  659.057127][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  659.064325][    C1] CPU: 1 UID: 0 PID: 11145 Comm: syz.2.1106 Not tainted 6.10.0-syzkaller-11840-g933069701c1b #0
[  659.074722][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  659.084762][    C1] Call Trace:
[  659.088021][    C1]  <IRQ>
[  659.090849][    C1]  dump_stack_lvl+0x3d/0x1f0
[  659.095426][    C1]  panic+0x6f5/0x7a0
[  659.099307][    C1]  ? __pfx_panic+0x10/0x10
[  659.103716][    C1]  ? irqentry_exit+0x3b/0x90
[  659.108317][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  659.113511][    C1]  ? check_panic_on_warn+0x1f/0xb0
[  659.118606][    C1]  check_panic_on_warn+0xab/0xb0
[  659.123531][    C1]  end_report+0x117/0x180
[  659.127844][    C1]  kasan_report+0xe9/0x110
[  659.132244][    C1]  ? __xsk_map_flush+0x2f9/0x310
[  659.137164][    C1]  ? __xsk_map_flush+0x2f9/0x310
[  659.142083][    C1]  __xsk_map_flush+0x2f9/0x310
[  659.146829][    C1]  xdp_do_check_flushed+0x175/0x4e0
[  659.152014][    C1]  __napi_poll.constprop.0+0xd1/0x550
[  659.157376][    C1]  net_rx_action+0xa92/0x1010
[  659.162037][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  659.167129][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  659.172315][    C1]  ? sched_clock+0x38/0x60
[  659.176722][    C1]  ? sched_clock_cpu+0x6d/0x4d0
[  659.181564][    C1]  handle_softirqs+0x216/0x8f0
[  659.186319][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  659.191591][    C1]  ? irqtime_account_irq+0x18d/0x2e0
[  659.196862][    C1]  ? tun_rx_batched+0x435/0x780
[  659.201697][    C1]  do_softirq+0xb2/0xf0
[  659.205839][    C1]  </IRQ>
[  659.208750][    C1]  <TASK>
[  659.211658][    C1]  __local_bh_enable_ip+0x100/0x120
[  659.216847][    C1]  tun_rx_batched+0x43a/0x780
[  659.221507][    C1]  ? lock_acquire+0x1f2/0x560
[  659.226168][    C1]  ? __pfx_tun_rx_batched+0x10/0x10
[  659.231353][    C1]  ? tun_get_user+0x1d81/0x3c30
[  659.236193][    C1]  tun_get_user+0x2a5c/0x3c30
[  659.240858][    C1]  ? __pfx_tun_get_user+0x10/0x10
[  659.245867][    C1]  ? find_held_lock+0x2d/0x110
[  659.250621][    C1]  ? __pfx_lock_release+0x10/0x10
[  659.255631][    C1]  tun_chr_write_iter+0xe8/0x210
[  659.260555][    C1]  vfs_write+0x6b6/0x1140
[  659.264867][    C1]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  659.270397][    C1]  ? __pfx_vfs_write+0x10/0x10
[  659.275143][    C1]  ? do_futex+0x123/0x350
[  659.279457][    C1]  ? __fget_files+0x256/0x400
[  659.284122][    C1]  ? __fget_light+0x173/0x210
[  659.288785][    C1]  ksys_write+0x12f/0x260
[  659.293096][    C1]  ? __pfx_ksys_write+0x10/0x10
[  659.297926][    C1]  do_syscall_64+0xcd/0x250
[  659.302418][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.308295][    C1] RIP: 0033:0x7f4084174a9f
[  659.312690][    C1] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  659.332279][    C1] RSP: 002b:00007f4084fd6010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  659.340672][    C1] RAX: ffffffffffffffda RBX: 00007f4084306038 RCX: 00007f4084174a9f
[  659.348625][    C1] RDX: 000000000000004a RSI: 0000000020000200 RDI: 00000000000000c8
[  659.356577][    C1] RBP: 00007f40841e4e68 R08: 0000000000000000 R09: 0000000000000000
[  659.364528][    C1] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000000
[  659.372478][    C1] R13: 000000000000006e R14: 00007f4084306038 R15: 00007ffd86334ac8
[  659.380431][    C1]  </TASK>
[  659.383654][    C1] Kernel Offset: disabled
[  659.387962][    C1] Rebooting in 86400 seconds..