last executing test programs:

13m15.060788457s ago: executing program 0 (id=645):
r0 = socket$isdn(0x22, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0500000001000000400000004000000041000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x60000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={r2, 0xffffffffffffffff, 0x5, 0x2})
r7 = syz_open_dev$vbi(0x0, 0x2, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r7, 0xc0405665, &(0x7f0000000280)={0x7, 0x2})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002600)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f00000015c0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff024}, {0x28}, {0x6}]}, 0x10)
sendmmsg$unix(r8, &(0x7f0000002800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4`\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|')
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000000)={0x9, {0x3c, 0x36ab, 0xffffffff9a091fad, 0x3}})

13m12.808913983s ago: executing program 0 (id=654):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x76}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000001440)=ANY=[@ANYBLOB="12010000abd1a0407b0726228bca0000000109021200010002000009040000003a92f800"], 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f0000000280)={0x1c, &(0x7f0000000180)={0x20, 0x9, 0x6, "7aea972d9881"}, 0x0, 0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newsa={0x150, 0x10, 0x413, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@multicast1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@broadcast, 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, {0x0, 0x0, 0x8000}, {}, {}, 0x4000, 0x0, 0x2, 0x0, 0x0, 0x40}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "25cac5216d1c8af0a976902918bf448c5d9f5459"}}]}, 0x150}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[{}], 0x8, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x0, 0x8, 0x0, 0x0}}, 0x10)
syz_usb_control_io$hid(r1, &(0x7f00000007c0)={0x24, &(0x7f00000005c0)={0x60, 0xa, 0xea, {0xea, 0xa, "21a8fb81f372df143b6b237cc3e99c5696de95fb1d87dbe9f3f7462dfc97c814746a14f0c876c36805f4ba2ca00ae19b14f7b013f916165de4f450047b6a5fb9b4ea64ffbfc3024521c08769807a390fb8e32a56bc16dfbf068a5f8217c822f82eba96a8fe4a5be0964bbb99d76087c5d6056a5e1008fa1d96d9f510015b8249b9fc742e54c1b4c15aef655520d077a1aa64161cef26df13fc793ad8b6628e554cf0e83e4c362aa2b557a992181d08cccb5374debb0edd917f8c2358acac73060acd49aa8ba5ea811beb7cddfb737c0d886206c11e7b6a8bb8da04dfd715bcb6c64e783c1ca61636"}}, &(0x7f00000006c0)={0x0, 0x3, 0x65, @string={0x65, 0x3, "f4f8290680ce00a0715e5f8bc972d0026301d3df213a6e34fe125af81dc4366a5c2ae20deff2cf55f7ce38e34ddd942fc170623b29683b8d7c96cabb950a92edb7b2f29b4c483f8ab56de71e3dece60280e62ed8ebf4a9d478e60017053eaf9835d82c"}}, &(0x7f0000000740)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x1, ']v'}, @global=@item_4={0x3, 0x1, 0x8, "206cf40f"}, @local=@item_4={0x3, 0x2, 0x2, "df3b8bc5"}, @main=@item_4={0x3, 0x0, 0xb, "17714af2"}, @main=@item_4={0x3, 0x0, 0xa, "522dc836"}, @global=@item_012={0x0, 0x1, 0x2}, @local=@item_4={0x3, 0x2, 0x1, "de75d528"}, @main=@item_4={0x3, 0x0, 0x8, "fb4893a0"}]}}, &(0x7f0000000780)={0x0, 0x21, 0x9, {0x9, 0x21, 0x338, 0x7, 0x1, {0x22, 0x487}}}}, &(0x7f00000009c0)={0x2c, &(0x7f0000000800)={0x0, 0xb, 0x51, "e389032fdd521fb0dead07001bb585ff075aaaf435c3916c0bf92005a484ac70141b09f7afca98c8ef78e4e8fc2ead28adb53a7f1b5b0f5f67426a10483a014d0de16b6ee32a8e6ae6d0eb0804abd4d199"}, &(0x7f0000000880)={0x0, 0xa, 0x1, 0x4}, &(0x7f00000008c0)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000900)={0x20, 0x1, 0x57, "29e54aaaaa1d710c205a07387799e313ede371bf0ef433b622edd10d79e20c08a130c22fb4eb841998ee8ef9d411907d91df14a340bf076a461304a50a42df818d08bf13633b3c2dc021971454499d5655fff4cb8ffecf"}, &(0x7f0000000980)={0x20, 0x3, 0x1, 0x5}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
setreuid(0x0, 0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/3002], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000080), 0xfffffffffffffdbb, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r2, &(0x7f0000000580)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0xdbef2fefbd5f922e}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0xa}, ["", "", "", "", "", "", "", ""]}, 0x14}}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r3, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

13m9.52056716s ago: executing program 0 (id=666):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r2 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x181041, 0x0)
fchown(r2, 0xee01, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r3, 0x4008af13, &(0x7f00000001c0)={0x0, 0x6})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000140)={0x1, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000940))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

13m9.361838124s ago: executing program 0 (id=670):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f00000000c0)='./file0\x00', 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r1)
ioctl$SIOCSIFHWADDR(r1, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="010000004000"})
setsockopt$RDS_FREE_MR(r1, 0x114, 0x3, &(0x7f0000000080)={{0x1, 0x81}, 0x19}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r3, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f00000000c0)="8be5aa9c2b6435b24bd1da9fdddfa1d5", 0x10)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x8}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x54}}, 0x0)
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x65000, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x1805002, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000100)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010102, @local, {[@generic={0x7, 0xb, "0441b613a31ed707e2"}, @timestamp_addr={0x44, 0x4, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000240)=[{0x1, 0x81, 0x4}]})
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r0, &(0x7f0000000140)='./file0/file0\x00', 0x271)

13m9.134924833s ago: executing program 0 (id=673):
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
read$msr(0xffffffffffffffff, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="150a000000bbc617f50000000000000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000d40)=ANY=[], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{}, &(0x7f0000000440), &(0x7f00000000c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x655c44a9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00"/14, @ANYRES32=0x0, @ANYBLOB='\x00'/15, @ANYBLOB="000000020000de213c8cffff000000000037d9f55749503b4f007adaa12521397eed204837338cafd70a6567dabdb0624b6c87f263716843a67f8dceb30f2661ffe6742509a5a41aa4e5ff45ce30aa5fd9bb66312d141c9f88afa5e1b116c2209442dccc08210799854437ca23901b8a67493f5204673dbc2f90b6b083f30d21ac028bbde0eb1d59054d547592fc9921f9f0378496304555ed326ec7bbb1831c9b1ea8d50ebfbf74c25bc5b3"], 0x50)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
timer_gettime(0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, 0x0, 0x0)
r4 = socket$inet(0x2, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000940)='batadv_slave_1\x00', 0x10)
sendmsg$inet(r4, &(0x7f00000004c0)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000140)="08001ebbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0xe0000000}, 0x40)
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r5, 0x80045505, &(0x7f0000000340)=@usbdevfs_connect)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000180)=@urb_type_control={0x2, {0x8, 0x1}, 0x9, 0x0, 0x0, 0x0, 0x3, 0x9, 0x0, 0x9, 0x4, 0x0})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})

13m8.108478845s ago: executing program 0 (id=677):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006000200010000001ffe02000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

13m8.108275452s ago: executing program 32 (id=677):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006000200010000001ffe02000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="6115bf000000000061136c0000000000bfa000000000000007000000ee0016055e03010000000000160500000000000069163e0000000000bf07000000000000260507000fff07206706000020000000140600000ee60060bf500000000000002f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05002000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ace0600006e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc0da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d00c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932fb3bba54b3a6aa57f1ad2e99e0e67ab9ff16d20000009f0f53acbb40b4f8e2738270001562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000815266b2c9e1bfadc7498e9dda5d000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631822a11dc3c693962895496d4f6e9cc54db6c7205a6b26f92121ef53e553acdf42068fff496d2da7d6327f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710eec53f1b11cced7bc3c8da0c44d2fbf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db80300c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f8709d87b27f8a5d9121fdc058447b728f134f72062fc4b1ca0780b1a7af137ff7b4ff139604faf0453b65586f65c7943d56b52f06c870edf0c5d744b5272b44c23480b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61940aabc86b94f8cbde4d47060400e722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154672fea96aedf346279ec00000000000000000000d535d41b0067f01e2e54b9154d876020b669640ead4ca44631fadf7c4ac39a1b331dbdcd52b36df021b731ef1f92330d347f88ced5c1aaadbcdd8d2257e3a9a7c7494fadf9be36f7a2334ee6e9446fa1fd486f85d672a77dc5bd21463994d49f12016305a1e394d292b66840fe32b40ad665d241a8b8a32b3100450c32832789aa8a096f41201b585cd76631c88cf958e9e9047f5af1730c5e83db12460a0768fd4b62be6c41eed307048bac8d1f7f164574241e06027654b248dcc38749eee0c1ee7c61b3f6411a559c3d45637b11e440ed5a99109b8e71d28c3d677af5f0499c6d3fc6a129775056958c9df824ebe5fa9fb306b24a8a8334910627d03efe69d4b61c4345f048c5da8aca16cea848fa77d2507c920a6bd654b00e07789382ed902c80deeff2fd5c78f42e4353e5360c3e55962efd1331e6736eaf4ee27736fa54803ee8ec1a15266ffcd8b30368740b584c2559e691e542cab3d49db327db62328f159d1e0900b3e23e84dedcd1377aa15dbeab7db181bd66980c3557c7d9f7377fcb6023accb5c368a121acf70e5f4c3f2a0ea07011c7149ea979cab2ee65cf7ffa29152b7a8fed89575e6e6fd77d4d9463d21775abac886ee6a1f2d7d8523840438a73d6307a87e2f525867fc3af7ab74520a773ae26bae74cdd405a211e8833e1ba523cde51d04a7ca6732"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

17.21018598s ago: executing program 2 (id=3212):
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000740))
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
ioctl$INCFS_IOC_CREATE_FILE(r7, 0xc058671e, &(0x7f00000003c0)={{}, {}, 0x10, 0x0, 0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)="005e1a02c6668ccda9f7d6b597470023724124f6e42c627d261db0c73253bbc69d10f4f6fcb688156f1f3feaf9df10d82712f71a05313446a4ea92e334af6b5b817318bc808d513c5ad5a916746f8636b76183a09caa2a7b52edb34e573ff0384961d63e657b80623ef90c91f5ecc3995e9b66f40bedf795fc1a14c5324f1eb5b9d20f655688953971485ac198b4794be3a0423081bc1a3eb14eb8336a37fbb630fd07b396fa32bcfdaef616fd3400722e41318179afdcc136d5059700df71b91b59c3", 0xc3, 0x0, &(0x7f0000000580)={0x2, 0xb4, {0x1, 0xc, 0x6a, "83808b8aa1276375ea22c25d4b31775dfb358900592ebd53a2aaca946e3988050c13a8a49ef1fac2e655a72aaa93d2db02cbc36d4dd7b556554652b8c78c0f403a6918d7c0536f09918359375dca467a94bf0eb462285ce8f7d7ff9591725d3ca1cff510acb1a5ba6ce0", 0x3d, "8cd72b5ac35234f5e0f48920afbd2f3a26f6084f7a8b7f4eacf172a54fe7b809453df6626ff78f1fdcb2d9d16b7f384f30f8551df4e6232f8b1704c4ed"}, 0xd7, "104c64495fcbc717d91d228c382d95771ff8faadbbe09cf86c83f1ebdf518a58efe54bcb7b7746a2739443bcd79e301e0d7a2bef02a6e702a5d73c2b6eae3f8b6057c3637ddffe23d755443b7cd67f794a47beefce1c50d560d4c097f22564cc364b2c52401ccfd925253f79fb0444fb5960921588a9fac84bb6215dc2c568855d7ba40671a91ea6d4c1cd2210121f3757a726876435c4b1fbe92597bf136bb0115e38e71cf26f4243e9bd93df244fc1db9887709d20f122f5f9fe650e5c73637d206fd46be0e2d99e6919a17bccbac0b910a33c8ec961"}, 0x197})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
brk(0x9)

14.196415072s ago: executing program 3 (id=3221):
r0 = socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)=ANY=[])
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r7}, 0x10)
r8 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg(r8, &(0x7f0000000a80)=[{{&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e20}, 0x80, 0x0}}], 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)={0x3}, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r9, @ANYBLOB="000000000000000014001a80100004800c000880"], 0x34}}, 0x0)

13.80241557s ago: executing program 2 (id=3222):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}]}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0xcf35857222dd3737}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'})

13.47106237s ago: executing program 2 (id=3223):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x40c})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$vbi(&(0x7f0000000580), 0x2, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x0, 0x2c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x0, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x2, 0x2, 0x2, 0x9, 0x9, 0x96, 0x7fffffff, 0xffffffff00000000, 0x4, 0x4, 0x0, 0x23b, 0x3, 0x2, 0x888f, 0x4, 0x8, 0x6, 0x6, 0x3, 0x10000004, 0x20000000006, 0x8, 0x9, 0x1000, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x9, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0x7, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xec, 0x4, 0x6, 0x1, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000cc0))

11.476150108s ago: executing program 4 (id=3230):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000240)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x4, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x5, 0x7, 0x10000000, 0x7fff, 0x100}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x6}]}, {0x4}, {0xc}, {0xc, 0x9, {0x0, 0x2}}}}]}]}, 0x68}}, 0x0)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x20000023896)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

11.230219724s ago: executing program 3 (id=3232):
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000740))
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
ioctl$INCFS_IOC_CREATE_FILE(r7, 0xc058671e, &(0x7f00000003c0)={{}, {}, 0x10, 0x0, 0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)="005e1a02c6668ccda9f7d6b597470023724124f6e42c627d261db0c73253bbc69d10f4f6fcb688156f1f3feaf9df10d82712f71a05313446a4ea92e334af6b5b817318bc808d513c5ad5a916746f8636b76183a09caa2a7b52edb34e573ff0384961d63e657b80623ef90c91f5ecc3995e9b66f40bedf795fc1a14c5324f1eb5b9d20f655688953971485ac198b4794be3a0423081bc1a3eb14eb8336a37fbb630fd07b396fa32bcfdaef616fd3400722e41318179afdcc136d5059700df71b91b59c3", 0xc3, 0x0, &(0x7f0000000580)={0x2, 0xb4, {0x1, 0xc, 0x6a, "83808b8aa1276375ea22c25d4b31775dfb358900592ebd53a2aaca946e3988050c13a8a49ef1fac2e655a72aaa93d2db02cbc36d4dd7b556554652b8c78c0f403a6918d7c0536f09918359375dca467a94bf0eb462285ce8f7d7ff9591725d3ca1cff510acb1a5ba6ce0", 0x3d, "8cd72b5ac35234f5e0f48920afbd2f3a26f6084f7a8b7f4eacf172a54fe7b809453df6626ff78f1fdcb2d9d16b7f384f30f8551df4e6232f8b1704c4ed"}, 0xd7, "104c64495fcbc717d91d228c382d95771ff8faadbbe09cf86c83f1ebdf518a58efe54bcb7b7746a2739443bcd79e301e0d7a2bef02a6e702a5d73c2b6eae3f8b6057c3637ddffe23d755443b7cd67f794a47beefce1c50d560d4c097f22564cc364b2c52401ccfd925253f79fb0444fb5960921588a9fac84bb6215dc2c568855d7ba40671a91ea6d4c1cd2210121f3757a726876435c4b1fbe92597bf136bb0115e38e71cf26f4243e9bd93df244fc1db9887709d20f122f5f9fe650e5c73637d206fd46be0e2d99e6919a17bccbac0b910a33c8ec961"}, 0x197})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
brk(0x9)

11.132968994s ago: executing program 2 (id=3233):
r0 = userfaultfd(0x801)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000007c0)={0x0, 0x80000000, 0x0, 0x9}, &(0x7f0000000800)={0x7f, 0xfffffffffffffffc, 0x0, 0x1, 0x10003, 0x92}, 0x0, 0x0, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000000000208d04958500000000000109022400010000000009040000050300000009210000000122"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000d40)={0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\a'], 0x0, 0x0, 0x0, 0x0}, 0x0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r2)
syz_emit_ethernet(0x0, 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
fchdir(r4)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
close(r4)
symlink(&(0x7f00000015c0)='./file0\x00', &(0x7f0000001600)='./file0\x00')
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000000)={@multicast1, @rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xc)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, <r5=>0x0}, &(0x7f0000000280)=0x5)
setuid(r5)
read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020)
setpriority(0x2, 0xff, 0x0)

8.852994462s ago: executing program 3 (id=3239):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macvlan1\x00', <r2=>0x0})
sendto$packet(r1, 0x0, 0x0, 0x801, &(0x7f0000000300)={0x11, 0xc, r2, 0x1, 0x8c, 0x6, @multicast}, 0x14)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x38, 0x1403, 0x6c08c44bda12f87d, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'team_slave_1\x00'}}]}, 0x38}}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r7}, 0x10)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040e04f74120"], 0x7)

7.368509759s ago: executing program 1 (id=3241):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x30, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9d1}]]}, 0x30}}, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
close(r5)
ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000140)={0x12, 0x3, 0x7f})
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f0200c00e7f4e32f61bcdf1e422000000000100800000000000001000aadc28da3457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@redirect_dir_nofollow}]})

7.366478287s ago: executing program 2 (id=3242):
r0 = socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)=ANY=[])
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r7}, 0x10)
r8 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg(r8, &(0x7f0000000a80)=[{{&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e20}, 0x80, 0x0}}], 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)={0x3}, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r9, @ANYBLOB="000000000000000014001a80100004800c000880"], 0x34}}, 0x0)

6.801614002s ago: executing program 1 (id=3243):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x40c})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$vbi(&(0x7f0000000580), 0x2, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x3})
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x0, 0x2c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x0, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x2, 0x2, 0x2, 0x9, 0x9, 0x96, 0x7fffffff, 0xffffffff00000000, 0x4, 0x4, 0x0, 0x23b, 0x3, 0x2, 0x888f, 0x4, 0x8, 0x6, 0x6, 0x3, 0x10000004, 0x20000000006, 0x8, 0x9, 0x1000, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x9, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0x7, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xec, 0x4, 0x6, 0x1, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000cc0))

6.664738089s ago: executing program 5 (id=3244):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)
bind$can_raw(r1, &(0x7f0000000040), 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, 0x0, 0x0)
gettid()
epoll_create1(0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, 0x0, 0x1f0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, &(0x7f0000000780)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r4, 0x2e0, 0x125, 0x0, &(0x7f0000000640)="1252fe342efe221990fe31b747a4c316143ea0ae7613f090c47132a6951aacadaae2585218e4aef66cabb2bc0f9a25480bfecdbb08b6f709a53701e6d8436f6b33f5b2069b3caa6a710c6f6889bff8661ff87ad7a9e35988aebbbecbc76401b67e8e7fec132870a7d013bb298ec104ae7875e0e0903361ba6962a1b00564389a9ff4075dce1d5b7e6e60f40191ec3cb0e7fee735b38e0323370f12292686cd37850000000000000200000600bcd32749479c74cadf6c0ccd000000000000090000000000000084bb3a371b687038ac01ec67ba0c60ce7033cbec3ce26b39b60b8c205a3ba8fee9fe11597bbec86c4e68fc27e9b530525b008ff0db53cc870c6a4761f471dc804514fa5310ae904cb02217be12be64ca8c4bfb2c2c0996cd4eaef5e4bb8bc7", 0x0, 0xfe, 0x60000000, 0x34, 0x29, &(0x7f0000000040)="ded64e062b311453dcbb62932a01105d0a8066ca8e5e1f2f575d0d6e996b57fd408d420abb7337934e59815d75b4eb3e7206afce", &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090f586e979858f64170cde36889dcc8539ffcca62621a4c3ea3f7acee", 0x1, 0x3, 0xffff}, 0x50)
io_setup(0x10000, &(0x7f0000000000))

6.559007958s ago: executing program 4 (id=3245):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xc, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18040000000000000000000003010200180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000d00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

6.484581233s ago: executing program 3 (id=3246):
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x400)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = epoll_create1(0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0), 0x0, 0x0, 0x0, 0x4000030}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
epoll_wait(r3, &(0x7f00000000c0)=[{}], 0x1, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x1b42, 0x8, 0x4, 0x1e2}, &(0x7f00000004c0)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
clock_nanosleep(0x2, 0x0, &(0x7f0000000100)={0x77359400}, 0x0)

6.45377472s ago: executing program 4 (id=3247):
r0 = openat$smackfs_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x40000000001, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0xa1d1d1fc487c144c}, 0x4)
mount(&(0x7f0000000300)=@nullb, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0)='ocfs2\x00', 0x0, &(0x7f0000000400)='usrquota')
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000200)={r2, 0x3f, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "a5bfcb2a66ef507540a2a54fcaf1860b5a61f8e207db0000009f1bb9930200000000000000cf61f3164a3790887d279d4afc7cfd1762729912aabe49225f8d79", "c943e1db06869da66fb3d998ba914272ca193f8dd5ecfdc81f22af8042677e0b2543667e306c360ce82f41f7d0431065868f4a367fb9ec6ec8cbf57917653a8a", "f7a78adde4baffaed544f59b58ae3151b9dd0fe9ca443e8ae600"}})
write$binfmt_script(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xa, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r7 = memfd_create(&(0x7f0000000080)='#}\x04\xe4\xfc\x1e\xff~\xb1\xe0\xa5\x9d\xc8\xca3\'\x12xY!\xa4\x9c\x97\xf1\xfc\xb0\xe8~\x91\xd5\x04i}\x03\x00@\x0e\xe6\x995b\x00\x00\x00\x00\x00\x00\x00\x8e\x96\xb7=\xb9OmILO\x8d\x00\x00\x00\x00\x00\xfe\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x1)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000000)=0x4, 0x4)
ftruncate(r7, 0x40001)
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendfile(0xffffffffffffffff, r7, 0x0, 0xffe4)

5.666954449s ago: executing program 1 (id=3248):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x7, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TCSETSW2(r4, 0x5408, &(0x7f0000000040)={0x3, 0x0, 0xfffffff9, 0x80000001, 0x0, "23f555d9adb42d4408020e90d1beaa82dc1ecf", 0x1000})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="b400000000000000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000009500000c00000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.572208998s ago: executing program 3 (id=3249):
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r3 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000740))
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r2, 0x0, 0x3}, 0x18)
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
ioctl$INCFS_IOC_CREATE_FILE(r8, 0xc058671e, &(0x7f00000003c0)={{}, {}, 0x10, 0x0, 0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)="005e1a02c6668ccda9f7d6b597470023724124f6e42c627d261db0c73253bbc69d10f4f6fcb688156f1f3feaf9df10d82712f71a05313446a4ea92e334af6b5b817318bc808d513c5ad5a916746f8636b76183a09caa2a7b52edb34e573ff0384961d63e657b80623ef90c91f5ecc3995e9b66f40bedf795fc1a14c5324f1eb5b9d20f655688953971485ac198b4794be3a0423081bc1a3eb14eb8336a37fbb630fd07b396fa32bcfdaef616fd3400722e41318179afdcc136d5059700df71b91b59c3", 0xc3, 0x0, &(0x7f0000000580)={0x2, 0xb4, {0x1, 0xc, 0x6a, "83808b8aa1276375ea22c25d4b31775dfb358900592ebd53a2aaca946e3988050c13a8a49ef1fac2e655a72aaa93d2db02cbc36d4dd7b556554652b8c78c0f403a6918d7c0536f09918359375dca467a94bf0eb462285ce8f7d7ff9591725d3ca1cff510acb1a5ba6ce0", 0x3d, "8cd72b5ac35234f5e0f48920afbd2f3a26f6084f7a8b7f4eacf172a54fe7b809453df6626ff78f1fdcb2d9d16b7f384f30f8551df4e6232f8b1704c4ed"}, 0xd7, "104c64495fcbc717d91d228c382d95771ff8faadbbe09cf86c83f1ebdf518a58efe54bcb7b7746a2739443bcd79e301e0d7a2bef02a6e702a5d73c2b6eae3f8b6057c3637ddffe23d755443b7cd67f794a47beefce1c50d560d4c097f22564cc364b2c52401ccfd925253f79fb0444fb5960921588a9fac84bb6215dc2c568855d7ba40671a91ea6d4c1cd2210121f3757a726876435c4b1fbe92597bf136bb0115e38e71cf26f4243e9bd93df244fc1db9887709d20f122f5f9fe650e5c73637d206fd46be0e2d99e6919a17bccbac0b910a33c8ec961"}, 0x197})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
brk(0x9)

5.207638776s ago: executing program 4 (id=3250):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000080)=[<r0=>0xee00])
setregid(0x0, r0)
r1 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r2, r2, 0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)

5.18393466s ago: executing program 5 (id=3251):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000080))
r2 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x13, r2, 0x0)

5.004420389s ago: executing program 5 (id=3252):
socket$nl_route(0x10, 0x3, 0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x141a82, 0x0)
r0 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r0, 0xee72)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x260001, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x270, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1a0, 0xffffffff, 0xffffffff, 0x1a0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x3ff, 0x6, 0x3}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d0)
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000180))
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)

5.003400903s ago: executing program 4 (id=3253):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macsec0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=r1, @ANYBLOB="1544010076609bae04b5b9960b0001006dd2f6346277701f7c07faad5da2130dca616373656300001400028005000c00", @ANYRESOCT=r2], 0x54}}, 0x0)
ioperm(0x0, 0x10, 0x802)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
fanotify_mark(0xffffffffffffffff, 0x8, 0x8, 0xffffffffffffff9c, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000007700), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r8, 0x84, 0x20, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f0000000100))
open$dir(&(0x7f0000000000)='./file0\x00', 0x40, 0x1e0)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f0000000400)={{0x1, 0x0, 0xfffffffe}})
setsockopt$SO_J1939_PROMISC(0xffffffffffffffff, 0x6b, 0x2, &(0x7f0000000040), 0x4)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r9, 0x54a3)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r9, 0x5422)

4.623686151s ago: executing program 1 (id=3254):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x8001000000000000, 0x40, &(0x7f00000000c0)=@raw={'raw\x00', 0x8, 0x3, 0x1f0, 0x0, 0x11, 0x148, 0xb8, 0x0, 0x158, 0x2a8, 0x2a8, 0x158, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x2000000, 0x8}}}, {{@ip={@loopback, @loopback, 0xff000000, 0xff, 'hsr0\x00', 'pimreg\x00', {}, {0xff}, 0x4, 0x2, 0xb}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x250)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f00000003c0), 0x10042, 0x0)
mount(&(0x7f0000000240), &(0x7f0000000040)='.\x00', &(0x7f0000000140)='f2fs\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, 0x0)
syz_io_uring_setup(0x5fab, &(0x7f00000004c0)={0x0, 0xbe9b, 0x800, 0x20002000, 0x11000399, 0x0, r0}, 0x0, 0x0)
syz_io_uring_setup(0x11e, &(0x7f0000000140), 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = getpgrp(0x0)
kcmp$KCMP_EPOLL_TFD(r6, r7, 0x7, 0xffffffffffffffff, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff, 0x7fffffff})
bind$alg(r5, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
accept$alg(r5, 0x0, 0x0)

3.933729845s ago: executing program 2 (id=3255):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x80000400000bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000000100), 0x0, 0x1fc, 0x0)
renameat2(r1, 0x0, 0xffffffffffffffff, 0x0, 0x1)
futex(&(0x7f0000000000), 0x8c, 0x1, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x220, 0xf0, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x188, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@remote, @multicast1, 0x0, 0x0, 'macvlan0\x00', 'syzkaller0\x00'}, 0x6, 0xa8, 0xf0, 0x0, {}, [@common=@unspec=@time={{0x38}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@ip={@local, @dev, 0x0, 0x0, 'veth0_to_team\x00', 'veth1_virt_wifi\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x280)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa0000000003"], 0x1c)

3.832755556s ago: executing program 5 (id=3256):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000240)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x4, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x5, 0x7, 0x10000000, 0x7fff, 0x100}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x6}]}, {0x4}, {0xc}, {0xc, 0x9, {0x0, 0x2}}}}]}]}, 0x68}}, 0x0)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
sendfile(r7, 0xffffffffffffffff, 0x0, 0x20000023896)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

1.556468394s ago: executing program 1 (id=3257):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="0000010090020100168008953400018004000c8008001b007ad056a5"], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r4, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0xfffffe70, 0x1}}, 0x20) (async)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r3, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c00018005000200000000000800040005000000080001"], 0x7c}}, 0x0)

1.552825641s ago: executing program 4 (id=3258):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x40c})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$vbi(&(0x7f0000000580), 0x2, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x3})
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x0, 0x2c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x0, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x2, 0x2, 0x2, 0x9, 0x9, 0x96, 0x7fffffff, 0xffffffff00000000, 0x4, 0x4, 0x0, 0x23b, 0x3, 0x2, 0x888f, 0x4, 0x8, 0x6, 0x6, 0x3, 0x10000004, 0x20000000006, 0x8, 0x9, 0x1000, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x9, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0x7, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xec, 0x4, 0x6, 0x1, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000cc0))

1.467845779s ago: executing program 5 (id=3259):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000600000008000300", @ANYRES32=r2, @ANYBLOB="0800b0b05a112112362e84110000007a6cc1fa6d63946c11e0277da73703137947d738da1d270d87387cfa53bf1b259644fe89947d95af4263b8894f7dcb9dfd7a643ff6bd96715b3ab20b2c65618b61ca86338f4490b3cfd3aef5a47214c33f1dac1e4e1dfe42d4d69708f3317a94e3"], 0x24}}, 0x0)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3ac3209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b135ab6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385beef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6c30ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88372091cd397b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca00000000000000000000007925d0f1256330b9e2aa9a18cea8e009116f63c6c7d8f7f95bf0f6731e5eb1dcdc534f357b9f08e7a9a3aebeca145d695053b5bef004ca24e6c57ed10f01488d38b8b0b68d93e3cf630837915d518fde2115e66615786fe7b9216de958119cf762cac77ac829a02f48e72c0d2841880b2c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg$inet(r3, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000540)="beba20a0c1e0ebebba36f9976f4534e406482dfcd42c0c15c5f860b9f0f210ab397fc037f4bae4d2492d041dcc130dddd97fef9ad9e9be51238c0ce5b63776383b9d57a67e81bed665925a1432d6dce425efc13c7143fe0a02a74ba06e7c29c5", 0x60}, {0x0}], 0x2}}], 0x1, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ibss_ssid, 0xb, 0x0)

1.223616023s ago: executing program 3 (id=3260):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x80000400000bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000000100), 0x0, 0x1fc, 0x0)
renameat2(r1, 0x0, 0xffffffffffffffff, 0x0, 0x1)
futex(&(0x7f0000000000), 0x8c, 0x1, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc01864d0, &(0x7f0000000000)={0x4000000, 0x400000})
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x220, 0xf0, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x188, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@remote, @multicast1, 0x0, 0x0, 'macvlan0\x00', 'syzkaller0\x00'}, 0x6, 0xa8, 0xf0, 0x0, {}, [@common=@unspec=@time={{0x38}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@ip={@local, @dev, 0x0, 0x0, 'veth0_to_team\x00', 'veth1_virt_wifi\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x280)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa0000000003"], 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xc, &(0x7f0000000080), 0x4)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffdfff)

115.194815ms ago: executing program 5 (id=3261):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r0=>0x0})
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x0, r0}, 0x10)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000af00)={0x2020, 0x0, 0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
chown(&(0x7f0000000080)='./file0\x00', r2, r3)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000580)=@newae={0x1f8, 0x1e, 0x8, 0x70bd2c, 0x25dfdbfb, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, 0x4d3, 0x2, 0xff}, @in=@remote, 0x27, 0x3502}, [@coaddr={0x14, 0xe, @in6=@private2}, @lastused={0xc, 0xf, 0x2}, @policy={0xac, 0x7, {{@in=@local, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x4e21, 0x10, 0x4e21, 0x6, 0xa, 0x80, 0x80, 0x2f}, {0xce, 0x5, 0xffffffffffff6198, 0x7, 0x401, 0x37, 0x5, 0xfffffffffffffff9}, {0x5, 0x8fc8, 0x400, 0x800}, 0x7, 0x6e6bb0, 0x0, 0x0, 0x0, 0x3}}, @tfcpad={0x8, 0x16, 0x3}, @sa={0xe4, 0x6, {{@in6=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x13}, 0x4e24, 0xb, 0x4e20, 0x8, 0x11c5250f51481ef0, 0xa0, 0x80, 0xd9, r0, r2}, {@in6=@loopback, 0x4d6, 0x269310931dca7f2a}, @in6=@dev={0xfe, 0x80, '\x00', 0xe}, {0x7, 0x100000001, 0xd91, 0x6, 0x2, 0x3, 0x55e4, 0x9}, {0x0, 0x38, 0x7, 0x8000000000000000}, {0x4, 0x10}, 0x70bd25, 0x3506, 0xa, 0x0, 0x7, 0x20}}]}, 0x1f8}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
r7 = timerfd_create(0x0, 0x0)
timerfd_settime(r7, 0x3, &(0x7f0000000440)={{0x0, 0x989680}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000480)={0xd54, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3a7, 0x8000000})
ioctl$TFD_IOC_SET_TICKS(r7, 0x40085400, &(0x7f0000000380)=0x2)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x44, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x31c7, 0x4100, 0x7, 0x8000, 0x0, 0x2, 0xffff, 0x4]}}]}]}]}, 0x44}}, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r11, &(0x7f0000000040), 0x6)

0s ago: executing program 1 (id=3262):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x98, 0x1, 0x8, 0x301, 0x0, 0x0, {0x9, 0x0, 0x3}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xad}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8917}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8906}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_OPEN={0x8, 0x4, 0x1, 0x0, 0x56f3}, @CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4000000}, 0x810)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000180)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e23, @private=0xa010102}, 0x2}}, 0x26)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELTABLE={0x80, 0x2, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_TABLE_USERDATA={0x6a, 0x6, "de176f12cb5549bc7f2f439f7e3304edcfbdf1c736c7fa3714d522be07a7a3df465f6f338fd3832c05a0c9895f220a08b4d1b9f86d31a6792db66b24231c4d0c5c9fa8530d011b869926df35fbbd50287608de9ef3d8f0dc3a520ffdf8f9923a1c81bb27cb1c"}]}, @NFT_MSG_NEWOBJ={0x58, 0x12, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x5}, @NFT_OBJECT_CT_TIMEOUT=@NFTA_OBJ_DATA={0x44, 0x4, 0x0, 0x1, [@NFTA_CT_TIMEOUT_L4PROTO={0x5, 0x2, 0x21}, @NFTA_CT_TIMEOUT_L4PROTO={0x5, 0x2, 0x1}, @NFTA_CT_TIMEOUT_L4PROTO={0x5, 0x2, 0x1}, @NFTA_CT_TIMEOUT_DATA={0xc, 0x3, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x2}]}, @NFTA_CT_TIMEOUT_L3PROTO={0x6, 0x1, 0x1, 0x0, 0x8884}, @NFTA_CT_TIMEOUT_DATA={0x14, 0x3, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x5}]}]}}, @NFT_MSG_NEWRULE={0xb0, 0x6, 0xa, 0x0, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x90, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_TUNNEL_MODE={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}, {0x10, 0x1, 0x0, 0x1, @socket={{0xb}, @void}}, {0x18, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0x2}]}}}, {0xc, 0x1, 0x0, 0x1, @fib={{0x8}, @void}}, {0x1c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x29}]}}}, {0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x1b0}, 0x1, 0x0, 0x0, 0x40000}, 0x20040010)
flock(0xffffffffffffffff, 0x4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000005c0)={0xffffffffffffffff, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000600)=<r3=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000640)={{{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4e22, 0x9, 0x4e21, 0x9, 0xa, 0x80, 0x0, 0x87, r2, r3}, {0x8, 0x5, 0x6, 0x6, 0x2, 0xffff, 0x3ff, 0x4}, {0xedc3, 0x1, 0x7, 0x9}, 0x4c5, 0x6e6bb7, 0x1, 0x1, 0x2, 0x3}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d5, 0x6c}, 0x2, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3505, 0x3, 0x2, 0x7, 0x83b, 0x1, 0x174}}, 0xe8)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x9}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x48}, 0x1, 0x0, 0x0, 0x20008000}, 0x44880)
mount$9p_tcp(&(0x7f0000000980), &(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00), 0x4400, &(0x7f0000000a40)={'trans=tcp,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@version_u}], [{@dont_appraise}, {@smackfsroot={'smackfsroot', 0x3d, '.#@@'}}, {@smackfshat={'smackfshat', 0x3d, ',:'}}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@fsname={'fsname', 0x3d, 'socket\x00'}}, {@obj_user={'obj_user', 0x3d, 'fwd\x00'}}, {@flag='nomand'}, {@euid_eq={'euid', 0x3d, r3}}]}})
sendmsg$nfc_llcp(0xffffffffffffffff, &(0x7f00000034c0)={&(0x7f0000000e40)={0x27, 0x0, 0x0, 0x1, 0x4, 0x8, "9dd6655accdd74daae78ce225c0ed2e495ecc3debae2f82bd65c38f1f0816a87450a7bf53bafe274bca72469ed867f827ea898c0f82ed6c51a818c311eb334", 0x3f}, 0x60, &(0x7f00000033c0)=[{&(0x7f0000000ec0)="e48c4f9d09f20dcddd9fa1d77fd16dca07376ff5ff755b3b034739f90bf718a6fa2c3bee204ef997ba1e04b0c543675442e9cd59d49baf93efacf0df440c236c40381a01efe8edd0954375c419cd924d031f80dd2b0ec3c59a9959683ca5348fece8f98893b1458e3af25755ed769b96a2e2d1d094ac7a4cde0f0293b01f62ebc402cb417f7edda2d15850e0b0f2f55a7b7fd3e9514d95521b681d4a5a4653013687e273e1f5101d554f29b1d85a3827935deed3758bd52fd37d7f704324da3b55908218456b96426ded5de9e589b1ecc478d324f84062e8e2e4", 0xda}, {&(0x7f0000000fc0)="15e0f5aff6f6511580d88b75770ab23144d1b6fd5449ecd5a77a6aab6e95b468c7d360753a10f1ee765b1ac35a5fc957b48f578418fdff84d00723281cd1ab3e432fe8f34dffb6ec1f50ca64870c13369c69375e3958f66f8debc9055a6e7256c2216139c8e2960dae43baeba8759b1ebbef0354e3dd358d6df96651a56c3c36b160d90ec51c0393485c2506cfefdecf833d9a0d541fd90fda12da6c3ba4fce05ae1e70391a74b6bef2ecf0d2ad1e89b8f1f048422ad8d0c23aa9b2d6a31f044c8b9f5d66cc363210c6175ff3285eb2c8a242a2d110ec4dc45f919999e3caef0488e559726fe7d0ffe0ae0c4d67c66076e", 0xf1}, {&(0x7f00000010c0)="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", 0x1000}, {&(0x7f00000020c0)="dff4a8ee27940492219cabb0eeaeb8897bc1c1821699557d2a9a7c2d7c6b51f2583e5fdd57cc532d7330f4b0889bbade2798290dc6aae32c94968cb6aa2b0738a1e73d8dfc0add497763c47ded1efa3c7b880c7e15856f80f6b75f6788a2643dba6768530af209c2f1280780a846c3afed4b4d8f007a7b1f12e0ad7ac4e335a3e7c3bf8de640c772105970c69f54ece97a3936876e177f959eb31340ca73ad3da161e2b5b94611f880c224565c1f92958f4c6552debbd9b88f11d941a133f27213e81c1bfe721e7cd0b6205e8326e830f56a05741c", 0xd5}, {&(0x7f00000021c0)="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", 0x1000}, {&(0x7f00000031c0)="2fe819a7e90254154a3df9e36ba696a8ffc0a9657c404e6dd8d7cd90f933c8344ebae60505dd46b4da363a7fec2f52a3f397f42c9ac6c2f12aac1de910a4630737173f6b0a27963662520930a183308338909b7b0bb51499d3e68d23b7ff4e", 0x5f}, {&(0x7f0000003240)="10639e0365e41f196a0dfc6c21307cf192b73a2314bb4d82590815f51dff8c8c0634a5a61ce3615ba3608009271302d1602a901f9c1098a4f0d516ee4ca7692b2fb6419ff679f7ded71fe70afc1914ba7b107ec67cf95086d1e6b656aaee03a0c0dca04f37b5863e", 0x68}, {&(0x7f00000032c0)="4d0cc34486caa5ed66bed391f9c31d72e20401ecfcdc6382506704924a3f91bd4a8cd894b790d8c86c42b3884e4894ea9801843ba5a79aeba7140e541b34b01a423d35a561f34905855e4d7e1c40c21b3a0b78476337f9824368e1f37e585185585a0311e047fc4a37766dda36ad31e8d3a365562c6577b1989455b0b1e65a012965ef5bacf2aedc6c867d475e423354973e2baa172d5d42cd1bd90dbbf041834218f78a69fd3966231259315a868046908e51f3ff1ed47931fc2613dba62de99996296cdd12f7c28f0be6f9f737beecadf5742e4d50493ac439d62f6709189f22a0cfbbf0f5d972bc", 0xe9}], 0x8, &(0x7f0000003440)={0x80, 0x110, 0x7, "9977b8a462b384c27458216e07ed8be0d30a5c86365624729dc3b1946cf522d1b99491efe64f8ec075172f9de76b93e7be5331b51906720abf3b85aa991639d0c1c7031f4762bc8f828e7c8d8e9d010b3aca54aca5cb25ae5e85d71c00f0e6106e093b3c3b8dd105216649c4a6"}, 0x80, 0x4000}, 0x48020)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000003500)={0x2, 0x0, [{0xb00, 0x0, 0x1000}, {0x873, 0x0, 0x4}]})
umount2(&(0x7f0000003540)='./file0\x00', 0x5)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000003b40)={&(0x7f0000003640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003b00)={&(0x7f0000003680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWCHAIN={0xe4, 0x3, 0xa, 0xa00, 0x0, 0x0, {0x7, 0x0, 0x5}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}, @NFTA_CHAIN_USERDATA={0x74, 0xc, "229930d1c53213cd82acf488d718f12c96ca9cc543abadfab40383500e3d28376a348872ce4e57f16cc473b8d2b95feab5740b4710afcf2b680e9e98ae584b245b4d46fefddb96ffc100fad691a02ef5cbbd59610f7e00edfb035de8e46387a1234dffed05732e71092cd143ce4f8747"}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x6}, @NFT_OBJECT_CT_HELPER=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}}, @NFT_MSG_NEWFLOWTABLE={0xc0, 0x16, 0xa, 0x3, 0x0, 0x0, {0xa}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HOOK={0xa0, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xe5}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x101}, @NFTA_FLOWTABLE_HOOK_DEVS={0x7c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_macvtap\x00'}, {0x14, 0x1, 'netdevsim0\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth1\x00'}, {0x14, 0x1, 'team_slave_0\x00'}, {0x14, 0x1, 'geneve1\x00'}]}]}]}, @NFT_MSG_NEWTABLE={0x144, 0x0, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_TABLE_USERDATA={0x5b, 0x6, "da6362f8dc95148c29808d81973fbcd4a5a6aa97f1513fcd1f9ead56b7500e0e6f169e338d4e59b0a0d0cb6d981440f48cb7f8e04bb810b6b9ead82a17a46decc0d2f574b090f2a9c509fb2ad6a2b7f6ba08b4dedbc28c"}, @NFTA_TABLE_USERDATA={0xc8, 0x6, "83366c53a42a43317d106fe6fd690c99251ff058a745b449b2ab9f60287672b30e0274238ad43ab5816a3a2cd83d4a9756d2b23d08a748aa94141e24b84cde3169cc146fce0f0c550b75924e0f280f66b0bd352fc2ddc49d630dda461498725a7998986fc3381c678fdbc23db469ad90e98b4d63ffe192071dbd670d7db402c5bcf2fed0561ecfd4bc959201ee7391f43f00ac67a0b4ffd82603f3af1fda16867e32e7c29e9b34905ff3d238ea14cfb5aef66ffdb42a934a5ef0e22d0e10102cf6edc45f"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x6}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88fb}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0xf6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x2e}]}]}, @NFT_MSG_DELCHAIN={0x94, 0x5, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_CHAIN_COUNTERS={0x64, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x101}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x92ab}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffff9}]}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0xb}]}], {0x14}}, 0x448}}, 0x0)

kernel console output (not intermixed with test programs):

tem tag 0xd
[  856.157605][    T9] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving
[  856.426475][T11143] usb 4-1: USB disconnect, device number 78
[  856.441024][    T9] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  856.614880][T15344] tmpfs: Unknown parameter 'usrquota'
[  856.692590][T15346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2698'.
[  856.897613][T12684] usb 6-1: USB disconnect, device number 57
[  858.175187][T12684] usb 5-1: USB disconnect, device number 56
[  858.186809][ T5916] xr_serial 2-1:150.204: xr_serial converter detected
[  858.228190][ T5916] xr_serial ttyUSB0: Failed to set reg 0x60: -71
[  858.271254][ T5916] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71
[  858.301170][    T9] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[  858.334565][ T5916] usb 2-1: USB disconnect, device number 59
[  858.357738][ T5916] xr_serial 2-1:150.204: device disconnected
[  860.655537][    T9] usb 6-1: Using ep0 maxpacket: 8
[  860.663590][    T9] usb 6-1: device descriptor read/all, error -71
[  861.100437][ T5872] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[  861.438629][ T5872] usb 4-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  861.539930][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  861.629411][ T5872] usb 4-1: Product: syz
[  861.683192][ T5872] usb 4-1: Manufacturer: syz
[  861.744737][ T5872] usb 4-1: SerialNumber: syz
[  861.927515][ T5872] usb 4-1: config 0 descriptor??
[  862.053568][ T5872] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  862.100576][ T5916] usb 5-1: new low-speed USB device number 57 using dummy_hcd
[  862.254226][ T5916] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  862.275096][ T5916] usb 5-1: config 0 has no interface number 0
[  862.287885][ T5916] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  862.300334][ T5916] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  862.311606][ T5916] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  862.320991][ T5916] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  862.361325][ T5916] usb 5-1: config 0 descriptor??
[  862.380757][T15390] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  862.408676][ T5916] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  862.598339][T15390] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2713'.
[  862.620553][T15390] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2713'.
[  863.648746][    T9] usb 5-1: USB disconnect, device number 57
[  863.981699][ T5872] gspca_sunplus: reg_w_riv err -71
[  863.986949][ T5872] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  864.144409][ T5872] usb 4-1: USB disconnect, device number 79
[  867.149790][   T29] audit: type=1326 audit(1734594050.884:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15445 comm="syz.2.2729" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc415b85d29 code=0x0
[  868.698848][    T9] usb 5-1: new low-speed USB device number 58 using dummy_hcd
[  869.617412][    T9] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  869.633389][    T9] usb 5-1: config 0 has no interface number 0
[  869.650128][    T9] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  869.669829][    T9] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  869.687767][    T9] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  869.698468][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  869.727870][    T9] usb 5-1: config 0 descriptor??
[  869.737690][T15468] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  869.801685][    T9] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  869.840693][T12684] usb 2-1: new full-speed USB device number 60 using dummy_hcd
[  869.945192][T15481] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  869.980474][T12684] usb 2-1: device descriptor read/64, error -71
[  870.006270][T15468] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2734'.
[  870.028775][T15468] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2734'.
[  870.220427][T12684] usb 2-1: new full-speed USB device number 61 using dummy_hcd
[  870.329573][T11143] usb 5-1: USB disconnect, device number 58
[  870.430386][T12684] usb 2-1: device descriptor read/64, error -71
[  870.540873][T12684] usb usb2-port1: attempt power cycle
[  870.563241][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  870.607491][T15490] FAULT_INJECTION: forcing a failure.
[  870.607491][T15490] name failslab, interval 1, probability 0, space 0, times 0
[  870.626110][T15490] CPU: 0 UID: 0 PID: 15490 Comm: syz.3.2740 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  870.636923][T15490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  870.646974][T15490] Call Trace:
[  870.650244][T15490]  <TASK>
[  870.653168][T15490]  dump_stack_lvl+0x241/0x360
[  870.657863][T15490]  ? __pfx_dump_stack_lvl+0x10/0x10
[  870.663050][T15490]  ? __pfx__printk+0x10/0x10
[  870.667647][T15490]  ? fs_reclaim_acquire+0x93/0x130
[  870.672751][T15490]  ? __pfx___might_resched+0x10/0x10
[  870.678046][T15490]  should_fail_ex+0x3b0/0x4e0
[  870.682729][T15490]  should_failslab+0xac/0x100
[  870.687406][T15490]  __kmalloc_noprof+0xdd/0x4c0
[  870.692166][T15490]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  870.697893][T15490]  tomoyo_realpath_from_path+0xcf/0x5e0
[  870.703432][T15490]  tomoyo_path_number_perm+0x236/0x860
[  870.708881][T15490]  ? tomoyo_path_number_perm+0x206/0x860
[  870.714504][T15490]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  870.720499][T15490]  ? hook_path_mknod+0x173/0x620
[  870.725428][T15490]  tomoyo_path_mknod+0x176/0x1b0
[  870.730356][T15490]  ? __pfx_hook_path_mknod+0x10/0x10
[  870.735659][T15490]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  870.741111][T15490]  ? __pfx_filename_create+0x10/0x10
[  870.746386][T15490]  ? __might_fault+0xaa/0x120
[  870.751054][T15490]  security_path_mknod+0x181/0x3a0
[  870.756176][T15490]  do_mknodat+0x298/0x5b0
[  870.760497][T15490]  ? __pfx_do_mknodat+0x10/0x10
[  870.765342][T15490]  ? getname_flags+0x1e3/0x540
[  870.770107][T15490]  __x64_sys_mknod+0x8c/0xa0
[  870.774684][T15490]  do_syscall_64+0xf3/0x230
[  870.779178][T15490]  ? clear_bhb_loop+0x35/0x90
[  870.783849][T15490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.789736][T15490] RIP: 0033:0x7f9609d85d29
[  870.794138][T15490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  870.813842][T15490] RSP: 002b:00007f960abfc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  870.822359][T15490] RAX: ffffffffffffffda RBX: 00007f9609f75fa0 RCX: 00007f9609d85d29
[  870.830323][T15490] RDX: 0000000000000706 RSI: 00000000a002c000 RDI: 00000000200002c0
[  870.838303][T15490] RBP: 00007f960abfc090 R08: 0000000000000000 R09: 0000000000000000
[  870.846271][T15490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  870.854226][T15490] R13: 0000000000000000 R14: 00007f9609f75fa0 R15: 00007fff359c8fe8
[  870.862193][T15490]  </TASK>
[  870.865228][    C0] vkms_vblank_simulate: vblank timer overrun
[  870.874219][T15490] ERROR: Out of memory at tomoyo_realpath_from_path.
[  871.575151][T12684] usb 2-1: new full-speed USB device number 62 using dummy_hcd
[  871.655843][T12684] usb 2-1: device descriptor read/8, error -71
[  872.763513][T15510] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2745'.
[  873.964400][T15525] FAULT_INJECTION: forcing a failure.
[  873.964400][T15525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  873.988485][T15525] CPU: 0 UID: 0 PID: 15525 Comm: syz.4.2750 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  873.999406][T15525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  874.009479][T15525] Call Trace:
[  874.012768][T15525]  <TASK>
[  874.015698][T15525]  dump_stack_lvl+0x241/0x360
[  874.020385][T15525]  ? __pfx_dump_stack_lvl+0x10/0x10
[  874.025583][T15525]  ? __pfx__printk+0x10/0x10
[  874.030176][T15525]  ? __pfx_lock_release+0x10/0x10
[  874.035295][T15525]  should_fail_ex+0x3b0/0x4e0
[  874.039973][T15525]  _copy_from_user+0x2f/0xc0
[  874.044582][T15525]  copy_msghdr_from_user+0xae/0x680
[  874.049796][T15525]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  874.055600][T15525]  ? __fget_files+0x2a/0x410
[  874.060211][T15525]  ? __fget_files+0x2a/0x410
[  874.064809][T15525]  __sys_sendmsg+0x209/0x350
[  874.069421][T15525]  ? __pfx_lock_release+0x10/0x10
[  874.074445][T15525]  ? __pfx___sys_sendmsg+0x10/0x10
[  874.079568][T15525]  ? __pfx_vfs_write+0x10/0x10
[  874.084347][T15525]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  874.090672][T15525]  ? do_syscall_64+0x100/0x230
[  874.095468][T15525]  ? do_syscall_64+0xb6/0x230
[  874.100182][T15525]  do_syscall_64+0xf3/0x230
[  874.104715][T15525]  ? clear_bhb_loop+0x35/0x90
[  874.109402][T15525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.115302][T15525] RIP: 0033:0x7f5849785d29
[  874.119722][T15525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  874.139330][T15525] RSP: 002b:00007f584a557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  874.147747][T15525] RAX: ffffffffffffffda RBX: 00007f5849975fa0 RCX: 00007f5849785d29
[  874.155720][T15525] RDX: 0000000000000000 RSI: 00000000200005c0 RDI: 0000000000000004
[  874.163711][T15525] RBP: 00007f584a557090 R08: 0000000000000000 R09: 0000000000000000
[  874.171703][T15525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  874.179679][T15525] R13: 0000000000000000 R14: 00007f5849975fa0 R15: 00007ffee3a2fdb8
[  874.187702][T15525]  </TASK>
[  874.190840][    C0] vkms_vblank_simulate: vblank timer overrun
[  874.503403][T15527] netlink: 'syz.3.2749': attribute type 3 has an invalid length.
[  874.550342][ T5872] usb 6-1: new low-speed USB device number 60 using dummy_hcd
[  874.670683][T12684] usb 5-1: new low-speed USB device number 59 using dummy_hcd
[  874.730951][ T5872] usb 6-1: Invalid ep0 maxpacket: 32
[  874.831976][T12684] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  874.850738][T12684] usb 5-1: config 0 has no interface number 0
[  874.869568][T12684] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  874.900381][T12684] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  875.172298][ T5872] usb 6-1: new low-speed USB device number 61 using dummy_hcd
[  875.215173][T12684] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  875.226166][T12684] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  876.254924][ T5872] usb 6-1: Invalid ep0 maxpacket: 32
[  876.271846][ T5872] usb usb6-port1: attempt power cycle
[  876.950496][ T5872] usb 6-1: new low-speed USB device number 62 using dummy_hcd
[  876.989928][T12684] usb 5-1: config 0 descriptor??
[  876.997041][T15533] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  877.115295][T12684] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  877.142625][T15558] block nbd2: shutting down sockets
[  877.163418][T15558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2761'.
[  877.270880][T15533] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2752'.
[  877.309655][T15533] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2752'.
[  877.410447][T12684] usb 5-1: USB disconnect, device number 59
[  877.435480][ T5872] usb 6-1: device descriptor read/8, error -71
[  878.759100][T15595] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  878.920666][T12684] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  879.084307][T12684] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  879.094537][T12684] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  879.128846][T12684] usb 5-1: Product: syz
[  879.156997][T12684] usb 5-1: Manufacturer: syz
[  879.188356][T12684] usb 5-1: SerialNumber: syz
[  879.840588][T12684] usb 5-1: config 0 descriptor??
[  881.615109][T12684] usb 5-1: non-Atmel transceiver xxxx6cf2
[  881.622957][T12684] usb 5-1: Firmware version (0.0) predates our first public release.
[  881.631223][T12684] usb 5-1: Please update to version 0.2 or newer
[  881.638172][T12684] usb 5-1: atusb_probe: initialization failed, error = -19
[  881.652716][T12684] usb 5-1: USB disconnect, device number 60
[  882.196615][T12684] usb 3-1: new high-speed USB device number 68 using dummy_hcd
[  882.199292][T15650] IPVS: Unknown mcast interface: syzkaller1
[  882.655788][T15638] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2784'.
[  882.733571][T12684] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  882.743660][T12684] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  882.779044][T12684] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  882.805933][T12684] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  882.830825][T12684] usb 3-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  882.867120][T12684] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  882.891494][T12684] usb 3-1: config 0 descriptor??
[  883.158018][T12684] hdpvr 3-1:0.0: firmware version 0x0 dated 
[  883.164972][T12684] hdpvr 3-1:0.0: untested firmware, the driver might not work.
[  884.442312][T12684] hdpvr 3-1:0.0: Could not setup controls
[  884.451991][T12684] hdpvr 3-1:0.0: registering videodev failed
[  884.510712][T12684] hdpvr 3-1:0.0: probe with driver hdpvr failed with error -71
[  884.615378][T12684] usb 3-1: USB disconnect, device number 68
[  885.949720][T15691] trusted_key: encrypted_key: key user:syz not found
[  886.386714][T15704] batman_adv: batadv0: Adding interface: dummy0
[  886.403452][T15704] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  886.403493][T15704] batman_adv: batadv0: Interface activated: dummy0
[  886.560458][T12684] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[  886.690301][ T5872] usb 3-1: new high-speed USB device number 69 using dummy_hcd
[  886.919914][ T5872] usb 3-1: Using ep0 maxpacket: 16
[  887.036601][ T5872] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  887.319935][ T5872] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  887.322118][T12684] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  887.331171][ T5872] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  887.341251][T12684] usb 4-1: config 1 has no interface number 0
[  887.349675][ T5872] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  887.380761][T12684] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  887.397037][T12684] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  887.406983][T12684] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  887.428351][T12684] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  887.445246][T12684] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  887.454169][T12684] usb 4-1: Product: syz
[  887.458475][T12684] usb 4-1: Manufacturer: syz
[  887.460368][ T5872] usb 3-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=54.21
[  887.469043][T12684] usb 4-1: SerialNumber: syz
[  887.472187][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  887.472215][ T5872] usb 3-1: Product: syz
[  887.472232][ T5872] usb 3-1: Manufacturer: syz
[  887.472249][ T5872] usb 3-1: SerialNumber: syz
[  887.481765][ T5872] usb 3-1: config 0 descriptor??
[  887.544056][ T5872] imon_raw 3-1:0.0: IR endpoint missing
[  887.741838][ T5872] usb 3-1: USB disconnect, device number 69
[  888.332826][T12684] cdc_ncm 4-1:1.1: bind() failure
[  889.442517][T12684] usb 4-1: USB disconnect, device number 80
[  890.237465][T15743] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  890.327020][T15741] af_packet: tpacket_rcv: packet too big, clamped from 48 to 4294967272. macoff=96
[  892.070801][    T9] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  892.231306][    T9] usb 5-1: device descriptor read/64, error -71
[  892.342327][T15756] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  892.358259][T15756] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  892.372380][T15756] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  892.382090][T15756] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  892.389838][T15756] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  892.400902][T15756] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  892.480650][    T9] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[  892.537923][T15759] bond0: (slave macvlan2): Error -98 calling set_mac_address
[  892.596597][T15764] FAULT_INJECTION: forcing a failure.
[  892.596597][T15764] name failslab, interval 1, probability 0, space 0, times 0
[  892.613268][T15764] CPU: 0 UID: 0 PID: 15764 Comm: syz.3.2819 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  892.624095][T15764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  892.634171][T15764] Call Trace:
[  892.637446][T15764]  <TASK>
[  892.640376][T15764]  dump_stack_lvl+0x241/0x360
[  892.645076][T15764]  ? __pfx_dump_stack_lvl+0x10/0x10
[  892.650315][T15764]  ? __pfx__printk+0x10/0x10
[  892.654936][T15764]  ? __kmalloc_cache_noprof+0x48/0x390
[  892.660418][T15764]  ? __pfx___might_resched+0x10/0x10
[  892.665735][T15764]  should_fail_ex+0x3b0/0x4e0
[  892.670440][T15764]  should_failslab+0xac/0x100
[  892.675148][T15764]  __kmalloc_cache_noprof+0x70/0x390
[  892.680640][T15764]  ? __se_sys_mount+0x15a/0x3c0
[  892.685513][T15764]  ? memdup_user+0x9f/0xc0
[  892.689953][T15764]  __se_sys_mount+0x15a/0x3c0
[  892.694652][T15764]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  892.701178][T15764]  ? __pfx___se_sys_mount+0x10/0x10
[  892.706396][T15764]  ? do_syscall_64+0x100/0x230
[  892.711188][T15764]  ? __x64_sys_mount+0x20/0xc0
[  892.715978][T15764]  do_syscall_64+0xf3/0x230
[  892.720528][T15764]  ? clear_bhb_loop+0x35/0x90
[  892.725227][T15764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  892.731204][T15764] RIP: 0033:0x7f9609d85d29
[  892.735641][T15764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  892.755273][T15764] RSP: 002b:00007f960abfc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  892.763719][T15764] RAX: ffffffffffffffda RBX: 00007f9609f75fa0 RCX: 00007f9609d85d29
[  892.771711][T15764] RDX: 0000000020000180 RSI: 0000000020000080 RDI: 0000000000000000
[  892.779780][T15764] RBP: 00007f960abfc090 R08: 0000000020000200 R09: 0000000000000000
[  892.787793][T15764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  892.795759][T15764] R13: 0000000000000000 R14: 00007f9609f75fa0 R15: 00007fff359c8fe8
[  892.803766][T15764]  </TASK>
[  892.806894][    C0] vkms_vblank_simulate: vblank timer overrun
[  892.838335][    T9] usb 5-1: device descriptor read/64, error -71
[  892.961895][    T9] usb usb5-port1: attempt power cycle
[  893.310399][    T9] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[  893.331561][    T9] usb 5-1: device descriptor read/8, error -71
[  893.964026][T15755] chnl_net:caif_netlink_parms(): no params data found
[  894.973637][T15756] Bluetooth: hci0: command tx timeout
[  895.652911][T15755] bridge0: port 1(bridge_slave_0) entered blocking state
[  895.672817][T15755] bridge0: port 1(bridge_slave_0) entered disabled state
[  895.682402][T15755] bridge_slave_0: entered allmulticast mode
[  895.971344][T15755] bridge_slave_0: entered promiscuous mode
[  895.986534][T15755] bridge0: port 2(bridge_slave_1) entered blocking state
[  896.009048][T15755] bridge0: port 2(bridge_slave_1) entered disabled state
[  896.016861][T15755] bridge_slave_1: entered allmulticast mode
[  896.102010][T12683] usb 3-1: new high-speed USB device number 70 using dummy_hcd
[  896.112364][T15755] bridge_slave_1: entered promiscuous mode
[  896.152017][T15792] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2825'.
[  896.197546][T15792] 8021q: adding VLAN 0 to HW filter on device bond1
[  896.224860][T15755] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  896.255855][T15755] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  896.265590][T12683] usb 3-1: Using ep0 maxpacket: 8
[  896.276088][T12683] usb 3-1: config 1 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  896.330558][T12683] usb 3-1: config 1 interface 0 has no altsetting 0
[  896.363647][T15755] team0: Port device team_slave_0 added
[  896.371968][T12683] usb 3-1: New USB device found, idVendor=056a, idProduct=0013, bcdDevice= 0.40
[  896.375935][T15755] team0: Port device team_slave_1 added
[  896.400969][T12683] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  896.409069][T12683] usb 3-1: Product: syz
[  896.430248][T12683] usb 3-1: Manufacturer: Л
[  896.434812][T12683] usb 3-1: SerialNumber: syz
[  896.446695][T15755] batman_adv: batadv0: Adding interface: batadv_slave_0
[  896.478664][T15755] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  896.530302][T15755] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  896.544198][T15755] batman_adv: batadv0: Adding interface: batadv_slave_1
[  896.557784][T15755] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  896.595110][T15755] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  896.735364][T15755] hsr_slave_0: entered promiscuous mode
[  896.763614][T15755] hsr_slave_1: entered promiscuous mode
[  896.789975][T15755] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  896.806820][T15811] FAULT_INJECTION: forcing a failure.
[  896.806820][T15811] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  896.810772][T15755] Cannot create hsr debugfs directory
[  896.831116][T15811] CPU: 1 UID: 0 PID: 15811 Comm: syz.5.2828 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  896.841930][T15811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  896.852019][T15811] Call Trace:
[  896.855322][T15811]  <TASK>
[  896.858281][T15811]  dump_stack_lvl+0x241/0x360
[  896.862992][T15811]  ? __pfx_dump_stack_lvl+0x10/0x10
[  896.868236][T15811]  ? __pfx__printk+0x10/0x10
[  896.872859][T15811]  ? __lock_acquire+0x1397/0x2100
[  896.877897][T15811]  should_fail_ex+0x3b0/0x4e0
[  896.882593][T15811]  prepare_alloc_pages+0x1da/0x5b0
[  896.887710][T15811]  __alloc_pages_noprof+0x16f/0x710
[  896.892923][T15811]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  896.898689][T15811]  ? __pfx_lock_acquire+0x10/0x10
[  896.903748][T15811]  alloc_pages_mpol_noprof+0x3e8/0x680
[  896.909260][T15811]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  896.915292][T15811]  vma_alloc_folio_noprof+0x12e/0x230
[  896.920707][T15811]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  896.926648][T15811]  folio_prealloc+0x2e/0x170
[  896.931272][T15811]  handle_pte_fault+0x2c98/0x5ed0
[  896.936346][T15811]  ? mark_lock+0x9a/0x360
[  896.940709][T15811]  ? __pfx_handle_pte_fault+0x10/0x10
[  896.946122][T15811]  ? __lock_acquire+0x1397/0x2100
[  896.951214][T15811]  ? __pfx_lock_acquire+0x10/0x10
[  896.956281][T15811]  ? count_memcg_event_mm+0x3c2/0x420
[  896.961697][T15811]  ? do_raw_spin_lock+0x14f/0x370
[  896.966781][T15811]  handle_mm_fault+0x1053/0x1ad0
[  896.971776][T15811]  ? __pfx_handle_mm_fault+0x10/0x10
[  896.977208][T15811]  ? follow_page_pte+0x97f/0x1ca0
[  896.982278][T15811]  ? __pfx_find_vma+0x10/0x10
[  896.986975][T15811]  ? vma_is_secretmem+0xd/0x50
[  896.991762][T15811]  ? check_vma_flags+0x52b/0x5a0
[  896.997253][T15811]  __get_user_pages+0x1c82/0x49e0
[  897.002348][T15811]  ? __pfx___get_user_pages+0x10/0x10
[  897.007736][T15811]  ? __pfx_down_read_killable+0x10/0x10
[  897.013316][T15811]  __gup_longterm_locked+0xe64/0x17f0
[  897.018743][T15811]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  897.025287][T15811]  ? __pfx___gup_longterm_locked+0x10/0x10
[  897.031125][T15811]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  897.037482][T15811]  ? sanity_check_pinned_pages+0x11b9/0x12a0
[  897.043469][T15811]  ? gup_fast_fallback+0x207e/0x29c0
[  897.048769][T15811]  gup_fast_fallback+0x2266/0x29c0
[  897.053951][T15811]  ? __pfx_gup_fast_fallback+0x10/0x10
[  897.059427][T15811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  897.065559][T15811]  ? is_valid_gup_args+0x124/0x200
[  897.070684][T15811]  pin_user_pages_fast+0xcc/0x160
[  897.075726][T15811]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  897.081378][T15811]  ? rcu_is_watching+0x15/0xb0
[  897.086151][T15811]  ? trace_kmalloc+0x1f/0xd0
[  897.090344][    T9] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[  897.090728][T15811]  ? rds_info_getsockopt+0x20c/0x600
[  897.103565][T15811]  rds_info_getsockopt+0x22e/0x600
[  897.108701][T15811]  ? __might_fault+0xaa/0x120
[  897.113407][T15811]  ? __pfx_lock_release+0x10/0x10
[  897.118446][T15811]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  897.124104][T15811]  ? __might_fault+0xc6/0x120
[  897.128808][T15811]  ? rds_getsockopt+0x2b8/0x530
[  897.133674][T15811]  ? __pfx_rds_getsockopt+0x10/0x10
[  897.138906][T15811]  do_sock_getsockopt+0x3c4/0x7e0
[  897.143965][T15811]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  897.149520][T15811]  ? __fget_files+0x2a/0x410
[  897.154124][T15811]  ? __fget_files+0x395/0x410
[  897.158825][T15811]  ? __fget_files+0x2a/0x410
[  897.163443][T15811]  __x64_sys_getsockopt+0x2a1/0x370
[  897.168670][T15811]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  897.174419][T15811]  ? do_syscall_64+0x100/0x230
[  897.179207][T15811]  ? do_syscall_64+0xb6/0x230
[  897.183901][T15811]  do_syscall_64+0xf3/0x230
[  897.188424][T15811]  ? clear_bhb_loop+0x35/0x90
[  897.193123][T15811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  897.199030][T15811] RIP: 0033:0x7fe58b585d29
[  897.203455][T15811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  897.223091][T15811] RSP: 002b:00007fe58c373038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  897.231537][T15811] RAX: ffffffffffffffda RBX: 00007fe58b776080 RCX: 00007fe58b585d29
[  897.239523][T15811] RDX: 0000000000002710 RSI: 0000200000000114 RDI: 0000000000000004
[  897.240359][    T9] usb 6-1: Using ep0 maxpacket: 32
[  897.247494][T15811] RBP: 00007fe58c373090 R08: 0000000020000040 R09: 0000000000000000
[  897.247515][T15811] R10: 0000000020005ec0 R11: 0000000000000246 R12: 0000000000000002
[  897.247527][T15811] R13: 0000000000000000 R14: 00007fe58b776080 R15: 00007fff4301bfc8
[  897.247556][T15811]  </TASK>
[  897.280495][T15756] Bluetooth: hci0: command tx timeout
[  897.316847][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 16
[  897.336471][    T9] usb 6-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[  897.346230][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  897.354510][    T9] usb 6-1: Product: syz
[  897.358686][    T9] usb 6-1: Manufacturer: syz
[  897.363702][    T9] usb 6-1: SerialNumber: syz
[  897.374799][    T9] usb 6-1: config 0 descriptor??
[  897.698667][T15755] 8021q: adding VLAN 0 to HW filter on device bond0
[  898.162504][T15755] 8021q: adding VLAN 0 to HW filter on device team0
[  898.247548][ T6663] bridge0: port 1(bridge_slave_0) entered blocking state
[  898.254741][ T6663] bridge0: port 1(bridge_slave_0) entered forwarding state
[  898.273848][    T9] usb 6-1: USB disconnect, device number 64
[  898.341971][T12683] usbhid 3-1:1.0: can't add hid device: -71
[  898.393735][T12683] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[  899.348687][T12683] usb 3-1: USB disconnect, device number 70
[  899.362744][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  899.369926][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  899.370690][T15756] Bluetooth: hci0: command tx timeout
[  899.439356][T15755] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  899.461873][T15755] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  900.041529][T15755] 8021q: adding VLAN 0 to HW filter on device batadv0
[  900.205970][T15844] pim6reg1: entered promiscuous mode
[  900.211511][T15844] pim6reg1: entered allmulticast mode
[  900.529299][T15858] FAULT_INJECTION: forcing a failure.
[  900.529299][T15858] name failslab, interval 1, probability 0, space 0, times 0
[  900.573791][T15858] CPU: 0 UID: 0 PID: 15858 Comm: syz.5.2842 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  900.584621][T15858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  900.594696][T15858] Call Trace:
[  900.598005][T15858]  <TASK>
[  900.600966][T15858]  dump_stack_lvl+0x241/0x360
[  900.605681][T15858]  ? __pfx_dump_stack_lvl+0x10/0x10
[  900.610914][T15858]  ? __pfx__printk+0x10/0x10
[  900.615564][T15858]  ? fs_reclaim_acquire+0x93/0x130
[  900.620710][T15858]  ? __pfx___might_resched+0x10/0x10
[  900.623143][T15755] veth0_vlan: entered promiscuous mode
[  900.626005][T15858]  ? lockdep_init_map_type+0xa1/0x910
[  900.636852][T15858]  should_fail_ex+0x3b0/0x4e0
[  900.641565][T15858]  should_failslab+0xac/0x100
[  900.646277][T15858]  ? security_inode_alloc+0x37/0x310
[  900.651588][T15858]  kmem_cache_alloc_noprof+0x70/0x380
[  900.657003][T15858]  security_inode_alloc+0x37/0x310
[  900.662147][T15858]  inode_init_always_gfp+0xa0f/0xd90
[  900.667473][T15858]  ? __pfx_proc_alloc_inode+0x10/0x10
[  900.669402][T15755] veth1_vlan: entered promiscuous mode
[  900.672862][T15858]  alloc_inode+0x9f/0x1a0
[  900.672890][T15858]  new_inode+0x22/0x1d0
[  900.672914][T15858]  proc_pid_make_inode+0x1f/0x130
[  900.691907][T15858]  proc_ns_dir_lookup+0x20c/0x3a0
[  900.696974][T15858]  ? __pfx_proc_ns_dir_lookup+0x10/0x10
[  900.702566][T15858]  path_openat+0x11a7/0x3590
[  900.705870][T15755] veth0_macvtap: entered promiscuous mode
[  900.707194][T15858]  ? __pfx_path_openat+0x10/0x10
[  900.717063][T15755] veth1_macvtap: entered promiscuous mode
[  900.717810][T15858]  do_filp_open+0x27f/0x4e0
[  900.728049][T15858]  ? __pfx_do_filp_open+0x10/0x10
[  900.733115][T15858]  ? do_raw_spin_lock+0x14f/0x370
[  900.738188][T15858]  ? __pfx_kfree_link+0x10/0x10
[  900.740311][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  900.743069][T15858]  do_sys_openat2+0x13e/0x1d0
[  900.753632][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  900.758105][T15858]  ? __pfx_do_sys_openat2+0x10/0x10
[  900.769093][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  900.773065][T15858]  __x64_sys_openat+0x247/0x2a0
[  900.773109][T15858]  ? __pfx___x64_sys_openat+0x10/0x10
[  900.793801][T15858]  ? do_syscall_64+0x100/0x230
[  900.798618][T15858]  ? do_syscall_64+0xb6/0x230
[  900.803502][T15858]  do_syscall_64+0xf3/0x230
[  900.808033][T15858]  ? clear_bhb_loop+0x35/0x90
[  900.811743][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  900.812715][T15858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.812748][T15858] RIP: 0033:0x7fe58b584690
[  900.823507][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  900.828399][T15858] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  900.828419][T15858] RSP: 002b:00007fe58c393f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  900.828442][T15858] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe58b584690
[  900.828455][T15858] RDX: 0000000000000000 RSI: 00007fe58b601b38 RDI: 00000000ffffff9c
[  900.828467][T15858] RBP: 00007fe58b601b38 R08: 0000000000000000 R09: 0000000000000000
[  900.828479][T15858] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  900.828491][T15858] R13: 0000000000000000 R14: 00007fe58b775fa0 R15: 00007fff4301bfc8
[  900.828517][T15858]  </TASK>
[  900.828558][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.907555][T15863] FAULT_INJECTION: forcing a failure.
[  900.907555][T15863] name failslab, interval 1, probability 0, space 0, times 0
[  900.915876][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  900.945679][T15863] CPU: 1 UID: 0 PID: 15863 Comm: syz.4.2843 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  900.956468][T15863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  900.966545][T15863] Call Trace:
[  900.969842][T15863]  <TASK>
[  900.972786][T15863]  dump_stack_lvl+0x241/0x360
[  900.977488][T15863]  ? __pfx_dump_stack_lvl+0x10/0x10
[  900.982798][T15863]  ? __pfx__printk+0x10/0x10
[  900.987408][T15863]  ? kmem_cache_alloc_noprof+0x48/0x380
[  900.992983][T15863]  ? __pfx___might_resched+0x10/0x10
[  900.998297][T15863]  should_fail_ex+0x3b0/0x4e0
[  901.002998][T15863]  should_failslab+0xac/0x100
[  901.007707][T15863]  ? io_submit_one+0x154/0x18a0
[  901.012585][T15863]  kmem_cache_alloc_noprof+0x70/0x380
[  901.017965][T15863]  io_submit_one+0x154/0x18a0
[  901.022657][T15863]  ? __pfx_io_submit_one+0x10/0x10
[  901.027773][T15863]  ? __might_fault+0xaa/0x120
[  901.032455][T15863]  ? __pfx_lock_release+0x10/0x10
[  901.037486][T15863]  ? lookup_ioctx+0x94/0x6a0
[  901.042079][T15863]  ? __might_fault+0xaa/0x120
[  901.046754][T15863]  ? __might_fault+0xc6/0x120
[  901.051432][T15863]  __se_sys_io_submit+0x171/0x2e0
[  901.056463][T15863]  ? __pfx___se_sys_io_submit+0x10/0x10
[  901.062043][T15863]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  901.068026][T15863]  ? do_syscall_64+0x100/0x230
[  901.072798][T15863]  ? do_syscall_64+0xb6/0x230
[  901.077479][T15863]  do_syscall_64+0xf3/0x230
[  901.081985][T15863]  ? clear_bhb_loop+0x35/0x90
[  901.086660][T15863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.092560][T15863] RIP: 0033:0x7f5849785d29
[  901.096977][T15863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.116603][T15863] RSP: 002b:00007f584a557038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  901.125029][T15863] RAX: ffffffffffffffda RBX: 00007f5849975fa0 RCX: 00007f5849785d29
[  901.133005][T15863] RDX: 0000000020000300 RSI: 0000000000000002 RDI: 00007f584a536000
[  901.141073][T15863] RBP: 00007f584a557090 R08: 0000000000000000 R09: 0000000000000000
[  901.149047][T15863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.157016][T15863] R13: 0000000000000000 R14: 00007f5849975fa0 R15: 00007ffee3a2fdb8
[  901.165048][T15863]  </TASK>
[  901.177084][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  901.208358][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.235455][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  901.248047][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.279840][T15755] batman_adv: batadv0: Interface activated: batadv_slave_0
[  901.295319][T15865] No control pipe specified
[  901.380306][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  901.410269][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.420121][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  901.438187][T15756] Bluetooth: hci0: command tx timeout
[  901.455924][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.467828][T15874] FAULT_INJECTION: forcing a failure.
[  901.467828][T15874] name failslab, interval 1, probability 0, space 0, times 0
[  901.472137][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  901.491751][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.501683][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  901.512798][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.522954][T15755] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  901.533741][T15755] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  901.545363][T15755] batman_adv: batadv0: Interface activated: batadv_slave_1
[  901.555204][T15874] CPU: 0 UID: 0 PID: 15874 Comm: syz.4.2848 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  901.566002][T15874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  901.576252][T15874] Call Trace:
[  901.579551][T15874]  <TASK>
[  901.582503][T15874]  dump_stack_lvl+0x241/0x360
[  901.587213][T15874]  ? __pfx_dump_stack_lvl+0x10/0x10
[  901.592449][T15874]  ? __pfx__printk+0x10/0x10
[  901.597066][T15874]  ? __kmalloc_cache_noprof+0x48/0x390
[  901.602549][T15874]  ? __pfx___might_resched+0x10/0x10
[  901.607866][T15874]  should_fail_ex+0x3b0/0x4e0
[  901.612574][T15874]  should_failslab+0xac/0x100
[  901.617366][T15874]  __kmalloc_cache_noprof+0x70/0x390
[  901.622665][T15874]  ? ip_setup_cork+0x5c1/0x9c0
[  901.627432][T15874]  ip_setup_cork+0x5c1/0x9c0
[  901.632026][T15874]  ip_append_data+0xff/0x190
[  901.636658][T15874]  ? __pfx_raw_getfrag+0x10/0x10
[  901.641605][T15874]  raw_sendmsg+0x1a3b/0x2430
[  901.646218][T15874]  ? __pfx_raw_sendmsg+0x10/0x10
[  901.651161][T15874]  ? smack_socket_sendmsg+0x40d/0x540
[  901.656552][T15874]  ? inet_sendmsg+0x330/0x390
[  901.661233][T15874]  __sock_sendmsg+0x1a6/0x270
[  901.665922][T15874]  ____sys_sendmsg+0x52a/0x7e0
[  901.670695][T15874]  ? __pfx_____sys_sendmsg+0x10/0x10
[  901.675976][T15874]  ? __fget_files+0x2a/0x410
[  901.680564][T15874]  ? __fget_files+0x2a/0x410
[  901.685155][T15874]  __sys_sendmmsg+0x36a/0x720
[  901.689838][T15874]  ? __pfx___sys_sendmmsg+0x10/0x10
[  901.695044][T15874]  ? __pfx_lock_release+0x10/0x10
[  901.700062][T15874]  ? kstrtouint_from_user+0x128/0x190
[  901.705449][T15874]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  901.711349][T15874]  ? ksys_write+0x22a/0x2b0
[  901.715853][T15874]  ? __pfx_lock_release+0x10/0x10
[  901.720879][T15874]  ? vfs_write+0x730/0xd30
[  901.725295][T15874]  ? __mutex_unlock_slowpath+0x21e/0x790
[  901.730946][T15874]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  901.736921][T15874]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  901.743250][T15874]  ? do_syscall_64+0x100/0x230
[  901.748017][T15874]  __x64_sys_sendmmsg+0xa0/0xb0
[  901.752873][T15874]  do_syscall_64+0xf3/0x230
[  901.757379][T15874]  ? clear_bhb_loop+0x35/0x90
[  901.762056][T15874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.767953][T15874] RIP: 0033:0x7f5849785d29
[  901.772365][T15874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.791966][T15874] RSP: 002b:00007f584a557038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  901.800381][T15874] RAX: ffffffffffffffda RBX: 00007f5849975fa0 RCX: 00007f5849785d29
[  901.808347][T15874] RDX: 0000000000000001 RSI: 0000000020000ec0 RDI: 0000000000000004
[  901.816313][T15874] RBP: 00007f584a557090 R08: 0000000000000000 R09: 0000000000000000
[  901.824282][T15874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.832248][T15874] R13: 0000000000000000 R14: 00007f5849975fa0 R15: 00007ffee3a2fdb8
[  901.840229][T15874]  </TASK>
[  901.843262][    C0] vkms_vblank_simulate: vblank timer overrun
[  901.996737][ T3531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  902.021623][ T3531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  902.102107][T11455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  902.128068][T11455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  902.590610][    T9] usb 2-1: new high-speed USB device number 64 using dummy_hcd
[  902.748225][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  902.770566][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  902.798585][    T9] usb 2-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  902.826557][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  902.859962][    T9] usb 2-1: config 0 descriptor??
[  903.222519][T15891] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  903.407290][T15891] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  904.358654][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  904.365085][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  904.396987][    T9] usb 2-1: USB disconnect, device number 64
[  904.478586][T15913] netlink: 256 bytes leftover after parsing attributes in process `syz.1.2858'.
[  904.563990][T15913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2858'.
[  904.661987][T15918] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2858'.
[  904.776039][   T29] audit: type=1326 audit(1734594088.634:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15922 comm="syz.5.2863" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x0
[  905.792680][T15940] netlink: 'syz.5.2867': attribute type 10 has an invalid length.
[  905.845058][T15940] 8021q: adding VLAN 0 to HW filter on device batadv0
[  905.855482][T15943] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2868'.
[  905.890122][T15940] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  906.040590][    T9] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[  906.056424][T15947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2869'.
[  906.206202][    T9] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  906.227836][    T9] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  906.258779][    T9] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  906.281108][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  906.313692][T15941] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  906.332318][    T9] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  906.432825][T14649] udevd[14649]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: Read-only file system
[  906.552167][ T5872] usb 5-1: USB disconnect, device number 65
[  906.659372][T15956] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2873'.
[  906.681828][T15956] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2873'.
[  906.696347][T15956] vlan0: entered allmulticast mode
[  906.703928][T15956] veth0_vlan: entered allmulticast mode
[  906.802649][T15956] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2873'.
[  906.830745][T15957] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2873'.
[  906.897141][T15962] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2874'.
[  907.412547][T15980] (syz.2.2878,15980,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  907.422905][T15980] (syz.2.2878,15980,0):ocfs2_fill_super:1178 ERROR: status = -22
[  907.432774][T15980] Invalid logical block size (63)
[  907.970761][T15995] FAULT_INJECTION: forcing a failure.
[  907.970761][T15995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  907.991419][T15995] CPU: 1 UID: 0 PID: 15995 Comm: syz.2.2883 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  908.002238][T15995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  908.012322][T15995] Call Trace:
[  908.015623][T15995]  <TASK>
[  908.018573][T15995]  dump_stack_lvl+0x241/0x360
[  908.023289][T15995]  ? __pfx_dump_stack_lvl+0x10/0x10
[  908.028516][T15995]  ? __pfx__printk+0x10/0x10
[  908.033134][T15995]  ? __pfx_lock_release+0x10/0x10
[  908.038196][T15995]  should_fail_ex+0x3b0/0x4e0
[  908.042923][T15995]  _copy_from_user+0x2f/0xc0
[  908.047541][T15995]  __se_sys_mount+0x17d/0x3c0
[  908.052242][T15995]  ? __pfx___se_sys_mount+0x10/0x10
[  908.057476][T15995]  ? do_syscall_64+0x100/0x230
[  908.062277][T15995]  ? __x64_sys_mount+0x20/0xc0
[  908.067160][T15995]  do_syscall_64+0xf3/0x230
[  908.071693][T15995]  ? clear_bhb_loop+0x35/0x90
[  908.076404][T15995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  908.082329][T15995] RIP: 0033:0x7fc415b85d29
[  908.086782][T15995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  908.106506][T15995] RSP: 002b:00007fc4139f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  908.115059][T15995] RAX: ffffffffffffffda RBX: 00007fc415d75fa0 RCX: 00007fc415b85d29
[  908.123074][T15995] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000
[  908.131165][T15995] RBP: 00007fc4139f6090 R08: 0000000020000440 R09: 0000000000000000
[  908.139174][T15995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  908.147180][T15995] R13: 0000000000000000 R14: 00007fc415d75fa0 R15: 00007fffead0d528
[  908.155203][T15995]  </TASK>
[  909.192278][    T9] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[  909.363430][    T9] usb 5-1: Using ep0 maxpacket: 8
[  909.380013][    T9] usb 5-1: config 1 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  909.416954][    T9] usb 5-1: config 1 interface 0 has no altsetting 0
[  909.443529][    T9] usb 5-1: New USB device found, idVendor=056a, idProduct=0013, bcdDevice= 0.40
[  909.470963][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  909.510989][    T9] usb 5-1: Product: syz
[  909.525408][    T9] usb 5-1: Manufacturer: Л
[  909.540358][    T9] usb 5-1: SerialNumber: syz
[  909.587528][T16014] (syz.1.2890,16014,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  909.637226][T16014] (syz.1.2890,16014,0):ocfs2_fill_super:1178 ERROR: status = -22
[  911.339199][    T9] usbhid 5-1:1.0: can't add hid device: -71
[  911.347186][    T9] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  911.399609][    T9] usb 5-1: USB disconnect, device number 66
[  915.035996][T16036] __nla_validate_parse: 1 callbacks suppressed
[  915.036020][T16036] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2895'.
[  915.386501][T16049] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  915.457281][T16052] (syz.5.2901,16052,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  915.522548][T16052] (syz.5.2901,16052,0):ocfs2_fill_super:1178 ERROR: status = -22
[  915.938614][ T5824] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  916.000532][ T5824] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  916.009852][ T5824] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  916.019554][ T5824] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  916.027536][ T5824] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  916.035817][ T5824] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  916.129279][T16056] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2898'.
[  917.707999][T16085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2908'.
[  918.155509][T15756] Bluetooth: hci5: command tx timeout
[  918.392898][T16057] chnl_net:caif_netlink_parms(): no params data found
[  918.741303][T16095] veth1_macvtap: left promiscuous mode
[  918.746828][T16095] macsec0: entered promiscuous mode
[  918.754521][T16057] bridge0: port 1(bridge_slave_0) entered blocking state
[  918.782727][T16057] bridge0: port 1(bridge_slave_0) entered disabled state
[  918.813459][T16057] bridge_slave_0: entered allmulticast mode
[  918.854196][T16057] bridge_slave_0: entered promiscuous mode
[  918.863758][T16057] bridge0: port 2(bridge_slave_1) entered blocking state
[  918.871762][T16057] bridge0: port 2(bridge_slave_1) entered disabled state
[  918.879070][T16057] bridge_slave_1: entered allmulticast mode
[  918.890475][T16057] bridge_slave_1: entered promiscuous mode
[  918.944301][T16099] (syz.4.2914,16099,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  918.954561][T16099] (syz.4.2914,16099,1):ocfs2_fill_super:1178 ERROR: status = -22
[  919.547220][T16057] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  919.574047][T16057] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  919.735748][T16107] loop4: detected capacity change from 0 to 16384
[  919.974349][T16057] team0: Port device team_slave_0 added
[  919.998577][T16057] team0: Port device team_slave_1 added
[  920.311621][T15756] Bluetooth: hci5: command tx timeout
[  921.029290][T16057] batman_adv: batadv0: Adding interface: batadv_slave_0
[  921.074816][T16057] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  921.158946][T16057] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  921.172579][T16057] batman_adv: batadv0: Adding interface: batadv_slave_1
[  921.181881][T16057] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  921.208821][T16057] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  921.292784][T16057] hsr_slave_0: entered promiscuous mode
[  921.320974][T16057] hsr_slave_1: entered promiscuous mode
[  921.364407][T16057] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  921.376431][T16057] Cannot create hsr debugfs directory
[  922.398025][T15756] Bluetooth: hci5: command tx timeout
[  922.457640][   T29] audit: type=1326 audit(1734594106.314:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.487087][   T29] audit: type=1326 audit(1734594106.314:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.510275][   T29] audit: type=1326 audit(1734594106.314:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.552373][   T29] audit: type=1326 audit(1734594106.314:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.575238][   T29] audit: type=1326 audit(1734594106.314:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.597486][   T29] audit: type=1326 audit(1734594106.334:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  922.755685][T16132] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2922'.
[  923.062936][T16057] 8021q: adding VLAN 0 to HW filter on device bond0
[  923.071892][T16057] 8021q: adding VLAN 0 to HW filter on device team0
[  923.093955][ T7567] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.094034][ T7567] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.094931][ T7567] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.094967][ T7567] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.125971][   T29] audit: type=1326 audit(1734594106.914:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  923.126021][   T29] audit: type=1326 audit(1734594106.914:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16127 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  923.254552][T16142] (syz.2.2926,16142,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  923.254595][T16142] (syz.2.2926,16142,0):ocfs2_fill_super:1178 ERROR: status = -22
[  923.896547][T16057] 8021q: adding VLAN 0 to HW filter on device batadv0
[  923.979446][T16153] loop4: detected capacity change from 0 to 16384
[  924.204773][T16156] Invalid ELF header magic: != ELF
[  924.273830][T16159] netlink: 'syz.4.2929': attribute type 1 has an invalid length.
[  924.312038][T16159] netlink: 'syz.4.2929': attribute type 1 has an invalid length.
[  924.424280][T16166] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  924.476125][T15756] Bluetooth: hci5: command tx timeout
[  924.503983][T16057] veth0_vlan: entered promiscuous mode
[  924.522400][T16057] veth1_vlan: entered promiscuous mode
[  924.592182][T16057] veth0_macvtap: entered promiscuous mode
[  924.648431][T16057] veth1_macvtap: entered promiscuous mode
[  924.850626][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  924.892059][ T5821] usb 3-1: new low-speed USB device number 71 using dummy_hcd
[  924.899428][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  924.929257][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  924.941433][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  924.953879][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  924.968649][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  924.980648][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  924.993382][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.006155][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  925.018641][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.031326][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  925.046920][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.073739][ T5821] usb 3-1: unable to get BOS descriptor or descriptor too short
[  925.091093][ T5821] usb 3-1: config 8 has an invalid interface number: 145 but max is 0
[  925.100823][ T5821] usb 3-1: config 8 has no interface number 0
[  925.107116][ T5821] usb 3-1: config 8 interface 145 has no altsetting 0
[  925.243583][T16057] batman_adv: batadv0: Interface activated: batadv_slave_0
[  925.272722][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.283664][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.303282][ T5821] usb 3-1: string descriptor 0 read error: -22
[  925.304441][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.309550][ T5821] usb 3-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=83.cc
[  925.347708][ T5821] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  925.397226][ T5821] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  925.398574][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.454349][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.539198][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.578277][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.664279][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.730882][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.823217][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.843687][T16057] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.899600][T16057] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.931485][T16057] batman_adv: batadv0: Interface activated: batadv_slave_1
[  926.271553][T11455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  926.285551][T11455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  926.369108][T11455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  926.384550][T11455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  926.462090][T16193] bond2: entered promiscuous mode
[  926.467195][T16193] bond2: entered allmulticast mode
[  926.482293][T16193] 8021q: adding VLAN 0 to HW filter on device bond2
[  927.477008][T16219] loop4: detected capacity change from 0 to 16384
[  927.675820][ T5872] usb 3-1: USB disconnect, device number 71
[  928.390373][T16193] bond2 (unregistering): Released all slaves
[  930.916809][   T29] audit: type=1326 audit(1734594114.774:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16246 comm="syz.3.2952" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2412985d29 code=0x0
[  932.055613][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  932.226711][T16269] loop4: detected capacity change from 0 to 16384
[  933.287260][T16285] FAULT_INJECTION: forcing a failure.
[  933.287260][T16285] name failslab, interval 1, probability 0, space 0, times 0
[  933.301543][T16285] CPU: 0 UID: 0 PID: 16285 Comm: syz.3.2963 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  933.312345][T16285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  933.322407][T16285] Call Trace:
[  933.325686][T16285]  <TASK>
[  933.328618][T16285]  dump_stack_lvl+0x241/0x360
[  933.333391][T16285]  ? __pfx_dump_stack_lvl+0x10/0x10
[  933.338598][T16285]  ? __wake_up_klogd+0xcc/0x110
[  933.343458][T16285]  ? dump_stack+0x9/0x15
[  933.347708][T16285]  should_fail_ex+0x3b0/0x4e0
[  933.352386][T16285]  should_failslab+0xac/0x100
[  933.357067][T16285]  __kmalloc_node_noprof+0xe1/0x4d0
[  933.362275][T16285]  ? crypto_create_tfm_node+0x88/0x3d0
[  933.367743][T16285]  crypto_create_tfm_node+0x88/0x3d0
[  933.373036][T16285]  crypto_alloc_tfm_node+0x161/0x360
[  933.378329][T16285]  ? __asan_memcpy+0x40/0x70
[  933.382923][T16285]  tcp_sigpool_alloc_ahash+0x8c1/0xdb0
[  933.388486][T16285]  ? __pfx_tcp_sigpool_alloc_ahash+0x10/0x10
[  933.394474][T16285]  ? __pfx_lock_release+0x10/0x10
[  933.399516][T16285]  tcp_md5_alloc_sigpool+0x1b/0x50
[  933.404633][T16285]  tcp_md5_do_add+0x117/0x3c0
[  933.409834][T16285]  tcp_v4_parse_md5_keys+0x4c8/0x780
[  933.415128][T16285]  ? __pfx_tcp_v4_parse_md5_keys+0x10/0x10
[  933.420937][T16285]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  933.426942][T16285]  ? do_tcp_setsockopt+0x963/0x2540
[  933.432143][T16285]  ? mark_lock+0x9a/0x360
[  933.436477][T16285]  do_tcp_setsockopt+0x1194/0x2540
[  933.441597][T16285]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[  933.447062][T16285]  ? security_socket_setsockopt+0xa5/0x2a0
[  933.452867][T16285]  ? security_socket_setsockopt+0x242/0x2a0
[  933.458757][T16285]  ? tcp_setsockopt+0x3e/0xf0
[  933.463446][T16285]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  933.469353][T16285]  do_sock_setsockopt+0x3af/0x720
[  933.474382][T16285]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  933.479932][T16285]  ? __fget_files+0x395/0x410
[  933.484612][T16285]  ? __fget_files+0x2a/0x410
[  933.489207][T16285]  __x64_sys_setsockopt+0x1ee/0x280
[  933.494453][T16285]  do_syscall_64+0xf3/0x230
[  933.498963][T16285]  ? clear_bhb_loop+0x35/0x90
[  933.503648][T16285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.509546][T16285] RIP: 0033:0x7f2412985d29
[  933.513967][T16285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  933.533757][T16285] RSP: 002b:00007f241371a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  933.542175][T16285] RAX: ffffffffffffffda RBX: 00007f2412b76080 RCX: 00007f2412985d29
[  933.550155][T16285] RDX: 000000000000000e RSI: 0000000000000006 RDI: 0000000000000005
[  933.558124][T16285] RBP: 00007f241371a090 R08: 00000000000000d8 R09: 0000000000000000
[  933.566095][T16285] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  933.574068][T16285] R13: 0000000000000000 R14: 00007f2412b76080 R15: 00007fff66415f68
[  933.582061][T16285]  </TASK>
[  933.980962][T16282] sit0: entered promiscuous mode
[  934.003837][T16282] netlink: 'syz.2.2961': attribute type 1 has an invalid length.
[  934.012376][T16282] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2961'.
[  935.255749][T16308] loop4: detected capacity change from 0 to 16384
[  935.289668][T16311] FAULT_INJECTION: forcing a failure.
[  935.289668][T16311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  935.310601][T16311] CPU: 1 UID: 0 PID: 16311 Comm: syz.5.2973 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  935.320783][T12684] usb 3-1: new high-speed USB device number 72 using dummy_hcd
[  935.321397][T16311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  935.339650][T16311] Call Trace:
[  935.342960][T16311]  <TASK>
[  935.345921][T16311]  dump_stack_lvl+0x241/0x360
[  935.350644][T16311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  935.355877][T16311]  ? __pfx__printk+0x10/0x10
[  935.360505][T16311]  ? snprintf+0xda/0x120
[  935.364782][T16311]  should_fail_ex+0x3b0/0x4e0
[  935.369491][T16311]  _copy_to_user+0x31/0xb0
[  935.373948][T16311]  simple_read_from_buffer+0xca/0x150
[  935.379358][T16311]  proc_fail_nth_read+0x1e9/0x250
[  935.384422][T16311]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  935.390005][T16311]  ? rw_verify_area+0x568/0x6f0
[  935.394887][T16311]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  935.400471][T16311]  vfs_read+0x1fc/0xb70
[  935.404668][T16311]  ? __pfx___mutex_lock+0x10/0x10
[  935.409728][T16311]  ? __pfx_vfs_read+0x10/0x10
[  935.414444][T16311]  ? __fget_files+0x2a/0x410
[  935.419055][T16311]  ? __fget_files+0x395/0x410
[  935.423760][T16311]  ? __fget_files+0x2a/0x410
[  935.428388][T16311]  ksys_read+0x18f/0x2b0
[  935.432664][T16311]  ? __pfx_ksys_read+0x10/0x10
[  935.437448][T16311]  ? do_syscall_64+0x100/0x230
[  935.442228][T16311]  ? do_syscall_64+0xb6/0x230
[  935.446929][T16311]  do_syscall_64+0xf3/0x230
[  935.451457][T16311]  ? clear_bhb_loop+0x35/0x90
[  935.456173][T16311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  935.462111][T16311] RIP: 0033:0x7fe58b58473c
[  935.466574][T16311] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  935.483364][T12684] usb 3-1: config 0 has an invalid interface number: 2 but max is 0
[  935.486167][T16311] RSP: 002b:00007fe58c394030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  935.486200][T16311] RAX: ffffffffffffffda RBX: 00007fe58b775fa0 RCX: 00007fe58b58473c
[  935.486215][T16311] RDX: 000000000000000f RSI: 00007fe58c3940a0 RDI: 0000000000000004
[  935.486229][T16311] RBP: 00007fe58c394090 R08: 0000000000000000 R09: 0000000000000000
[  935.486242][T16311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  935.495359][T12684] usb 3-1: config 0 has no interface number 0
[  935.502598][T16311] R13: 0000000000000000 R14: 00007fe58b775fa0 R15: 00007fff4301bfc8
[  935.502636][T16311]  </TASK>
[  935.592581][T16314] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  935.600529][T16314] overlayfs: failed to set xattr on upper
[  935.606534][T16314] overlayfs: ...falling back to redirect_dir=nofollow.
[  935.613825][T16314] overlayfs: ...falling back to metacopy=off.
[  935.620480][T16314] overlayfs: ...falling back to uuid=null.
[  935.797685][T12684] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  935.918257][T12684] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  935.960814][T12684] usb 3-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  935.988715][T12684] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  936.004907][T12684] usb 3-1: config 0 descriptor??
[  936.176169][T16323] FAULT_INJECTION: forcing a failure.
[  936.176169][T16323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  936.189818][T16323] CPU: 0 UID: 0 PID: 16323 Comm: syz.5.2978 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  936.200623][T16323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  936.210712][T16323] Call Trace:
[  936.214018][T16323]  <TASK>
[  936.216966][T16323]  dump_stack_lvl+0x241/0x360
[  936.221694][T16323]  ? __pfx_dump_stack_lvl+0x10/0x10
[  936.226931][T16323]  ? __pfx__printk+0x10/0x10
[  936.231565][T16323]  ? snprintf+0xda/0x120
[  936.232406][T16326] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  936.235819][T16323]  should_fail_ex+0x3b0/0x4e0
[  936.247182][T16323]  _copy_to_user+0x31/0xb0
[  936.251646][T16323]  simple_read_from_buffer+0xca/0x150
[  936.257055][T16323]  proc_fail_nth_read+0x1e9/0x250
[  936.262113][T16323]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  936.267781][T16323]  ? rw_verify_area+0x568/0x6f0
[  936.272665][T16323]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  936.278253][T16323]  vfs_read+0x1fc/0xb70
[  936.282441][T16323]  ? __pfx___mutex_lock+0x10/0x10
[  936.287498][T16323]  ? __pfx_vfs_read+0x10/0x10
[  936.292208][T16323]  ? __fget_files+0x2a/0x410
[  936.296914][T16323]  ? __fget_files+0x395/0x410
[  936.301592][T16323]  ? __fget_files+0x2a/0x410
[  936.306191][T16323]  ksys_read+0x18f/0x2b0
[  936.310438][T16323]  ? __pfx_ksys_read+0x10/0x10
[  936.315205][T16323]  ? do_syscall_64+0x100/0x230
[  936.319983][T16323]  ? do_syscall_64+0xb6/0x230
[  936.324662][T16323]  do_syscall_64+0xf3/0x230
[  936.329167][T16323]  ? clear_bhb_loop+0x35/0x90
[  936.333849][T16323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.339745][T16323] RIP: 0033:0x7fe58b58473c
[  936.344199][T16323] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  936.363813][T16323] RSP: 002b:00007fe58c394030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  936.372236][T16323] RAX: ffffffffffffffda RBX: 00007fe58b775fa0 RCX: 00007fe58b58473c
[  936.380205][T16323] RDX: 000000000000000f RSI: 00007fe58c3940a0 RDI: 0000000000000004
[  936.388181][T16323] RBP: 00007fe58c394090 R08: 0000000000000000 R09: 0000000000000000
[  936.396162][T16323] R10: 00000000000400c1 R11: 0000000000000246 R12: 0000000000000001
[  936.404130][T16323] R13: 0000000000000000 R14: 00007fe58b775fa0 R15: 00007fff4301bfc8
[  936.412114][T16323]  </TASK>
[  936.939912][T16332] tipc: Started in network mode
[  936.946688][T12684] uclogic 0003:28BD:0905.0014: Interface probing failed: -22
[  936.955157][T12684] uclogic 0003:28BD:0905.0014: interface is invalid, ignoring
[  936.965374][T16332] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  937.023498][T16332] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  937.041850][T16332] tipc: Enabled bearer <udp:syz1>, priority 10
[  937.219588][ T5872] usb 3-1: USB disconnect, device number 72
[  938.160330][T12684] tipc: Node number set to 1
[  939.450255][   T29] audit: type=1800 audit(1734594123.274:232): pid=16364 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.2991" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  939.605525][T16366] FAULT_INJECTION: forcing a failure.
[  939.605525][T16366] name failslab, interval 1, probability 0, space 0, times 0
[  939.618254][T16366] CPU: 1 UID: 0 PID: 16366 Comm: syz.2.2992 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  939.629055][T16366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  939.639112][T16366] Call Trace:
[  939.642388][T16366]  <TASK>
[  939.645354][T16366]  dump_stack_lvl+0x241/0x360
[  939.650048][T16366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  939.655263][T16366]  ? __pfx__printk+0x10/0x10
[  939.659871][T16366]  ? __kmalloc_cache_noprof+0x48/0x390
[  939.665476][T16366]  ? __pfx___might_resched+0x10/0x10
[  939.670789][T16366]  should_fail_ex+0x3b0/0x4e0
[  939.675494][T16366]  should_failslab+0xac/0x100
[  939.680194][T16366]  __kmalloc_cache_noprof+0x70/0x390
[  939.685499][T16366]  ? __se_sys_mount+0x15a/0x3c0
[  939.690348][T16366]  ? memdup_user+0x9f/0xc0
[  939.694775][T16366]  __se_sys_mount+0x15a/0x3c0
[  939.699461][T16366]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  939.705449][T16366]  ? __pfx___se_sys_mount+0x10/0x10
[  939.710668][T16366]  ? do_syscall_64+0x100/0x230
[  939.715458][T16366]  ? __x64_sys_mount+0x20/0xc0
[  939.720227][T16366]  do_syscall_64+0xf3/0x230
[  939.724746][T16366]  ? clear_bhb_loop+0x35/0x90
[  939.729420][T16366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  939.735321][T16366] RIP: 0033:0x7fc415b85d29
[  939.739999][T16366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  939.759699][T16366] RSP: 002b:00007fc4139f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  939.768125][T16366] RAX: ffffffffffffffda RBX: 00007fc415d75fa0 RCX: 00007fc415b85d29
[  939.776104][T16366] RDX: 0000000020000000 RSI: 00000000200002c0 RDI: 0000000020000100
[  939.784078][T16366] RBP: 00007fc4139f6090 R08: 0000000020000340 R09: 0000000000000000
[  939.792134][T16366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  939.800109][T16366] R13: 0000000000000000 R14: 00007fc415d75fa0 R15: 00007fffead0d528
[  939.808096][T16366]  </TASK>
[  940.143620][ T5872] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[  940.390484][ T5872] usb 4-1: Using ep0 maxpacket: 32
[  940.547848][ T5872] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  940.610471][ T5872] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  940.678299][ T5872] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  940.727514][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  940.957423][ T5872] usb 4-1: Product: syz
[  941.078203][ T5872] usb 4-1: Manufacturer: syz
[  941.184001][ T5872] usb 4-1: SerialNumber: syz
[  941.354120][ T5872] usb 4-1: config 0 descriptor??
[  942.982625][ T5824] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  943.028655][ T5824] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  943.062498][ T5824] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  943.073941][ T5824] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  943.088643][ T5824] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  943.138036][ T5824] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  943.474437][T16408] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3003'.
[  943.507862][T16408] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3003'.
[  943.668774][T16401] chnl_net:caif_netlink_parms(): no params data found
[  943.733889][T16416] ieee802154 phy1 wpan1: encryption failed: -22
[  943.734807][T16421] netlink: 'syz.1.3007': attribute type 1 has an invalid length.
[  943.755370][T16421] netlink: 134744 bytes leftover after parsing attributes in process `syz.1.3007'.
[  944.343775][ T5872] usb 4-1: USB disconnect, device number 81
[  944.384209][T16401] bridge0: port 1(bridge_slave_0) entered blocking state
[  944.391822][T16401] bridge0: port 1(bridge_slave_0) entered disabled state
[  944.399062][T16401] bridge_slave_0: entered allmulticast mode
[  944.413275][T16401] bridge_slave_0: entered promiscuous mode
[  944.422422][T16401] bridge0: port 2(bridge_slave_1) entered blocking state
[  944.438167][T16401] bridge0: port 2(bridge_slave_1) entered disabled state
[  944.577880][T16401] bridge_slave_1: entered allmulticast mode
[  944.585116][T16401] bridge_slave_1: entered promiscuous mode
[  944.662515][T16401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  944.702538][T16401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  944.875221][T16401] team0: Port device team_slave_0 added
[  945.053829][T16401] team0: Port device team_slave_1 added
[  945.273114][T15756] Bluetooth: hci2: command tx timeout
[  945.375959][T16401] batman_adv: batadv0: Adding interface: batadv_slave_0
[  945.420210][T16401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  945.620250][T16401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  947.146043][T16401] batman_adv: batadv0: Adding interface: batadv_slave_1
[  947.180373][T16401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  947.370548][T12683] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[  947.380943][T16401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  947.406689][T15756] Bluetooth: hci2: command tx timeout
[  947.529775][T16401] hsr_slave_0: entered promiscuous mode
[  947.537406][T16401] hsr_slave_1: entered promiscuous mode
[  947.544830][T16401] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  947.552735][T16401] Cannot create hsr debugfs directory
[  947.581067][T12683] usb 5-1: Using ep0 maxpacket: 16
[  947.589484][T12683] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  947.601984][T12683] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  947.823923][T12683] usb 5-1: New USB device found, idVendor=045e, idProduct=00f9, bcdDevice= 0.00
[  947.841742][T12683] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  947.904426][T12683] usb 5-1: config 0 descriptor??
[  948.485714][T16452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  948.495385][T16452] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  948.514664][T12683] usbhid 5-1:0.0: can't add hid device: -71
[  948.521364][T16401] 8021q: adding VLAN 0 to HW filter on device bond0
[  948.530013][T12683] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  948.539773][T16401] 8021q: adding VLAN 0 to HW filter on device team0
[  948.609853][T16401] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  948.620583][T16401] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  948.713270][ T3531] bridge0: port 1(bridge_slave_0) entered blocking state
[  948.720558][ T3531] bridge0: port 1(bridge_slave_0) entered forwarding state
[  948.732046][ T3531] bridge0: port 2(bridge_slave_1) entered blocking state
[  948.739229][ T3531] bridge0: port 2(bridge_slave_1) entered forwarding state
[  949.371433][T12683] usb 5-1: USB disconnect, device number 67
[  949.430674][T15756] Bluetooth: hci2: command tx timeout
[  949.458007][T16471] ieee802154 phy1 wpan1: encryption failed: -22
[  949.520075][T16475] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3020'.
[  949.624554][T16401] 8021q: adding VLAN 0 to HW filter on device batadv0
[  949.681800][T16483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3022'.
[  950.668772][T16401] veth0_vlan: entered promiscuous mode
[  950.679452][T16401] veth1_vlan: entered promiscuous mode
[  950.701605][T16401] veth0_macvtap: entered promiscuous mode
[  950.710813][T16401] veth1_macvtap: entered promiscuous mode
[  950.733249][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.743773][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.753725][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.764233][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.775186][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.785964][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.796273][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.807081][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.817224][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.827810][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.837822][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.848385][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.858382][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  950.869594][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.881355][T16401] batman_adv: batadv0: Interface activated: batadv_slave_0
[  950.895762][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  950.906860][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.919551][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  950.930542][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.943685][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  950.968602][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  950.993576][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.014819][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.028594][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.048219][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.058970][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.112368][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.149950][T16401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.170210][T16401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.191928][T16401] batman_adv: batadv0: Interface activated: batadv_slave_1
[  951.513587][T15756] Bluetooth: hci2: command tx timeout
[  951.570754][ T3421] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  951.713026][ T3421] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  952.404223][ T3464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  952.412357][ T3464] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  952.561682][   T29] audit: type=1326 audit(1734594136.424:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16525 comm="syz.4.3033" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x0
[  952.652046][T16527] ieee802154 phy1 wpan1: encryption failed: -22
[  952.791650][T16536] veth0_to_team: entered promiscuous mode
[  952.817513][T16536] macsec1: entered allmulticast mode
[  952.824432][T16536] veth0_to_team: entered allmulticast mode
[  952.860632][T16536] veth0_to_team: left allmulticast mode
[  952.869451][T16536] veth0_to_team: left promiscuous mode
[  953.000411][ T5821] usb 4-1: new low-speed USB device number 82 using dummy_hcd
[  953.154960][ T5821] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  953.170283][ T5821] usb 4-1: config 0 has no interface number 0
[  953.176467][ T5821] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  953.191817][ T5821] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  953.203193][ T5821] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  953.212735][ T5821] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  953.221346][T11143] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[  953.236011][ T5821] usb 4-1: config 0 descriptor??
[  953.246429][T16533] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  953.263860][ T5821] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  953.400444][T11143] usb 2-1: Using ep0 maxpacket: 32
[  953.414208][T11143] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  953.427470][T11143] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  953.442862][T11143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  953.468115][T11143] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  953.483259][T11143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  953.496218][T16533] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3035'.
[  953.510729][T16533] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3035'.
[  953.520656][T11143] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  953.532576][T11143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  953.542876][T11143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  953.553830][T11143] usb 2-1: config 0 interface 0 altsetting 0 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[  953.571975][T11143] usb 2-1: New USB device found, idVendor=0572, idProduct=cafe, bcdDevice=55.01
[  953.581804][T11143] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  953.594003][ T5821] usb 4-1: USB disconnect, device number 82
[  953.604150][T11143] usb 2-1: Product: syz
[  953.608431][T11143] usb 2-1: Manufacturer: syz
[  953.623835][T16537] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  953.633933][T11143] usb 2-1: SerialNumber: syz
[  953.644906][T11143] usb 2-1: config 0 descriptor??
[  953.661472][T16543] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  954.019790][T11143] cxacru 2-1:0.0: submit of read urb for cm 0x90 failed (-8)
[  954.043477][T11143] cxacru 2-1:0.0: usbatm_usb_probe: invalid endpoint 02!
[  954.081143][T11143] cxacru 2-1:0.0: probe with driver cxacru failed with error -22
[  954.269811][T11143] usb 2-1: USB disconnect, device number 65
[  954.522575][   T29] audit: type=1800 audit(1734594138.384:234): pid=16559 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3042" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  954.872622][T15756] Bluetooth: hci0: command 0x0401 tx timeout
[  956.390016][T15756] Bluetooth: hci0: unexpected event for opcode 0x1005
[  957.285239][    T9] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[  957.500386][   T29] audit: type=1800 audit(1734594141.284:235): pid=16593 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3053" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  957.522627][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  957.534944][    T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  957.560732][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  957.597931][    T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  957.630537][   T29] audit: type=1326 audit(1734594141.484:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.652285][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.658198][    T9] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  957.668278][   T29] audit: type=1326 audit(1734594141.484:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.668318][   T29] audit: type=1326 audit(1734594141.484:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.692046][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  957.727438][    T9] usb 4-1: config 0 descriptor??
[  957.735251][   T29] audit: type=1326 audit(1734594141.484:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.762192][   T29] audit: type=1326 audit(1734594141.484:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.783840][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.790188][   T29] audit: type=1326 audit(1734594141.484:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.811964][   T29] audit: type=1326 audit(1734594141.484:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.833623][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.841164][   T29] audit: type=1326 audit(1734594141.484:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.863178][   T29] audit: type=1326 audit(1734594141.484:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.884816][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.891365][   T29] audit: type=1326 audit(1734594141.484:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16597 comm="syz.4.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5849785d29 code=0x7ff00000
[  957.938757][    T9] hdpvr 4-1:0.0: firmware version 0x0 dated 
[  957.950745][T16601] 9pnet_virtio: no channels available for device /dev/loop1
[  957.960606][    T9] hdpvr 4-1:0.0: untested firmware, the driver might not work.
[  959.613296][    T9] hdpvr 4-1:0.0: Could not setup controls
[  959.623142][    T9] hdpvr 4-1:0.0: registering videodev failed
[  959.827087][    T9] hdpvr 4-1:0.0: probe with driver hdpvr failed with error -71
[  959.930294][    T9] usb 4-1: USB disconnect, device number 83
[  963.953895][T16646] FAULT_INJECTION: forcing a failure.
[  963.953895][T16646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  964.050482][T16646] CPU: 0 UID: 0 PID: 16646 Comm: syz.2.3068 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  964.061286][T16646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  964.071384][T16646] Call Trace:
[  964.074742][T16646]  <TASK>
[  964.077678][T16646]  dump_stack_lvl+0x241/0x360
[  964.082402][T16646]  ? __pfx_dump_stack_lvl+0x10/0x10
[  964.087629][T16646]  ? __pfx__printk+0x10/0x10
[  964.092253][T16646]  ? snprintf+0xda/0x120
[  964.096522][T16646]  should_fail_ex+0x3b0/0x4e0
[  964.101228][T16646]  _copy_to_user+0x31/0xb0
[  964.105676][T16646]  simple_read_from_buffer+0xca/0x150
[  964.111087][T16646]  proc_fail_nth_read+0x1e9/0x250
[  964.116160][T16646]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  964.121797][T16646]  ? rw_verify_area+0x55e/0x6f0
[  964.126680][T16646]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  964.132355][T16646]  vfs_read+0x1fc/0xb70
[  964.136658][T16646]  ? __pfx___mutex_lock+0x10/0x10
[  964.141720][T16646]  ? __pfx_vfs_read+0x10/0x10
[  964.146443][T16646]  ? __fget_files+0x2a/0x410
[  964.151075][T16646]  ? __fget_files+0x395/0x410
[  964.155792][T16646]  ? __fget_files+0x2a/0x410
[  964.160431][T16646]  ksys_read+0x18f/0x2b0
[  964.164716][T16646]  ? __pfx_ksys_read+0x10/0x10
[  964.169518][T16646]  ? do_syscall_64+0x100/0x230
[  964.174336][T16646]  ? do_syscall_64+0xb6/0x230
[  964.179056][T16646]  do_syscall_64+0xf3/0x230
[  964.183592][T16646]  ? clear_bhb_loop+0x35/0x90
[  964.188298][T16646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  964.194579][T16646] RIP: 0033:0x7f2cdef8473c
[  964.199019][T16646] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  964.218662][T16646] RSP: 002b:00007f2cdfd72030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  964.227116][T16646] RAX: ffffffffffffffda RBX: 00007f2cdf176080 RCX: 00007f2cdef8473c
[  964.235117][T16646] RDX: 000000000000000f RSI: 00007f2cdfd720a0 RDI: 0000000000000003
[  964.236447][T16651] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  964.243094][T16646] RBP: 00007f2cdfd72090 R08: 0000000000000000 R09: 0000000000000000
[  964.243111][T16646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  964.243123][T16646] R13: 0000000000000000 R14: 00007f2cdf176080 R15: 00007ffc8140bfa8
[  964.243152][T16646]  </TASK>
[  964.280047][T16651] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  964.317734][T16651] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3070'.
[  964.439138][T16656] autofs4:pid:16656:validate_dev_ioctl: invalid path supplied for cmd(0xc0189372)
[  964.463507][T16656] usb usb1: usbfs: process 16656 (syz.2.3071) did not claim interface 0 before use
[  964.550594][T10944] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[  964.711261][T10944] usb 2-1: Using ep0 maxpacket: 32
[  964.719817][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  964.720810][    T9] usb 3-1: new high-speed USB device number 73 using dummy_hcd
[  964.737888][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  964.757219][T10944] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  964.777504][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  964.781792][T16663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3074'.
[  964.789278][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  964.816406][T10944] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  964.838626][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  964.849855][T10944] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  964.867924][T10944] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  964.892776][T10944] usb 2-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=c0.b9
[  964.902691][    T9] usb 3-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=a2.bf
[  964.911150][T10944] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  964.912101][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  964.919927][T10944] usb 2-1: Product: syz
[  964.944916][T10944] usb 2-1: Manufacturer: syz
[  964.949639][T10944] usb 2-1: SerialNumber: syz
[  964.954489][    T9] usb 3-1: Product: syz
[  964.968889][T10944] usb 2-1: config 0 descriptor??
[  964.968965][    T9] usb 3-1: Manufacturer: syz
[  964.983360][T10944] ti_usb_3410_5052 2-1:0.0: TI USB 5052 2 port adapter converter detected
[  964.996249][    T9] usb 3-1: SerialNumber: syz
[  965.004748][T10944] ti_usb_3410_5052 2-1:0.0: missing endpoints
[  965.008322][    T9] usb 3-1: config 0 descriptor??
[  965.028046][    T9] ssu100 3-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  965.036146][T16665] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3075'.
[  965.211821][T12683] usb 2-1: USB disconnect, device number 66
[  965.239863][    T9] ssu100 3-1:0.0: probe with driver ssu100 failed with error -71
[  965.317753][    T9] usb 3-1: USB disconnect, device number 73
[  966.480447][T12683] usb 2-1: new low-speed USB device number 67 using dummy_hcd
[  966.737845][T12683] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  966.777053][T12683] usb 2-1: config 0 has no interface number 0
[  966.832351][T12683] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  966.916705][T12683] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  966.998895][T12683] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  967.158590][T12683] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  967.285258][T12683] usb 2-1: config 0 descriptor??
[  967.498394][T16670] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  967.898116][T16670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3076'.
[  967.934368][T16670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3076'.
[  968.051334][T12683] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  968.090749][T12683] usb 2-1: USB disconnect, device number 67
[  971.155986][T16701] x_tables: unsorted underflow at hook 4
[  973.419593][T12683] usb 5-1: new low-speed USB device number 68 using dummy_hcd
[  974.223591][ T5916] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[  974.262845][T12683] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  974.271404][T12683] usb 5-1: config 0 has no interface number 0
[  974.277591][T12683] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  974.333136][T12683] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  974.381100][T12683] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  974.390361][T12683] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.408316][T12683] usb 5-1: config 0 descriptor??
[  974.415726][T16739] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  974.428385][T12683] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  974.570261][ T5916] usb 2-1: Using ep0 maxpacket: 32
[  974.579546][ T5916] usb 2-1: config 1 interface 0 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 1024
[  974.589642][ T5916] usb 2-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 25268, setting to 1024
[  974.670501][T10944] usb 3-1: new high-speed USB device number 74 using dummy_hcd
[  974.745079][T16739] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3095'.
[  974.755914][T16739] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3095'.
[  974.850681][T10944] usb 3-1: Using ep0 maxpacket: 16
[  974.892915][T10944] usb 3-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[  974.929204][T10944] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  974.968758][T10944] usb 3-1: Product: syz
[  974.987221][T10944] usb 3-1: Manufacturer: syz
[  975.005304][T10944] usb 3-1: SerialNumber: syz
[  975.077983][T10944] usb 3-1: config 0 descriptor??
[  975.152069][T10944] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state.
[  975.312983][T10944] gp8psk: usb in 128 operation failed.
[  975.320984][T16761] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  975.329787][T16761] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  975.347766][T16761] IPVS: length: 20 != 28504
[  975.358934][T10944] gp8psk: usb in 137 operation failed.
[  975.365939][T10944] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  975.377505][T10944] dvbdev: DVB: registering new adapter (Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver)
[  975.387881][T10944] usb 3-1: media controller created
[  975.441779][T10944] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  975.500580][T10944] gp8psk_fe: Frontend revision 1 attached
[  975.517934][T10944] usb 3-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)...
[  975.549489][ T5916] usb 2-1: config 1 interface 0 altsetting 5 bulk endpoint 0x82 has invalid maxpacket 1024
[  975.559971][ T5916] usb 2-1: config 1 interface 0 has no altsetting 0
[  975.580331][T10944] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[  975.582358][ T5916] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  975.618215][ T5916] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  975.644139][T11143] usb 5-1: USB disconnect, device number 68
[  975.647298][ T5916] usb 2-1: Product: syz
[  975.662649][ T5916] usb 2-1: Manufacturer: syz
[  975.673871][ T5916] usb 2-1: SerialNumber: syz
[  975.694083][T16749] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  975.702306][T16749] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  975.738572][T10944] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver successfully initialized and connected.
[  975.759153][T10944] gp8psk: found Genpix USB device pID = 201 (hex)
[  975.913841][T16769] x_tables: unsorted underflow at hook 4
[  976.187215][ T5916] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 68 if 0 alt 5 proto 1 vid 0x0525 pid 0xA4A8
[  976.551901][ T5916] usb 2-1: USB disconnect, device number 68
[  976.808454][ T5916] usblp0: removed
[  977.740935][T10944] usb 3-1: USB disconnect, device number 74
[  979.035583][T10944] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receive successfully deinitialized and disconnected.
[  979.808406][T16806] x_tables: unsorted underflow at hook 4
[  979.816919][T16809] netlink: 'syz.2.3118': attribute type 3 has an invalid length.
[  979.824923][T16809] netlink: 'syz.2.3118': attribute type 1 has an invalid length.
[  979.833577][T16809] netlink: 112865 bytes leftover after parsing attributes in process `syz.2.3118'.
[  981.739160][ T5913] IPVS: starting estimator thread 0...
[  981.790669][T12684] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[  981.840578][T16829] IPVS: using max 23 ests per chain, 55200 per kthread
[  981.946721][T16831] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3124'.
[  981.952404][T12684] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  981.975554][T12684] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  981.989467][T12684] usb 2-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  982.018981][T12684] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  982.058375][T12684] usb 2-1: config 0 descriptor??
[  982.140011][T16839] loop2: detected capacity change from 0 to 7
[  982.159134][T16839] Dev loop2: unable to read RDB block 7
[  982.169497][T16839]  loop2: unable to read partition table
[  982.186798][T16839] loop2: partition table beyond EOD, truncated
[  982.197770][T16839] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  982.213929][ T5194] Dev loop2: unable to read RDB block 7
[  982.229981][ T5194]  loop2: unable to read partition table
[  982.239453][ T5194] loop2: partition table beyond EOD, truncated
[  982.720634][T12684] hid-led 0003:0FC5:B080.0015: unknown main item tag 0x0
[  983.711418][ T5824] Bluetooth: hci3: unexpected event for opcode 0x1005
[  984.162765][T12684] hid-led 0003:0FC5:B080.0015: probe with driver hid-led failed with error -71
[  984.174829][T12684] usb 2-1: USB disconnect, device number 69
[  984.267865][ T5194] Dev loop2: unable to read RDB block 7
[  984.273914][ T5194]  loop2: unable to read partition table
[  985.538586][ T5194] loop2: partition table beyond EOD, truncated
[  987.836798][T10944] usb 5-1: new low-speed USB device number 69 using dummy_hcd
[  988.154917][T10944] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  988.176061][T10944] usb 5-1: config 0 has no interface number 0
[  988.230729][T10944] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  988.699560][T10944] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  988.710931][T10944] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  988.720021][T10944] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  988.738080][T10944] usb 5-1: config 0 descriptor??
[  988.744377][T16893] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  988.804053][T10944] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  989.148285][T16893] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3141'.
[  989.261934][T16893] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3141'.
[  989.321844][T16908] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3144'.
[  989.374195][T10944] usb 5-1: USB disconnect, device number 69
[  990.023143][T16921] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3145'.
[  990.032545][T16921] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3145'.
[  990.042206][T16921] A link change request failed with some changes committed already. Interface ip6gre0 may have been left with an inconsistent configuration, please check.
[  990.789834][ T5194] Dev loop2: unable to read RDB block 7
[  990.800250][ T5194]  loop2: unable to read partition table
[  990.806964][ T5194] loop2: partition table beyond EOD, truncated
[  991.050863][   T29] kauditd_printk_skb: 2173 callbacks suppressed
[  991.050882][   T29] audit: type=1326 audit(1734594174.914:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16924 comm="syz.1.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  991.080656][   T29] audit: type=1326 audit(1734594174.944:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16924 comm="syz.1.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  991.220276][   T29] audit: type=1326 audit(1734594174.974:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16924 comm="syz.1.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  991.863383][   T29] audit: type=1326 audit(1734594174.974:2422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16924 comm="syz.1.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc7c985d29 code=0x7ffc0000
[  992.584515][T16945] 9pnet_fd: Insufficient options for proto=fd
[  993.384226][ T5194] Dev loop2: unable to read RDB block 7
[  993.390043][ T5194]  loop2: unable to read partition table
[  993.406491][ T5194] loop2: partition table beyond EOD, truncated
[  993.439000][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  995.014842][T16967] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3160'.
[  995.304196][ T5194] Dev loop2: unable to read RDB block 7
[  995.318662][ T5194]  loop2: unable to read partition table
[  995.325940][ T5194] loop2: partition table beyond EOD, truncated
[  995.467426][T16971] netlink: 312 bytes leftover after parsing attributes in process `syz.1.3155'.
[  996.460334][    T9] usb 3-1: new low-speed USB device number 75 using dummy_hcd
[  997.042770][    T9] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  997.052246][    T9] usb 3-1: config 0 has no interface number 0
[  997.059149][    T9] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  997.079910][    T9] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  997.100735][    T9] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  997.109990][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  997.147698][    T9] usb 3-1: config 0 descriptor??
[  997.179931][T16973] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  997.202421][    T9] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  997.343613][T16988] 9pnet_fd: Insufficient options for proto=fd
[  998.108976][T16973] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3161'.
[  998.140708][T16973] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3161'.
[  998.210857][ T5913] usb 3-1: USB disconnect, device number 75
[  999.256081][   T29] audit: type=1800 audit(1734594183.114:2423): pid=17003 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3169" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  999.546185][ T5194] Dev loop2: unable to read RDB block 7
[  999.552020][ T5194]  loop2: unable to read partition table
[  999.557872][ T5194] loop2: partition table beyond EOD, truncated
[  999.604317][T17005] vlan2: entered allmulticast mode
[  999.614302][T17005] batadv0: entered allmulticast mode
[  999.772114][T17005] batadv0: left allmulticast mode
[ 1001.380352][T11143] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1001.510834][T17021] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3175'.
[ 1001.549875][   T29] audit: type=1800 audit(1734594185.404:2424): pid=17010 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3172" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1001.604709][T11143] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1001.615781][T11143] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1001.627568][ T5194] Dev loop2: unable to read RDB block 7
[ 1001.628230][T11143] usb 2-1: config 0 descriptor??
[ 1001.636118][ T5194]  loop2: unable to read partition table
[ 1001.666778][ T5194] loop2: partition table beyond EOD, truncated
[ 1001.733191][T17032] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3179'.
[ 1001.864306][T17035] 9pnet_fd: Insufficient options for proto=fd
[ 1002.873128][T11143] usb 2-1: Cannot set autoneg
[ 1002.875782][ T5194] Dev loop2: unable to read RDB block 7
[ 1002.878008][T11143] MOSCHIP usb-ethernet driver 2-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[ 1002.899061][ T5194]  loop2: unable to read partition table
[ 1002.915870][ T5194] loop2: partition table beyond EOD, truncated
[ 1002.931879][T11143] usb 2-1: USB disconnect, device number 70
[ 1002.943137][ T5194] Dev loop2: unable to read RDB block 7
[ 1002.959108][ T5194]  loop2: unable to read partition table
[ 1002.969927][ T5194] loop2: partition table beyond EOD, truncated
[ 1004.643854][   T29] audit: type=1800 audit(1734594188.504:2425): pid=17039 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3181" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1004.761731][ T5194] Dev loop2: unable to read RDB block 7
[ 1004.767497][ T5194]  loop2: unable to read partition table
[ 1004.774639][ T5194] loop2: partition table beyond EOD, truncated
[ 1004.985759][T17064] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3185'.
[ 1005.046224][ T5194] Dev loop2: unable to read RDB block 7
[ 1005.066870][ T5194]  loop2: unable to read partition table
[ 1005.090382][ T5194] loop2: partition table beyond EOD, truncated
[ 1006.111150][T17083] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3192'.
[ 1006.319401][ T5194] Dev loop2: unable to read RDB block 7
[ 1006.330405][ T5194]  loop2: unable to read partition table
[ 1006.336258][ T5194] loop2: partition table beyond EOD, truncated
[ 1008.181245][ T5913] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[ 1009.136465][   T29] audit: type=1800 audit(1734594192.994:2426): pid=17110 uid=3327 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3202" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1009.209457][T17108] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3201'.
[ 1009.237778][   T29] audit: type=1800 audit(1734594193.094:2427): pid=17114 uid=3327 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3200" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1009.255327][T17108] xt_HMARK: spi-set and port-set can't be combined
[ 1009.443285][ T5913] usb 5-1: device not accepting address 70, error -71
[ 1009.538919][T17126] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3205'.
[ 1009.642585][ T5194] Dev loop2: unable to read RDB block 7
[ 1009.651959][ T5194]  loop2: unable to read partition table
[ 1009.676923][ T5194] loop2: partition table beyond EOD, truncated
[ 1010.929818][T17130] FAULT_INJECTION: forcing a failure.
[ 1010.929818][T17130] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1010.943100][T17130] CPU: 1 UID: 0 PID: 17130 Comm: syz.2.3196 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[ 1010.953897][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1010.964065][T17130] Call Trace:
[ 1010.967360][T17130]  <TASK>
[ 1010.970309][T17130]  dump_stack_lvl+0x241/0x360
[ 1010.975015][T17130]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1010.980242][T17130]  ? __pfx__printk+0x10/0x10
[ 1010.984871][T17130]  should_fail_ex+0x3b0/0x4e0
[ 1010.989573][T17130]  strncpy_from_user+0x36/0x270
[ 1010.994492][T17130]  getname_flags+0xf1/0x540
[ 1010.999014][T17130]  do_sys_openat2+0xd2/0x1d0
[ 1011.003603][T17130]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1011.008799][T17130]  ? __fget_files+0x2a/0x410
[ 1011.013387][T17130]  ? __fget_files+0x2a/0x410
[ 1011.017973][T17130]  __x64_sys_openat+0x247/0x2a0
[ 1011.022818][T17130]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1011.028288][T17130]  ? do_syscall_64+0x100/0x230
[ 1011.033052][T17130]  ? do_syscall_64+0xb6/0x230
[ 1011.037721][T17130]  do_syscall_64+0xf3/0x230
[ 1011.042222][T17130]  ? clear_bhb_loop+0x35/0x90
[ 1011.046890][T17130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1011.052790][T17130] RIP: 0033:0x7f2cdef85d29
[ 1011.057204][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1011.076818][T17130] RSP: 002b:00007f2cdfd93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1011.085241][T17130] RAX: ffffffffffffffda RBX: 00007f2cdf175fa0 RCX: 00007f2cdef85d29
[ 1011.093209][T17130] RDX: 0000000000000002 RSI: 0000000020000000 RDI: ffffffffffffff9c
[ 1011.101174][T17130] RBP: 00007f2cdfd93090 R08: 0000000000000000 R09: 0000000000000000
[ 1011.109149][T17130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1011.117126][T17130] R13: 0000000000000000 R14: 00007f2cdf175fa0 R15: 00007ffc8140bfa8
[ 1011.125117][T17130]  </TASK>
[ 1011.247287][ T5194] Dev loop2: unable to read RDB block 7
[ 1011.264068][ T5194]  loop2: unable to read partition table
[ 1011.269897][ T5194] loop2: partition table beyond EOD, truncated
[ 1012.551112][ T5194] Dev loop2: unable to read RDB block 7
[ 1012.556766][ T5194]  loop2: unable to read partition table
[ 1012.562734][ T5194] loop2: partition table beyond EOD, truncated
[ 1015.079537][T17179] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3218'.
[ 1015.716475][    T9] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[ 1015.894603][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1015.960729][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1015.990847][ T5824] Bluetooth: hci0: command 0x0401 tx timeout
[ 1016.035424][ T5194] Dev loop2: unable to read RDB block 7
[ 1016.041142][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1016.041175][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1016.041214][    T9] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1016.041241][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1016.051086][ T5194]  loop2: unable to read partition table
[ 1016.051279][ T5194] loop2: partition table beyond EOD, truncated
[ 1016.092836][    T9] usb 5-1: config 0 descriptor??
[ 1016.100348][T17192] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3221'.
[ 1016.204020][ T5194] Dev loop2: unable to read RDB block 7
[ 1016.209761][ T5194]  loop2: unable to read partition table
[ 1016.226750][ T5194] loop2: partition table beyond EOD, truncated
[ 1016.370491][    T9] hdpvr 5-1:0.0: unexpected answer of status request, len -71
[ 1016.378069][    T9] hdpvr 5-1:0.0: device init failed
[ 1016.383951][    T9] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -12
[ 1016.407799][    T9] usb 5-1: USB disconnect, device number 72
[ 1018.408588][T17218] FAULT_INJECTION: forcing a failure.
[ 1018.408588][T17218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1018.451253][T17218] CPU: 1 UID: 0 PID: 17218 Comm: syz.1.3229 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[ 1018.462081][T17218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1018.472173][T17218] Call Trace:
[ 1018.475523][T17218]  <TASK>
[ 1018.478476][T17218]  dump_stack_lvl+0x241/0x360
[ 1018.483186][T17218]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1018.488412][T17218]  ? __pfx__printk+0x10/0x10
[ 1018.493033][T17218]  ? __pfx_lock_release+0x10/0x10
[ 1018.498091][T17218]  should_fail_ex+0x3b0/0x4e0
[ 1018.502807][T17218]  _copy_from_user+0x2f/0xc0
[ 1018.507434][T17218]  lo_ioctl+0x7b5/0x1f50
[ 1018.511701][T17218]  ? mark_lock+0x9a/0x360
[ 1018.516066][T17218]  ? validate_chain+0x11e/0x5920
[ 1018.521037][T17218]  ? __pfx_lo_ioctl+0x10/0x10
[ 1018.525734][T17218]  ? mark_lock+0x9a/0x360
[ 1018.530086][T17218]  ? __lock_acquire+0x1397/0x2100
[ 1018.535162][T17218]  ? __pfx_lock_acquire+0x10/0x10
[ 1018.540213][T17218]  ? is_bpf_text_address+0x26/0x2a0
[ 1018.545435][T17218]  ? __pfx_lock_release+0x10/0x10
[ 1018.550462][T17218]  ? unwind_next_frame+0x18e6/0x22d0
[ 1018.555754][T17218]  ? preempt_count_add+0x93/0x190
[ 1018.560788][T17218]  ? 0xffffffffa00006a4
[ 1018.564942][T17218]  ? 0xffffffffa00006a4
[ 1018.569101][T17218]  ? is_bpf_text_address+0x285/0x2a0
[ 1018.574393][T17218]  ? is_bpf_text_address+0x26/0x2a0
[ 1018.579599][T17218]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1018.585762][T17218]  ? kernel_text_address+0xa7/0xe0
[ 1018.590883][T17218]  ? __kernel_text_address+0xd/0x40
[ 1018.596078][T17218]  ? unwind_get_return_address+0x4d/0x90
[ 1018.601709][T17218]  ? arch_stack_walk+0xfd/0x150
[ 1018.606571][T17218]  ? stack_trace_save+0x118/0x1d0
[ 1018.611603][T17218]  ? __pfx_stack_trace_save+0x10/0x10
[ 1018.616976][T17218]  ? stack_depot_save_flags+0x37/0x940
[ 1018.622446][T17218]  ? do_vfs_ioctl+0xf07/0x2e40
[ 1018.627213][T17218]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1018.632240][T17218]  ? mark_lock+0x9a/0x360
[ 1018.636582][T17218]  ? tomoyo_path_number_perm+0x206/0x860
[ 1018.642218][T17218]  ? __pfx_lock_release+0x10/0x10
[ 1018.647247][T17218]  ? tomoyo_path_number_perm+0x679/0x860
[ 1018.652879][T17218]  ? tomoyo_path_number_perm+0x679/0x860
[ 1018.658515][T17218]  ? blkdev_common_ioctl+0xfb2/0x2460
[ 1018.663904][T17218]  ? __lock_acquire+0x1397/0x2100
[ 1018.668939][T17218]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[ 1018.674577][T17218]  ? tomoyo_path_number_perm+0x206/0x860
[ 1018.680211][T17218]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1018.686212][T17218]  ? __asan_memset+0x23/0x50
[ 1018.690806][T17218]  ? smack_file_ioctl+0x29e/0x3a0
[ 1018.695834][T17218]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 1018.701209][T17218]  ? file_to_blk_mode+0xcc/0x140
[ 1018.706146][T17218]  ? __pfx_lo_ioctl+0x10/0x10
[ 1018.710850][T17218]  blkdev_ioctl+0x57d/0x6a0
[ 1018.715359][T17218]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1018.720388][T17218]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1018.725418][T17218]  __se_sys_ioctl+0xf5/0x170
[ 1018.730015][T17218]  do_syscall_64+0xf3/0x230
[ 1018.734524][T17218]  ? clear_bhb_loop+0x35/0x90
[ 1018.739198][T17218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1018.745102][T17218] RIP: 0033:0x7efc7c985d29
[ 1018.749523][T17218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1018.769226][T17218] RSP: 002b:00007efc7d83c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1018.777649][T17218] RAX: ffffffffffffffda RBX: 00007efc7cb76080 RCX: 00007efc7c985d29
[ 1018.785626][T17218] RDX: 0000000020000140 RSI: 0000000000004c02 RDI: 0000000000000005
[ 1018.793602][T17218] RBP: 00007efc7d83c090 R08: 0000000000000000 R09: 0000000000000000
[ 1018.801573][T17218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1018.809542][T17218] R13: 0000000000000000 R14: 00007efc7cb76080 R15: 00007ffc63faba18
[ 1018.817526][T17218]  </TASK>
[ 1018.853001][ T5194] Dev loop2: unable to read RDB block 7
[ 1018.858892][ T5194]  loop2: unable to read partition table
[ 1018.899281][ T5194] loop2: partition table beyond EOD, truncated
[ 1019.230625][ T5916] usb 3-1: new high-speed USB device number 76 using dummy_hcd
[ 1019.426325][    T9] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[ 1019.523511][T17238] 9pnet_fd: Insufficient options for proto=fd
[ 1019.920658][ T5916] usb 3-1: Using ep0 maxpacket: 32
[ 1019.928209][ T5916] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1019.946022][ T5916] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[ 1019.970324][ T5916] usb 3-1: New USB device found, idVendor=048d, idProduct=8595, bcdDevice= 0.00
[ 1019.979415][ T5916] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1020.031304][ T5916] usb 3-1: config 0 descriptor??
[ 1020.103174][ T5916] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[ 1020.111952][    T9] usb 2-1: Using ep0 maxpacket: 16
[ 1020.180292][    T9] usb 2-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1020.191605][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1020.199033][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c517, bcdDevice= 0.00
[ 1020.208305][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1020.239520][    T9] usb 2-1: config 0 descriptor??
[ 1020.787831][T17231] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1020.801693][T17231] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1020.858612][    T9] logitech-djreceiver 0003:046D:C517.0016: hidraw0: USB HID v0.05 Device [HID 046d:c517] on usb-dummy_hcd.1-1/input0
[ 1020.873124][   T29] audit: type=1326 audit(1734594204.714:2428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1021.286160][T17252] infiniband syz2: set active
[ 1021.291056][T17252] infiniband syz2: added team_slave_1
[ 1021.361998][T17231] xt_TCPMSS: Only works on TCP SYN packets
[ 1021.368161][   T29] audit: type=1326 audit(1734594204.714:2429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1021.500608][T17252] RDS/IB: syz2: added
[ 1021.505024][T17252] smc: adding ib device syz2 with port count 1
[ 1021.511858][T17252] smc:    ib device syz2 port 1 has pnetid 
[ 1021.870408][   T29] audit: type=1326 audit(1734594204.714:2430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1021.940258][   T29] audit: type=1326 audit(1734594204.714:2431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1021.990442][   T29] audit: type=1326 audit(1734594204.714:2432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.021887][   T29] audit: type=1326 audit(1734594204.714:2433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.044307][   T29] audit: type=1326 audit(1734594204.714:2434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.066992][   T29] audit: type=1326 audit(1734594204.714:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.088864][   T29] audit: type=1326 audit(1734594204.714:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.111373][   T29] audit: type=1326 audit(1734594204.714:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17249 comm="syz.5.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe58b585d29 code=0x7ffc0000
[ 1022.132956][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1022.230988][ T5916] usb 3-1: USB disconnect, device number 76
[ 1022.356358][ T5194] Dev loop2: unable to read RDB block 7
[ 1022.606750][ T5194]  loop2: unable to read partition table
[ 1022.626270][ T5194] loop2: partition table beyond EOD, truncated
[ 1022.659177][T17265] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1022.727738][T17269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3242'.
[ 1022.748139][    T9] usb 2-1: USB disconnect, device number 71
[ 1023.906589][T17283] Invalid logical block size (63)
[ 1024.769784][T17301] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3253'.
[ 1025.768524][ T5194] Dev loop2: unable to read RDB block 7
[ 1025.774369][ T5194]  loop2: unable to read partition table
[ 1025.780486][ T5194] loop2: partition table beyond EOD, truncated
[ 1026.340304][T17312] F2FS-fs (loop3): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1026.348648][T17312] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1026.358826][T17312] F2FS-fs (loop3): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1026.367379][T17312] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[ 1028.477684][T17326] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3257'.
[ 1134.230063][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1134.237065][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P17327/1:b..l
[ 1134.245798][    C1] rcu: 	(detected by 1, t=10505 jiffies, g=72701, q=931 ncpus=2)
[ 1134.253541][    C1] task:syz.3.3260      state:R  running task     stack:24128 pid:17327 tgid:17327 ppid:16057  flags:0x00004000
[ 1134.267021][    C1] Call Trace:
[ 1134.270329][    C1]  <TASK>
[ 1134.273293][    C1]  __schedule+0x17fb/0x4be0
[ 1134.277854][    C1]  ? __pfx___schedule+0x10/0x10
[ 1134.282738][    C1]  ? mark_lock+0x9a/0x360
[ 1134.287192][    C1]  ? preempt_schedule+0xe1/0xf0
[ 1134.292060][    C1]  preempt_schedule_common+0x84/0xd0
[ 1134.297632][    C1]  preempt_schedule+0xe1/0xf0
[ 1134.302332][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[ 1134.307722][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1134.313647][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1134.318868][    C1]  _raw_spin_unlock+0x3e/0x50
[ 1134.323563][    C1]  unmap_page_range+0x36c3/0x4040
[ 1134.328622][    C1]  ? exit_mm+0x220/0x310
[ 1134.332879][    C1]  ? x64_sys_call+0x26a8/0x26b0
[ 1134.337769][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[ 1134.343170][    C1]  ? mas_next_slot+0xdc6/0xea0
[ 1134.347958][    C1]  ? uprobe_munmap+0x183/0x460
[ 1134.352748][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[ 1134.357889][    C1]  unmap_vmas+0x3cc/0x5f0
[ 1134.362256][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[ 1134.367147][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[ 1134.372718][    C1]  exit_mmap+0x275/0xc20
[ 1134.376988][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 1134.381792][    C1]  ? __pfx_exit_aio+0x10/0x10
[ 1134.386502][    C1]  ? uprobe_clear_state+0x271/0x290
[ 1134.391717][    C1]  ? mm_update_next_owner+0xa2/0x8a0
[ 1134.397016][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1134.402238][    C1]  __mmput+0x115/0x3b0
[ 1134.406336][    C1]  exit_mm+0x220/0x310
[ 1134.410426][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 1134.415037][    C1]  ? taskstats_exit+0x326/0xa60
[ 1134.419908][    C1]  do_exit+0x9b2/0x28e0
[ 1134.424096][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1134.428696][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1134.434700][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1134.441059][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1134.446282][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1134.451506][    C1]  do_group_exit+0x207/0x2c0
[ 1134.456115][    C1]  __x64_sys_exit_group+0x3f/0x40
[ 1134.461154][    C1]  x64_sys_call+0x26a8/0x26b0
[ 1134.465848][    C1]  do_syscall_64+0xf3/0x230
[ 1134.470492][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1134.475279][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.481204][    C1] RIP: 0033:0x7f2412985d29
[ 1134.485632][    C1] RSP: 002b:00007fff664162d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1134.494062][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2412985d29
[ 1134.502047][    C1] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 1134.510137][    C1] RBP: 00007fff6641632c R08: 00007fff664163bf R09: 0000555590b6c590
[ 1134.518121][    C1] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1134.526199][    C1] R13: 0000555590b6c590 R14: 00007fff66416380 R15: 00007fff66416380
[ 1134.534199][    C1]  </TASK>
[ 1134.537227][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10461 jiffies! g72701 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 1134.549560][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=84707
[ 1134.557454][    C1] rcu: rcu_preempt kthread starved for 10462 jiffies! g72701 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[ 1134.568841][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1134.578819][    C1] rcu: RCU grace-period kthread stack dump:
[ 1134.584712][    C1] task:rcu_preempt     state:I stack:26168 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1134.594906][    C1] Call Trace:
[ 1134.598192][    C1]  <TASK>
[ 1134.601137][    C1]  __schedule+0x17fb/0x4be0
[ 1134.605683][    C1]  ? __pfx___schedule+0x10/0x10
[ 1134.610553][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1134.615601][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1134.621949][    C1]  ? schedule+0x90/0x320
[ 1134.626206][    C1]  schedule+0x14b/0x320
[ 1134.630379][    C1]  schedule_timeout+0x15a/0x290
[ 1134.635243][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1134.640645][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1134.646053][    C1]  ? prepare_to_swait_event+0x330/0x350
[ 1134.651617][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1134.656599][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1134.661842][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1134.668025][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1134.673346][    C1]  rcu_gp_kthread+0xa7/0x3b0
[ 1134.677952][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1134.683199][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1134.689116][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1134.694156][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1134.699380][    C1]  kthread+0x2f0/0x390
[ 1134.703462][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1134.708675][    C1]  ? __pfx_kthread+0x10/0x10
[ 1134.713287][    C1]  ret_from_fork+0x4b/0x80
[ 1134.717718][    C1]  ? __pfx_kthread+0x10/0x10
[ 1134.722322][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1134.727123][    C1]  </TASK>
[ 1134.730148][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1134.736486][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1134.741713][    C0] NMI backtrace for cpu 0
[ 1134.741727][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[ 1134.741746][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1134.741756][    C0] RIP: 0010:debug_object_activate+0x1e6/0x580
[ 1134.741785][    C0] Code: 03 42 80 3c 30 00 74 08 48 89 df e8 44 af 42 fd 48 8b 44 24 10 48 39 03 0f 84 16 01 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 <74> bf 4c 89 ff e8 20 af 42 fd eb b5 44 3b 25 9b e9 57 0b 7e 07 44
[ 1134.741800][    C0] RSP: 0018:ffffc90000007be0 EFLAGS: 00000046
[ 1134.741816][    C0] RAX: 1ffff110056f6b88 RBX: ffff88802b7b5c58 RCX: 0000000000000001
[ 1134.741828][    C0] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffffc90000007ac0
[ 1134.741841][    C0] RBP: ffffc90000007cf8 R08: 0000000000000003 R09: fffff52000000f58
[ 1134.741853][    C0] R10: dffffc0000000000 R11: fffff52000000f58 R12: 0000000000000000
[ 1134.741866][    C0] R13: 1ffff92000000f84 R14: dffffc0000000000 R15: ffff88802b7b5c40
[ 1134.741879][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1134.741894][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1134.741906][    C0] CR2: 00000000200bd000 CR3: 0000000031d6e000 CR4: 00000000003526f0
[ 1134.741921][    C0] DR0: 0000000000000000 DR1: 00000000872c9164 DR2: 0000000000000000
[ 1134.741932][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1134.741944][    C0] Call Trace:
[ 1134.741952][    C0]  <NMI>
[ 1134.741960][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1134.741980][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1134.741999][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1134.742018][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1134.742050][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1134.742073][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1134.742090][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1134.742109][    C0]  ? debug_object_activate+0x1e6/0x580
[ 1134.742132][    C0]  ? default_do_nmi+0x63/0x160
[ 1134.742150][    C0]  ? exc_nmi+0x123/0x1f0
[ 1134.742167][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1134.742187][    C0]  ? debug_object_activate+0x1e6/0x580
[ 1134.742211][    C0]  ? debug_object_activate+0x1e6/0x580
[ 1134.742236][    C0]  ? debug_object_activate+0x1e6/0x580
[ 1134.742259][    C0]  </NMI>
[ 1134.742265][    C0]  <IRQ>
[ 1134.742274][    C0]  ? __pfx_debug_object_activate+0x10/0x10
[ 1134.742298][    C0]  ? advance_sched+0xa02/0xca0
[ 1134.742320][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1134.742339][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[ 1134.742361][    C0]  enqueue_hrtimer+0x30/0x3c0
[ 1134.742384][    C0]  __hrtimer_run_queues+0x6cb/0xd30
[ 1134.742414][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1134.742434][    C0]  ? handle_softirqs+0x7e0/0x9b0
[ 1134.742457][    C0]  ? read_tsc+0x9/0x20
[ 1134.742478][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[ 1134.742499][    C0]  hrtimer_interrupt+0x403/0xa40
[ 1134.742532][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 1134.742552][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1134.742573][    C0]  </IRQ>
[ 1134.742579][    C0]  <TASK>
[ 1134.742586][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1134.742611][    C0] RIP: 0010:acpi_safe_halt+0x21/0x30
[ 1134.742628][    C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 d4 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 ec a7 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[ 1134.742642][    C0] RSP: 0018:ffffffff8e607ca8 EFLAGS: 00000246
[ 1134.742657][    C0] RAX: ffffffff8e6965c0 RBX: ffff888020edc064 RCX: 0000000000a484c9
[ 1134.742669][    C0] RDX: 0000000000000001 RSI: ffff888020edc000 RDI: ffff888020edc064
[ 1134.742682][    C0] RBP: 000000000003a878 R08: ffff8880b8637cdb R09: 1ffff110170c6f9b
[ 1134.742694][    C0] R10: dffffc0000000000 R11: ffffffff8bc0bc80 R12: ffff88801ef85000
[ 1134.742707][    C0] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff8f10f320
[ 1134.742721][    C0]  ? __pfx_acpi_idle_enter+0x10/0x10
[ 1134.742742][    C0]  acpi_idle_enter+0xe4/0x140
[ 1134.742758][    C0]  cpuidle_enter_state+0x109/0x470
[ 1134.742782][    C0]  ? __pfx_menu_select+0x10/0x10
[ 1134.742806][    C0]  cpuidle_enter+0x5d/0xa0
[ 1134.742826][    C0]  do_idle+0x372/0x5c0
[ 1134.742853][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1134.742875][    C0]  ? __cpuidle_text_end+0x5/0x5
[ 1134.742897][    C0]  ? rest_init+0x31/0x300
[ 1134.742912][    C0]  cpu_startup_entry+0x42/0x60
[ 1134.742935][    C0]  rest_init+0x2dc/0x300
[ 1134.742951][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[ 1134.742976][    C0]  start_kernel+0x47f/0x500
[ 1134.742997][    C0]  x86_64_start_reservations+0x2a/0x30
[ 1134.743020][    C0]  x86_64_start_kernel+0x9f/0xa0
[ 1134.743047][    C0]  common_startup_64+0x13e/0x147
[ 1134.743074][    C0]  </TASK>