last executing test programs:

3m46.751878862s ago: executing program 4 (id=660):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[@ANYBLOB="6000000000000000000400", @ANYRES32=0x0, @ANYBLOB="00030000428000003000128009000100766c616e000000002000028006000100020000000600050088a800000c000200030000001a00000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB], 0x60}}, 0x0)

3m46.581752421s ago: executing program 4 (id=662):
r0 = fanotify_init(0x200, 0x0)
fanotify_mark(r0, 0x80, 0x4800003e, 0xffffffffffffffff, 0x0)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000011c0), 0x208c02, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ptrace(0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = timerfd_create(0x9, 0x80800)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4, [{}, {}, {}, {0x10000, 0x0, 0x200}]})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
timerfd_settime(r5, 0x0, &(0x7f0000000140)={{}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'syztnl2\x00', &(0x7f0000000340)={'ip6_vti0\x00', 0x0, 0x4, 0x2a, 0x0, 0x8, 0x3b, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, 0x7, 0x1, 0x1000, 0x3}})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x28001000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, r3, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x80c0)
r10 = dup(r1)
ioctl$DRM_IOCTL_GET_CAP(r10, 0xc010640c, &(0x7f00000000c0)={0x12})
recvmsg(r10, &(0x7f0000000280)={&(0x7f00000002c0)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000040)=""/10, 0xa}, {&(0x7f0000000140)=""/163, 0xa3}], 0x2, &(0x7f0000000240)=""/30, 0x1e}, 0x3)

3m46.275916388s ago: executing program 4 (id=666):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
cachestat(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)

3m46.183059079s ago: executing program 4 (id=667):
socket(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2, 0x8, 0xd0eb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f0000000440)={[{@nr_blocks={'nr_blocks', 0x3d, [0x4b]}}]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
shmget$private(0x0, 0x2000, 0x0, &(0x7f0000878000/0x2000)=nil)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)

3m44.166296134s ago: executing program 4 (id=671):
syz_create_resource$binfmt(0x0)
write(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4080aea2, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000280)=@filter={'filter\x00', 0xe, 0x4, 0x500, 0xffffffff, 0x200, 0x200, 0x330, 0xffffffff, 0xffffffff, 0x430, 0x430, 0x430, 0xffffffff, 0x4, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x1d8, 0x200, 0x0, {}, [@common=@inet=@recent1={{0x108}, {0x9, 0x5bdb, 0x1, 0x0, 'syz0\x00', 0x1, [0xff000000, 0x9cb0cce430aeab93, 0xff, 0xffffff00]}}, @common=@unspec=@cgroup0={{0x28}, {0x6}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x108, 0x130, 0x0, {}, [@common=@srh={{0x30}, {0x2b, 0x7, 0xf5, 0xa, 0x9, 0x1882, 0x783}}, @common=@srh={{0x30}, {0x2f, 0x0, 0x5, 0xf, 0x7fff, 0x20, 0x841}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@eui64={{0x28}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x1, 0x2, 0x4}, {0x3, 0x1, 0x3}, 0x0, 0x1d5}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x560)
sendto$inet(r0, &(0x7f0000000240)="7b00008924f731a15737d4a6a3216f426e0ce9cd62611083776b75e3196ae2f5d9893d8ce5a982", 0x27, 0x0, 0x0, 0x0)

3m40.772634102s ago: executing program 4 (id=680):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'bond_slave_0\x00', &(0x7f0000000300)=@ethtool_rxnfc={0x31, 0x5, 0x4, {0x12, @tcp_ip4_spec={@multicast1, @broadcast, 0x4e24, 0x4e21, 0x1}, {0x0, @multicast, 0x400, 0x81, [0x7ff, 0x400]}, @esp_ip4_spec={@multicast2, @remote, 0x7, 0xfd}, {0x0, @broadcast, 0x5, 0x7, [0x10001, 0x897]}, 0xd7, 0x4}, 0x7, [0x5, 0x3, 0x4, 0x7, 0x6, 0x9, 0x3547]}})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
keyctl$session_to_parent(0x12)
signalfd(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="03040000b5fff4000100fefffeefffff"], 0xc8)

3m39.347958924s ago: executing program 32 (id=680):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'bond_slave_0\x00', &(0x7f0000000300)=@ethtool_rxnfc={0x31, 0x5, 0x4, {0x12, @tcp_ip4_spec={@multicast1, @broadcast, 0x4e24, 0x4e21, 0x1}, {0x0, @multicast, 0x400, 0x81, [0x7ff, 0x400]}, @esp_ip4_spec={@multicast2, @remote, 0x7, 0xfd}, {0x0, @broadcast, 0x5, 0x7, [0x10001, 0x897]}, 0xd7, 0x4}, 0x7, [0x5, 0x3, 0x4, 0x7, 0x6, 0x9, 0x3547]}})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
keyctl$session_to_parent(0x12)
signalfd(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="03040000b5fff4000100fefffeefffff"], 0xc8)

15.196359855s ago: executing program 0 (id=1283):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b006f5dd2797271f7000000000000000000000000000000010000", @ANYRES32, @ANYRES8=r0, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), 0x0}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r7}, 0x18)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x11}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x44, 0x0, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}]}]}, 0x44}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c000000020100000000000000000000000000000600124000000000080003400000000008001a4000000000100006800c"], 0x3c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240100003b0007010000000000000000047c0000040000000c00018006000600800a000000010280f90014"], 0x124}}, 0xc000)
sendmsg$TIPC_CMD_GET_NODES(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000005}, 0x40081)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002f00)=@newqdisc={0x138, 0x24, 0xd0f, 0x200000, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xe, 0x7}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "1f087db966058f66908611a2da3e15d07ea4bbea3d646bddcbf88d74a8f9b16f89ac1296a3ebe1eb696bc28149a6f97bca767db6d5a2e4a0ce4e1f337f52af8d065ab3903bf929f30662e91d6466b050411964902e6bfd3d89271fd28b48677d5cf2caefd8a40abbe659aabf39f028156294855a66954d2349461e5b3fdf380433eb7182203d89bd1637c99109d611ac6ddd1f8bd70df15be1196d73cf93360c81be9c56781a57bf6ac5bd26db48b73bd89d4e22511b72fa9373f5ff75156b83de4ba43f4325cb81ad4e1ebabd12279a1c2cb16d9b64ac46472168b729780d5697663cde109a2ea16079fdfb016066bd7f663500"}]}}]}, 0x138}}, 0x0)

12.687961304s ago: executing program 0 (id=1287):
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)})
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000006d4bc1edb0d481f4ba574bb0907ed333c2"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$DRM_IOCTL_CONTROL(0xffffffffffffffff, 0x40086414, &(0x7f0000000300))
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f0000000440), &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000800)="531d48d4612ebeb527cd49b4d7b292d0f423865aa1e2be74e50e0571ed59a74d832b3f654a78963138c66595eea3354ba2bc8089bc1b402d9afe116ef4a8202c2e33663507edeeb9d0cb469ee9ce4e7e2dc982b4e9fad74fa46a463ec0000465bfd14c018587e7b54a6fef99b49ee9aa1a9f9a628965f0c60aa1ce94cd7911467e167135ace9fcd908bc146f6f9414b58e66cab2e8bd324a6934835340e787d5b4c7ff8a391f5e39b093ca383d5ac35036021b62fcbef26ea71f2db3fef86195ba0f22e649eae5fec3f013fbaa023b5c8a44d4", 0xd3, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})

11.22735702s ago: executing program 0 (id=1290):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48800}, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x21)
close(r1)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r3, &(0x7f0000000440)='0', 0x1, 0x0, &(0x7f0000000340)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)
r4 = openat$smackfs_ipv6host(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$smackfs_ipv6host(r4, &(0x7f0000000080)=@l2={{0x0, 0x3a, 0x7, 0x3a, 0x4, 0x3a, 0x8000000000000000, 0x3a, 0x1, 0x3a, 0x1400, 0x3a, 0xc2, 0x3a, 0xf}, 0x2f, 0x40, 0x20, '%.&\v\x10@'}, 0xb4)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, 0x0, &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
shutdown(r3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0x8, &(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRES8=r0, @ANYRES32=r6, @ANYRES64=r7, @ANYRESDEC=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getsockopt$bt_hci(r3, 0x84, 0x76, &(0x7f0000003140)=""/4111, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

11.20655294s ago: executing program 5 (id=1292):
syz_usb_connect(0x0, 0x3f, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000e395292024042c011e710102030109022d000100001000090485000342e6440209050b02000486b20609050f0210028df30409057812da3e16beffec167a21c17a"], 0x0) (async)
syz_usb_connect$cdc_ncm(0x3, 0x80, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6e, 0x2, 0x1, 0x1, 0x20, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "53880b19bdfc"}, {0x5, 0x24, 0x0, 0x7}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x6, 0x3, 0x8}, {0x6, 0x24, 0x1a, 0x9, 0x1}, [@mbim={0xc, 0x24, 0x1b, 0x401, 0x5, 0x80, 0xff, 0x4, 0x9}]}, {{0x9, 0x5, 0x81, 0x3, 0x400, 0xa, 0x48, 0x8}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0xff, 0x3, 0xff}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x43, 0x0, 0x81}}}}}}}]}}, &(0x7f0000000240)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x300, 0x5, 0x3, 0x10, 0x8, 0x3}, 0x8, &(0x7f00000000c0)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x2, [{0x30, &(0x7f0000000100)=@string={0x30, 0x3, "0271896bb81482421212eea2b17ebbf7bbdd5323802ba36504c6efad5a57606af1953f6f04c53ac6a54032a006c5"}}, {0x65, &(0x7f0000000140)=@string={0x65, 0x3, "75d3897faa121fe7d71fb0eaeb70af059c721edef18a3a61d8176790e147b510933df1c0276ea9d972c2d484c7971065620ca5a36182bea824e15e9659cbc47bc130afb38b268719619d365d508253e1089a6a6b4a26dba663065fbe00e60913c8faa7"}}]})

10.800314039s ago: executing program 3 (id=1294):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00", 0x1b}, 0x60)
getsockopt$nfc_llcp(r0, 0x118, 0x0, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = socket$kcm(0x2, 0x5, 0x84)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000540)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8, 0x11, 0xfffffffe}, @TCA_CAKE_FWMARK={0x8, 0x12, 0x2}]}}]}, 0x44}}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000005c0)={[{'ac,'}]})
r7 = io_uring_setup(0x29ea, &(0x7f0000000480)={0x0, 0x0, 0x2})
io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r7, 0x12, 0x0, 0x0)

8.8761301s ago: executing program 0 (id=1297):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b006f5dd2797271f7000000000000000000000000000000010000", @ANYRES32, @ANYRES8=r0, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), 0x0}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r7}, 0x10)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x44, 0x0, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}]}]}, 0x44}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c000000020100000000000000000000000000000600124000000000080003400000000008001a4000000000100006800c"], 0x3c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240100003b0007010000000000000000047c0000040000000c00018006000600800a000000010280f90014"], 0x124}}, 0xc000)
sendmsg$TIPC_CMD_GET_NODES(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000005}, 0x40081)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002f00)=@newqdisc={0x138, 0x24, 0xd0f, 0x200000, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xe, 0x7}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "1f087db966058f66908611a2da3e15d07ea4bbea3d646bddcbf88d74a8f9b16f89ac1296a3ebe1eb696bc28149a6f97bca767db6d5a2e4a0ce4e1f337f52af8d065ab3903bf929f30662e91d6466b050411964902e6bfd3d89271fd28b48677d5cf2caefd8a40abbe659aabf39f028156294855a66954d2349461e5b3fdf380433eb7182203d89bd1637c99109d611ac6ddd1f8bd70df15be1196d73cf93360c81be9c56781a57bf6ac5bd26db48b73bd89d4e22511b72fa9373f5ff75156b83de4ba43f4325cb81ad4e1ebabd12279a1c2cb16d9b64ac46472168b729780d5697663cde109a2ea16079fdfb016066bd7f663500"}]}}]}, 0x138}}, 0x0)

8.717620195s ago: executing program 2 (id=1298):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@getstat={0xe0, 0x15, 0x0, 0x70bd29, 0x0, {{'digest_null-generic\x00'}, '\x00', '\x00', 0x0, 0x2400}}, 0xe0}}, 0x0)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}, 0x1, 0x4000000000000000}, 0x0)

8.503307544s ago: executing program 2 (id=1299):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5"], 0x50}}, 0x4000000)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100003001400000060ec97000fc83c00fe8000000000000000000000000000aaff02000000000000000000000000000106"], 0xffe)

8.0603798s ago: executing program 3 (id=1300):
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)})
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000006d4bc1edb0d481f4ba574bb0907ed333c2"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$DRM_IOCTL_CONTROL(0xffffffffffffffff, 0x40086414, &(0x7f0000000300))
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x2}, &(0x7f0000000240), 0x0, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f0000000440), &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000800)="531d48d4612ebeb527cd49b4d7b292d0f423865aa1e2be74e50e0571ed59a74d832b3f654a78963138c66595eea3354ba2bc8089bc1b402d9afe116ef4a8202c2e33663507edeeb9d0cb469ee9ce4e7e2dc982b4e9fad74fa46a463ec0000465bfd14c018587e7b54a6fef99b49ee9aa1a9f9a628965f0c60aa1ce94cd7911467e167135ace9fcd908bc146f6f9414b58e66cab2e8bd324a6934835340e787d5b4c7ff8a391f5e39b093ca383d5ac35036021b62fcbef26ea71f2db3fef86195ba0f22e649eae5fec3f013fbaa023b5c8a44d4", 0xd3, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})

7.745580636s ago: executing program 5 (id=1301):
r0 = socket$nl_route(0x10, 0x3, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0xe, 0x0, &(0x7f0000000040)="319af0e95ce200002f0000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setresuid(0x0, r1, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_getroute={0x50, 0x1a, 0x10, 0x70bd2a, 0x25dfdbff, {0xa, 0x80, 0x0, 0xcb, 0xfe, 0x0, 0xc8, 0x7}, [@RTA_EXPIRES={0x8}, @RTA_UID={0x8, 0x19, 0xffffffffffffffff}, @RTA_UID={0x8, 0x19, r1}, @RTA_PRIORITY={0x8, 0x6, 0x7fff}, @RTA_GATEWAY={0x14, 0x5, @rand_addr=' \x01\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x4048005)
syz_usb_connect$uac1(0x2, 0xaf, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029d0003010100000904000000010100000a24010000000201020e06cb0256ceb91200000800fb0c24020302020205000909050c240200030200000000000e0724060001ff0f05240346050200050009240605000106"], 0x0)

7.678623238s ago: executing program 0 (id=1303):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000201b4510fc0428155d6d01020301090212000100000000090401"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000060000a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x20, 0x52, 0x1, 0x0, 0x0, {0x2}, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1}]}, 0x20}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

6.681719677s ago: executing program 3 (id=1304):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x19, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x18000000, @void, @value, @void, @value}, 0x48)

6.612660708s ago: executing program 2 (id=1305):
socket$inet6(0xa, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
socket(0x15, 0x5, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x6, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001785ecc0009"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r2)
sendmsg$SMC_PNETID_FLUSH(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x193d06370d5267ec}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x6c, 0x0, 0x4, 0x70bd25, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x24000080}, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000002140)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(michael_mic-generic,xchacha20-generic)\x00'}, 0x58)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x7, &(0x7f0000000200)="fb187985e01696590000f3170fe000", 0xf)
close_range(r3, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_type(r5, &(0x7f0000000180), 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))

6.135169626s ago: executing program 3 (id=1306):
r0 = socket$packet(0x11, 0x3, 0x300)
recvmmsg(r0, 0x0, 0x0, 0x2020, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f00000003c0)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, &(0x7f0000000200)={0xa000000a})
finit_module(r6, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000240)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88)
r8 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='0:,:\x00', 0x0)
setsockopt$inet_MCAST_MSFILTER(r7, 0x0, 0x30, &(0x7f0000000dc0)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000100000002"], 0x110)
bind$inet(r1, &(0x7f0000000c80)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="2764711e125e118566f395e4e725940000000000"], 0x2c}}, 0x0)
sendto$inet(r1, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
syz_usb_connect(0x0, 0x3b, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000ec13b2106d04d308280b0102030109022900010000000009046900000e010000082402010202050503"], 0x0)

5.948799109s ago: executing program 5 (id=1307):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b000000000000000000000000800000000000", @ANYRES32, @ANYBLOB='\x00'/14, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
socket$inet(0x2, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x3f, &(0x7f0000000080)=0x1, 0x4)
bind$inet(r5, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
recvmmsg(r5, 0x0, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_misc(r6, &(0x7f0000000140), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x5c}, [@ldst={0x6}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

5.642721764s ago: executing program 1 (id=1309):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r3, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r1}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[], 0x24}}, 0xc000)
sendmmsg$inet6(r1, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000740)="03", 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x20000094}}, 0x0)
sendmmsg$inet6(r1, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f0000000180), 0x1}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000009c0)='.', 0xc400}], 0x7}}], 0x44, 0x0) (fail_nth: 12)

5.077513116s ago: executing program 1 (id=1310):
r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
dup3(r0, r2, 0x0)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
creat(0x0, 0x27)
syz_open_dev$tty1(0xc, 0x4, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x12)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r7 = io_uring_setup(0x6a7f, &(0x7f00000000c0))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0x12, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000600090000003c0003800800010002000000140002"], 0x50}}, 0x0)
sendmsg$tipc(r5, &(0x7f0000000540)={&(0x7f0000000200)=@name={0x1e, 0x2, 0x0, {{}, 0xfffffffc}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40010}, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x120)
mount(&(0x7f0000000500)=@loop={'/dev/loop', 0x0}, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580)='romfs\x00', 0xa00010, 0x0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="b0000000000000ab284dc9a94095f54e34f11a5a480d2115805745f8a24d1925ce152965c4e3c44af7be"], 0xf9)

3.689451497s ago: executing program 1 (id=1311):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
gettid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000001300)=""/263, 0x107)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = fsopen(&(0x7f00000000c0)='nilfs2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x8, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r5, 0x0, 0x0)
lseek(r5, 0x38, 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r6, &(0x7f0000000040)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x3f, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYRES32=r4, @ANYRES32=r9, @ANYBLOB="000000000000000014001a80100004800c0001"], 0x34}}, 0x0)

3.580373503s ago: executing program 0 (id=1312):
r0 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x8000, 0x0)
write$P9_RGETLOCK(r0, &(0x7f0000000340)=ANY=[@ANYBLOB='#\x00\x00\x007\x00'/24, @ANYRES32=0x0, @ANYBLOB="05016111180b2729e3a64042a655f9b3bdaaec9e9c9beebd082648886e14482b343b574e51be00000000"], 0x23) (async, rerun: 32)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) (rerun: 32)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x60003, 0x0) (async)
socket$packet(0x11, 0x3, 0x300) (async, rerun: 32)
socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
prlimit64(0x0, 0xa, &(0x7f0000000140)={0x8, 0x87}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 32)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36) (async)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x1, 0xfffffffd, @loopback, 0x3000}, 0x70) (async)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000240)={'vcan0\x00', &(0x7f00000000c0)=@ethtool_eeprom={0xc, 0x5, 0x87}})
listen(0xffffffffffffffff, 0x0) (async)
recvmmsg(0xffffffffffffffff, &(0x7f00000067c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x42, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x290, 0x160, 0xa, 0x148, 0x0, 0x60, 0x1f8, 0x2a8, 0x2a8, 0x1f8, 0x2a8, 0x3, 0x0, {[{{@ip={@dev={0xac, 0x14, 0x14, 0x39}, @local, 0x0, 0x0, 'veth0_to_bond\x00', 'nr0\x00', {}, {}, 0x33}, 0x0, 0xf0, 0x160, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x2, 0x0, 0x2, 0x9, 0x9c89e3a, 0xbeaf, 0x7d0, 0x0, 0x18}}}, @common=@unspec=@cgroup0={{0x28}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x4, 0x0, "f20000000013fa9bf7e30000000000ca4ea6e7bf904adc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb053a5089830cc46172cf81d3e86d5af300"}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x2f0) (async)
io_uring_setup(0x1891, &(0x7f0000000140)={0x0, 0x431f, 0x0, 0x1, 0x157}) (async)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) (async)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r6, 0x84, 0xf, 0x0, &(0x7f0000000000)) (async)
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r7, 0xc100565c, &(0x7f00000013c0)={0x3, 0x2, 0x2, {0x5, @vbi={0xb5, 0x100000, 0x3, 0x0, [0x4, 0x8000000], [0x8200, 0x1]}}, 0xffffffff})

3.579993828s ago: executing program 2 (id=1313):
ioperm(0x0, 0x40, 0x80)
io_setup(0x1, &(0x7f00000004c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180500000000000000005a8c3b531cc252bb00006599a15b7a81a2f6bd32efbb92031881a82a4b9917fb23c0bb8fd6e9bb0343cfd9ee4c287b3329bf9531675612036dcf752241c2b0c45bb2dd47a5e11e052dd0b5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fcntl$setstatus(r5, 0x4, 0x46100)
fallocate(r5, 0x0, 0x0, 0x1000)

2.290581858s ago: executing program 1 (id=1314):
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)})
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000006d4bc1edb0d481f4ba574bb0907ed333c2"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$DRM_IOCTL_CONTROL(0xffffffffffffffff, 0x40086414, &(0x7f0000000300))
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x2}, &(0x7f0000000240), 0x0, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f0000000440), &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000800)="531d48d4612ebeb527cd49b4d7b292d0f423865aa1e2be74e50e0571ed59a74d832b3f654a78963138c66595eea3354ba2bc8089bc1b402d9afe116ef4a8202c2e33663507edeeb9d0cb469ee9ce4e7e2dc982b4e9fad74fa46a463ec0000465bfd14c018587e7b54a6fef99b49ee9aa1a9f9a628965f0c60aa1ce94cd7911467e167135ace9fcd908bc146f6f9414b58e66cab2e8bd324a6934835340e787d5b4c7ff8a391f5e39b093ca383d5ac35036021b62fcbef26ea71f2db3fef86195ba0f22e649eae5fec3f013fbaa023b5c8a44d4", 0xd3, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})

2.202401419s ago: executing program 3 (id=1315):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000140)={0x0, 0x9948, 0x6, 0x1, 0x3ff, 0x5, 0xd18, 0x3fde8476, {0x0, @in={{0x2, 0x4e23, @multicast2}}, 0x4, 0xc6, 0xfffffffa, 0xffffffff, 0x3}}, &(0x7f0000000000)=0xb0)
ftruncate(r1, 0x7)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x6b)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r2, @ANYBLOB="03000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="38000000100039042dbd70000000000000000336de88ab20a27630b570bce4", @ANYRES32=r3, @ANYBLOB="00000000c31006001800128008000100736974000c00028008001400e7080000"], 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.176028315s ago: executing program 1 (id=1316):
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x20, r3, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}}, 0x0) (fail_nth: 12)

939.904064ms ago: executing program 3 (id=1317):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$video4linux(&(0x7f00000001c0), 0x8, 0x42)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r4, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
close(r4)
close_range(r3, 0xffffffffffffffff, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000380)={{0x12, 0x1, 0x0, 0xd7, 0x18, 0x58, 0x8, 0xf3d, 0x68a3, 0x14f8, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x7, 0x0, 0x3, 0x22, 0xec, 0x20, 0x0, [], [{{0x9, 0x5, 0x8}}, {{0x9, 0x5, 0xb}}, {{0x9, 0x5, 0xd}}]}}]}}]}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

937.139499ms ago: executing program 2 (id=1318):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r3, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r1}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[], 0x24}}, 0xc000)
sendmmsg$inet6(r1, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000740)="03", 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x20000094}}, 0x0)
sendmmsg$inet6(r1, &(0x7f0000002000)=[{{0x0, 0x2000, &(0x7f0000000180), 0x1}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000009c0)='.', 0xc400}], 0x7}}], 0x44, 0x0)

896.298214ms ago: executing program 5 (id=1319):
r0 = socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0xff, 0x2, 0x7fff7ffc}]})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8004}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x1000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000f, 0x28011, r3, 0x1000)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="0000080000000200088b2f01000846efed"], 0xfdef)
tkill(0x0, 0x16)
r6 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000100), 0x1, 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000001100)='iocharset', &(0x7f0000001140)='\xe0^@&&}\'\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'macvtap0\x00', <r7=>0x0})
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="15020000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r9], 0x4c}, 0x1, 0xba01}, 0x0)

720.235466ms ago: executing program 2 (id=1320):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = creat(0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000280)=0x9, 0x4)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}]}})
link(&(0x7f0000000180)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
r2 = syz_open_dev$swradio(&(0x7f0000002b80), 0x0, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'sit0\x00'})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000b0000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
r6 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000040)='source', &(0x7f0000002280)='//\xf2b\x06\b\xba\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\x00\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x97\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8DD\x9bp\x01\xcc:\xa6\xc5n\x9f\xfb\x81 \x10\x0fQ\x90}Zd\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3V\x9c\x8c\xf8\xf7\xe2\xd5\x8bE\xee5\x00\xaa\xd5\xfc\x1b$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\xec\xac\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xec\x9es\xee\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00\x00\x00\x00\x00\x00_\tN\xfd\xa2\xc2SPu\xe7\xc0+SL\xa1', 0x3000000000000)
ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0)
mq_open(&(0x7f0000000180)='+:%/[\x00', 0x40, 0x104, &(0x7f00000002c0)={0x5, 0x6, 0xfd87, 0x6})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f0000003c80)={0xffffea74, 0x4, 0x2, {0x8, @win={{0x4, 0x2, 0x0, 0x4}, 0x1, 0xbe, 0x0, 0x6, 0x0, 0x8e}}, 0x167})
syz_fuse_handle_req(r1, &(0x7f000000c2c0)="12fb46f48b6f50d13524259dece2e0558d86a4e791cd7de407a603fc1c26c9cb894a2dea99d75a9e0eddd9f4c81cf61bf8b87b3d5057cad4c3a4618f5eb71dc2358416a11b1f1761978598dfa66407c1ce7a3c795c5e77023c3b1e611c935e2d68c40cb2f872ba0fd6e790d5fb60b7fd5996e1b8aee0dc3a93433210d958066a57bf43b370c941f7e1f99c2ce03bdcdcc8448e88cdbda91937583eb31dbe35220bf098ee9a488920786f57e48946b373d994b4b1f06a03eb81e4ef15a0824e1936d48d39fd6ccc02a0b6e2d5e10385225e4ada290da0e2c31616d55f27bd69abfd7e0e1a4678f493a4b4a96a8d40637c25a9941b5750b455277bb71a945969a01acb852f5b63ef7f6a29c8dbea16ebdc1b8e6e4123a8c5b6d6484f7ddc44fceeab8937f07c5104d849a0ce6c6836d7c7268d48c8f4eefc8bc738243869fd8228c393912be4a922cdd2636484fee9c26cc58089c85604bca4621c9642ced6182bb187f2e8ab60ff1aa715ae0682d526186eb92c780fae7f101c9f2bbe1241664112aeb50322472fde6790b818ab13e4547087c63b8f3afd0d093e67b0f31b7c6ca9a347544a7a28d164d2baa427887babe92d31019a1ded657d6c1f9fa2316ced6476ca9f193dd785e521cc1f91ee60e2241eae95f9c027ffa5a1177d8e976eb732a74331f287c5178d3d37202b5e1b4370d7e19e1c739cb23b7e897174edc8dbf9fbb4f1f99c14052949e6791359f8d710d5c4c8cb7464c82a8d58a587a84ada788de2ad6e119c712ebee5066ac02628c2c5e16f981fe7dbc33d23308f0772cd40d7fb2abd4c03fcca8b74a81e8e53638301675b3f7459cc47b5fab0e1fe3bd5670b751538a7d6f1c988ba8224ae2ca5b2556f84b5284506c0ab12cb2c4ca0af629ba4c54f6a4d8dedf693f4da095d5ffa8eec055aec1bf283c91f16d0c8d61ad88729e15ba79b9492a21e0e15fadd4be7e61da4b2c17d650d8334d73786b6e370f6df2974552dc34d0d421aff5a2ec683452f7880f5776ac81732a5789759b7a167d11f5e3bb709f941cdf8b96a7436fcc02f11ef9ca0fc6fcbf155de6181273308c67be7a5941421926213b72761a26faeaca55bfd8895ea195e87fc61722fab9d0ec1349876047f0c6239a90dcba92553b7f04e50d5b388041d0cc3d46c24a6d0df28e78cb38b906ca7b070f2839777d5f3537b71a22a7781a60801872f6e2e0931c2be2ff4c3f60f91e4c7ccda5664d64d99bdfd5dac3a180596c7219cd82fea45ecd6ba008fa68f187a020314c63dab6498b44bf614c5122ffcf15d3120f28bb9d0ae7dbaee56e84e1dff93349b9b62507fe6174bfeb128e4ece52d268ed2d9cec805b2dc257abb89b7ac5e9e259d9c6eeed7f3654a6378cc545c669c4075384851c0afd4dffa8030ddb95decc93f68a360595c48c14861f2c01335d71ed944157a8b176e05cf2a7019de5a0c6a5465096098d40a1281413105442415c6193a4ec5e232826db7b638ef765c43974d5a3208815c981ba6968af0d017c5fe506984aa77146762f1bf24496bdf18dcfb876ffb9b843fee0a19dd1b9e39ce7d922bc6ecef8f76cb745efbb962fa5e3f43f2d2fc3622f81e504eb5198d12a753e44684bbaa5a6f8c6a1f1f7057ed495f9d1159dd0bbd96c4cccac0a78274d1559e38d521e5b747c0a039ba4d8b44c0b52259e6f945084901a35098301c3a699ca711788826bc0914866bab089a12d3d8e3425e84f14ab99cd08c87b6044d0d00c14162be5925815240f66ca65db9c596ce613ea33edca257a81a9700a58f77c451684aff07f5f0db63666f07bbf180be04f6e9c83b097d7b880301a79f953d7d60338e7db5c698571fc35c316073ea990b48b3cebb5a9d4b84e95cb187cf14e5ff1f7991443966915d738e435b454ec2bf807a73461811d62ee21503aaec064ce4c20257a0309860816d2c954300db3d2b3fd021e9782460e5d2e5f71bd52a09dc52b40694ac27772bb3875e2659bbcca79c37d20c7f0ef790882ce245c312ef307c39416abe482630747b319a050c482a918b509387e2bf424642bcd4bab2eebe531ca52839cb3f10343560fdf691cd72f5aa36858469432d8b02722a37ea02c2282e343ff2da602ce90789ba18144aac25da160a4f3946646ff35e048fdab7228832ec21f8cbf83ff7379694da2b1327a1e7301653f3a20347525535e17f5398d3bfee7a182ef83712bbae053ebada1acf2266711a10fcd0eb18b897fcb45fd25499737e8f3a98ccb4c7150e7399534da280d3ed8cfbaef24f34a27833632707d4fa068bb51de0019efbf35db7575ab1ed239a2bab421aa2b37270ba59c6f5787905b3546ce5dc171ec25c545e6c77640f5a36632cc8cd0db5a35876ec570c362b46aee673e2ffb7b4d298c25d9f0e769f77d5c5a9ad533f0e901a6a68839f73f07d7bdf0a53561e3effa4b633f9f6e1905052c820581c8dc64dc272a44a7614f6b15591f410d4624cfb5a60739687141c0639f1d5b6a62aed9189fe8b6db2838146bfce520fda801fbc7fa3c444fd11098177f46af96e49d82754d1fd76d224a0290eed2068790daf50ed6708ba6395f658b03933b5fe85bec9bffc133f7b1c7d8e7b8bf26d50f23d9276725c9383c110f8d74f21e7e3b263b56da48638eabb97a188c8de685e156257f093f8f1671ef09c360f0830a6e403469b889a35b88e3f6bd860c40362ddfee4d3e3a5f2d23d2b48c00ef2b76ac673cf4a2c68446c96dea19e6fc9be25419cf8ff9dc4af168cb09f8dc6f74a10e1ccb87d85c8a984d079f718055e0a2ec06ba4d31a46a6afde441267f3046b382903361a79e03dd6489697e5ffef9883d01525741b2e71f1124bc8bdd59feca05d8f2f401d7363c6034d5e71f83afbe61aa51e2b8f0ad497440fd2d947b0125220c2db913956b303512daeaab1c0aa0aa37e38244a62cbe8c7cfd6ae925763960510227b24510b7c8cc32b97a21393e1e88d4883d7105eeba0f69498cac538d2c0e69b96054c14b50bf3fd19cf1a1927daeaf94a47d09a5f8ba3c8b8dbbc806ca667b88cd1134b8a3bddde164e3d0167b89fb14bd943754f88b0a6ddf371c0d44df6b77ccf9805c426d69ec750488a831e8d89debdc5bb910e17b18e2b6a78b174763f713200ecb6ea87b62a42e4d74bafddbf1535dc225a72f31423c44878ade132dc5e2ce03c1e29e3f767d3d9e18256ec608a79e658a1e6a3ccfa12c7bda638746d9b61733ba71d58f9af30b79fa3552f28f19ebd81da667b22231ba58d3bf4aac0899412a94788c18bb2e39b073090206792c4334c9593a28077ca09dd37d1f140abc895d9dfdf792468a3a32bc6e3016a83efbad8209992fd1c6d58babece7916460f44c3e26ce7b662ebda9fb9f17d653e5b4a4a25be8d6bf284c98962ff013eca48bea2be00b4b1b6d944368e1bf7551f958b76e181938d174a033c8626815ead5f18be91cd162c32cf61c1b311e06c29d9631bc6d41faeeee8382b3ce6d4fb2d65f6b07729b09f7a6d93c98d14cc66d26923680aa686bdc533738bbc4ef57848b06a95b09adecc75e7c8aa56abc606c0031fb3794971a405598a43a7f626368cf3bd52ef7f87423cc4d0ecfe4231730a601089c857bce6c0a67ac8816f0dadadba474252535d93288226d44da7987edad03ac2878c9b297eb64ed33033c63be1730209952b2a877f67628dad4cf6665cd93a87eb2aa736f90890438856124288f65280dc6df704f557693fd564eda5a650e3dc07f13ec1fd13fd2cbf7bcd0e9f940e4d9b526d371db32ed42de03826892d13a76a8dd763440d3cdb3b9e3e727970a10802a4ac2b302bdde424136f0536bebd035f8861aff7f70833829aad767276ed1826bad2397e08025f0527e01f43fdff563c1af2697b36edff70f5cc5937e6b5aea4e7849d0b0235db435b0041518b26ba1d6140bbc0e6a89cf84d6242d55808e3d950e739f54ee40e62347f05f451ae4f610631156ea63c82617581a2a50b4cc6744f0ee728a57ec6775e2f23e28adca2b44567805870fbd3b68083f7abbb0c58eb6b8402fc5897d12a1d9451b5c7cca3f038f72599472408c521ba92c8d014e2a444245766b1a73399b87e04e046772de657901b209be4a43380247639b9fa2b65c97cf0a4991b2dbde0e260d3d2e1a4e13ed2e402269066a51f21e3ef1e06f386e3b13f07e73802be3c08c1613349c1a295a1c99888e59cb39e2ab5157b81a06f463ec49ad197c125ff00ecd2bdc013d7b325c4bd4792655e0765ab6701a0bd56f1cca842bf6d7b1b674aebefc35c962f37759ce70e3fbc01c5baaea0694ab887338e738b22a85baed8ba8c1c3973cfb8f9fed5212d7921f4372fad6aea02257912a5ab820270ca962edb540cc974576dfa0cd41b9b303a156cd678d44d1f8d3c9212dd67201b517f7c8643faca6e86a25d108a5c879b3fc751532044721abb23777b33e96a34234bf794c5f2d859dc39612ae5fde17928a2a7652cbe2788c98143ebb89d476f314bccfffe46747b82b800f2fba7f36d4b61841bc4d3d5dc76cf0cc5524b65b43eb39c857ebc29a6f21e2e1aab47972bc158d07e90b7b4b4252f999a972001c7bb00a043d106f9588891ae073cd797fe563df20e9f81e00a5c6644eb4377eb1cbf45962defd87aa80b4b2d5410b57f9aa81959dac45c91cc5e3bdc63a5c8c4f363cf70cbf06c5e6ca940e9e2856a94552af65b4f2c0209519a898a327dde238c7f48d55672aa69413e406b7c20e27002e0bf6287133bc277193ff29718d65176749615ad2704fa073cef7d4ed3c310bc139fe2bf5c9c03ae48d6899606d84095fe7346564872f3c27cc2548de9da25ec9698cd9a3ad13f9fce2b4849528a7ca8f086d2ca48b69bc93d0fe8c44329981b25b2cfc3aab952cd66ed3c03ee533fc59768f5d5d08b9f79ccafc7315f9a706e7a606d2e4d4ed10b4a364285815cefcbc479d6d55ed62ee29a7cbfb5ba3204a6fb3b24167d8a0024bd510d9facd5f2c5bc372052e2726285ec9a3928ed6a0751c2df67791c0edf6d2feffd6c5cf8ed8158e4221a3cf7a5526ef4dca5fb2eae60a701fa26e06cedfedcef7ead7d5601567b29f64721e9c31d294daf4eefc57188eb86ae80bd744b27972f0c13bfe04feb1d470a4e77d69758a751b48f7e26150d783a50c44e914eb38f707df0d9f56b6c6aec596edb950fd26641d55fb73451618a35a3f3c13374193b8e680010ec4aef83c47322a60345970cc8381c65eebbb7bd5c5d4a9f95d62806cf21c62b6344ea9aa23912be7528d86fc4fec65f75ef7e8ce9bc151a43a65b9c442afb1bcace94b971f4322126a8ae45ac60288363d5176e6bdf0394865ff863de68785202a236f1c73a235df20582dcbd430847a0423e264052e426b74fd954f8608b74521e46045e65e63646b4d28b5d09a8b4f323aeda2963b2d2f1acca82088e74c5fcf669614745cb2cd9c4758f8bf7ba85145558936e3796c902f41f836d39f2c6dbe130ce81b39d59381d5672c4841cc83e7bf8057722ceaa08a3f69483b45a57431a79dde9054130acfef7f37853025b6e4b9562c63b8571e5e7a95cf174523edbc0d0aa5f8b169e2a74b359a70b89e380ee2aafe54c875d687b5ed6fe6050f3b6652f4dd30a854e9a9d1318841ef5893c2058897d6195afc22470aff95a059ea00bedf2d34005880d06221ef1d114d541b6642c870b2f0361c676da8df5b3b3000bc69e403627ba2f509c074ca2aba1eb1dc8e9c08be5ddb0bf6c7019c1325c8665daa71b162370c6311c881b2abf25e4c098a6728cb3340851fe08cee38a05a3bfe828b1ffc28900d3474741bd49a6caa2f1a5865ec3552cfe81c79d2aa38f78d9118fb4c119082b87e0babc96265cce2da41036fbd0ac39a64c456f31e015b6bfd4dd27925ec64f5a12eb7029af8905a4c17bd70fe6ad1dabdae77126d0595cc4c6be580e5d6f340210f70c406317af64ab5658e0488aea520be265bbca6a336c0c72ba33c35df5c122af8b8ddf7709c3de699e9758169d4d2d849574f8eaf4a88b44e2ec3c2bbe948bb184581239f002952296c70138fd2642b186f1e10120313929a0a9b13249f8d23f12aa5ba26eb7c923fb8bd5bd9058566c2912ce0fe6d5b86a22d3495b05882e316edf21a84b05f2c3643130661722ce60b3174589f4787a099ba5aed9ddb697ab69f766eddabb2d5408b49348e8f93626afba104b490194b9e0a9bcb55baedb3f0ba67144d2b70052e299e7d15805dcd81b480a797a143202751c3216600b32a94f18e6d439659afe40da644f731adc1b79e5efac7f6f0609c1a33cc072933b65df2cabe5aeb55734f6efd75f6454867d30fe063ff9e0332d0af63980a741c5d066828308e52b71849489decb01ec55a664e5e5239182a0c86fe0c805159440a6d797cf66358a0a5180685d221268f17c25d797eef9c0acf4adac652cacb07fe9bc0fd461ef4be01f7527071aaea8cfd1a0639d11079e059d2d81d9705ba470da8a1f9b0b303e5f35cbb7820b807538288b747ec1b338f8c50369ba3d6c3940bf32c8ec864059a50115caa90f9f539025a11caa66f9a1596d8b2f6ec298840182c95a5cfc6811ea5545c6876c75c81ff4003d03f8a9ac5e1c680509ae03748df803da6eef3913baa48f28513b685f13008cd91d8993218e4bfd02636522ba611ed9c28bb94f71148c6785f968bff35bd89082bc23bfbf450cf510f803e7440f4314575bd46c9df06929dba27226f387350247973ac8ba089916f34f2d2613d7c6cf136eeac852fe78d8568ee6b0ef7cb2cca7f02c2afc496360ddd89224225ffdbc89ef4652a51705d4f636507eb892e5a4877907cefcbe9b533985fcdbd0585a5f7fdaa6d5e608a335869876bd8828054f830990b3bb83422208e241a00b27bd809ead6ec4485b8e8c05a1b764afebc6b113c90db87a8246abc6fdf2087292a3cffcbf191ec3c455f861edff1beff02b94976a42d2207b0d298f218cf5a3f98dd421e64efe9b70c24d996c20d0d1d4410f48646268b41c56493d022ef1ff0a7df8f3c7f845c07596ff914b4c5e59e011d9e90ed4bbe42bf435243a55179a33667f01c68edabf1227a5dde15008c31d2a8b1ed0d6e99e9f65865cf1037d599dd64de81cd09f62b848747a42c348032f51abbec0ee59ce5cbf1b14160079eb555bde788c9fe282313f52373d3ce6aba090fcc3c9e82685d322fc0e76de914388f967288f5f333f805224310487e93077bc4044a36b2976ae7884fd8bad0bfd2e009d1fe93f1abd0d03aa802af5a992874d94188ca72f703d083af2314d67e398a8d68675b958989af86eb2e1ab9bd74333066c0dc6b72360f1d7d2d148a38bca7b4a30a29a81315647c5ac9aa2022dcb850252e39987f661732c07d6d95a10910609fccfa5bb0db53120f24da1818225ab9aa25ac1999e2e01c66d54e4d060dba96c35e676e6a63970babc90b01d368f33a482fa703b39db7a2daf8be4c496bb2005fa0e0ae9a3422f8ed7975a62915a2ab06b72aff22eaeb64bd7e0657daa22081337780f5f6e5ac444147dd5f4d4c4e5de9b9c4c5f278f264f4a3b2481f6eeb4e75797358617effdfd9f819dd218798a41ff6358193bd99646745f2b9bc0f746d0ae2e6bbe27ee86ce12e33b9c88affba78e4c143c63216de182124f18098f44d7845edf4c477612fe7143af05fac83d2f508d43b51734ed32f3afbd7cf431a2b2e113e3adc0c795786f498ed1cc9119fe54c056560573784fa8ed3bad2aea4c24afc1a7e2e284ee79cdbe3b8846d7421ad30987203e5360f81de556141426f4a759bc78845df42762b36c6fd3c18b7041d677b89761b362ffdc49855417c464558ad1f80cabfc291399d05bb699d7cb696a5d76be06f98c6d9005895a6c0e521d7764b77068c4ad4896243ebe5dbbfbf2210c33f38b6290e87f699570273b43e7a529770b714e3404319b43e89e207ad3b82e80d3267d7559efa2fff76feec6735dd003bbd2844d118937a72eca11a205909d88391ae70a9ae5135d27f2e48e73342d2e966da373a51ebef9fab8998b07a06d8565206973207550d4f38ef43066bfb0c1833569581e377b98edf3b072e6564d3c595b384b93031c558cffcc2f38e794db1363081ef87a9d97cd35777f65b156f0181febbee1aa1b261e21eeaec88f8c6220ba37c112d9c9802d57482d61b520749be44fcbf933fc10fb9d3cd5a1e471f9eaeda8780f9a7e4cb3209dc6b7392459ee6d1f2831ea732a6c47a0e1c7380f198374371a7fbb32870b7f18a8f57739fd569e698a1b9c7bf59f9a072730d898f2d92dfb1d4d782f87cb005bdfc6e11564b0e7ec7ce38f165fdaa4bf2574e1c2172416550b4cf04a0490519a9e32e60dc2316989d025f2eeb45250d225d97da0fdf693df2c1e17bb0732ebd7c2290f808c552694f2bee04340efe96d81e39fd5f39d541d6712a11322ec6c19352fc918c9fc5cccb0cd7d621658e53a802015c10c6447e1065e763fb9dd3bfb74bd85fcd03e34d0e9a10bc9b5a15d7a4f04c490a2378f31ea30245a2120e75f1efe56d3427954a769b5c29646745ffafa0e7498cd34637ac73a43c1cddc8db73b2a623ac7fe5d66f820fcd52c769e6cc17678e1063b725b98f6f025fb70448abab5d1c02f57d7d430386411469c3273c002b1efbd5b4ac5cb3e880c4eb62a0b48fea7902f538d90fbfa96fe839f9064b06a97d9210fad10ff15b3ebccf9b26f298fd257811d1ea3c39c5279a4719fa3b716969d7e2bf517d1674930ad120d4bc447e5b193885923c7ac88ad2b2e6d2fbe6853868cfda45a982459242bde106340391220a9191aca7657b4a00a92db338d9300ccd39c80aade39042590e06a874011be9efa274b517ceb71d366abc1ca6ea8eab3933de1a875086004c36e3ae981ef7149f5c3a102525f80f84daf1518c5ddae175677e3adc6a0305a843a25d1e1515bb0f1286caf0dcb57984dcda9bcf022be3d4e2a077c5f72be94a361ee1ed272cc69fa2627313c421116441d5ff2524a4234e0ea8f99e70a02e53e9ee45fd47622258ba1ab15bffe3a9907ecf300ad2d6fa17a1cfc059f9578e2b1a33d571cea8ef0c88f2fd542ea88de5814999437629febdbf55538227eceda85238a48982f4f94f41d947f336ee23fd0481a357b9ddfd88bc18376703fdc10782c8a4df5a07db73774ea203e283ab9fed09e35d822fc2a44c06e261767a1b9315b2c7a6673a1c2fd3d2550d0d028b977e1b39061bdb1bb958e06787094a77906528384f37e297709b9d1d467564ba0f4acdbbccc21c564e74ae00915f373a3e5bac94a488ef57814b344947a440247b36a74a6f2f6126815390a730d830b107689c81d79751e8e7c83fbf01d6a3b733500db3d2296036fa089581162619c33372c7c7df1a91d84ae3591f84fa9a1485a9e98df6e480eef5aef1c735002c0077594a32e2a0f67379fd883f5269c6ba5594f10ffcd94cb952c3bebc7cc3210844f9c9e54490922cf42b3ca8571878f1576b8964a4a4a1f0df03ee35fbebb7a30f6fa546333232d0f2b18517e71073e5faf09913ab78d799fc7e485e936f21307b2b040c7c5aa7a7e47636332c26ae1452ad1ffe491fc111feef254f7b81a01d5cc852d78d7476e4543eeb2cd24f841d2a8738241ec4604b675ad136af8c17a777e04101cf6de416f7d01155760c9947e35c0ee56de485ac915945e23cd7e6993281df1b4b7b0940d8f618a875f7f5772bc385336c66428b1cc5e2b71f97d6effe170e95d2d93e0f932428caa71e359eae24c44415ba0c174fc92e257997f0426827f6f7930caf90018c79e293fa79b0dd51e509351e84cb662a654e267e5300e07476de37299fdc6bb546d2809dd4955a1ae8ef19e8b3e03b9d14cb290736cceb35b176bc06d70aaae9b54a25ef854821ceafb0190a3c4a82c281ef114eaeaef03ec60ad25467e422ff6bac7d4bed16c1c4b447829659555739d9c86b091446769b4199813e090053c827287659a59d11ee6baa815b71ffa06c665220d0009baff32c178e16afe3c2a5fcd5292337a78471d3ae83ef209862fec282cbf0282c5da623a54c97f0b58063ae52ef4f538e174dbad5372696b2a9b95d9fb1c06f85dc440bc47b4efdb316a9d3293c7441d63acbd2cb67ef3f8c744134ba19ee5863fa4ac978cd05118d52840265d9b9bc7b790f726617043320f39233aacad4ab811979d3cca087077c9395d97724ca358650fe385907975099e501465cf89a61181821d2c809bbc0fed384aca9b5c31bbc66c4c3a85b4cf5cca9acb0ea4a51e00ca17bf182510f8da6481af1d458d7f8f433f14eb2e42f1dbab7d1abe86fae5422008bba08e814c34d8083e230d0d40a6bb1f00ff64e232ed814420e23043dfca4fcc7349eecc43c64b125845d62a4b60b8c4906d78055b0ac620af490445a53a2c2888e5ff92b87150e9931eeb96a048ad96d946cc50da9ff94b5a319d48f5cb0467a254859ae1aeae184d62fdf45dd9a1d14681a98eb9a651df7e082b5441bc9c67bdd92295c06376c9596aac6b3363bcff920276d42b1a2e6a8664f4db052fefd582acdd120550c170c4aa9a2c05bc7549ead4022f3022432765cf90efbba33ad5f940b324596f3be0dcbfd7b2e291f4cdc65e87205c310b7f1ba2631b60573e46dcc56b50aecf749138f44d4c402cd5e967536a0e5dae3d0ad691852abd8e968badf75dc83fb797ffea42c864433be4cf97ac3e19c04fedaa54f0b380790e5a16366bc0d153dd9c1c98c240299861e739c774da9191ecf27330495ac0143b64a5253e92bf849d39bdda771ec2161156786d000e64280ee4ee8519cf7cdb07b162b07259ace1e0dc7bbde29738a1c7e9eb214a6a3cbadbb5757e7070fefd18d9d392be63138df5d1b0add19a5eceb904b9a1a518159e469262f18629aeeef83e1e3ae6cbf6e083206950b458e914e7a4cb83d51f467d2fec5749bfc6a1256380b5063289f20b628de15af896d50d1e50f802afbfa61c20b34e2c7e5dbc392135a065532fd83932594ca6783effe218e7356c3d36af82bd0997cce5a2980552c37325325bda8626e79aa248de2882239e79103d71d3d1dd07ac65b9cb6e75c5bd01fb1748fb29ad873874f04de53c407ba651bc1f8f2e1d77682b3d685f2a6378a752ed85d26cf66da29175d6d950577a79915380839a2f1b537b60710305371a1118fb825b990016231293260f239627b16215558b9a6224fc5eee257602f1935c341017ad0205ed0dbb559abb5fb5dc69400bc4bf1d531680fab1174099fbe28c9fa138d086ef302681dc1dcaf69c8f18640637a695d9ce7b9beefd4eb5184e461f086f00f52c483aba47b4247bc634c737afc042985c410be9854cd891a9850dd12545800a92ea0cb9d8ea9020f521c8a2db285af3679ce0b09a54442fd2ed69e24a503bff442dcd426711a7547a9cad4727618cfcc94e4c6a333899ccbdf997bac461ca420dbee36b3c6caeff699284608337a52d352da2dbd80bad3c7a86576cbd0cce5e", 0x2000, &(0x7f0000001f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001840)={0x78, 0x0, 0x0, {0x7f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0xffffffffffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0))

450.471011ms ago: executing program 5 (id=1321):
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x34, 0x2, 0x0, "d52b3d000000fa44966262631e8ac11e000000000000000000000000ebff00", 0x32314d54})
fsetxattr$security_evm(r0, &(0x7f0000000000), &(0x7f0000000080)=@ng={0x4, 0xa, "7667b74c"}, 0x6, 0x2)

301.096322ms ago: executing program 5 (id=1322):
r0 = timerfd_create(0x0, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200))
timerfd_settime(r0, 0x3, &(0x7f0000000440)={{0x0, 0x989680}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2}, 0x10)
unshare(0x68060200)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000700)={{}, {}, [], {}, [], {0x10, 0x4}}, 0x24, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540), 0x4, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_COUNTERS(r3, 0x0, 0x81, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [], 0x1, 0x0, 0x0, [{}]}, 0x88)

0s ago: executing program 1 (id=1323):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x3], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x49b1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x45c)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='smaps\x00')
readv(r3, &(0x7f00000022c0)=[{&(0x7f00000021c0)=""/200, 0xc8}], 0x1)
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x8, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000200000000000000950000000000000059ebae0eb7f4c8803605e4b2f7dd3874131b74a180007dd8767d588c23cdb963042468289a8a1fbcd229fe662dfd71d03c1c797aba20c0f9fa155100437f8c1c41daa62210704ac661c1cf7ee90f2b8216ce954d702b"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
removexattr(&(0x7f00000000c0)='./file0\x00', 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r5, 0x4c80, 0xb)
unshare(0x2c020400)
r6 = socket(0x2, 0x2, 0x1)
bind$inet6(r6, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0xb)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

kernel console output (not intermixed with test programs):

parsing attributes in process `syz.4.637'.
[  276.401132][ T8317] netlink: 24 bytes leftover after parsing attributes in process `syz.4.638'.
[  277.066955][ T8315] xt_CT: No such helper "snmp"
[  278.464412][    T9] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  278.616594][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  278.637344][    T9] usb 5-1: not running at top speed; connect to a high speed hub
[  278.657948][    T9] usb 5-1: config 1 has an invalid interface number: 6 but max is 2
[  278.683163][    T9] usb 5-1: config 1 has no interface number 1
[  278.787086][    T9] usb 5-1: config 1 interface 6 altsetting 11 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  279.533415][    T9] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  279.553123][    T9] usb 5-1: config 1 interface 6 has no altsetting 0
[  279.573081][ T8341] 9pnet_fd: Insufficient options for proto=fd
[  279.766287][    T9] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  279.775478][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.784741][    T9] usb 5-1: Product: syz
[  279.792436][    T9] usb 5-1: Manufacturer: syz
[  279.798438][    T9] usb 5-1: SerialNumber: syz
[  280.104729][    T9] usb 5-1: 2:1 : format type 0 is detected, processed as PCM
[  280.146564][    T9] usb 5-1: failed to enable PITCH for EP 0x82
[  280.168761][    T9] usb 5-1: 2:1: cannot set freq 9536114 to ep 0x82
[  280.290591][    T9] usb 5-1: USB disconnect, device number 20
[  280.347755][ T6093] udevd[6093]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  281.020093][ T8359] overlayfs: failed to get inode (-116)
[  281.029605][ T8359] overlayfs: failed to get inode (-116)
[  282.244003][    T9] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  283.265685][ T8383] 9pnet_fd: Insufficient options for proto=fd
[  283.445580][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  283.463828][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  283.681000][ T8391] 9pnet_fd: Insufficient options for proto=fd
[  284.498111][    T9] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  284.509260][    T9] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  284.518438][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.606020][    T9] usb 1-1: can't set config #1, error -71
[  284.612990][    T9] usb 1-1: USB disconnect, device number 14
[  284.680340][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.659'.
[  288.378604][ T8439] 9pnet_fd: Insufficient options for proto=fd
[  288.419076][    T8] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  289.031938][ T8445] 9pnet_fd: Insufficient options for proto=fd
[  289.068366][    T8] usb 1-1: Using ep0 maxpacket: 8
[  289.311192][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  289.321305][    T8] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB3, changing to 0x83
[  289.332947][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 255, changing to 11
[  289.344255][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 59391, setting to 1024
[  289.586544][ T8455] fuse: Bad value for 'fd'
[  289.593109][    T8] usb 1-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.10
[  289.602376][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.610604][    T8] usb 1-1: Product: syz
[  289.616687][    T8] usb 1-1: Manufacturer: syz
[  289.621415][    T8] usb 1-1: SerialNumber: syz
[  290.254011][    T8] usb 1-1: config 0 descriptor??
[  290.264969][ T8426] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  290.286146][    T8] radioshark2 1-1:0.0: Invalid radioSHARK2 device
[  290.303021][    T8] radioshark2 1-1:0.0: probe with driver radioshark2 failed with error -22
[  290.377920][    T8] usb 1-1: USB disconnect, device number 15
[  291.862379][ T8459] dvmrp0: entered allmulticast mode
[  291.979050][   T29] audit: type=1804 audit(1730301755.041:89): pid=8464 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.681" name="/newroot/135/file0/bus" dev="ramfs" ino=17973 res=1 errno=0
[  292.027222][ T8473] xt_CT: You must specify a L4 protocol and not use inversions on it
[  292.267620][ T6862] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.385177][ T8487] 9pnet_fd: Insufficient options for proto=fd
[  293.437353][ T5139] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  293.460865][ T6862] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.527128][ T5139] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  293.545656][ T5139] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  293.811035][ T8485] 9pnet_fd: Insufficient options for proto=fd
[  293.825569][ T5139] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  293.838669][ T5139] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  293.849009][ T5139] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  294.898580][ T6862] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.975503][ T8480] lo speed is unknown, defaulting to 1000
[  295.115149][ T6862] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.293976][ T5139] Bluetooth: hci3: command tx timeout
[  297.072493][   T29] audit: type=1326 audit(1730301759.381:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.099646][   T29] audit: type=1326 audit(1730301759.381:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.121189][   T29] audit: type=1326 audit(1730301759.381:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.142585][   T29] audit: type=1326 audit(1730301759.381:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.164527][   T29] audit: type=1326 audit(1730301759.381:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.186411][   T29] audit: type=1326 audit(1730301759.381:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.207807][   T29] audit: type=1326 audit(1730301759.381:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.229438][   T29] audit: type=1326 audit(1730301759.381:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.251513][   T29] audit: type=1326 audit(1730301759.381:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.273295][   T29] audit: type=1326 audit(1730301759.381:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8499 comm="syz.0.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x7fc00000
[  297.410058][ T6862] bridge_slave_1: left allmulticast mode
[  297.426291][ T6862] bridge_slave_1: left promiscuous mode
[  297.444406][ T6862] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.465211][ T5950] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  297.667484][ T6862] bridge_slave_0: left allmulticast mode
[  297.708246][ T6862] bridge_slave_0: left promiscuous mode
[  297.726132][ T6862] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.042939][ T5950] usb 4-1: device descriptor read/64, error -71
[  298.720338][ T5854] Bluetooth: hci3: command tx timeout
[  298.999879][ T5950] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  299.185908][ T5950] usb 4-1: device descriptor read/64, error -71
[  299.342684][ T5950] usb usb4-port1: attempt power cycle
[  299.358194][ T8546] 9pnet_fd: Insufficient options for proto=fd
[  299.798573][ T5950] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  299.853725][ T5950] usb 4-1: device descriptor read/8, error -71
[  300.135203][ T5950] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  300.249652][ T8562] 9pnet: p9_errstr2errno: server reported unknown error �
[  300.344412][ T5854] Bluetooth: hci1: unexpected event for opcode 0x2026
[  300.354561][ T5950] usb 4-1: device not accepting address 21, error -71
[  300.362663][ T5950] usb usb4-port1: unable to enumerate USB device
[  300.800153][ T5854] Bluetooth: hci3: command tx timeout
[  301.039746][ T6862] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  301.082094][ T6862] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  301.145574][ T6862] bond0 (unregistering): Released all slaves
[  301.247247][ T6862] tipc: Left network mode
[  301.289324][ T8566] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  301.296645][ T8566] IPv6: NLM_F_CREATE should be set when creating new route
[  301.304035][ T8566] IPv6: NLM_F_CREATE should be set when creating new route
[  301.594778][ T8480] chnl_net:caif_netlink_parms(): no params data found
[  302.164520][ T8586] 9pnet_fd: Insufficient options for proto=fd
[  302.464107][ T8591] Cannot find add_set index 0 as target
[  302.643062][ T8594] FAULT_INJECTION: forcing a failure.
[  302.643062][ T8594] name failslab, interval 1, probability 0, space 0, times 0
[  302.657717][ T8594] CPU: 0 UID: 0 PID: 8594 Comm: syz.2.712 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  302.668344][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  302.678416][ T8594] Call Trace:
[  302.681691][ T8594]  <TASK>
[  302.684635][ T8594]  dump_stack_lvl+0x241/0x360
[  302.689317][ T8594]  ? __pfx_dump_stack_lvl+0x10/0x10
[  302.694525][ T8594]  ? __wake_up_klogd+0xcc/0x110
[  302.699386][ T8594]  should_fail_ex+0x3b0/0x4e0
[  302.704089][ T8594]  ? getname_flags+0xb7/0x540
[  302.708811][ T8594]  should_failslab+0xac/0x100
[  302.713543][ T8594]  ? getname_flags+0xb7/0x540
[  302.718255][ T8594]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  302.723651][ T8594]  getname_flags+0xb7/0x540
[  302.728155][ T8594]  do_sys_openat2+0xd2/0x1d0
[  302.732743][ T8594]  ? __pfx_do_sys_openat2+0x10/0x10
[  302.737940][ T8594]  __x64_sys_openat+0x247/0x2a0
[  302.742790][ T8594]  ? __pfx___x64_sys_openat+0x10/0x10
[  302.748157][ T8594]  ? do_syscall_64+0x100/0x230
[  302.752927][ T8594]  ? do_syscall_64+0xb6/0x230
[  302.757607][ T8594]  do_syscall_64+0xf3/0x230
[  302.762112][ T8594]  ? clear_bhb_loop+0x35/0x90
[  302.766797][ T8594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.772702][ T8594] RIP: 0033:0x7f053217e719
[  302.777127][ T8594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.796735][ T8594] RSP: 002b:00007f0532f9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  302.805148][ T8594] RAX: ffffffffffffffda RBX: 00007f0532336130 RCX: 00007f053217e719
[  302.813115][ T8594] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  302.821087][ T8594] RBP: 00007f0532f9b090 R08: 0000000000000000 R09: 0000000000000000
[  302.829054][ T8594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.837020][ T8594] R13: 0000000000000000 R14: 00007f0532336130 R15: 00007ffe06034b78
[  302.845008][ T8594]  </TASK>
[  303.105645][ T5854] Bluetooth: hci3: command tx timeout
[  303.340535][ T8604] SET target dimension over the limit!
[  304.398461][ T5854] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  304.408117][ T5854] Bluetooth: hci1: Injecting HCI hardware error event
[  304.417424][ T5854] Bluetooth: hci1: hardware error 0x00
[  305.055184][ T8480] bridge0: port 1(bridge_slave_0) entered blocking state
[  305.083294][ T8480] bridge0: port 1(bridge_slave_0) entered disabled state
[  305.103121][ T8480] bridge_slave_0: entered allmulticast mode
[  305.110971][ T8480] bridge_slave_0: entered promiscuous mode
[  305.273304][ T8480] bridge0: port 2(bridge_slave_1) entered blocking state
[  305.551773][ T8480] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.589700][ T8480] bridge_slave_1: entered allmulticast mode
[  305.651201][ T8480] bridge_slave_1: entered promiscuous mode
[  306.478490][ T6862] hsr_slave_0: left promiscuous mode
[  306.492404][ T6862] hsr_slave_1: left promiscuous mode
[  306.564521][ T5854] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  306.794151][ T6862] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  306.806059][ T6862] batman_adv: batadv0: Removing interface: batadv_slave_0
[  306.865218][ T6862] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  306.986605][ T8647] overlayfs: failed to resolve './file0': -2
[  307.723977][ T6862] batman_adv: batadv0: Removing interface: batadv_slave_1
[  307.837286][ T6862] veth1_macvtap: left promiscuous mode
[  307.843307][ T6862] veth0_macvtap: left promiscuous mode
[  307.857240][ T6862] veth1_vlan: left promiscuous mode
[  307.863675][ T6862] veth0_vlan: left promiscuous mode
[  308.194095][  T969] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  308.354757][  T969] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  308.364835][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.383084][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.400225][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.409622][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.426864][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.438234][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.440102][ T6862] team0 (unregistering): Port device team_slave_1 removed
[  308.446204][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.461874][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.472956][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.480977][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.491070][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.502897][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.511515][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.520842][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.531933][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.539488][ T6862] team0 (unregistering): Port device team_slave_0 removed
[  308.540563][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.559757][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.570866][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.585182][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.602585][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.613758][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.621619][  T969] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  308.630868][  T969] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  308.641943][  T969] usb 2-1: config 0 interface 0 has no altsetting 0
[  308.650731][  T969] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  308.662188][  T969] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  308.677442][  T969] usb 2-1: Product: syz
[  308.681722][  T969] usb 2-1: Manufacturer: syz
[  308.688531][  T969] usb 2-1: SerialNumber: syz
[  308.717013][  T969] usb 2-1: config 0 descriptor??
[  308.730003][  T969] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0
[  309.151118][ T5889] usb 2-1: USB disconnect, device number 15
[  309.181335][ T5889] yurex 2-1:0.0: USB YUREX #0 now disconnected
[  309.329834][ T8480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  309.399200][ T8480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  309.482568][ T8672] FAULT_INJECTION: forcing a failure.
[  309.482568][ T8672] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  309.519178][ T8672] CPU: 1 UID: 0 PID: 8672 Comm: syz.3.728 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  309.529813][ T8672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  309.538904][ T8480] team0: Port device team_slave_0 added
[  309.539873][ T8672] Call Trace:
[  309.539941][ T8672]  <TASK>
[  309.539952][ T8672]  dump_stack_lvl+0x241/0x360
[  309.556641][ T8672]  ? __pfx_dump_stack_lvl+0x10/0x10
[  309.561879][ T8672]  ? __pfx__printk+0x10/0x10
[  309.566514][ T8672]  should_fail_ex+0x3b0/0x4e0
[  309.567215][ T8480] team0: Port device team_slave_1 added
[  309.571214][ T8672]  prepare_alloc_pages+0x1da/0x5b0
[  309.581917][ T8672]  __alloc_pages_noprof+0x16f/0x710
[  309.587157][ T8672]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  309.592914][ T8672]  ? try_to_wake_up+0x98b/0x14b0
[  309.597861][ T8672]  ? percpu_ref_get_many+0x19/0x140
[  309.603076][ T8672]  ? __pfx_try_to_wake_up+0x10/0x10
[  309.608288][ T8672]  alloc_pages_mpol_noprof+0x3e8/0x680
[  309.613769][ T8672]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  309.619768][ T8672]  ? alloc_pages_noprof+0xef/0x170
[  309.624889][ T8672]  pte_alloc_one+0x88/0x5d0
[  309.629409][ T8672]  ? __pfx_pte_alloc_one+0x10/0x10
[  309.634538][ T8672]  ? lockdep_hardirqs_on+0x99/0x150
[  309.639768][ T8672]  handle_pte_fault+0x2140/0x6800
[  309.644816][ T8672]  ? mark_lock+0x9a/0x360
[  309.649153][ T8672]  ? __pfx_handle_pte_fault+0x10/0x10
[  309.654562][ T8672]  ? mt_find+0x2a9/0x920
[  309.658825][ T8672]  ? __thp_vma_allowable_orders+0x22c/0x9c0
[  309.664731][ T8672]  ? __pfx_lock_release+0x10/0x10
[  309.669769][ T8672]  handle_mm_fault+0x1053/0x1ad0
[  309.674721][ T8672]  ? __pfx_handle_mm_fault+0x10/0x10
[  309.680028][ T8672]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  309.685323][ T8672]  exc_page_fault+0x2b9/0x8c0
[  309.690031][ T8672]  ? __might_fault+0xaa/0x120
[  309.694727][ T8672]  asm_exc_page_fault+0x26/0x30
[  309.699589][ T8672] RIP: 0010:rep_movs_alternative+0x30/0x70
[  309.705411][ T8672] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[  309.725027][ T8672] RSP: 0018:ffffc90003c67dc8 EFLAGS: 00050246
[  309.731119][ T8672] RAX: ffffffff84b4b101 RBX: 0000000020000048 RCX: 0000000000000008
[  309.739184][ T8672] RDX: 0000000000000001 RSI: 0000000020000040 RDI: ffffc90003c67e80
[  309.747162][ T8672] RBP: ffffc90003c67f00 R08: ffffc90003c67e87 R09: 1ffff9200078cfd0
[  309.755144][ T8672] R10: dffffc0000000000 R11: fffff5200078cfd1 R12: 0000000020000040
[  309.763229][ T8672] R13: 00007fffffffefff R14: ffffc90003c67e80 R15: 0000000000000008
[  309.771227][ T8672]  ? rcuref_put_slowpath+0x2d1/0x340
[  309.776528][ T8672]  _copy_from_user+0x91/0xe0
[  309.781140][ T8672]  __se_sys_rt_sigprocmask+0x160/0x390
[  309.786609][ T8672]  ? __pfx___se_sys_rt_sigprocmask+0x10/0x10
[  309.792590][ T8672]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  309.798578][ T8672]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  309.804915][ T8672]  ? do_syscall_64+0x100/0x230
[  309.809682][ T8672]  ? do_syscall_64+0xb6/0x230
[  309.814365][ T8672]  do_syscall_64+0xf3/0x230
[  309.818882][ T8672]  ? clear_bhb_loop+0x35/0x90
[  309.823571][ T8672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.829472][ T8672] RIP: 0033:0x7f219457e719
[  309.833900][ T8672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.853619][ T8672] RSP: 002b:00007f219540b038 EFLAGS: 00000246 ORIG_RAX: 000000000000000e
[  309.862052][ T8672] RAX: ffffffffffffffda RBX: 00007f2194735f80 RCX: 00007f219457e719
[  309.870030][ T8672] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  309.877995][ T8672] RBP: 00007f219540b090 R08: 0000000000000000 R09: 0000000000000000
[  309.885967][ T8672] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  309.893942][ T8672] R13: 0000000000000000 R14: 00007f2194735f80 R15: 00007ffdb41c5df8
[  309.901928][ T8672]  </TASK>
[  309.924940][    C1] hrtimer: interrupt took 19984099 ns
[  310.146089][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_0
[  310.194001][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  310.233326][ T8480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  310.338188][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_1
[  310.367415][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  310.396504][ T8480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  312.032532][ T8480] hsr_slave_0: entered promiscuous mode
[  312.045478][ T8480] hsr_slave_1: entered promiscuous mode
[  312.052492][ T8480] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  312.060920][ T8480] Cannot create hsr debugfs directory
[  312.066900][ T8681] lo speed is unknown, defaulting to 1000
[  312.274590][ T5889] usb 3-1: new low-speed USB device number 17 using dummy_hcd
[  313.351443][ T5889] usb 3-1: device descriptor read/64, error -71
[  313.364433][ T8480] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  313.426013][ T8705] FAULT_INJECTION: forcing a failure.
[  313.426013][ T8705] name failslab, interval 1, probability 0, space 0, times 0
[  313.439011][ T8705] CPU: 0 UID: 0 PID: 8705 Comm: syz.3.738 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  313.449711][ T8705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  313.459772][ T8705] Call Trace:
[  313.463050][ T8705]  <TASK>
[  313.465987][ T8705]  dump_stack_lvl+0x241/0x360
[  313.470701][ T8705]  ? __pfx_dump_stack_lvl+0x10/0x10
[  313.475906][ T8705]  ? __pfx__printk+0x10/0x10
[  313.480505][ T8705]  ? ref_tracker_alloc+0x332/0x490
[  313.485624][ T8705]  should_fail_ex+0x3b0/0x4e0
[  313.490319][ T8705]  ? skb_clone+0x20c/0x390
[  313.494768][ T8705]  should_failslab+0xac/0x100
[  313.499494][ T8705]  ? skb_clone+0x20c/0x390
[  313.503945][ T8705]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  313.509332][ T8705]  skb_clone+0x20c/0x390
[  313.513593][ T8705]  __netlink_deliver_tap+0x3cc/0x7c0
[  313.518914][ T8705]  ? netlink_deliver_tap+0x2e/0x1b0
[  313.524139][ T8705]  netlink_deliver_tap+0x19d/0x1b0
[  313.529263][ T8705]  netlink_unicast+0x7c4/0x990
[  313.534041][ T8705]  ? __pfx_netlink_unicast+0x10/0x10
[  313.539340][ T8705]  ? __virt_addr_valid+0x183/0x530
[  313.544474][ T8705]  ? __check_object_size+0x48e/0x900
[  313.549784][ T8705]  netlink_sendmsg+0x8e4/0xcb0
[  313.554568][ T8705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.559882][ T8705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.565168][ T8705]  __sock_sendmsg+0x221/0x270
[  313.569861][ T8705]  ____sys_sendmsg+0x52a/0x7e0
[  313.574651][ T8705]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.579967][ T8705]  __sys_sendmsg+0x292/0x380
[  313.584587][ T8705]  ? __pfx___sys_sendmsg+0x10/0x10
[  313.589734][ T8705]  ? __pfx_vfs_write+0x10/0x10
[  313.594535][ T8705]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  313.600914][ T8705]  ? do_syscall_64+0x100/0x230
[  313.605684][ T8705]  ? do_syscall_64+0xb6/0x230
[  313.610371][ T8705]  do_syscall_64+0xf3/0x230
[  313.614887][ T8705]  ? clear_bhb_loop+0x35/0x90
[  313.619583][ T8705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.625481][ T8705] RIP: 0033:0x7f219457e719
[  313.629902][ T8705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.649519][ T8705] RSP: 002b:00007f219540b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  313.657948][ T8705] RAX: ffffffffffffffda RBX: 00007f2194735f80 RCX: 00007f219457e719
[  313.665918][ T8705] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[  313.673896][ T8705] RBP: 00007f219540b090 R08: 0000000000000000 R09: 0000000000000000
[  313.681874][ T8705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.689843][ T8705] R13: 0000000000000000 R14: 00007f2194735f80 R15: 00007ffdb41c5df8
[  313.697827][ T8705]  </TASK>
[  313.709284][ T8480] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  314.796984][ T8480] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  314.824667][ T5889] usb 3-1: new low-speed USB device number 18 using dummy_hcd
[  314.995023][ T8480] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  316.134422][ T5889] usb usb3-port1: attempt power cycle
[  316.154465][ T8480] 8021q: adding VLAN 0 to HW filter on device bond0
[  316.194022][ T5890] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  316.207455][ T8480] 8021q: adding VLAN 0 to HW filter on device team0
[  316.234048][ T6127] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.241830][ T6127] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.571414][  T995] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.579151][  T995] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.686573][ T5890] usb 4-1: Using ep0 maxpacket: 8
[  317.154911][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.167819][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  317.234196][ T5890] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  317.253666][ T8480] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  317.298869][ T5890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.309380][ T8480] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  317.309808][ T5889] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  317.338004][ T5890] usb 4-1: Product: syz
[  317.347378][ T5890] usb 4-1: Manufacturer: syz
[  317.352498][ T5890] usb 4-1: SerialNumber: syz
[  317.361116][ T5890] usb 4-1: config 0 descriptor??
[  317.387991][ T5889] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.428584][ T5889] usb 3-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  317.454521][ T5889] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.488291][ T5889] usb 3-1: config 0 descriptor??
[  317.583553][ T5890] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  318.330893][ T8480] 8021q: adding VLAN 0 to HW filter on device batadv0
[  318.506663][ T5889] lenovo 0003:17EF:6047.0003: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.2-1/input0
[  318.587882][ T8756] netlink: 190 bytes leftover after parsing attributes in process `syz.1.750'.
[  318.772292][ T8756] 9pnet_fd: p9_fd_create_unix (8756): problem connecting socket: ./file0: -111
[  319.165679][ T8480] veth0_vlan: entered promiscuous mode
[  319.195681][ T8480] veth1_vlan: entered promiscuous mode
[  319.349588][ T8480] veth0_macvtap: entered promiscuous mode
[  319.377950][ T8480] veth1_macvtap: entered promiscuous mode
[  319.474554][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  319.486960][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.515774][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  319.579542][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.624975][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  319.670191][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.720461][    T8] usb 3-1: USB disconnect, device number 19
[  319.747462][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  319.856719][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.931804][ T8480] batman_adv: batadv0: Interface activated: batadv_slave_0
[  319.992717][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.027158][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.070791][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.094655][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.121009][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.146776][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.182418][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.219533][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.235057][ T8480] batman_adv: batadv0: Interface activated: batadv_slave_1
[  320.244962][ T8774] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  320.282014][ T8480] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.301204][ T8480] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.325202][ T8480] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.335139][ T8480] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  320.351352][ T8776] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  320.485381][ T5890] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  320.544142][ T6721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  320.565705][ T6721] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  320.653039][ T8778] netlink: 104 bytes leftover after parsing attributes in process `syz.2.753'.
[  320.676541][  T995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  320.686256][  T995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  320.696619][  T969] usb 4-1: USB disconnect, device number 22
[  321.783520][ T8792] netlink: 132 bytes leftover after parsing attributes in process `syz.3.758'.
[  321.944983][ T5956] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  322.165057][ T5956] usb 6-1: Using ep0 maxpacket: 16
[  322.300931][ T5956] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  322.351382][ T5956] usb 6-1: config 0 has no interface number 0
[  322.461280][ T5956] usb 6-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  322.518301][ T5956] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.572774][ T5956] usb 6-1: Product: syz
[  322.602562][ T5956] usb 6-1: Manufacturer: syz
[  322.614060][ T5956] usb 6-1: SerialNumber: syz
[  322.630446][ T5956] usb 6-1: config 0 descriptor??
[  322.649035][ T5956] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  322.801048][ T8800] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  322.844275][ T8801] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  323.619271][    T8] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  323.667788][ T8818] netlink: 16 bytes leftover after parsing attributes in process `syz.0.763'.
[  323.680886][ T5956] gspca_spca1528: reg_w err -71
[  323.704165][ T5956] spca1528 6-1:0.1: probe with driver spca1528 failed with error -71
[  323.724165][ T5956] usb 6-1: USB disconnect, device number 2
[  323.794572][    T8] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  323.815229][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.823243][    T8] usb 2-1: Product: syz
[  323.861692][    T8] usb 2-1: Manufacturer: syz
[  323.864868][ T8822] nfs4: Unknown parameter '�Q����uS!}
���c�'
[  323.878495][    T8] usb 2-1: SerialNumber: syz
[  323.909478][    T8] usb 2-1: config 0 descriptor??
[  324.142241][    T8] hso 2-1:0.0: Can't find BULK IN endpoint
[  324.161249][    T8] usb-storage 2-1:0.0: USB Mass Storage device detected
[  324.337833][    T8] usb 2-1: USB disconnect, device number 16
[  324.431397][   T29] kauditd_printk_skb: 348 callbacks suppressed
[  324.431415][   T29] audit: type=1804 audit(1730301787.481:448): pid=8841 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.5.769" name="/newroot/1/file0/bus" dev="ramfs" ino=19916 res=1 errno=0
[  325.222895][ T8846] lo speed is unknown, defaulting to 1000
[  325.265882][   T29] audit: type=1800 audit(1730301787.551:449): pid=8841 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.5.769" name="bus" dev="ramfs" ino=19916 res=0 errno=0
[  326.345212][ T8865] loop2: detected capacity change from 0 to 7
[  326.382693][ T8865] Dev loop2: unable to read RDB block 7
[  326.442930][ T8865]  loop2: unable to read partition table
[  326.449939][ T8865] loop2: partition table beyond EOD, truncated
[  326.458399][ T8865] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  326.553798][ T8852] mac80211_hwsim hwsim14 wlan1: entered allmulticast mode
[  326.600685][ T5201] Dev loop2: unable to read RDB block 7
[  326.634232][ T5201]  loop2: unable to read partition table
[  326.662999][ T5201] loop2: partition table beyond EOD, truncated
[  326.683818][ T8875] netlink: 4 bytes leftover after parsing attributes in process `syz.2.776'.
[  331.466237][ T8929] syz.1.792[8929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.466376][ T8929] syz.1.792[8929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.510569][ T8929] syz.1.792[8929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  334.658969][ T8964] hub 2-0:1.0: USB hub found
[  334.678636][ T8964] hub 2-0:1.0: 1 port detected
[  335.109453][ T8967] openvswitch: netlink: Actions may not be safe on all matching packets
[  335.478142][   T29] audit: type=1326 audit(1730301798.541:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8977 comm="syz.0.808" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x0
[  336.638754][ T5963] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  337.334378][ T5963] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  337.342818][ T5963] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  337.372660][ T8996] misc userio: No port type given on /dev/userio
[  337.549032][ T5963] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  337.649363][ T5963] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  337.674793][ T5963] usb 4-1: Manufacturer: syz
[  337.848708][ T5963] usb 4-1: config 0 descriptor??
[  338.164559][ T5963] rc_core: IR keymap rc-hauppauge not found
[  338.170554][ T5963] Registered IR keymap rc-empty
[  338.317718][ T5963] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  338.378836][ T5963] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input12
[  338.459706][ T8991] pimreg3: entered allmulticast mode
[  338.734589][ T5963] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  339.167219][ T5963] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  339.945542][ T5963] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  339.955428][ T5963] usb 6-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  339.972335][ T5963] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.984219][ T5963] usb 6-1: config 0 descriptor??
[  340.115022][    T8] usb 4-1: USB disconnect, device number 23
[  340.299646][ T5963] usbhid 6-1:0.0: can't add hid device: -71
[  340.305981][ T5963] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  340.343070][ T5963] usb 6-1: USB disconnect, device number 3
[  340.694295][ T9036] openvswitch: netlink: Actions may not be safe on all matching packets
[  342.384267][   T29] audit: type=1326 audit(1730301805.441:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9048 comm="syz.5.824" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9edaf7e719 code=0x0
[  342.953018][ T9063] netlink: 16 bytes leftover after parsing attributes in process `syz.1.827'.
[  342.974704][ T9068] netlink: 'syz.0.825': attribute type 3 has an invalid length.
[  343.003673][ T9068] netlink: 130408 bytes leftover after parsing attributes in process `syz.0.825'.
[  343.097904][ T9068] ebt_limit: overflow, try lower: 570423552/2483027968
[  344.026889][ T9079] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  350.138803][ T9124] tmpfs: Unknown parameter 'hug'
[  350.153101][ T9124] netlink: 'syz.2.843': attribute type 30 has an invalid length.
[  350.936141][ T9129] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  351.394864][    T8] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[  352.529294][    T8] usb 4-1: device descriptor read/64, error -71
[  352.779959][    T8] usb 4-1: new full-speed USB device number 25 using dummy_hcd
[  353.814240][    T8] usb 4-1: device descriptor read/64, error -71
[  353.932555][    T8] usb usb4-port1: attempt power cycle
[  354.887668][ T9163] netlink: 'syz.2.854': attribute type 10 has an invalid length.
[  355.002359][ T9163] team0: Port device wlan1 added
[  356.091378][ T9171] Sensor A: =================  START STATUS  =================
[  356.100117][ T9171] Sensor A: Test Pattern: 75% Colorbar
[  356.134587][ T9171] Sensor A: Show Information: All
[  356.152584][ T9171] Sensor A: Vertical Flip: false
[  356.183067][ T9171] Sensor A: Horizontal Flip: false
[  356.201156][ T9171] Sensor A: Brightness: 128
[  356.206461][ T9171] Sensor A: Contrast: 128
[  356.217504][ T9171] Sensor A: Hue: 0
[  356.223769][ T9171] Sensor A: Saturation: 128
[  356.230511][ T9171] Sensor A: ==================  END STATUS  ==================
[  358.196675][ T9201] netlink: 12 bytes leftover after parsing attributes in process `syz.1.865'.
[  358.228241][ T9199] netlink: 16 bytes leftover after parsing attributes in process `syz.2.863'.
[  359.636099][ T9222] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  360.331714][ T9244] --map-set only usable from mangle table
[  360.408954][ T9246] netlink: 16 bytes leftover after parsing attributes in process `syz.2.877'.
[  360.425160][ T9246] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  360.813943][    T8] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  361.072976][ T9259] ax25_connect(): syz.1.880 uses autobind, please contact jreuter@yaina.de
[  361.083222][ T5890] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  361.268353][ T5890] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  361.293103][ T5890] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.303285][ T5890] usb 3-1: Product: syz
[  361.318559][ T5890] usb 3-1: Manufacturer: syz
[  361.329338][ T5890] usb 3-1: SerialNumber: syz
[  361.338850][ T5890] usb 3-1: config 0 descriptor??
[  361.398682][    T8] usb 1-1: config 0 has an invalid interface number: 64 but max is 0
[  361.407587][    T8] usb 1-1: config 0 has no interface number 0
[  361.415409][    T8] usb 1-1: config 0 interface 64 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  361.450616][    T8] usb 1-1: config 0 interface 64 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.461888][    T8] usb 1-1: config 0 interface 64 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  361.505705][    T8] usb 1-1: New USB device found, idVendor=28bd, idProduct=1903, bcdDevice= 0.00
[  361.597523][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.984070][    T8] usb 1-1: config 0 descriptor??
[  362.256405][ T5890] usb 3-1: Firmware: major: 0, minor: 102, hardware type: UNKNOWN (102)
[  362.407423][    T8] uclogic 0003:28BD:1903.0004: interface is invalid, ignoring
[  362.612263][ T9240] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  362.648309][ T9240] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  362.791670][ T9287] netlink: 12 bytes leftover after parsing attributes in process `syz.3.890'.
[  363.145344][ T5890] usb 3-1: failed to fetch extended address, random address set
[  363.153677][ T5890] usb 3-1: atusb_probe: initialization failed, error = -524
[  363.162613][ T5890] atusb 3-1:0.0: probe with driver atusb failed with error -524
[  363.170362][    T8] usb 1-1: USB disconnect, device number 16
[  363.190508][ T5890] usb 3-1: USB disconnect, device number 20
[  363.714750][ T5890] usb 1-1: new low-speed USB device number 17 using dummy_hcd
[  363.904320][ T5890] usb 1-1: device descriptor read/64, error -71
[  364.238263][ T9303] ax25_connect(): syz.3.894 uses autobind, please contact jreuter@yaina.de
[  364.372050][ T9309] netlink: 32 bytes leftover after parsing attributes in process `syz.5.896'.
[  364.384237][ T5890] usb 1-1: new low-speed USB device number 18 using dummy_hcd
[  364.564052][    T8] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  364.740996][    T8] usb 3-1: device descriptor read/64, error -71
[  364.793130][ T5890] usb 1-1: device descriptor read/64, error -71
[  365.093319][ T5890] usb usb1-port1: attempt power cycle
[  365.654231][    T8] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  365.684762][ T5890] usb 1-1: new low-speed USB device number 19 using dummy_hcd
[  365.718303][ T5890] usb 1-1: device descriptor read/8, error -71
[  365.784049][    T8] usb 3-1: device descriptor read/64, error -71
[  365.885483][ T9317] binder: 9316:9317 ioctl ae80 0 returned -22
[  365.895532][    T8] usb usb3-port1: attempt power cycle
[  366.006413][ T5890] usb 1-1: new low-speed USB device number 20 using dummy_hcd
[  366.055073][ T5890] usb 1-1: device descriptor read/8, error -71
[  366.175354][ T5890] usb usb1-port1: unable to enumerate USB device
[  366.234040][    T8] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  366.276184][    T8] usb 3-1: device descriptor read/8, error -71
[  366.514040][    T8] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  366.569419][    T8] usb 3-1: device descriptor read/8, error -71
[  366.684896][ T9338] pim6reg1: entered promiscuous mode
[  366.700278][ T9338] pim6reg1: entered allmulticast mode
[  366.704804][    T8] usb usb3-port1: unable to enumerate USB device
[  367.044370][ T5890] kernel write not supported for file /snd/seq (pid: 5890 comm: kworker/1:5)
[  367.536743][ T9356] ax25_connect(): syz.2.908 uses autobind, please contact jreuter@yaina.de
[  368.400426][ T5917] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[  368.559435][ T5917] usb 6-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 64, setting to 8
[  368.579742][ T5917] usb 6-1: config 1 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 16, setting to 8
[  368.648418][ T5917] usb 6-1: config 1 interface 0 has no altsetting 0
[  368.701414][ T5917] usb 6-1: New USB device found, idVendor=056a, idProduct=009f, bcdDevice= 0.40
[  368.758201][ T5917] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.839780][ T5917] usb 6-1: Product: ᠌
[  368.878860][ T5917] usb 6-1: Manufacturer: ఌ
[  368.891771][ T5917] usb 6-1: SerialNumber: 伃呺郔␹᧤﨑ᄌ둔箚댏㳳낭ﬕ휕ｎ䶳뱃첡ⓘჿ氥墦糕ሺ㷛꓀亟ﳜ搩ﮨ฿泲ﺰ鍕ֱ៳騔票쭙糃葚㫢딹꜃攬
[  368.910692][ T9377] input: syz0 as /devices/virtual/input/input13
[  368.965796][ T9357] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  368.973121][ T9357] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  369.582175][ T5950] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  369.704082][ T5956] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  369.756499][ T5950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  369.776758][ T5950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  369.793329][ T5950] usb 4-1: New USB device found, idVendor=046d, idProduct=c513, bcdDevice= 0.00
[  369.807549][ T5950] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.820589][ T5950] usb 4-1: config 0 descriptor??
[  369.874123][ T5956] usb 1-1: Using ep0 maxpacket: 16
[  370.035173][ T5956] usb 1-1: unable to get BOS descriptor or descriptor too short
[  370.066285][ T5956] usb 1-1: unable to read config index 0 descriptor/start: -71
[  370.085304][ T5956] usb 1-1: can't read configurations, error -71
[  370.086480][ T5917] usbhid 6-1:1.0: can't add hid device: -71
[  370.125713][ T5917] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  370.165171][ T5917] usb 6-1: USB disconnect, device number 4
[  370.267474][ T5950] logitech-djreceiver 0003:046D:C513.0005: unknown main item tag 0x0
[  370.300183][ T5950] logitech-djreceiver 0003:046D:C513.0005: hidraw0: USB HID v0.00 Device [HID 046d:c513] on usb-dummy_hcd.3-1/input0
[  370.715071][ T5917] usb 4-1: USB disconnect, device number 27
[  370.724385][ T9403] ax25_connect(): syz.0.923 uses autobind, please contact jreuter@yaina.de
[  371.029344][ T9400] serio: Serial port ptm0
[  371.986421][ T9419] netlink: 24 bytes leftover after parsing attributes in process `syz.0.927'.
[  372.007136][ T9419] netlink: 28 bytes leftover after parsing attributes in process `syz.0.927'.
[  372.147109][ T9417] block nbd1: shutting down sockets
[  373.372042][ T9442] FAULT_INJECTION: forcing a failure.
[  373.372042][ T9442] name fail_futex, interval 1, probability 0, space 0, times 1
[  373.605134][ T9442] CPU: 0 UID: 0 PID: 9442 Comm: syz.0.933 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  373.615770][ T9442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  373.625848][ T9442] Call Trace:
[  373.629146][ T9442]  <TASK>
[  373.632088][ T9442]  dump_stack_lvl+0x241/0x360
[  373.636797][ T9442]  ? __pfx_dump_stack_lvl+0x10/0x10
[  373.642020][ T9442]  ? __pfx__printk+0x10/0x10
[  373.646638][ T9442]  ? lockdep_hardirqs_on+0x99/0x150
[  373.651871][ T9442]  should_fail_ex+0x3b0/0x4e0
[  373.656581][ T9442]  get_futex_key+0x1cc/0x1080
[  373.661287][ T9442]  ? __pfx_get_futex_key+0x10/0x10
[  373.666419][ T9442]  ? __lock_acquire+0x1384/0x2050
[  373.671481][ T9442]  futex_wait_multiple_setup+0x16c/0x6d0
[  373.677159][ T9442]  ? __pfx_futex_wait_multiple_setup+0x10/0x10
[  373.683352][ T9442]  futex_wait_multiple+0x128/0x480
[  373.688501][ T9442]  ? __pfx_futex_wait_multiple+0x10/0x10
[  373.694173][ T9442]  ? __might_fault+0xaa/0x120
[  373.698888][ T9442]  ? __might_fault+0xc6/0x120
[  373.703603][ T9442]  ? __se_sys_futex_waitv+0x3cb/0x5e0
[  373.709020][ T9442]  __se_sys_futex_waitv+0x551/0x5e0
[  373.714267][ T9442]  ? __pfx___se_sys_futex_waitv+0x10/0x10
[  373.720027][ T9442]  ? irqentry_exit+0x63/0x90
[  373.724685][ T9442]  ? __x64_sys_futex_waitv+0x20/0xc0
[  373.730026][ T9442]  do_syscall_64+0xf3/0x230
[  373.734573][ T9442]  ? clear_bhb_loop+0x35/0x90
[  373.739303][ T9442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.745215][ T9442] RIP: 0033:0x7f8efc97e719
[  373.749662][ T9442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.769288][ T9442] RSP: 002b:00007f8efd6c6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1
[  373.777741][ T9442] RAX: ffffffffffffffda RBX: 00007f8efcb35f80 RCX: 00007f8efc97e719
[  373.785751][ T9442] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000020000040
[  373.793113][ T9436] Process accounting resumed
[  373.793725][ T9442] RBP: 00007f8efd6c6090 R08: 0000000000000000 R09: 0000000000000000
[  373.793748][ T9442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.793765][ T9442] R13: 0000000000000001 R14: 00007f8efcb35f80 R15: 00007ffd7928d168
[  373.793800][ T9442]  </TASK>
[  373.793993][    C0] vkms_vblank_simulate: vblank timer overrun
[  373.831438][    C0] vkms_vblank_simulate: vblank timer overrun
[  373.839502][    T8] IPVS: starting estimator thread 0...
[  373.975761][ T9445] IPVS: using max 18 ests per chain, 43200 per kthread
[  374.342653][ T9447] netlink: 'syz.5.937': attribute type 2 has an invalid length.
[  374.434361][ T9447] netlink: 28 bytes leftover after parsing attributes in process `syz.5.937'.
[  374.596180][ T9460] overlayfs: failed to resolve './file1': -2
[  374.646415][ T9462] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  375.224358][ T5139] Bluetooth: hci3: command 0x0405 tx timeout
[  377.676504][ T9489] netlink: 16 bytes leftover after parsing attributes in process `syz.3.949'.
[  378.556664][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  378.563738][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  378.583580][ T9504] tmpfs: Bad value for 'mpol'
[  378.712965][ T9512] netlink: 40 bytes leftover after parsing attributes in process `syz.5.953'.
[  378.870141][ T9510] overlayfs: failed to resolve './file1': -2
[  379.500484][ T9515] netlink: 'syz.1.956': attribute type 6 has an invalid length.
[  379.509930][ T9515] netlink: 8 bytes leftover after parsing attributes in process `syz.1.956'.
[  381.262402][ T5889] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  381.353376][ T9530] netlink: 'syz.2.961': attribute type 11 has an invalid length.
[  381.367654][ T9536] netlink: 24 bytes leftover after parsing attributes in process `syz.1.964'.
[  381.377241][ T9536] netlink: 24 bytes leftover after parsing attributes in process `syz.1.964'.
[  381.387481][ T9536] netlink: 292 bytes leftover after parsing attributes in process `syz.1.964'.
[  381.464169][ T5889] usb 6-1: Using ep0 maxpacket: 8
[  381.470012][ T5950] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  381.481351][ T5889] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  381.490655][ T5889] usb 6-1: config 0 has no interface number 0
[  381.514320][ T5889] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  381.653128][ T5889] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  381.664043][ T5889] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.728030][ T9541] ICMPv6: NA: aa:aa:aa:aa:aa:00 advertised our address fe80::aa on syz_tun!
[  382.642453][ T5889] usb 6-1: config 0 descriptor??
[  382.664836][ T5889] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  382.809631][ T5950] usb 4-1: Using ep0 maxpacket: 16
[  383.049108][ T5889] usb 6-1: USB disconnect, device number 5
[  383.084487][ T5950] usb 4-1: config 0 has an invalid interface number: 4 but max is 0
[  383.093216][ T5950] usb 4-1: config 0 has no interface number 0
[  383.103897][ T5950] usb 4-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  383.116022][ T5950] usb 4-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  383.127290][ T5950] usb 4-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00
[  383.137180][ T5950] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.321393][ T5950] usb 4-1: config 0 descriptor??
[  383.546219][ T9553] overlayfs: failed to resolve './file1': -2
[  384.238357][ T9557] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.310249][ T9557] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.876961][ T5950] usbhid 4-1:0.4: can't add hid device: -71
[  384.884818][ T5950] usbhid 4-1:0.4: probe with driver usbhid failed with error -71
[  384.914321][ T5950] usb 4-1: USB disconnect, device number 28
[  385.178050][ T9574] netlink: 104 bytes leftover after parsing attributes in process `syz.0.972'.
[  385.864420][ T9569] netlink: 40 bytes leftover after parsing attributes in process `syz.1.970'.
[  386.305167][ T9586] overlayfs: failed to resolve './file1': -2
[  388.245647][ T9607] netlink: 'syz.1.980': attribute type 9 has an invalid length.
[  388.288345][ T9607] netlink: 134660 bytes leftover after parsing attributes in process `syz.1.980'.
[  388.453238][ T9618] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  388.460052][ T9618] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  388.474288][ T5956] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  388.482689][ T9618] vhci_hcd vhci_hcd.0: Device attached
[  388.596029][ T5917] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  388.644552][ T5956] usb 3-1: Using ep0 maxpacket: 8
[  388.722648][    T8] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[  388.730429][  T969] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  388.767430][ T5956] usb 3-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  388.790325][ T5956] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.005870][ T5956] usb 3-1: Product: syz
[  389.010834][ T5956] usb 3-1: Manufacturer: syz
[  389.016209][ T5956] usb 3-1: SerialNumber: syz
[  389.049628][ T5956] usb 3-1: config 0 descriptor??
[  389.132599][ T5956] gspca_main: sq905-2.14.0 probing 2770:9120
[  389.654545][ T5956] gspca_sq905: sq905_command: usb_control_msg failed (-110)
[  389.662773][ T5956] sq905 3-1:0.0: probe with driver sq905 failed with error -110
[  389.761658][  T969] usb 1-1: New USB device found, idVendor=0af0, idProduct=7201, bcdDevice=ad.9d
[  389.771117][  T969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.793221][  T969] usb 1-1: config 0 descriptor??
[  389.839170][ T5917] usb 6-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31
[  389.865430][ T5917] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.890264][ T5956] usb 3-1: USB disconnect, device number 25
[  390.117824][ T9620] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 1
[  390.125815][ T5917] usb 6-1: config 0 descriptor??
[  390.140874][ T8614] vhci_hcd: stop threads
[  390.145589][ T8614] vhci_hcd: release socket
[  390.153400][ T8614] vhci_hcd: disconnect device
[  390.237787][ T9637] overlayfs: failed to resolve './file1': -2
[  390.973172][ T5917] usb 6-1: selecting invalid altsetting 3
[  391.000142][ T5917] comedi comedi0: could not set alternate setting 3 in high speed
[  391.147779][ T5917] usbduxsigma 6-1:0.0: driver 'usbduxsigma' failed to auto-configure device.
[  391.214869][ T5917] usbduxsigma 6-1:0.0: probe with driver usbduxsigma failed with error -22
[  392.149893][ T5917] usb 6-1: USB disconnect, device number 6
[  392.159150][  T969] usb 1-1: USB disconnect, device number 23
[  393.355587][ T9669] netlink: 4 bytes leftover after parsing attributes in process `syz.2.994'.
[  393.467875][ T9669] batman_adv: batadv0: Interface deactivated: vlan1
[  393.727723][ T9669] batman_adv: batadv0: Removing interface: vlan1
[  393.972513][    T8] vhci_hcd: vhci_device speed not set
[  394.587637][ T9694] overlayfs: failed to resolve './file1': -2
[  397.353208][ T9711] libceph: resolve '0' (ret=-3): failed
[  397.751155][ T9724] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  398.585524][ T9727] netlink: 'syz.0.1012': attribute type 32 has an invalid length.
[  398.593397][ T9727] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1012'.
[  398.625158][ T9727] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  398.929950][ T9738] 9pnet_fd: Insufficient options for proto=fd
[  400.207766][ T9747] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1017'.
[  400.214154][ T9753] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1018'.
[  400.424666][   T29] audit: type=1326 audit(1730301863.491:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9756 comm="syz.3.1021" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f219457e719 code=0x0
[  400.531871][ T9760] kAFS: No cell specified
[  400.755580][    T8] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  401.018986][ T9765] libceph: resolve '0' (ret=-3): failed
[  401.793941][    T8] usb 3-1: device descriptor read/64, error -71
[  402.664180][ T9767] IPVS: set_ctl: invalid protocol: 201 172.20.20.170:20004
[  403.585880][    T8] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  403.760297][ T9783] overlayfs: failed to resolve './file0': -2
[  403.770541][ T9781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1026'.
[  404.186026][ T9798] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1033'.
[  404.397372][ T9804] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1031'.
[  404.408132][ T9804] bridge_slave_1: left allmulticast mode
[  404.414749][ T9804] bridge_slave_1: left promiscuous mode
[  404.423557][ T9804] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.716993][ T9804] bridge_slave_0: left allmulticast mode
[  404.723278][ T9804] bridge_slave_0: left promiscuous mode
[  404.731063][ T9804] bridge0: port 1(bridge_slave_0) entered disabled state
[  404.864332][ T5889] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  404.919138][   T29] audit: type=1326 audit(1730301867.971:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  404.990145][   T29] audit: type=1326 audit(1730301867.971:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.044286][   T29] audit: type=1326 audit(1730301867.971:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.068437][ T5889] usb 4-1: Using ep0 maxpacket: 8
[  405.075127][   T29] audit: type=1326 audit(1730301867.971:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.144027][   T29] audit: type=1326 audit(1730301867.971:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.187828][   T29] audit: type=1326 audit(1730301867.971:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.313956][   T29] audit: type=1326 audit(1730301867.971:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.419940][   T29] audit: type=1326 audit(1730301867.971:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.446038][   T29] audit: type=1326 audit(1730301867.971:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.469683][   T29] audit: type=1326 audit(1730301867.971:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.469753][   T29] audit: type=1326 audit(1730301867.971:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.469920][   T29] audit: type=1326 audit(1730301867.971:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.469985][   T29] audit: type=1326 audit(1730301867.971:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.470047][   T29] audit: type=1326 audit(1730301867.971:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.470107][   T29] audit: type=1326 audit(1730301867.971:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.470146][   T29] audit: type=1326 audit(1730301867.971:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.470203][   T29] audit: type=1326 audit(1730301867.971:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.470256][   T29] audit: type=1326 audit(1730301867.971:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9801 comm="syz.0.1034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8efc97e719 code=0x50000
[  405.472761][ T5889] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  405.472820][ T5889] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.472868][ T5889] usb 4-1: Product: syz
[  405.472886][ T5889] usb 4-1: Manufacturer: syz
[  405.472927][ T5889] usb 4-1: SerialNumber: syz
[  405.484293][ T5917] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  405.484916][ T5889] usb 4-1: config 0 descriptor??
[  405.490228][ T5889] gspca_main: se401-2.14.0 probing 047d:5003
[  405.628849][ T9819] libceph: resolve '0' (ret=-3): failed
[  406.027635][ T5889] gspca_se401: ExtraFeatures: 243
[  406.027655][ T5889] gspca_se401: Too many frame sizes
[  406.098615][ T5917] usb 2-1: Using ep0 maxpacket: 16
[  406.102213][ T5917] usb 2-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  406.102242][ T5917] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  406.102264][ T5917] usb 2-1: Product: syz
[  406.102281][ T5917] usb 2-1: Manufacturer: syz
[  406.102297][ T5917] usb 2-1: SerialNumber: syz
[  406.163217][ T5917] usb 2-1: config 0 descriptor??
[  406.166922][ T5917] visor 2-1:0.0: Sony Clie 3.5 converter detected
[  406.231657][ T5889] usb 4-1: USB disconnect, device number 29
[  406.368478][ T9815] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  406.424357][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.564236][ T5950] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  406.624388][ T9815] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  406.823291][ T5950] usb 6-1: Using ep0 maxpacket: 32
[  406.831181][ T5950] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  406.843640][ T5950] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  406.856286][ T5950] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  406.908132][ T5950] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  406.918331][ T5950] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.938917][ T5950] usb 6-1: config 0 descriptor??
[  406.994181][ T5917] usb 2-1: clie_3_5_startup: get interface number bad return length: 0
[  407.002560][ T5917] visor 2-1:0.0: probe with driver visor failed with error -5
[  407.341717][ T5956] usb 2-1: USB disconnect, device number 17
[  407.449028][ T5950] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0458:5011.0006/input/input14
[  407.592033][ T5950] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0458:5011.0006/input/input15
[  407.649302][ T9839] netlink: 'syz.3.1044': attribute type 29 has an invalid length.
[  407.657632][ T9839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1044'.
[  407.709549][ T5950] kye 0003:0458:5011.0006: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.5-1/input0
[  407.936844][ T9844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1046'.
[  408.039495][ T5917] usb 6-1: USB disconnect, device number 7
[  408.053341][ T9848] binder: 9847:9848 ioctl c018620c 0 returned -14
[  408.207464][ T9850] libceph: resolve '0' (ret=-3): failed
[  408.264248][ T5950] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  408.446052][ T5950] usb 4-1: Using ep0 maxpacket: 8
[  408.572995][ T5950] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  408.592866][ T5950] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  408.641232][ T5950] usb 4-1: Product: syz
[  408.661278][ T5950] usb 4-1: Manufacturer: syz
[  408.694712][ T5950] usb 4-1: SerialNumber: syz
[  408.814303][ T5950] usb 4-1: config 0 descriptor??
[  408.882205][ T5950] gspca_main: sq905-2.14.0 probing 2770:9120
[  409.986163][ T5950] gspca_sq905: sq905_command: usb_control_msg failed (-110)
[  409.995661][ T5950] sq905 4-1:0.0: probe with driver sq905 failed with error -110
[  410.054481][ T5917] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  410.296026][ T5917] usb 3-1: Using ep0 maxpacket: 32
[  410.317669][ T5917] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  410.344479][ T5917] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  410.369313][ T5917] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  410.436408][ T5917] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.467573][ T5917] usb 3-1: config 0 descriptor??
[  410.495409][ T5917] hub 3-1:0.0: USB hub found
[  410.647825][ T9879] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1058'.
[  410.699745][ T5917] hub 3-1:0.0: 1 port detected
[  410.830199][ T9883] libceph: resolve '0' (ret=-3): failed
[  410.964273][ T9886] overlayfs: failed to resolve './file0': -2
[  411.188794][ T9881] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1060'.
[  411.200974][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1060'.
[  411.275439][ T5890] usb 4-1: USB disconnect, device number 30
[  411.523695][ T5917] hub 3-1:0.0: activate --> -90
[  411.550511][ T9892] fuse: Bad value for 'fd'
[  411.767296][ T9896] FAULT_INJECTION: forcing a failure.
[  411.767296][ T9896] name failslab, interval 1, probability 0, space 0, times 0
[  411.810352][ T9896] CPU: 1 UID: 0 PID: 9896 Comm: syz.3.1066 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  411.810400][ T9896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  411.810414][ T9896] Call Trace:
[  411.810423][ T9896]  <TASK>
[  411.810432][ T9896]  dump_stack_lvl+0x241/0x360
[  411.810465][ T9896]  ? __pfx_dump_stack_lvl+0x10/0x10
[  411.810490][ T9896]  ? __pfx__printk+0x10/0x10
[  411.810516][ T9896]  ? fs_reclaim_acquire+0x93/0x130
[  411.810544][ T9896]  ? __pfx___might_resched+0x10/0x10
[  411.810576][ T9896]  should_fail_ex+0x3b0/0x4e0
[  411.810601][ T9896]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  411.810632][ T9896]  should_failslab+0xac/0x100
[  411.810664][ T9896]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  411.810694][ T9896]  __kmalloc_noprof+0xd8/0x400
[  411.810721][ T9896]  tomoyo_realpath_from_path+0xcf/0x5e0
[  411.810762][ T9896]  tomoyo_path_number_perm+0x23a/0x880
[  411.810794][ T9896]  ? tomoyo_path_number_perm+0x208/0x880
[  411.810820][ T9896]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  411.810889][ T9896]  ? __fget_files+0x29/0x470
[  411.810920][ T9896]  ? __fget_files+0x3f3/0x470
[  411.810957][ T9896]  security_file_ioctl+0xc6/0x2a0
[  411.810987][ T9896]  __se_sys_ioctl+0x47/0x170
[  411.811015][ T9896]  do_syscall_64+0xf3/0x230
[  411.811040][ T9896]  ? clear_bhb_loop+0x35/0x90
[  411.811065][ T9896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.811087][ T9896] RIP: 0033:0x7f219457e719
[  411.811105][ T9896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.811124][ T9896] RSP: 002b:00007f219540b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  411.811148][ T9896] RAX: ffffffffffffffda RBX: 00007f2194735f80 RCX: 00007f219457e719
[  411.811164][ T9896] RDX: 0000000000000000 RSI: 000000005000940f RDI: 0000000000000004
[  411.811178][ T9896] RBP: 00007f219540b090 R08: 0000000000000000 R09: 0000000000000000
[  411.811193][ T9896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  411.811207][ T9896] R13: 0000000000000000 R14: 00007f2194735f80 R15: 00007ffdb41c5df8
[  411.811236][ T9896]  </TASK>
[  411.811338][ T9896] ERROR: Out of memory at tomoyo_realpath_from_path.
[  412.286385][ T9901] overlayfs: failed to resolve './file0': -2
[  413.322980][ T5963] usb 3-1: USB disconnect, device number 28
[  413.404347][ T5917] usb 3-1-port1: config error
[  414.161921][ T9898] tty tty30: ldisc open failed (-12), clearing slot 29
[  414.172248][ T9921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1071'.
[  414.459611][ T9925] overlayfs: failed to resolve './file0': -2
[  414.734055][ T9929] lo speed is unknown, defaulting to 1000
[  415.598763][   T29] kauditd_printk_skb: 2089 callbacks suppressed
[  415.598781][   T29] audit: type=1326 audit(1730302134.665:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9949 comm="syz.2.1080" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f053217e719 code=0x0
[  418.170378][ T9971] overlayfs: failed to resolve './file0': -2
[  418.263094][ T9967] fuse: Unknown parameter '0xffffffffffffffff18446744073709551615'
[  418.977180][ T9978] lo speed is unknown, defaulting to 1000
[  419.251297][ T9986] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1091'.
[  419.744551][ T9988] delete_channel: no stack
[  419.994078][ T5956] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  420.176838][ T5956] usb 1-1: Using ep0 maxpacket: 32
[  420.185291][ T5956] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  420.205570][ T5956] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  420.266777][ T5956] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  420.282301][ T5956] usb 1-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  420.384281][ T5956] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.401048][ T5956] usb 1-1: config 0 descriptor??
[  420.524203][  T969] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  420.693932][  T969] usb 4-1: Using ep0 maxpacket: 8
[  420.702518][  T969] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  420.711687][  T969] usb 4-1: config 0 has no interface number 0
[  420.718190][  T969] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  420.728071][  T969] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  420.737908][  T969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.748566][  T969] usb 4-1: config 0 descriptor??
[  420.757746][  T969] iowarrior 4-1:0.1: no interrupt-in endpoint found
[  420.966753][ T5963] usb 4-1: USB disconnect, device number 31
[  421.096107][T10011] input: syz1 as /devices/virtual/input/input16
[  421.152682][T10009] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1095'.
[  421.196150][T10009] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1095'.
[  421.227619][T10009] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1095'.
[  421.262115][T10009] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1095'.
[  423.671108][T10043] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  423.682550][T10043] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  423.709113][T10043] tipc: Started in network mode
[  423.714756][T10043] tipc: Node identity e246a3f9d3d8, cluster identity 4711
[  423.722680][T10043] tipc: Enabled bearer <eth:xfrm0>, priority 10
[  423.749786][  T969] usb 1-1: USB disconnect, device number 24
[  424.248971][ T5963] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  424.547486][T10058] 9pnet_fd: Insufficient options for proto=fd
[  425.032548][ T5890] tipc: Node number set to 832480249
[  425.465626][ T5963] usb 3-1: Using ep0 maxpacket: 32
[  425.809332][ T5963] usb 3-1: device descriptor read/all, error -71
[  426.539279][T10076] IPv6: addrconf: prefix option has invalid lifetime
[  426.637403][T10077] overlayfs: failed to resolve './file0': -2
[  428.906953][T10086] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  428.924194][T10086] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  428.962615][T10086] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  428.979668][T10086] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  428.998076][T10086] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  429.005664][T10086] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  429.055189][T10086] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  429.062886][T10086] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  429.092433][T10086] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  429.455477][  T969] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  429.714694][ T5963] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  429.824403][  T969] usb 1-1: Using ep0 maxpacket: 8
[  429.937961][  T969] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  429.964883][  T969] usb 1-1: config 0 has no interface number 0
[  430.055009][  T969] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  430.111593][  T969] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  430.177060][ T5963] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  430.198850][  T969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.214281][ T5963] usb 2-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  430.240255][  T969] usb 1-1: config 0 descriptor??
[  430.248666][ T5963] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.264885][  T969] iowarrior 1-1:0.1: no interrupt-in endpoint found
[  430.904385][ T5963] usb 2-1: config 0 descriptor??
[  430.912148][  T969] usb 1-1: USB disconnect, device number 25
[  430.920777][ T5963] usb 2-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[  430.930680][ T5963] usb 2-1: No valid video chain found.
[  430.953903][ T5854] Bluetooth: hci0: command 0x0406 tx timeout
[  431.034675][ T5854] Bluetooth: hci4: command 0x0406 tx timeout
[  431.040802][ T5854] Bluetooth: hci2: command 0x0406 tx timeout
[  431.115019][ T5139] Bluetooth: hci3: command 0x0405 tx timeout
[  431.197414][T10097] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  431.251003][ T5890] usb 2-1: USB disconnect, device number 18
[  432.677430][T10135] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1127'.
[  432.726354][ T5963] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  432.953284][ T5890] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  433.068456][ T5139] Bluetooth: hci0: command 0x0406 tx timeout
[  433.124093][ T5139] Bluetooth: hci2: command 0x0406 tx timeout
[  433.128563][ T5854] Bluetooth: hci4: command 0x0406 tx timeout
[  433.145265][ T5890] usb 4-1: device descriptor read/64, error -71
[  433.195394][ T5854] Bluetooth: hci3: command 0x0405 tx timeout
[  433.224269][ T5963] usb 3-1: Using ep0 maxpacket: 16
[  433.243760][ T5963] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  433.414205][ T5890] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  433.467431][ T5963] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  433.515545][ T5963] usb 3-1: string descriptor 0 read error: -22
[  433.522143][ T5963] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  433.584152][ T5963] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.670200][ T5890] usb 4-1: device descriptor read/64, error -71
[  433.805864][ T5890] usb usb4-port1: attempt power cycle
[  433.942689][ T5963] cdc_ncm 3-1:1.0: bind() failure
[  433.951365][ T5963] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  433.958577][ T5963] cdc_ncm 3-1:1.1: bind() failure
[  433.967614][ T5963] usb 3-1: USB disconnect, device number 31
[  436.240186][ T5854] Bluetooth: hci3: command 0x0405 tx timeout
[  436.547357][ T5890] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  437.350029][ T5890] usb 4-1: device descriptor read/8, error -71
[  438.081136][T10156] netlink: 'syz.3.1136': attribute type 3 has an invalid length.
[  438.089042][T10156] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.1136'.
[  438.838263][T10160] overlayfs: failed to resolve './file1': -2
[  439.809733][T10174] FAULT_INJECTION: forcing a failure.
[  439.809733][T10174] name failslab, interval 1, probability 0, space 0, times 0
[  439.826395][T10174] CPU: 1 UID: 0 PID: 10174 Comm: syz.0.1141 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  439.837197][T10174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  439.847271][T10174] Call Trace:
[  439.850561][T10174]  <TASK>
[  439.853554][T10174]  dump_stack_lvl+0x241/0x360
[  439.858277][T10174]  ? __pfx_dump_stack_lvl+0x10/0x10
[  439.863517][T10174]  ? __pfx__printk+0x10/0x10
[  439.868135][T10174]  ? __kmalloc_node_noprof+0xb7/0x440
[  439.873549][T10174]  ? __pfx___might_resched+0x10/0x10
[  439.878874][T10174]  should_fail_ex+0x3b0/0x4e0
[  439.883582][T10174]  should_failslab+0xac/0x100
[  439.888306][T10174]  __kmalloc_node_noprof+0xdf/0x440
[  439.893539][T10174]  ? __vmalloc_node_range_noprof+0x5c3/0x13f0
[  439.899646][T10174]  __vmalloc_node_range_noprof+0x5c3/0x13f0
[  439.905586][T10174]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  439.911936][T10174]  ? bpf_prog_load+0x1ae/0x20f0
[  439.916805][T10174]  ? security_capable+0xde/0x2d0
[  439.921765][T10174]  ? security_capable+0x278/0x2d0
[  439.926821][T10174]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  439.932427][T10174]  __vmalloc_noprof+0x79/0x90
[  439.937136][T10174]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  439.942707][T10174]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  439.948102][T10174]  ? bpf_prog_alloc+0x28/0x1b0
[  439.952893][T10174]  bpf_prog_alloc+0x3a/0x1b0
[  439.957507][T10174]  bpf_prog_load+0x7f7/0x20f0
[  439.962216][T10174]  ? __pfx_bpf_prog_load+0x10/0x10
[  439.967355][T10174]  ? __might_fault+0xaa/0x120
[  439.972064][T10174]  ? __might_fault+0xaa/0x120
[  439.976762][T10174]  ? __might_fault+0xc6/0x120
[  439.981478][T10174]  __sys_bpf+0x4ee/0x810
[  439.985754][T10174]  ? __pfx___sys_bpf+0x10/0x10
[  439.990568][T10174]  __x64_sys_bpf+0x7c/0x90
[  439.995036][T10174]  do_syscall_64+0xf3/0x230
[  439.999563][T10174]  ? clear_bhb_loop+0x35/0x90
[  440.004267][T10174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.010192][T10174] RIP: 0033:0x7f8efc97e719
[  440.014646][T10174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.034284][T10174] RSP: 002b:00007f8efc3ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  440.042738][T10174] RAX: ffffffffffffffda RBX: 00007f8efcb36130 RCX: 00007f8efc97e719
[  440.050991][T10174] RDX: 0000000000000090 RSI: 0000000020000080 RDI: 0000000000000005
[  440.058979][T10174] RBP: 00007f8efc3ff090 R08: 0000000000000000 R09: 0000000000000000
[  440.066969][T10174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  440.074962][T10174] R13: 0000000000000000 R14: 00007f8efcb36130 R15: 00007ffd7928d168
[  440.082968][T10174]  </TASK>
[  440.108894][T10174] syz.0.1141: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  440.129424][T10174] CPU: 1 UID: 0 PID: 10174 Comm: syz.0.1141 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  440.140206][T10174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  440.150275][T10174] Call Trace:
[  440.153571][T10174]  <TASK>
[  440.156521][T10174]  dump_stack_lvl+0x241/0x360
[  440.161227][T10174]  ? __pfx_dump_stack_lvl+0x10/0x10
[  440.166456][T10174]  ? __pfx__printk+0x10/0x10
[  440.171079][T10174]  ? __rcu_read_unlock+0xa1/0x110
[  440.176145][T10174]  warn_alloc+0x278/0x410
[  440.180498][T10174]  ? __pfx___might_resched+0x10/0x10
[  440.185816][T10174]  ? __pfx_warn_alloc+0x10/0x10
[  440.190697][T10174]  ? rcu_is_watching+0x15/0xb0
[  440.195479][T10174]  ? trace_kmalloc+0x1f/0xd0
[  440.200083][T10174]  ? __vmalloc_node_range_noprof+0x5c3/0x13f0
[  440.206183][T10174]  __vmalloc_node_range_noprof+0x691/0x13f0
[  440.212129][T10174]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  440.218482][T10174]  ? bpf_prog_load+0x1ae/0x20f0
[  440.223357][T10174]  ? security_capable+0xde/0x2d0
[  440.228333][T10174]  ? security_capable+0x278/0x2d0
[  440.233384][T10174]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  440.239041][T10174]  __vmalloc_noprof+0x79/0x90
[  440.243746][T10174]  ? bpf_prog_alloc_no_stats+0x4d/0x4b0
[  440.249332][T10174]  bpf_prog_alloc_no_stats+0x4d/0x4b0
[  440.254747][T10174]  ? bpf_prog_alloc+0x28/0x1b0
[  440.259540][T10174]  bpf_prog_alloc+0x3a/0x1b0
[  440.264160][T10174]  bpf_prog_load+0x7f7/0x20f0
[  440.268883][T10174]  ? __pfx_bpf_prog_load+0x10/0x10
[  440.274022][T10174]  ? __might_fault+0xaa/0x120
[  440.278742][T10174]  ? __might_fault+0xaa/0x120
[  440.283438][T10174]  ? __might_fault+0xc6/0x120
[  440.288175][T10174]  __sys_bpf+0x4ee/0x810
[  440.292444][T10174]  ? __pfx___sys_bpf+0x10/0x10
[  440.297251][T10174]  __x64_sys_bpf+0x7c/0x90
[  440.301691][T10174]  do_syscall_64+0xf3/0x230
[  440.306223][T10174]  ? clear_bhb_loop+0x35/0x90
[  440.310928][T10174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.316837][T10174] RIP: 0033:0x7f8efc97e719
[  440.321266][T10174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.340892][T10174] RSP: 002b:00007f8efc3ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  440.349334][T10174] RAX: ffffffffffffffda RBX: 00007f8efcb36130 RCX: 00007f8efc97e719
[  440.357330][T10174] RDX: 0000000000000090 RSI: 0000000020000080 RDI: 0000000000000005
[  440.365371][T10174] RBP: 00007f8efc3ff090 R08: 0000000000000000 R09: 0000000000000000
[  440.373374][T10174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  440.381363][T10174] R13: 0000000000000000 R14: 00007f8efcb36130 R15: 00007ffd7928d168
[  440.389372][T10174]  </TASK>
[  440.556864][T10174] Mem-Info:
[  440.563866][T10174] active_anon:317 inactive_anon:7592 isolated_anon:0
[  440.563866][T10174]  active_file:10041 inactive_file:39931 isolated_file:0
[  440.563866][T10174]  unevictable:768 dirty:155 writeback:0
[  440.563866][T10174]  slab_reclaimable:10205 slab_unreclaimable:100592
[  440.563866][T10174]  mapped:24788 shmem:4261 pagetables:955
[  440.563866][T10174]  sec_pagetables:0 bounce:0
[  440.563866][T10174]  kernel_misc_reclaimable:0
[  440.563866][T10174]  free:1338564 free_pcp:266 free_cma:0
[  440.615636][T10174] Node 0 active_anon:1268kB inactive_anon:30368kB active_file:40088kB inactive_file:159724kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99152kB dirty:620kB writeback:0kB shmem:15508kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11532kB pagetables:3820kB sec_pagetables:0kB all_unreclaimable? no
[  440.651479][T10174] Node 1 active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  440.685043][T10174] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  440.734528][T10174] lowmem_reserve[]: 0 2465 2466 0 0
[  440.744394][ T5963] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  440.753462][T10174] Node 0 DMA32 free:1433096kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:1268kB inactive_anon:30384kB active_file:39316kB inactive_file:159672kB unevictable:1536kB writepending:688kB present:3129332kB managed:2552504kB mlocked:0kB bounce:0kB free_pcp:1720kB local_pcp:1132kB free_cma:0kB
[  440.838004][T10174] lowmem_reserve[]: 0 0 0 0 0
[  440.848872][T10174] Node 0 Normal free:4kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:4kB inactive_anon:32kB active_file:772kB inactive_file:52kB unevictable:0kB writepending:0kB present:1048580kB managed:880kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  440.879231][T10174] lowmem_reserve[]: 0 0 0 0 0
[  440.888722][T10174] Node 1 Normal free:3905072kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111168kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  440.923724][T10174] lowmem_reserve[]: 0 0 0 0 0
[  441.067381][T10174] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  441.088275][T10174] Node 0 DMA32: 240*4kB (UE) 375*8kB (UE) 403*16kB (UME) 525*32kB (UME) 468*64kB (UM) 152*128kB (UME) 94*256kB (UM) 44*512kB (UME) 18*1024kB (UME) 9*2048kB (UME) 311*4096kB (UM) = 1433928kB
[  441.120916][T10174] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  441.138751][T10174] Node 1 Normal: 208*4kB (UME) 52*8kB (UME) 39*16kB (UME) 199*32kB (UME) 90*64kB (UME) 27*128kB (UE) 12*256kB (UME) 9*512kB (UME) 3*1024kB (UM) 5*2048kB (UE) 944*4096kB (M) = 3905072kB
[  441.170534][T10174] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  441.181279][T10174] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  441.191820][T10174] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  441.202520][T10174] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  441.223098][T10174] 54234 total pagecache pages
[  441.228801][T10174] 0 pages in swap cache
[  441.234107][T10174] Free swap  = 124504kB
[  441.238890][T10174] Total swap = 124996kB
[  441.244524][T10174] 2097051 pages RAM
[  441.249304][T10174] 0 pages HighMem/MovableOnly
[  441.255209][T10174] 427073 pages reserved
[  441.260321][T10174] 0 pages cma reserved
[  441.277329][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  441.284862][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  441.853983][ T5963] usb 6-1: Using ep0 maxpacket: 8
[  442.434007][ T5963] usb 6-1: device descriptor read/all, error -71
[  443.815685][T10200] libceph: resolve '0' (ret=-3): failed
[  443.886881][ T5963] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  443.888036][T10200] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1146'.
[  444.525199][ T5963] usb 6-1: Using ep0 maxpacket: 8
[  444.541431][ T5963] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  444.550093][ T5963] usb 6-1: config 0 has no interface number 0
[  444.563871][ T5963] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  444.589943][ T5963] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  444.619774][ T5963] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.718132][ T5963] usb 6-1: config 0 descriptor??
[  444.754417][  T969] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  444.854079][ T5963] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  444.945297][  T969] usb 3-1: Using ep0 maxpacket: 8
[  445.128418][  T969] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  445.229002][ T5963] usb 6-1: USB disconnect, device number 9
[  445.419543][ T5963] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected
[  445.446530][  T969] usb 3-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  445.485985][  T969] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.494130][  T969] usb 3-1: Product: syz
[  445.498320][  T969] usb 3-1: Manufacturer: syz
[  445.502949][  T969] usb 3-1: SerialNumber: syz
[  445.517215][  T969] usb 3-1: config 0 descriptor??
[  445.542811][  T969] gspca_main: stk014-2.14.0 probing 05e1:0893
[  445.553916][  T969] usb 3-1: selecting invalid altsetting 1
[  445.876319][  T969] gspca_stk014: init reg: 0x00
[  445.881655][  T969] stk014 3-1:0.0: probe with driver stk014 failed with error -5
[  447.157263][    T8] usb 3-1: USB disconnect, device number 32
[  447.440515][T10225] netlink: 212 bytes leftover after parsing attributes in process `syz.1.1152'.
[  447.608146][T10228] input: syz1 as /devices/virtual/input/input17
[  448.414705][T10234] vivid-000: disconnect
[  448.475347][T10233] vivid-000: reconnect
[  448.551750][T10241] FAULT_INJECTION: forcing a failure.
[  448.551750][T10241] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.565586][T10241] CPU: 0 UID: 0 PID: 10241 Comm: syz.3.1160 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  448.576385][T10241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  448.586468][T10241] Call Trace:
[  448.589768][T10241]  <TASK>
[  448.592715][T10241]  dump_stack_lvl+0x241/0x360
[  448.597422][T10241]  ? __pfx_dump_stack_lvl+0x10/0x10
[  448.602646][T10241]  ? __pfx__printk+0x10/0x10
[  448.607265][T10241]  ? __pfx_lock_release+0x10/0x10
[  448.612343][T10241]  should_fail_ex+0x3b0/0x4e0
[  448.617047][T10241]  _copy_from_iter+0x21f/0x1e70
[  448.621925][T10241]  ? __virt_addr_valid+0x183/0x530
[  448.627062][T10241]  ? __pfx_lock_release+0x10/0x10
[  448.632126][T10241]  ? __alloc_skb+0x28f/0x440
[  448.636750][T10241]  ? __pfx__copy_from_iter+0x10/0x10
[  448.642075][T10241]  ? __virt_addr_valid+0x183/0x530
[  448.647205][T10241]  ? __virt_addr_valid+0x183/0x530
[  448.652332][T10241]  ? __virt_addr_valid+0x45f/0x530
[  448.657461][T10241]  ? __check_object_size+0x48e/0x900
[  448.662774][T10241]  netlink_sendmsg+0x73d/0xcb0
[  448.667596][T10241]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.672917][T10241]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.678218][T10241]  __sock_sendmsg+0x221/0x270
[  448.682926][T10241]  ____sys_sendmsg+0x52a/0x7e0
[  448.687730][T10241]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.693061][T10241]  __sys_sendmsg+0x292/0x380
[  448.697682][T10241]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.702833][T10241]  ? __pfx_vfs_write+0x10/0x10
[  448.707648][T10241]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  448.714018][T10241]  ? do_syscall_64+0x100/0x230
[  448.718822][T10241]  ? do_syscall_64+0xb6/0x230
[  448.723545][T10241]  do_syscall_64+0xf3/0x230
[  448.728079][T10241]  ? clear_bhb_loop+0x35/0x90
[  448.732779][T10241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.738874][T10241] RIP: 0033:0x7f219457e719
[  448.743324][T10241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.762953][T10241] RSP: 002b:00007f21953ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.771398][T10241] RAX: ffffffffffffffda RBX: 00007f2194736058 RCX: 00007f219457e719
[  448.779398][T10241] RDX: 0000000000000000 RSI: 0000000020002500 RDI: 0000000000000005
[  448.787391][T10241] RBP: 00007f21953ea090 R08: 0000000000000000 R09: 0000000000000000
[  448.795384][T10241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.803374][T10241] R13: 0000000000000000 R14: 00007f2194736058 R15: 00007ffdb41c5df8
[  448.811399][T10241]  </TASK>
[  449.146134][ T5890] usb 6-1: new full-speed USB device number 10 using dummy_hcd
[  449.537747][T10243] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  450.496568][ T5890] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30
[  450.508866][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  450.593947][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  450.654955][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10
[  450.677380][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  451.025754][ T5890] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 254
[  451.041891][ T5890] usb 6-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00
[  451.052613][ T5890] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  451.079410][ T5890] usb 6-1: config 0 descriptor??
[  451.710920][ T5890] usbhid 6-1:0.0: can't add hid device: -71
[  451.734378][ T5890] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  451.778255][ T5890] usb 6-1: USB disconnect, device number 10
[  453.879268][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  453.963953][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.014035][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.021827][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.074080][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.092601][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.100901][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.109040][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.117449][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.126083][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.134079][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.141845][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.149791][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.157860][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.165772][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.173562][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.181360][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.189365][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.197169][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.204972][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.212734][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.221047][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.231164][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.238994][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.247015][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.254838][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.262594][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.270531][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.278553][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.286369][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.294161][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.301918][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: unknown main item tag 0x0
[  454.322614][ T5963] hid-generic 0000:0000:FFFFFFFF.0007: hidraw0: <UNKNOWN> HID v0.02 Device [syz0] on syz0
[  454.395159][    T8] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  454.545606][    T8] usb 3-1: device descriptor read/64, error -71
[  454.987824][    T8] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  455.127150][    T8] usb 3-1: device descriptor read/64, error -71
[  455.234578][    T8] usb usb3-port1: attempt power cycle
[  455.620824][    T8] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  455.874926][    T8] usb 3-1: device descriptor read/8, error -71
[  457.084080][    T8] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  457.409143][    T8] usb 3-1: device descriptor read/8, error -71
[  457.695796][    T8] usb usb3-port1: unable to enumerate USB device
[  459.408120][T10350] netlink: 'syz.3.1188': attribute type 4 has an invalid length.
[  463.514243][ T5963] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  463.698190][ T5963] usb 2-1: Using ep0 maxpacket: 16
[  463.716012][ T5963] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  463.742963][ T5963] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  463.958424][ T5963] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  463.972517][ T5963] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  463.981459][ T5963] usb 2-1: Product: syz
[  463.986246][ T5963] usb 2-1: Manufacturer: syz
[  463.990870][ T5963] usb 2-1: SerialNumber: syz
[  464.607440][T10393] FAULT_INJECTION: forcing a failure.
[  464.607440][T10393] name failslab, interval 1, probability 0, space 0, times 0
[  464.622969][T10393] CPU: 1 UID: 0 PID: 10393 Comm: syz.0.1199 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  464.633774][T10393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  464.643860][T10393] Call Trace:
[  464.647148][T10393]  <TASK>
[  464.650081][T10393]  dump_stack_lvl+0x241/0x360
[  464.654804][T10393]  ? __pfx_dump_stack_lvl+0x10/0x10
[  464.660009][T10393]  ? __pfx__printk+0x10/0x10
[  464.664618][T10393]  ? ref_tracker_alloc+0x332/0x490
[  464.669744][T10393]  should_fail_ex+0x3b0/0x4e0
[  464.674439][T10393]  ? skb_clone+0x20c/0x390
[  464.678875][T10393]  should_failslab+0xac/0x100
[  464.683594][T10393]  ? skb_clone+0x20c/0x390
[  464.688022][T10393]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  464.693412][T10393]  skb_clone+0x20c/0x390
[  464.697675][T10393]  __netlink_deliver_tap+0x3cc/0x7c0
[  464.702970][T10393]  ? netlink_deliver_tap+0x2e/0x1b0
[  464.708187][T10393]  netlink_deliver_tap+0x19d/0x1b0
[  464.713301][T10393]  netlink_sendskb+0x68/0x140
[  464.717978][T10393]  netlink_unicast+0x39d/0x990
[  464.722738][T10393]  ? __asan_memcpy+0x40/0x70
[  464.727339][T10393]  ? __pfx_netlink_unicast+0x10/0x10
[  464.732631][T10393]  netlink_rcv_skb+0x262/0x430
[  464.737395][T10393]  ? __pfx_genl_rcv_msg+0x10/0x10
[  464.742423][T10393]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  464.747720][T10393]  ? __netlink_deliver_tap+0x77e/0x7c0
[  464.753190][T10393]  genl_rcv+0x28/0x40
[  464.757176][T10393]  netlink_unicast+0x7f6/0x990
[  464.761952][T10393]  ? __pfx_netlink_unicast+0x10/0x10
[  464.767238][T10393]  ? __virt_addr_valid+0x183/0x530
[  464.772351][T10393]  ? __check_object_size+0x48e/0x900
[  464.777651][T10393]  netlink_sendmsg+0x8e4/0xcb0
[  464.782449][T10393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  464.787742][T10393]  ? __might_fault+0xaa/0x120
[  464.792432][T10393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  464.797716][T10393]  __sock_sendmsg+0x221/0x270
[  464.802401][T10393]  __sys_sendto+0x39b/0x4f0
[  464.806910][T10393]  ? __pfx___sys_sendto+0x10/0x10
[  464.811941][T10393]  ? __mutex_unlock_slowpath+0x21d/0x750
[  464.817591][T10393]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  464.823584][T10393]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  464.829937][T10393]  __x64_sys_sendto+0xde/0x100
[  464.834743][T10393]  do_syscall_64+0xf3/0x230
[  464.839264][T10393]  ? clear_bhb_loop+0x35/0x90
[  464.843955][T10393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.849858][T10393] RIP: 0033:0x7f8efc9805ac
[  464.854284][T10393] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  464.873911][T10393] RSP: 002b:00007f8efd6c4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  464.882376][T10393] RAX: ffffffffffffffda RBX: 00007f8efd6c4fc0 RCX: 00007f8efc9805ac
[  464.890352][T10393] RDX: 0000000000000020 RSI: 00007f8efd6c5010 RDI: 0000000000000003
[  464.898330][T10393] RBP: 0000000000000000 R08: 00007f8efd6c4f14 R09: 000000000000000c
[  464.906305][T10393] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  464.914278][T10393] R13: 00007f8efd6c4f68 R14: 00007f8efd6c5010 R15: 0000000000000000
[  464.922282][T10393]  </TASK>
[  465.124470][ T5963] usb 2-1: config 0 descriptor??
[  465.141708][ T5963] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  465.151570][ T5963] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  465.891655][ T5963] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  466.954434][ T5963] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[  467.277666][ T5963] em28xx 2-1:0.0: AC97 chip type couldn't be determined
[  467.485406][ T5963] em28xx 2-1:0.0: No AC97 audio processor
[  467.527458][ T5963] usb 2-1: USB disconnect, device number 19
[  468.354334][ T5950] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  468.408751][ T5963] em28xx 2-1:0.0: Disconnecting em28xx
[  468.448666][ T5963] em28xx 2-1:0.0: Freeing device
[  468.614165][ T5950] usb 3-1: Using ep0 maxpacket: 8
[  468.647674][ T5950] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  468.658157][ T5950] usb 3-1: config 0 has no interface number 0
[  468.665691][ T5950] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  468.678062][ T5950] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  468.711492][ T5950] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  468.752202][ T5950] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.133927][ T5950] usb 3-1: config 0 descriptor??
[  469.394057][T10432] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1210'.
[  469.959831][ T5950] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  469.978355][ T5950] usb 3-1: USB disconnect, device number 37
[  469.991537][ T5950] iowarrior 3-1:0.1: I/O-Warror #0 now disconnected
[  470.000421][T10436] @: renamed from vlan0 (while UP)
[  470.137683][   T29] audit: type=1326 audit(1730302189.195:2561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.234281][   T29] audit: type=1326 audit(1730302189.195:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.295084][   T29] audit: type=1326 audit(1730302189.235:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.324562][  T969] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  470.359771][   T29] audit: type=1326 audit(1730302189.235:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.386655][   T29] audit: type=1326 audit(1730302189.235:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.418450][   T29] audit: type=1326 audit(1730302189.235:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.440849][   T29] audit: type=1326 audit(1730302189.235:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.463454][   T29] audit: type=1326 audit(1730302189.235:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.503969][  T969] usb 1-1: Using ep0 maxpacket: 8
[  470.526256][  T969] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  470.541931][   T29] audit: type=1326 audit(1730302189.245:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  470.687809][  T969] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  470.714514][  T969] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  471.314345][  T969] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  471.373910][   T29] audit: type=1326 audit(1730302189.245:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10441 comm="syz.1.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160cb7e719 code=0x7ffc0000
[  471.514258][  T969] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  471.632301][T10466] netlink: 'syz.2.1221': attribute type 8 has an invalid length.
[  471.659685][  T969] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  471.698164][  T969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.718919][T10466] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1221'.
[  472.350470][  T969] usb 1-1: usb_control_msg returned -32
[  472.464750][  T969] usbtmc 1-1:16.0: can't read capabilities
[  475.019786][T10485] netlink: 'syz.1.1225': attribute type 8 has an invalid length.
[  475.065776][  T969] usb 1-1: USB disconnect, device number 26
[  475.072974][T10489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1225'.
[  475.958939][T10507] lo speed is unknown, defaulting to 1000
[  480.830854][   T29] kauditd_printk_skb: 37 callbacks suppressed
[  480.830875][   T29] audit: type=1804 audit(1730302199.875:2608): pid=10555 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.5.1243" name="/newroot/93/bus/file0" dev="overlay" ino=575 res=1 errno=0
[  480.927184][T10567] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  481.784595][T10572] FAULT_INJECTION: forcing a failure.
[  481.784595][T10572] name failslab, interval 1, probability 0, space 0, times 0
[  481.932693][T10572] CPU: 0 UID: 0 PID: 10572 Comm: syz.5.1246 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  481.943508][T10572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  481.953610][T10572] Call Trace:
[  481.956909][T10572]  <TASK>
[  481.959854][T10572]  dump_stack_lvl+0x241/0x360
[  481.964572][T10572]  ? __pfx_dump_stack_lvl+0x10/0x10
[  481.969820][T10572]  ? __pfx__printk+0x10/0x10
[  481.974434][T10572]  ? stack_trace_save+0x118/0x1d0
[  481.979491][T10572]  ? __pfx_stack_trace_save+0x10/0x10
[  481.984895][T10572]  should_fail_ex+0x3b0/0x4e0
[  481.989596][T10572]  ? dev_prep_valid_name+0x3c2/0xa40
[  481.994906][T10572]  should_failslab+0xac/0x100
[  481.999610][T10572]  ? dev_prep_valid_name+0x3c2/0xa40
[  482.004933][T10572]  __kmalloc_noprof+0xd8/0x400
[  482.009745][T10572]  dev_prep_valid_name+0x3c2/0xa40
[  482.014890][T10572]  ? lockdep_init_map_type+0xa1/0x910
[  482.020293][T10572]  ? __pfx_dev_prep_valid_name+0x10/0x10
[  482.025963][T10572]  register_netdevice+0x542/0x1b00
[  482.031127][T10572]  ? __pfx_register_netdevice+0x10/0x10
[  482.036700][T10572]  ? alloc_netdev_mqs+0xc5b/0x1000
[  482.041833][T10572]  ? validate_linkmsg+0x71e/0x900
[  482.046894][T10572]  br_dev_newlink+0x27/0x100
[  482.051508][T10572]  ? __pfx_br_dev_newlink+0x10/0x10
[  482.056733][T10572]  rtnl_newlink+0x1591/0x20a0
[  482.061462][T10572]  ? __pfx_rtnl_newlink+0x10/0x10
[  482.066517][T10572]  ? __pfx___mutex_trylock_common+0x10/0x10
[  482.072441][T10572]  ? rcu_is_watching+0x15/0xb0
[  482.077233][T10572]  ? trace_contention_end+0x3c/0x120
[  482.082566][T10572]  ? __mutex_lock+0x2ef/0xd70
[  482.087288][T10572]  ? __pfx_lock_release+0x10/0x10
[  482.092370][T10572]  ? __pfx_rtnl_newlink+0x10/0x10
[  482.097432][T10572]  rtnetlink_rcv_msg+0x73f/0xcf0
[  482.102425][T10572]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  482.107586][T10572]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  482.113083][T10572]  ? ref_tracker_free+0x643/0x7e0
[  482.118141][T10572]  netlink_rcv_skb+0x1e3/0x430
[  482.122939][T10572]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  482.128453][T10572]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  482.133795][T10572]  ? netlink_deliver_tap+0x2e/0x1b0
[  482.139036][T10572]  netlink_unicast+0x7f6/0x990
[  482.143841][T10572]  ? __pfx_netlink_unicast+0x10/0x10
[  482.149155][T10572]  ? __virt_addr_valid+0x183/0x530
[  482.154302][T10572]  ? __check_object_size+0x48e/0x900
[  482.159631][T10572]  netlink_sendmsg+0x8e4/0xcb0
[  482.164437][T10572]  ? __pfx_netlink_sendmsg+0x10/0x10
[  482.169773][T10572]  ? __pfx_netlink_sendmsg+0x10/0x10
[  482.175083][T10572]  __sock_sendmsg+0x221/0x270
[  482.179796][T10572]  ____sys_sendmsg+0x52a/0x7e0
[  482.184603][T10572]  ? __pfx_____sys_sendmsg+0x10/0x10
[  482.189942][T10572]  __sys_sendmsg+0x292/0x380
[  482.194568][T10572]  ? __pfx___sys_sendmsg+0x10/0x10
[  482.199726][T10572]  ? __pfx_vfs_write+0x10/0x10
[  482.204555][T10572]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  482.210932][T10572]  ? do_syscall_64+0x100/0x230
[  482.215738][T10572]  ? do_syscall_64+0xb6/0x230
[  482.220443][T10572]  do_syscall_64+0xf3/0x230
[  482.224969][T10572]  ? clear_bhb_loop+0x35/0x90
[  482.229681][T10572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.235618][T10572] RIP: 0033:0x7f9edaf7e719
[  482.240071][T10572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.259703][T10572] RSP: 002b:00007f9eda9ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  482.268150][T10572] RAX: ffffffffffffffda RBX: 00007f9edb135f80 RCX: 00007f9edaf7e719
[  482.276154][T10572] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  482.284164][T10572] RBP: 00007f9eda9ff090 R08: 0000000000000000 R09: 0000000000000000
[  482.292163][T10572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  482.300163][T10572] R13: 0000000000000000 R14: 00007f9edb135f80 R15: 00007ffe7c64c498
[  482.308178][T10572]  </TASK>
[  483.443453][T10576] lo speed is unknown, defaulting to 1000
[  484.364847][T10586] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1250'.
[  485.062776][T10598] openvswitch: netlink: Actions may not be safe on all matching packets
[  485.747480][T10604] tmpfs: Unknown parameter '�ize'
[  486.584837][T10612] netlink: 203448 bytes leftover after parsing attributes in process `syz.0.1256'.
[  486.608650][T10613] tipc: Can't bind to reserved service type 2
[  486.671225][T10612] netlink: 9486 bytes leftover after parsing attributes in process `syz.0.1256'.
[  486.720363][T10612] netlink: 'syz.0.1256': attribute type 10 has an invalid length.
[  486.769603][T10612] batman_adv: batadv0: Adding interface: team0
[  486.781963][T10612] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.817042][T10612] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  487.834297][ T5890] usb 1-1: new low-speed USB device number 27 using dummy_hcd
[  487.880839][T10631] netlink: 212 bytes leftover after parsing attributes in process `syz.2.1263'.
[  488.001428][ T5890] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 200, setting to 8
[  488.001574][ T5890] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 is Bulk; changing to Interrupt
[  488.001682][ T5890] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  488.001815][ T5890] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 4
[  488.001987][ T5890] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  488.002082][ T5890] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.020521][ T5890] usb 1-1: config 0 descriptor??
[  488.861920][ T5890] usb 1-1: USB disconnect, device number 27
[  489.631409][T10646] lo speed is unknown, defaulting to 1000
[  492.427074][T10667] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  495.525369][T10698] loop7: detected capacity change from 0 to 16384
[  496.021954][T10696] veth1_macvtap: left promiscuous mode
[  496.027559][T10696] macsec0: entered promiscuous mode
[  496.032760][T10696] macsec0: entered allmulticast mode
[  497.385557][T10715] openvswitch: netlink: Actions may not be safe on all matching packets
[  497.825495][T10700] Invalid logical block size (1)
[  499.975320][T10738] FAULT_INJECTION: forcing a failure.
[  499.975320][T10738] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  500.024839][T10738] CPU: 0 UID: 0 PID: 10738 Comm: syz.1.1289 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  500.035648][T10738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  500.045727][T10738] Call Trace:
[  500.049028][T10738]  <TASK>
[  500.051991][T10738]  dump_stack_lvl+0x241/0x360
[  500.056700][T10738]  ? __pfx_dump_stack_lvl+0x10/0x10
[  500.061927][T10738]  ? __pfx__printk+0x10/0x10
[  500.066537][T10738]  ? __pfx_lock_release+0x10/0x10
[  500.071588][T10738]  should_fail_ex+0x3b0/0x4e0
[  500.076288][T10738]  _copy_from_iter+0x21f/0x1e70
[  500.081151][T10738]  ? __virt_addr_valid+0x183/0x530
[  500.086280][T10738]  ? __pfx_lock_release+0x10/0x10
[  500.091315][T10738]  ? __alloc_skb+0x28f/0x440
[  500.095912][T10738]  ? __pfx__copy_from_iter+0x10/0x10
[  500.101214][T10738]  ? __virt_addr_valid+0x183/0x530
[  500.106333][T10738]  ? __virt_addr_valid+0x183/0x530
[  500.111452][T10738]  ? __virt_addr_valid+0x45f/0x530
[  500.116564][T10738]  ? __check_object_size+0x48e/0x900
[  500.121861][T10738]  netlink_sendmsg+0x73d/0xcb0
[  500.126634][T10738]  ? __pfx_netlink_sendmsg+0x10/0x10
[  500.131929][T10738]  ? __pfx_netlink_sendmsg+0x10/0x10
[  500.137213][T10738]  __sock_sendmsg+0x221/0x270
[  500.141921][T10738]  ____sys_sendmsg+0x52a/0x7e0
[  500.146692][T10738]  ? __pfx_____sys_sendmsg+0x10/0x10
[  500.152008][T10738]  ? rcu_is_watching+0x15/0xb0
[  500.156775][T10738]  ? __might_fault+0xaa/0x120
[  500.161459][T10738]  __sys_sendmmsg+0x3ab/0x730
[  500.166158][T10738]  ? __pfx___sys_sendmmsg+0x10/0x10
[  500.171369][T10738]  ? __pfx_lock_release+0x10/0x10
[  500.176410][T10738]  ? kstrtouint_from_user+0x128/0x190
[  500.181798][T10738]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  500.187691][T10738]  ? ksys_write+0x229/0x2b0
[  500.192197][T10738]  ? __pfx_lock_release+0x10/0x10
[  500.197237][T10738]  ? vfs_write+0x730/0xd30
[  500.201666][T10738]  ? __mutex_unlock_slowpath+0x21d/0x750
[  500.207307][T10738]  ? __fget_files+0x3f3/0x470
[  500.212011][T10738]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  500.218021][T10738]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  500.224365][T10738]  ? do_syscall_64+0x100/0x230
[  500.229142][T10738]  __x64_sys_sendmmsg+0xa0/0xb0
[  500.234005][T10738]  do_syscall_64+0xf3/0x230
[  500.238543][T10738]  ? clear_bhb_loop+0x35/0x90
[  500.243399][T10738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.249293][T10738] RIP: 0033:0x7f160cb7e719
[  500.253712][T10738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.273323][T10738] RSP: 002b:00007f160da30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  500.281739][T10738] RAX: ffffffffffffffda RBX: 00007f160cd35f80 RCX: 00007f160cb7e719
[  500.289711][T10738] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  500.297681][T10738] RBP: 00007f160da30090 R08: 0000000000000000 R09: 0000000000000000
[  500.305651][T10738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  500.313625][T10738] R13: 0000000000000000 R14: 00007f160cd35f80 R15: 00007fffcf2934c8
[  500.321611][T10738]  </TASK>
[  500.399121][T10745] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  500.526300][T10745] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  500.634081][   T25] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  501.238781][   T25] usb 6-1: Using ep0 maxpacket: 32
[  501.262446][   T25] usb 6-1: config 0 has an invalid interface number: 133 but max is 0
[  501.270916][   T25] usb 6-1: config 0 has no interface number 0
[  501.287674][   T25] usb 6-1: config 0 interface 133 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  501.300376][   T25] usb 6-1: config 0 interface 133 altsetting 0 bulk endpoint 0xF has invalid maxpacket 528
[  501.974169][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  501.980466][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  501.996655][   T25] usb 6-1: config 0 interface 133 altsetting 0 has an endpoint descriptor with address 0x78, changing to 0x8
[  502.024087][   T25] usb 6-1: config 0 interface 133 altsetting 0 endpoint 0x8 has invalid maxpacket 16090, setting to 1024
[  502.035984][   T25] usb 6-1: config 0 interface 133 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1024
[  502.051528][   T25] usb 6-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=71.1e
[  502.060716][   T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.069081][   T25] usb 6-1: Product: syz
[  502.073400][   T25] usb 6-1: Manufacturer: syz
[  502.306605][   T25] usb 6-1: SerialNumber: syz
[  502.316338][   T25] usb 6-1: config 0 descriptor??
[  502.323458][T10744] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  502.330909][T10744] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  502.338216][T10744] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  502.415302][T10766] overlayfs: missing 'lowerdir'
[  502.613453][T10770] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1298'.
[  502.697184][   T25] usb 6-1: probing VID:PID(0424:012C)   
[  502.705724][   T25] usb 6-1: vub300 testing BULK OUT EndPoint(0) 0B
[  502.712195][   T25] usb 6-1: vub300 testing BULK OUT EndPoint(1) 0F
[  502.718836][   T25] usb 6-1: vub300 testing BULK OUT EndPoint(2) 08
[  502.725358][   T25] usb 6-1: ignoring unexpected bulk_out endpoint
[  502.732159][   T25] usb 6-1: Could not find two sets of bulk-in/out endpoint pairs
[  502.910595][T10773] openvswitch: netlink: Actions may not be safe on all matching packets
[  503.573205][   T25] vub300 6-1:0.133: probe with driver vub300 failed with error -22
[  503.654542][   T25] usb 6-1: USB disconnect, device number 11
[  504.681453][  T969] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  505.164410][   T25] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  505.189789][  T969] usb 1-1: Using ep0 maxpacket: 16
[  505.222895][  T969] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  505.231447][  T969] usb 1-1: config 0 has no interface number 0
[  505.246356][  T969] usb 1-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  505.263178][  T969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.280575][  T969] usb 1-1: Product: syz
[  505.303301][  T969] usb 1-1: Manufacturer: syz
[  505.309447][  T969] usb 1-1: SerialNumber: syz
[  505.355832][  T969] usb 1-1: config 0 descriptor??
[  505.365105][  T969] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  505.653949][   T25] usb 3-1: Using ep0 maxpacket: 32
[  505.672417][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  505.707003][T10804] libceph: resolve '0' (ret=-3): failed
[  505.722089][T10804] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1306'.
[  505.790456][T10786] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1303'.
[  505.840562][   T25] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  506.000586][ T5950] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  506.021578][   T25] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  506.191615][   T25] usb 3-1: Product: syz
[  506.204252][ T5950] usb 4-1: Using ep0 maxpacket: 16
[  506.285146][ T5950] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  506.306171][   T25] usb 3-1: Manufacturer: syz
[  506.310857][   T25] usb 3-1: SerialNumber: syz
[  506.337665][ T5950] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  506.350048][   T25] usb 3-1: config 0 descriptor??
[  506.360853][ T5950] usb 4-1: config 0 has no interface number 0
[  506.415065][ T5950] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  506.435278][ T5950] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.444134][ T5950] usb 4-1: Product: syz
[  506.448332][ T5950] usb 4-1: Manufacturer: syz
[  506.452950][ T5950] usb 4-1: SerialNumber: syz
[  506.462477][ T5950] usb 4-1: config 0 descriptor??
[  506.579314][ T5950] usb 3-1: USB disconnect, device number 38
[  507.068274][  T969] gspca_spca1528: reg_w err -71
[  507.073353][  T969] spca1528 1-1:0.1: probe with driver spca1528 failed with error -71
[  507.084616][  T969] usb 1-1: USB disconnect, device number 28
[  507.099831][T10807] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1310'.
[  507.167271][T10808] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  507.185531][T10808] syz.1.1310: attempt to access beyond end of device
[  507.185531][T10808] loop1: rw=0, sector=0, nr_sectors = 2 limit=0
[  509.024130][   T25] usb 4-1: USB disconnect, device number 36
[  510.096158][T10830] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1315'.
[  510.511509][T10843] vlan2: entered allmulticast mode
[  510.519213][T10843] macvtap0: entered allmulticast mode
[  510.525858][T10843] veth0_macvtap: entered allmulticast mode
[  510.534514][T10843] bridge0: port 3(vlan2) entered blocking state
[  510.554946][ T5963] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  510.568637][T10843] bridge0: port 3(vlan2) entered disabled state
[  510.578020][T10843] vlan2: entered promiscuous mode
[  510.583463][T10843] macvtap0: entered promiscuous mode
[  510.590497][T10843] bridge0: port 3(vlan2) entered blocking state
[  510.596877][T10843] bridge0: port 3(vlan2) entered forwarding state
[  510.715964][ T5963] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  510.732066][ T5963] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  510.770440][ T5963] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  510.796711][ T5963] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.829144][T10839] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  510.857779][ T5963] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  616.133747][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  616.140799][    C0] rcu: 	1-...!: (1 GPs behind) idle=0084/1/0x4000000000000000 softirq=34484/34485 fqs=2
[  616.151927][    C0] rcu: 	(detected by 0, t=10505 jiffies, g=33553, q=242 ncpus=2)
[  616.159681][    C0] Sending NMI from CPU 0 to CPUs 1:
[  616.159719][    C1] NMI backtrace for cpu 1
[  616.159734][    C1] CPU: 1 UID: 0 PID: 10851 Comm: syz.5.1322 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  616.159754][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  616.159765][    C1] RIP: 0010:validate_chain+0x119/0x5920
[  616.159793][    C1] Code: 25 00 80 04 00 3d 00 00 04 00 0f 85 80 04 00 00 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 00 68 29 94 be 08 00 00 00 <e8> 02 77 8a 00 48 0f a3 1d ea 67 b8 12 72 66 48 c7 c0 40 d9 39 9a
[  616.159808][    C1] RSP: 0018:ffffc90000a18600 EFLAGS: 00000046
[  616.159824][    C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff920001430e0
[  616.159836][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff94296800
[  616.159848][    C1] RBP: ffffc90000a18900 R08: ffffffff94296807 R09: 1ffffffff2852d00
[  616.159861][    C1] R10: dffffc0000000000 R11: fffffbfff2852d01 R12: dffffc0000000000
[  616.159874][    C1] R13: ffff8880304b4750 R14: 8f1279fecd576743 R15: ffff8880304b4750
[  616.159888][    C1] FS:  00007f9eda9ff6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  616.159903][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  616.159915][    C1] CR2: 000000110c319ef2 CR3: 000000002733e000 CR4: 00000000003526f0
[  616.159931][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  616.159946][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  616.159957][    C1] Call Trace:
[  616.159964][    C1]  <NMI>
[  616.159972][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  616.159999][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  616.160026][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  616.160057][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  616.160080][    C1]  ? nmi_handle+0x14f/0x5a0
[  616.160098][    C1]  ? nmi_handle+0x2a/0x5a0
[  616.160115][    C1]  ? validate_chain+0x119/0x5920
[  616.160133][    C1]  ? default_do_nmi+0x63/0x160
[  616.160158][    C1]  ? exc_nmi+0x123/0x1f0
[  616.160181][    C1]  ? end_repeat_nmi+0xf/0x53
[  616.160205][    C1]  ? validate_chain+0x119/0x5920
[  616.160224][    C1]  ? validate_chain+0x119/0x5920
[  616.160243][    C1]  ? validate_chain+0x119/0x5920
[  616.160261][    C1]  </NMI>
[  616.160267][    C1]  <IRQ>
[  616.160274][    C1]  ? validate_chain+0x11e/0x5920
[  616.160297][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  616.160319][    C1]  ? __pfx_validate_chain+0x10/0x10
[  616.160336][    C1]  ? validate_chain+0x11e/0x5920
[  616.160355][    C1]  ? validate_chain+0x11e/0x5920
[  616.160375][    C1]  ? mark_lock+0x9a/0x360
[  616.160392][    C1]  ? __lock_acquire+0x1384/0x2050
[  616.160424][    C1]  ? mark_lock+0x9a/0x360
[  616.160442][    C1]  __lock_acquire+0x1384/0x2050
[  616.160474][    C1]  lock_acquire+0x1ed/0x550
[  616.160498][    C1]  ? debug_object_activate+0x16d/0x510
[  616.160519][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  616.160542][    C1]  ? __lock_acquire+0x1384/0x2050
[  616.160572][    C1]  ? __pfx_debug_objects_fill_pool+0x10/0x10
[  616.160591][    C1]  _raw_spin_lock_irqsave+0xd5/0x120
[  616.160619][    C1]  ? debug_object_activate+0x16d/0x510
[  616.160634][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  616.160665][    C1]  debug_object_activate+0x16d/0x510
[  616.160683][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  616.160704][    C1]  ? __pfx_debug_object_activate+0x10/0x10
[  616.160720][    C1]  ? advance_sched+0xa02/0xca0
[  616.160744][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  616.160769][    C1]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  616.160797][    C1]  enqueue_hrtimer+0x30/0x3c0
[  616.160817][    C1]  __hrtimer_run_queues+0x6cb/0xd50
[  616.160833][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  616.160864][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  616.160882][    C1]  ? ktime_get_update_offsets_now+0x22d/0x250
[  616.160907][    C1]  hrtimer_interrupt+0x396/0x990
[  616.160933][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[  616.160958][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  616.160976][    C1]  </IRQ>
[  616.160982][    C1]  <TASK>
[  616.160989][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  616.161008][    C1] RIP: 0010:stack_trace_consume_entry+0x135/0x280
[  616.161029][    C1] Code: 4c 89 ee 4c 89 f2 48 89 33 41 8b 19 41 0f b6 04 14 84 c0 0f 85 34 01 00 00 3b 5d 00 0f 92 c0 48 83 c4 18 5b 41 5c 41 5d 41 5e <41> 5f 5d c3 cc cc cc cc 44 89 c9 80 e1 07 80 c1 03 38 c1 0f 8c e9
[  616.161045][    C1] RSP: 0018:ffffc900192274a8 EFLAGS: 00000286
[  616.161059][    C1] RAX: 0000000000000001 RBX: ffffc900192274c0 RCX: ffffffff9179e000
[  616.161072][    C1] RDX: dffffc0000000000 RSI: ffffffff82368fa5 RDI: ffffc900192275ac
[  616.161085][    C1] RBP: ffffc900192275a8 R08: 0000000000000004 R09: ffffc900192275b0
[  616.161097][    C1] R10: ffffc90019227510 R11: ffffffff81809220 R12: ffff8880304b3c00
[  616.161110][    C1] R13: ffffffff81809220 R14: ffffc900192275a0 R15: 1ffff92003244eb6
[  616.161124][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  616.161146][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  616.161168][    C1]  ? __init_begin+0x41000/0x41000
[  616.161187][    C1]  ? proc_mkdir+0xa5/0x180
[  616.161217][    C1]  arch_stack_walk+0x10e/0x150
[  616.161236][    C1]  ? proc_mkdir+0xa5/0x180
[  616.161262][    C1]  stack_trace_save+0x118/0x1d0
[  616.161283][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  616.161303][    C1]  ? is_bpf_text_address+0x26/0x2a0
[  616.161328][    C1]  ? mark_lock+0x9a/0x360
[  616.161344][    C1]  ? __pfx_validate_chain+0x10/0x10
[  616.161363][    C1]  kasan_save_track+0x3f/0x80
[  616.161385][    C1]  ? kasan_save_track+0x3f/0x80
[  616.161406][    C1]  ? __kasan_slab_alloc+0x66/0x80
[  616.161430][    C1]  ? kmem_cache_alloc_noprof+0x135/0x2a0
[  616.161447][    C1]  ? __proc_create+0x44f/0xa50
[  616.161470][    C1]  ? proc_mkdir+0xa5/0x180
[  616.161513][    C1]  __kasan_slab_alloc+0x66/0x80
[  616.161537][    C1]  ? __proc_create+0x44f/0xa50
[  616.161560][    C1]  kmem_cache_alloc_noprof+0x135/0x2a0
[  616.161580][    C1]  __proc_create+0x44f/0xa50
[  616.161607][    C1]  ? __pfx___proc_create+0x10/0x10
[  616.161633][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  616.161658][    C1]  ? cache_register_net+0x56/0x4c0
[  616.161681][    C1]  proc_mkdir+0xa5/0x180
[  616.161705][    C1]  ? __pfx_proc_mkdir+0x10/0x10
[  616.161733][    C1]  ? cache_register_net+0x56/0x4c0
[  616.161753][    C1]  cache_register_net+0x262/0x4c0
[  616.161775][    C1]  ip_map_cache_create+0x73/0xf0
[  616.161797][    C1]  sunrpc_init_net+0x47/0x160
[  616.161815][    C1]  ops_init+0x31e/0x590
[  616.161834][    C1]  ? lockdep_init_map_type+0xa1/0x910
[  616.161860][    C1]  setup_net+0x287/0x9e0
[  616.161876][    C1]  ? __pfx_down_read_killable+0x10/0x10
[  616.161898][    C1]  ? __pfx_setup_net+0x10/0x10
[  616.161919][    C1]  copy_net_ns+0x33f/0x570
[  616.161941][    C1]  create_new_namespaces+0x425/0x7b0
[  616.161970][    C1]  unshare_nsproxy_namespaces+0x124/0x180
[  616.161994][    C1]  ksys_unshare+0x57d/0xa70
[  616.162014][    C1]  ? __pfx_ksys_unshare+0x10/0x10
[  616.162030][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  616.162056][    C1]  ? do_syscall_64+0x100/0x230
[  616.162079][    C1]  __x64_sys_unshare+0x38/0x40
[  616.162094][    C1]  do_syscall_64+0xf3/0x230
[  616.162114][    C1]  ? clear_bhb_loop+0x35/0x90
[  616.162132][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  616.162150][    C1] RIP: 0033:0x7f9edaf7e719
[  616.162165][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  616.162180][    C1] RSP: 002b:00007f9eda9ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  616.162198][    C1] RAX: ffffffffffffffda RBX: 00007f9edb135f80 RCX: 00007f9edaf7e719
[  616.162211][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068060200
[  616.162222][    C1] RBP: 00007f9edaff132e R08: 0000000000000000 R09: 0000000000000000
[  616.162233][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  616.162243][    C1] R13: 0000000000000000 R14: 00007f9edb135f80 R15: 00007ffe7c64c498
[  616.162262][    C1]  </TASK>
[  616.162713][    C0] rcu: rcu_preempt kthread starved for 10495 jiffies! g33553 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  616.940454][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  616.950449][    C0] rcu: RCU grace-period kthread stack dump:
[  616.956348][    C0] task:rcu_preempt     state:R  running task     stack:25680 pid:17    tgid:17    ppid:2      flags:0x00004000
[  616.968127][    C0] Call Trace:
[  616.971419][    C0]  <TASK>
[  616.974375][    C0]  __schedule+0x185a/0x4b70
[  616.978956][    C0]  ? __pfx___schedule+0x10/0x10
[  616.983847][    C0]  ? __pfx_lock_release+0x10/0x10
[  616.988947][    C0]  ? __asan_memset+0x23/0x50
[  616.993610][    C0]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  616.999460][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  617.005832][    C0]  ? schedule+0x90/0x320
[  617.010104][    C0]  schedule+0x14b/0x320
[  617.014298][    C0]  schedule_timeout+0x1be/0x310
[  617.019191][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  617.024605][    C0]  ? __pfx_process_timeout+0x10/0x10
[  617.029940][    C0]  ? prepare_to_swait_event+0x330/0x350
[  617.035554][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[  617.040429][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  617.045662][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  617.051867][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  617.057188][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  617.063133][    C0]  ? finish_swait+0xd4/0x1e0
[  617.067766][    C0]  rcu_gp_kthread+0xa7/0x3b0
[  617.072392][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  617.077620][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  617.083598][    C0]  ? __kthread_parkme+0x169/0x1d0
[  617.088667][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  617.093914][    C0]  kthread+0x2f0/0x390
[  617.098019][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  617.103264][    C0]  ? __pfx_kthread+0x10/0x10
[  617.107894][    C0]  ret_from_fork+0x4b/0x80
[  617.112351][    C0]  ? __pfx_kthread+0x10/0x10
[  617.116970][    C0]  ret_from_fork_asm+0x1a/0x30
[  617.121785][    C0]  </TASK>
[  617.124827][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  617.131174][    C0] CPU: 0 UID: 0 PID: 10857 Comm: syz.5.1322 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[  617.141954][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  617.152031][    C0] RIP: 0010:smp_call_function_many_cond+0x19f3/0x2ca0
[  617.158862][    C0] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 86 f3 0b 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 31 ef 0b 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 15 ef
[  617.178503][    C0] RSP: 0018:ffffc9001925f2c0 EFLAGS: 00000246
[  617.184612][    C0] RAX: ffffffff8188eaab RBX: 1ffff110170e8911 RCX: 0000000000040000
[  617.192723][    C0] RDX: ffffc9000ca47000 RSI: 000000000003ffff RDI: 0000000000040000
[  617.200736][    C0] RBP: ffffc9001925f4c0 R08: ffffffff8188ea7a R09: 1ffffffff2852d06
[  617.208766][    C0] R10: dffffc0000000000 R11: fffffbfff2852d07 R12: dffffc0000000000
[  617.216782][    C0] R13: ffff8880b8744888 R14: ffff8880b863fc40 R15: 0000000000000001
[  617.224825][    C0] FS:  00007f9eda9bd6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  617.233809][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  617.240434][    C0] CR2: 00007f9eda9bcf98 CR3: 000000002733e000 CR4: 00000000003526f0
[  617.248431][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 000000000000cdb2
[  617.256424][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  617.264426][    C0] Call Trace:
[  617.267733][    C0]  <IRQ>
[  617.270616][    C0]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  617.277010][    C0]  ? print_other_cpu_stall+0x1475/0x15b0
[  617.282675][    C0]  ? notifier_call_chain+0x19f/0x3e0
[  617.288001][    C0]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  617.293840][    C0]  ? cgroup_rstat_updated+0x13b/0xc60
[  617.299257][    C0]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  617.305534][    C0]  ? rcu_sched_clock_irq+0xa1a/0x10d0
[  617.310945][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  617.316614][    C0]  ? hrtimer_run_queues+0x16c/0x460
[  617.321881][    C0]  ? acct_account_cputime+0xd3/0x210
[  617.327193][    C0]  ? update_process_times+0x1ce/0x230
[  617.332593][    C0]  ? tick_nohz_handler+0x37c/0x500
[  617.337746][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  617.343226][    C0]  ? __hrtimer_run_queues+0x551/0xd50
[  617.348819][    C0]  ? ktime_get_update_offsets_now+0x3c/0x250
[  617.354863][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  617.360621][    C0]  ? ktime_get_update_offsets_now+0x22d/0x250
[  617.366715][    C0]  ? hrtimer_interrupt+0x396/0x990
[  617.371872][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  617.378050][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  617.383879][    C0]  </IRQ>
[  617.386833][    C0]  <TASK>
[  617.389783][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  617.395974][    C0]  ? smp_call_function_many_cond+0x19da/0x2ca0
[  617.402137][    C0]  ? smp_call_function_many_cond+0x1a0b/0x2ca0
[  617.408304][    C0]  ? smp_call_function_many_cond+0x19f3/0x2ca0
[  617.414485][    C0]  ? native_tlb_remove_table+0x3d/0x50
[  617.419973][    C0]  ? ___pte_free_tlb+0xb4/0x120
[  617.424851][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  617.430079][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  617.436423][    C0]  ? __pfx_free_pgd_range+0x10/0x10
[  617.441646][    C0]  ? rcu_is_watching+0x15/0xb0
[  617.446426][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  617.451639][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  617.456766][    C0]  flush_tlb_mm_range+0x329/0x5c0
[  617.461826][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  617.467390][    C0]  ? __pfx_free_pgtables+0x10/0x10
[  617.472527][    C0]  ? mas_next+0xb3/0x130
[  617.476786][    C0]  tlb_flush_mmu+0x1aa/0x680
[  617.481414][    C0]  tlb_finish_mmu+0xd4/0x200
[  617.486029][    C0]  vms_clear_ptes+0x437/0x530
[  617.490761][    C0]  ? __pfx_vms_clear_ptes+0x10/0x10
[  617.496015][    C0]  ? mas_find+0x8c0/0xbb0
[  617.500364][    C0]  vms_clean_up_area+0x62/0x1c0
[  617.505246][    C0]  mmap_region+0x1063/0x2940
[  617.509886][    C0]  ? preempt_schedule_common+0x84/0xd0
[  617.515382][    C0]  ? __pfx_mmap_region+0x10/0x10
[  617.520337][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  617.526332][    C0]  ? mm_get_unmapped_area+0xa8/0xd0
[  617.531593][    C0]  ? bpf_lsm_mmap_addr+0x9/0x10
[  617.536479][    C0]  ? security_mmap_addr+0x6f/0x250
[  617.541651][    C0]  ? __get_unmapped_area+0x2ed/0x350
[  617.546991][    C0]  do_mmap+0x8f0/0x1000
[  617.551203][    C0]  ? __pfx_do_mmap+0x10/0x10
[  617.555833][    C0]  ? __pfx_down_write_killable+0x10/0x10
[  617.561510][    C0]  vm_mmap_pgoff+0x1dd/0x3d0
[  617.566137][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  617.571277][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  617.577640][    C0]  ? do_syscall_64+0x100/0x230
[  617.582440][    C0]  ? ksys_mmap_pgoff+0xdf/0x720
[  617.587326][    C0]  ? __x64_sys_mmap+0x7f/0x140
[  617.592111][    C0]  do_syscall_64+0xf3/0x230
[  617.596641][    C0]  ? clear_bhb_loop+0x35/0x90
[  617.601346][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.607261][    C0] RIP: 0033:0x7f9edaf7e719
[  617.611695][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  617.631318][    C0] RSP: 002b:00007f9eda9bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  617.639755][    C0] RAX: ffffffffffffffda RBX: 00007f9edb136130 RCX: 00007f9edaf7e719
[  617.647766][    C0] RDX: 0000000003000002 RSI: 0000000000b36000 RDI: 0000000020000000
[  617.655768][    C0] RBP: 00007f9edaff132e R08: ffffffffffffffff R09: 0000000000000000
[  617.663761][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  617.671756][    C0] R13: 0000000000000000 R14: 00007f9edb136130 R15: 00007ffe7c64c498
[  617.679770][    C0]  </TASK>