last executing test programs:

12.600196681s ago: executing program 4 (id=6092):
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x6, 0x8, 0x443, r1}, 0x48)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'sit0\x00'})
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x2}, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r2, 0x400452c8, &(0x7f0000000100))

11.453068626s ago: executing program 4 (id=6095):
openat$hwrng(0xffffffffffffff9c, 0x0, 0x101100, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000002c80)={{0x12, 0x1, 0x0, 0x41, 0x7, 0xf5, 0x40, 0xcf3, 0x9375, 0x1a9e, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbe, 0xe4, 0xf9, 0x0, [], [{{0x9, 0x5, 0x4, 0x0, 0x10}}]}}]}}]}}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$qrtr(0x2a, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r4, &(0x7f00000029c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001780)=[@flowinfo={{0x14}}, @pktinfo={{0x24, 0x11, 0x32, {@mcast1}}}], 0x40}}], 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r4, 0x84, 0x21, &(0x7f0000000040)=0x9, 0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRES16=r1, @ANYBLOB="b778e1e827c8197800000600000008000300", @ANYRES32=r7, @ANYBLOB="0800050003"], 0x24}}, 0x0)
migrate_pages(0xffffffffffffffff, 0x0, 0x0, 0x0)

9.627011787s ago: executing program 4 (id=6101):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x11}]}}, &(0x7f0000000180)=""/148, 0x26, 0x94, 0x1}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000180)="05030400d3fc02000000ab5d71acedd7c9560385dcb1894f84d7dc049806892f05ce811c88f7", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)

8.952135395s ago: executing program 4 (id=6102):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000180), 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
bind(r2, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2c0000001400210100000000000000000a000000", @ANYRES32=r3, @ANYBLOB="140002000000000000000000000001"], 0x2c}}, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="390000001300034700bb65e1c3e4ffff06000300010000004500000025000000190011000600ad00020000", 0x2b}], 0x1)

7.708057825s ago: executing program 4 (id=6105):
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x6, 0x8, 0x443, r1}, 0x48)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'sit0\x00', <r3=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
r5 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
close(r5)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='jbd2_update_log_tail\x00', r4}, 0x10)
ioctl$TUNSETOFFLOAD(r1, 0x4004662b, 0x20001412)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000500)=ANY=[@ANYBLOB="cc020000210a0108fdffffff0000000000000000630003"], 0x2cc}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00', <r7=>0x0})
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x2}, 0x0)
recvfrom$packet(r1, &(0x7f0000000540)=""/176, 0xb0, 0x40001003, &(0x7f00000003c0)={0x11, 0xd, r3, 0x1, 0x40}, 0x14)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r8, 0x400452c8, &(0x7f0000000100))
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="6c00000010000100000000000000000007000000", @ANYRES32=r7, @ANYBLOB="00000000000000004c00168048000180280001"], 0x6c}}, 0x0)

7.478828771s ago: executing program 3 (id=6107):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000b40), 0x2b842ac, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getgroups(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x20000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x10, 0x3fd}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140), 0x0)
dup(0xffffffffffffffff)
ftruncate(0xffffffffffffffff, 0x200004)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="e8ffffff914faeb21253e320849117818e367e00c7ff9383b4020002004c60c2", 0x20)

6.646466064s ago: executing program 2 (id=6110):
syz_emit_ethernet(0xb4, &(0x7f0000000200)=ANY=[@ANYBLOB="d9b655e027df6831bbe78d54810021008848000000002fc200327215425af7375e6af2daa476b81c992baf1392d61b997427cd213b5eeaf2c6fdffffffa52513a443a84599d5fb1a87b186be7d70ce4eb85ea1c8e5a17bd30388d64d9b3c177149bcd6496cf280b9188b0f6c976378e1d3cf1511a13c2369616be7889c0c1432b7bc66ccc6f036d359708ad8b1a38a2d0e05dee670d0e05e3555c3d0b877ba9c212e8dc52cff15fbe3c952"], 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$packet(0x11, 0x0, 0x300)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = open$dir(&(0x7f00000000c0)='./bus\x00', 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000380)={0x8}, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x800001}}}, 0x10)
bind$tipc(r3, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
bind$tipc(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7fff0000}]})
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000200)=@v2={0x2, @aes128, 0x1, '\x00', @d})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

6.566550941s ago: executing program 4 (id=6112):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0185502, &(0x7f0000000340)={0x1, 0x1})
read$eventfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
setrlimit(0x2, &(0x7f0000000080))
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000026c0)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff5000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0}, 0x68)
sendto$rxrpc(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000140)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x24)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r6=>0x0})
r7 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$CAPI_REGISTER(r7, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0x800})
r8 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$CAPI_REGISTER(r8, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0xd0})
r9 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$CAPI_REGISTER(r9, 0x400c4301, &(0x7f00000003c0)={0x0, 0x0, 0x1ff})
r10 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$CAPI_REGISTER(r10, 0x400c4301, &(0x7f0000000480)={0x0, 0x0, 0x8000})
r11 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r11, &(0x7f0000000080)={0x1d, r6, 0x2, {0x0, 0x0, 0x4}}, 0x70)
sendmsg$nl_route(r4, &(0x7f0000002300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r6, @ANYBLOB="0000b27e41ba0100"], 0x20}}, 0x0)
connect$can_j1939(r3, &(0x7f0000000040)={0x1d, r6, 0x3, {0x1, 0xff, 0x3}}, 0x18)

4.924016406s ago: executing program 0 (id=6119):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x32}, 0x20)

4.904170885s ago: executing program 2 (id=6120):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002004007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
socket(0x11, 0x0, 0x0)
socket$inet6(0xa, 0x5, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000000400)={{}, "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"})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=ANY=[@ANYRESDEC, @ANYRES64=0x0, @ANYRES8, @ANYBLOB="1279e1d5d1ea0bb4661928bcd3a0bc557db59e72"], 0x7c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
unshare(0x8000000)
unshare(0x8040080)
r3 = openat$sysfs(0xffffffffffffff9c, 0x0, 0xac802, 0x61)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @empty}, 0x290, 0x0, 0x0, 0x0, 0x8000})
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r5, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
unshare(0x6a040000)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x0, '\x00', 0x100})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000)

4.834710606s ago: executing program 0 (id=6121):
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(0xffffffffffffffff, 0x84, 0x15, &(0x7f00000001c0), 0x1)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26}, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r5)
sendmsg$NLBL_MGMT_C_ADDDEF(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000000040000000800020005000000080007000000000008000800ac1e000106000b000a000000000000000000"], 0x34}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0xe04, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7fffffff}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6fd}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40c5}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340))
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000240)={0x0, <r9=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r9)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x4000000, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
close(r1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="e9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000240)="10", 0x1, 0x0, 0x0, 0x0)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r10, 0x1, 0x15, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000900)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)

4.462931851s ago: executing program 3 (id=6122):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, 0x0, 0x0)

3.830991071s ago: executing program 0 (id=6123):
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x11, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ENCODING_SA={0x5}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x44}}, 0x0)

3.830416748s ago: executing program 3 (id=6124):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x80000000203, 0x40002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000380)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x4, 0x0, 0x1})
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0xe8502)
ptrace$setopts(0x4206, 0x0, 0x80, 0x20002e)
fcntl$dupfd(r3, 0x0, 0xffffffffffffffff)
ptrace$ARCH_MAP_VDSO_32(0x1e, 0x0, 0x53, 0x2002)
r4 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x14d35e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4012011, r6, 0x0)
fcntl$setstatus(r5, 0x4, 0x4c00)
dup3(r5, r4, 0x0)
io_setup(0x0, &(0x7f0000000240))

3.066595721s ago: executing program 0 (id=6127):
socket$packet(0x11, 0x3, 0x300)
r0 = syz_io_uring_setup(0x1f9, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000440), &(0x7f0000000140)=<r1=>0x0)
sendmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x20084054)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x401)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r5 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
write$nbd(r4, &(0x7f0000000540)={0x67446698, 0x0, 0x3, 0x0, 0x2, "e760060fad7623f375bc8c85414ae4b53a4e3406e331489434a99c10ad61bb806931915faeade88cbf07151c7802a7e753cca2fc041144080aafd5e09adca220ba4871721b9d5af4e7197acff4fb9108adef5a21767c29c27b090c11e15ee2919db376b2d633c9fae25f52ebc6618f01b334152981a8ce62a2950968628c89a37d0ce43f62c78f889ade8dd8b6b808ece5f59728567b72f63f23ddeef372ea037c1405ee70d35bc970076b6051ce08eff8807f9ed5bf2ab5b36433bd449cc85563d77bdcc1eaa76760ea37ae973faee8c2a557d3822c1cf6c4"}, 0xe9)
ftruncate(r6, 0x2000009)
sendfile(r5, r6, 0x0, 0x7ffff000)
chown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r0, 0xb15, 0x0, 0x0, 0x0, 0x0)

3.065685764s ago: executing program 3 (id=6128):
syz_emit_ethernet(0xb4, &(0x7f0000000200)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$packet(0x11, 0x0, 0x300)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = open$dir(0x0, 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x800001}}}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
bind$tipc(r3, 0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7fff0000}]})
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000200)=@v2={0x2, @aes128, 0x1, '\x00', @d})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.3743826s ago: executing program 3 (id=6130):
syz_emit_ethernet(0xb4, &(0x7f0000000200)=ANY=[@ANYBLOB="d9b655e027df6831bbe78d54810021008848000000002fc200327215425af7375e6af2daa476b81c992baf1392d61b997427cd213b5eeaf2c6fdffffffa52513a443a84599d5fb1a87b186be7d70ce4eb85ea1c8e5a17bd30388d64d9b3c177149bcd6496cf280b9188b0f6c976378e1d3cf1511a13c2369616be7889c0c1432b7bc66ccc6f036d359708ad8b1a38a2d0e05dee670d0e05e3555c3d0b877ba9c212e8dc52cff15fbe3c952"], 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$packet(0x11, 0x0, 0x300)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = open$dir(&(0x7f00000000c0)='./bus\x00', 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000380)={0x8}, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x800001}}}, 0x10)
bind$tipc(r3, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
bind$tipc(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7fff0000}]})
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000200)=@v2={0x2, @aes128, 0x1, '\x00', @d})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.305789172s ago: executing program 2 (id=6131):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000200000000"], 0x0, 0x32}, 0x20)

2.15045013s ago: executing program 2 (id=6132):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={<r2=>0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OKEY={0x8, 0x5, 0x20}, @IFLA_GRE_IKEY={0x8}]}}}]}, 0x48}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0xc, 0x0, &(0x7f0000000080))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xfffffffffffffe25, 0x24, 0x3, [@enum={0x5, 0x3, 0x0, 0x6, 0x4, [{0x9, 0x3}, {0xd, 0x4}, {0x0, 0x9}]}]}, {0x0, [0x0]}}, 0x0, 0x3f, 0x0, 0x8}, 0x20)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)='\x00', 0x0}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r7, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, 0x0, 0x0)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000200), &(0x7f0000000300)=0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x6, 0x0, 0xa, 0x0, 0x0, 0x2}, @generic={0x5, 0x0, 0x0, 0x2, 0xffffffe5}, @jmp={0x5, 0x0, 0x8}, @jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}]}, &(0x7f0000000100)='GPL\x00'}, 0x90)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000700)={'batadv_slave_0\x00'})
bind$inet(r7, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}, {&(0x7f0000001240)="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", 0x33c}], 0x2}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x1f, &(0x7f0000000440)={r2, @in6={{0xa, 0x4a20, 0x0, @remote, 0x8665}}, 0x16df, 0x1}, 0x90)
recvmmsg(r7, &(0x7f0000004480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$ax25_int(r8, 0x101, 0x1, &(0x7f0000000000), 0x4)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@ipv4_newroute={0x64, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x2000}, [@RTA_OIF={0x8}, @RTA_IP_PROTO={0x5, 0x1b, 0x3a}, @RTA_PRIORITY={0x8, 0x6, 0x1}, @RTA_ENCAP={0x18, 0x16, 0x0, 0x1, @LWTUNNEL_IP6_SRC={0x14, 0x3, @remote}}, @RTA_PRIORITY={0x8, 0x6, 0x8}, @RTA_METRICS={0xd, 0x8, 0x0, 0x1, "d223557c7d57a8a55d"}]}, 0x64}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={{0x14}, [], {0x14, 0x10}}, 0x28}}, 0x0)

2.051387912s ago: executing program 0 (id=6133):
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000001c0), 0x1)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26}, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r6)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000040000000800020005000000080007000000000008000800ac1e000106000b000a000000000000000000"], 0x34}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0xe04, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7fffffff}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6fd}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40c5}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340))
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000240)={0x0, <r10=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r10)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x4000000, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
close(r2)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000080)="e9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000240)="10", 0x1, 0x0, 0x0, 0x0)
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r11, 0x1, 0x15, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
connect$inet6(r0, &(0x7f0000000900)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)

1.409359842s ago: executing program 1 (id=6136):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0xa5c, 0x1}, 0x48)
syz_open_dev$usbfs(&(0x7f0000000080), 0x80000000203, 0x40002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000380)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x4, 0x0, 0x1})
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0xe8502)
ptrace$setopts(0x4206, 0x0, 0x80, 0x20002e)
fcntl$dupfd(r2, 0x0, 0xffffffffffffffff)
ptrace$ARCH_MAP_VDSO_32(0x1e, 0x0, 0x53, 0x2002)
r3 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4012011, r5, 0x0)
fcntl$setstatus(r4, 0x4, 0x4c00)
dup3(r4, r3, 0x0)
io_setup(0x0, &(0x7f0000000240))

1.359789357s ago: executing program 0 (id=6137):
poll(0x0, 0x0, 0xfffffffe)
syz_usb_connect(0x0, 0x52, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000042ebf04021046c022f1f0000000109024000010000000009040000000202ff00052406000005240000000d240f01000000000000000000052406000005242000000d240f"], 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000c40)={@map, 0xffffffffffffffff, 0x18, 0x0, 0xffffffffffffffff, @prog_id}, 0x20)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x30040000}, 0x4008080)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r2=>0x0})
fstat(r0, &(0x7f0000000040))
unshare(0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='totmaps\x00')
r4 = fsmount(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)
pipe2$9p(&(0x7f0000000240)={<r5=>0xffffffffffffffff}, 0x0)
ioctl$HIDIOCGCOLLECTIONINFO(r3, 0xc0104811, &(0x7f0000000180)={0x7, 0x10, 0x8, 0xcb})
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f00000000c0)={0x2, 0x400, 0x80, 0x8, 0x80, "3152e1adfbd101b85f51cf119beea34ce67855", 0x9, 0xb3})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000480), 0x40802, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c0000001900010900000000000000000218000000000000000200b5070001"], 0x2c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r4, 0x89f8, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000300)={'syztnl0\x00', <r8=>r2, 0x0, 0x10, 0x81, 0x1, {{0x1b, 0x4, 0x1, 0x8, 0x6c, 0x66, 0x0, 0x6, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x34}, @remote, {[@cipso={0x86, 0x35, 0x1, [{0x6, 0x7, "05da9e1fe0"}, {0x0, 0xd, "14008fe325cebd41912fd5"}, {0x6, 0x12, "1ff1f3bf8d7181fe3d6456124b5c78a8"}, {0x6, 0x9, "1f7bacb728fe20"}]}, @lsrr={0x83, 0x13, 0xe, [@rand_addr=0x64010100, @empty, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @rr={0x7, 0xf, 0x71, [@dev={0xac, 0x14, 0x14, 0xc}, @local, @empty]}]}}}}})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, r4, 0x3, '\x00', r8, 0xffffffffffffffff, 0x0, 0x1, 0x2}, 0x48)

787.945105ms ago: executing program 1 (id=6138):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x80000000203, 0x40002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000380)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x4, 0x0, 0x1})
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0xe8502)
ptrace$setopts(0x4206, 0x0, 0x80, 0x20002e)
fcntl$dupfd(r3, 0x0, 0xffffffffffffffff)
ptrace$ARCH_MAP_VDSO_32(0x1e, 0x0, 0x53, 0x2002)
r4 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x14d35e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4012011, r6, 0x0)
fcntl$setstatus(r5, 0x4, 0x4c00)
dup3(r5, r4, 0x0)
io_setup(0x0, &(0x7f0000000240))

675.306456ms ago: executing program 2 (id=6139):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000180), 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
bind(r2, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2c0000001400210100000000000000000a000000", @ANYRES32=r3, @ANYBLOB="140002000000000000000000000001"], 0x2c}}, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="390000001300034700bb65e1c3e4ffff06000300010000004500000025000000190011000600ad0002000000000000060400", 0x32}], 0x1)

587.035549ms ago: executing program 2 (id=6140):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_open_dev$video(&(0x7f0000000000), 0x0, 0x10000)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100007566cb20f80600b0c8cb0102030109021b0001000000000904000001ffb9ab0009050a", @ANYRES32=r0], 0x0)
ioctl$VIDIOC_G_CROP(r1, 0xc014563b, &(0x7f0000000080)={0x3})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0xd, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x24}, 0x90)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x275a, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f0000000200)={0x0, r4})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x14c, 0x0, 0xffffffffffffffff, 0x7f, '\x00', 0x0, r4}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x14, &(0x7f0000000440)=ANY=[@ANYRESDEC=r4, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x200640, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x13, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r7, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffffca)
open(0x0, 0x8060, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x80000001, 0x3c6, 0x20, 0x120, r5, 0xc, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x0, 0x7}, 0x48)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002440)=ANY=[@ANYBLOB="3800000020000100000000000000000002000000000000000000000014000300"], 0x38}}, 0x0)

412.347155ms ago: executing program 1 (id=6141):
syz_emit_ethernet(0xb4, &(0x7f0000000200)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$packet(0x11, 0x0, 0x300)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = open$dir(0x0, 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x800001}}}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
bind$tipc(r3, 0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7fff0000}]})
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000200)=@v2={0x2, @aes128, 0x1, '\x00', @d})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

254.908407ms ago: executing program 1 (id=6142):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000200000000"], 0x0, 0x32}, 0x20)

165.999686ms ago: executing program 1 (id=6143):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x80000000203, 0x40002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000380)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x4, 0x0, 0x1})
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0xe8502)
ptrace$setopts(0x4206, 0x0, 0x80, 0x20002e)
fcntl$dupfd(r3, 0x0, 0xffffffffffffffff)
ptrace$ARCH_MAP_VDSO_32(0x1e, 0x0, 0x53, 0x2002)
r4 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x14d35e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4012011, r6, 0x0)
fcntl$setstatus(r5, 0x4, 0x4c00)
dup3(r5, r4, 0x0)
io_setup(0x0, &(0x7f0000000240))

69.771137ms ago: executing program 3 (id=6144):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc0109058903"], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='block_bio_remap\x00'}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0xf, 0x8, 0x3}, 0x48)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r1, &(0x7f0000000000), &(0x7f0000000240)=@udp6=r2}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f00000000c0), 0x0}, 0x20)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000e99e0b9aa900cd2100aa103bd4473fd0b195961b9aafb75be2210cf398365515231a884999ad8d52b82908bc476290e6ad591b07c3a13db87ba1ef626a1fcf620f8d9f"])
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x1}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bind$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
syz_emit_ethernet(0x8e, 0x0, 0x0)
recvfrom(0xffffffffffffffff, 0x0, 0x30, 0x0, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0xf, 0x200cc, 0x6, 0x5}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)='T', &(0x7f0000000240), 0x4af, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000700)={0x0, &(0x7f0000000540)=""/245, &(0x7f00000000c0), &(0x7f0000000680), 0x2, r7}, 0x38)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000ffff0000437974c5a58408c100ffffbff0006f"], &(0x7f0000000040)='GPL\x00', 0x802, 0x0, 0x0, 0x0, 0x20}, 0x90)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r10=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r9, r10}, 0x10)

0s ago: executing program 1 (id=6145):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r2 = accept$alg(r1, 0x0, 0x0)
r3 = dup(r2)
write$FUSE_INIT(r3, &(0x7f0000000080)={0x4f}, 0xfffffdef)
setsockopt(r3, 0x1, 0x20, &(0x7f0000000040)="c04bfa0a", 0x4)
read$FUSE(r3, &(0x7f0000002000)={0x2020}, 0xfffffc7c)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xd, 0x2, 0xe, 0x8, 0x2000, r0, 0x0, '\x00', r4, r3, 0x0, 0x0, 0x40000002}, 0x48)
signalfd4(r5, &(0x7f0000000080)={[0xfc84]}, 0x8, 0x80000)
r6 = socket$igmp(0x2, 0x3, 0x2)
r7 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', <r9=>0x0})
syz_open_dev$video4linux(&(0x7f00000006c0), 0x10001, 0x46002)
sendmsg$nl_route_sched(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xffffffffffffffd9, 0x2, [@TCA_FQ_CODEL_QUANTUM={0x8}, @TCA_FQ_CODEL_FLOWS={0x8}]}}]}, 0x48}}, 0x0)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000680))
getsockopt$MRT(r6, 0x0, 0xd0, 0x0, &(0x7f0000000200))

kernel console output (not intermixed with test programs):

_0) entered blocking state
[ 1768.573174][T20841] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1768.792841][ T9676] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1768.800034][ T9676] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1769.340502][T24127] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1769.377005][T22452] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1769.396378][T22452] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1769.407222][T22452] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1769.417845][T22452] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1769.425795][T22452] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1769.444178][T22452] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1769.468224][T24127] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1769.608289][T24139] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1769.638917][T24127] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1769.674259][T24127] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1769.778912][T24139] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1769.819640][T18531] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1769.870108][T24093] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1769.921748][T24139] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1770.015447][T24139] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1770.033835][T18531] usb 2-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[ 1770.059475][T18531] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1770.072454][T18531] usb 2-1: config 0 descriptor??
[ 1770.216787][T24093] veth0_vlan: entered promiscuous mode
[ 1770.310971][T24093] veth1_vlan: entered promiscuous mode
[ 1770.381251][T24204] chnl_net:caif_netlink_parms(): no params data found
[ 1770.439384][T24139] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1770.483890][T18531] gs_usb 2-1:0.0: Couldn't get device config: (err=-121)
[ 1770.497879][T24093] veth0_macvtap: entered promiscuous mode
[ 1770.501479][T18531] gs_usb 2-1:0.0: probe with driver gs_usb failed with error -121
[ 1770.511923][T24139] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1770.548135][T24127] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1770.583177][T24139] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1770.603563][T24139] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1770.642448][T24093] veth1_macvtap: entered promiscuous mode
[ 1770.754125][T24204] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1770.769637][T24204] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1770.777052][T24204] bridge_slave_0: entered allmulticast mode
[ 1770.799844][T24204] bridge_slave_0: entered promiscuous mode
[ 1770.820814][T24204] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1770.827975][T24204] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1770.837846][T24204] bridge_slave_1: entered allmulticast mode
[ 1770.846452][T24204] bridge_slave_1: entered promiscuous mode
[ 1770.875816][T24127] 8021q: adding VLAN 0 to HW filter on device team0
[ 1770.890935][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1770.909273][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1770.929251][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1770.960605][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1770.979343][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1770.999212][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.009072][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.038004][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.059361][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.079256][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.099365][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.127108][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.137318][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.159229][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.169656][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.182257][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.192825][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.203888][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.215156][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.226320][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.236543][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.248297][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.258733][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.272527][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.282818][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.295023][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.305404][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.316503][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.326721][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1771.338201][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.352687][T24093] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1771.414012][T24218] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5711'.
[ 1771.418576][ T9676] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1771.430214][ T9676] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1771.459727][T24204] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1771.494536][T24218] Êü: entered promiscuous mode
[ 1771.499993][T22452] Bluetooth: hci2: command tx timeout
[ 1771.539375][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.550953][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.562095][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.573047][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.584794][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.595730][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.609430][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.621428][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.632766][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.643674][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.654859][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.667072][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.677689][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.688620][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.698894][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.712697][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.723095][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.734441][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.759345][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.770651][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.781241][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.792204][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.802415][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.813420][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.826815][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.838125][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.848983][T24093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1771.868648][T24093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1771.881195][T24093] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1771.891776][T24204] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1771.927599][T16775] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1771.934833][T16775] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1771.988854][T24204] team0: Port device team_slave_0 added
[ 1772.031290][T24204] team0: Port device team_slave_1 added
[ 1772.052234][T24093] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.064904][T24093] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.073986][T24093] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.082874][T24093] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.122513][T24204] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1772.129709][T24204] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1772.156380][T24204] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1772.212584][T24204] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1772.221967][T24204] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1772.249864][T24204] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1772.428281][T24204] hsr_slave_0: entered promiscuous mode
[ 1772.451516][T24204] hsr_slave_1: entered promiscuous mode
[ 1772.458179][T24204] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1772.467568][T24204] Cannot create hsr debugfs directory
[ 1772.585045][ T5133] usb 2-1: USB disconnect, device number 65
[ 1772.709494][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1772.717367][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1772.762708][T24139] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1772.914401][ T2489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1772.921904][T24127] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1772.935102][ T2489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1772.955261][T24139] 8021q: adding VLAN 0 to HW filter on device team0
[ 1773.103363][T16775] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1773.110561][T16775] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1773.279942][T24204] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1773.326422][ T9890] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1773.333627][ T9890] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1773.457942][T24204] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1773.584027][T22452] Bluetooth: hci2: command tx timeout
[ 1773.747894][T24231] FAULT_INJECTION: forcing a failure.
[ 1773.747894][T24231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1773.772006][T24204] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1773.785417][T24231] CPU: 0 PID: 24231 Comm: syz.1.5713 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1773.795869][T24231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1773.805938][T24231] Call Trace:
[ 1773.809241][T24231]  <TASK>
[ 1773.812203][T24231]  dump_stack_lvl+0x241/0x360
[ 1773.816926][T24231]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1773.822163][T24231]  ? __pfx__printk+0x10/0x10
[ 1773.826794][T24231]  ? __pfx_lock_release+0x10/0x10
[ 1773.831870][T24231]  should_fail_ex+0x3b0/0x4e0
[ 1773.836602][T24231]  _copy_from_user+0x2f/0xe0
[ 1773.841213][T24231]  copy_msghdr_from_user+0xae/0x680
[ 1773.846429][T24231]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1773.852249][T24231]  __sys_sendmsg+0x23d/0x3a0
[ 1773.856841][T24231]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1773.861946][T24231]  ? vfs_write+0x7c4/0xc90
[ 1773.866392][T24231]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1773.872717][T24231]  ? do_syscall_64+0x100/0x230
[ 1773.877478][T24231]  ? do_syscall_64+0xb6/0x230
[ 1773.882156][T24231]  do_syscall_64+0xf3/0x230
[ 1773.886659][T24231]  ? clear_bhb_loop+0x35/0x90
[ 1773.891344][T24231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1773.897237][T24231] RIP: 0033:0x7f4607575bd9
[ 1773.901658][T24231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1773.921378][T24231] RSP: 002b:00007f460837c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1773.930239][T24231] RAX: ffffffffffffffda RBX: 00007f4607703f60 RCX: 00007f4607575bd9
[ 1773.938207][T24231] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[ 1773.946170][T24231] RBP: 00007f460837c0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1773.954134][T24231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1773.962098][T24231] R13: 000000000000000b R14: 00007f4607703f60 R15: 00007ffeabe0fa68
[ 1773.970076][T24231]  </TASK>
[ 1774.084587][T24204] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1774.137147][T24127] veth0_vlan: entered promiscuous mode
[ 1774.158507][T24127] veth1_vlan: entered promiscuous mode
[ 1774.289613][T24127] veth0_macvtap: entered promiscuous mode
[ 1774.311327][T24127] veth1_macvtap: entered promiscuous mode
[ 1774.336388][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.350415][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.370975][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.400320][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.436390][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.472220][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.505609][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.519304][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.531612][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.596123][T24242] FAULT_INJECTION: forcing a failure.
[ 1774.596123][T24242] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1774.609550][T24242] CPU: 0 PID: 24242 Comm: syz.1.5715 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1774.619810][T24242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1774.629883][T24242] Call Trace:
[ 1774.633173][T24242]  <TASK>
[ 1774.636111][T24242]  dump_stack_lvl+0x241/0x360
[ 1774.641594][T24242]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1774.646817][T24242]  ? __pfx__printk+0x10/0x10
[ 1774.651435][T24242]  ? __pfx_lock_release+0x10/0x10
[ 1774.656487][T24242]  should_fail_ex+0x3b0/0x4e0
[ 1774.661202][T24242]  _copy_from_user+0x2f/0xe0
[ 1774.665804][T24242]  copy_msghdr_from_user+0xae/0x680
[ 1774.671019][T24242]  ? __fget_files+0x18e/0x470
[ 1774.675714][T24242]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1774.681575][T24242]  __sys_sendmsg+0x23d/0x3a0
[ 1774.686207][T24242]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1774.691350][T24242]  ? vfs_write+0x7c4/0xc90
[ 1774.695887][T24242]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1774.702238][T24242]  ? do_syscall_64+0x100/0x230
[ 1774.707028][T24242]  ? do_syscall_64+0xb6/0x230
[ 1774.711729][T24242]  do_syscall_64+0xf3/0x230
[ 1774.716264][T24242]  ? clear_bhb_loop+0x35/0x90
[ 1774.721046][T24242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1774.727043][T24242] RIP: 0033:0x7f4607575bd9
[ 1774.731475][T24242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1774.751187][T24242] RSP: 002b:00007f460833a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1774.759708][T24242] RAX: ffffffffffffffda RBX: 00007f4607704110 RCX: 00007f4607575bd9
[ 1774.767688][T24242] RDX: 0000000000000000 RSI: 0000000020000740 RDI: 0000000000000005
[ 1774.775673][T24242] RBP: 00007f460833a0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1774.783658][T24242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1774.791647][T24242] R13: 000000000000006e R14: 00007f4607704110 R15: 00007ffeabe0fa68
[ 1774.799646][T24242]  </TASK>
[ 1774.859539][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.913230][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.967329][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1774.979071][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1774.992261][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.007171][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.018275][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.035982][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.047777][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.058401][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.069573][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.089405][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.100991][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.111108][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.121827][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.132919][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.149107][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.169673][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.191198][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.219191][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.239215][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.249082][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1775.264328][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.285805][T24127] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1775.367133][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.383560][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.394560][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.405533][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.415889][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.431183][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.444541][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.455488][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.466213][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.477014][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.488381][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.502403][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.512712][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.535153][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.546245][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.557192][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.567347][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.578108][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.590610][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.601386][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.614148][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.624709][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.634601][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.645377][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.656090][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.667205][T22452] Bluetooth: hci2: command tx timeout
[ 1775.673026][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.683722][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.694298][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.704160][T24127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1775.714701][T24127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1775.731645][T24127] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1775.755850][T24127] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1775.768511][T24127] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1775.779625][T24127] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1775.788446][T24127] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1775.828371][T24139] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1776.021844][T24204] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1776.053585][T24204] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1776.204846][T24204] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1776.287505][T24204] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1776.320226][ T1054] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1776.328075][ T1054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1776.523503][ T1054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1776.551641][ T1054] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1776.597698][T24139] veth0_vlan: entered promiscuous mode
[ 1776.676439][T24139] veth1_vlan: entered promiscuous mode
[ 1776.828788][T24139] veth0_macvtap: entered promiscuous mode
[ 1777.039587][T18531] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1777.088636][ T2421] bridge_slave_1: left allmulticast mode
[ 1777.103606][ T2421] bridge_slave_1: left promiscuous mode
[ 1777.110416][ T2421] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1777.150498][ T2421] bridge_slave_0: left allmulticast mode
[ 1777.173620][ T2421] bridge_slave_0: left promiscuous mode
[ 1777.187144][ T2421] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1777.232658][T18531] usb 2-1: config 0 has no interfaces?
[ 1777.247167][T18531] usb 2-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[ 1777.278829][T18531] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1777.323898][T18531] usb 2-1: Manufacturer: syz
[ 1777.346574][T18531] usb 2-1: config 0 descriptor??
[ 1777.744839][T22452] Bluetooth: hci2: command tx timeout
[ 1778.444674][ T2421] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1778.474346][ T2421] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1778.489877][ T2421] bond0 (unregistering): Released all slaves
[ 1778.538179][T24139] veth1_macvtap: entered promiscuous mode
[ 1778.751251][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.776393][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.791106][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.803806][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.814158][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.827955][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.838188][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.855664][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.865808][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.876895][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.887870][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.898622][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.900793][T24283] FAULT_INJECTION: forcing a failure.
[ 1778.900793][T24283] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1778.908800][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.935907][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.944283][T24283] CPU: 0 PID: 24283 Comm: syz.0.5726 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1778.946167][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.956051][T24283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1778.956067][T24283] Call Trace:
[ 1778.956078][T24283]  <TASK>
[ 1778.956087][T24283]  dump_stack_lvl+0x241/0x360
[ 1778.956122][T24283]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1778.956145][T24283]  ? __pfx__printk+0x10/0x10
[ 1778.956169][T24283]  ? __pfx_lock_release+0x10/0x10
[ 1778.956203][T24283]  ? __lock_acquire+0x1346/0x1fd0
[ 1778.956227][T24283]  should_fail_ex+0x3b0/0x4e0
[ 1778.956256][T24283]  _copy_from_iter+0x1f6/0x1960
[ 1778.967959][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.976774][T24283]  ? __pfx__copy_from_iter+0x10/0x10
[ 1778.976803][T24283]  ? tun_get_user+0x84c/0x4560
[ 1778.976826][T24283]  ? __pfx_lock_release+0x10/0x10
[ 1778.976850][T24283]  ? page_copy_sane+0x46/0x260
[ 1778.976870][T24283]  copy_page_from_iter+0x7a/0x100
[ 1778.980437][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1778.983105][T24283]  tun_get_user+0x1f48/0x4560
[ 1778.987997][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1778.993129][T24283]  ? tun_get_user+0x84c/0x4560
[ 1778.993164][T24283]  ? __pfx_tun_get_user+0x10/0x10
[ 1778.993193][T24283]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1778.993217][T24283]  ? tun_get+0x1e/0x2f0
[ 1778.993252][T24283]  ? tun_get+0x1e/0x2f0
[ 1778.993272][T24283]  ? tun_get+0x27d/0x2f0
[ 1778.993296][T24283]  tun_chr_write_iter+0x113/0x1f0
[ 1778.998851][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.002873][T24283]  vfs_write+0xa72/0xc90
[ 1779.002907][T24283]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1779.002932][T24283]  ? __pfx_vfs_write+0x10/0x10
[ 1779.002973][T24283]  ksys_write+0x1a0/0x2c0
[ 1779.008116][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.012640][T24283]  ? __pfx_ksys_write+0x10/0x10
[ 1779.012668][T24283]  ? do_syscall_64+0x100/0x230
[ 1779.012695][T24283]  ? do_syscall_64+0xb6/0x230
[ 1779.012720][T24283]  do_syscall_64+0xf3/0x230
[ 1779.017636][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.027319][T24283]  ? clear_bhb_loop+0x35/0x90
[ 1779.027356][T24283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1779.027380][T24283] RIP: 0033:0x7f40a457475f
[ 1779.027397][T24283] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[ 1779.027413][T24283] RSP: 002b:00007f40a52dc010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1779.027435][T24283] RAX: ffffffffffffffda RBX: 00007f40a4703f60 RCX: 00007f40a457475f
[ 1779.027449][T24283] RDX: 000000000000003a RSI: 0000000020000180 RDI: 00000000000000c8
[ 1779.027461][T24283] RBP: 00007f40a52dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1779.027475][T24283] R10: 000000000000003a R11: 0000000000000293 R12: 0000000000000001
[ 1779.027487][T24283] R13: 000000000000000b R14: 00007f40a4703f60 R15: 00007ffca23be568
[ 1779.027515][T24283]  </TASK>
[ 1779.281533][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.291852][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.302506][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.312427][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.323239][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.349323][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.369248][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.379104][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.392042][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.401975][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.412613][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.423863][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1779.434594][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.458095][ T9676] usb 2-1: USB disconnect, device number 66
[ 1779.463830][T24139] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1779.525076][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.561851][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.572804][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.585084][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.595622][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.614483][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.636193][T24285] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1779.639278][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.675119][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.685431][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.696723][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.706911][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.717739][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.779465][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.796928][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.820779][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.821481][T22452] Bluetooth: hci3: command tx timeout
[ 1779.831902][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.917207][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1779.970348][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1779.999280][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.029383][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.060474][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.089242][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.109279][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.129287][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.149249][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.183755][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.206745][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.220714][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.231009][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.241657][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.251806][T24139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1780.281732][T24139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.316649][T24139] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1780.438997][T24139] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1780.464053][T24139] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1780.478783][T24139] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1780.505162][T24139] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1780.539238][ T9689] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[ 1780.721738][ T9689] usb 2-1: config 0 has no interfaces?
[ 1780.769729][ T9689] usb 2-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[ 1780.795853][T24204] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1780.809280][ T9689] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1780.817321][ T9689] usb 2-1: Manufacturer: syz
[ 1780.873201][ T9689] usb 2-1: config 0 descriptor??
[ 1780.929541][ T2421] hsr_slave_0: left promiscuous mode
[ 1780.952802][ T2421] hsr_slave_1: left promiscuous mode
[ 1780.970789][ T2421] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1780.999970][ T2421] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1781.112363][ T2421] veth1_macvtap: left promiscuous mode
[ 1781.151671][ T2421] veth0_macvtap: left promiscuous mode
[ 1781.159891][ T2421] veth1_vlan: left promiscuous mode
[ 1781.168617][ T2421] veth0_vlan: left promiscuous mode
[ 1781.185493][T24310] xt_TCPMSS: Only works on TCP SYN packets
[ 1782.141520][T24313] xt_TCPMSS: Only works on TCP SYN packets
[ 1782.633936][T24317] overlayfs: missing 'lowerdir'
[ 1783.179707][T22452] Bluetooth: hci3: command tx timeout
[ 1783.578043][ T2421] team0 (unregistering): Port device team_slave_1 removed
[ 1783.605886][ T5620] usb 2-1: USB disconnect, device number 67
[ 1783.767614][T24329] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5740'.
[ 1783.808925][T24325] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1783.825395][ T2421] team0 (unregistering): Port device team_slave_0 removed
[ 1783.919889][T24330] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5740'.
[ 1784.033091][T24333] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1784.190990][T24335] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1785.218558][T24341] xt_TCPMSS: Only works on TCP SYN packets
[ 1785.674385][T24204] 8021q: adding VLAN 0 to HW filter on device team0
[ 1785.898272][ T9676] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1785.905529][ T9676] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1786.030956][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1786.038225][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1786.061481][T24353] FAULT_INJECTION: forcing a failure.
[ 1786.061481][T24353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1786.088247][T24353] CPU: 0 PID: 24353 Comm: syz.0.5747 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1786.098481][T24353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1786.108578][T24353] Call Trace:
[ 1786.111884][T24353]  <TASK>
[ 1786.115117][T24353]  dump_stack_lvl+0x241/0x360
[ 1786.120009][T24353]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1786.125264][T24353]  ? __pfx__printk+0x10/0x10
[ 1786.129891][T24353]  ? __pfx_lock_release+0x10/0x10
[ 1786.134915][T24353]  should_fail_ex+0x3b0/0x4e0
[ 1786.139602][T24353]  _copy_from_user+0x2f/0xe0
[ 1786.144313][T24353]  copy_msghdr_from_user+0xae/0x680
[ 1786.149520][T24353]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1786.155586][T24353]  __sys_sendmsg+0x23d/0x3a0
[ 1786.160187][T24353]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1786.165649][T24353]  ? vfs_write+0x7c4/0xc90
[ 1786.171088][T24353]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1786.177897][T24353]  ? do_syscall_64+0x100/0x230
[ 1786.182711][T24353]  ? do_syscall_64+0xb6/0x230
[ 1786.187399][T24353]  do_syscall_64+0xf3/0x230
[ 1786.191905][T24353]  ? clear_bhb_loop+0x35/0x90
[ 1786.196587][T24353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1786.202494][T24353] RIP: 0033:0x7f40a4575bd9
[ 1786.206910][T24353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1786.226514][T24353] RSP: 002b:00007f40a529a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1786.234929][T24353] RAX: ffffffffffffffda RBX: 00007f40a4704110 RCX: 00007f40a4575bd9
[ 1786.242896][T24353] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000008
[ 1786.250860][T24353] RBP: 00007f40a529a0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1786.258824][T24353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1786.266790][T24353] R13: 000000000000006e R14: 00007f40a4704110 R15: 00007ffca23be568
[ 1786.274864][T24353]  </TASK>
[ 1786.478847][ T2489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1786.498958][ T2489] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1786.640115][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1786.647996][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1786.844368][T24363] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5690'.
[ 1786.875874][T24363] netlink: 'syz.4.5690': attribute type 17 has an invalid length.
[ 1786.954825][T24204] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1787.175134][T24367] program syz.4.5750 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1787.191870][T24204] veth0_vlan: entered promiscuous mode
[ 1787.252973][T24204] veth1_vlan: entered promiscuous mode
[ 1787.319295][   T45] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[ 1787.332979][T24204] veth0_macvtap: entered promiscuous mode
[ 1787.375348][T24204] veth1_macvtap: entered promiscuous mode
[ 1787.416019][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.449572][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.469256][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.489615][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.519309][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.541195][   T45] usb 2-1: config 0 has no interfaces?
[ 1787.549463][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.565956][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.577906][   T45] usb 2-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[ 1787.597557][   T45] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1787.613450][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.631037][   T45] usb 2-1: Manufacturer: syz
[ 1787.641677][   T45] usb 2-1: config 0 descriptor??
[ 1787.646862][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.668235][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.681378][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.699301][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.713250][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.744540][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.767046][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.790693][T24372] netlink: 596 bytes leftover after parsing attributes in process `syz.3.5751'.
[ 1787.800179][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.820110][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.845102][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.865440][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.908135][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.932751][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1787.950730][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1787.969229][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.000233][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.027551][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.051833][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.072490][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.096122][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.116618][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.136559][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.165192][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.186866][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.207015][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.219895][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.233163][T24204] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1788.271586][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.312544][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.339405][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.366042][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.399233][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.419180][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.429056][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.472542][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.499395][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.519229][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.529103][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.568846][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.589281][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.612493][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.635909][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.659344][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.689444][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.711021][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.729237][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.749568][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.781695][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.799306][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.819349][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.832829][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.843243][ T9890] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[ 1788.851743][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.866762][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.880338][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.891579][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.902184][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.914446][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.925019][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.936339][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.948503][T24204] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.961445][T24204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1789.013105][T24204] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1789.053205][ T9890] usb 4-1: descriptor type invalid, skip
[ 1789.064808][ T9890] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1789.092148][T24204] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.106156][ T9890] usb 4-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.40
[ 1789.112627][T24204] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.119784][ T9890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.136784][T24204] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.148090][ T9890] usb 4-1: Product: syz
[ 1789.157101][T24204] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.158964][ T9890] usb 4-1: Manufacturer: syz
[ 1789.185986][ T9890] usb 4-1: SerialNumber: syz
[ 1789.232770][ T9890] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[ 1789.464106][ T2421] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.492988][ T2421] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1789.542184][T24391] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5759'.
[ 1789.587636][T24391] netlink: 'syz.4.5759': attribute type 17 has an invalid length.
[ 1789.622740][ T2489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.638206][ T2489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1789.640264][T16775] usb 2-1: USB disconnect, device number 68
[ 1789.899858][T22452] Bluetooth: hci3: command tx timeout
[ 1790.105977][T24398] vcan0: Master is either lo or non-ether device
[ 1790.399267][T18531] usb 3-1: new high-speed USB device number 86 using dummy_hcd
[ 1790.625114][T18531] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1790.655758][T18531] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1790.700349][T18531] usb 3-1: config 0 descriptor??
[ 1791.184306][T22452] Bluetooth: hci0: SCO packet for unknown connection handle 200
[ 1791.201401][T18531] ath6kl: Failed to submit usb control message: -71
[ 1791.220238][T18531] ath6kl: unable to send the bmi data to the device: -71
[ 1791.227344][T18531] ath6kl: Unable to send get target info: -71
[ 1791.249862][T18531] ath6kl: Failed to init ath6kl core: -71
[ 1791.256851][T18531] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1791.270434][T18531] usb 3-1: USB disconnect, device number 86
[ 1791.518479][T24427] netlink: 'syz.0.5770': attribute type 17 has an invalid length.
[ 1791.615909][ T5133] usb 4-1: USB disconnect, device number 77
[ 1793.821525][   T29] audit: type=1804 audit(1720093438.401:363): pid=24459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.5778" name="/newroot/1/bus/bus" dev="overlay" ino=31 res=1 errno=0
[ 1793.877654][   T29] audit: type=1804 audit(1720093438.401:364): pid=24459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5778" name="/newroot/1/bus/bus" dev="overlay" ino=31 res=1 errno=0
[ 1793.887074][T24460] netlink: 'syz.0.5782': attribute type 17 has an invalid length.
[ 1793.925343][T24457] netlink: 596 bytes leftover after parsing attributes in process `syz.4.5781'.
[ 1793.950969][   T29] audit: type=1804 audit(1720093438.401:365): pid=24459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5778" name="/newroot/1/bus/bus" dev="overlay" ino=31 res=1 errno=0
[ 1794.012954][   T29] audit: type=1804 audit(1720093438.401:366): pid=24459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5778" name="/newroot/1/bus/bus" dev="overlay" ino=31 res=1 errno=0
[ 1795.129332][T24471] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5786'.
[ 1795.889507][T24504] netlink: 596 bytes leftover after parsing attributes in process `syz.0.5794'.
[ 1795.989678][T24506] netlink: 'syz.0.5795': attribute type 17 has an invalid length.
[ 1796.223719][T24508] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5796'.
[ 1797.200566][T24535] netlink: 596 bytes leftover after parsing attributes in process `syz.3.5805'.
[ 1797.225615][T24543] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5806'.
[ 1797.250149][T24543] netlink: 'syz.4.5806': attribute type 17 has an invalid length.
[ 1797.304418][T24540] FAULT_INJECTION: forcing a failure.
[ 1797.304418][T24540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1797.353312][T24540] CPU: 0 PID: 24540 Comm: syz.0.5807 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1797.363530][T24540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1797.373620][T24540] Call Trace:
[ 1797.376917][T24540]  <TASK>
[ 1797.379858][T24540]  dump_stack_lvl+0x241/0x360
[ 1797.384544][T24540]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1797.389744][T24540]  ? __pfx__printk+0x10/0x10
[ 1797.394340][T24540]  ? __pfx_lock_release+0x10/0x10
[ 1797.399454][T24540]  should_fail_ex+0x3b0/0x4e0
[ 1797.404313][T24540]  _copy_from_user+0x2f/0xe0
[ 1797.408897][T24540]  memdup_user+0x64/0xc0
[ 1797.413143][T24540]  strndup_user+0x68/0xc0
[ 1797.417466][T24540]  __se_sys_mount+0xe2/0x3c0
[ 1797.422053][T24540]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1797.428031][T24540]  ? __pfx___se_sys_mount+0x10/0x10
[ 1797.433236][T24540]  ? do_syscall_64+0x100/0x230
[ 1797.438030][T24540]  ? __x64_sys_mount+0x20/0xc0
[ 1797.442787][T24540]  do_syscall_64+0xf3/0x230
[ 1797.447290][T24540]  ? clear_bhb_loop+0x35/0x90
[ 1797.451967][T24540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1797.457858][T24540] RIP: 0033:0x7f40a4575bd9
[ 1797.462370][T24540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1797.482071][T24540] RSP: 002b:00007f40a52dc048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1797.490489][T24540] RAX: ffffffffffffffda RBX: 00007f40a4703f60 RCX: 00007f40a4575bd9
[ 1797.498458][T24540] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000280
[ 1797.506429][T24540] RBP: 00007f40a52dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.514395][T24540] R10: 0000000002187017 R11: 0000000000000246 R12: 0000000000000001
[ 1797.522360][T24540] R13: 000000000000000b R14: 00007f40a4703f60 R15: 00007ffca23be568
[ 1797.530345][T24540]  </TASK>
[ 1797.685664][T24550] FAULT_INJECTION: forcing a failure.
[ 1797.685664][T24550] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1797.717868][T24550] CPU: 1 PID: 24550 Comm: syz.3.5810 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1797.728522][T24550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1797.739053][T24550] Call Trace:
[ 1797.742362][T24550]  <TASK>
[ 1797.745312][T24550]  dump_stack_lvl+0x241/0x360
[ 1797.750031][T24550]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1797.755272][T24550]  ? __pfx__printk+0x10/0x10
[ 1797.759897][T24550]  ? __pfx_lock_release+0x10/0x10
[ 1797.764992][T24550]  should_fail_ex+0x3b0/0x4e0
[ 1797.769724][T24550]  _copy_from_user+0x2f/0xe0
[ 1797.774439][T24550]  copy_msghdr_from_user+0xae/0x680
[ 1797.779680][T24550]  ? timespec64_add_safe+0x1be/0x220
[ 1797.784994][T24550]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1797.790842][T24550]  do_recvmmsg+0x40f/0xae0
[ 1797.795279][T24550]  ? mark_lock+0x9a/0x350
[ 1797.799631][T24550]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1797.804597][T24550]  ? __pfx___might_resched+0x10/0x10
[ 1797.809887][T24550]  ? __might_fault+0xaa/0x120
[ 1797.814570][T24550]  ? __pfx_lock_release+0x10/0x10
[ 1797.819695][T24550]  ? vfs_write+0x7c4/0xc90
[ 1797.824327][T24550]  ? get_timespec64+0x19c/0x280
[ 1797.829209][T24550]  __x64_sys_recvmmsg+0x1b8/0x250
[ 1797.834269][T24550]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1797.839811][T24550]  ? do_syscall_64+0x100/0x230
[ 1797.844586][T24550]  ? do_syscall_64+0xb6/0x230
[ 1797.849262][T24550]  do_syscall_64+0xf3/0x230
[ 1797.853851][T24550]  ? clear_bhb_loop+0x35/0x90
[ 1797.858545][T24550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1797.864539][T24550] RIP: 0033:0x7fb3e4775bd9
[ 1797.868958][T24550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1797.888592][T24550] RSP: 002b:00007fb3e55fd048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1797.897013][T24550] RAX: ffffffffffffffda RBX: 00007fb3e4903f60 RCX: 00007fb3e4775bd9
[ 1797.905067][T24550] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[ 1797.913029][T24550] RBP: 00007fb3e55fd0a0 R08: 0000000020003700 R09: 0000000000000000
[ 1797.921084][T24550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1797.929047][T24550] R13: 000000000000000b R14: 00007fb3e4903f60 R15: 00007ffef4a75758
[ 1797.937021][T24550]  </TASK>
[ 1798.853894][T24575] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5819'.
[ 1798.897672][T24575] netlink: 'syz.4.5819': attribute type 17 has an invalid length.
[ 1798.970395][   T45] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[ 1799.378147][   T45] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1799.599564][   T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1799.843507][   T45] usb 2-1: config 0 descriptor??
[ 1799.980003][T24597] FAULT_INJECTION: forcing a failure.
[ 1799.980003][T24597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1800.005595][T24597] CPU: 0 PID: 24597 Comm: syz.0.5825 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1800.015816][T24597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1800.021761][ T5148] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[ 1800.025871][T24597] Call Trace:
[ 1800.036849][T24597]  <TASK>
[ 1800.039801][T24597]  dump_stack_lvl+0x241/0x360
[ 1800.044518][T24597]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1800.049840][T24597]  ? __pfx__printk+0x10/0x10
[ 1800.054479][T24597]  should_fail_ex+0x3b0/0x4e0
[ 1800.059206][T24597]  prepare_alloc_pages+0x1da/0x5d0
[ 1800.064527][T24597]  __alloc_pages_noprof+0x166/0x6c0
[ 1800.069752][T24597]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1800.075511][T24597]  ? __pfx_lock_release+0x10/0x10
[ 1800.080578][T24597]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1800.086073][T24597]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1800.092090][T24597]  vma_alloc_folio_noprof+0xf3/0x1f0
[ 1800.097411][T24597]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1800.103629][T24597]  ? ima_match_policy+0x115/0x22f0
[ 1800.108760][T24597]  folio_prealloc+0x31/0x170
[ 1800.113388][T24597]  handle_pte_fault+0x257b/0x7090
[ 1800.118453][T24597]  ? mark_lock+0x9a/0x350
[ 1800.122818][T24597]  ? __pfx_handle_pte_fault+0x10/0x10
[ 1800.128216][T24597]  ? __lock_acquire+0x1346/0x1fd0
[ 1800.133298][T24597]  ? mt_find+0x226/0x850
[ 1800.137934][T24597]  handle_mm_fault+0xfb0/0x19d0
[ 1800.142980][T24597]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1800.148484][T24597]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1800.154854][T24597]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1800.160173][T24597]  exc_page_fault+0x2b9/0x8c0
[ 1800.164892][T24597]  asm_exc_page_fault+0x26/0x30
[ 1800.169790][T24597] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 1800.174186][T24562] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5813'.
[ 1800.175609][T24597] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 1800.175632][T24597] RSP: 0018:ffffc9000472f8b8 EFLAGS: 00050206
[ 1800.210919][T24597] RAX: 000000230000000b RBX: 0000000000000038 RCX: 0000000000000038
[ 1800.218918][T24597] RDX: 0000000000000000 RSI: ffff88801bbc8c00 RDI: 0000000020001480
[ 1800.226922][T24597] RBP: ffffc9000472fa30 R08: ffff88801bbc8c37 R09: 1ffff11003779186
[ 1800.228441][   T45] ath6kl: Failed to submit usb control message: -71
[ 1800.234926][T24597] R10: dffffc0000000000 R11: ffffed1003779187 R12: 1ffff920008e5f77
[ 1800.234950][T24597] R13: 0000000020001480 R14: ffffc9000472fbb8 R15: ffff88801bbc8c00
[ 1800.234986][T24597]  _copy_to_iter+0x26b/0x1960
[ 1800.235010][T24597]  ? __virt_addr_valid+0x183/0x520
[ 1800.235035][T24597]  ? __pfx_lock_release+0x10/0x10
[ 1800.235056][T24597]  ? skb_recv_datagram+0x26c/0x310
[ 1800.235086][T24597]  ? __pfx__copy_to_iter+0x10/0x10
[ 1800.235109][T24597]  ? __virt_addr_valid+0x183/0x520
[ 1800.235132][T24597]  ? __virt_addr_valid+0x183/0x520
[ 1800.235154][T24597]  ? __virt_addr_valid+0x44e/0x520
[ 1800.235181][T24597]  ? __check_object_size+0x49c/0x900
[ 1800.235210][T24597]  bcm_recvmsg+0x171/0x630
[ 1800.235238][T24597]  ? __pfx_bcm_recvmsg+0x10/0x10
[ 1800.235262][T24597]  ? get_pid_task+0x23/0x1f0
[ 1800.235284][T24597]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[ 1800.272028][ T5148] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 16
[ 1800.274053][T24597]  ? security_socket_recvmsg+0x90/0xb0
[ 1800.274090][T24597]  ? __pfx_bcm_recvmsg+0x10/0x10
[ 1800.293089][ T5148] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1800.294628][T24597]  sock_recvmsg+0x22f/0x280
[ 1800.301768][   T45] ath6kl: unable to send the bmi data to the device: -71
[ 1800.305018][T24597]  sock_read_iter+0x2ca/0x3e0
[ 1800.329579][ T5148] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1800.337237][T24597]  ? __pfx_sock_read_iter+0x10/0x10
[ 1800.337282][T24597]  ? bpf_lsm_file_permission+0x9/0x10
[ 1800.344974][   T45] ath6kl: Unable to send get target info: -71
[ 1800.347625][T24597]  ? security_file_permission+0x7f/0xa0
[ 1800.347660][T24597]  vfs_read+0x9bd/0xbc0
[ 1800.395143][   T45] ath6kl: Failed to init ath6kl core: -71
[ 1800.397421][T24597]  ? __pfx_lock_release+0x10/0x10
[ 1800.397456][T24597]  ? __pfx_vfs_read+0x10/0x10
[ 1800.422716][T24597]  ksys_read+0x1a0/0x2c0
[ 1800.427009][T24597]  ? __pfx_ksys_read+0x10/0x10
[ 1800.431914][T24597]  ? do_syscall_64+0x100/0x230
[ 1800.436727][T24597]  ? do_syscall_64+0xb6/0x230
[ 1800.438686][ T5148] usb 4-1: config 0 descriptor??
[ 1800.441424][T24597]  do_syscall_64+0xf3/0x230
[ 1800.441458][T24597]  ? clear_bhb_loop+0x35/0x90
[ 1800.441486][T24597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.441510][T24597] RIP: 0033:0x7f40a4575bd9
[ 1800.466289][   T45] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1800.467854][T24597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1800.467875][T24597] RSP: 002b:00007f40a52dc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1800.467908][T24597] RAX: ffffffffffffffda RBX: 00007f40a4703f60 RCX: 00007f40a4575bd9
[ 1800.513044][T24597] RDX: 0000000000000fe2 RSI: 0000000020001480 RDI: 0000000000000003
[ 1800.521039][T24597] RBP: 00007f40a52dc0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1800.529043][T24597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1800.537135][T24597] R13: 000000000000000b R14: 00007f40a4703f60 R15: 00007ffca23be568
[ 1800.545159][T24597]  </TASK>
[ 1800.546799][   T45] usb 2-1: USB disconnect, device number 69
[ 1801.116971][T24610] FAULT_INJECTION: forcing a failure.
[ 1801.116971][T24610] name failslab, interval 1, probability 0, space 0, times 0
[ 1801.159867][T24610] CPU: 0 PID: 24610 Comm: syz.1.5828 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1801.170098][T24610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1801.180179][T24610] Call Trace:
[ 1801.183479][T24610]  <TASK>
[ 1801.186426][T24610]  dump_stack_lvl+0x241/0x360
[ 1801.191145][T24610]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1801.196377][T24610]  ? __pfx__printk+0x10/0x10
[ 1801.201001][T24610]  ? __pfx___might_resched+0x10/0x10
[ 1801.206306][T24610]  ? prepend_path+0x2f/0xbe0
[ 1801.212672][T24610]  should_fail_ex+0x3b0/0x4e0
[ 1801.217406][T24610]  ? tomoyo_encode+0x26f/0x540
[ 1801.222194][T24610]  should_failslab+0x9/0x20
[ 1801.226738][T24610]  __kmalloc_noprof+0xd8/0x400
[ 1801.231513][T24610]  tomoyo_encode+0x26f/0x540
[ 1801.236114][T24610]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 1801.241759][T24610]  tomoyo_path_number_perm+0x23a/0x880
[ 1801.247223][T24610]  ? tomoyo_path_number_perm+0x208/0x880
[ 1801.252958][T24610]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1801.259011][T24610]  ? __fget_files+0x29/0x470
[ 1801.264169][T24610]  ? __fget_files+0x3f6/0x470
[ 1801.268941][T24610]  ? __fget_files+0x29/0x470
[ 1801.273537][T24610]  security_file_ioctl+0x75/0xb0
[ 1801.278476][T24610]  __se_sys_ioctl+0x47/0x170
[ 1801.283071][T24610]  do_syscall_64+0xf3/0x230
[ 1801.287581][T24610]  ? clear_bhb_loop+0x35/0x90
[ 1801.292283][T24610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1801.298320][T24610] RIP: 0033:0x7f4607575bd9
[ 1801.302734][T24610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1801.322438][T24610] RSP: 002b:00007f460837c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1801.330856][T24610] RAX: ffffffffffffffda RBX: 00007f4607703f60 RCX: 00007f4607575bd9
[ 1801.339176][T24610] RDX: 0000000020000040 RSI: 00000000000007a6 RDI: 0000000000000003
[ 1801.347149][T24610] RBP: 00007f460837c0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1801.355128][T24610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1801.363100][T24610] R13: 000000000000000b R14: 00007f4607703f60 R15: 00007ffeabe0fa68
[ 1801.371087][T24610]  </TASK>
[ 1801.432245][T24610] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1802.271694][ T5148] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[ 1802.389586][ T5148] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[ 1802.429751][ T5148] [drm:udl_init] *ERROR* Selecting channel failed
[ 1802.516228][ T5148] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2
[ 1802.539293][ T5148] [drm] Initialized udl on minor 2
[ 1802.568738][ T5148] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1802.712510][ T5148] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[ 1802.742814][   T45] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1803.444721][   T45] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1803.466026][ T5148] usb 4-1: USB disconnect, device number 78
[ 1803.717996][   T45] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[ 1804.548889][T18554] Bluetooth: hci4: command 0x0406 tx timeout
[ 1804.974964][T24627] block nbd0: shutting down sockets
[ 1805.280337][T24638] netlink: 596 bytes leftover after parsing attributes in process `syz.1.5836'.
[ 1805.609674][ T5620] usb 5-1: new high-speed USB device number 93 using dummy_hcd
[ 1805.932696][ T5620] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1806.157675][ T5620] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1806.871368][ T5620] usb 5-1: config 0 descriptor??
[ 1807.133514][T24640] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5837'.
[ 1807.179387][ T4867] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1807.197760][ T5620] ath6kl: Failed to submit usb control message: -71
[ 1807.221155][ T5620] ath6kl: unable to send the bmi data to the device: -71
[ 1807.248280][ T5620] ath6kl: Unable to send get target info: -71
[ 1807.264132][ T5620] ath6kl: Failed to init ath6kl core: -71
[ 1807.283109][ T5620] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1807.321712][ T5620] usb 5-1: USB disconnect, device number 93
[ 1807.412764][ T4867] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 16
[ 1807.440345][ T4867] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1807.462412][ T4867] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.482183][ T4867] usb 2-1: config 0 descriptor??
[ 1808.764572][ T4867] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[ 1808.798996][ T4867] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[ 1808.829669][ T4867] [drm:udl_init] *ERROR* Selecting channel failed
[ 1808.857720][T24680] block nbd0: shutting down sockets
[ 1808.914047][ T4867] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2
[ 1808.922631][ T4867] [drm] Initialized udl on minor 2
[ 1808.936440][ T4867] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1808.951865][ T4867] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1808.967289][ T5620] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1808.989736][ T4867] usb 2-1: USB disconnect, device number 70
[ 1809.007192][ T5620] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[ 1809.029572][ T5620] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1809.096429][T24693] netlink: 596 bytes leftover after parsing attributes in process `syz.1.5853'.
[ 1810.727035][   T29] audit: type=1326 audit(1720093455.301:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1810.835213][T24719] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5861'.
[ 1810.853328][T24719] netlink: 'syz.1.5861': attribute type 17 has an invalid length.
[ 1811.079417][ T9890] usb 5-1: new high-speed USB device number 94 using dummy_hcd
[ 1811.440442][   T29] audit: type=1326 audit(1720093456.011:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1811.690963][   T45] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[ 1811.775127][   T29] audit: type=1326 audit(1720093456.041:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1811.849242][   T29] audit: type=1326 audit(1720093456.041:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1811.874190][   T29] audit: type=1326 audit(1720093456.061:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1811.906004][   T29] audit: type=1326 audit(1720093456.061:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24711 comm="syz.0.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a4575bd9 code=0x7fc00000
[ 1811.933314][ T9890] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1811.943082][ T9890] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1811.980376][ T9890] usb 5-1: config 0 descriptor??
[ 1811.991481][   T45] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 16
[ 1812.019345][   T45] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1812.028526][   T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1812.062968][   T45] usb 2-1: config 0 descriptor??
[ 1812.231217][T24717] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5859'.
[ 1812.256403][ T9890] ath6kl: Failed to submit usb control message: -71
[ 1812.297958][ T9890] ath6kl: unable to send the bmi data to the device: -71
[ 1812.322175][ T9890] ath6kl: Unable to send get target info: -71
[ 1812.356194][ T9890] ath6kl: Failed to init ath6kl core: -71
[ 1812.371857][ T9890] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1812.409973][ T9890] usb 5-1: USB disconnect, device number 94
[ 1812.597942][T24730] netlink: 'syz.0.5865': attribute type 4 has an invalid length.
[ 1812.678139][T24737] netlink: 'syz.0.5865': attribute type 4 has an invalid length.
[ 1814.019358][   T45] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[ 1814.027937][   T45] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[ 1814.098485][   T45] [drm:udl_init] *ERROR* Selecting channel failed
[ 1814.147631][   T45] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2
[ 1814.173708][   T45] [drm] Initialized udl on minor 2
[ 1814.184307][   T45] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1814.209595][   T45] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1814.342257][   T45] usb 2-1: USB disconnect, device number 71
[ 1814.367671][ T4867] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1814.424249][ T4867] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1815.802180][T24764] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5873'.
[ 1815.846323][T24764] netlink: 'syz.3.5873': attribute type 17 has an invalid length.
[ 1816.310389][T24771] 9pnet_fd: Insufficient options for proto=fd
[ 1817.439267][ T4867] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[ 1817.629343][ T9890] usb 5-1: new high-speed USB device number 95 using dummy_hcd
[ 1817.791363][ T4867] usb 4-1: Using ep0 maxpacket: 32
[ 1817.814180][ T4867] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1818.049062][ T4867] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1818.260566][ T4867] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1818.351637][ T4867] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1818.560844][ T9890] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1818.570155][ T4867] usb 4-1: config 0 descriptor??
[ 1818.570968][T24773] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1818.581216][ T9890] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1818.586499][ T4867] hub 4-1:0.0: USB hub found
[ 1818.626323][ T9890] usb 5-1: config 0 descriptor??
[ 1818.935261][T24775] netlink: 'syz.4.5876': attribute type 72 has an invalid length.
[ 1818.995602][T24775] netlink: 'syz.4.5876': attribute type 3 has an invalid length.
[ 1819.369364][ T9890] ath6kl: Failed to submit usb control message: -71
[ 1819.384924][ T9890] ath6kl: unable to send the bmi data to the device: -71
[ 1819.392430][ T9890] ath6kl: Unable to send get target info: -71
[ 1819.399836][ T9890] ath6kl: Failed to init ath6kl core: -71
[ 1819.410223][ T9890] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1819.423384][ T9890] usb 5-1: USB disconnect, device number 95
[ 1819.611996][ T4867] hub 4-1:0.0: 2 ports detected
[ 1819.640195][ T4867] hub 4-1:0.0: insufficient power available to use all downstream ports
[ 1820.169755][T22451] Bluetooth: hci3: SCO packet for unknown connection handle 200
[ 1820.514340][   T29] audit: type=1804 audit(1720093465.091:373): pid=24802 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.5882" name="/newroot/18/bus/bus" dev="overlay" ino=132 res=1 errno=0
[ 1820.628321][   T29] audit: type=1804 audit(1720093465.131:374): pid=24801 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5882" name="/newroot/18/bus/bus" dev="overlay" ino=132 res=1 errno=0
[ 1820.722190][   T29] audit: type=1804 audit(1720093465.131:375): pid=24801 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5882" name="/newroot/18/bus/bus" dev="overlay" ino=132 res=1 errno=0
[ 1820.794743][   T29] audit: type=1804 audit(1720093465.131:376): pid=24801 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5882" name="/newroot/18/bus/bus" dev="overlay" ino=132 res=1 errno=0
[ 1820.822979][ T4867] hub 4-1:0.0: hub_hub_status failed (err = -32)
[ 1820.861782][ T4867] hub 4-1:0.0: config failed, can't get hub status (err -32)
[ 1820.968437][ T4867] usbhid 4-1:0.0: can't add hid device: -32
[ 1821.048674][ T4867] usbhid 4-1:0.0: probe with driver usbhid failed with error -32
[ 1821.150878][T24817] ipt_REJECT: TCP_RESET invalid for non-tcp
[ 1821.201593][T24818] syz.0.5887 (24818): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1822.809454][ T9676] usb 1-1: new high-speed USB device number 79 using dummy_hcd
[ 1823.019496][ T9676] usb 1-1: Using ep0 maxpacket: 32
[ 1823.126241][ T9676] usb 1-1: config 1 interface 0 altsetting 253 bulk endpoint 0x3 has invalid maxpacket 64
[ 1823.277846][ T9676] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1823.389258][ T9676] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1823.423383][ T9676] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1823.493735][ T9676] usb 1-1: Product: syz
[ 1823.503109][T22451] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1823.503135][ T9676] usb 1-1: Manufacturer: syz
[ 1823.516709][T22451] Bluetooth: hci1: Injecting HCI hardware error event
[ 1823.526808][T22452] Bluetooth: hci1: hardware error 0x00
[ 1823.537875][ T9676] usb 1-1: SerialNumber: syz
[ 1823.661449][T24829] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1824.914880][ T9676] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71
[ 1824.993527][ T9676] usb 1-1: USB disconnect, device number 79
[ 1825.979445][T22452] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1826.102639][   T29] audit: type=1804 audit(1720093470.651:377): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.5894" name="/newroot/20/bus/bus" dev="overlay" ino=152 res=1 errno=0
[ 1826.106507][ T5620] usb 4-1: reset high-speed USB device number 79 using dummy_hcd
[ 1826.157688][ T5620] usb 4-1: device reset changed ep0 maxpacket size!
[ 1826.180783][ T5620] usb 4-1: USB disconnect, device number 79
[ 1826.301003][   T29] audit: type=1804 audit(1720093470.661:378): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5894" name="/newroot/20/bus/bus" dev="overlay" ino=152 res=1 errno=0
[ 1826.673751][   T29] audit: type=1804 audit(1720093470.841:379): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5894" name="/newroot/20/bus/bus" dev="overlay" ino=152 res=1 errno=0
[ 1826.742775][   T29] audit: type=1804 audit(1720093470.911:380): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.5894" name="/newroot/20/bus/bus" dev="overlay" ino=152 res=1 errno=0
[ 1826.796035][   T29] audit: type=1800 audit(1720093470.911:381): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.5894" name="bus" dev="overlay" ino=152 res=0 errno=0
[ 1826.843128][ T5620] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[ 1827.081426][ T5620] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1827.449462][ T9890] usb 3-1: new high-speed USB device number 87 using dummy_hcd
[ 1827.751817][ T9890] usb 3-1: device descriptor read/64, error -71
[ 1827.929251][ T5620] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1827.939889][ T5620] usb 4-1: config 0 descriptor??
[ 1828.109367][ T9890] usb 3-1: new high-speed USB device number 88 using dummy_hcd
[ 1828.199777][T24859] netlink: 'syz.3.5895': attribute type 72 has an invalid length.
[ 1828.207944][T24859] netlink: 'syz.3.5895': attribute type 3 has an invalid length.
[ 1828.230599][ T5620] ath6kl: Failed to submit usb control message: -71
[ 1828.238033][ T5620] ath6kl: unable to send the bmi data to the device: -71
[ 1828.263388][ T9890] usb 3-1: device descriptor read/64, error -71
[ 1828.283287][ T5620] ath6kl: Unable to send get target info: -71
[ 1828.304369][ T5620] ath6kl: Failed to init ath6kl core: -71
[ 1828.319931][T24886] IPVS: starting estimator thread 0...
[ 1828.320396][ T5620] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1828.404628][ T9890] usb usb3-port1: attempt power cycle
[ 1828.414276][ T5620] usb 4-1: USB disconnect, device number 80
[ 1828.429380][T24901] IPVS: using max 20 ests per chain, 48000 per kthread
[ 1829.046016][ T9890] usb 3-1: new high-speed USB device number 89 using dummy_hcd
[ 1829.080869][ T9890] usb 3-1: device descriptor read/8, error -71
[ 1829.286081][T22452] Bluetooth: hci3: SCO packet for unknown connection handle 200
[ 1829.681228][ T9890] usb 3-1: new high-speed USB device number 90 using dummy_hcd
[ 1829.883650][ T9890] usb 3-1: device descriptor read/8, error -71
[ 1830.038208][ T9890] usb usb3-port1: unable to enumerate USB device
[ 1831.147667][T24932] netlink: 'syz.0.5913': attribute type 13 has an invalid length.
[ 1831.200908][T24936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5914'.
[ 1831.235496][T24932] netlink: 288 bytes leftover after parsing attributes in process `syz.0.5913'.
[ 1831.378749][T24936] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1831.517573][T24946] xt_TCPMSS: Only works on TCP SYN packets
[ 1832.377018][   T45] usb 5-1: new high-speed USB device number 96 using dummy_hcd
[ 1833.038164][   T45] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1833.065359][   T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1833.092766][   T45] usb 5-1: config 0 descriptor??
[ 1835.017364][   T45] ath6kl: Failed to submit usb control message: -71
[ 1835.061325][T24972] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5924'.
[ 1835.070666][   T45] ath6kl: unable to send the bmi data to the device: -71
[ 1835.101307][   T45] ath6kl: Unable to send get target info: -71
[ 1835.124539][   T45] ath6kl: Failed to init ath6kl core: -71
[ 1835.163602][   T45] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1835.219676][T20704] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[ 1835.299621][ T9890] usb 3-1: new high-speed USB device number 91 using dummy_hcd
[ 1835.310938][   T45] usb 5-1: USB disconnect, device number 96
[ 1835.390096][T20704] usb 4-1: device descriptor read/64, error -71
[ 1835.564018][ T9890] usb 3-1: device descriptor read/64, error -71
[ 1835.729260][T20704] usb 4-1: new high-speed USB device number 82 using dummy_hcd
[ 1835.850153][ T9890] usb 3-1: new high-speed USB device number 92 using dummy_hcd
[ 1835.912281][T20704] usb 4-1: device descriptor read/64, error -71
[ 1836.021236][ T9890] usb 3-1: device descriptor read/64, error -71
[ 1836.072064][T20704] usb usb4-port1: attempt power cycle
[ 1836.151384][T24999] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5931'.
[ 1836.173891][T24998] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5930'.
[ 1836.209614][ T9890] usb usb3-port1: attempt power cycle
[ 1836.265454][T24999] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1836.635360][T25002] netlink: 'syz.2.5932': attribute type 8 has an invalid length.
[ 1837.007229][T25016] ufs: You didn't specify the type of your ufs filesystem
[ 1837.007229][T25016] 
[ 1837.007229][T25016] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1837.007229][T25016] 
[ 1837.007229][T25016] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1837.039901][T25016] ufs: ufstype=old is supported read-only
[ 1837.045979][T25016] ufs: ufs_fill_super(): bad magic number
[ 1837.479344][ T5620] usb 3-1: new high-speed USB device number 94 using dummy_hcd
[ 1837.529311][ T4867] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[ 1837.679291][ T5620] usb 3-1: Using ep0 maxpacket: 32
[ 1837.709044][ T5620] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1837.731127][T18531] usb 5-1: new high-speed USB device number 97 using dummy_hcd
[ 1837.769715][ T4867] usb 4-1: Using ep0 maxpacket: 32
[ 1837.800216][ T4867] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1837.817622][ T5620] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1837.859368][ T4867] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1837.887315][ T5620] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1837.929417][T18531] usb 5-1: device descriptor read/64, error -71
[ 1837.948076][ T5620] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1837.958575][ T4867] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1838.016849][ T4867] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1838.032676][ T5620] usb 3-1: config 0 descriptor??
[ 1838.038989][T25018] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1838.066353][ T5620] hub 3-1:0.0: USB hub found
[ 1838.108494][ T4867] usb 4-1: config 0 descriptor??
[ 1838.149785][T25020] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1838.205526][T25033] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1838.209425][ T4867] hub 4-1:0.0: USB hub found
[ 1838.224329][T18531] usb 5-1: new high-speed USB device number 98 using dummy_hcd
[ 1838.289393][ T5620] hub 3-1:0.0: 2 ports detected
[ 1838.308496][ T5620] hub 3-1:0.0: insufficient power available to use all downstream ports
[ 1838.352512][T25033] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1838.389256][T20704] usb 1-1: new high-speed USB device number 80 using dummy_hcd
[ 1838.408285][ T4867] hub 4-1:0.0: 2 ports detected
[ 1838.421683][T18531] usb 5-1: device descriptor read/64, error -71
[ 1838.428443][ T4867] hub 4-1:0.0: insufficient power available to use all downstream ports
[ 1838.540708][T18531] usb usb5-port1: attempt power cycle
[ 1838.547921][T25033] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1838.569355][T20704] usb 1-1: Using ep0 maxpacket: 16
[ 1838.590468][T20704] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1838.629383][T20704] usb 1-1: config 1 interface 0 altsetting 128 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1838.679394][T20704] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1838.694735][T20704] usb 1-1: New USB device found, idVendor=056a, idProduct=0061, bcdDevice= 0.40
[ 1838.745208][T20704] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1838.774172][T20704] usb 1-1: Product: ь
[ 1838.804025][T20704] usb 1-1: SerialNumber: syz
[ 1838.824829][T25033] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1838.950987][T18531] usb 5-1: new high-speed USB device number 99 using dummy_hcd
[ 1839.021559][T18531] usb 5-1: device descriptor read/8, error -71
[ 1839.256309][T25033] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1839.309951][T18531] usb 5-1: new high-speed USB device number 100 using dummy_hcd
[ 1839.417522][T25033] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1839.421281][ T5620] hub 3-1:0.0: hub_hub_status failed (err = -32)
[ 1839.434392][T18531] usb 5-1: device descriptor read/8, error -71
[ 1839.484614][ T5620] hub 3-1:0.0: config failed, can't get hub status (err -32)
[ 1839.507747][ T4867] hub 4-1:0.0: hub_hub_status failed (err = -32)
[ 1839.536318][ T5620] usbhid 3-1:0.0: can't add hid device: -32
[ 1839.541226][T25033] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1839.542767][ T4867] hub 4-1:0.0: config failed, can't get hub status (err -32)
[ 1839.598706][ T5620] usbhid 3-1:0.0: probe with driver usbhid failed with error -32
[ 1839.616660][T18531] usb usb5-port1: unable to enumerate USB device
[ 1839.636813][T25033] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1839.685609][ T4867] usbhid 4-1:0.0: can't add hid device: -32
[ 1839.707278][T20704] usbhid 1-1:1.0: can't add hid device: -71
[ 1839.732389][ T4867] usbhid 4-1:0.0: probe with driver usbhid failed with error -32
[ 1839.755969][T20704] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[ 1839.799708][T20704] usb 1-1: USB disconnect, device number 80
[ 1840.749801][T20704] usb 1-1: new high-speed USB device number 81 using dummy_hcd
[ 1840.800107][T25058] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5947'.
[ 1840.940473][T20704] usb 1-1: device descriptor read/64, error -71
[ 1840.968266][T25058] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1841.261145][T20704] usb 1-1: new high-speed USB device number 82 using dummy_hcd
[ 1841.267599][ T5620] usb 3-1: USB disconnect, device number 94
[ 1841.329663][T18531] usb 4-1: USB disconnect, device number 84
[ 1841.508873][T25072] ufs: You didn't specify the type of your ufs filesystem
[ 1841.508873][T25072] 
[ 1841.508873][T25072] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1841.508873][T25072] 
[ 1841.508873][T25072] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1841.540722][T25072] ufs: ufstype=old is supported read-only
[ 1841.546646][T25072] ufs: ufs_fill_super(): bad magic number
[ 1841.561473][T20704] usb 1-1: device descriptor read/64, error -71
[ 1841.689663][T20704] usb usb1-port1: attempt power cycle
[ 1842.228071][T20704] usb 1-1: new high-speed USB device number 83 using dummy_hcd
[ 1842.681229][T22452] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1842.691690][T22452] Bluetooth: hci2: Injecting HCI hardware error event
[ 1842.706831][T22452] Bluetooth: hci2: hardware error 0x00
[ 1842.930087][T20704] usb 1-1: device descriptor read/8, error -71
[ 1844.866366][T22452] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1845.310563][T25105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5961'.
[ 1845.370668][T20704] usb 1-1: new high-speed USB device number 84 using dummy_hcd
[ 1845.428687][T20704] usb 1-1: Using ep0 maxpacket: 32
[ 1845.436609][T25105] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5961'.
[ 1845.458643][T20704] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1845.517378][T20704] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1845.545255][T20704] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1845.564663][T20704] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1845.597991][T25105] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1845.615208][T20704] usb 1-1: config 0 descriptor??
[ 1845.637704][T25102] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1845.648628][T20704] hub 1-1:0.0: USB hub found
[ 1845.855549][T20704] hub 1-1:0.0: 2 ports detected
[ 1845.871358][T20704] hub 1-1:0.0: insufficient power available to use all downstream ports
[ 1846.004999][T25108] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5956'.
[ 1846.055731][T25109] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5956'.
[ 1846.702470][T25120] ufs: You didn't specify the type of your ufs filesystem
[ 1846.702470][T25120] 
[ 1846.702470][T25120] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1846.702470][T25120] 
[ 1846.702470][T25120] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1846.735096][T25120] ufs: ufstype=old is supported read-only
[ 1846.742564][T25120] ufs: ufs_fill_super(): bad magic number
[ 1847.101836][T20704] hub 1-1:0.0: hub_hub_status failed (err = -32)
[ 1847.110788][T20704] hub 1-1:0.0: config failed, can't get hub status (err -32)
[ 1847.137631][T20704] usbhid 1-1:0.0: can't add hid device: -32
[ 1847.144908][T20704] usbhid 1-1:0.0: probe with driver usbhid failed with error -32
[ 1847.410427][T22452] Bluetooth: hci3: unexpected event 0x2f length: 509 > 260
[ 1848.666193][T24635] usb 1-1: USB disconnect, device number 84
[ 1849.804193][T25150] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1849.901461][T22452] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1849.912807][T22452] Bluetooth: hci0: Injecting HCI hardware error event
[ 1849.937229][T22452] Bluetooth: hci0: hardware error 0x00
[ 1851.102876][T18531] usb 5-1: new high-speed USB device number 101 using dummy_hcd
[ 1853.382657][T25160] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5975'.
[ 1853.590294][T25164] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5975'.
[ 1853.678428][T25164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1853.751744][T25160] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1854.301835][T22452] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1854.339267][ T9689] usb 4-1: new high-speed USB device number 85 using dummy_hcd
[ 1854.469727][T18531] usb 5-1: device descriptor read/64, error -71
[ 1854.542985][ T9689] usb 4-1: Using ep0 maxpacket: 32
[ 1854.567214][ T9689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1854.606900][ T9689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1854.649326][ T9689] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1854.669607][ T9689] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1854.689934][ T9689] usb 4-1: config 0 descriptor??
[ 1854.705914][T25179] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1854.717237][ T9689] hub 4-1:0.0: USB hub found
[ 1854.749723][T18531] usb 5-1: new high-speed USB device number 102 using dummy_hcd
[ 1855.078965][ T9689] hub 4-1:0.0: 2 ports detected
[ 1855.085753][ T9689] hub 4-1:0.0: insufficient power available to use all downstream ports
[ 1855.098952][   T29] audit: type=1804 audit(1720093499.671:382): pid=25188 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.5983" name="/newroot/116/bus/bus" dev="overlay" ino=705 res=1 errno=0
[ 1855.101320][T18531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1855.233535][T25189] xt_hashlimit: max too large, truncated to 1048576
[ 1855.976712][T18531] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1855.986147][   T29] audit: type=1804 audit(1720093499.671:383): pid=25188 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.5983" name="/newroot/116/bus/bus" dev="overlay" ino=705 res=1 errno=0
[ 1856.029258][T18531] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1856.039289][   T29] audit: type=1804 audit(1720093499.681:384): pid=25188 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.5983" name="/newroot/116/bus/bus" dev="overlay" ino=705 res=1 errno=0
[ 1856.066022][T18531] usb 5-1: config 0 descriptor??
[ 1856.092240][   T29] audit: type=1804 audit(1720093499.681:385): pid=25188 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.5983" name="/newroot/116/bus/bus" dev="overlay" ino=705 res=1 errno=0
[ 1856.094664][T25195] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1856.169061][ T9689] hub 4-1:0.0: hub_hub_status failed (err = -32)
[ 1856.175849][ T9689] hub 4-1:0.0: config failed, can't get hub status (err -32)
[ 1856.217188][ T9689] usbhid 4-1:0.0: can't add hid device: -32
[ 1856.449457][T20704] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[ 1856.951834][   T29] audit: type=1326 audit(1720093501.521:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25171 comm="syz.4.5979" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6ea9d75bd9 code=0x0
[ 1857.242654][T20704] usb 2-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=e6.af
[ 1857.260497][T20704] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1857.469965][ T9689] usbhid 4-1:0.0: probe with driver usbhid failed with error -32
[ 1857.681274][T20704] usb 2-1: config 0 descriptor??
[ 1857.724288][T20704] gspca_main: sonixj-2.14.0 probing 0c45:614a
[ 1858.242623][T20704] gspca_sonixj: reg_w1 err -110
[ 1858.248891][T20704] sonixj 2-1:0.0: probe with driver sonixj failed with error -110
[ 1859.311751][T24635] usb 3-1: new high-speed USB device number 95 using dummy_hcd
[ 1859.434148][T18531] usbhid 5-1:0.0: can't add hid device: -71
[ 1859.440525][T18531] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1859.510716][T18531] usb 5-1: USB disconnect, device number 102
[ 1859.655815][ T9689] usb 2-1: USB disconnect, device number 72
[ 1860.099276][T25153] usb 1-1: new high-speed USB device number 85 using dummy_hcd
[ 1860.341904][T25153] usb 1-1: too many configurations: 248, using maximum allowed: 8
[ 1860.377939][T25153] usb 1-1: New USB device found, idVendor=19d2, idProduct=75bc, bcdDevice=9b.81
[ 1860.396087][T25230] FAULT_INJECTION: forcing a failure.
[ 1860.396087][T25230] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.411358][T25153] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=197
[ 1860.419983][T25230] CPU: 0 PID: 25230 Comm: syz.1.5996 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1860.430147][T25230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1860.441429][T25230] Call Trace:
[ 1860.444704][T25230]  <TASK>
[ 1860.447629][T25230]  dump_stack_lvl+0x241/0x360
[ 1860.452331][T25230]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1860.457640][T25230]  ? __pfx__printk+0x10/0x10
[ 1860.462247][T25230]  ? __pfx___might_resched+0x10/0x10
[ 1860.467583][T25230]  should_fail_ex+0x3b0/0x4e0
[ 1860.472272][T25230]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1860.477988][T25230]  should_failslab+0x9/0x20
[ 1860.482491][T25230]  __kmalloc_noprof+0xd8/0x400
[ 1860.487250][T25230]  ? kfree+0x4e/0x360
[ 1860.491234][T25230]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1860.496784][T25230]  tomoyo_check_open_permission+0x255/0x500
[ 1860.502686][T25230]  ? __lock_acquire+0x1346/0x1fd0
[ 1860.507741][T25230]  ? tomoyo_check_open_permission+0x204/0x500
[ 1860.513852][T25230]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1860.520304][T25230]  ? tomoyo_file_open+0x168/0x220
[ 1860.525357][T25230]  security_file_open+0x6a/0x750
[ 1860.530317][T25230]  do_dentry_open+0x38e/0x1450
[ 1860.535097][T25230]  ? vfs_open+0x34/0x330
[ 1860.539353][T25230]  vfs_open+0x3e/0x330
[ 1860.543438][T25230]  path_openat+0x2c01/0x35f0
[ 1860.548035][T25230]  ? mark_lock+0x9a/0x350
[ 1860.552367][T25230]  ? __lock_acquire+0x1346/0x1fd0
[ 1860.557396][T25230]  ? __lock_acquire+0x1346/0x1fd0
[ 1860.562418][T25230]  ? __pfx_path_openat+0x10/0x10
[ 1860.567370][T25230]  do_filp_open+0x235/0x490
[ 1860.571876][T25230]  ? __pfx_do_filp_open+0x10/0x10
[ 1860.576924][T25230]  ? _raw_spin_unlock+0x28/0x50
[ 1860.581948][T25230]  ? alloc_fd+0x5a1/0x640
[ 1860.586856][T25230]  do_sys_openat2+0x13e/0x1d0
[ 1860.591537][T25230]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1860.598059][T25230]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1860.604147][T25230]  ? __fget_files+0x3f6/0x470
[ 1860.608838][T25230]  __x64_sys_openat+0x247/0x2a0
[ 1860.613697][T25230]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1860.619597][T25230]  ? do_syscall_64+0x100/0x230
[ 1860.624723][T25230]  ? do_syscall_64+0xb6/0x230
[ 1860.629402][T25230]  do_syscall_64+0xf3/0x230
[ 1860.633907][T25230]  ? clear_bhb_loop+0x35/0x90
[ 1860.638847][T25230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1860.645821][T25230] RIP: 0033:0x7f4607575bd9
[ 1860.650917][T25230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1860.671243][T25230] RSP: 002b:00007f460835b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1860.679665][T25230] RAX: ffffffffffffffda RBX: 00007f4607704038 RCX: 00007f4607575bd9
[ 1860.687825][T25230] RDX: 00000000000282a2 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1860.695827][T25230] RBP: 00007f460835b0a0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.704007][T25230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1860.711987][T25230] R13: 000000000000006e R14: 00007f4607704038 R15: 00007ffeabe0fa68
[ 1860.720163][T25230]  </TASK>
[ 1860.726431][T25153] usb 1-1: Product: syz
[ 1860.732715][T25153] usb 1-1: Manufacturer: syz
[ 1860.737430][T25153] usb 1-1: SerialNumber: syz
[ 1860.739579][T25230] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1860.752123][T25153] usb 1-1: config 0 descriptor??
[ 1860.760380][T25153] usb 1-1: bad CDC descriptors
[ 1860.993395][T25232] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5998'.
[ 1861.021568][T25226] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1861.086323][T25233] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5998'.
[ 1861.139631][T25232] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5998'.
[ 1861.289510][T24635] usb 4-1: USB disconnect, device number 85
[ 1863.626959][ T4867] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[ 1866.869756][ T4867] usb 2-1: Using ep0 maxpacket: 32
[ 1866.979795][ T4867] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1866.991752][ T5620] usb 1-1: USB disconnect, device number 85
[ 1867.016226][ T4867] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1867.068434][ T4867] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1867.129327][ T4867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1867.240236][ T4867] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1867.311497][ T4867] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1867.400200][ T4867] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1867.415535][T25258] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(98950786685711) <= P.seqno(0) <= S.SWH(98950786685785)) and (P.ackno exists or LAWL(158921914155899) <= P.ackno(158921914155900) <= S.AWH(158921914155900), sending SYNC...
[ 1867.462520][ T4867] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1867.497207][ T4867] usb 2-1: config 0 descriptor??
[ 1867.529369][ T4867] usb 2-1: can't set config #0, error -71
[ 1867.558134][ T4867] usb 2-1: USB disconnect, device number 73
[ 1867.719335][ T9689] usb 3-1: new high-speed USB device number 96 using dummy_hcd
[ 1867.901832][ T9689] usb 3-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=e6.af
[ 1867.912523][ T9689] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1867.929435][ T4867] usb 2-1: new high-speed USB device number 74 using dummy_hcd
[ 1868.100302][ T9689] usb 3-1: config 0 descriptor??
[ 1869.042917][ T9689] gspca_main: sonixj-2.14.0 probing 0c45:614a
[ 1869.059237][ T4867] usb 2-1: Using ep0 maxpacket: 32
[ 1869.066544][ T4867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1869.099345][ T4867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1869.127512][ T4867] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1869.149261][ T4867] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1869.186922][ T4867] usb 2-1: config 0 descriptor??
[ 1869.186956][T25287] input: syz1 as /devices/virtual/input/input42
[ 1869.214744][T25269] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1869.252005][ T4867] hub 2-1:0.0: USB hub found
[ 1869.465526][ T4867] hub 2-1:0.0: 2 ports detected
[ 1869.482228][ T4867] hub 2-1:0.0: insufficient power available to use all downstream ports
[ 1869.512997][ T9689] gspca_sonixj: reg_w1 err -71
[ 1869.520636][ T9689] sonixj 3-1:0.0: probe with driver sonixj failed with error -71
[ 1869.552962][ T9689] usb 3-1: USB disconnect, device number 96
[ 1870.701264][ T4867] hub 2-1:0.0: hub_hub_status failed (err = -32)
[ 1870.707821][ T4867] hub 2-1:0.0: config failed, can't get hub status (err -32)
[ 1870.814633][ T4867] usbhid 2-1:0.0: can't add hid device: -32
[ 1870.823991][ T4867] usbhid 2-1:0.0: probe with driver usbhid failed with error -32
[ 1871.081282][T25308] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6018'.
[ 1871.446082][ T9689] hid-generic 0003:0004:95FB.0015: unknown main item tag 0x4
[ 1872.489473][ T9689] hid-generic 0003:0004:95FB.0015: unknown main item tag 0x4
[ 1872.498745][ T9689] hid-generic 0003:0004:95FB.0015: item fetching failed at offset 10/82
[ 1872.523229][ T9689] hid-generic 0003:0004:95FB.0015: probe with driver hid-generic failed with error -22
[ 1872.823002][T25333] 9pnet_fd: Insufficient options for proto=fd
[ 1872.993809][T25329] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6024'.
[ 1873.299205][ T9689] usb 3-1: new high-speed USB device number 97 using dummy_hcd
[ 1873.499875][T22452] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1873.509326][T22452] Bluetooth: hci3: Injecting HCI hardware error event
[ 1873.519510][T22451] Bluetooth: hci3: hardware error 0x00
[ 1873.570619][ T9689] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1873.616575][ T9689] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1873.626401][ T9689] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1873.654429][ T9689] usb 3-1: config 0 descriptor??
[ 1873.709556][ T5620] usb 2-1: USB disconnect, device number 74
[ 1873.800948][   T29] audit: type=1804 audit(1720093518.361:387): pid=25347 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.6030" name="/newroot/95/bus/bus" dev="overlay" ino=539 res=1 errno=0
[ 1873.926441][   T29] audit: type=1804 audit(1720093518.441:388): pid=25347 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.0.6030" name="/newroot/95/bus/bus" dev="overlay" ino=539 res=1 errno=0
[ 1874.075159][   T29] audit: type=1326 audit(1720093518.651:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25332 comm="syz.2.6027" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde8e575bd9 code=0x0
[ 1874.243701][   T29] audit: type=1800 audit(1720093518.821:390): pid=25355 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.6033" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1874.395570][   T29] audit: type=1804 audit(1720093518.971:391): pid=25358 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6035" name="/newroot/125/bus/file0" dev="overlay" ino=760 res=1 errno=0
[ 1875.695018][T22451] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1875.842408][ T9689] usbhid 3-1:0.0: can't add hid device: -71
[ 1875.889983][ T9689] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1875.917014][ T9689] usb 3-1: USB disconnect, device number 97
[ 1876.071212][T25384] netlink: 'syz.3.6039': attribute type 3 has an invalid length.
[ 1876.169597][T25384] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.6039'.
[ 1876.377848][T25390] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6041'.
[ 1876.529352][  T784] usb 3-1: new high-speed USB device number 98 using dummy_hcd
[ 1876.721522][  T784] usb 3-1: Using ep0 maxpacket: 32
[ 1876.738967][  T784] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1876.759201][  T784] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1876.789570][  T784] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1876.808843][  T784] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1876.900252][  T784] usb 3-1: config 0 descriptor??
[ 1876.915447][T25387] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1876.937241][  T784] hub 3-1:0.0: USB hub found
[ 1877.158395][  T784] hub 3-1:0.0: 2 ports detected
[ 1877.176042][  T784] hub 3-1:0.0: insufficient power available to use all downstream ports
[ 1877.739329][T22451] Bluetooth: hci3: Opcode 0x206c failed: -110
[ 1877.978717][T25408] xt_TCPMSS: Only works on TCP SYN packets
[ 1878.221601][  T784] hub 3-1:0.0: hub_hub_status failed (err = -32)
[ 1878.253776][  T784] hub 3-1:0.0: config failed, can't get hub status (err -32)
[ 1878.398657][  T784] usbhid 3-1:0.0: can't add hid device: -32
[ 1878.601104][   T29] audit: type=1800 audit(1720093523.121:392): pid=25414 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.6050" name="bus" dev="overlay" ino=328 res=0 errno=0
[ 1878.637137][  T784] usbhid 3-1:0.0: probe with driver usbhid failed with error -32
[ 1878.724931][   T29] audit: type=1800 audit(1720093523.141:393): pid=25414 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.6050" name="bus" dev="overlay" ino=328 res=0 errno=0
[ 1878.786525][T25416] 9pnet_fd: Insufficient options for proto=fd
[ 1879.212732][   T29] audit: type=1804 audit(1720093523.781:394): pid=25420 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.3.6052" name="/newroot/54/bus/bus" dev="overlay" ino=343 res=1 errno=0
[ 1879.320586][   T29] audit: type=1804 audit(1720093523.821:395): pid=25420 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.6052" name="/newroot/54/bus/bus" dev="overlay" ino=343 res=1 errno=0
[ 1879.417024][   T29] audit: type=1804 audit(1720093523.871:396): pid=25420 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.6052" name="/newroot/54/bus/bus" dev="overlay" ino=343 res=1 errno=0
[ 1879.505544][   T29] audit: type=1804 audit(1720093523.871:397): pid=25420 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.6052" name="/newroot/54/bus/bus" dev="overlay" ino=343 res=1 errno=0
[ 1879.819592][T22451] Bluetooth: hci3: Opcode 0x2046 failed: -110
[ 1880.140009][ T9689] usb 3-1: USB disconnect, device number 98
[ 1881.342767][T25450] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1881.449390][   T29] audit: type=1804 audit(1720093526.001:398): pid=25455 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.6062" name="/newroot/43/bus/bus" dev="overlay" ino=281 res=1 errno=0
[ 1881.980620][T25459] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6064'.
[ 1882.066851][T25459] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6064'.
[ 1882.092698][T25459] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1882.321505][T25460] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1882.385865][T25462] ufs: You didn't specify the type of your ufs filesystem
[ 1882.385865][T25462] 
[ 1882.385865][T25462] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1882.385865][T25462] 
[ 1882.385865][T25462] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1882.431867][T25462] ufs: ufstype=old is supported read-only
[ 1882.438122][T25462] ufs: ufs_fill_super(): bad magic number
[ 1883.093299][T25484] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1883.882282][T25478] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1884.044480][T25489] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1885.324218][T25479] xt_l2tp: invalid flags combination: 0
[ 1887.263266][T18554] Bluetooth: hci5: command 0x0406 tx timeout
[ 1888.361050][   T29] audit: type=1804 audit(1720093532.921:399): pid=25496 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.6075" name="/newroot/108/bus/bus" dev="overlay" ino=614 res=1 errno=0
[ 1888.808846][T25153] usb 2-1: new high-speed USB device number 75 using dummy_hcd
[ 1889.025156][T25153] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1889.065289][T25153] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1889.110581][T25153] usb 2-1: config 0 descriptor??
[ 1889.366821][T25153] ath6kl: Failed to submit usb control message: -71
[ 1889.391326][T25153] ath6kl: unable to send the bmi data to the device: -71
[ 1889.415769][T25153] ath6kl: Unable to send get target info: -71
[ 1889.451670][T25153] ath6kl: Failed to init ath6kl core: -71
[ 1889.487796][T25153] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1889.569547][T25153] usb 2-1: USB disconnect, device number 75
[ 1890.509798][ T4867] IPVS: starting estimator thread 0...
[ 1890.582769][T25529] ufs: You didn't specify the type of your ufs filesystem
[ 1890.582769][T25529] 
[ 1890.582769][T25529] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1890.582769][T25529] 
[ 1890.582769][T25529] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1890.613976][T25529] ufs: ufstype=old is supported read-only
[ 1890.620339][T25529] ufs: ufs_fill_super(): bad magic number
[ 1890.649345][T25540] IPVS: using max 20 ests per chain, 48000 per kthread
[ 1891.180381][   T29] audit: type=1804 audit(1720093535.761:400): pid=25543 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.0.6086" name="/newroot/110/bus/file0" dev="overlay" ino=633 res=1 errno=0
[ 1891.459737][T25153] usb 3-1: new high-speed USB device number 99 using dummy_hcd
[ 1892.429241][T25153] usb 3-1: Using ep0 maxpacket: 16
[ 1892.442569][T25561] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6093'.
[ 1892.444370][T25153] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[ 1892.481246][T25153] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1892.564993][T25153] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 1892.594476][T25153] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1892.641104][T25153] usb 3-1: config 0 descriptor??
[ 1893.019253][T20704] usb 5-1: new high-speed USB device number 103 using dummy_hcd
[ 1893.231787][T20704] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 1893.256391][T20704] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1893.313846][T20704] usb 5-1: config 0 descriptor??
[ 1893.662925][T20704] ath6kl: Failed to submit usb control message: -71
[ 1893.689297][T20704] ath6kl: unable to send the bmi data to the device: -71
[ 1893.701831][T20704] ath6kl: Unable to send get target info: -71
[ 1893.770809][T20704] ath6kl: Failed to init ath6kl core: -71
[ 1893.784689][T20704] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1893.841411][T20704] usb 5-1: USB disconnect, device number 103
[ 1894.512209][T25586] ufs: You didn't specify the type of your ufs filesystem
[ 1894.512209][T25586] 
[ 1894.512209][T25586] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1894.512209][T25586] 
[ 1894.512209][T25586] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1894.544947][T25586] ufs: ufstype=old is supported read-only
[ 1894.551160][T25586] ufs: ufs_fill_super(): bad magic number
[ 1895.252448][T25153] usbhid 3-1:0.0: can't add hid device: -71
[ 1895.258517][T25153] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1895.277437][T25153] usb 3-1: USB disconnect, device number 99
[ 1897.178407][T25604] netlink: 596 bytes leftover after parsing attributes in process `syz.4.6105'.
[ 1897.204628][T25608] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6106'.
[ 1897.340507][T25604] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6105'.
[ 1897.546062][T25622] usb usb8: usbfs: process 25622 (syz.4.6112) did not claim interface 0 before use
[ 1897.692816][T25621] mmap: syz.4.6112 (25621): VmData 37597184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[ 1897.776898][   T29] audit: type=1804 audit(1720093542.351:401): pid=25625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6113" name="/newroot/146/bus/bus" dev="overlay" ino=883 res=1 errno=0
[ 1897.804274][   T29] audit: type=1804 audit(1720093542.351:402): pid=25625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6113" name="/newroot/146/bus/bus" dev="overlay" ino=883 res=1 errno=0
[ 1897.870579][   T29] audit: type=1804 audit(1720093542.351:403): pid=25625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6113" name="/newroot/146/bus/bus" dev="overlay" ino=883 res=1 errno=0
[ 1897.935679][   T29] audit: type=1804 audit(1720093542.351:404): pid=25625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6113" name="/newroot/146/bus/bus" dev="overlay" ino=883 res=1 errno=0
[ 1899.540929][T25652] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6121'.
[ 1900.802945][   T29] audit: type=1804 audit(1720093545.061:405): pid=25667 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6125" name="/newroot/151/bus/bus" dev="overlay" ino=918 res=1 errno=0
[ 1900.897224][   T29] audit: type=1804 audit(1720093545.071:406): pid=25667 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6125" name="/newroot/151/bus/bus" dev="overlay" ino=918 res=1 errno=0
[ 1901.005601][   T29] audit: type=1804 audit(1720093545.071:407): pid=25667 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6125" name="/newroot/151/bus/bus" dev="overlay" ino=918 res=1 errno=0
[ 1901.057812][   T29] audit: type=1804 audit(1720093545.501:408): pid=25668 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.3.6124" name="/newroot/63/bus/bus" dev="overlay" ino=399 res=1 errno=0
[ 1901.186168][   T29] audit: type=1804 audit(1720093545.511:409): pid=25668 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.6124" name="/newroot/63/bus/bus" dev="overlay" ino=399 res=1 errno=0
[ 1901.639535][   T29] audit: type=1804 audit(1720093545.511:410): pid=25668 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.6124" name="/newroot/63/bus/bus" dev="overlay" ino=399 res=1 errno=0
[ 1902.534300][T25699] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6133'.
[ 1903.172471][   T29] kauditd_printk_skb: 1 callbacks suppressed
[ 1903.172510][   T29] audit: type=1804 audit(1720093547.401:412): pid=25706 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6136" name="/newroot/156/bus/bus" dev="overlay" ino=954 res=1 errno=0
[ 1903.277096][   T29] audit: type=1804 audit(1720093547.411:413): pid=25706 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6136" name="/newroot/156/bus/bus" dev="overlay" ino=954 res=1 errno=0
[ 1903.339503][   T29] audit: type=1804 audit(1720093547.411:414): pid=25706 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6136" name="/newroot/156/bus/bus" dev="overlay" ino=954 res=1 errno=0
[ 1903.490045][   T29] audit: type=1804 audit(1720093548.071:415): pid=25711 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6138" name="/newroot/157/bus/bus" dev="overlay" ino=969 res=1 errno=0
[ 1903.559218][T25153] usb 1-1: new high-speed USB device number 86 using dummy_hcd
[ 1903.599280][   T29] audit: type=1804 audit(1720093548.101:416): pid=25711 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6138" name="/newroot/157/bus/bus" dev="overlay" ino=969 res=1 errno=0
[ 1903.670647][   T29] audit: type=1804 audit(1720093548.121:417): pid=25711 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6138" name="/newroot/157/bus/bus" dev="overlay" ino=969 res=1 errno=0
[ 1903.797736][   T29] audit: type=1804 audit(1720093548.121:418): pid=25711 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6138" name="/newroot/157/bus/bus" dev="overlay" ino=969 res=1 errno=0
[ 1903.819911][T20704] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[ 1903.862718][T25153] usb 1-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=1f.2f
[ 1903.880160][T25153] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1903.917602][T25153] usb 1-1: config 0 descriptor??
[ 1903.938004][T25153] rndis_host 1-1:0.0: More than one union descriptor, skipping ...
[ 1903.949599][T25153] usb 1-1: bad CDC descriptors
[ 1903.955580][T25153] cdc_acm 1-1:0.0: More than one union descriptor, skipping ...
[ 1904.032737][T20704] usb 3-1: Using ep0 maxpacket: 32
[ 1904.043007][   T29] audit: type=1804 audit(1720093548.601:419): pid=25721 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.6143" name="/newroot/160/bus/bus" dev="overlay" ino=994 res=1 errno=0
[ 1904.046519][T20704] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1904.078135][T20704] usb 3-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=cb.c8
[ 1904.093772][T20704] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1904.102324][T20704] usb 3-1: Product: syz
[ 1904.107948][T20704] usb 3-1: Manufacturer: syz
[ 1904.114717][T20704] usb 3-1: SerialNumber: syz
[ 1904.122356][   T29] audit: type=1804 audit(1720093548.601:420): pid=25721 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6143" name="/newroot/160/bus/bus" dev="overlay" ino=994 res=1 errno=0
[ 1904.130247][T20704] usb 3-1: config 0 descriptor??
[ 1904.211032][   T29] audit: type=1804 audit(1720093548.601:421): pid=25721 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.6143" name="/newroot/160/bus/bus" dev="overlay" ino=994 res=1 errno=0
[ 1904.389344][ T9689] usb 4-1: new high-speed USB device number 86 using dummy_hcd
[ 1904.416832][T25726] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6145'.
[ 1904.595619][ T9689] usb 4-1: Using ep0 maxpacket: 16
[ 1904.637189][ T9689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[ 1904.664276][T25729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6140'.
[ 1905.065396][ T9689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1905.608653][   T30] INFO: task syz-executor:23354 blocked for more than 143 seconds.
[ 1905.616764][   T30]       Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1905.625269][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1906.247635][ T9689] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 1906.282569][   T30] task:syz-executor    state:D stack:19856 pid:23354 tgid:23354 ppid:1      flags:0x00004006
[ 1908.309152][   T30] Call Trace:
[ 1908.309218][ T9689] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1908.312517][   T30]  <TASK>
[ 1908.312553][   T30]  __schedule+0x1796/0x49d0
[ 1908.350055][   T30]  ? __pfx___schedule+0x10/0x10
[ 1908.359865][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1908.367262][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1908.375790][T20704] usb 1-1: USB disconnect, device number 86
[ 1908.393857][ T9689] usb 4-1: config 0 descriptor??
[ 1908.396871][   T30]  ? schedule+0x90/0x320
[ 1908.409449][ T9689] usb 4-1: can't set config #0, error -71
[ 1908.417867][   T30]  schedule+0x14b/0x320
[ 1908.428367][ T9689] usb 4-1: USB disconnect, device number 86
[ 1908.433445][   T30]  io_schedule+0x8d/0x110
[ 1908.447732][   T30]  folio_wait_bit_common+0x882/0x12b0
[ 1908.461091][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[ 1908.485949][   T30]  ? __pfx_wake_page_function+0x10/0x10
[ 1908.499308][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1908.504641][   T30]  ? __pfx_find_get_entries+0x10/0x10
[ 1908.519124][   T30]  ? rcu_is_watching+0x15/0xb0
[ 1908.523986][   T30]  folio_wait_writeback+0xe7/0x1e0
[ 1908.539129][   T30]  truncate_inode_pages_range+0xafd/0xfc0
[ 1908.545075][   T30]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 1908.552193][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1908.557535][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1908.569173][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1908.574462][   T30]  v9fs_evict_inode+0x1fd/0x360
[ 1908.589314][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1908.594210][   T30]  ? __pfx_v9fs_evict_inode+0x10/0x10
[ 1908.600727][   T30]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 1908.606846][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[ 1908.612675][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1908.617913][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1908.624838][   T30]  ? __pfx_v9fs_evict_inode+0x10/0x10
[ 1908.630345][   T30]  evict+0x2a8/0x630
[ 1908.634462][   T30]  __dentry_kill+0x20d/0x630
[ 1908.639231][   T30]  ? dput+0x37/0x2b0
[ 1908.643321][   T30]  dput+0x19f/0x2b0
[ 1908.647164][   T30]  shrink_dcache_for_umount+0x7d/0x130
[ 1908.652765][   T30]  generic_shutdown_super+0x6a/0x2d0
[ 1908.658307][   T30]  kill_anon_super+0x3b/0x70
[ 1908.662986][   T30]  v9fs_kill_super+0x4c/0x90
[ 1908.668111][   T30]  deactivate_locked_super+0xc4/0x130
[ 1908.673884][   T30]  cleanup_mnt+0x41f/0x4b0
[ 1908.678335][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1908.683885][   T30]  task_work_run+0x24f/0x310
[ 1908.688607][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1908.693841][   T30]  ? __x64_sys_umount+0x126/0x170
[ 1908.699198][   T30]  ? syscall_exit_to_user_mode+0xa3/0x360
[ 1908.705142][   T30]  syscall_exit_to_user_mode+0x168/0x360
[ 1908.711792][   T30]  do_syscall_64+0x100/0x230
[ 1908.716434][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1908.721257][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1908.727414][   T30] RIP: 0033:0x7fe469776f07
[ 1908.733829][   T30] RSP: 002b:00007fffc685da68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1908.742548][   T30] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe469776f07
[ 1908.750622][   T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffc685db20
[ 1908.758795][   T30] RBP: 00007fffc685db20 R08: 0000000000000000 R09: 0000000000000000
[ 1908.766904][   T30] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffc685ebf0
[ 1908.775758][   T30] R13: 00007fe4697e3515 R14: 00000000001aaa7f R15: 0000000000000016
[ 1908.783925][   T30]  </TASK>
[ 1908.787329][   T30] 
[ 1908.787329][   T30] Showing all locks held in the system:
[ 1908.795141][   T30] 1 lock held by ksoftirqd/1/24:
[ 1908.801332][   T30]  #0: ffff8880b943e758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xb0/0x140
[ 1908.811407][   T30] 1 lock held by khungtaskd/30:
[ 1908.816440][   T30]  #0: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 1908.826453][   T30] 2 locks held by kworker/u8:7/2421:
[ 1908.832048][   T30] 2 locks held by getty/4837:
[ 1908.836830][   T30]  #0: ffff88802aafd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1908.848910][   T30]  #1: ffffc9000312b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[ 1908.859185][   T30] 1 lock held by syz-executor/23354:
[ 1908.864668][   T30]  #0: ffff88807cce80e0 (&type->s_umount_key#77){+.+.}-{3:3}, at: deactivate_super+0xb5/0xf0
[ 1908.875516][   T30] 1 lock held by syz.4.6112/25622:
[ 1908.880911][   T30]  #0: ffffffff8e3391c0 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530
[ 1908.890970][   T30] 1 lock held by syz.2.6140/25715:
[ 1908.896262][   T30]  #0: ffffffff8e3391c0 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530
[ 1908.906368][   T30] 
[ 1908.908864][   T30] =============================================
[ 1908.908864][   T30] 
[ 1908.918870][   T30] NMI backtrace for cpu 0
[ 1908.923240][   T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1908.933147][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1908.943207][   T30] Call Trace:
[ 1908.946486][   T30]  <TASK>
[ 1908.949428][   T30]  dump_stack_lvl+0x241/0x360
[ 1908.954112][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1908.959308][   T30]  ? __pfx__printk+0x10/0x10
[ 1908.963893][   T30]  ? vprintk_emit+0x631/0x770
[ 1908.968651][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[ 1908.973765][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[ 1908.978821][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1908.984299][   T30]  ? _printk+0xd5/0x120
[ 1908.988556][   T30]  ? __pfx__printk+0x10/0x10
[ 1908.993149][   T30]  ? __wake_up_klogd+0xcc/0x110
[ 1908.998009][   T30]  ? __pfx__printk+0x10/0x10
[ 1909.002600][   T30]  ? __rcu_read_unlock+0xa1/0x110
[ 1909.007623][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1909.013623][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 1909.019623][   T30]  watchdog+0xfde/0x1020
[ 1909.023868][   T30]  ? watchdog+0x1ea/0x1020
[ 1909.028278][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1909.032955][   T30]  kthread+0x2f0/0x390
[ 1909.037020][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1909.041706][   T30]  ? __pfx_kthread+0x10/0x10
[ 1909.046287][   T30]  ret_from_fork+0x4b/0x80
[ 1909.050712][   T30]  ? __pfx_kthread+0x10/0x10
[ 1909.055295][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1909.060155][   T30]  </TASK>
[ 1909.064080][   T30] Sending NMI from CPU 0 to CPUs 1:
[ 1909.069654][    C1] NMI backtrace for cpu 1
[ 1909.069669][    C1] CPU: 1 PID: 2421 Comm: kworker/u8:7 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1909.069688][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1909.069700][    C1] Workqueue: bat_events batadv_nc_worker
[ 1909.069728][    C1] RIP: 0010:kasan_check_range+0x70/0x290
[ 1909.069749][    C1] Code: ff df 4e 8d 1c 13 49 ff c8 4d 89 c1 49 c1 e9 03 49 be 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 <48> 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd 41 80 3b 00
[ 1909.069764][    C1] RSP: 0018:ffffc9000944f8c8 EFLAGS: 00000083
[ 1909.069778][    C1] RAX: 0000000000000001 RBX: 1ffffffff25ee2cb RCX: ffffffff8172d91a
[ 1909.069791][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff92f71658
[ 1909.069803][    C1] RBP: 0000000000000001 R08: ffffffff92f7165f R09: 1ffffffff25ee2cb
[ 1909.069816][    C1] R10: dffffc0000000000 R11: fffffbfff25ee2cb R12: ffff888029820b00
[ 1909.069832][    C1] R13: dffffc0000000000 R14: dffffc0000000001 R15: fffffbfff25ee2cc
[ 1909.069845][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 1909.069860][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1909.069873][    C1] CR2: 000055556410b5c8 CR3: 000000007d1fc000 CR4: 00000000003526f0
[ 1909.069888][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1909.069898][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1909.069908][    C1] Call Trace:
[ 1909.069916][    C1]  <NMI>
[ 1909.069923][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1909.069942][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1909.069961][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1909.069987][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1909.070012][    C1]  ? nmi_handle+0x14f/0x5a0
[ 1909.070036][    C1]  ? nmi_handle+0x2a/0x5a0
[ 1909.070059][    C1]  ? kasan_check_range+0x70/0x290
[ 1909.070076][    C1]  ? default_do_nmi+0x63/0x160
[ 1909.070094][    C1]  ? exc_nmi+0x123/0x1f0
[ 1909.070111][    C1]  ? end_repeat_nmi+0xf/0x53
[ 1909.070138][    C1]  ? mark_lock+0x9a/0x350
[ 1909.070156][    C1]  ? kasan_check_range+0x70/0x290
[ 1909.070173][    C1]  ? kasan_check_range+0x70/0x290
[ 1909.070191][    C1]  ? kasan_check_range+0x70/0x290
[ 1909.070208][    C1]  </NMI>
[ 1909.070213][    C1]  <TASK>
[ 1909.070221][    C1]  mark_lock+0x9a/0x350
[ 1909.070242][    C1]  lockdep_hardirqs_on_prepare+0x3a5/0x780
[ 1909.070261][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1909.070280][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1909.070299][    C1]  trace_hardirqs_on+0x28/0x40
[ 1909.070315][    C1]  __local_bh_enable_ip+0x168/0x200
[ 1909.070333][    C1]  ? batadv_nc_purge_paths+0x30f/0x3b0
[ 1909.070354][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1909.070372][    C1]  ? batadv_nc_purge_paths+0xe8/0x3b0
[ 1909.070393][    C1]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[ 1909.070418][    C1]  batadv_nc_purge_paths+0x30f/0x3b0
[ 1909.070446][    C1]  batadv_nc_worker+0x365/0x610
[ 1909.070467][    C1]  ? process_scheduled_works+0x945/0x1830
[ 1909.070484][    C1]  process_scheduled_works+0xa2c/0x1830
[ 1909.070512][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1909.070533][    C1]  ? assign_work+0x364/0x3d0
[ 1909.070552][    C1]  worker_thread+0x86d/0xd50
[ 1909.070576][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1909.070596][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1909.070613][    C1]  kthread+0x2f0/0x390
[ 1909.070631][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1909.070648][    C1]  ? __pfx_kthread+0x10/0x10
[ 1909.070667][    C1]  ret_from_fork+0x4b/0x80
[ 1909.070688][    C1]  ? __pfx_kthread+0x10/0x10
[ 1909.070707][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1909.070736][    C1]  </TASK>
[ 1909.257988][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1909.258007][   T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
[ 1909.258027][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1909.258039][   T30] Call Trace:
[ 1909.258048][   T30]  <TASK>
[ 1909.258057][   T30]  dump_stack_lvl+0x241/0x360
[ 1909.258090][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1909.258114][   T30]  ? __pfx__printk+0x10/0x10
[ 1909.258133][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1909.258159][   T30]  ? vscnprintf+0x5d/0x90
[ 1909.258179][   T30]  panic+0x349/0x860
[ 1909.258203][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1909.258223][   T30]  ? __pfx_panic+0x10/0x10
[ 1909.258243][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[ 1909.258268][   T30]  ? __irq_work_queue_local+0x137/0x410
[ 1909.258286][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1909.258306][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1909.258324][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 1909.258345][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 1909.258366][   T30]  watchdog+0x101d/0x1020
[ 1909.258387][   T30]  ? watchdog+0x1ea/0x1020
[ 1909.258411][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1909.258429][   T30]  kthread+0x2f0/0x390
[ 1909.258449][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1909.258467][   T30]  ? __pfx_kthread+0x10/0x10
[ 1909.258488][   T30]  ret_from_fork+0x4b/0x80
[ 1909.258509][   T30]  ? __pfx_kthread+0x10/0x10
[ 1909.258529][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1909.258563][   T30]  </TASK>
[ 1909.262161][   T30] Kernel Offset: disabled
[ 1909.601303][   T30] Rebooting in 86400 seconds..