last executing test programs:

2m17.042355622s ago: executing program 2 (id=376):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffd)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x1dc82e11}, {&(0x7f0000000580)=""/156}, {&(0x7f00000000c0)=""/11}, {&(0x7f0000000640)=""/247}], 0x1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x18000000000002a0, 0xe80, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a888e55", 0x0, 0xff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r7, 0x0)
dup(r6)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r6, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r8, 0x800448d4, &(0x7f0000000080)={0x0, 0x4, "01faf9"})

2m13.095421855s ago: executing program 2 (id=381):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8908040400", 0x5) (async)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0}) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000011000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000014001a80100004800c00058008"], 0x34}}, 0x0) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021840000e00c0a0101000000000000d955070000000900020073797a31000000000900010073797a30000000005800038054000080080003400000000248000b80340001800a0001006c696d69740000002400028008000440000000010c00024000000000000000000c000140000000000000000960800c76eb40f7faeed8e957afb45380405ce711cbb8d35e0457b37053"], 0x108}}, 0x4011)

2m7.487097233s ago: executing program 2 (id=385):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
r2 = socket(0x10, 0x80002, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x4, 0x3, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0], 0x0, 0xa8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0xaa, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr(aes-aesni),ghash-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef", 0x11)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="280500000000000000bd7000fac2df2507000000", @ANYRES32=r3, @ANYBLOB="08000100000000000800010000000000"], 0x28}}, 0x0)
r5 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000), 0x202680, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff}, 0x111, 0x5}}, 0x20)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r7, &(0x7f00000005c0), 0x10)
sendmsg$can_bcm(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=r7], 0x48}}, 0x0)
recvmmsg(r7, &(0x7f00000047c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000c00)=[{0x0}, {&(0x7f00000007c0)=""/153, 0x99}], 0x2}}], 0x2, 0x20003, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, &(0x7f0000000100)={0x4, 0x8, 0xfa00, {r6, 0x5}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000001200)=ANY=[@ANYBLOB="180000000000000000000000000000007110390000000000950000070000000071a6a8cf894e189cd05deac28da285b787dded5975a88b0f35c83fd850f9af41bfa8b766aa339fef845bb5ed6f3ed4956d892ea0e292c241b07839a62cfac526b32ed2e08a9a8db638"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000040)={0xb5a2, 0xcf30})
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x0)
keyctl$restrict_keyring(0xa, 0x0, &(0x7f0000000300)='asymmetric\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x0, 0x1, 0x10}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
ioctl$DRM_IOCTL_MODE_GETENCODER(r5, 0xc01464a6, &(0x7f0000000500))
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0xfffffffffffffffe)

2m7.111517528s ago: executing program 2 (id=389):
syz_io_uring_setup(0x520b, &(0x7f0000000440)={0x0, 0x4434, 0x800}, &(0x7f0000000100), &(0x7f0000000200))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000900)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYRES16=r0], 0x118)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000001700)=0x4)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x12, 0x32, 0x2, 0x3, 0x0, 0x2, 0x0, @in=@rand_addr=0x2000000, @in6=@private2}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}]}, 0x80}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_tracing={0x1a, 0x0, &(0x7f0000000540)=@raw=[@tail_call, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @tail_call, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1ca}}, @ldst={0x3, 0x2, 0x4, 0x9, 0xb, 0x6, 0xffffffffffffffff}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x4}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x7, 0x0, 0x0, 0x0, 0xffff}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x4}, @cb_func={0x18, 0x2, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f0000000700)='syzkaller\x00', 0x40, 0x0, &(0x7f0000000740)=""/184, 0x41100, 0x9, '\x00', 0x0, 0x19, r8, 0x8, &(0x7f0000000800)={0x6, 0x2}, 0x0, 0x10, &(0x7f0000000840)={0x0, 0xc, 0x7, 0x1}, 0x0, 0xa61d, r1, 0x0, 0x0, &(0x7f0000000880)=[{0x0, 0x5, 0x10, 0x5}, {0x3, 0x3, 0xb, 0x5}, {0x2, 0x1, 0xa, 0x3}, {0x3, 0x2, 0x7, 0xc}], 0x10, 0xd136}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000dd0a00000000000063010400"/30], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000280))
socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000500), 0x4000, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

2m0.755531182s ago: executing program 2 (id=393):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffff}, 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000014c0)=ANY=[@ANYBLOB="18000000000000000000000000000800181100ba3c9594bfea2c389f4569d4fd49349679", @ANYRES32=r0, @ANYBLOB="0000e90000070000b72e080000000000e07b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000955e9e33b5cc4e5d47322f5fdc358b7e7824baa8188c3f5ebf821dd5295877ebf55c047028061f398e614e91e2bdf7c62146eb8552cd8e2b9e65"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
io_setup(0x3, &(0x7f00000003c0)=<r3=>0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r3, 0x0, &(0x7f0000000140))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/3601], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
io_getevents(r3, 0x100, 0x0, &(0x7f0000000300), &(0x7f0000000340))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
rt_sigprocmask(0x0, &(0x7f0000000480), 0x0, 0x8)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x0, 0x0)
capset(0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB='\x00'/16], 0x10}}, 0x0)
creat(0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c56, 0x1}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="050000000000ffffff00"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f00000004c0)="d16cab32f0d305cbeb34a735041a45f302a0995dced6fd6b9862c5e7bc3059b2acaaa1a57a0bf44f5ab5ae3a20afe7b5176b92e2c856bc6b0479373e940de4da552cd4fd8818ae895d39b380308a58e002ca", 0xffffffff, r7}, 0x38)
write$rfkill(r2, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0}, 0x90)

1m52.907308791s ago: executing program 1 (id=410):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x10, 0x2, 0x4)
r6 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000240)={'syz', 0x2}, 0x0, 0x0, r6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB="24000000210001000000000000000000020000000000000000000001000017004e200000a2cdc72f52552b5126ea953dddc5c10b6f760e"], 0x24}}, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000040)='rxrpc_s\x00', &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)

1m51.935155862s ago: executing program 2 (id=412):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
unshare(0x6a040000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[@ANYBLOB="340000000301011834489e111e77fcfe7da1c4c0d6d46b0400000000000000000a0000000600124000030000100004800c000180050003000900000008000840000002006384815c1c70ec15008bb8be25e73d9f11b52122b25137f80a2c583bd2784b98a2e5833393f54404d8fed8012caf3ffe6f6663cdf423bfb8503d6583ad140dae7c9bd292c15da945fcc0d822355e8f24a28c3031b2e7981510fe7dc9d0f4cfe274644b00281e7751d99d4147d698e813785b79eed642b7a82fbab2fa406966d3b1f20d64a7ca773eb42a21a11d1fa221e0afefa45385a500576cbe6f696669d40e2e4209f161be1b000000000000ab9c42a0249b35"], 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x181341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x50, 0x0, 0x0, 0x9}, {0x6}]})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180))
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1m51.271553688s ago: executing program 1 (id=413):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000180)=0x2, 0x12)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='rpcgss_upcall_result\x00'}, 0x2d)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x300, 0x4f, &(0x7f00000000c0)=""/79}, &(0x7f00000006c0)="000200000000", 0x0, 0x0, 0x0, 0x0, 0x0})
mount$9p_tcp(&(0x7f00000003c0), &(0x7f0000000400)='./cgroup\x00', &(0x7f0000000440), 0x800, &(0x7f0000000940)={'trans=tcp,', {'port', 0x3d, 0x4e24}})
r6 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)={0x1c, r3, 0x73bf44d8d76863a9, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x0)

55.147150631s ago: executing program 3 (id=494):
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = fcntl$getown(r0, 0x9)
sched_setscheduler(r2, 0x1, &(0x7f00000001c0)=0x7)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000080)=0x5fef, 0x4)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
recvfrom$inet(r1, 0x0, 0x0, 0x2043, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='vcan0\x00', 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000080)="441f0801000000e8c94ef56491ee54be0e1c2074ed27c1c6fe76cef3e2", 0x1d)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000140), &(0x7f0000000180)=0x8)
getsockopt$inet_mreq(r0, 0x0, 0x67, &(0x7f00000000c0)={@broadcast, @initdev}, &(0x7f0000000100)=0x8)

53.964023877s ago: executing program 3 (id=496):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='objagg_obj_get\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
dup3(0xffffffffffffffff, r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x3, @broadcast}})
socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000070006e4f0da86cc9b500840000000000000850000007500000085000000050000009500"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r4}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
pipe(&(0x7f0000000080))
socket(0x10, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000040000000000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000600)={@map=r5, r5, 0x2f, 0x2014, 0x0, @prog_fd=r5}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x2}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

52.403808334s ago: executing program 3 (id=501):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x40000000015, 0x5, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), &(0x7f0000000340), 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r4, &(0x7f0000000380)=[{&(0x7f0000000140)='W', 0x1}], 0x1)
rt_sigaction(0x40, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000380))
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0xc480, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r5, 0x3b88, &(0x7f0000000180)={0xc, r6})
ioctl$IOMMU_VFIO_IOAS$GET(r5, 0x3b88, &(0x7f0000000040)={0xc, <r7=>0x0})
ioctl$IOMMU_VFIO_IOMMU_MAP_DMA(r5, 0x3b71, &(0x7f0000000200)={0x20, 0x0, 0x0, 0x0, 0x8000000000000000})
ioctl$IOMMU_IOAS_COPY$syz(r5, 0x3b83, &(0x7f0000000440)={0x28, 0x6, r7, r6, 0x157b16, 0x2})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='stat\x00')
read$FUSE(r8, &(0x7f0000004180)={0x2020}, 0x2020)

11.759600528s ago: executing program 0 (id=508):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x9)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000100)=ANY=[], 0x6)
recvmmsg(r1, &(0x7f0000000580)=[{{&(0x7f0000000080)=@nl=@unspec, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/230, 0xe6}, {&(0x7f0000000240)=""/200, 0xc8}, {&(0x7f0000000340)=""/175, 0xaf}, {&(0x7f0000000400)=""/53, 0x35}, {&(0x7f0000000440)=""/119, 0x77}], 0x5, &(0x7f0000000540)=""/55, 0x37}}], 0x400000000000222, 0x12142, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000010003b15000000000000000000000200", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500170000000000050016"], 0x44}}, 0x0)
connect$pppl2tp(r0, &(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x0, 0x2, 0x4, 0x1, {0xa, 0x4e23, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80000001}}}, 0x32)

10.812807124s ago: executing program 0 (id=509):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x12, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="560a00000000000079111000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)

10.599753513s ago: executing program 0 (id=510):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c4159b364a4fd7013f34db173a4fdacf15229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be867a28f09c5877fc2355ecdc9c30dcb2d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff3a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb357b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50265a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x40000000015, 0x5, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), &(0x7f0000000340), 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r4, &(0x7f0000000380)=[{&(0x7f0000000140)='W', 0x1}], 0x1)
rt_sigaction(0x40, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000380))
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0xc480, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r6, 0x3b88, &(0x7f0000000180)={0xc, r7})
ioctl$IOMMU_VFIO_IOAS$GET(r6, 0x3b88, &(0x7f0000000040)={0xc, <r8=>0x0})
ioctl$IOMMU_IOAS_COPY$syz(r6, 0x3b83, &(0x7f0000000440)={0x28, 0x6, r8, r7, 0x157b16, 0x2})
ioctl$IOMMU_DESTROY$ioas(r5, 0x3b80, &(0x7f0000000240)={0x8, r7})
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='stat\x00')
read$FUSE(r9, &(0x7f0000004180)={0x2020}, 0x2020)

10.465045678s ago: executing program 3 (id=503):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)
rename(&(0x7f0000000c00)='./file0\x00', &(0x7f0000001f80)='./bus\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000000)={0x2c, &(0x7f00000000c0)={0x0, 0x0, 0x2, {0x51}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000010000300", @ANYRES32=r3, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

9.311397152s ago: executing program 3 (id=511):
socket(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@bloom_filter={0x1e, 0xfff, 0x6, 0x800, 0x7, 0xffffffffffffffff, 0x1e1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x2, 0x3}, 0x48)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
timer_create(0x2, &(0x7f00000006c0)={0x0, 0x11}, &(0x7f0000000540)=<r3=>0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}}, 0x0)
unshare(0x22020000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x129)
unshare(0x40020000)
rmdir(&(0x7f0000000740)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x75)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
pivot_root(0x0, 0x0)
getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
timer_gettime(r3, &(0x7f0000000780))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000580)=[@text32={0x20, &(0x7f0000000900)="0f1f00f7bdcb1700000f3566ba2000b051fbfb670f32c4e3857be4070fc7b4a8720000000f080f32b9a40900000f7432d8", 0x31}], 0x1, 0xd, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000500)=[@textreal={0x8, &(0x7f0000000040)="baf80c66b808aacc8466efb00dee6428f0660fc20b6fd84600f30f017a0066b9800100000f320f38f03f0fc77c86660f38825b260f20c06635020000000f22c0", 0x40}], 0x1, 0x6c, &(0x7f0000000480)=[@efer], 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
mount$9p_fd(0x0, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYBLOB, @ANYRES16=r4])
ioctl$KVM_RUN(r4, 0xae80, 0x0)

8.193003483s ago: executing program 1 (id=422):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
getpid()
lseek(0xffffffffffffffff, 0x4, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x8, 0x3, 0x9e8, 0x8b8, 0xa, 0x148, 0x0, 0x60, 0x950, 0x2a8, 0x2a8, 0x950, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x850, 0x8b8, 0x0, {0x200003ae, 0x7f00}, [@common=@unspec=@u32={{0x7e0}, {[{}, {[], [{}, {0xffffffff}]}, {}, {[], [{}, {}, {}, {}, {}, {0x0, 0x9}]}, {}, {[{}, {0x0, 0x1}]}], 0xa}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x11, 0x7fff, 0x0, 0x0, 'syz1\x00', 'syz0\x00', {0x8000000000000000}}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0xa48)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x20, 0x41, 0x107, 0x0, 0x0, {0x4}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev}]}]}, 0x20}}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
setxattr$security_ima(&(0x7f0000000380)='./file0\x00', &(0x7f0000000100), &(0x7f0000000280)=ANY=[@ANYBLOB="0407"], 0x2, 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000100)=[{0x15, 0x0, 0x1}, {0x15}, {0x6}]})

5.832050636s ago: executing program 1 (id=515):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
getpid()
lseek(0xffffffffffffffff, 0x4, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x8, 0x3, 0x9e8, 0x8b8, 0xa, 0x148, 0x0, 0x60, 0x950, 0x2a8, 0x2a8, 0x950, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x850, 0x8b8, 0x0, {0x200003ae, 0x7f00}, [@common=@unspec=@u32={{0x7e0}, {[{}, {[], [{}, {0xffffffff}]}, {}, {[], [{}, {}, {}, {}, {}, {0x0, 0x9}]}, {}, {[{}, {0x0, 0x1}]}], 0xa}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x11, 0x7fff, 0x0, 0x0, 'syz1\x00', 'syz0\x00', {0x8000000000000000}}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0xa48)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x20, 0x41, 0x107, 0x0, 0x0, {0x4}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev}]}]}, 0x20}}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
setxattr$security_ima(&(0x7f0000000380)='./file0\x00', &(0x7f0000000100), &(0x7f0000000280)=ANY=[@ANYBLOB="0407"], 0x2, 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000100)=[{0x15, 0x0, 0x1}, {0x15}, {0x6}]})

5.630430264s ago: executing program 3 (id=516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x90)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000140))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCGETS2(r2, 0x4b4b, 0xfffffffffffffffc)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x1)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000002c0))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000ac0)={0x1950, r5, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_MODES_OURS={0xe4, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xe0, 0x4, "9e69e4c7da08219e80c9cc7164ae7069874e0ba192256bfb1f285b26f5d625bda4075c4b396652e48f944d4aab26200a43b6d43cfc4596c503731b7b04e039d12db879877642cc10b0aa694866c23dd9ed721a114045a0f55ed97f216bf9bbfbd1af67e1443d69cc26536afbc4e17c15fb2ad2b9152eeaf0a7bf8c565126270ba5d66cd0f48cfadf80530240274d7c64d196bd3401cb9b122f33c653ac40054868ec31e2dbd736798816bb53dc72053bde6b53290315d45e8ff279c244724a1aac41195f65025437727e83bd377f43794f668ffee927718420e43333"}]}, @ETHTOOL_A_EEE_MODES_OURS={0x41c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xbb98}, @ETHTOOL_A_BITSET_VALUE={0x61, 0x4, "f1acdfe7019a58048eadff8ae306dda7e3b070415d99a71e64135ed80c06785f2dedac3197ac0dc6d413b29db13de6b3957ea96912cb093bdb0fe35081dbcc8d44e64e3ae0bdd9e6782d08cf20ccc6077f7f71441b6f420fd8c7e2ec5d"}, @ETHTOOL_A_BITSET_BITS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\xc7\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x78, 0x3, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ':)%\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0xf7, 0x5, "349a379db4d348829316af65c0212632757f7ca2e121790c6d2bc286888ddcde5e240e05bdda4082af89366eb52d07eb7a1f2f55ea80cae206f093826f9d2f3165048466c9c51d0062051f564074af1aed7354fa4ec71f07c3babe8bc7b695abd74a37340932282bc1236e349b7e325bcf7cc0a339cf0e7a718bb1d8bb7df86b9dfd0de3d54bb64a4e45d7cfca22cc07fea536da0a98b08ead5cda9776def1f8e7441acdb09d8aed72aaa23e72d405fb282bcc107277d6d827cb49669a4f1776da37ffc04baa643777b41fad98de192d23d1dcdbdc434057d3aa7f555b9a37fd59965e93ad58ceed844946eba542ddb620ecbb"}, @ETHTOOL_A_BITSET_MASK={0x31, 0x5, "90c533adf4fc06d7b15ac731a2b65cf28c67a62ec88ffa0908f8c78f2d968df5de305ba7da808b35cab7ef2164"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffffff9}, @ETHTOOL_A_BITSET_VALUE={0xee, 0x4, "f10edafef463badf95488d35b495414d6732df925c0ecb95cc8fdb104d061ebece53caffece82634e7585f8a2ed0eda26c2b32659cc6c50426e3825809e2e442cf073cde5fd5ab1a4f13b105388e8bac74ab1e5ec10c8da448c2deb9d7ddcbbcbbc3e4531d65a496d1a24b7943c0a61c1a7077709abaab6547ae19919b83808577b03df21ef815cf3c7e17c0ac3b40f8f7133bcc5b7f6a12cc85c19f2d78fd2cebd3890303c86d3ca398289ffa68590f6611625f3d68e4bfdc3fae06779d91d534083bb5d649ffdf6026698dd285b3491adb4d6ac27cad69df91ca3871a99b30a438ed66a4f9740746bd"}, @ETHTOOL_A_BITSET_VALUE={0xb5, 0x4, "95da1900a4625fc2afa81d0b48230d7de69cac92a5c02bbba16dde6e6b4a8e195bde9857cab426d40996c26e73cf7ca4cde8b90c591e83318cc0c37548eabaf20650e6e0af52a9485b19cedf07d1b20f1c79985e28224f53e00542a6660e9fbe8252b7c515cd8ad9223a8ed0348e790c7656b10ef2437b2bd37927e33d3ea790d9bb25e97274a51945ec8fbece3d0e6e3c2134312f258162fbf38664c9cf8cb3aea372616153939401984e93814f741007"}, @ETHTOOL_A_BITSET_MASK={0x3e, 0x5, "e70b3822bead104d48e33521cfdad3929009aa97cdd6d573f2bff4bebf39d5dec3b0d526f321454d2e60227ae65815bcd4e55c4f9459e2f72b1f"}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_MODES_OURS={0x142c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xf8, 0x4, "f1ecaec47ff9bdfafaac02b469dbd0664bd321f5d891656e99578dca2afff83b57780b291cfe621bd0106d73c93a011e5a2adb4573ff4d4cc187c9cc6e0f79e8899445c5110af984c9e74e9897f6f217eecd0549043a0f68dfa60b124f95f990cc5d50ab29cfad2021af6f436675dbe13f56e80e1cbed948baaf8a74e95cfc75e4a4bb11d199a98d71a576be8fbbe07b9a6e87d0f8f429a7457d4b8f46ad125cbaea82d1370d6ee3a8b29d86220cfce9bc25d046d20bd883aaeaf1fa9c79cc080bc7883f347e6a64325524da8d7df28d6337645879e53b2571ca66c176a1cac5df9e1599de6ee4f952fc1dfbd09adbef3e5abe5e"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x479c}, @ETHTOOL_A_BITSET_BITS={0x148, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '[\x1c\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\\-^*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '#)\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8e2}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '@\xf6[]$}&\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '@--\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x84}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}]}, {0xa4, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/ptmx\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x83, 0x2, '6\x19\xe7\xa1\xbcu\xddCx\xa0\xfd\xb7\xbca~\xad\x01\x01\xf1\xc9\xf1\x18n\xdcA\xb9\x80\x86\xe0\xa5\x17q2\x8cu\v\xf7L\xe2^S\xb8\xf3d\x7fb\n\x9c\t\xc8\v\x8bT\xcc~\x19#\xdd\xe7D\x93\x98\xdd\xb3\xd4\xc2\x02\xdf\x02\xdb!\x93,\x16\xd7\x10\x80uW\x99\xb9EK\xf6\xc4\xa0x\x92\xdcl\xd5 \x98\xe7\xb5\xfb\xd3Y^\xfa(\xcf-\xbcz!s\xf0\'\xdf\xac\'\'\xe7[\x84\xf8\x92\xf3\xc4\nY*_\xccUQ'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xc}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x4}]}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_MASK={0xf8, 0x5, "9a76b5e65a3145e8c78fc94049f2044676b04fb2a6f14371346126906da976bb81474386a6797ba5f8f3446a722710fdbcefb16b3164dd85b3c81c8014ee14ed004bbd3dc883978aaf02de65cd81410f88864ad652fc0759a64d7f63552074447badd108d8b899f6253a53aaa962b5764ae5241bb1bde2ff21259edaec1abece1d380f70650282f49b5b0a6261ce2293ed5231e7b2e81bc18ef8a4432df3ca811f79cdd61c07ac096e24d05bd8aaa617e27b23db68d638c76126dd22645569fd9c0580d0f826ef8d9c0544a87a596487c24bf8ff5aefce90b929c5b2788fd0251fb938d7c8b01d7df77cabdbf1a3f5b206b19345"}, @ETHTOOL_A_BITSET_BITS={0xe4, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '(){\x00'}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, '\',$\xc2\xd9)!:,!+\xd4*\x00'}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\x0f@::\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '@}[/:*\xf0\xff\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xef}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4b}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}]}, 0x1950}, 0x1, 0x0, 0x0, 0x44010}, 0xc004)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r6}, 0x10)
r8 = eventfd2(0x400, 0x80800)
ioctl$VHOST_SET_VRING_ERR(r7, 0x4008af22, &(0x7f00000003c0)={0x3, r8})
bpf$OBJ_GET_MAP(0x23, &(0x7f0000000380)=@generic={0x0, 0x0, 0x18}, 0x18)

4.868013548s ago: executing program 0 (id=517):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x9)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000100)=ANY=[], 0x6)
recvmmsg(r1, &(0x7f0000000580)=[{{&(0x7f0000000080)=@nl=@unspec, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/230, 0xe6}, {&(0x7f0000000240)=""/200, 0xc8}, {&(0x7f0000000340)=""/175, 0xaf}, {&(0x7f0000000400)=""/53, 0x35}, {&(0x7f0000000440)=""/119, 0x77}], 0x5, &(0x7f0000000540)=""/55, 0x37}}], 0x400000000000222, 0x12142, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000010003b15000000000000000000000200", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500170000000000050016"], 0x44}}, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
connect$pppl2tp(r0, &(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x0, 0x2, 0x4, 0x1, {0xa, 0x4e23, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80000001}}}, 0x32)

4.850561262s ago: executing program 4 (id=518):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_io_uring_setup(0x7f80, &(0x7f0000000340)={0x0, 0x0, 0x100, 0x0, 0x10}, &(0x7f00000005c0), &(0x7f0000000180))
r3 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000480)="036b", 0x2, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, &(0x7f00000000c0)=""/83, 0x53, 0x0)
r5 = add_key$user(&(0x7f0000000200), &(0x7f0000000440), &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd)
add_key$user(&(0x7f0000000540), &(0x7f0000000380)={'syz', 0x2}, &(0x7f0000000580)="ed", 0x1, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000340)={0x0, r5}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2s-128\x00'}, 0x0, 0x50})
r6 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r6, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
linkat(r6, &(0x7f00000001c0)='./file1\x00', r6, &(0x7f0000000240)='./file0\x00', 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x14927e, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0xe4c68c55c8a9ffa8)

4.783097715s ago: executing program 1 (id=519):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_io_uring_setup(0x7f80, &(0x7f0000000340)={0x0, 0x0, 0x100, 0x0, 0x10}, &(0x7f00000005c0), &(0x7f0000000180))
r3 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000480)="036b", 0x2, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, &(0x7f00000000c0)=""/83, 0x53, 0x0)
r5 = add_key$user(&(0x7f0000000200), &(0x7f0000000440), &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd)
add_key$user(&(0x7f0000000540), &(0x7f0000000380)={'syz', 0x2}, &(0x7f0000000580)="ed", 0x1, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000340)={0x0, r5}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2s-128\x00'}, 0x0, 0x50})
r6 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r6, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
linkat(r6, &(0x7f00000001c0)='./file1\x00', r6, &(0x7f0000000240)='./file0\x00', 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x14927e, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0xe4c68c55c8a9ffa8)

3.61665322s ago: executing program 4 (id=520):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=ANY=[@ANYBLOB="180200"/14, @ANYRES32, @ANYBLOB="0000000000000000660000000000000018000000000000000000000000000000950000000000000018010000202070250000000000202020db1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50200000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222}, 0x90)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0x4, 0xb, "ec28a144f13d7607"})
write$binfmt_script(r0, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)

2.355558122s ago: executing program 1 (id=521):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x28de, 0x1142, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)}, 0x40000010)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x20, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', r2}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)

2.320911022s ago: executing program 4 (id=522):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x40000000015, 0x5, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), &(0x7f0000000340), 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r4, &(0x7f0000000380)=[{&(0x7f0000000140)='W', 0x1}], 0x1)
rt_sigaction(0x40, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000380))
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0xc480, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r6, 0x3b88, &(0x7f0000000180)={0xc, r7})
ioctl$IOMMU_VFIO_IOMMU_MAP_DMA(r6, 0x3b71, &(0x7f0000000200)={0x20, 0x0, 0x0, 0x0, 0x8000000000000000})
ioctl$IOMMU_IOAS_COPY$syz(r6, 0x3b83, &(0x7f0000000440)={0x28, 0x6, 0x0, r7, 0x157b16, 0x2})
ioctl$IOMMU_DESTROY$ioas(r5, 0x3b80, &(0x7f0000000240)={0x8, r7})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='stat\x00')
read$FUSE(r8, &(0x7f0000004180)={0x2020}, 0x2020)

1.001812185s ago: executing program 4 (id=523):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x0, 0x0, 0x2, r2, 0xb})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0x0, 0x8000000, 0x2, r2, 0xb}) (fail_nth: 2)

851.602597ms ago: executing program 0 (id=524):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmsg$inet6(r1, &(0x7f0000001600)={&(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c, &(0x7f0000001580)=[{&(0x7f00000010c0)="bf", 0x1}], 0x1}, 0x0)
shutdown(r1, 0x1)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x0)
r4 = mq_open(&(0x7f0000000000)='\x00', 0x40, 0x2a, &(0x7f0000000080)={0x4, 0x7, 0x1, 0x7})
mq_timedreceive(r4, &(0x7f0000000100)=""/156, 0x9c, 0x2bd, &(0x7f0000000200)={0x0, 0x989680})
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000000c0)={0x0, 0x0, 0x2, r3, 0xb})
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000040)={0x0, 0x8000000, 0x2, r3, 0xb})

431.73503ms ago: executing program 0 (id=525):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netlink\x00')
preadv(r3, &(0x7f00000014c0)=[{&(0x7f00000000c0)=""/19, 0x13}], 0x1, 0xc81, 0x0) (fail_nth: 2)

431.124183ms ago: executing program 4 (id=526):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))

0s ago: executing program 4 (id=527):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x2}]}, @IFLA_IFALIAS={0x14, 0x14, 'wg1\x00'}]}, 0x40}}, 0x0) (fail_nth: 2)

kernel console output (not intermixed with test programs):

error -5
[  212.692433][ T6774] team0: Port device team_slave_0 added
[  212.699707][ T5374] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input23
[  212.754160][ T6774] team0: Port device team_slave_1 added
[  212.827533][ T6849] FAULT_INJECTION: forcing a failure.
[  212.827533][ T6849] name failslab, interval 1, probability 0, space 0, times 0
[  212.892158][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: syz.1.343 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  212.902789][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  212.912873][ T6849] Call Trace:
[  212.916168][ T6849]  <TASK>
[  212.919122][ T6849]  dump_stack_lvl+0x241/0x360
[  212.923831][ T6849]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.929052][ T6849]  ? __pfx__printk+0x10/0x10
[  212.933637][ T6849]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  212.939200][ T6849]  ? __pfx___might_resched+0x10/0x10
[  212.944514][ T6849]  should_fail_ex+0x3b0/0x4e0
[  212.949209][ T6849]  ? fcntl_setlk+0xab/0x10a0
[  212.953786][ T6849]  should_failslab+0xac/0x100
[  212.958457][ T6849]  ? fcntl_setlk+0xab/0x10a0
[  212.963050][ T6849]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  212.968418][ T6849]  fcntl_setlk+0xab/0x10a0
[  212.972825][ T6849]  ? __might_fault+0xaa/0x120
[  212.977487][ T6849]  ? smack_log+0x123/0x540
[  212.981899][ T6849]  ? __pfx_lock_release+0x10/0x10
[  212.986956][ T6849]  ? __pfx_fcntl_setlk+0x10/0x10
[  212.991902][ T6849]  ? __might_fault+0xc6/0x120
[  212.996578][ T6849]  do_fcntl+0x661/0x1730
[  213.000816][ T6849]  ? smack_file_fcntl+0x2b6/0x360
[  213.005935][ T6849]  ? __pfx_do_fcntl+0x10/0x10
[  213.010601][ T6849]  ? __pfx_smack_file_fcntl+0x10/0x10
[  213.015983][ T6849]  ? tomoyo_file_fcntl+0x80/0x210
[  213.021022][ T6849]  ? bpf_lsm_file_fcntl+0x9/0x10
[  213.025949][ T6849]  ? security_file_fcntl+0x87/0xb0
[  213.031057][ T6849]  __se_sys_fcntl+0xd2/0x1c0
[  213.035647][ T6849]  do_syscall_64+0xf3/0x230
[  213.040140][ T6849]  ? clear_bhb_loop+0x35/0x90
[  213.044813][ T6849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.050700][ T6849] RIP: 0033:0x7f868c37cef9
[  213.055113][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.074730][ T6849] RSP: 002b:00007f868d10f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  213.083150][ T6849] RAX: ffffffffffffffda RBX: 00007f868c535f80 RCX: 00007f868c37cef9
[  213.091106][ T6849] RDX: 0000000020002000 RSI: 0000000000000006 RDI: 0000000000000004
[  213.099148][ T6849] RBP: 00007f868d10f090 R08: 0000000000000000 R09: 0000000000000000
[  213.107128][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.115111][ T6849] R13: 0000000000000000 R14: 00007f868c535f80 R15: 00007ffd6cd363f8
[  213.123088][ T6849]  </TASK>
[  213.126244][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.156715][ T6774] batman_adv: batadv0: Adding interface: batadv_slave_0
[  213.168417][ T6774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.255579][ T6774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  213.348542][ T6831] bridge1: entered promiscuous mode
[  213.372362][ T6858] FAULT_INJECTION: forcing a failure.
[  213.372362][ T6858] name failslab, interval 1, probability 0, space 0, times 0
[  213.374004][ T6831] bridge1: entered allmulticast mode
[  213.408961][ T5275] usb 5-1: USB disconnect, device number 13
[  213.426616][ T6774] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.443877][ T6774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.469887][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.487064][ T6858] CPU: 0 UID: 0 PID: 6858 Comm: syz.1.345 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  213.497773][ T6858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  213.507978][ T6858] Call Trace:
[  213.511250][ T6858]  <TASK>
[  213.514172][ T6858]  dump_stack_lvl+0x241/0x360
[  213.518859][ T6858]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.524054][ T6858]  ? __pfx__printk+0x10/0x10
[  213.528632][ T6858]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  213.534632][ T6858]  ? __pfx___might_resched+0x10/0x10
[  213.539937][ T6858]  should_fail_ex+0x3b0/0x4e0
[  213.544630][ T6858]  should_failslab+0xac/0x100
[  213.545010][ T5374] usb 1-1: reset high-speed USB device number 12 using dummy_hcd
[  213.549307][ T6858]  ? __alloc_skb+0x1c3/0x440
[  213.561628][ T6858]  kmem_cache_alloc_node_noprof+0x71/0x320
[  213.567433][ T6858]  __alloc_skb+0x1c3/0x440
[  213.571847][ T6858]  ? __pfx___alloc_skb+0x10/0x10
[  213.576781][ T6858]  ? netlink_autobind+0xd6/0x2f0
[  213.581731][ T6858]  ? netlink_autobind+0x2b0/0x2f0
[  213.586750][ T6858]  netlink_sendmsg+0x638/0xcb0
[  213.591521][ T6858]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.596799][ T6858]  ? __import_iovec+0x536/0x820
[  213.601643][ T6858]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  213.606930][ T6858]  ? security_socket_sendmsg+0x87/0xb0
[  213.612391][ T6858]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.617681][ T6858]  __sock_sendmsg+0x221/0x270
[  213.622361][ T6858]  ____sys_sendmsg+0x525/0x7d0
[  213.627133][ T6858]  ? __pfx_____sys_sendmsg+0x10/0x10
[  213.632416][ T6858]  __sys_sendmsg+0x2b0/0x3a0
[  213.637012][ T6858]  ? __pfx___sys_sendmsg+0x10/0x10
[  213.642155][ T6858]  ? vfs_write+0x7c4/0xc90
[  213.646594][ T6858]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  213.652920][ T6858]  ? do_syscall_64+0x100/0x230
[  213.657685][ T6858]  ? do_syscall_64+0xb6/0x230
[  213.662356][ T6858]  do_syscall_64+0xf3/0x230
[  213.666850][ T6858]  ? clear_bhb_loop+0x35/0x90
[  213.671615][ T6858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.677500][ T6858] RIP: 0033:0x7f868c37cef9
[  213.681902][ T6858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.701571][ T6858] RSP: 002b:00007f868d10f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  213.710004][ T6858] RAX: ffffffffffffffda RBX: 00007f868c535f80 RCX: 00007f868c37cef9
[  213.717970][ T6858] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  213.725952][ T6858] RBP: 00007f868d10f090 R08: 0000000000000000 R09: 0000000000000000
[  213.733919][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.741901][ T6858] R13: 0000000000000000 R14: 00007f868c535f80 R15: 00007ffd6cd363f8
[  213.749910][ T6858]  </TASK>
[  213.771773][ T6774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  213.929286][ T6774] hsr_slave_0: entered promiscuous mode
[  213.946758][ T5234] Bluetooth: hci2: command tx timeout
[  214.092996][ T6774] hsr_slave_1: entered promiscuous mode
[  214.113989][ T6774] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  214.134727][ T6774] Cannot create hsr debugfs directory
[  214.143522][ T6866] FAULT_INJECTION: forcing a failure.
[  214.143522][ T6866] name failslab, interval 1, probability 0, space 0, times 0
[  214.178221][ T6866] CPU: 1 UID: 0 PID: 6866 Comm: syz.1.347 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  214.188835][ T6866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  214.198887][ T6866] Call Trace:
[  214.202157][ T6866]  <TASK>
[  214.205176][ T6866]  dump_stack_lvl+0x241/0x360
[  214.209869][ T6866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.215060][ T6866]  ? __pfx__printk+0x10/0x10
[  214.219641][ T6866]  ? __kmalloc_node_noprof+0xb7/0x440
[  214.225105][ T6866]  ? __pfx___might_resched+0x10/0x10
[  214.230386][ T6866]  should_fail_ex+0x3b0/0x4e0
[  214.235059][ T6866]  should_failslab+0xac/0x100
[  214.239740][ T6866]  __kmalloc_node_noprof+0xdf/0x440
[  214.244962][ T6866]  ? __kvmalloc_node_noprof+0x72/0x190
[  214.250443][ T6866]  __kvmalloc_node_noprof+0x72/0x190
[  214.255745][ T6866]  map_get_next_key+0x285/0x640
[  214.260617][ T6866]  ? __might_fault+0xc6/0x120
[  214.265305][ T6866]  ? bpf_lsm_bpf+0x9/0x10
[  214.269624][ T6866]  __sys_bpf+0x72e/0x810
[  214.273859][ T6866]  ? __pfx___sys_bpf+0x10/0x10
[  214.278704][ T6866]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  214.284762][ T6866]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  214.291088][ T6866]  ? do_syscall_64+0x100/0x230
[  214.295841][ T6866]  __x64_sys_bpf+0x7c/0x90
[  214.300245][ T6866]  do_syscall_64+0xf3/0x230
[  214.304735][ T6866]  ? clear_bhb_loop+0x35/0x90
[  214.309456][ T6866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.315336][ T6866] RIP: 0033:0x7f868c37cef9
[  214.319750][ T6866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.339354][ T6866] RSP: 002b:00007f868d10f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  214.347855][ T6866] RAX: ffffffffffffffda RBX: 00007f868c535f80 RCX: 00007f868c37cef9
[  214.355827][ T6866] RDX: 0000000000000020 RSI: 0000000020000480 RDI: 0000000000000004
[  214.363831][ T6866] RBP: 00007f868d10f090 R08: 0000000000000000 R09: 0000000000000000
[  214.371796][ T6866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.379896][ T6866] R13: 0000000000000000 R14: 00007f868c535f80 R15: 00007ffd6cd363f8
[  214.387880][ T6866]  </TASK>
[  214.390916][    C1] vkms_vblank_simulate: vblank timer overrun
[  216.222517][ T5271] usb 1-1: USB disconnect, device number 12
[  216.513415][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.0.351'.
[  216.541311][ T6882] sctp: [Deprecated]: syz.2.353 (pid 6882) Use of struct sctp_assoc_value in delayed_ack socket option.
[  216.541311][ T6882] Use struct sctp_sack_info instead
[  216.557759][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.0.351'.
[  217.620257][ T6774] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.823136][ T6889] netlink: 24 bytes leftover after parsing attributes in process `syz.1.354'.
[  217.899155][ T6900] tmpfs: Bad value for 'mpol'
[  217.986337][ T6901] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  218.027272][ T6774] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.061374][ T6901] netlink: 24 bytes leftover after parsing attributes in process `syz.0.358'.
[  218.071482][ T6901] geneve0: entered allmulticast mode
[  218.119673][ T6774] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.124807][ T5275] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  218.298935][ T6774] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.394763][ T5275] usb 5-1: Using ep0 maxpacket: 16
[  218.412203][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  218.447729][ T5275] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  218.479768][ T5275] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  218.492259][ T5275] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  218.538169][ T5275] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[  218.559660][ T5275] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[  218.594813][ T5275] usb 5-1: Product: syz
[  218.622718][ T5275] usb 5-1: Manufacturer: syz
[  218.639885][ T5275] usb 5-1: SerialNumber: syz
[  218.681293][ T5275] usb 5-1: config 0 descriptor??
[  218.696033][ T6774] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  218.716104][ T5275] usb 5-1: NFC: intf ffff88807f80c000 id ffffffff8f0bfb00
[  218.741200][ T6774] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  218.781051][ T5275] nfcmrvl 5-1:0.0: NFC: registered with nci successfully
[  218.818046][ T6774] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  218.831028][ T6774] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  218.889949][   T29] audit: type=1326 audit(1725582952.977:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6916 comm="syz.2.363" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbb2eb7cef9 code=0x0
[  218.953707][ T6898] syz.4.356 uses obsolete (PF_INET,SOCK_PACKET)
[  218.981414][ T5271] usb 5-1: USB disconnect, device number 14
[  219.003935][ T5271] usb 5-1: NFC: intf ffff88807f80c000
[  219.041955][ T6774] 8021q: adding VLAN 0 to HW filter on device bond0
[  219.115732][ T6922] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  219.155822][ T6774] 8021q: adding VLAN 0 to HW filter on device team0
[  219.190959][ T1053] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.198336][ T1053] bridge0: port 1(bridge_slave_0) entered forwarding state
[  219.217088][ T1053] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.224304][ T1053] bridge0: port 2(bridge_slave_1) entered forwarding state
[  219.610817][ T6774] 8021q: adding VLAN 0 to HW filter on device batadv0
[  219.716127][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.4.364'.
[  219.736796][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.4.364'.
[  219.771617][ T6774] veth0_vlan: entered promiscuous mode
[  219.816333][ T6774] veth1_vlan: entered promiscuous mode
[  219.956011][ T6774] veth0_macvtap: entered promiscuous mode
[  219.997005][ T6774] veth1_macvtap: entered promiscuous mode
[  220.180891][ T6942] No control pipe specified
[  220.424846][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.438933][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.449300][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.471529][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.486792][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.502321][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.518121][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.530442][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.542771][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.560791][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.594709][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.645061][ T5271] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  220.654252][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.689727][ T6774] batman_adv: batadv0: Interface activated: batadv_slave_0
[  220.743185][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.795878][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.832486][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.877316][ T5271] usb 1-1: config 0 has an invalid interface number: 179 but max is 0
[  220.888850][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.107585][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.121854][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.121920][ T5271] usb 1-1: config 0 has no interface number 0
[  221.138260][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.163045][ T6956] netlink: 32 bytes leftover after parsing attributes in process `syz.1.373'.
[  221.239522][ T5271] usb 1-1: config 0 interface 179 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  221.324701][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.339882][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.370470][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.381242][ T5271] usb 1-1: New USB device found, idVendor=19d2, idProduct=1021, bcdDevice=ec.0d
[  221.463028][ T5271] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.475525][ T6774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.483905][ T6959] tmpfs: Bad value for 'mpol'
[  221.498076][ T5271] usb 1-1: Product: syz
[  221.508004][ T6774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.769306][ T6774] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.795125][ T5271] usb 1-1: Manufacturer: syz
[  221.815432][ T5271] usb 1-1: SerialNumber: syz
[  221.819015][ T6774] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.857577][ T5271] usb 1-1: config 0 descriptor??
[  221.863185][ T6774] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.867156][ T5271] option 1-1:0.179: GSM modem (1-port) converter detected
[  221.907572][ T6774] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.970679][ T6774] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.077568][ T5275] usb 1-1: USB disconnect, device number 13
[  222.117363][ T5275] option 1-1:0.179: device disconnected
[  222.376605][ T5234] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  222.514813][ T6323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.551467][ T5234] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  222.562137][ T3037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.583071][ T6323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  222.740249][ T5234] Bluetooth: hci0: link tx timeout
[  222.748954][ T5234] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  222.822006][ T3037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.827937][ T5234] Bluetooth: hci0: command 0x0406 tx timeout
[  226.536132][ T6976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.377'.
[  226.595370][ T6976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.377'.
[  226.921346][ T6985] netlink: 32 bytes leftover after parsing attributes in process `syz.0.378'.
[  227.009242][ T6987] FAULT_INJECTION: forcing a failure.
[  227.009242][ T6987] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  227.198087][ T6987] CPU: 0 UID: 0 PID: 6987 Comm: syz.4.380 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  227.208727][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  227.218791][ T6987] Call Trace:
[  227.222162][ T6987]  <TASK>
[  227.225097][ T6987]  dump_stack_lvl+0x241/0x360
[  227.229796][ T6987]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.235008][ T6987]  ? __pfx__printk+0x10/0x10
[  227.239610][ T6987]  ? __lock_acquire+0x137a/0x2040
[  227.244651][ T6987]  should_fail_ex+0x3b0/0x4e0
[  227.249349][ T6987]  prepare_alloc_pages+0x1da/0x5d0
[  227.254482][ T6987]  __alloc_pages_noprof+0x166/0x6c0
[  227.259716][ T6987]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  227.265475][ T6987]  alloc_pages_mpol_noprof+0x3e8/0x680
[  227.270967][ T6987]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  227.276964][ T6987]  ? alloc_pages_noprof+0xef/0x170
[  227.282087][ T6987]  __pmd_alloc+0x91/0x630
[  227.286426][ T6987]  ? mt_find+0x226/0x850
[  227.290676][ T6987]  ? __pfx___pmd_alloc+0x10/0x10
[  227.295633][ T6987]  handle_mm_fault+0xeaa/0x1ad0
[  227.300521][ T6987]  ? __pfx_handle_mm_fault+0x10/0x10
[  227.305841][ T6987]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  227.311144][ T6987]  exc_page_fault+0x2b9/0x8c0
[  227.315829][ T6987]  ? __might_fault+0xaa/0x120
[  227.320516][ T6987]  asm_exc_page_fault+0x26/0x30
[  227.325374][ T6987] RIP: 0010:rep_movs_alternative+0x30/0x70
[  227.331190][ T6987] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[  227.350804][ T6987] RSP: 0018:ffffc900044b7d48 EFLAGS: 00050206
[  227.356881][ T6987] RAX: ffffffff84a9fe01 RBX: 00000000200004ce RCX: 000000000000000e
[  227.364867][ T6987] RDX: 0000000000000001 RSI: 00000000200004c0 RDI: ffffc900044b7de0
[  227.372847][ T6987] RBP: 000000000000000e R08: ffffc900044b7ded R09: 1ffff92000896fbd
[  227.380828][ T6987] R10: dffffc0000000000 R11: fffff52000896fbe R12: 00000000200004c0
[  227.388816][ T6987] R13: 000000000000000e R14: ffffc900044b7de0 R15: 000000000000000e
[  227.396815][ T6987]  ? _copy_from_user+0x21/0xe0
[  227.401602][ T6987]  _copy_from_user+0x8c/0xe0
[  227.406204][ T6987]  move_addr_to_kernel+0x82/0x150
[  227.411245][ T6987]  __sys_bind+0x168/0x2f0
[  227.415586][ T6987]  ? __pfx___sys_bind+0x10/0x10
[  227.420542][ T6987]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  227.426880][ T6987]  ? do_syscall_64+0x100/0x230
[  227.431658][ T6987]  __x64_sys_bind+0x7a/0x90
[  227.436170][ T6987]  do_syscall_64+0xf3/0x230
[  227.440680][ T6987]  ? clear_bhb_loop+0x35/0x90
[  227.445375][ T6987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.451276][ T6987] RIP: 0033:0x7fc51af7cef9
[  227.455701][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.475353][ T6987] RSP: 002b:00007fc51bd3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  227.483786][ T6987] RAX: ffffffffffffffda RBX: 00007fc51b135f80 RCX: 00007fc51af7cef9
[  227.491776][ T6987] RDX: 000000000000000e RSI: 00000000200004c0 RDI: 0000000000000004
[  227.500291][ T6987] RBP: 00007fc51bd3e090 R08: 0000000000000000 R09: 0000000000000000
[  227.508296][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.516286][ T6987] R13: 0000000000000000 R14: 00007fc51b135f80 R15: 00007ffcb61b4cd8
[  227.524280][ T6987]  </TASK>
[  227.655295][ T5227] Bluetooth: hci4: command 0x0406 tx timeout
[  232.057707][ T7002] FAULT_INJECTION: forcing a failure.
[  232.057707][ T7002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.214325][ T7002] CPU: 1 UID: 0 PID: 7002 Comm: syz.1.382 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  232.225070][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  232.235151][ T7002] Call Trace:
[  232.238450][ T7002]  <TASK>
[  232.241490][ T7002]  dump_stack_lvl+0x241/0x360
[  232.246287][ T7002]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.251608][ T7002]  ? __pfx__printk+0x10/0x10
[  232.256326][ T7002]  should_fail_ex+0x3b0/0x4e0
[  232.261038][ T7002]  _copy_from_user+0x2f/0xe0
[  232.265672][ T7002]  move_addr_to_kernel+0x82/0x150
[  232.270730][ T7002]  copy_msghdr_from_user+0x43e/0x680
[  232.276042][ T7002]  ? _parse_integer_limit+0x1b5/0x200
[  232.281450][ T7002]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  232.287294][ T7002]  __sys_sendmmsg+0x374/0x740
[  232.292008][ T7002]  ? __pfx___sys_sendmmsg+0x10/0x10
[  232.297272][ T7002]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  232.303195][ T7002]  ? ksys_write+0x23e/0x2c0
[  232.307724][ T7002]  ? __pfx_lock_release+0x10/0x10
[  232.312800][ T7002]  ? vfs_write+0x7c4/0xc90
[  232.317249][ T7002]  ? __mutex_unlock_slowpath+0x21d/0x750
[  232.322902][ T7002]  ? __pfx_vfs_write+0x10/0x10
[  232.327717][ T7002]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  232.333724][ T7002]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  232.340168][ T7002]  ? do_syscall_64+0x100/0x230
[  232.344959][ T7002]  __x64_sys_sendmmsg+0xa0/0xb0
[  232.349837][ T7002]  do_syscall_64+0xf3/0x230
[  232.354364][ T7002]  ? clear_bhb_loop+0x35/0x90
[  232.359072][ T7002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.365080][ T7002] RIP: 0033:0x7f868c37cef9
[  232.369511][ T7002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.389575][ T7002] RSP: 002b:00007f868d10f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  232.398021][ T7002] RAX: ffffffffffffffda RBX: 00007f868c535f80 RCX: 00007f868c37cef9
[  232.406024][ T7002] RDX: 0000000000000001 RSI: 0000000020001840 RDI: 0000000000000003
[  232.414022][ T7002] RBP: 00007f868d10f090 R08: 0000000000000000 R09: 0000000000000000
[  232.422021][ T7002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.426784][ T7006] tmpfs: Bad value for 'mpol'
[  232.429997][ T7002] R13: 0000000000000000 R14: 00007f868c535f80 R15: 00007ffd6cd363f8
[  232.430033][ T7002]  </TASK>
[  232.554743][ T5272] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  232.777545][ T5272] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.836058][ T5272] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  232.870115][ T5272] usb 4-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00
[  232.924193][ T5272] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.957103][ T5272] usb 4-1: config 0 descriptor??
[  234.228487][ T5272] wacom 0003:056A:0027.000B: unknown main item tag 0x0
[  234.259425][ T5272] wacom 0003:056A:0027.000B: Unknown device_type for 'HID 056a:0027'. Assuming pen.
[  239.108553][ T5272] wacom 0003:056A:0027.000B: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.3-1/input0
[  239.241953][ T5272] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0027.000B/input/input25
[  239.345554][ T5272] usb 4-1: USB disconnect, device number 16
[  240.192484][ T7052] program syz.1.395 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  240.277157][ T7048] netlink: 8 bytes leftover after parsing attributes in process `syz.0.396'.
[  240.534509][ T7038] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  240.576080][ T7062] FAULT_INJECTION: forcing a failure.
[  240.576080][ T7062] name failslab, interval 1, probability 0, space 0, times 0
[  240.636900][ T7062] CPU: 1 UID: 0 PID: 7062 Comm: syz.0.397 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  240.648067][ T7062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  240.658149][ T7062] Call Trace:
[  240.661449][ T7062]  <TASK>
[  240.664398][ T7062]  dump_stack_lvl+0x241/0x360
[  240.669118][ T7062]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.674340][ T7062]  ? __pfx__printk+0x10/0x10
[  240.678950][ T7062]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  240.684982][ T7062]  ? __pfx___might_resched+0x10/0x10
[  240.690295][ T7062]  should_fail_ex+0x3b0/0x4e0
[  240.694997][ T7062]  should_failslab+0xac/0x100
[  240.699695][ T7062]  ? __alloc_skb+0x1c3/0x440
[  240.704304][ T7062]  kmem_cache_alloc_node_noprof+0x71/0x320
[  240.710148][ T7062]  __alloc_skb+0x1c3/0x440
[  240.714593][ T7062]  ? __pfx___alloc_skb+0x10/0x10
[  240.719559][ T7062]  pfkey_sendmsg+0x1da/0x1050
[  240.724273][ T7062]  ? smack_socket_sendmsg+0x172/0x540
[  240.729665][ T7062]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  240.734809][ T7062]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  240.741268][ T7062]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  240.748062][ T7062]  ? __pfx___might_resched+0x10/0x10
[  240.753376][ T7062]  ? __might_fault+0xaa/0x120
[  240.758074][ T7062]  ? __pfx_lock_release+0x10/0x10
[  240.763122][ T7062]  ? __import_iovec+0x536/0x820
[  240.768086][ T7062]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  240.773395][ T7062]  ? security_socket_sendmsg+0x87/0xb0
[  240.778963][ T7062]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  240.784088][ T7062]  __sock_sendmsg+0x221/0x270
[  240.788788][ T7062]  ____sys_sendmsg+0x525/0x7d0
[  240.793589][ T7062]  ? __pfx_____sys_sendmsg+0x10/0x10
[  240.798916][ T7062]  __sys_sendmsg+0x2b0/0x3a0
[  240.803531][ T7062]  ? __pfx___sys_sendmsg+0x10/0x10
[  240.808661][ T7062]  ? vfs_write+0x7c4/0xc90
[  240.813142][ T7062]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  240.819506][ T7062]  ? do_syscall_64+0x100/0x230
[  240.824295][ T7062]  ? do_syscall_64+0xb6/0x230
[  240.828991][ T7062]  do_syscall_64+0xf3/0x230
[  240.833511][ T7062]  ? clear_bhb_loop+0x35/0x90
[  240.838222][ T7062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.844137][ T7062] RIP: 0033:0x7f76b077cef9
[  240.848574][ T7062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.868207][ T7062] RSP: 002b:00007f76b162b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  240.876657][ T7062] RAX: ffffffffffffffda RBX: 00007f76b0935f80 RCX: 00007f76b077cef9
[  240.884653][ T7062] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  240.892646][ T7062] RBP: 00007f76b162b090 R08: 0000000000000000 R09: 0000000000000000
[  240.900648][ T7062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.908641][ T7062] R13: 0000000000000000 R14: 00007f76b0935f80 R15: 00007fff291969c8
[  240.916649][ T7062]  </TASK>
[  242.296583][ T7044] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  242.324941][ T7044] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  242.514924][ T5374] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  242.690140][ T7082] tmpfs: Cannot retroactively limit inodes
[  242.755838][ T7082] netlink: 4544 bytes leftover after parsing attributes in process `syz.3.399'.
[  242.776137][ T7082] netlink: 4544 bytes leftover after parsing attributes in process `syz.3.399'.
[  242.791152][ T5374] usb 5-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  242.812276][ T5374] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.814968][ T7044] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  242.888104][ T5374] usb 5-1: config 0 descriptor??
[  242.972377][ T7044] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  243.018535][ T5374] ums-karma 5-1:0.0: USB Mass Storage device detected
[  243.269606][ T7044] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  243.301775][ T7044] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  243.414440][ T7044] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  243.457851][ T7044] Bluetooth: hci6: Error when powering off device on rfkill (-4)
[  243.561133][ T7044] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  243.603553][ T7044] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  243.679212][ T7096] tmpfs: Bad value for 'mpol'
[  244.190290][ T7100] netlink: 'syz.0.402': attribute type 1 has an invalid length.
[  244.457469][ T7072] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  244.485809][ T5374] usb 5-1: USB disconnect, device number 15
[  244.516578][   T29] audit: type=1326 audit(1725582978.417:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7097 comm="syz.0.402" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f76b077cef9 code=0x0
[  245.119052][ T7110] usb usb8: usbfs: process 7110 (syz.1.403) did not claim interface 0 before use
[  245.362460][ T7107] netlink: 56 bytes leftover after parsing attributes in process `syz.3.404'.
[  245.576953][ T7122] netlink: 8 bytes leftover after parsing attributes in process `syz.4.407'.
[  246.233701][ T7044] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  246.262651][ T7044] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  246.321465][ T5275] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  246.342123][ T5308] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  246.658359][ T5308] usb 4-1: Using ep0 maxpacket: 32
[  246.726742][ T5308] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  246.738075][ T5308] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  246.755195][ T5308] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  246.756885][ T7132] syz.4.409: attempt to access beyond end of device
[  246.756885][ T7132] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  246.767841][ T5308] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.798672][ T7132] exFAT-fs (nbd4): unable to read boot sector
[  246.810008][ T7132] exFAT-fs (nbd4): failed to read boot sector
[  246.817244][ T7132] exFAT-fs (nbd4): failed to recognize exfat type
[  246.824209][ T5275] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  246.843621][ T5275] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.853803][ T5275] usb 1-1: Product: syz
[  246.873493][ T5308] usb 4-1: config 0 descriptor??
[  246.898898][ T5275] usb 1-1: Manufacturer: syz
[  246.903557][ T5275] usb 1-1: SerialNumber: syz
[  246.911397][ T5308] hub 4-1:0.0: USB hub found
[  246.933206][ T5275] usb 1-1: config 0 descriptor??
[  247.214774][ T7145] netlink: 8 bytes leftover after parsing attributes in process `syz.1.410'.
[  247.945459][ T5308] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  247.957897][ T5308] usbhid 4-1:0.0: can't add hid device: -71
[  247.964041][ T5308] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  248.601959][ T5308] usb 4-1: USB disconnect, device number 17
[  249.183100][ T7163] syzkaller0: entered promiscuous mode
[  249.188846][ T7163] syzkaller0: entered allmulticast mode
[  249.237346][ T7161] tmpfs: Bad value for 'mpol'
[  249.665419][ T5274] usb 1-1: USB disconnect, device number 14
[  252.951902][ T7171] 9pnet_fd: p9_fd_create_tcp (7171): problem connecting socket to 127.0.0.1
[  256.045505][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  256.051883][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  261.881681][ T5227] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  261.913510][ T5227] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  261.931789][ T5227] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  261.955857][ T5227] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  261.994167][ T5227] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  262.009181][ T5227] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  262.050484][ T5234] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  262.072373][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  262.082340][   T55] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  262.093554][ T5227] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  262.103986][   T55] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  262.114921][   T55] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  262.116722][ T7223] tmpfs: Bad value for 'mpol'
[  262.122311][ T5227] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  262.145155][ T5227] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  262.152595][ T5227] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  262.163387][ T5227] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  262.194175][ T5227] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  262.201664][ T5227] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  264.039597][   T63] bridge_slave_1: left allmulticast mode
[  264.045314][   T63] bridge_slave_1: left promiscuous mode
[  264.051068][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.061304][   T63] bridge_slave_0: left allmulticast mode
[  264.067112][   T63] bridge_slave_0: left promiscuous mode
[  264.072806][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.268758][ T5234] Bluetooth: hci3: command tx timeout
[  264.277110][ T5234] Bluetooth: hci7: command tx timeout
[  264.692796][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  264.703856][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  264.714727][   T63] bond0 (unregistering): Released all slaves
[  264.749370][ T7214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.423'.
[  264.928923][ T7231] FAULT_INJECTION: forcing a failure.
[  264.928923][ T7231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.974872][ T7231] CPU: 1 UID: 0 PID: 7231 Comm: syz.4.426 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  264.985548][ T7231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  264.995639][ T7231] Call Trace:
[  264.998932][ T7231]  <TASK>
[  265.001872][ T7231]  dump_stack_lvl+0x241/0x360
[  265.006872][ T7231]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.012111][ T7231]  ? __pfx__printk+0x10/0x10
[  265.016705][ T7231]  should_fail_ex+0x3b0/0x4e0
[  265.021397][ T7231]  strncpy_from_user+0x36/0x2e0
[  265.026260][ T7231]  ? kmem_cache_alloc_noprof+0x185/0x2a0
[  265.031897][ T7231]  getname_flags+0xf1/0x540
[  265.036392][ T7231]  do_sys_openat2+0xd2/0x1d0
[  265.040986][ T7231]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  265.047050][ T7231]  ? __pfx_do_sys_openat2+0x10/0x10
[  265.052240][ T7231]  ? __fget_files+0x3f6/0x470
[  265.056917][ T7231]  __x64_sys_openat+0x247/0x2a0
[  265.061761][ T7231]  ? __pfx___x64_sys_openat+0x10/0x10
[  265.067135][ T7231]  ? do_syscall_64+0x100/0x230
[  265.073589][ T7231]  ? do_syscall_64+0xb6/0x230
[  265.078479][ T7231]  do_syscall_64+0xf3/0x230
[  265.083066][ T7231]  ? clear_bhb_loop+0x35/0x90
[  265.088212][ T7231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.094145][ T7231] RIP: 0033:0x7fc51af7b890
[  265.099050][ T7231] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  265.121840][ T7231] RSP: 002b:00007fc51bd1cf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  265.131347][ T7231] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fc51af7b890
[  265.140612][ T7231] RDX: 0000000000000002 RSI: 00007fc51bd1cfa0 RDI: 00000000ffffff9c
[  265.149594][ T7231] RBP: 00007fc51bd1cfa0 R08: 0000000000000000 R09: 0000000000000000
[  265.159472][ T7231] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  265.169295][ T7231] R13: 0000000000000000 R14: 00007fc51b136058 R15: 00007ffcb61b4cd8
[  265.178877][ T7231]  </TASK>
[  265.320199][ T7235] netlink: 'syz.0.427': attribute type 1 has an invalid length.
[  265.433309][   T29] audit: type=1326 audit(1725583228.516:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7230 comm="syz.0.427" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f76b077cef9 code=0x0
[  266.403378][ T5227] Bluetooth: hci7: command tx timeout
[  266.412511][ T5227] Bluetooth: hci3: command tx timeout
[  267.554032][ T7247] netlink: 'syz.4.431': attribute type 1 has an invalid length.
[  267.757654][   T29] audit: type=1326 audit(1725583230.846:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7244 comm="syz.4.431" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc51af7cef9 code=0x0
[  268.004200][   T29] audit: type=1326 audit(1725583231.066:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7249 comm="syz.3.432" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f05da17cef9 code=0x0
[  269.762821][ T5234] Bluetooth: hci3: command tx timeout
[  269.769195][ T5227] Bluetooth: hci7: command tx timeout
[  270.102407][   T63] hsr_slave_0: left promiscuous mode
[  270.132524][   T63] hsr_slave_1: left promiscuous mode
[  270.896282][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  270.921288][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  270.955701][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  270.963166][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  271.088053][   T63] veth1_macvtap: left promiscuous mode
[  271.093636][   T63] veth0_macvtap: left promiscuous mode
[  271.131014][   T63] veth1_vlan: left promiscuous mode
[  271.141931][ T7281] tmpfs: Bad value for 'mpol'
[  271.147681][   T63] veth0_vlan: left promiscuous mode
[  271.784878][ T5227] Bluetooth: hci7: command tx timeout
[  271.790362][ T5234] Bluetooth: hci3: command tx timeout
[  272.133159][   T63] team0 (unregistering): Port device team_slave_1 removed
[  272.181811][   T63] team0 (unregistering): Port device team_slave_0 removed
[  272.619582][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'.
[  273.670182][ T7300] tmpfs: Invalid uid '0x00000000ffffffff'
[  274.814887][ T7218] chnl_net:caif_netlink_parms(): no params data found
[  275.292352][ T7221] chnl_net:caif_netlink_parms(): no params data found
[  275.558564][ T7322] FAULT_INJECTION: forcing a failure.
[  275.558564][ T7322] name failslab, interval 1, probability 0, space 0, times 0
[  275.604828][ T7322] CPU: 1 UID: 0 PID: 7322 Comm: syz.3.443 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  275.615469][ T7322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  275.625547][ T7322] Call Trace:
[  275.628841][ T7322]  <TASK>
[  275.631781][ T7322]  dump_stack_lvl+0x241/0x360
[  275.636498][ T7322]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.641808][ T7322]  ? __pfx__printk+0x10/0x10
[  275.646466][ T7322]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  275.652469][ T7322]  ? __pfx___might_resched+0x10/0x10
[  275.657777][ T7322]  should_fail_ex+0x3b0/0x4e0
[  275.662474][ T7322]  should_failslab+0xac/0x100
[  275.667171][ T7322]  ? __alloc_skb+0x1c3/0x440
[  275.671782][ T7322]  kmem_cache_alloc_node_noprof+0x71/0x320
[  275.677617][ T7322]  __alloc_skb+0x1c3/0x440
[  275.682053][ T7322]  ? __pfx___alloc_skb+0x10/0x10
[  275.686975][ T7322]  ? __rcu_read_unlock+0xa1/0x110
[  275.691986][ T7322]  ? netlink_autobind+0xd6/0x2f0
[  275.696906][ T7322]  ? netlink_autobind+0x2b0/0x2f0
[  275.701928][ T7322]  netlink_sendmsg+0x638/0xcb0
[  275.706708][ T7322]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.711992][ T7322]  ? __import_iovec+0x536/0x820
[  275.716834][ T7322]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  275.722152][ T7322]  ? security_socket_sendmsg+0x87/0xb0
[  275.727665][ T7322]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.732956][ T7322]  __sock_sendmsg+0x221/0x270
[  275.737720][ T7322]  ____sys_sendmsg+0x525/0x7d0
[  275.742483][ T7322]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.747772][ T7322]  __sys_sendmsg+0x2b0/0x3a0
[  275.752352][ T7322]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.757463][ T7322]  ? vfs_write+0x7c4/0xc90
[  275.761918][ T7322]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  275.768248][ T7322]  ? do_syscall_64+0x100/0x230
[  275.773025][ T7322]  ? do_syscall_64+0xb6/0x230
[  275.777702][ T7322]  do_syscall_64+0xf3/0x230
[  275.782215][ T7322]  ? clear_bhb_loop+0x35/0x90
[  275.786906][ T7322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.792817][ T7322] RIP: 0033:0x7f05da17cef9
[  275.797224][ T7322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.816928][ T7322] RSP: 002b:00007f05dafc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.825340][ T7322] RAX: ffffffffffffffda RBX: 00007f05da335f80 RCX: 00007f05da17cef9
[  275.833299][ T7322] RDX: 0000000000000000 RSI: 0000000020000740 RDI: 0000000000000003
[  275.841258][ T7322] RBP: 00007f05dafc9090 R08: 0000000000000000 R09: 0000000000000000
[  275.849215][ T7322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.857175][ T7322] R13: 0000000000000000 R14: 00007f05da335f80 R15: 00007ffce5496518
[  275.865156][ T7322]  </TASK>
[  275.932632][ T7316] netlink: 'syz.0.441': attribute type 1 has an invalid length.
[  275.990519][   T29] audit: type=1326 audit(1725583239.076:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7312 comm="syz.0.441" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f76b077cef9 code=0x0
[  276.034762][ T7323] netlink: 8 bytes leftover after parsing attributes in process `syz.4.442'.
[  277.323305][ T7338] tmpfs: Bad value for 'mpol'
[  277.355580][ T7218] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.391159][ T7218] bridge0: port 1(bridge_slave_0) entered disabled state
[  277.422855][ T7218] bridge_slave_0: entered allmulticast mode
[  277.432016][ T7218] bridge_slave_0: entered promiscuous mode
[  277.752169][   T63] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.468453][ T7218] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.490060][ T7218] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.507156][ T7218] bridge_slave_1: entered allmulticast mode
[  278.521221][ T7218] bridge_slave_1: entered promiscuous mode
[  278.599981][ T7221] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.635017][ T7221] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.660595][ T7221] bridge_slave_0: entered allmulticast mode
[  278.674671][ T7221] bridge_slave_0: entered promiscuous mode
[  278.713640][ T7347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.447'.
[  278.815264][   T63] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.898695][ T7221] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.907331][ T7221] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.917360][ T7221] bridge_slave_1: entered allmulticast mode
[  279.726665][ T7221] bridge_slave_1: entered promiscuous mode
[  279.802702][   T63] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.835037][ T7353] netlink: 8 bytes leftover after parsing attributes in process `syz.0.448'.
[  279.858048][ T7218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.973327][ T7221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.024485][ T7358] FAULT_INJECTION: forcing a failure.
[  280.024485][ T7358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.024505][ T7356] netlink: 8 bytes leftover after parsing attributes in process `syz.4.449'.
[  280.042054][ T7218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.056189][ T7358] CPU: 1 UID: 0 PID: 7358 Comm: syz.0.450 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  280.064272][ T7356] netlink: 8 bytes leftover after parsing attributes in process `syz.4.449'.
[  280.066782][ T7358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  280.066796][ T7358] Call Trace:
[  280.066804][ T7358]  <TASK>
[  280.066812][ T7358]  dump_stack_lvl+0x241/0x360
[  280.066840][ T7358]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.066865][ T7358]  ? __pfx__printk+0x10/0x10
[  280.066886][ T7358]  ? __pfx_lock_release+0x10/0x10
[  280.066917][ T7358]  should_fail_ex+0x3b0/0x4e0
[  280.066943][ T7358]  _copy_from_user+0x2f/0xe0
[  280.066967][ T7358]  copy_msghdr_from_user+0xae/0x680
[  280.066987][ T7358]  ? _parse_integer_limit+0x1b5/0x200
[  280.067016][ T7358]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  280.067051][ T7358]  __sys_sendmmsg+0x374/0x740
[  280.067084][ T7358]  ? __pfx___sys_sendmmsg+0x10/0x10
[  280.067141][ T7358]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  280.153220][ T7358]  ? ksys_write+0x23e/0x2c0
[  280.157752][ T7358]  ? __pfx_lock_release+0x10/0x10
[  280.162786][ T7358]  ? vfs_write+0x7c4/0xc90
[  280.167207][ T7358]  ? __mutex_unlock_slowpath+0x21d/0x750
[  280.172948][ T7358]  ? __pfx_vfs_write+0x10/0x10
[  280.177827][ T7358]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  280.183843][ T7358]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  280.190285][ T7358]  ? do_syscall_64+0x100/0x230
[  280.195056][ T7358]  __x64_sys_sendmmsg+0xa0/0xb0
[  280.199936][ T7358]  do_syscall_64+0xf3/0x230
[  280.204483][ T7358]  ? clear_bhb_loop+0x35/0x90
[  280.209432][ T7358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.215509][ T7358] RIP: 0033:0x7f76b077cef9
[  280.220545][ T7358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.240414][ T7358] RSP: 002b:00007f76b162b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  280.249792][ T7358] RAX: ffffffffffffffda RBX: 00007f76b0935f80 RCX: 00007f76b077cef9
[  280.257956][ T7358] RDX: 0307017fdb7a66cb RSI: 0000000020002dc0 RDI: 0000000000000004
[  280.266104][ T7358] RBP: 00007f76b162b090 R08: 0000000000000000 R09: 0000000000000000
[  280.274074][ T7358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.282144][ T7358] R13: 0000000000000000 R14: 00007f76b0935f80 R15: 00007fff291969c8
[  280.290233][ T7358]  </TASK>
[  280.326615][   T63] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.455526][ T7221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.619925][ T7218] team0: Port device team_slave_0 added
[  280.645540][ T7221] team0: Port device team_slave_0 added
[  280.672606][ T7218] team0: Port device team_slave_1 added
[  280.723560][ T7221] team0: Port device team_slave_1 added
[  280.735078][ T5374] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  280.936655][ T5374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.952556][ T5374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.980637][ T5374] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[  281.007563][ T7221] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.022090][ T7221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.024249][ T5374] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.057313][ T7221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.086377][ T7218] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.093495][ T7218] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.137461][ T5374] usb 5-1: config 0 descriptor??
[  281.141779][ T7218] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.185080][ T7376] tmpfs: Unknown parameter 'nr_ ñì´JI£7Ü9êÌ+R’Minodes'
[  281.213065][ T7218] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.217741][ T7376] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.454'.
[  281.232680][ T7376] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.454'.
[  281.244870][ T7376] netlink: 69 bytes leftover after parsing attributes in process `syz.0.454'.
[  281.259125][ T7218] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.337685][ T7218] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.423313][ T7221] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.454662][ T7221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.554809][ T7221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  282.288852][ T5374] hid (null): usage index exceeded
[  282.541086][ T5374] steelseries 0003:1038:12B6.000C: ignoring exceeding usage max
[  282.549848][ T5374] steelseries 0003:1038:12B6.000C: ignoring exceeding usage max
[  282.557700][ T5374] steelseries 0003:1038:12B6.000C: usage index exceeded
[  282.574633][ T5374] steelseries 0003:1038:12B6.000C: item 0 1 2 2 parsing failed
[  282.595393][ T5374] steelseries 0003:1038:12B6.000C: probe with driver steelseries failed with error -22
[  282.613474][ T7382] netlink: 'syz.3.455': attribute type 1 has an invalid length.
[  282.633156][   T29] audit: type=1326 audit(1725583245.716:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7379 comm="syz.3.455" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f05da17cef9 code=0x0
[  282.643751][ T5374] usb 5-1: USB disconnect, device number 16
[  282.681037][   T63] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.804480][ T7387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.456'.
[  282.843172][ T7218] hsr_slave_0: entered promiscuous mode
[  282.859905][ T7218] hsr_slave_1: entered promiscuous mode
[  282.871632][ T7218] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  282.935295][ T7218] Cannot create hsr debugfs directory
[  283.054198][   T63] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.109138][ T7221] hsr_slave_0: entered promiscuous mode
[  283.562255][ T7396] netlink: 'syz.0.458': attribute type 1 has an invalid length.
[  283.644774][ T7221] hsr_slave_1: entered promiscuous mode
[  283.660641][ T7221] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  283.686312][ T7221] Cannot create hsr debugfs directory
[  283.733134][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.4.459'.
[  283.743415][   T63] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.830759][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.4.459'.
[  283.891040][   T29] audit: type=1326 audit(1725583246.936:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7393 comm="syz.0.458" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f76b077cef9 code=0x0
[  284.041204][   T63] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.867904][ T7427] FAULT_INJECTION: forcing a failure.
[  285.867904][ T7427] name failslab, interval 1, probability 0, space 0, times 0
[  285.883093][ T7427] CPU: 1 UID: 0 PID: 7427 Comm: syz.3.464 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  285.893743][ T7427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  285.903825][ T7427] Call Trace:
[  285.907127][ T7427]  <TASK>
[  285.910075][ T7427]  dump_stack_lvl+0x241/0x360
[  285.914780][ T7427]  ? __pfx_dump_stack_lvl+0x10/0x10
[  285.919995][ T7427]  ? __pfx__printk+0x10/0x10
[  285.924585][ T7427]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  285.930587][ T7427]  ? __pfx___might_resched+0x10/0x10
[  285.935907][ T7427]  should_fail_ex+0x3b0/0x4e0
[  285.940602][ T7427]  should_failslab+0xac/0x100
[  285.945287][ T7427]  ? __alloc_skb+0x1c3/0x440
[  285.949903][ T7427]  kmem_cache_alloc_node_noprof+0x71/0x320
[  285.955716][ T7427]  __alloc_skb+0x1c3/0x440
[  285.960148][ T7427]  ? __pfx___alloc_skb+0x10/0x10
[  285.965101][ T7427]  ? netlink_autobind+0xd6/0x2f0
[  285.970222][ T7427]  ? netlink_autobind+0x2b0/0x2f0
[  285.975275][ T7427]  netlink_sendmsg+0x638/0xcb0
[  285.980031][ T7427]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.985314][ T7427]  ? __import_iovec+0x536/0x820
[  285.990178][ T7427]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  285.995649][ T7427]  ? security_socket_sendmsg+0x87/0xb0
[  286.001106][ T7427]  ? __pfx_netlink_sendmsg+0x10/0x10
[  286.006385][ T7427]  __sock_sendmsg+0x221/0x270
[  286.011072][ T7427]  ____sys_sendmsg+0x525/0x7d0
[  286.015845][ T7427]  ? __pfx_____sys_sendmsg+0x10/0x10
[  286.021253][ T7427]  __sys_sendmsg+0x2b0/0x3a0
[  286.025960][ T7427]  ? __pfx___sys_sendmsg+0x10/0x10
[  286.031112][ T7427]  ? vfs_write+0x7c4/0xc90
[  286.035589][ T7427]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  286.041945][ T7427]  ? do_syscall_64+0x100/0x230
[  286.046745][ T7427]  ? do_syscall_64+0xb6/0x230
[  286.051449][ T7427]  do_syscall_64+0xf3/0x230
[  286.055989][ T7427]  ? clear_bhb_loop+0x35/0x90
[  286.060776][ T7427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.066691][ T7427] RIP: 0033:0x7f05da17cef9
[  286.071124][ T7427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.090750][ T7427] RSP: 002b:00007f05dafc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  286.099192][ T7427] RAX: ffffffffffffffda RBX: 00007f05da335f80 RCX: 00007f05da17cef9
[  286.107192][ T7427] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  286.115272][ T7427] RBP: 00007f05dafc9090 R08: 0000000000000000 R09: 0000000000000000
[  286.123265][ T7427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  286.131257][ T7427] R13: 0000000000000000 R14: 00007f05da335f80 R15: 00007ffce5496518
[  286.139361][ T7427]  </TASK>
[  286.227282][   T63] bridge_slave_1: left allmulticast mode
[  286.233321][   T63] bridge_slave_1: left promiscuous mode
[  286.261573][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.306259][   T63] bridge_slave_0: left allmulticast mode
[  286.321862][   T63] bridge_slave_0: left promiscuous mode
[  286.358256][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.401186][   T63] bridge_slave_1: left allmulticast mode
[  286.422599][   T63] bridge_slave_1: left promiscuous mode
[  286.451946][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.216386][   T63] bridge_slave_0: left allmulticast mode
[  287.223309][   T63] bridge_slave_0: left promiscuous mode
[  287.229413][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.634602][ T7451] FAULT_INJECTION: forcing a failure.
[  287.634602][ T7451] name failslab, interval 1, probability 0, space 0, times 0
[  287.647475][ T7451] CPU: 1 UID: 0 PID: 7451 Comm: syz.4.467 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  287.658076][ T7451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  287.668222][ T7451] Call Trace:
[  287.671503][ T7451]  <TASK>
[  287.674437][ T7451]  dump_stack_lvl+0x241/0x360
[  287.679143][ T7451]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.684365][ T7451]  ? __pfx__printk+0x10/0x10
[  287.688968][ T7451]  ? __kmalloc_noprof+0xb0/0x400
[  287.693920][ T7451]  ? __pfx___might_resched+0x10/0x10
[  287.699220][ T7451]  should_fail_ex+0x3b0/0x4e0
[  287.703908][ T7451]  ? alloc_pipe_info+0x1ff/0x4d0
[  287.708851][ T7451]  should_failslab+0xac/0x100
[  287.713540][ T7451]  ? alloc_pipe_info+0x1ff/0x4d0
[  287.718480][ T7451]  __kmalloc_noprof+0xd8/0x400
[  287.723258][ T7451]  alloc_pipe_info+0x1ff/0x4d0
[  287.728029][ T7451]  splice_direct_to_actor+0xaac/0xc90
[  287.733443][ T7451]  ? __pfx_direct_splice_actor+0x10/0x10
[  287.739088][ T7451]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  287.744992][ T7451]  ? __fget_files+0x29/0x470
[  287.749590][ T7451]  ? __pfx_lock_release+0x10/0x10
[  287.754627][ T7451]  do_splice_direct+0x28c/0x3e0
[  287.759493][ T7451]  ? __pfx_do_splice_direct+0x10/0x10
[  287.764878][ T7451]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  287.770789][ T7451]  ? rw_verify_area+0x1d2/0x6b0
[  287.775738][ T7451]  do_sendfile+0x56d/0xe20
[  287.780171][ T7451]  ? __pfx_do_sendfile+0x10/0x10
[  287.785131][ T7451]  __se_sys_sendfile64+0x17c/0x1e0
[  287.790351][ T7451]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  287.795996][ T7451]  ? do_syscall_64+0x100/0x230
[  287.800774][ T7451]  ? do_syscall_64+0xb6/0x230
[  287.805456][ T7451]  do_syscall_64+0xf3/0x230
[  287.809971][ T7451]  ? clear_bhb_loop+0x35/0x90
[  287.814658][ T7451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.820558][ T7451] RIP: 0033:0x7fc51af7cef9
[  287.824989][ T7451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.844603][ T7451] RSP: 002b:00007fc51bcfc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  287.853286][ T7451] RAX: ffffffffffffffda RBX: 00007fc51b136130 RCX: 00007fc51af7cef9
[  287.861262][ T7451] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[  287.869238][ T7451] RBP: 00007fc51bcfc090 R08: 0000000000000000 R09: 0000000000000000
[  287.877397][ T7451] R10: 000000000000023b R11: 0000000000000246 R12: 0000000000000001
[  287.885371][ T7451] R13: 0000000000000000 R14: 00007fc51b136130 R15: 00007ffcb61b4cd8
[  287.893367][ T7451]  </TASK>
[  288.684665][ T5327] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  288.704291][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  288.716638][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  288.731166][   T63] bond0 (unregistering): Released all slaves
[  288.869726][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  288.878469][ T5327] usb 5-1: Using ep0 maxpacket: 8
[  288.888774][ T5327] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  288.902081][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  288.910965][ T5327] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  288.921732][ T5327] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  288.933036][   T63] bond0 (unregistering): Released all slaves
[  288.942148][ T5327] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  288.954238][ T5327] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.962894][ T5327] usb 5-1: Product: syz
[  288.967269][ T5327] usb 5-1: Manufacturer: syz
[  288.971886][ T5327] usb 5-1: SerialNumber: syz
[  289.022661][ T7443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.466'.
[  289.223418][ T7457] FAULT_INJECTION: forcing a failure.
[  289.223418][ T7457] name failslab, interval 1, probability 0, space 0, times 0
[  289.248931][ T7457] CPU: 1 UID: 0 PID: 7457 Comm: syz.3.469 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  289.259867][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  289.270133][ T7457] Call Trace:
[  289.273451][ T7457]  <TASK>
[  289.276409][ T7457]  dump_stack_lvl+0x241/0x360
[  289.281123][ T7457]  ? __pfx_dump_stack_lvl+0x10/0x10
[  289.286351][ T7457]  ? __pfx__printk+0x10/0x10
[  289.288070][ T7459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.470'.
[  289.290949][ T7457]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  289.290983][ T7457]  ? __pfx___might_resched+0x10/0x10
[  289.300107][ T7459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.470'.
[  289.305703][ T7457]  should_fail_ex+0x3b0/0x4e0
[  289.305743][ T7457]  should_failslab+0xac/0x100
[  289.305762][ T7457]  ? __alloc_skb+0x1c3/0x440
[  289.305782][ T7457]  kmem_cache_alloc_node_noprof+0x71/0x320
[  289.305811][ T7457]  __alloc_skb+0x1c3/0x440
[  289.305834][ T7457]  ? __pfx___alloc_skb+0x10/0x10
[  289.305857][ T7457]  ? netlink_autobind+0xd6/0x2f0
[  289.305875][ T7457]  ? netlink_autobind+0x2b0/0x2f0
[  289.305899][ T7457]  netlink_sendmsg+0x638/0xcb0
[  289.305927][ T7457]  ? __pfx_netlink_sendmsg+0x10/0x10
[  289.305948][ T7457]  ? __import_iovec+0x536/0x820
[  289.305971][ T7457]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  289.305994][ T7457]  ? security_socket_sendmsg+0x87/0xb0
[  289.306018][ T7457]  ? __pfx_netlink_sendmsg+0x10/0x10
[  289.306036][ T7457]  __sock_sendmsg+0x221/0x270
[  289.306057][ T7457]  ____sys_sendmsg+0x525/0x7d0
[  289.306088][ T7457]  ? __pfx_____sys_sendmsg+0x10/0x10
[  289.306126][ T7457]  __sys_sendmsg+0x2b0/0x3a0
[  289.306152][ T7457]  ? __pfx___sys_sendmsg+0x10/0x10
[  289.306173][ T7457]  ? vfs_write+0x7c4/0xc90
[  289.306237][ T7457]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  289.306264][ T7457]  ? do_syscall_64+0x100/0x230
[  289.306287][ T7457]  ? do_syscall_64+0xb6/0x230
[  289.306309][ T7457]  do_syscall_64+0xf3/0x230
[  289.306327][ T7457]  ? clear_bhb_loop+0x35/0x90
[  289.306352][ T7457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.451090][ T7457] RIP: 0033:0x7f05da17cef9
[  289.455596][ T7457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.475575][ T7457] RSP: 002b:00007f05dafc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  289.483999][ T7457] RAX: ffffffffffffffda RBX: 00007f05da335f80 RCX: 00007f05da17cef9
[  289.492148][ T7457] RDX: 0000000000000040 RSI: 0000000020000240 RDI: 0000000000000003
[  289.500126][ T7457] RBP: 00007f05dafc9090 R08: 0000000000000000 R09: 0000000000000000
[  289.508091][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.516053][ T7457] R13: 0000000000000000 R14: 00007f05da335f80 R15: 00007ffce5496518
[  289.524068][ T7457]  </TASK>
[  293.232359][ T5327] usb 5-1: 0:2 : does not exist
[  293.317263][ T5327] usb 5-1: USB disconnect, device number 17
[  293.317672][ T7480] netlink: 24 bytes leftover after parsing attributes in process `syz.0.474'.
[  294.532257][ T5374] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  295.465920][ T7221] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  295.547229][ T7221] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  295.636105][ T7221] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  295.705936][   T47] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  295.716664][ T7505] netlink: 8 bytes leftover after parsing attributes in process `syz.0.479'.
[  295.734206][ T7505] netlink: 8 bytes leftover after parsing attributes in process `syz.0.479'.
[  295.746593][ T7507] sctp: [Deprecated]: syz.3.480 (pid 7507) Use of int in maxseg socket option.
[  295.746593][ T7507] Use struct sctp_assoc_value instead
[  295.762230][   T63] hsr_slave_0: left promiscuous mode
[  295.768983][   T63] hsr_slave_1: left promiscuous mode
[  295.851130][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  295.869744][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  295.889168][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  295.903185][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.912614][   T47] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.936223][   T47] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  295.956066][   T63] hsr_slave_0: left promiscuous mode
[  295.965508][   T63] hsr_slave_1: left promiscuous mode
[  295.975524][   T47] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.984158][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  295.992347][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.011632][   T47] usb 5-1: config 0 descriptor??
[  296.015371][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.021336][   T47] pwc: Askey VC010 type 2 USB webcam detected.
[  296.030793][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.132678][   T63] veth1_macvtap: left promiscuous mode
[  296.163391][   T63] veth0_macvtap: left promiscuous mode
[  296.188760][   T63] veth1_vlan: left promiscuous mode
[  296.225401][ T7512] 9pnet_fd: Insufficient options for proto=fd
[  296.247371][   T63] veth0_vlan: left promiscuous mode
[  296.423578][ T5274] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  296.685593][   T63] veth1_macvtap: left promiscuous mode
[  296.695859][   T63] veth0_macvtap: left promiscuous mode
[  296.853426][   T63] veth1_vlan: left promiscuous mode
[  296.860731][   T63] veth0_vlan: left promiscuous mode
[  296.892198][ T5274] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  296.924578][ T5274] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  296.958231][ T5274] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  296.982109][ T5274] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  298.749359][ T5274] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  298.770291][ T5274] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  298.779640][ T5274] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  298.787807][ T5274] usb 1-1: Product: syz
[  298.792015][ T5274] usb 1-1: Manufacturer: syz
[  298.865086][ T5274] usb 1-1: can't set config #1, error -71
[  298.886337][ T5274] usb 1-1: USB disconnect, device number 15
[  299.141188][   T47] pwc: send_video_command error -71
[  299.217868][   T47] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  299.284833][   T47] Philips webcam 5-1:0.0: probe with driver Philips webcam failed with error -71
[  299.307290][   T47] usb 5-1: USB disconnect, device number 18
[  299.993922][   T63] team0 (unregistering): Port device team_slave_1 removed
[  300.038774][   T63] team0 (unregistering): Port device team_slave_0 removed
[  301.792560][   T63] team0 (unregistering): Port device team_slave_1 removed
[  301.839414][   T63] team0 (unregistering): Port device team_slave_0 removed
[  302.283664][ T7221] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  302.310305][ T7520] netlink: 132 bytes leftover after parsing attributes in process `syz.3.483'.
[  302.545125][ T7542] FAULT_INJECTION: forcing a failure.
[  302.545125][ T7542] name failslab, interval 1, probability 0, space 0, times 0
[  302.559858][ T7542] CPU: 1 UID: 0 PID: 7542 Comm: syz.3.488 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  302.570499][ T7542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  302.580577][ T7542] Call Trace:
[  302.583856][ T7542]  <TASK>
[  302.586782][ T7542]  dump_stack_lvl+0x241/0x360
[  302.591457][ T7542]  ? __pfx_dump_stack_lvl+0x10/0x10
[  302.596649][ T7542]  ? __pfx__printk+0x10/0x10
[  302.601257][ T7542]  ? fs_reclaim_acquire+0x93/0x140
[  302.606361][ T7542]  ? __pfx___might_resched+0x10/0x10
[  302.611635][ T7542]  ? dynamic_dname+0x141/0x1b0
[  302.616394][ T7542]  should_fail_ex+0x3b0/0x4e0
[  302.621062][ T7542]  ? tomoyo_encode+0x26f/0x540
[  302.625824][ T7542]  should_failslab+0xac/0x100
[  302.630495][ T7542]  ? tomoyo_encode+0x26f/0x540
[  302.635258][ T7542]  __kmalloc_noprof+0xd8/0x400
[  302.640016][ T7542]  tomoyo_encode+0x26f/0x540
[  302.644602][ T7542]  ? __pfx_anon_inodefs_dname+0x10/0x10
[  302.650141][ T7542]  tomoyo_realpath_from_path+0x59e/0x5e0
[  302.655777][ T7542]  tomoyo_path_number_perm+0x23a/0x880
[  302.661229][ T7542]  ? tomoyo_path_number_perm+0x208/0x880
[  302.666865][ T7542]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  302.672865][ T7542]  ? __fget_files+0x29/0x470
[  302.677452][ T7542]  ? __fget_files+0x3f6/0x470
[  302.682122][ T7542]  ? __fget_files+0x29/0x470
[  302.686706][ T7542]  security_file_ioctl+0x75/0xb0
[  302.691640][ T7542]  __se_sys_ioctl+0x47/0x170
[  302.696236][ T7542]  do_syscall_64+0xf3/0x230
[  302.700731][ T7542]  ? clear_bhb_loop+0x35/0x90
[  302.705401][ T7542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.711286][ T7542] RIP: 0033:0x7f05da17cef9
[  302.715700][ T7542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.735297][ T7542] RSP: 002b:00007f05dafc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  302.743703][ T7542] RAX: ffffffffffffffda RBX: 00007f05da335f80 RCX: 00007f05da17cef9
[  302.751664][ T7542] RDX: 0000000020000040 RSI: 00000000c020aa04 RDI: 0000000000000003
[  302.759626][ T7542] RBP: 00007f05dafc9090 R08: 0000000000000000 R09: 0000000000000000
[  302.767588][ T7542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.775634][ T7542] R13: 0000000000000000 R14: 00007f05da335f80 R15: 00007ffce5496518
[  302.783617][ T7542]  </TASK>
[  302.823127][ T7542] ERROR: Out of memory at tomoyo_realpath_from_path.
[  304.049622][ T7221] 8021q: adding VLAN 0 to HW filter on device bond0
[  304.278458][ T7221] 8021q: adding VLAN 0 to HW filter on device team0
[  304.299351][   T47] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  304.331642][ T3037] bridge0: port 1(bridge_slave_0) entered blocking state
[  304.338913][ T3037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  304.374470][ T7553] FAULT_INJECTION: forcing a failure.
[  304.374470][ T7553] name failslab, interval 1, probability 0, space 0, times 0
[  304.374492][ T3037] bridge0: port 2(bridge_slave_1) entered blocking state
[  304.374617][ T3037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  304.424788][ T7553] CPU: 0 UID: 0 PID: 7553 Comm: syz.3.493 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  304.435418][ T7553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  304.445476][ T7553] Call Trace:
[  304.448747][ T7553]  <TASK>
[  304.451675][ T7553]  dump_stack_lvl+0x241/0x360
[  304.456346][ T7553]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.461532][ T7553]  ? __pfx__printk+0x10/0x10
[  304.466133][ T7553]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  304.471585][ T7553]  ? __pfx___might_resched+0x10/0x10
[  304.476862][ T7553]  should_fail_ex+0x3b0/0x4e0
[  304.481528][ T7553]  should_failslab+0xac/0x100
[  304.486206][ T7553]  ? do_signalfd4+0x16b/0x3f0
[  304.490902][ T7553]  __kmalloc_cache_noprof+0x6c/0x2c0
[  304.496211][ T7553]  do_signalfd4+0x16b/0x3f0
[  304.500739][ T7553]  __x64_sys_signalfd+0x14f/0x190
[  304.505766][ T7553]  ? __pfx___x64_sys_signalfd+0x10/0x10
[  304.511307][ T7553]  ? rcu_is_watching+0x15/0xb0
[  304.516066][ T7553]  ? trace_sys_enter+0x1f/0xd0
[  304.520818][ T7553]  do_syscall_64+0xf3/0x230
[  304.525323][ T7553]  ? clear_bhb_loop+0x35/0x90
[  304.529988][ T7553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.535876][ T7553] RIP: 0033:0x7f05da17cef9
[  304.540294][ T7553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.559893][ T7553] RSP: 002b:00007f05dafc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  304.568425][ T7553] RAX: ffffffffffffffda RBX: 00007f05da335f80 RCX: 00007f05da17cef9
[  304.576412][ T7553] RDX: 0000000000000008 RSI: 0000000020000100 RDI: ffffffffffffffff
[  304.584400][ T7553] RBP: 00007f05dafc9090 R08: 0000000000000000 R09: 0000000000000000
[  304.592395][ T7553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.600367][ T7553] R13: 0000000000000000 R14: 00007f05da335f80 R15: 00007ffce5496518
[  304.608365][ T7553]  </TASK>
[  304.619738][   T47] usb 5-1: config 0 has an invalid descriptor of length 134, skipping remainder of the config
[  304.630294][ T7218] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  304.648023][ T7218] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  304.657945][   T47] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  304.697654][   T47] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  304.736792][ T7218] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  304.755666][   T47] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.780757][ T7218] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  304.793771][   T47] usb 5-1: config 0 descriptor??
[  304.809987][   T47] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  305.043096][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.4.492'.
[  305.097210][ T5327] usb 5-1: USB disconnect, device number 19
[  305.189932][ T7218] 8021q: adding VLAN 0 to HW filter on device bond0
[  305.270044][ T7218] 8021q: adding VLAN 0 to HW filter on device team0
[  305.306991][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  305.314205][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  305.398052][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  305.405267][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  305.560993][ T7221] 8021q: adding VLAN 0 to HW filter on device batadv0
[  305.731281][ T7221] veth0_vlan: entered promiscuous mode
[  305.792562][ T7221] veth1_vlan: entered promiscuous mode
[  305.973644][ T7221] veth0_macvtap: entered promiscuous mode
[  306.029824][ T7221] veth1_macvtap: entered promiscuous mode
[  306.119075][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.155730][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.184302][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.205110][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.241197][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.262954][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.296790][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.327743][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.370458][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_0
[  306.522861][ T7218] 8021q: adding VLAN 0 to HW filter on device batadv0
[  307.425637][ T7589] warning: `syz.3.496' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  307.487413][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.544195][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.583683][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.033431][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  329.040360][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  329.092200][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.102402][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.164691][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.214872][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.264836][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.425982][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_1
[  330.692964][ T5227] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  330.716877][ T5227] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  330.741645][ T5227] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  330.780620][ T5227] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  330.796161][ T5227] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  330.805431][ T5231] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  330.813002][ T5227] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  330.824013][ T5231] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  330.834869][ T5231] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  330.852184][ T5234] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  330.860015][ T5234] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  330.867637][ T5234] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  330.942044][ T5227] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  330.957172][ T5227] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  330.983423][ T5227] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  331.007740][ T5227] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  331.035063][ T5227] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  331.054494][ T5227] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  331.080811][ T4614] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  331.106308][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  331.118835][ T4614] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  331.121007][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  331.134583][   T55] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  331.143173][ T4614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  331.151076][ T4614] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  331.159448][ T4614] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  331.172630][ T4614] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  331.181994][ T4614] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  331.183139][   T55] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  331.197669][ T4614] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  331.675263][   T63] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.855471][   T63] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.940228][   T63] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.998753][   T63] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.378523][ T7626] chnl_net:caif_netlink_parms(): no params data found
[  332.417810][   T63] bridge_slave_1: left allmulticast mode
[  332.423482][   T63] bridge_slave_1: left promiscuous mode
[  332.430875][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.442043][   T63] bridge_slave_0: left allmulticast mode
[  332.447763][   T63] bridge_slave_0: left promiscuous mode
[  332.453432][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.857293][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  332.868936][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  332.882134][   T63] bond0 (unregistering): Released all slaves
[  332.904977][ T4614] Bluetooth: hci5: command tx timeout
[  332.931737][ T7639] chnl_net:caif_netlink_parms(): no params data found
[  333.037250][ T7628] chnl_net:caif_netlink_parms(): no params data found
[  333.111631][ T7637] chnl_net:caif_netlink_parms(): no params data found
[  333.144994][ T5231] Bluetooth: hci4: command tx timeout
[  333.151535][ T4614] Bluetooth: hci2: command tx timeout
[  333.235066][ T4614] Bluetooth: hci6: command tx timeout
[  333.315140][ T4614] Bluetooth: hci0: command tx timeout
[  333.380121][ T7632] chnl_net:caif_netlink_parms(): no params data found
[  333.461132][ T7626] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.484915][ T7626] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.494139][ T7626] bridge_slave_0: entered allmulticast mode
[  333.502471][ T7626] bridge_slave_0: entered promiscuous mode
[  333.621897][ T7626] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.629342][ T7626] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.637063][ T7626] bridge_slave_1: entered allmulticast mode
[  333.643849][ T7626] bridge_slave_1: entered promiscuous mode
[  333.650699][ T7639] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.657951][ T7639] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.665409][ T7639] bridge_slave_0: entered allmulticast mode
[  333.672152][ T7639] bridge_slave_0: entered promiscuous mode
[  333.730464][   T63] hsr_slave_0: left promiscuous mode
[  333.737026][   T63] hsr_slave_1: left promiscuous mode
[  333.743094][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  333.751176][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  333.763274][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  333.770768][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.789824][   T63] veth1_macvtap: left promiscuous mode
[  333.795590][   T63] veth0_macvtap: left promiscuous mode
[  333.801148][   T63] veth1_vlan: left promiscuous mode
[  333.806530][   T63] veth0_vlan: left promiscuous mode
[  334.315721][   T63] team0 (unregistering): Port device team_slave_1 removed
[  334.368697][   T63] team0 (unregistering): Port device team_slave_0 removed
[  334.874127][ T7639] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.881485][ T7639] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.890003][ T7639] bridge_slave_1: entered allmulticast mode
[  334.899460][ T7639] bridge_slave_1: entered promiscuous mode
[  334.941619][ T7637] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.955039][ T7637] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.962219][ T7637] bridge_slave_0: entered allmulticast mode
[  334.970174][ T7637] bridge_slave_0: entered promiscuous mode
[  334.979018][ T7637] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.986311][ T7637] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.993558][ T7637] bridge_slave_1: entered allmulticast mode
[  334.999571][ T4614] Bluetooth: hci5: command tx timeout
[  335.002618][ T7637] bridge_slave_1: entered promiscuous mode
[  335.027803][ T7626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.040197][ T7626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.072824][ T7628] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.092667][ T7628] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.109501][ T7628] bridge_slave_0: entered allmulticast mode
[  335.124114][ T7628] bridge_slave_0: entered promiscuous mode
[  335.147186][ T7632] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.154352][ T7632] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.162561][ T7632] bridge_slave_0: entered allmulticast mode
[  335.170528][ T7632] bridge_slave_0: entered promiscuous mode
[  335.179703][ T7632] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.187541][ T7632] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.195044][ T7632] bridge_slave_1: entered allmulticast mode
[  335.201833][ T7632] bridge_slave_1: entered promiscuous mode
[  335.222048][ T7639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.231799][ T5231] Bluetooth: hci4: command tx timeout
[  335.237479][ T4614] Bluetooth: hci2: command tx timeout
[  335.242356][ T7639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.254663][ T7628] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.261812][ T7628] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.270213][ T7628] bridge_slave_1: entered allmulticast mode
[  335.279912][ T7628] bridge_slave_1: entered promiscuous mode
[  335.304971][ T4614] Bluetooth: hci6: command tx timeout
[  335.375658][ T7639] team0: Port device team_slave_0 added
[  335.386035][ T4614] Bluetooth: hci0: command tx timeout
[  335.409504][ T7628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.421810][ T7637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.459855][ T7632] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.492423][ T7626] team0: Port device team_slave_0 added
[  335.513659][ T7626] team0: Port device team_slave_1 added
[  335.523957][ T7639] team0: Port device team_slave_1 added
[  335.562395][ T7637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.574249][ T7628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.601187][ T7632] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.736976][ T7628] team0: Port device team_slave_0 added
[  335.808316][ T7626] batman_adv: batadv0: Adding interface: batadv_slave_0
[  335.822012][ T7626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  335.862731][ T7626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  335.886527][ T7639] batman_adv: batadv0: Adding interface: batadv_slave_0
[  335.893488][ T7639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  335.920161][ T7639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  335.946204][ T7628] team0: Port device team_slave_1 added
[  335.957508][ T7632] team0: Port device team_slave_0 added
[  335.972360][ T7626] batman_adv: batadv0: Adding interface: batadv_slave_1
[  335.980863][ T7626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.008721][ T7626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.031543][ T7639] batman_adv: batadv0: Adding interface: batadv_slave_1
[  336.038644][ T7639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.064830][ T7639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.083462][ T7637] team0: Port device team_slave_0 added
[  336.092755][ T7637] team0: Port device team_slave_1 added
[  336.121717][ T7632] team0: Port device team_slave_1 added
[  336.210167][ T7628] batman_adv: batadv0: Adding interface: batadv_slave_0
[  336.217455][ T7628] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.243890][ T7628] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  336.256993][ T7628] batman_adv: batadv0: Adding interface: batadv_slave_1
[  336.263958][ T7628] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.290079][ T7628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.313345][ T7632] batman_adv: batadv0: Adding interface: batadv_slave_0
[  336.320495][ T7632] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.348358][ T7632] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  336.368759][ T7626] hsr_slave_0: entered promiscuous mode
[  336.375647][ T7626] hsr_slave_1: entered promiscuous mode
[  336.381762][ T7626] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.389452][ T7626] Cannot create hsr debugfs directory
[  336.422951][ T7639] hsr_slave_0: entered promiscuous mode
[  336.430159][ T7639] hsr_slave_1: entered promiscuous mode
[  336.437084][ T7639] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.445486][ T7639] Cannot create hsr debugfs directory
[  336.467877][ T7637] batman_adv: batadv0: Adding interface: batadv_slave_0
[  336.476778][ T7637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.503266][ T7637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  336.525548][ T7632] batman_adv: batadv0: Adding interface: batadv_slave_1
[  336.532527][ T7632] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.558912][ T7632] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.603249][ T7637] batman_adv: batadv0: Adding interface: batadv_slave_1
[  336.610367][ T7637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.636844][ T7637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.701233][ T7632] hsr_slave_0: entered promiscuous mode
[  336.708188][ T7632] hsr_slave_1: entered promiscuous mode
[  336.714410][ T7632] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.722370][ T7632] Cannot create hsr debugfs directory
[  336.753257][ T7637] hsr_slave_0: entered promiscuous mode
[  336.761000][ T7637] hsr_slave_1: entered promiscuous mode
[  336.767827][ T7637] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.775767][ T7637] Cannot create hsr debugfs directory
[  336.821087][ T7628] hsr_slave_0: entered promiscuous mode
[  336.828044][ T7628] hsr_slave_1: entered promiscuous mode
[  336.834175][ T7628] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.842436][ T7628] Cannot create hsr debugfs directory
[  337.065923][ T4614] Bluetooth: hci5: command tx timeout
[  337.306910][ T5231] Bluetooth: hci4: command tx timeout
[  337.313214][ T4614] Bluetooth: hci2: command tx timeout
[  337.384882][ T4614] Bluetooth: hci6: command tx timeout
[  337.464814][ T4614] Bluetooth: hci0: command tx timeout
[  337.583533][ T7626] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.690089][ T7626] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.785447][ T7626] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.028468][ T7626] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.388994][ T7626] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  338.400445][ T7626] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  338.417486][ T7626] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  338.435675][ T7626] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  338.724347][ T1053] bridge_slave_1: left allmulticast mode
[  338.730926][ T1053] bridge_slave_1: left promiscuous mode
[  338.737721][ T1053] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.747319][ T1053] bridge_slave_0: left allmulticast mode
[  338.752974][ T1053] bridge_slave_0: left promiscuous mode
[  338.760187][ T1053] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.772904][ T1053] bridge_slave_1: left allmulticast mode
[  338.779189][ T1053] bridge_slave_1: left promiscuous mode
[  338.785020][ T1053] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.793582][ T1053] bridge_slave_0: left allmulticast mode
[  338.799610][ T1053] bridge_slave_0: left promiscuous mode
[  338.806878][ T1053] bridge0: port 1(bridge_slave_0) entered disabled state
[  339.146549][ T4614] Bluetooth: hci5: command tx timeout
[  339.388551][ T4614] Bluetooth: hci2: command tx timeout
[  339.388633][ T5231] Bluetooth: hci4: command tx timeout
[  339.431606][ T1053] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  339.442886][ T1053] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  339.453780][ T1053] bond0 (unregistering): Released all slaves
[  339.465122][ T5231] Bluetooth: hci6: command tx timeout
[  339.549573][ T5231] Bluetooth: hci0: command tx timeout
[  339.598490][ T1053] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  339.610088][ T1053] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  339.622036][ T1053] bond0 (unregistering): Released all slaves
[  339.680892][ T7626] 8021q: adding VLAN 0 to HW filter on device bond0
[  339.772156][ T7626] 8021q: adding VLAN 0 to HW filter on device team0
[  339.954860][ T7632] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.978566][ T7637] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  340.010878][ T1053] hsr_slave_0: left promiscuous mode
[  340.025352][ T1053] hsr_slave_1: left promiscuous mode
[  340.035438][ T1053] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.042892][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_0
[  340.063567][ T1053] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  340.071254][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_1
[  340.096333][ T1053] hsr_slave_0: left promiscuous mode
[  340.112472][ T1053] hsr_slave_1: left promiscuous mode
[  340.119291][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_0
[  340.127620][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_1
[  340.208652][ T1053] veth1_macvtap: left promiscuous mode
[  340.214253][ T1053] veth0_macvtap: left promiscuous mode
[  340.220799][ T1053] veth1_vlan: left promiscuous mode
[  340.226213][ T1053] veth0_vlan: left promiscuous mode
[  340.744141][ T1053] team0 (unregistering): Port device team_slave_1 removed
[  340.792239][ T1053] team0 (unregistering): Port device team_slave_0 removed
[  341.411822][ T1053] team0 (unregistering): Port device team_slave_1 removed
[  341.461016][ T1053] team0 (unregistering): Port device team_slave_0 removed
[  341.873844][ T3037] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.881007][ T3037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  341.930116][ T7632] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.948669][ T7637] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  341.961117][ T3037] bridge0: port 2(bridge_slave_1) entered blocking state
[  341.968308][ T3037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.001374][ T7637] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  342.023096][ T7637] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  342.071608][ T7632] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.177205][ T7632] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.329723][ T7637] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.399181][ T7637] 8021q: adding VLAN 0 to HW filter on device team0
[  342.434457][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.441646][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.531506][ T3037] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.538710][ T3037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.617097][ T7632] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  342.730673][ T7632] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  342.754897][ T7632] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  342.785104][ T7632] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  342.799661][ T7626] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.111457][ T7626] veth0_vlan: entered promiscuous mode
[  343.148858][ T7626] veth1_vlan: entered promiscuous mode
[  343.304177][ T7632] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.362133][ T7632] 8021q: adding VLAN 0 to HW filter on device team0
[  343.387434][ T7628] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  343.424055][ T7626] veth0_macvtap: entered promiscuous mode
[  343.438479][ T7626] veth1_macvtap: entered promiscuous mode
[  343.449085][ T7628] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  343.470941][ T7628] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  343.505898][ T7628] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  343.519138][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.526294][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.580592][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.591525][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.605496][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.616153][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.627488][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.638275][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.649422][ T7626] batman_adv: batadv0: Interface activated: batadv_slave_0
[  343.661066][ T7637] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.686941][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.694089][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.753290][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.763915][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.775143][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.786082][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.796170][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.806832][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.818028][ T7626] batman_adv: batadv0: Interface activated: batadv_slave_1
[  343.867156][ T7626] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  343.877753][ T7626] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  343.887287][ T7626] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  343.896332][ T7626] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  344.258892][ T7632] 8021q: adding VLAN 0 to HW filter on device batadv0
[  344.298281][ T7637] veth0_vlan: entered promiscuous mode
[  344.310806][ T7628] 8021q: adding VLAN 0 to HW filter on device bond0
[  344.319568][ T7639] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  344.343776][ T7639] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  344.385070][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.392932][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.444958][ T7639] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  344.468086][ T7639] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  344.501173][ T7637] veth1_vlan: entered promiscuous mode
[  344.520644][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.523472][ T7628] 8021q: adding VLAN 0 to HW filter on device team0
[  344.555822][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.638004][ T1053] bridge0: port 1(bridge_slave_0) entered blocking state
[  344.645199][ T1053] bridge0: port 1(bridge_slave_0) entered forwarding state
[  344.696603][ T1053] bridge0: port 2(bridge_slave_1) entered blocking state
[  344.703777][ T1053] bridge0: port 2(bridge_slave_1) entered forwarding state
[  344.755278][ T7798] FAULT_INJECTION: forcing a failure.
[  344.755278][ T7798] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.775003][ T7798] CPU: 0 UID: 0 PID: 7798 Comm: syz.0.502 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  344.785631][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  344.795789][ T7798] Call Trace:
[  344.799082][ T7798]  <TASK>
[  344.802023][ T7798]  dump_stack_lvl+0x241/0x360
[  344.806725][ T7798]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.811947][ T7798]  ? __pfx__printk+0x10/0x10
[  344.816560][ T7798]  ? __pfx_lock_release+0x10/0x10
[  344.821698][ T7798]  should_fail_ex+0x3b0/0x4e0
[  344.826573][ T7798]  _copy_from_user+0x2f/0xe0
[  344.831187][ T7798]  copy_msghdr_from_user+0xae/0x680
[  344.836407][ T7798]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  344.842237][ T7798]  __sys_sendmsg+0x23d/0x3a0
[  344.846847][ T7798]  ? __pfx___sys_sendmsg+0x10/0x10
[  344.851980][ T7798]  ? vfs_write+0x7c4/0xc90
[  344.856451][ T7798]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  344.862799][ T7798]  ? do_syscall_64+0x100/0x230
[  344.867584][ T7798]  ? do_syscall_64+0xb6/0x230
[  344.872280][ T7798]  do_syscall_64+0xf3/0x230
[  344.876799][ T7798]  ? clear_bhb_loop+0x35/0x90
[  344.881501][ T7798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.887419][ T7798] RIP: 0033:0x7f2527b7cef9
[  344.891854][ T7798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.895404][ T7632] veth0_vlan: entered promiscuous mode
[  344.911453][ T7798] RSP: 002b:00007f252893f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.911480][ T7798] RAX: ffffffffffffffda RBX: 00007f2527d35f80 RCX: 00007f2527b7cef9
[  344.911494][ T7798] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  344.911505][ T7798] RBP: 00007f252893f090 R08: 0000000000000000 R09: 0000000000000000
[  344.925892][ T7632] veth1_vlan: entered promiscuous mode
[  344.933300][ T7798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.933317][ T7798] R13: 0000000000000000 R14: 00007f2527d35f80 R15: 00007ffc0fa18258
[  344.933346][ T7798]  </TASK>
[  345.087791][ T7632] veth0_macvtap: entered promiscuous mode
[  345.109286][ T7632] veth1_macvtap: entered promiscuous mode
[  345.157583][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.176949][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.214544][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.241805][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.262244][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.290071][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.314093][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.324631][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.336242][ T7632] batman_adv: batadv0: Interface activated: batadv_slave_0
[  345.347785][ T7637] veth0_macvtap: entered promiscuous mode
[  345.428701][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.439840][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.474600][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.494680][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.523385][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.552473][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.577433][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.595431][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.607430][ T7632] batman_adv: batadv0: Interface activated: batadv_slave_1
[  345.618762][ T7637] veth1_macvtap: entered promiscuous mode
[  345.655983][ T7632] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  345.668323][ T7632] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  345.677940][ T7632] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  345.686812][ T7632] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  345.860981][ T7639] 8021q: adding VLAN 0 to HW filter on device bond0
[  346.753293][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  346.803844][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.844644][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  346.874857][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.924573][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  346.980893][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.019286][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  347.034430][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.044468][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  347.058606][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.193866][ T7637] batman_adv: batadv0: Interface activated: batadv_slave_0
[  347.204317][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  347.216144][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.226507][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  347.237878][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.486233][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  347.498854][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.546366][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  347.639105][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.722724][ T7637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  347.804892][ T7637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  347.888608][ T7637] batman_adv: batadv0: Interface activated: batadv_slave_1
[  347.973183][ T7639] 8021q: adding VLAN 0 to HW filter on device team0
[  348.040872][ T7637] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  348.091264][ T7637] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  348.135588][ T7637] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  348.180077][ T7637] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  348.271531][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.278737][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.372990][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.380165][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[  348.482485][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.497264][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.589577][ T7628] 8021q: adding VLAN 0 to HW filter on device batadv0
[  348.768336][ T1073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.784754][ T1073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.892294][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.929038][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  349.103148][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  349.115410][ T7628] veth0_vlan: entered promiscuous mode
[  349.131897][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  349.153051][ T7628] veth1_vlan: entered promiscuous mode
[  349.310177][ T7628] veth0_macvtap: entered promiscuous mode
[  349.324932][ T1671] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  349.356908][ T7628] veth1_macvtap: entered promiscuous mode
[  349.434852][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.459120][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.478986][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.498039][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.521677][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.536053][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.539946][ T7873] netlink: 'syz.3.503': attribute type 3 has an invalid length.
[  349.554628][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.572718][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.583165][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.595655][ T1671] usb 5-1: config 0 has an invalid descriptor of length 134, skipping remainder of the config
[  349.618317][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.630153][ T1671] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  349.643423][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  349.656039][ T1671] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  349.665361][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.687129][ T1671] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.698801][ T7628] batman_adv: batadv0: Interface activated: batadv_slave_0
[  349.720470][ T1671] usb 5-1: config 0 descriptor??
[  349.729933][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.763158][ T1671] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  349.773126][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.797173][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.818273][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.829289][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.843931][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.861122][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.880234][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.891598][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.912593][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.924189][ T7628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  349.940280][ T7628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  349.962625][ T7628] batman_adv: batadv0: Interface activated: batadv_slave_1
[  349.973939][ T7862] netlink: 8 bytes leftover after parsing attributes in process `syz.4.504'.
[  350.006382][ T5271] usb 5-1: USB disconnect, device number 20
[  350.160849][ T7628] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  350.199279][ T7628] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  350.241718][ T7628] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  350.367830][ T7628] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  350.410307][ T7639] 8021q: adding VLAN 0 to HW filter on device batadv0
[  350.568794][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  350.627684][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  350.701405][ T7639] veth0_vlan: entered promiscuous mode
[  350.802368][ T1073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  350.817583][ T7639] veth1_vlan: entered promiscuous mode
[  350.841997][ T1073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  352.812111][ T7639] veth0_macvtap: entered promiscuous mode
[  352.840583][ T7639] veth1_macvtap: entered promiscuous mode
[  353.589158][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.808483][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.830871][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.841881][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.852560][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.868293][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.879635][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.894154][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.905699][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.916921][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.924792][   T29] audit: type=1804 audit(1725583316.966:65): pid=7897 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.422" name="/newroot/0/bus/file0" dev="overlay" ino=25 res=1 errno=0
[  353.927382][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.964002][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.974469][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  354.023446][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.075901][ T7639] batman_adv: batadv0: Interface activated: batadv_slave_0
[  354.089300][   T29] audit: type=1326 audit(1725583316.996:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7896 comm="syz.1.422" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbcc977cef9 code=0x0
[  354.240510][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  354.291077][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.535225][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  354.535708][ T7918] netlink: 'syz.1.515': attribute type 1 has an invalid length.
[  354.854646][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.867894][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  354.922975][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.963210][   T29] audit: type=1804 audit(1725583318.036:67): pid=7917 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.515" name="/newroot/1/bus/file0" dev="overlay" ino=39 res=1 errno=0
[  355.014622][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.084722][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.094861][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.106083][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.116643][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.124643][   T29] audit: type=1326 audit(1725583318.036:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7916 comm="syz.1.515" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbcc977cef9 code=0x0
[  355.130757][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.199792][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.230145][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.422308][ T7639] batman_adv: batadv0: Interface activated: batadv_slave_1
[  355.521109][ T7939] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  355.706617][ T1053] bridge_slave_1: left allmulticast mode
[  355.731413][ T1053] bridge_slave_1: left promiscuous mode
[  356.327356][ T1053] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.400244][ T1053] bridge_slave_0: left allmulticast mode
[  356.426829][ T1053] bridge_slave_0: left promiscuous mode
[  356.434158][ T1053] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.752536][ T7948] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  358.871683][ T5275] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  358.957799][ T7962] FAULT_INJECTION: forcing a failure.
[  358.957799][ T7962] name failslab, interval 1, probability 0, space 0, times 0
[  359.016849][ T7962] CPU: 0 UID: 0 PID: 7962 Comm: syz.4.523 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  359.027474][ T7962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  359.037546][ T7962] Call Trace:
[  359.040837][ T7962]  <TASK>
[  359.043784][ T7962]  dump_stack_lvl+0x241/0x360
[  359.048485][ T7962]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.053701][ T7962]  ? __pfx__printk+0x10/0x10
[  359.058305][ T7962]  ? fs_reclaim_acquire+0x93/0x140
[  359.063427][ T7962]  ? __pfx___might_resched+0x10/0x10
[  359.068725][ T7962]  ? dynamic_dname+0x141/0x1b0
[  359.073507][ T7962]  should_fail_ex+0x3b0/0x4e0
[  359.078201][ T7962]  ? tomoyo_encode+0x26f/0x540
[  359.082977][ T7962]  should_failslab+0xac/0x100
[  359.087667][ T7962]  ? tomoyo_encode+0x26f/0x540
[  359.092449][ T7962]  __kmalloc_noprof+0xd8/0x400
[  359.097242][ T7962]  tomoyo_encode+0x26f/0x540
[  359.101856][ T7962]  ? __pfx_anon_inodefs_dname+0x10/0x10
[  359.107420][ T7962]  tomoyo_realpath_from_path+0x59e/0x5e0
[  359.113078][ T7962]  tomoyo_path_number_perm+0x23a/0x880
[  359.118559][ T7962]  ? tomoyo_path_number_perm+0x208/0x880
[  359.124201][ T7962]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  359.130230][ T7962]  ? __fget_files+0x29/0x470
[  359.134828][ T7962]  ? __fget_files+0x3f6/0x470
[  359.139512][ T7962]  ? __fget_files+0x29/0x470
[  359.144118][ T7962]  security_file_ioctl+0x75/0xb0
[  359.149080][ T7962]  __se_sys_ioctl+0x47/0x170
[  359.153695][ T7962]  do_syscall_64+0xf3/0x230
[  359.158220][ T7962]  ? clear_bhb_loop+0x35/0x90
[  359.162916][ T7962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.168828][ T7962] RIP: 0033:0x7f86a237cef9
[  359.173255][ T7962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.192872][ T7962] RSP: 002b:00007f86a325f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.201298][ T7962] RAX: ffffffffffffffda RBX: 00007f86a2535f80 RCX: 00007f86a237cef9
[  359.209281][ T7962] RDX: 0000000020000040 RSI: 000000004040ae79 RDI: 0000000000000004
[  359.217263][ T7962] RBP: 00007f86a325f090 R08: 0000000000000000 R09: 0000000000000000
[  359.225262][ T7962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.233241][ T7962] R13: 0000000000000000 R14: 00007f86a2535f80 R15: 00007fffad602308
[  359.241242][ T7962]  </TASK>
[  359.293605][ T7962] ERROR: Out of memory at tomoyo_realpath_from_path.
[  359.316601][ T5275] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  359.340732][ T5275] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  359.360183][ T5275] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  359.378209][ T5275] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.407815][ T5275] usb 2-1: config 0 descriptor??
[  359.979512][ T7982] FAULT_INJECTION: forcing a failure.
[  359.979512][ T7982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.979606][ T7982] 
[  359.979612][ T7982] ======================================================
[  359.979618][ T7982] WARNING: possible circular locking dependency detected
[  359.979626][ T7982] 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0 Not tainted
[  359.979637][ T7982] ------------------------------------------------------
[  359.979643][ T7982] syz.0.525/7982 is trying to acquire lock:
[  359.979651][ T7982] ffffffff8e613cb8 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0x20/0xa0
[  359.979696][ T7982] 
[  359.979696][ T7982] but task is already holding lock:
[  359.979701][ T7982] ffff8880b883e998 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  359.979740][ T7982] 
[  359.979740][ T7982] which lock already depends on the new lock.
[  359.979740][ T7982] 
[  359.979746][ T7982] 
[  359.979746][ T7982] the existing dependency chain (in reverse order) is:
[  359.979752][ T7982] 
[  359.979752][ T7982] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  359.979771][ T7982]        lock_acquire+0x1ed/0x550
[  359.979790][ T7982]        _raw_spin_lock_nested+0x31/0x40
[  359.979804][ T7982]        raw_spin_rq_lock_nested+0x2a/0x140
[  359.979822][ T7982]        task_fork_fair+0x61/0x1e0
[  359.979841][ T7982]        sched_cgroup_fork+0x37c/0x410
[  359.979855][ T7982]        copy_process+0x2217/0x3dc0
[  359.979872][ T7982]        kernel_clone+0x223/0x880
[  359.979892][ T7982]        user_mode_thread+0x132/0x1a0
[  359.979912][ T7982]        rest_init+0x23/0x300
[  359.979928][ T7982]        start_kernel+0x47a/0x500
[  359.979946][ T7982]        x86_64_start_reservations+0x2a/0x30
[  359.979963][ T7982]        x86_64_start_kernel+0x9f/0xa0
[  359.979978][ T7982]        common_startup_64+0x13e/0x147
[  359.980006][ T7982] 
[  359.980006][ T7982] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  359.980029][ T7982]        lock_acquire+0x1ed/0x550
[  359.980047][ T7982]        _raw_spin_lock_irqsave+0xd5/0x120
[  359.980067][ T7982]        try_to_wake_up+0xb0/0x1470
[  359.980089][ T7982]        up+0x72/0x90
[  359.980102][ T7982]        console_unlock+0x22f/0x4d0
[  359.980117][ T7982]        vprintk_emit+0x5dc/0x7c0
[  359.980132][ T7982]        _printk+0xd5/0x120
[  359.980146][ T7982]        batadv_check_known_mac_addr+0x2b1/0x410
[  359.980164][ T7982]        batadv_hard_if_event+0x3a5/0x1620
[  359.980181][ T7982]        notifier_call_chain+0x19f/0x3e0
[  359.980200][ T7982]        dev_set_mac_address+0x3d9/0x510
[  359.980219][ T7982]        dev_set_mac_address_user+0x31/0x50
[  359.980236][ T7982]        do_setlink+0x8b6/0x41f0
[  359.980251][ T7982]        rtnl_newlink+0x180d/0x20a0
[  359.980270][ T7982]        rtnetlink_rcv_msg+0x73f/0xcf0
[  359.980285][ T7982]        netlink_rcv_skb+0x1e3/0x430
[  359.980301][ T7982]        netlink_unicast+0x7f6/0x990
[  359.980322][ T7982]        netlink_sendmsg+0x8e4/0xcb0
[  359.980337][ T7982]        __sock_sendmsg+0x221/0x270
[  359.980352][ T7982]        __sys_sendto+0x3a4/0x4f0
[  359.980368][ T7982]        __x64_sys_sendto+0xde/0x100
[  359.980386][ T7982]        do_syscall_64+0xf3/0x230
[  359.980401][ T7982]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.980420][ T7982] 
[  359.980420][ T7982] -> #0 ((console_sem).lock){-...}-{2:2}:
[  359.980443][ T7982]        validate_chain+0x18e0/0x5900
[  359.980457][ T7982]        __lock_acquire+0x137a/0x2040
[  359.980476][ T7982]        lock_acquire+0x1ed/0x550
[  359.980494][ T7982]        _raw_spin_lock_irqsave+0xd5/0x120
[  359.980514][ T7982]        down_trylock+0x20/0xa0
[  359.980530][ T7982]        __down_trylock_console_sem+0x109/0x250
[  359.980547][ T7982]        vprintk_emit+0x2aa/0x7c0
[  359.980561][ T7982]        _printk+0xd5/0x120
[  359.980573][ T7982]        should_fail_ex+0x391/0x4e0
[  359.980587][ T7982]        strncpy_from_user+0x36/0x2e0
[  359.980607][ T7982]        strncpy_from_user_nofault+0x71/0x140
[  359.980628][ T7982]        bpf_probe_read_compat_str+0xe9/0x180
[  359.980649][ T7982]        bpf_prog_e3f550b2299101ce+0x40/0x42
[  359.980662][ T7982]        bpf_trace_run4+0x334/0x590
[  359.980679][ T7982]        __traceiter_sched_switch+0x98/0xd0
[  359.980694][ T7982]        __schedule+0x253f/0x4a10
[  359.980714][ T7982]        preempt_schedule_common+0x84/0xd0
[  359.980736][ T7982]        preempt_schedule+0xe1/0xf0
[  359.980755][ T7982]        preempt_schedule_thunk+0x1a/0x30
[  359.980770][ T7982]        _raw_spin_unlock+0x3e/0x50
[  359.980788][ T7982]        netlink_seq_start+0x72/0x110
[  359.980804][ T7982]        traverse+0x14f/0x550
[  359.980822][ T7982]        seq_read_iter+0xc5e/0xd60
[  359.980836][ T7982]        seq_read+0x3a4/0x4f0
[  359.980850][ T7982]        proc_reg_read+0x204/0x2f0
[  359.980871][ T7982]        vfs_readv+0x6c2/0xa90
[  359.980886][ T7982]        __x64_sys_preadv+0x1c7/0x2d0
[  359.980906][ T7982]        do_syscall_64+0xf3/0x230
[  359.980922][ T7982]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.980940][ T7982] 
[  359.980940][ T7982] other info that might help us debug this:
[  359.980940][ T7982] 
[  359.980946][ T7982] Chain exists of:
[  359.980946][ T7982]   (console_sem).lock --> &p->pi_lock --> &rq->__lock
[  359.980946][ T7982] 
[  359.980971][ T7982]  Possible unsafe locking scenario:
[  359.980971][ T7982] 
[  359.980975][ T7982]        CPU0                    CPU1
[  359.980981][ T7982]        ----                    ----
[  359.980985][ T7982]   lock(&rq->__lock);
[  359.981002][ T7982]                                lock(&p->pi_lock);
[  359.981013][ T7982]                                lock(&rq->__lock);
[  359.981023][ T7982]   lock((console_sem).lock);
[  359.981033][ T7982] 
[  359.981033][ T7982]  *** DEADLOCK ***
[  359.981033][ T7982] 
[  359.981036][ T7982] 3 locks held by syz.0.525/7982:
[  359.981046][ T7982]  #0: ffff888029152e80 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xb7/0xd60
[  359.981085][ T7982]  #1: ffff8880b883e998 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  359.981126][ T7982]  #2: ffffffff8e738320 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x244/0x590
[  359.981164][ T7982] 
[  359.981164][ T7982] stack backtrace:
[  359.981170][ T7982] CPU: 0 UID: 0 PID: 7982 Comm: syz.0.525 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  359.981190][ T7982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  359.981200][ T7982] Call Trace:
[  359.981207][ T7982]  <TASK>
[  359.981214][ T7982]  dump_stack_lvl+0x241/0x360
[  359.981234][ T7982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.981257][ T7982]  ? print_circular_bug+0x130/0x1a0
[  359.981275][ T7982]  check_noncircular+0x36a/0x4a0
[  359.981296][ T7982]  ? __pfx_check_noncircular+0x10/0x10
[  359.981314][ T7982]  ? lockdep_lock+0x123/0x2b0
[  359.981339][ T7982]  ? _find_first_zero_bit+0xd3/0x100
[  359.981362][ T7982]  validate_chain+0x18e0/0x5900
[  359.981392][ T7982]  ? __pfx_validate_chain+0x10/0x10
[  359.981408][ T7982]  ? __pfx_prb_first_seq+0x10/0x10
[  359.981435][ T7982]  ? this_cpu_in_panic+0x4f/0x80
[  359.981459][ T7982]  ? _prb_read_valid+0xa39/0xac0
[  359.981488][ T7982]  ? mark_lock+0x9a/0x350
[  359.981512][ T7982]  __lock_acquire+0x137a/0x2040
[  359.981541][ T7982]  lock_acquire+0x1ed/0x550
[  359.981562][ T7982]  ? down_trylock+0x20/0xa0
[  359.981581][ T7982]  ? __pfx_desc_update_last_finalized+0x10/0x10
[  359.981605][ T7982]  ? __pfx_lock_acquire+0x10/0x10
[  359.981625][ T7982]  ? rcu_is_watching+0x15/0xb0
[  359.981650][ T7982]  ? vprintk_store+0xd3e/0x1160
[  359.981672][ T7982]  _raw_spin_lock_irqsave+0xd5/0x120
[  359.981694][ T7982]  ? down_trylock+0x20/0xa0
[  359.981712][ T7982]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  359.981737][ T7982]  ? validate_chain+0x11e/0x5900
[  359.981756][ T7982]  down_trylock+0x20/0xa0
[  359.981776][ T7982]  __down_trylock_console_sem+0x109/0x250
[  359.981796][ T7982]  ? _printk+0xd5/0x120
[  359.981811][ T7982]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  359.981834][ T7982]  ? __pfx_validate_chain+0x10/0x10
[  359.981849][ T7982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.981871][ T7982]  vprintk_emit+0x2aa/0x7c0
[  359.981889][ T7982]  ? __pfx_vprintk_emit+0x10/0x10
[  359.981913][ T7982]  _printk+0xd5/0x120
[  359.981932][ T7982]  ? __pfx__printk+0x10/0x10
[  359.981956][ T7982]  should_fail_ex+0x391/0x4e0
[  359.981976][ T7982]  strncpy_from_user+0x36/0x2e0
[  359.982009][ T7982]  strncpy_from_user_nofault+0x71/0x140
[  359.982035][ T7982]  bpf_probe_read_compat_str+0xe9/0x180
[  359.982059][ T7982]  ? bpf_trace_run4+0x244/0x590
[  359.982077][ T7982]  bpf_prog_e3f550b2299101ce+0x40/0x42
[  359.982093][ T7982]  bpf_trace_run4+0x334/0x590
[  359.982111][ T7982]  ? psi_group_change+0xb88/0x11c0
[  359.982130][ T7982]  ? __pfx_bpf_trace_run4+0x10/0x10
[  359.982150][ T7982]  ? __pfx_probe_sched_switch+0x10/0x10
[  359.982170][ T7982]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  359.982188][ T7982]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  359.982206][ T7982]  __traceiter_sched_switch+0x98/0xd0
[  359.982226][ T7982]  __schedule+0x253f/0x4a10
[  359.982255][ T7982]  ? __pfx___schedule+0x10/0x10
[  359.982279][ T7982]  ? lock_acquire+0x264/0x550
[  359.982306][ T7982]  ? preempt_schedule+0xe1/0xf0
[  359.982328][ T7982]  preempt_schedule_common+0x84/0xd0
[  359.982352][ T7982]  preempt_schedule+0xe1/0xf0
[  359.982374][ T7982]  ? __pfx_preempt_schedule+0x10/0x10
[  359.982401][ T7982]  preempt_schedule_thunk+0x1a/0x30
[  359.982420][ T7982]  _raw_spin_unlock+0x3e/0x50
[  359.982441][ T7982]  netlink_seq_start+0x72/0x110
[  359.982460][ T7982]  traverse+0x14f/0x550
[  359.982483][ T7982]  seq_read_iter+0xc5e/0xd60
[  359.982511][ T7982]  seq_read+0x3a4/0x4f0
[  359.982531][ T7982]  ? __pfx_seq_read+0x10/0x10
[  359.982549][ T7982]  ? __pfx_lock_release+0x10/0x10
[  359.982579][ T7982]  ? __pfx_seq_read+0x10/0x10
[  359.982596][ T7982]  proc_reg_read+0x204/0x2f0
[  359.982618][ T7982]  vfs_readv+0x6c2/0xa90
[  359.982639][ T7982]  ? __pfx_proc_reg_read+0x10/0x10
[  359.982661][ T7982]  ? __pfx_vfs_readv+0x10/0x10
[  359.982685][ T7982]  ? __fget_files+0x29/0x470
[  359.982709][ T7982]  __x64_sys_preadv+0x1c7/0x2d0
[  359.982734][ T7982]  ? __pfx___x64_sys_preadv+0x10/0x10
[  359.982757][ T7982]  ? do_syscall_64+0x100/0x230
[  359.982775][ T7982]  ? do_syscall_64+0xb6/0x230
[  359.982794][ T7982]  do_syscall_64+0xf3/0x230
[  359.982811][ T7982]  ? clear_bhb_loop+0x35/0x90
[  359.982832][ T7982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.982852][ T7982] RIP: 0033:0x7f2527b7cef9
[  359.982868][ T7982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.982882][ T7982] RSP: 002b:00007f25288fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  359.982898][ T7982] RAX: ffffffffffffffda RBX: 00007f2527d36130 RCX: 00007f2527b7cef9
[  359.982912][ T7982] RDX: 0000000000000001 RSI: 00000000200014c0 RDI: 0000000000000007
[  359.982923][ T7982] RBP: 00007f25288fd090 R08: 0000000000000000 R09: 0000000000000000
[  359.982934][ T7982] R10: 0000000000000c81 R11: 0000000000000246 R12: 0000000000000001
[  359.982945][ T7982] R13: 0000000000000000 R14: 00007f2527d36130 R15: 00007ffc0fa18258
[  359.982965][ T7982]  </TASK>
[  361.026501][ T7982] CPU: 0 UID: 0 PID: 7982 Comm: syz.0.525 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  361.037060][ T7982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  361.047091][ T7982] Call Trace:
[  361.050347][ T7982]  <TASK>
[  361.053258][ T7982]  dump_stack_lvl+0x241/0x360
[  361.057916][ T7982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  361.063087][ T7982]  ? __pfx__printk+0x10/0x10
[  361.067653][ T7982]  should_fail_ex+0x3b0/0x4e0
[  361.072303][ T7982]  strncpy_from_user+0x36/0x2e0
[  361.077588][ T7982]  strncpy_from_user_nofault+0x71/0x140
[  361.083126][ T7982]  bpf_probe_read_compat_str+0xe9/0x180
[  361.088651][ T7982]  ? bpf_trace_run4+0x244/0x590
[  361.093474][ T7982]  bpf_prog_e3f550b2299101ce+0x40/0x42
[  361.098906][ T7982]  bpf_trace_run4+0x334/0x590
[  361.103556][ T7982]  ? psi_group_change+0xb88/0x11c0
[  361.108640][ T7982]  ? __pfx_bpf_trace_run4+0x10/0x10
[  361.113812][ T7982]  ? __pfx_probe_sched_switch+0x10/0x10
[  361.119330][ T7982]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  361.125989][ T7982]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  361.132036][ T7982]  __traceiter_sched_switch+0x98/0xd0
[  361.137383][ T7982]  __schedule+0x253f/0x4a10
[  361.141894][ T7982]  ? __pfx___schedule+0x10/0x10
[  361.146736][ T7982]  ? lock_acquire+0x264/0x550
[  361.151398][ T7982]  ? preempt_schedule+0xe1/0xf0
[  361.156228][ T7982]  preempt_schedule_common+0x84/0xd0
[  361.161498][ T7982]  preempt_schedule+0xe1/0xf0
[  361.166682][ T7982]  ? __pfx_preempt_schedule+0x10/0x10
[  361.172046][ T7982]  preempt_schedule_thunk+0x1a/0x30
[  361.177224][ T7982]  _raw_spin_unlock+0x3e/0x50
[  361.181880][ T7982]  netlink_seq_start+0x72/0x110
[  361.186706][ T7982]  traverse+0x14f/0x550
[  361.190839][ T7982]  seq_read_iter+0xc5e/0xd60
[  361.195413][ T7982]  seq_read+0x3a4/0x4f0
[  361.199545][ T7982]  ? __pfx_seq_read+0x10/0x10
[  361.204232][ T7982]  ? __pfx_lock_release+0x10/0x10
[  361.209352][ T7982]  ? __pfx_seq_read+0x10/0x10
[  361.214051][ T7982]  proc_reg_read+0x204/0x2f0
[  361.218633][ T7982]  vfs_readv+0x6c2/0xa90
[  361.222861][ T7982]  ? __pfx_proc_reg_read+0x10/0x10
[  361.227951][ T7982]  ? __pfx_vfs_readv+0x10/0x10
[  361.232699][ T7982]  ? __fget_files+0x29/0x470
[  361.237272][ T7982]  __x64_sys_preadv+0x1c7/0x2d0
[  361.242109][ T7982]  ? __pfx___x64_sys_preadv+0x10/0x10
[  361.247461][ T7982]  ? do_syscall_64+0x100/0x230
[  361.252200][ T7982]  ? do_syscall_64+0xb6/0x230
[  361.256856][ T7982]  do_syscall_64+0xf3/0x230
[  361.261338][ T7982]  ? clear_bhb_loop+0x35/0x90
[  361.265994][ T7982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.271871][ T7982] RIP: 0033:0x7f2527b7cef9
[  361.276267][ T7982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.295846][ T7982] RSP: 002b:00007f25288fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  361.304320][ T7982] RAX: ffffffffffffffda RBX: 00007f2527d36130 RCX: 00007f2527b7cef9
[  361.312283][ T7982] RDX: 0000000000000001 RSI: 00000000200014c0 RDI: 0000000000000007
[  361.320243][ T7982] RBP: 00007f25288fd090 R08: 0000000000000000 R09: 0000000000000000
[  361.328185][ T7982] R10: 0000000000000c81 R11: 0000000000000246 R12: 0000000000000001
[  361.336128][ T7982] R13: 0000000000000000 R14: 00007f2527d36130 R15: 00007ffc0fa18258
[  361.344079][ T7982]  </TASK>
[  361.448147][ T5275] usbhid 2-1:0.0: can't add hid device: -71
[  361.454584][ T5275] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  361.466459][ T5275] usb 2-1: USB disconnect, device number 10
[  361.487675][ T7987] FAULT_INJECTION: forcing a failure.
[  361.487675][ T7987] name failslab, interval 1, probability 0, space 0, times 0
[  361.535524][ T7987] CPU: 1 UID: 0 PID: 7987 Comm: syz.4.527 Not tainted 6.11.0-rc6-syzkaller-00070-gc763c4339688 #0
[  361.546151][ T7987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  361.556210][ T7987] Call Trace:
[  361.559494][ T7987]  <TASK>
[  361.562426][ T7987]  dump_stack_lvl+0x241/0x360
[  361.567122][ T7987]  ? __pfx_dump_stack_lvl+0x10/0x10
[  361.572333][ T7987]  ? __pfx__printk+0x10/0x10
[  361.576934][ T7987]  ? __pfx___might_resched+0x10/0x10
[  361.582236][ T7987]  should_fail_ex+0x3b0/0x4e0
[  361.586922][ T7987]  should_failslab+0xac/0x100
[  361.591606][ T7987]  ? __alloc_skb+0x1c3/0x440
[  361.596185][ T7987]  kmem_cache_alloc_node_noprof+0x71/0x320
[  361.601982][ T7987]  __alloc_skb+0x1c3/0x440
[  361.606385][ T7987]  ? __pfx___netlink_lookup+0x10/0x10
[  361.611747][ T7987]  ? __pfx___alloc_skb+0x10/0x10
[  361.616669][ T7987]  ? netlink_autobind+0xd6/0x2f0
[  361.621589][ T7987]  ? netlink_autobind+0x2b0/0x2f0
[  361.626605][ T7987]  netlink_sendmsg+0x638/0xcb0
[  361.631364][ T7987]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.636637][ T7987]  ? __import_iovec+0x536/0x820
[  361.641481][ T7987]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  361.646754][ T7987]  ? security_socket_sendmsg+0x87/0xb0
[  361.652197][ T7987]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.657465][ T7987]  __sock_sendmsg+0x221/0x270
[  361.662127][ T7987]  ____sys_sendmsg+0x525/0x7d0
[  361.666885][ T7987]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.672162][ T7987]  __sys_sendmsg+0x2b0/0x3a0
[  361.676744][ T7987]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.681844][ T7987]  ? vfs_write+0x7c4/0xc90
[  361.686261][ T7987]  ? fput+0x193/0x210
[  361.690237][ T7987]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  361.696552][ T7987]  ? rcu_is_watching+0x15/0xb0
[  361.701304][ T7987]  ? rcu_is_watching+0x15/0xb0
[  361.706058][ T7987]  do_syscall_64+0xf3/0x230
[  361.710550][ T7987]  ? clear_bhb_loop+0x35/0x90
[  361.715214][ T7987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.721094][ T7987] RIP: 0033:0x7f86a237cef9
[  361.725496][ T7987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.745086][ T7987] RSP: 002b:00007f86a325f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  361.753487][ T7987] RAX: ffffffffffffffda RBX: 00007f86a2535f80 RCX: 00007f86a237cef9
[  361.761441][ T7987] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000005
[  361.769397][ T7987] RBP: 00007f86a325f090 R08: 0000000000000000 R09: 0000000000000000
[  361.777350][ T7987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.785308][ T7987] R13: 0000000000000000 R14: 00007f86a2535f80 R15: 00007fffad602308
[  361.793269][ T7987]  </TASK>
[  361.981114][ T1053] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  362.002017][ T1053] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  362.032879][ T1053] bond0 (unregistering): Released all slaves
[  362.100240][ T7639] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.120072][ T7639] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.149294][ T7639] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.159124][ T7639] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.269021][ T7639] ieee80211 phy34: Selected rate control algorithm 'minstrel_ht'
[  362.319132][ T6323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.326633][ T7639] ieee80211 phy35: Selected rate control algorithm 'minstrel_ht'
[  362.337048][ T6323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.373428][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.383808][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.392269][ T1053] hsr_slave_0: left promiscuous mode
[  362.400265][ T1053] hsr_slave_1: left promiscuous mode
[  362.406639][ T1053] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.414038][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.421836][ T1053] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.429335][ T1053] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.438872][ T1053] veth1_macvtap: left promiscuous mode
[  362.444374][ T1053] veth0_macvtap: left promiscuous mode
[  362.450232][ T1053] veth1_vlan: left promiscuous mode
[  362.456395][ T1053] veth0_vlan: left promiscuous mode
[  362.621656][ T1053] team0 (unregistering): Port device team_slave_1 removed
[  362.656003][ T1053] team0 (unregistering): Port device team_slave_0 removed
[  363.549574][  T145] bridge_slave_1: left allmulticast mode
[  363.555362][  T145] bridge_slave_1: left promiscuous mode
[  363.560982][  T145] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.570076][  T145] bridge_slave_0: left allmulticast mode
[  363.576607][  T145] bridge_slave_0: left promiscuous mode
[  363.582239][  T145] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.881608][  T145] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  363.891749][  T145] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  363.901519][  T145] bond0 (unregistering): Released all slaves
[  364.108250][  T145] hsr_slave_0: left promiscuous mode
[  364.113995][  T145] hsr_slave_1: left promiscuous mode
[  364.120235][  T145] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  364.128495][  T145] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.137213][  T145] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  364.145034][  T145] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.153848][  T145] veth1_macvtap: left promiscuous mode
[  364.159382][  T145] veth0_macvtap: left promiscuous mode
[  364.165401][  T145] veth1_vlan: left promiscuous mode
[  364.170649][  T145] veth0_vlan: left promiscuous mode
[  364.311662][  T145] team0 (unregistering): Port device team_slave_1 removed
[  364.333541][  T145] team0 (unregistering): Port device team_slave_0 removed