last executing test programs:

5m25.09453652s ago: executing program 3 (id=364):
ftruncate(0xffffffffffffffff, 0x8800000)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r0, 0x4008af23, &(0x7f0000000000)={0x1, 0x8})
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@generic={0x0, 0x0, 0x8}, 0x14)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
r1 = io_uring_setup(0x2ec5, &(0x7f0000000780)={0x0, 0x80003129, 0x3cd0, 0x4004, 0x1bd})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x34, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
read$FUSE(0xffffffffffffffff, &(0x7f0000003500)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1e, 0x800, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'veth0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56441, 0x70b925, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c061}, 0x200c000)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newqdisc={0x4c, 0x24, 0xe0b, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x9}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}}}}]}, 0x4c}}, 0x0)
sendto$packet(r2, &(0x7f0000000740)="44c394ac519a4a9cb44ea53fc274f3b4230f840fdf8e16999da20800", 0x5a, 0xc0, &(0x7f00000000c0)={0x11, 0x5, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000300))
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = dup(r9)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000700)={'bridge0\x00'})

5m25.024915713s ago: executing program 3 (id=365):
r0 = io_uring_setup(0x1a8, &(0x7f00000000c0)={0x0, 0xb1e1, 0x2, 0x0, 0x2e0})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0xc4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001340)={r1, 0x0, 0x94, 0xdb, &(0x7f0000000140)="82eeac2044a35e44840b35b2207d48e9e63b0fa219b51995f95900302a0bfb360b9064013a79d54d72a4f00a81f004efa46bfd7fc887f25f1321d93ae2ad779097f52803507a54f8fa77d73e79fb024a8d3c6a2c180625adf54515fa5a43fc93b466125d75015ac221b3ebf3789aaeed8ea6465b4b94ba5d6e2b9ab1d87d6558da4fcd9269ca74e6b5d1acaf3e12fcca9d318fea", &(0x7f0000000200)=""/219, 0x1, 0x0, 0x1000, 0x18, &(0x7f0000000300)="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", &(0x7f0000001300)="69c58325a8600460b6536641561135d8d05b05277024fdef", 0x6, 0x0, 0x8}, 0x4c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, 0x20010, r1, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x3c)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000000)={0x0, @multicast1}, &(0x7f0000000040)=0xc)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$inet6(r6, 0x0, 0x0, 0x40000020, 0x0, 0x0)
bind$l2tp6(r6, &(0x7f00000001c0)={0xa, 0x0, 0x0, @empty}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60f91e2e00107300fc040000000000000000000000000000ff020000000000"], 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010040000000fddbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}}, 0x6048800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$inet(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x20040001)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000a00)=ANY=[@ANYBLOB="120100000c9768405e0483020b9901e402010902"], 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000013c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0xfffffffe, @loopback, 0x4}, 0x1c)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x13, &(0x7f0000001bc0), 0x2)

5m23.5943217s ago: executing program 3 (id=382):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0xe503, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000100)={{0x3, 0x100, 0xfff}, 'syz0\x00', 0x10})
ioctl$UI_DEV_CREATE(r0, 0x5501)
syz_open_dev$video4linux(&(0x7f00000006c0), 0x10001, 0x4000)
close(0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$procfs(0xffffffffffffff9c, &(0x7f0000002600)='/proc/bus/input/devices\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0xc00, 0x0, 0x823}, &(0x7f0000000100)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000180)=<r5=>0x0)
syz_io_uring_submit(r3, r4, r5, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r2, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

5m22.743708564s ago: executing program 3 (id=388):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
umount2(&(0x7f00000001c0)='./file0/file0/../file0\x00', 0x7000000)

5m22.624918306s ago: executing program 3 (id=389):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000380)={{0x0, 0xfff, 0x4b, 0x8009}, 'syz0\x00', 0x3e})
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0xfffffffffffffffe, 0x2)
dup3(r1, r0, 0x80000)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x1, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

5m22.364594437s ago: executing program 3 (id=392):
r0 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
r1 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x15, 0x0, @dev={0xfe, 0x80, '\x00', 0x2}}, 0x80, 0x0, 0x0, &(0x7f0000000440)=[@mark={{0x10, 0x11, 0x67, 0x3}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}], 0x20}, 0x40004)
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x18, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, {}, {}, [@call={0x85, 0x0, 0x0, 0xa9}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000000}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000000c0)='GPL\x00', 0x814, 0xcf, &(0x7f0000000100)=""/207, 0x41000, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x3, 0xff, 0x1}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000280)=[0x1, 0x1, 0x1, r0, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1], &(0x7f00000002c0)=[{0x3, 0x1, 0x10, 0xa}, {0x1, 0x2, 0x4}, {0x0, 0x5, 0xf, 0x9}], 0x10, 0xfffffff5}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f00000003c0)={r2, r3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0xc0a45320, 0x0)

5m22.298718184s ago: executing program 32 (id=392):
r0 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
r1 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x15, 0x0, @dev={0xfe, 0x80, '\x00', 0x2}}, 0x80, 0x0, 0x0, &(0x7f0000000440)=[@mark={{0x10, 0x11, 0x67, 0x3}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}], 0x20}, 0x40004)
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x18, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, {}, {}, [@call={0x85, 0x0, 0x0, 0xa9}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000000}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000000c0)='GPL\x00', 0x814, 0xcf, &(0x7f0000000100)=""/207, 0x41000, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x3, 0xff, 0x1}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000280)=[0x1, 0x1, 0x1, r0, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1], &(0x7f00000002c0)=[{0x3, 0x1, 0x10, 0xa}, {0x1, 0x2, 0x4}, {0x0, 0x5, 0xf, 0x9}], 0x10, 0xfffffff5}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f00000003c0)={r2, r3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0xc0a45320, 0x0)

4m29.393315213s ago: executing program 4 (id=521):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = io_uring_setup(0x258d, &(0x7f0000000640)={0x0, 0x4008272, 0x1, 0x3, 0x288})
io_uring_setup(0x7fd, &(0x7f0000000080)={0x0, 0xed43, 0x10000, 0x3, 0x1f9, 0x0, r0})
socket$can_j1939(0x1d, 0x2, 0x7)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = fsopen(&(0x7f0000000080)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x4)
openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_smc(0x2b, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000f00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES64=r2], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket(0x10, 0x3, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0), 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xa, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000280)={0x0, 0x0, 0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r7, 0x0, 0x0, 0x0, 0x0, [<r8=>0x0], [], [0x8, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={r8})

4m28.583288233s ago: executing program 4 (id=523):
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x22, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="6000000010000304000300"/20, @ANYRES32=0x0, @ANYBLOB="00000000010000003000128009000100766c616e000000f1200002800c0002001e0000001f02000006000100fc0f00000600050088a8000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB], 0x60}}, 0x8000)

4m28.582352383s ago: executing program 4 (id=524):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x22) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x22)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006180)={0x2020}, 0x2020) (async)
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, <r1=>0x0}, 0x2020)
mount$pvfs2(&(0x7f0000000100), &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="b42f247b5e2c7b235e2c66757365002c142d247d3a2c6f626a5f726f6c653d002c736d61636b66736465663d2d232c646566636f6e746578743d73797361646d5f752c00bb52f1af7c170cf1d8706b1cf498137a7ab2bbc0b27997e395d75e5acfb9ae36032848076eeb35"])
setreuid(0xee01, 0xee01)
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0xfffffffffffffffe, r1, {0x7, 0x29, 0x2, 0xffffffff80200168, 0x40, 0x1, 0xffffffb1, 0x0, 0x0, 0x0, 0x80, 0x7fffffff}}, 0xf)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000c0000000c0000000280eefffcffffff00070012000000000000000000dec9ae684e6722d9d53baa2f0cacb15e5c5e7b08067923d8249e57a0d03740a9d9236b23f27dea1ac1817da1ada8f37e035a7a8a3095e6"], 0x0, 0x26}, 0x28)

4m28.504645983s ago: executing program 4 (id=525):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xc, &(0x7f0000000000)=0x56, 0x4)
r2 = openat$vcsa(0xffffff9c, &(0x7f00000000c0), 0x2001, 0x0)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f00000001c0)={0x4, &(0x7f0000000140)=[{0x1, 0x8, 0xbe, 0xfffffffd}, {0x8001, 0x1, 0x8, 0x5}, {0x200, 0x8, 0x0, 0x80000001}, {0x5, 0x9, 0x80, 0x8}]}, 0x8)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000280)='./file0/../file0\x00', 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r4, &(0x7f0000002380)={0x2020}, 0x2020)
io_uring_register$IORING_REGISTER_RING_FDS(r4, 0x14, &(0x7f0000007380)=[{0x5, 0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/98, 0x62}, {&(0x7f0000000340)=""/42, 0x2a}, {&(0x7f0000000380)=""/222, 0xde}, {&(0x7f0000000480)=""/2, 0x2}, {&(0x7f00000004c0)=""/252, 0xfc}], &(0x7f0000000640)=[0x9]}, {0x1, 0x1, 0x0, &(0x7f0000000780)=[{&(0x7f0000000680)=""/204, 0xcc}], &(0x7f00000007c0)=[0x566c]}, {0x3, 0x1, 0x0, &(0x7f0000000940)=[{&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)}, {&(0x7f0000000880)=""/163, 0xa3}], &(0x7f0000000980)=[0xfff, 0x6, 0x3, 0x6, 0x37f, 0x7fffffff]}, {0x9, 0x1, 0x0, &(0x7f0000001f80)=[{&(0x7f00000009c0)=""/15, 0xf}, {&(0x7f0000000a00)=""/211, 0xd3}, {&(0x7f0000000b00)=""/220, 0xdc}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/19, 0x13}, {&(0x7f0000001d80)=""/189, 0xbd}, {&(0x7f0000001e40)=""/10, 0xa}, {&(0x7f0000001e80)=""/95, 0x5f}, {&(0x7f0000000c00)=""/126, 0x7e}], &(0x7f0000002000)=[0x0]}, {0x3, 0x0, 0x0, &(0x7f0000002240)=[{&(0x7f0000002040)=""/13, 0xd}, {&(0x7f0000002080)=""/178, 0xb2}, {&(0x7f0000002140)=""/250, 0xfa}], &(0x7f0000002280)=[0x9, 0x0, 0x81, 0xffffffffffffff49]}, {0x8, 0x0, 0x0, &(0x7f0000006700)=[{&(0x7f00000022c0)=""/46, 0x2e}, {&(0x7f00000043c0)=""/4096, 0x1000}, {&(0x7f00000053c0)=""/198, 0xc6}, {&(0x7f00000054c0)=""/207, 0xcf}, {&(0x7f00000055c0)=""/31, 0x1f}, {&(0x7f0000005600)=""/131, 0x83}, {&(0x7f00000056c0)=""/4096, 0x1000}, {&(0x7f00000066c0)=""/46, 0x2e}], &(0x7f0000006740)=[0x790, 0x0, 0xffffffffffffff04, 0x8]}, {0x1, 0x1, 0x0, &(0x7f0000006800)=[{&(0x7f0000006780)=""/108, 0x6c}], &(0x7f0000006840)=[0x3ff, 0x3]}, {0x5, 0x1, 0x0, &(0x7f0000006c40)=[{&(0x7f0000006880)=""/184, 0xb8}, {&(0x7f0000006940)=""/143, 0x8f}, {&(0x7f0000006a00)=""/68, 0x44}, {&(0x7f0000006a80)=""/186, 0xba}, {&(0x7f0000006b40)=""/225, 0xe1}], &(0x7f0000006c80)=[0x5, 0x10b]}, {0xa, 0x1, 0x0, &(0x7f00000072c0)=[{&(0x7f0000006cc0)=""/136, 0x88}, {&(0x7f0000006d80)=""/238, 0xee}, {&(0x7f0000006e80)=""/150, 0x96}, {&(0x7f0000006f40)=""/240, 0xf0}, {&(0x7f0000007040)=""/15, 0xf}, {&(0x7f0000007080)=""/62, 0x3e}, {&(0x7f00000070c0)=""/61, 0x3d}, {&(0x7f0000007100)=""/103, 0x67}, {&(0x7f0000007180)=""/196, 0xc4}, {&(0x7f0000007280)=""/55, 0x37}], &(0x7f0000007340)=[0x5, 0xba, 0x1]}], 0x9)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/fscreate\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x6, 0x22, 0x3, 0x50000}]})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff)
syz_clone3(&(0x7f0000000080)={0x21800000, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r5)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000200)=ANY=[@ANYRES64=r2], 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
syz_open_dev$hiddev(&(0x7f0000000040), 0xf199, 0x200)

4m25.455017289s ago: executing program 4 (id=546):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000000), 0x400000000000041, 0x0)
close(r0)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r1, 0x104, 0x5, &(0x7f00000001c0)=0xffffffff, 0x4)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x3, 0x0, &(0x7f0000000340)='GPL\x00', 0x5c, 0xb2, &(0x7f0000000680)=""/178, 0x41000, 0x20, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x11, r4, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

4m24.986462756s ago: executing program 4 (id=550):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newlink={0x50, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}, @IFLA_GROUP={0x8, 0x1b, 0x400}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}}]}, 0x50}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$kcm(0x11, 0x3, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003f40)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r11, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x5, 0x2, 0x20000000, 0x2, 0x4}, 0x4, 0x10}, [{0x4, 0x9, 0x40, 0x52, 0xa1, 0x8}, {0x4, 0xffffff01, 0xffff, 0xfffffffc, 0x62, 0x4f1}, {0x80000001, 0x4, 0x7, 0x76, 0x6, 0x5}, {0xb11, 0x1, 0x7f, 0xe5f, 0x4, 0x6}, {0xa10, 0x9, 0x6, 0xff, 0x800, 0x10001}, {0xffff, 0x5, 0x1, 0x6, 0x5, 0xdc8}, {0x4, 0x8506, 0x7ff, 0x2, 0x5, 0x7fffffff}, {0x800, 0x1, 0x3, 0x2, 0x2}, {0x53, 0x40, 0xd, 0x4, 0x874, 0x189}, {0x4740, 0xed, 0x1, 0xfd3, 0x5, 0x4}, {0x2, 0x6, 0x2, 0x9, 0x7d47, 0x8}, {0x8, 0x4, 0x3, 0xe, 0x40, 0x200}, {0x4, 0x6, 0x7, 0x72, 0x8000, 0x3dc}, {0x6, 0x37, 0x9, 0x5, 0x5, 0x80}, {0x9, 0xffff8001, 0x840f, 0x1, 0x6, 0x4}, {0x2, 0x2, 0x5, 0x5, 0x912, 0x3}, {0x0, 0x7, 0xfffff502, 0xff, 0x4, 0x4}, {0xfffffffe, 0x6, 0x3ff, 0x800, 0x6, 0x2}, {0x7, 0x4, 0x8001, 0x437, 0x7, 0x628}, {0x2, 0x3, 0x5, 0x6, 0x4, 0x8}, {0xfffff801, 0x7fff, 0x1000000, 0xfffffff5, 0x8, 0x9e}, {0x5, 0x1, 0x5, 0x200, 0xffff37db, 0x1}, {0x200, 0x2, 0x1, 0x3ff, 0x8, 0x3}, {0x4, 0x2, 0x3e03, 0x4, 0x8, 0xa08f}, {0xff, 0x3, 0x7, 0x4, 0x10, 0xdbaf}, {0x4, 0xfffffffb, 0x2, 0xc47, 0x8, 0x5bc}, {0x79, 0x2f3, 0x8, 0xffff, 0x1}, {0xe, 0x800, 0x2, 0xfffffff8, 0x5, 0x1}, {0x80, 0xc66, 0x9fa1, 0xfffffffc, 0x8, 0x41}, {0x7f, 0x9, 0xfffffff7, 0x4, 0x3, 0x800}, {0x9, 0x1, 0x4, 0x6, 0x7, 0x8000}, {0x5, 0x2, 0x987, 0x5, 0x0, 0xffff4377}, {0x2, 0x9, 0x6, 0x4, 0x0, 0x9}, {0xc, 0x1, 0x0, 0x2, 0x4, 0x2}, {0xffffffff, 0x0, 0xfffffffc, 0x1, 0x400, 0xffffff00}, {0x3, 0x80000000, 0x3, 0x14e7dcd1, 0x6, 0x2}, {0x7, 0x10001, 0x10, 0x8, 0xa, 0x6}, {0x1, 0x100, 0x3, 0x1ff, 0x5}, {0xe, 0x1, 0x0, 0x3, 0x3, 0x7}, {0x7, 0x2, 0x2, 0x3, 0x0, 0xfffffff9}, {0x80000000, 0x1, 0x8, 0x4, 0x800, 0x8}, {0xfffffff9, 0x81, 0x401, 0x7, 0x4, 0x3}, {0x898, 0x919, 0x3, 0x16000, 0x7, 0x9}, {0x130dd208, 0x63f, 0x1, 0x8e, 0x2, 0x6}, {0xc08f, 0x4, 0x4, 0x3, 0x7, 0x3}, {0x2f, 0xffffffff, 0x281, 0x6, 0x7, 0x4}, {0x2, 0x4, 0x1, 0xffff1cb0, 0x8, 0x401}, {0xffffffff, 0x40, 0x8, 0x2, 0x1, 0xc}, {0x23e9d24a, 0x3b, 0xffffffff, 0x9, 0x8, 0x9}, {0x10001, 0x32, 0x10001, 0x3, 0x52, 0xfffffffc}, {0x4, 0x1, 0xfb, 0x4, 0x6, 0x6}, {0x4, 0x47, 0x7, 0x5, 0x0, 0x7fffffff}, {0x3, 0xbc3f, 0x7, 0x80000001, 0xf, 0x8000}, {0x0, 0x0, 0xa32, 0x8, 0xc, 0x8}, {0x1ff, 0x3, 0x5, 0x8, 0x0, 0x7}, {0x3, 0x3b, 0x8, 0x2, 0x7ff}, {0x5, 0x4909, 0x2, 0x40, 0x7fff, 0x1}, {0x8, 0x1ff, 0x3, 0xfffffffa, 0x1, 0x43}, {0x8, 0x4, 0x6, 0x6, 0x35e, 0x7}, {0x8, 0x7, 0x8, 0x8, 0x3}, {0x8, 0x8, 0xe, 0x7, 0x67, 0x1ff}, {0x3, 0x100000, 0x7, 0x7e2b, 0x5, 0x5}, {0x10001, 0x10000, 0x5, 0x3, 0xfffffff8, 0x4}, {0x6, 0x991e, 0x7, 0x7, 0xc97, 0x4}, {0xa, 0x0, 0x8, 0x5, 0x2, 0x6}, {0x8, 0x6, 0x8001, 0x5, 0x8, 0x9}, {0x2, 0x1, 0x400, 0xffff, 0xc, 0x7}, {0x9, 0xffffffff, 0x9, 0x3ff, 0xc, 0x5}, {0xa, 0x2, 0xfff, 0x7, 0xfff, 0x7}, {0x3, 0x2, 0x9, 0x80, 0x7, 0x8}, {0x800, 0x7, 0x5, 0x8, 0xb351, 0x40}, {0xfffffffe, 0x400, 0x8003, 0x75ce, 0x4, 0x1}, {0xffff, 0x5, 0x80000000, 0x8, 0x3, 0x10001}, {0x6, 0x8, 0x3ce, 0x3, 0x56000, 0x1000}, {0x3, 0x83e, 0xa, 0x5, 0x7, 0x8}, {0x9, 0x4, 0x1, 0x6, 0x6, 0x5}, {0x5, 0x8000, 0x8, 0x0, 0x40000000, 0xff}, {0x6, 0xea, 0x2, 0xf7, 0xe, 0x6}, {0x8, 0x1, 0x2, 0xff, 0x8, 0x8}, {0x3, 0x8, 0x10000, 0x81, 0x2, 0x9ca}, {0xfff, 0xaadb, 0xfb5, 0xe7b, 0x2, 0x401}, {0x5, 0x4, 0x1000, 0x8001, 0xe1, 0x2}, {0x8000, 0xc5, 0x8, 0x0, 0x2, 0x5}, {0x8, 0x2b, 0x6, 0x8, 0x6, 0xfffffff7}, {0x2, 0x7fffffff, 0x3, 0x5, 0x0, 0x5}, {0xf, 0x7fff, 0x0, 0x8000, 0x0, 0x8}, {0x4, 0x0, 0x7, 0xa9c, 0x1, 0x9}, {0x4, 0xffff, 0x79a, 0x5, 0x0, 0x2}, {0x1, 0x9, 0x4, 0xffffffff, 0x31, 0x401}, {0x4, 0x7, 0x8, 0x1, 0xfff, 0x1}, {0x4, 0xf, 0x6d0, 0xf, 0x6, 0x70}, {0xd0d, 0x7, 0x3, 0x10000, 0x2, 0x8}, {0x6044, 0x6, 0x8e, 0x81, 0xb, 0x8}, {0xfb56, 0xd1, 0x0, 0xfffffff4, 0x5, 0x2}, {0xfffffff9, 0x8, 0x1, 0x7fff, 0x8, 0xb4b}, {0x5, 0x4dc3, 0x855e, 0x8, 0x1, 0x7}, {0xd, 0xfffffff8, 0x6, 0x6e, 0x5, 0xffffffff}, {0x9, 0x6, 0x8, 0x7ff, 0x7, 0x18a}, {0x2, 0x2, 0x1fcd, 0x9, 0x0, 0x8}, {0x4, 0x4, 0x850, 0x51, 0x3ff, 0xb7}, {0x7, 0x7, 0x9, 0x9}, {0x477, 0x9, 0xf7, 0x7fffffff, 0x2c00000, 0x5}, {0x10, 0x80000000, 0x6dc, 0x3a98c5bc, 0x9, 0x7}, {0x8, 0x7, 0x753f390a, 0x5, 0xb}, {0x200, 0x4, 0x8, 0xd, 0x101, 0x9f8}, {0x200, 0x1707589b, 0x6, 0x6, 0x80}, {0x4, 0x7, 0x8, 0x4, 0x7, 0x7}, {0x0, 0xffffff00, 0x5, 0x4, 0x7, 0xfffffffb}, {0x9, 0x100, 0xfa7, 0x1000, 0x2, 0x4}, {0x7f, 0x57, 0x0, 0x8, 0x68f3, 0x841}, {0x6, 0x1, 0x10, 0xffffffff, 0x0, 0xfffffff8}, {0x3ff, 0x3ff, 0x8001, 0xfff, 0x0, 0x2}, {0x7, 0x4, 0x7, 0x5, 0x6e1b, 0x5}, {0xfffff2b6, 0x7, 0x2, 0xfffffffd, 0xd, 0x45b0}, {0x80000001, 0xfffffffd, 0x81, 0xfffffffb, 0x6}, {0x401, 0x7, 0xe, 0x9, 0x7, 0x2}, {0xf69, 0x57, 0x0, 0x8, 0x5}, {0x4, 0xfff, 0xa1, 0x9, 0x800, 0xfff}, {0x4, 0x8, 0xa7c, 0x0, 0xcd, 0x2}, {0x9, 0x7f, 0x5, 0x7, 0x4, 0x9}, {0x3, 0x1, 0x101, 0x0, 0xc, 0x7}, {0xe5a, 0x8, 0x6, 0x2, 0xffffffc0, 0xc}, {0x5, 0xfffffffd, 0xffff, 0x9973, 0x8, 0xe4a}, {0x7ff, 0x9, 0x3, 0xf0, 0x81}, {0x100, 0x6, 0x9, 0x5, 0x80000000, 0x5}, {0x0, 0x80000000, 0x99, 0x2, 0xc, 0x7}, {0x378140be, 0x4, 0x7ff, 0x10, 0x7f77, 0xffffff81}, {0x401, 0x10001, 0x8, 0x4, 0x2, 0x8}], [{0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x3}, {0x2}, {0x3}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0x2, 0x1}, {0x1}, {0x4}, {0x4, 0x1}, {0x0, 0x32820417c2b438f9}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x5}, {}, {0x4}, {0x2, 0x1}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {}, {0x5}, {0x1}, {0x4}, {0x2}, {0x3, 0x1}, {}, {0x1, 0x1}, {0x3}, {0x4, 0x1}, {0x5, 0x1}, {0x4}, {0x3}, {0x5}, {0x4, 0x1}, {0x5}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x6, 0x1}, {0x4}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x4}, {0x4, 0x1}, {0x3}, {}, {0x1}, {0x2, 0x1}, {0x2}, {0x5}, {}, {0x3}, {0x5}, {0x2, 0x1}, {0x5}, {0x3, 0x1}, {0x1}, {}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x3}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x5}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {0x4}, {0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x5, 0x1}, {0x1}, {0x4}, {0x3}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x21577a60a46d04d}, {0x1}, {0x5, 0x1}, {0x3}, {0x2, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x4}, {0x3, 0x1}], 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r6, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200080314000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f0000000780)="f058050000007f8f", 0x4000}], 0x2}, 0x5)

4m24.864783379s ago: executing program 33 (id=550):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newlink={0x50, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}, @IFLA_GROUP={0x8, 0x1b, 0x400}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}}]}, 0x50}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$kcm(0x11, 0x3, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003f40)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r11, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x5, 0x2, 0x20000000, 0x2, 0x4}, 0x4, 0x10}, [{0x4, 0x9, 0x40, 0x52, 0xa1, 0x8}, {0x4, 0xffffff01, 0xffff, 0xfffffffc, 0x62, 0x4f1}, {0x80000001, 0x4, 0x7, 0x76, 0x6, 0x5}, {0xb11, 0x1, 0x7f, 0xe5f, 0x4, 0x6}, {0xa10, 0x9, 0x6, 0xff, 0x800, 0x10001}, {0xffff, 0x5, 0x1, 0x6, 0x5, 0xdc8}, {0x4, 0x8506, 0x7ff, 0x2, 0x5, 0x7fffffff}, {0x800, 0x1, 0x3, 0x2, 0x2}, {0x53, 0x40, 0xd, 0x4, 0x874, 0x189}, {0x4740, 0xed, 0x1, 0xfd3, 0x5, 0x4}, {0x2, 0x6, 0x2, 0x9, 0x7d47, 0x8}, {0x8, 0x4, 0x3, 0xe, 0x40, 0x200}, {0x4, 0x6, 0x7, 0x72, 0x8000, 0x3dc}, {0x6, 0x37, 0x9, 0x5, 0x5, 0x80}, {0x9, 0xffff8001, 0x840f, 0x1, 0x6, 0x4}, {0x2, 0x2, 0x5, 0x5, 0x912, 0x3}, {0x0, 0x7, 0xfffff502, 0xff, 0x4, 0x4}, {0xfffffffe, 0x6, 0x3ff, 0x800, 0x6, 0x2}, {0x7, 0x4, 0x8001, 0x437, 0x7, 0x628}, {0x2, 0x3, 0x5, 0x6, 0x4, 0x8}, {0xfffff801, 0x7fff, 0x1000000, 0xfffffff5, 0x8, 0x9e}, {0x5, 0x1, 0x5, 0x200, 0xffff37db, 0x1}, {0x200, 0x2, 0x1, 0x3ff, 0x8, 0x3}, {0x4, 0x2, 0x3e03, 0x4, 0x8, 0xa08f}, {0xff, 0x3, 0x7, 0x4, 0x10, 0xdbaf}, {0x4, 0xfffffffb, 0x2, 0xc47, 0x8, 0x5bc}, {0x79, 0x2f3, 0x8, 0xffff, 0x1}, {0xe, 0x800, 0x2, 0xfffffff8, 0x5, 0x1}, {0x80, 0xc66, 0x9fa1, 0xfffffffc, 0x8, 0x41}, {0x7f, 0x9, 0xfffffff7, 0x4, 0x3, 0x800}, {0x9, 0x1, 0x4, 0x6, 0x7, 0x8000}, {0x5, 0x2, 0x987, 0x5, 0x0, 0xffff4377}, {0x2, 0x9, 0x6, 0x4, 0x0, 0x9}, {0xc, 0x1, 0x0, 0x2, 0x4, 0x2}, {0xffffffff, 0x0, 0xfffffffc, 0x1, 0x400, 0xffffff00}, {0x3, 0x80000000, 0x3, 0x14e7dcd1, 0x6, 0x2}, {0x7, 0x10001, 0x10, 0x8, 0xa, 0x6}, {0x1, 0x100, 0x3, 0x1ff, 0x5}, {0xe, 0x1, 0x0, 0x3, 0x3, 0x7}, {0x7, 0x2, 0x2, 0x3, 0x0, 0xfffffff9}, {0x80000000, 0x1, 0x8, 0x4, 0x800, 0x8}, {0xfffffff9, 0x81, 0x401, 0x7, 0x4, 0x3}, {0x898, 0x919, 0x3, 0x16000, 0x7, 0x9}, {0x130dd208, 0x63f, 0x1, 0x8e, 0x2, 0x6}, {0xc08f, 0x4, 0x4, 0x3, 0x7, 0x3}, {0x2f, 0xffffffff, 0x281, 0x6, 0x7, 0x4}, {0x2, 0x4, 0x1, 0xffff1cb0, 0x8, 0x401}, {0xffffffff, 0x40, 0x8, 0x2, 0x1, 0xc}, {0x23e9d24a, 0x3b, 0xffffffff, 0x9, 0x8, 0x9}, {0x10001, 0x32, 0x10001, 0x3, 0x52, 0xfffffffc}, {0x4, 0x1, 0xfb, 0x4, 0x6, 0x6}, {0x4, 0x47, 0x7, 0x5, 0x0, 0x7fffffff}, {0x3, 0xbc3f, 0x7, 0x80000001, 0xf, 0x8000}, {0x0, 0x0, 0xa32, 0x8, 0xc, 0x8}, {0x1ff, 0x3, 0x5, 0x8, 0x0, 0x7}, {0x3, 0x3b, 0x8, 0x2, 0x7ff}, {0x5, 0x4909, 0x2, 0x40, 0x7fff, 0x1}, {0x8, 0x1ff, 0x3, 0xfffffffa, 0x1, 0x43}, {0x8, 0x4, 0x6, 0x6, 0x35e, 0x7}, {0x8, 0x7, 0x8, 0x8, 0x3}, {0x8, 0x8, 0xe, 0x7, 0x67, 0x1ff}, {0x3, 0x100000, 0x7, 0x7e2b, 0x5, 0x5}, {0x10001, 0x10000, 0x5, 0x3, 0xfffffff8, 0x4}, {0x6, 0x991e, 0x7, 0x7, 0xc97, 0x4}, {0xa, 0x0, 0x8, 0x5, 0x2, 0x6}, {0x8, 0x6, 0x8001, 0x5, 0x8, 0x9}, {0x2, 0x1, 0x400, 0xffff, 0xc, 0x7}, {0x9, 0xffffffff, 0x9, 0x3ff, 0xc, 0x5}, {0xa, 0x2, 0xfff, 0x7, 0xfff, 0x7}, {0x3, 0x2, 0x9, 0x80, 0x7, 0x8}, {0x800, 0x7, 0x5, 0x8, 0xb351, 0x40}, {0xfffffffe, 0x400, 0x8003, 0x75ce, 0x4, 0x1}, {0xffff, 0x5, 0x80000000, 0x8, 0x3, 0x10001}, {0x6, 0x8, 0x3ce, 0x3, 0x56000, 0x1000}, {0x3, 0x83e, 0xa, 0x5, 0x7, 0x8}, {0x9, 0x4, 0x1, 0x6, 0x6, 0x5}, {0x5, 0x8000, 0x8, 0x0, 0x40000000, 0xff}, {0x6, 0xea, 0x2, 0xf7, 0xe, 0x6}, {0x8, 0x1, 0x2, 0xff, 0x8, 0x8}, {0x3, 0x8, 0x10000, 0x81, 0x2, 0x9ca}, {0xfff, 0xaadb, 0xfb5, 0xe7b, 0x2, 0x401}, {0x5, 0x4, 0x1000, 0x8001, 0xe1, 0x2}, {0x8000, 0xc5, 0x8, 0x0, 0x2, 0x5}, {0x8, 0x2b, 0x6, 0x8, 0x6, 0xfffffff7}, {0x2, 0x7fffffff, 0x3, 0x5, 0x0, 0x5}, {0xf, 0x7fff, 0x0, 0x8000, 0x0, 0x8}, {0x4, 0x0, 0x7, 0xa9c, 0x1, 0x9}, {0x4, 0xffff, 0x79a, 0x5, 0x0, 0x2}, {0x1, 0x9, 0x4, 0xffffffff, 0x31, 0x401}, {0x4, 0x7, 0x8, 0x1, 0xfff, 0x1}, {0x4, 0xf, 0x6d0, 0xf, 0x6, 0x70}, {0xd0d, 0x7, 0x3, 0x10000, 0x2, 0x8}, {0x6044, 0x6, 0x8e, 0x81, 0xb, 0x8}, {0xfb56, 0xd1, 0x0, 0xfffffff4, 0x5, 0x2}, {0xfffffff9, 0x8, 0x1, 0x7fff, 0x8, 0xb4b}, {0x5, 0x4dc3, 0x855e, 0x8, 0x1, 0x7}, {0xd, 0xfffffff8, 0x6, 0x6e, 0x5, 0xffffffff}, {0x9, 0x6, 0x8, 0x7ff, 0x7, 0x18a}, {0x2, 0x2, 0x1fcd, 0x9, 0x0, 0x8}, {0x4, 0x4, 0x850, 0x51, 0x3ff, 0xb7}, {0x7, 0x7, 0x9, 0x9}, {0x477, 0x9, 0xf7, 0x7fffffff, 0x2c00000, 0x5}, {0x10, 0x80000000, 0x6dc, 0x3a98c5bc, 0x9, 0x7}, {0x8, 0x7, 0x753f390a, 0x5, 0xb}, {0x200, 0x4, 0x8, 0xd, 0x101, 0x9f8}, {0x200, 0x1707589b, 0x6, 0x6, 0x80}, {0x4, 0x7, 0x8, 0x4, 0x7, 0x7}, {0x0, 0xffffff00, 0x5, 0x4, 0x7, 0xfffffffb}, {0x9, 0x100, 0xfa7, 0x1000, 0x2, 0x4}, {0x7f, 0x57, 0x0, 0x8, 0x68f3, 0x841}, {0x6, 0x1, 0x10, 0xffffffff, 0x0, 0xfffffff8}, {0x3ff, 0x3ff, 0x8001, 0xfff, 0x0, 0x2}, {0x7, 0x4, 0x7, 0x5, 0x6e1b, 0x5}, {0xfffff2b6, 0x7, 0x2, 0xfffffffd, 0xd, 0x45b0}, {0x80000001, 0xfffffffd, 0x81, 0xfffffffb, 0x6}, {0x401, 0x7, 0xe, 0x9, 0x7, 0x2}, {0xf69, 0x57, 0x0, 0x8, 0x5}, {0x4, 0xfff, 0xa1, 0x9, 0x800, 0xfff}, {0x4, 0x8, 0xa7c, 0x0, 0xcd, 0x2}, {0x9, 0x7f, 0x5, 0x7, 0x4, 0x9}, {0x3, 0x1, 0x101, 0x0, 0xc, 0x7}, {0xe5a, 0x8, 0x6, 0x2, 0xffffffc0, 0xc}, {0x5, 0xfffffffd, 0xffff, 0x9973, 0x8, 0xe4a}, {0x7ff, 0x9, 0x3, 0xf0, 0x81}, {0x100, 0x6, 0x9, 0x5, 0x80000000, 0x5}, {0x0, 0x80000000, 0x99, 0x2, 0xc, 0x7}, {0x378140be, 0x4, 0x7ff, 0x10, 0x7f77, 0xffffff81}, {0x401, 0x10001, 0x8, 0x4, 0x2, 0x8}], [{0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x3}, {0x2}, {0x3}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0x2, 0x1}, {0x1}, {0x4}, {0x4, 0x1}, {0x0, 0x32820417c2b438f9}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x5}, {}, {0x4}, {0x2, 0x1}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {}, {0x5}, {0x1}, {0x4}, {0x2}, {0x3, 0x1}, {}, {0x1, 0x1}, {0x3}, {0x4, 0x1}, {0x5, 0x1}, {0x4}, {0x3}, {0x5}, {0x4, 0x1}, {0x5}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x6, 0x1}, {0x4}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x4}, {0x4, 0x1}, {0x3}, {}, {0x1}, {0x2, 0x1}, {0x2}, {0x5}, {}, {0x3}, {0x5}, {0x2, 0x1}, {0x5}, {0x3, 0x1}, {0x1}, {}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x3}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x5}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {0x4}, {0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x5, 0x1}, {0x1}, {0x4}, {0x3}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x21577a60a46d04d}, {0x1}, {0x5, 0x1}, {0x3}, {0x2, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x4}, {0x3, 0x1}], 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r6, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200080314000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f0000000780)="f058050000007f8f", 0x4000}], 0x2}, 0x5)

5.93360763s ago: executing program 0 (id=2262):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r2, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000001200)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x2, 0x0, 0x0, 0x11, 0x0, @empty, @remote}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2, 0x0, 0x1}}}}}}}, 0x0)

5.933196134s ago: executing program 0 (id=2263):
mkdir(&(0x7f0000000240)='./file0\x00', 0x324)
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x14, @loopback}], 0x1c)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$cec(&(0x7f0000000140), 0x0, 0x40202)
readahead(r2, 0x3, 0x8)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[<r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x7})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f00000001c0)={0x0, 0x0, 0x80800})
r4 = socket$packet(0x11, 0x2, 0x300)
getpid()
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ip6gretap0\x00', <r5=>0x0})
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f00000004c0)={r5, 0x3, 0x6}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r5, 0x1, 0x6}, 0x10)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x1, 0xfffffffe, 0x2000001, {0x0, 0x0, 0x0, r5, {0x7, 0xa}, {0xd, 0xc}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000})
mount$tmpfs(0x0, &(0x7f00000003c0)='./cgroup\x00', &(0x7f0000000080), 0x400, &(0x7f0000000140)=ANY=[@ANYBLOB='mpol=bind:', @ANYRESOCT=0x0])
gettid()
timer_create(0x6, &(0x7f0000533fa0)={0x0, 0x41, 0x800000000004, @thr={&(0x7f0000000200)="3428552e24dd0e7a5197f2b7032c7158a7b7e4245e38a7", &(0x7f0000000580)="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"}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = syz_open_dev$vim2m(&(0x7f0000000140), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r7, 0x40045612, &(0x7f0000000000)=0x1)
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000280)=@overlay={0x0, 0x1, 0x4, 0x80, 0x8, {0x77359400}, {0x0, 0xc, 0x80, 0x7, 0x4, 0x9, "00000400"}, 0xb, 0x3, {}, 0xc03})
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x44004, &(0x7f0000000040)={0xa, 0x4e24, 0x7, @loopback, 0xc5f}, 0x1c)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@default_permissions}, {@lowerdir={'lowerdir', 0x3d, './file2'}}, {@xino_off}]})

5.312041563s ago: executing program 0 (id=2264):
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0380c2000000aaaaaaaaaa0d080045"], 0x0)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x9)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="84d90f2c0000000f1401002bbd7000c88e071bcab3fcdbdf254500716d6164000000000800"], 0x2c}, 0x1, 0x0, 0x0, 0xc4d0950e45681200}, 0x810)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000680)={0x14, r3, 0x407, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20080c0)
r4 = fsopen(&(0x7f0000000400)='autofs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000280)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\bb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xd7\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r5=>r2, {0x800}}, './file0\x00'})
sendto$ax25(r5, &(0x7f0000000040)="f52043be263421e502c43b84eb6ccfa60101e1117e03cff7", 0x18, 0x884, &(0x7f00000002c0)={{0x3, @default}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
recvmsg$unix(r6, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40010100)
recvmsg$unix(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
close(r7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000340)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r8 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r10, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r8, 0x8, &(0x7f0000000240)=0x2)

4.391306134s ago: executing program 0 (id=2265):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r0)
dup(0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004000}, 0x0)

4.390932321s ago: executing program 0 (id=2266):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000b40)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}], 0x1, 0x840)
recvmsg$kcm(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000340)=""/189, 0xbd}], 0x1, 0x0, 0xf0}, 0x2042)

4.22240578s ago: executing program 0 (id=2267):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x80, @private0, 0x9}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0xffffffff, @private0}], 0x1c)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4ee59ce4, 0xfffffffffffffffd, 0xfffffffc}, 0x0)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
setuid(r4)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000002140)={0x2020, 0x0, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f0000004180)="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", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x0, 0xb, 0xfffc, 0x0, 0x1, 0x0, 0xffffffff, 0x120, 0x2000, 0xa8, r6, r7, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x1000, &(0x7f0000000480)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0xe}}, {@blksize={'blksize', 0x3d, 0x600}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x200}}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x25}}, {@smackfshat={'smackfshat', 0x3d, '\x00'}}, {@dont_measure}, {@fowner_eq={'fowner', 0x3d, r4}}, {@dont_hash}, {@uid_gt={'uid>', r6}}]}})
setxattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='trusted.syz\x00', 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000001c0)={0x0, 0x8d9, 0x403, 0x9, 0xf, 0x8000})
llistxattr(&(0x7f0000002300)='./file0\x00', 0x0, 0xfffffdf3)
r8 = fsmount(r3, 0x1, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r8, 0x13, &(0x7f0000000000)=[0x6, 0x9], 0x2)
fchdir(r8)
ioprio_set$pid(0x3, 0x0, 0x0)
r9 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r9, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0xa000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r9, r9, &(0x7f0000000080)=0x2, 0x7f03)

2.667087632s ago: executing program 2 (id=2278):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000080)={0x3a, 'syz1', 0x3a, 'E', 0x3a, 0x8, 0x3a, '\x85\x8fz2\xac\x03\x85\xce\xd1\x05PT\x88\x1e\x85\xe2\xc3\xd3\'\xedmK\x99\xdf\x9f\x19\x9a`C\xdej\x93L\xf9\xa0\xbb\x95\xa2UG6\x7f\x1eZ\xcc\vQ\xe6\xfa\xac\x9d\xa1\xa3\x8c<x\x86\xdf\xa9\xea\xfd\xe89]az\x8d~\xf1\xe72\xa6%X\xeat\xfb\xae\xfd\t\x00\x00\x00\x00\x00\x00\x00\xea\x97\"9\x00_\x1c\x0e7-\x85\x13L\xef\xa2\x05m\xb3*\x9fs\xce\v\xddA\xf2\x8e\xda\xe8Va>\xba\x16O)', 0x3a, '\x7f\x00\x00\x00', 0x3a, './file0'}, 0xa6)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007bfff8ff00000000bfa100000000000007"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000580)="63eced8e46aa7ce5a833c9f7b942", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0) (async)
write$binfmt_register(r0, &(0x7f0000000080)={0x3a, 'syz1', 0x3a, 'E', 0x3a, 0x8, 0x3a, '\x85\x8fz2\xac\x03\x85\xce\xd1\x05PT\x88\x1e\x85\xe2\xc3\xd3\'\xedmK\x99\xdf\x9f\x19\x9a`C\xdej\x93L\xf9\xa0\xbb\x95\xa2UG6\x7f\x1eZ\xcc\vQ\xe6\xfa\xac\x9d\xa1\xa3\x8c<x\x86\xdf\xa9\xea\xfd\xe89]az\x8d~\xf1\xe72\xa6%X\xeat\xfb\xae\xfd\t\x00\x00\x00\x00\x00\x00\x00\xea\x97\"9\x00_\x1c\x0e7-\x85\x13L\xef\xa2\x05m\xb3*\x9fs\xce\v\xddA\xf2\x8e\xda\xe8Va>\xba\x16O)', 0x3a, '\x7f\x00\x00\x00', 0x3a, './file0'}, 0xa6) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007bfff8ff00000000bfa100000000000007"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000580)="63eced8e46aa7ce5a833c9f7b942", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)

2.592954321s ago: executing program 2 (id=2279):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="56c78e3c733d76696e65459beb1fb664f6ce6c0c7274696f7874656e642c6163638173733d616e792c63616368653d66736361"])
chdir(&(0x7f0000000080)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x4, 0x0, 0x106, 0x1}}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)

2.592193237s ago: executing program 2 (id=2280):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000700)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70b524, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xfff3, 0xffe0}, {}, {0x7, 0xfff2}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x18d0b}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008848}, 0xc884)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r6, 0x3e, 0x5000000}, 0x80, 0x0}, 0x4)

2.412760473s ago: executing program 1 (id=2281):
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0380c2000000aaaaaaaaaa0d080045"], 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xffffffffffffff6b, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0xf000, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48)

2.3430669s ago: executing program 1 (id=2283):
r0 = openat$sw_sync_info(0xffffff9c, &(0x7f0000000000), 0x2000, 0x0)
ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000040))
ioctl$CDROMSTOP(r0, 0x5307) (async)
ioctl$CDROMSTOP(r0, 0x5307)
sendmsg(r0, &(0x7f0000000880)={&(0x7f0000000080)=@l2tp={0x2, 0x0, @loopback, 0x2}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)="7230d0eac8d969f106d7706bd0ba3dd672990d374cf2da5d03fd7c63ac1fd1", 0x1f}, {&(0x7f0000000140)="8f40df1531bc08c9054db0221533f430500c80bbc51ab74fc9f0b5b4c229a9c88a360af03186e568de7aaf5e616d4face441470a7703d79333bd88b52ff871444d7f617b1aec4b84d26ae5", 0x4b}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="41f95fd23061c92b5dd41712a662ee1600325b0c70f7a94f70c6cc803842b46654374fc195f0317d0822752b641bcf133db87ec1e9ed3e6e9cc07cb67817ef5d1250af4b5f87317a2f8b71c0d56aa35335f8a859299bc349336aba0cbc71f6e3", 0x60}, {&(0x7f0000000280)="adc47c61ec95c88b933afb574bf368fd5e2a0e4a2804ea8e94802849983891ede459550bc6df5252bab1d40951f903972cb45315a87f4e039b097ed25ead9bcd00d2acca", 0x44}, {&(0x7f0000000300)="01dc42b7", 0x4}], 0x6, &(0x7f0000000380)=[{0x78, 0x104, 0x5, "0df82997efc3dd4b6ee479373b37ce2ddc35c40e04cc88bc0cefde62523ca9f4350aef6619c21688fac0db188a99f687edaf89bb8f81ed52d92e57b736cb7ca3c158b6236062c727ccc73ce6613c871161bff8d943a8754414dc0e16ad1d484811238cdd3d90a21a62"}, {0xfc, 0x115, 0x0, "93975eb3614670b1a381dd50b8e84b71c2a5b31ad31d018190eb3a3369ec55edd3eb6bf63e8e83dd085d0ffa4e0fa7432bb311a1ce2afcc7e29c13c7339ee3dc9b0a57b6f323b0af3adf58d3bc6cffa24b4bb8a7f79777112d932e2e2bd284be27db8314c4c2b76968b934cbccfddb593789ff472fc617ef79025133372049da66697c445e0e287a04036cede65241d1700c58a99f4bab8d73928a685605df1f01279134ef7e8b5d38d712e1243bd448566f5d2d18fe715e6213839f6a14a83ac051e19c7f7901984c845a53345e604897f2db73c8afdc2bd41be2ea4d1c69a346633f78f9e4d5904133115f9d4456"}, {0xe4, 0x10a, 0x4, "0763d20b72bbeb16134881d3a147d840c62c38d36ec809d4d5df692a651d04e460099280b0598fbe41072e34bf688553fad03fdf2ffe434e15e4cbc86fef4d096531260cf47196592ce66dad3e21a5165263df486ce19843ef42a6778913e12d4202cdff2188ceb688043768e184b680c954abe4a3e9741b3a2b335f234ae9e49845a58ca2677ead6c81a8a05861db38ad6c0c40f39140becbd1c1f1228a89679acbf780214d991d64755607c95af5b5777c19fdd62e29b739b97f1848d396231729649cd60fdd9a5072f459cd528706e262863b73927a"}, {0x98, 0x113, 0xfffffffe, "5b3076151ec3698defae61f28ceec9634cf84645009309408be6de5d0dcb79013f3bd20965f5166f81702a3d2e7e14b0570715612104d92ad07b937d6062dabcb32582f7839856c3314258bdd53bafddac54d8677df020092ffbfbfc4fe69081e2a19f28d886f68a28dfa57d06fa27ad7a3830814fd3eace00d01da16d21efc46458a65c742fa2a2a4"}, {0x80, 0x10a, 0x0, "69a3d8556a6214a1bafdbd983990bc5f873169c1e2015246f39294b533e59332bf0e50d29c2043774b75a0aa23d02d4b1581c4e4a2d2c469c06d88647fc399e5d60c6ded7fdb8789e3a5a7eb819556043b4d7d41d0b23c5057e2f662783046679a97a1bb71bdcb89571599a6854ef9e415b14bbd"}, {0x94, 0x10f, 0xfffffffb, "2b1b122c3b59ee651e7932b952d8654628243e3009713b96e4de5b267a101a5fd45343887fe2889f4101b41a6baf4f2272e676aa4a7d2cc9e4bd2ef01285cb8f7574c98be11f8491f11e9a2ac9bd7cade130980313d18b3d82f8f01e26f79071bf4b5ac587abd1540d5df9b9ecf31b98621c6ba1a217f6e2334d2798d320af314a0e0bcd090b"}, {0xe4, 0x10d, 0xffffff0a, "97bdf0b60e72fadded967ddfd14352fad8b1300bb7781a9f8927ca3ec0192cbb8ff4413696db2bbd0d8cbb141d8dbcf84df884ff076b8d6daaed4e7a22e90d754e71355b50dd8e894ad5f5b190306fada18cb997d496fd6e98c9f6ddb3e84238fa1d4cf579f664558c38c50dc4b5d6a36e474f34c39bcc8291fb0b65eaa1721af6954fa3dd9b922f9080011d80e1a45779dd085fad0e43f7fd89edb5af47489d56d1698f81a487ef8efe2ae9905f9413fc6f4994de6d195e6727a48ff8036477edd3ac735b546a93700ebe10b722bb7ee171df57b78437"}], 0x4e8}, 0x2000c010)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f00000008c0)={0x2, 0x2}, 0x2) (async)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f00000008c0)={0x2, 0x2}, 0x2)
ioctl$KVM_GET_TSC_KHZ_vm(r0, 0xaea3)
ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000900)={0xff, 0x4, 0x1ff, 0x4, 0x4, 0x16, 0x2, "288f19fcd9306263255a3f83636901ebb7c032a9", "e7099a2643b83c38c3e4c5c162dfb086d7154e9b"})
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x1) (async)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x1)
open$dir(&(0x7f0000000940)='./file0\x00', 0x8000, 0x50) (async)
r1 = open$dir(&(0x7f0000000940)='./file0\x00', 0x8000, 0x50)
openat2(r1, &(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x400, 0x1d, 0x20}, 0x18) (async)
r2 = openat2(r1, &(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x400, 0x1d, 0x20}, 0x18)
splice(r2, &(0x7f0000000a00)=0x4, r2, &(0x7f0000000a40)=0x5, 0x7fff, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1a, 0x25, &(0x7f0000000a80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffbff}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@jmp={0x5, 0x1, 0x6, 0x8, 0xb, 0x0, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xcfd}}, @cb_func={0x18, 0x2, 0x4, 0x0, 0xffffffffffffffff}, @printk={@lli}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xffffffffffffffff}], {{}, {}, {0x85, 0x0, 0x0, 0xc7}}}, &(0x7f0000000bc0)='syzkaller\x00', 0x6, 0xcd, &(0x7f0000000c00)=""/205, 0x41100, 0x40, '\x00', 0x0, @tracing=0x19, r0, 0x8, &(0x7f0000000d00)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000d40)={0x4, 0x1, 0x9, 0x5}, 0x10, 0xffffffffffffffff, r0, 0x5, &(0x7f0000000d80)=[r0, r2, r0, r0], &(0x7f0000000dc0)=[{0x0, 0x2, 0x2, 0x9}, {0x3, 0x2, 0xc, 0x8}, {0x4, 0x5, 0x9, 0x4}, {0x0, 0x5, 0xd, 0x8}, {0x0, 0x4, 0x0, 0x6}], 0x10, 0x7}, 0x94)
fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f0000000f00)) (async)
fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f0000000f00))
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0) (async)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_EDID(r0, 0xc0245628, &(0x7f0000000f80)={0x0, 0x1, 0x0, '\x00', &(0x7f0000000f40)=0xf6}) (async)
ioctl$VIDIOC_SUBDEV_G_EDID(r0, 0xc0245628, &(0x7f0000000f80)={0x0, 0x1, 0x0, '\x00', &(0x7f0000000f40)=0xf6})
r4 = openat$bsg(0xffffff9c, &(0x7f0000000fc0)='/dev/bsg/0:0:0:0\x00', 0x30000, 0x0)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r4, 0x3)
ioctl$sock_inet_sctp_SIOCINQ(r2, 0x541b, &(0x7f0000001000))
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000001040)={0x7, {{0x2, 0x4e21, @private=0xa010102}}}, 0x84)
socket$inet6(0xa, 0x4, 0x9)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000001100)={{{@in=@multicast1, @in=@broadcast}}, {{@in6=@mcast2}, 0x0, @in6=@private2}}, &(0x7f0000001200)=0xe4)
mkdirat$cgroup_root(0xffffff9c, &(0x7f0000001240)='./cgroup.net/syz0\x00', 0x1ff)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001280)={<r6=>0x0, @initdev, @private}, &(0x7f00000012c0)=0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000001440)={'syztnl2\x00', &(0x7f0000001300)={'erspan0\x00', r6, 0x1, 0x7, 0x3, 0x47153e74, {{0x3c, 0x4, 0x3, 0x3c, 0xf0, 0x68, 0x0, 0xff, 0x4, 0x0, @private=0xa010100, @rand_addr=0x64010100, {[@timestamp_addr={0x44, 0x1c, 0x6d, 0x1, 0x4, [{@broadcast, 0x2}, {@broadcast, 0x7fff}, {@rand_addr=0x64010101, 0x1}]}, @lsrr={0x83, 0x7, 0x17, [@local]}, @ssrr={0x89, 0xb, 0xd4, [@local, @multicast2]}, @timestamp_addr={0x44, 0x4c, 0x25, 0x1, 0x9, [{@multicast1, 0x8}, {@local, 0x5}, {@local, 0x400}, {@rand_addr=0x64010100, 0x5}, {@loopback, 0x80}, {@empty, 0xd6ce}, {@loopback, 0x7}, {@dev={0xac, 0x14, 0x14, 0x19}, 0x1}, {@broadcast, 0x672}]}, @lsrr={0x83, 0xf, 0x30, [@dev={0xac, 0x14, 0x14, 0x20}, @empty, @rand_addr=0x64010100]}, @end, @cipso={0x86, 0x51, 0x3, [{0x1, 0xa, "0fa799fcdd4e8f24"}, {0x5, 0xb, "9b79a913212a3154bb"}, {0x5, 0x4, "e091"}, {0x2, 0xb, "d3f13a69c96ebc2ed2"}, {0x0, 0xa, "fefb9e7d970916bb"}, {0x1, 0xe, "f5b9e1464a89fed3a8d4591d"}, {0x6, 0xf, "eddb65a768f6c96d78988f4324"}]}]}}}}})
ioctl$SOUND_OLD_MIXER_INFO(r0, 0x80304d65, &(0x7f0000001480)) (async)
ioctl$SOUND_OLD_MIXER_INFO(r0, 0x80304d65, &(0x7f0000001480))
r7 = openat$procfs(0xffffff9c, &(0x7f00000014c0)='/proc/schedstat\x00', 0x0, 0x0)
ioctl$VIDIOC_G_STD(r7, 0x80085617, &(0x7f0000001500))
bind$inet6(r5, &(0x7f0000001540)={0xa, 0x4e20, 0xe9bb, @mcast1, 0x4}, 0x1c)

2.26298666s ago: executing program 1 (id=2285):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c48000000e8fe55a1180015000600142603600e120900210000000401a80016000a0001", 0x37}], 0x1}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
syz_io_uring_setup(0x49a, &(0x7f0000000140)={0x0, 0x79b2, 0x3180, 0x1, 0x283}, 0x0, 0x0, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000b00)={0x0, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042", <r3=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r3, 0xc0383e04, &(0x7f0000000180)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106(gcm(aes))\x00'}, 0x58)
openat$6lowpan_control(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000009c0)="ad56b6c5820fae9d6dcd3292ea54c7be8bbdadbb1632ea5704cae881ef915d374c90c200", 0x24)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
readlink(0x0, 0x0, 0x0)
r4 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000c00), 0x0, 0x8040)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/cgroup', 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
lseek(r5, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r4)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

2.195437726s ago: executing program 1 (id=2286):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="090000000600000004000000fc07"], 0x48)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x1419, 0x1}, 0x10}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000002480), 0xce4, r0}, 0x38)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xf)

2.19492218s ago: executing program 5 (id=2287):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PPPIOCGUNIT(r0, 0x80047456, &(0x7f00000008c0))
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000004600)='map_files\x00')
fchdir(r2)
sendmmsg$unix(r1, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x408d4}}, {{&(0x7f0000000c00)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x20000000}}], 0x58, 0x40000004)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000200)={0x10, 0x0, 0xffffffff, 0x80065c9}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900038073797a32000000001400000011000147"], 0x7c}, 0x1, 0x0, 0x0, 0x25}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140040001000010000000000000000000000000a3c000000120a01020000000600000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a140000001100010000000000000000000000000a"], 0x64}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000b00)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb08004500001c00000000000190780a010102ac1414aa11009078000090b66cc88ba087fd1b4afc78d03fd3f66f4d1f33d936932085563c26949eef934db2cfb82417499a5410c39a7ad9d9f3618006ea512aea6f40a43f0b871a8a10e718e08e01322209b7794257ac4792576a772dd1711538e32db4440e57d4bd5076b9f61c4a5e1041543edacf0a5b9d91844e35b3437a42a5cf5a83f2131058a4b9861dac0d70b57f4069ca4f6468b766d3cd3bbe6ad946e9b38e6843a3317a613529dffb52ac5e05f17b"], 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000009c0)="1345c0f7a7cecd9317bfda52f34ba391d6044ace45fcbf1d4661e33ea66e1287a18e9c0fa5a3ead6d9eecced1840520a9e92ff93bcfa24cb1e803608df8419221d34084bd8b705682e85376c86c5946c5a109b25f804928c34cdc5a47fc2a5ccc0ab6aab3d9fd3531195d13db5488561614e33373568bb18856a73ac9565a2de9f60c4bdcd221b614faf01bafde0ad0b5e5215f518b446f6700b58746dfc6dfb8a90bd72e7f5b7651f3b82f83cc6aa4ae33861587d62928c71d5e916eb33e6190476b9f0a96eaff9782a2220c4b96a909206d6804a2e67d2c9b13cbf1e", 0xdd)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000200)={0x0, @empty, @initdev}, &(0x7f0000000240)=0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
syz_io_uring_setup(0x3d4e, &(0x7f0000000080)={0x0, 0x0, 0xc00, 0x0, 0x374}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000180)=<r7=>0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r8, 0x84, 0x25, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e22, @broadcast}}, 0x9}, 0x88)
syz_io_uring_submit(r5, r6, r7, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x8, 0x10, r0, 0x0)
syz_io_uring_setup(0x32d9, &(0x7f0000000200)={0x0, 0x2c6a, 0x8, 0x4, 0x400000, 0x0, 0x0}, &(0x7f00000000c0)=<r9=>0x0, &(0x7f0000000880)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_io_uring_submit(r9, r10, r11, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x0, 0x4000, @fd_index=0x3, 0x1, 0x0, 0x0, 0x5, 0x1})
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r10, r11, &(0x7f0000000480)=@IORING_OP_SYMLINKAT={0x26, 0x4a, 0x0, r0, &(0x7f0000000400)='./file1\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, {0x0, r12}})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000ac0)=ANY=[], 0x0, 0x26}, 0x28)

2.192719343s ago: executing program 1 (id=2293):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
io_uring_enter(r0, 0x247b, 0xd35e, 0x4a, &(0x7f0000000000)={[0xa9, 0x5]}, 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
write$binfmt_aout(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
dup3(r1, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000007d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[], 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000000080)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e24, 0xff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000200)="c1d43b1716beb2ad5d04bc002ac428f3d38713ed225b3d06fa13d0d8f79a82d23d55a749757a9965649a25f47fc091a289e8eaa07a962a82887f470f1d6486ad894c3744788c7661911e3859d3a4f0431201fe5f86bb423cd92e1bbeef743381e2277f3309963ed40d8a2582c4aad0fcca8e0c99ae495973893e24", 0x7b}], 0x1}}], 0x2, 0x800)
pipe(&(0x7f0000000500))
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffce}, 0x48)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000002900)=r6, 0x4)
bind$inet(r4, &(0x7f0000000240)={0x2, 0x4e20, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x300)
shutdown(r3, 0x1)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)

2.063166289s ago: executing program 2 (id=2288):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
io_uring_enter(r0, 0x247b, 0xd35e, 0x4a, &(0x7f0000000000)={[0xa9, 0x5]}, 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
write$binfmt_aout(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
dup3(r1, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000007d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[], 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000000080)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e24, 0xff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000200)="c1d43b1716beb2ad5d04bc002ac428f3d38713ed225b3d06fa13d0d8f79a82d23d55a749757a9965649a25f47fc091a289e8eaa07a962a82887f470f1d6486ad894c3744788c7661911e3859d3a4f0431201fe5f86bb423cd92e1bbeef743381e2277f3309963ed40d8a2582c4aad0fcca8e0c99ae495973893e24", 0x7b}], 0x1}}], 0x2, 0x800)
pipe(&(0x7f0000000500))
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffce}, 0x48)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000002900)=r6, 0x4)
bind$inet(r4, &(0x7f0000000240)={0x2, 0x4e20, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x300)
shutdown(r3, 0x1)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)

1.133557629s ago: executing program 1 (id=2289):
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x4})
syz_usb_disconnect(0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r2 = syz_usb_connect$uac1(0x3, 0xc8, &(0x7f0000000380)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x499, 0x1034, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb6, 0x3, 0x1, 0xff, 0x20, 0x78, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x7, 0x2a}, [@selector_unit={0xb, 0x24, 0x5, 0x5, 0x0, "0581c6184e00"}, @mixer_unit={0xa, 0x24, 0x4, 0x1, 0xb7, "1e36be685f"}, @extension_unit={0xb, 0x24, 0x8, 0x2, 0x6, 0xff, "00d58b7e"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0x3, 0x4, 0xc9, 0x5, 0x9}]}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0xfd, 0x28, 0x80, {0x7, 0x25, 0x1, 0xc, 0x7, 0x50}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x40, 0x2, 0x0, "fc55ea3431"}, @format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x1, 0x3, 0xce, 0xf, "0a6297"}, @format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x3e, 0x1, 0x13, 0x8, "d91312"}, @format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0xf1e, 0x5, 0x8f}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x1, 0x4, 0x5, {0x7, 0x25, 0x1, 0x0, 0x5b, 0x5}}}}}}}}]}}, &(0x7f0000000900)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x200, 0x8, 0x0, 0x1, 0xff, 0x8}, 0x13, &(0x7f00000004c0)={0x5, 0xf, 0x13, 0x2, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0xf, 0x8, 0x8}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x9, 0x5, 0x2}]}, 0x9, [{0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x44e}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x812}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x1c0a}}, {0x46, &(0x7f00000005c0)=@string={0x46, 0x3, "479409996ca1d864d659524fd775ed299ac49a6622b9935a9e6caef2fb92ebe73823c69db0ee1edf3b2a503b261ff8f59b693162995ae65522f0c9882fe19215e1d72bc4"}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x2401}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x458}}, {0xd8, &(0x7f00000006c0)=@string={0xd8, 0x3, "011379b9d93f342370edb80648fada342ed944c427b73d23b3a21d937bd82c96ea1cd78723fb0b586fbb8175309f62aedf13a9d077f58017bd3275402396bd098312c282e2965d8f8f1e0d905ec686c7bbe338a39af99b0a18e7998fc877239277dc5eb9caef9a31c3cc623f903e049f3a36062bfb5cce422ae4c238d149760e7263d8dbda1c586d77039757dc0fd5ad26686fb8cea66a695fb12fa2ab8652f6bd5122a9f18693cb4220f5c17210539365fbd85a5b75021eae60832ac1a1919635fc704e6d52599e0dcb94d84b78a8a8c246b2bddac9"}}, {0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x2409}}, {0xf2, &(0x7f0000000800)=@string={0xf2, 0x3, "62e00a15a63fd7d6714ba204e71a4791122b11f5e5de8aa80120f10f885b30a6d16b166faa67df600951631bcf495c2758697708d2371c82d4920e148e36371c01e87d4906b6314fb5a65455ca6593a4fea2e1192d71572d5b26b77068bc7a84d322176f9088a1fbe6c4bfa96a0555af080dbb75d375995767f12771b602b84c29704395153cdb7e188c4b62be1fb6953fce61cec53910fe690ad6df030adfab836eb1d5c8646b8ade4d116c53d11e404be7015aca9f3b56dd0847c241f6c814237e7d11bbc2c15292f97423798afc6e8134f07a64872fd9fd811028d4e94b64903de6a19bf4b99417d6370a7a7b5029"}}]})
syz_usb_control_io(r2, &(0x7f0000000b80)={0x18, &(0x7f0000000980)={0x20, 0x23, 0xe1, {0xe1, 0x24, "4b6530c66a4d11450902d3cc50ae02879d722aa8b3abcbd4a2c4af6ad8b8480e3e39b25829d909f9e321c1bf8c319b2dd68930c68ea100766f5be29f996c68e5f25c9ff1cd744ec001fcd6603b3cff829448f6e45599037e9d52b097eb37627b532cf9019d5f13722c35b01c86754f12aabdc755a92eb9b1ddec7b03b507bdcd7afe32bba9dedd964c4c7f5ba6e9f1c044696e258c4b0fa26c8e8a9718824cbde4834810c25290e98e28c35eaa843d60fccbe6fc15d821087c8fd007b721abb45ecb6a7a9203ecf1ad8fe55e93a9455422609cc9e34fb913eeea9fc743119c"}}, &(0x7f0000000a80)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x409}}, &(0x7f0000000ac0)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f0000000b00)={0x20, 0x29, 0xf, {0xf, 0x29, 0x5, 0x0, 0x74, 0x1, "8c7c903e", "43bc5474"}}, &(0x7f0000000b40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x4, 0x80, 0x1, 0x6, 0x81, 0x8, 0xa}}}, &(0x7f0000001040)={0x44, &(0x7f0000000bc0)={0x0, 0xe, 0x98, "a28ce30871490b6568c181f34743face67d13bedb53fac3fbc63a742f5b48f95511428e755201b8a2b9569e7f3def433246fbdc706959f41db5c7e5d1d6da8709a859f272459ad6b957e50d6693864f1cddfd5f84dbbbeef1c2fa586107444713b4aef6175d35b49eda0902696f5088a273fb1a107a80aeeb8cb4708ba2d58e59896357fd37dfad7b863bc0d6dcbdad954a6ff139dcd5d86"}, &(0x7f0000000c80)={0x0, 0xa, 0x1, 0x47}, &(0x7f0000000cc0)={0x0, 0x8, 0x1, 0xc}, &(0x7f0000000d00)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000d40)={0x20, 0x0, 0x8, {0x1c00, 0x40, [0xf]}}, &(0x7f0000000d80)={0x40, 0x7, 0x2}, &(0x7f0000000dc0)={0x40, 0x9, 0x1, 0xdd}, &(0x7f0000000e00)={0x40, 0xb, 0x2, "c7fb"}, &(0x7f0000000e40)={0x40, 0xf, 0x2, 0x9}, &(0x7f0000000e80)={0x40, 0x13, 0x6}, &(0x7f0000000ec0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000f00)={0x40, 0x19, 0x2, "7890"}, &(0x7f0000000f40)={0x40, 0x1a, 0x2, 0x4}, &(0x7f0000000f80)={0x40, 0x1c, 0x1, 0xf5}, &(0x7f0000000fc0)={0x40, 0x1e, 0x1, 0x1e}, &(0x7f0000001000)={0x40, 0x21, 0x1}})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0)

1.072081307s ago: executing program 5 (id=2290):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x4, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_test', 0x8a881, 0xbb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x1, 0x4000000000000ffd, 0x0, 0x0, 0x3, 0xc, "faf98317e5a1149989fc67be43ea6acc96e3a2503dc31c97214d58128bbad0099cebdc25f5ab60c9e69098c8b534464c516bdd8a0f350000000000000300", "32d8cc26f7061a74df2cfc06489f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x8]}})

976.285797ms ago: executing program 2 (id=2291):
syz_io_uring_setup(0xf05, &(0x7f0000000080)={0x0, 0x2, 0x80, 0x3, 0x42f7}, &(0x7f0000000100), 0x0, &(0x7f0000000140))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x4, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
mmap$xdp(&(0x7f00003e4000/0x2000)=nil, 0x2000, 0x0, 0x13, r7, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000010000001c000180060001000200000008000300ac1414aa080006000e000000e4aef96a6e0fcf4a1ccfd27781ff51273b9ca27a34ddbdac37482ef0f87e9465fd8bc14a211dd43c9524bb90ddb778a3d6b5874d27c1c7bd5de32b0ed52a37861fc6fab0bc2461dbd543c843586b10f7a01118abbf4496f84775ec7acd2489e499d3a20b86c53ae430b17f682b454ee2016908b90db2b0c1d246db6d33d2116fc593dcef27a57698d592be49d7ec277ad19b3bf371850b563c29e032ea04d70ac12da618f252f2d17e49696f1bacc50651e00a7510155d1e0905111eaebf2d7ff24e1be69d1c56cdd7"], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000700000024000180060005004e230000060001000200051b08000300ac1414aa"], 0x38}, 0x1, 0x0, 0x0, 0x14}, 0x0)

973.969912ms ago: executing program 5 (id=2292):
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, &(0x7f0000000140)={0x0, 0x3, 0x5, 0x0, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd}, 0x48)
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$inet_udp_int(r1, 0x11, 0x1, &(0x7f0000000000)=0x2, 0x4)
r2 = memfd_create(&(0x7f00000004c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x02Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\xff\xec\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92\xf3H\xf9\x7f\x102\x83\x9b\xdaR\a\xfeU\xc8\xc3\xa76\xe7%\x0eyx\x15\n\xe3l\x98\xcf\xbaU6\xf9\xb5S21Bk\xad\xe60P\xa2c)\xca\xc4`_\x15\xc4\t\xaa\xc4e\x12\x103\xf9\xc4\xba\x86[N\xb27BD\xab`\xae\x1c&\xdb\ns\x8c\x92\xe0\xa52\b\x8bj\x01X\xfa\xf2\x8b\xe1\xf9\n\xc4Ux\xa9\x1b\xc6\xad\xb4\xf0\xba+\x91/&\x81\xba\xa5\x8em<q?\x16\x01\'$\x99p\x83%M@\x90\x9bs\xba\xdaO\x17\xd2$T\xbe\xdb\xf8\xb1\xf3\x10<\xd2\x99\xaa`aK\xad\xd5\x90y\xec\x9a\xad\x9c\xd1\xde\x00{eXS', 0x3)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000c40)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @ib={0x1b, 0x3, 0x852, {"39cd1c76f8ebea6e4e31007f15e89981"}, 0xb1, 0x51, 0xa5}}}, 0x90)
sendfile(r1, r2, &(0x7f00000001c0)=0x3, 0x2000004)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000300)=@hci={0x1f, 0x5964, 0x31}, 0x80, &(0x7f0000002340)=[{&(0x7f0000000000)="c2e51202fb000000000000008100", 0xe}], 0x1}, 0x4c0d4)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
fsopen(&(0x7f0000000000)='ext2\x00', 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e26, @local}, 0x10)
setsockopt$inet_int(r4, 0x0, 0x1, &(0x7f0000000000)=0x6, 0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f00000029c0)={0xc, {"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", 0x1000}}, 0x1006)
close_range(r3, r6, 0x2)
r7 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000000b40)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}], 0x1, 0x404c848)
r8 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r8, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
socket$unix(0x1, 0x2, 0x0)
bind$unix(r8, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
recvmsg$kcm(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000340)=""/189, 0xbd}, {&(0x7f0000000700)=""/149, 0x95}], 0x2}, 0x2042)

841.257481ms ago: executing program 2 (id=2294):
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), r1)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f00", @ANYRESDEC=r1], 0x28}}, 0x0)
read$FUSE(r0, 0x0, 0x0)
write$FUSE_INIT(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="8dc25e9d7235"])
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

699.815093ms ago: executing program 5 (id=2295):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000640)="06e28092c5ec1d88d05e0a6f2ce709c63de1ab461557270000fc494605c77dc874d0734eed79ecd2e373cf63d3a4e9a461877edf08af5c6c56be907e383f7a1cce50acae1ed1944d1e00f576d2365e27c059eaceee4e56e1f161effd91efedde230512ce932b03ea7ccfb1442c3d8c8954f4b9cdc4bc9dc1f14af9e5b22f9ba40774572c6992cab7a7b60004285435319ebbae2cc5f343756fd4c9eb88760294047270864a6921876a953daf8b1e8dfa14c0626ce6597cd21a38b8b115ea15c3d63f4119868d4b3948cfcda7f069a9ccb0bbaa4854f0dc1092e6f0b16873951b1e521e1ce63614fc34a7cc07f154261ec71cd457229a5897a9815f7641bdf50b05aa1d5d1a8449f02cfaaeab93fe13c3d9506d0b6601af66ef870fb98b97b7b9d1c3c2790c21dbf6f7ebd3b0a85faa3288257ab2ae248865498bf0b7f23e12cfa7a3137a9903f866eb874415cf20253e94ddfb1533827d152e7832802139c31983e997baa5f23a40c8f9cbe7e7274895237c1c62ae78573167529ff5d9bfb1bc323c07b3aab1f85970d441f0129d27dbe5664644592b3c5d6ff85793058d9fe9e99ac2108ee522390c933756a59cc6f6ef0e7ca509ddc84efff7ab44c61a0abbcd8f1de55583861a81bc5a176152615ca08b82da4de1e960f6eb291f0ede5222e58d63a15e3e9516ace4ac5c5d922bd755ff05b72d", 0x1f5}, {&(0x7f0000000c80)="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", 0x53b}], 0x2, 0x0, 0x0, 0x2c}, 0x4000)
syz_open_dev$usbmon(&(0x7f0000000000), 0xf3, 0x200240)

523.64124ms ago: executing program 5 (id=2296):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000700)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70b524, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xfff3, 0xffe0}, {}, {0x7, 0xfff2}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x18d0b}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008848}, 0xc884)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r6, 0x3e, 0x5000000}, 0x80, 0x0}, 0x4)

0s ago: executing program 5 (id=2297):
r0 = io_uring_setup(0xb450, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x186})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @pic={0x3, 0x7, 0xe1, 0x81, 0x9, 0xf9, 0x41, 0x43, 0xfb, 0x0, 0xc, 0x0, 0xf3, 0x4, 0xfc, 0x38}})
ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f0000000140)={0x8, 0x48})
ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f0000000500)={0x3, 0x589})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, 0x0, 0x20000840)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x40800)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r3, 0x800452d3, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000033fdce79afd8e0b39e7c2c27dc600063000004000000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000600142603600e1208000f0000000401a80016002000034004000200035c0461c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f0f49e119c849ea6e5a0fc55e4cde205a214d6102d6dcbf33fb5ce3bb9ad809d5e1cace81ed0bffece0b42a1a83", 0xd4}, {&(0x7f00000014c0)="5c9ebe30", 0x4}], 0x2}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42)

kernel console output (not intermixed with test programs):

b1/0x2ba0
[  278.983344][T10276]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  278.983362][T10276]  ? stack_trace_save+0x8e/0xc0
[  278.983378][T10276]  ? stack_depot_save_flags+0x27/0x9d0
[  278.983394][T10276]  ? is_bpf_text_address+0x8a/0x1a0
[  278.983412][T10276]  ? is_bpf_text_address+0x8a/0x1a0
[  278.983431][T10276]  ? kasan_save_stack+0x3f/0x50
[  278.983440][T10276]  ? kasan_save_track+0x14/0x30
[  278.983450][T10276]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  278.983468][T10276]  ? alloc_vmap_area+0x186c/0x2bd0
[  278.983480][T10276]  ? __get_vm_area_node+0x1ca/0x330
[  278.983492][T10276]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  278.983507][T10276]  ? __vmalloc_node_noprof+0xad/0xf0
[  278.983520][T10276]  ? copy_process+0x5ec/0x7a40
[  278.983533][T10276]  ? kernel_clone+0xfc/0x9a0
[  278.983545][T10276]  ? __do_compat_sys_ia32_clone+0xd4/0x120
[  278.983561][T10276]  ? __do_fast_syscall_32+0xe3/0x8c0
[  278.983584][T10276]  alloc_pages_bulk_noprof+0x782/0x1490
[  278.983608][T10276]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  278.983631][T10276]  ? alloc_pages_noprof+0x238/0x390
[  278.983645][T10276]  __kasan_populate_vmalloc+0xf0/0x210
[  278.983666][T10276]  alloc_vmap_area+0x95d/0x2bd0
[  278.983684][T10276]  ? __pfx_alloc_vmap_area+0x10/0x10
[  278.983701][T10276]  __get_vm_area_node+0x1ca/0x330
[  278.983717][T10276]  __vmalloc_node_range_noprof+0x213/0x1530
[  278.983732][T10276]  ? kernel_clone+0xfc/0x9a0
[  278.983744][T10276]  ? find_held_lock+0x2b/0x80
[  278.983755][T10276]  ? local_lock_release+0x99/0x130
[  278.983768][T10276]  ? local_lock_release+0x99/0x130
[  278.983783][T10276]  ? kernel_clone+0xfc/0x9a0
[  278.983819][T10276]  ? find_held_lock+0x2b/0x80
[  278.983830][T10276]  ? rcu_read_unlock+0x17/0x60
[  278.983842][T10276]  ? rcu_read_unlock+0x17/0x60
[  278.983855][T10276]  ? obj_cgroup_charge_account+0x46d/0x640
[  278.983868][T10276]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  278.983884][T10276]  ? __memcg_slab_post_alloc_hook+0x51b/0x990
[  278.983900][T10276]  ? rcu_is_watching+0x12/0xc0
[  278.983917][T10276]  ? trace_kmem_cache_alloc+0xf3/0x120
[  278.983930][T10276]  ? kernel_clone+0xfc/0x9a0
[  278.983943][T10276]  __vmalloc_node_noprof+0xad/0xf0
[  278.983957][T10276]  ? kernel_clone+0xfc/0x9a0
[  278.983972][T10276]  copy_process+0x5ec/0x7a40
[  278.983986][T10276]  ? __lock_acquire+0x4a5/0x2630
[  278.984006][T10276]  ? __pfx_copy_process+0x10/0x10
[  278.984021][T10276]  ? get_pid_task+0xfc/0x250
[  278.984035][T10276]  ? get_pid_task+0xfc/0x250
[  278.984052][T10276]  kernel_clone+0xfc/0x9a0
[  278.984064][T10276]  ? proc_fail_nth_write+0x9f/0x220
[  278.984079][T10276]  ? find_held_lock+0x2b/0x80
[  278.984090][T10276]  ? __pfx_kernel_clone+0x10/0x10
[  278.984110][T10276]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  278.984128][T10276]  __do_compat_sys_ia32_clone+0xd4/0x120
[  278.984144][T10276]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  278.984167][T10276]  ? ksys_write+0x1ac/0x250
[  278.984178][T10276]  ? __pfx_ksys_write+0x10/0x10
[  278.984277][T10276]  __do_fast_syscall_32+0xe3/0x8c0
[  278.984307][T10276]  do_fast_syscall_32+0x32/0x70
[  278.984320][T10276]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  278.984387][T10276] RIP: 0023:0xf7f14f6c
[  278.984397][T10276] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  278.984409][T10276] RSP: 002b:00000000f53d64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  278.984421][T10276] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  278.984428][T10276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  278.984434][T10276] RBP: 00000000f73d4f80 R08: 0000000000000000 R09: 0000000000000000
[  278.984440][T10276] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  278.984447][T10276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  278.984460][T10276]  </TASK>
[  278.989376][T10276] syz.0.1257: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  279.149046][T10278] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  279.157256][T10278] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  279.163260][   T29] usb usb38-port1: unable to enumerate USB device
[  279.171542][T10278] vhci_hcd vhci_hcd.0: Device attached
[  279.172448][T10276] ,cpuset=/,mems_allowed=0-1
[  279.175638][T10276] CPU: 3 UID: 0 PID: 10276 Comm: syz.0.1257 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.175658][T10276] Tainted: [L]=SOFTLOCKUP
[  279.175662][T10276] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  279.175669][T10276] Call Trace:
[  279.175675][T10276]  <TASK>
[  279.175680][T10276]  dump_stack_lvl+0x100/0x190
[  279.175702][T10276]  warn_alloc.cold+0x95/0x1c1
[  279.175722][T10276]  ? __pfx_warn_alloc+0x10/0x10
[  279.175739][T10276]  ? lockdep_hardirqs_on+0x78/0x100
[  279.175753][T10276]  ? __get_vm_area_node+0x2c5/0x330
[  279.175769][T10276]  ? __get_vm_area_node+0x208/0x330
[  279.175786][T10276]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  279.175801][T10276]  ? find_held_lock+0x2b/0x80
[  279.175813][T10276]  ? local_lock_release+0x99/0x130
[  279.175826][T10276]  ? local_lock_release+0x99/0x130
[  279.175846][T10276]  ? kernel_clone+0xfc/0x9a0
[  279.175860][T10276]  ? find_held_lock+0x2b/0x80
[  279.175870][T10276]  ? rcu_read_unlock+0x17/0x60
[  279.175883][T10276]  ? rcu_read_unlock+0x17/0x60
[  279.175895][T10276]  ? obj_cgroup_charge_account+0x46d/0x640
[  279.175909][T10276]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  279.175925][T10276]  ? __memcg_slab_post_alloc_hook+0x51b/0x990
[  279.175940][T10276]  ? rcu_is_watching+0x12/0xc0
[  279.175958][T10276]  ? trace_kmem_cache_alloc+0xf3/0x120
[  279.175972][T10276]  ? kernel_clone+0xfc/0x9a0
[  279.175985][T10276]  __vmalloc_node_noprof+0xad/0xf0
[  279.175999][T10276]  ? kernel_clone+0xfc/0x9a0
[  279.176013][T10276]  copy_process+0x5ec/0x7a40
[  279.176028][T10276]  ? __lock_acquire+0x4a5/0x2630
[  279.176047][T10276]  ? __pfx_copy_process+0x10/0x10
[  279.176062][T10276]  ? get_pid_task+0xfc/0x250
[  279.176076][T10276]  ? get_pid_task+0xfc/0x250
[  279.176094][T10276]  kernel_clone+0xfc/0x9a0
[  279.176106][T10276]  ? proc_fail_nth_write+0x9f/0x220
[  279.176122][T10276]  ? find_held_lock+0x2b/0x80
[  279.176132][T10276]  ? __pfx_kernel_clone+0x10/0x10
[  279.176150][T10276]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  279.176167][T10276]  __do_compat_sys_ia32_clone+0xd4/0x120
[  279.176184][T10276]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  279.176236][T10276]  ? ksys_write+0x1ac/0x250
[  279.176251][T10276]  ? __pfx_ksys_write+0x10/0x10
[  279.176266][T10276]  __do_fast_syscall_32+0xe3/0x8c0
[  279.176281][T10276]  do_fast_syscall_32+0x32/0x70
[  279.176294][T10276]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.176309][T10276] RIP: 0023:0xf7f14f6c
[  279.176319][T10276] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  279.176330][T10276] RSP: 002b:00000000f53d64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  279.176341][T10276] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  279.176348][T10276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  279.176354][T10276] RBP: 00000000f73d4f80 R08: 0000000000000000 R09: 0000000000000000
[  279.176360][T10276] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  279.176367][T10276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.176380][T10276]  </TASK>
[  279.176384][T10276] Mem-Info:
[  279.187697][T10278] random: crng reseeded on system resumption
[  279.197933][T10276] active_anon:3356 inactive_anon:13299 isolated_anon:0
[  279.197933][T10276]  active_file:3261 inactive_file:20209 isolated_file:0
[  279.197933][T10276]  unevictable:1768 dirty:179 writeback:0
[  279.197933][T10276]  slab_reclaimable:6464 slab_unreclaimable:56104
[  279.197933][T10276]  mapped:31311 shmem:10937 pagetables:1510
[  279.197933][T10276]  sec_pagetables:304 bounce:0
[  279.197933][T10276]  kernel_misc_reclaimable:0
[  279.197933][T10276]  free:63098 free_pcp:10911 free_cma:0
[  279.197967][T10276] Node 0 active_anon:44kB inactive_anon:116kB active_file:0kB inactive_file:672kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8056kB pagetables:1428kB sec_pagetables:1108kB all_unreclaimable? no Balloon:0kB
[  279.197994][T10276] Node 1 active_anon:13380kB inactive_anon:53080kB active_file:13044kB inactive_file:80164kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:125228kB dirty:712kB writeback:0kB shmem:40212kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5756kB pagetables:4612kB sec_pagetables:108kB all_unreclaimable? no Balloon:0kB
[  279.198074][T10276] Node 0 DMA free:2052kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:20kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:344kB local_pcp:16kB free_cma:0kB
[  279.198107][T10276] lowmem_reserve[]: 0 285 285 285 285
[  279.198129][T10276] Node 0 DMA32 free:16208kB boost:0kB min:13068kB low:16332kB high:19596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24kB inactive_anon:116kB active_file:0kB inactive_file:672kB unevictable:3536kB writepending:4kB zspages:900kB present:1032196kB managed:292456kB mlocked:0kB bounce:0kB free_pcp:8076kB local_pcp:2388kB free_cma:0kB
[  279.198161][T10276] lowmem_reserve[]: 0 0 0 0 0
[  279.198181][T10276] Node 1 DMA32 free:234132kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:13380kB inactive_anon:53080kB active_file:13044kB inactive_file:80164kB unevictable:3536kB writepending:712kB zspages:2264kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:35240kB local_pcp:12312kB free_cma:0kB
[  279.198214][T10276] lowmem_reserve[]: 0 0 0 0 0
[  279.198234][T10276] Node 0 DMA: 61*4kB (UM) 2*8kB (U) 8*16kB (UM) 0*32kB 10*64kB (UM) 4*128kB (UM) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2052kB
[  279.198311][T10276] Node 0 DMA32: 184*4kB (UME) 200*8kB (UE) 51*16kB (UME) 90*32kB (ME) 61*64kB (UME) 25*128kB (UME) 10*256kB (UME) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 16208kB
[  279.198394][T10276] Node 1 DMA32: 1505*4kB (U) 1376*8kB (UE) 1005*16kB (UE) 247*32kB (UE) 189*64kB (UE) 99*128kB (UME) 45*256kB (UME) 80*512kB (UME) 59*1024kB (UM) 21*2048kB (UM) 3*4096kB (U) = 233972kB
[  279.198488][T10276] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  279.198497][T10276] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  279.198506][T10276] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  279.198514][T10276] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  279.198523][T10276] 35510 total pagecache pages
[  279.198527][T10276] 1107 pages in swap cache
[  279.198531][T10276] Free swap  = 114144kB
[  279.198535][T10276] Total swap = 124996kB
[  279.198539][T10276] 524155 pages RAM
[  279.198543][T10276] 0 pages HighMem/MovableOnly
[  279.198547][T10276] 210148 pages reserved
[  279.198551][T10276] 0 pages cma reserved
[  279.513819][T10278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1256'.
[  279.581816][   T29] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  279.675938][T10293] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  279.679119][T10293] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  279.693626][T10280] vhci_hcd: connection reset by peer
[  279.697850][   T46] vhci_hcd vhci_hcd.2: stop threads
[  279.699578][   T46] vhci_hcd vhci_hcd.2: release socket
[  279.701616][   T46] vhci_hcd vhci_hcd.2: disconnect device
[  279.899769][   T39] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  280.283004][T10314] netlink: 'syz.5.1265': attribute type 1 has an invalid length.
[  280.286571][T10314] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1265'.
[  280.492137][T10317] syz.2.1266 (10317): drop_caches: 2
[  280.889899][T10333] syz.2.1268 (10333): drop_caches: 2
[  281.291465][T10342] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1273'.
[  282.626008][T10358] Bluetooth: MGMT ver 1.23
[  282.707435][T10364] lo speed is unknown, defaulting to 1000
[  283.364806][T10393] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  283.369314][T10393] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  283.372973][T10393] overlayfs: missing 'lowerdir'
[  284.231045][T10405] netlink: 'syz.5.1293': attribute type 2 has an invalid length.
[  284.234293][T10405] netlink: 'syz.5.1293': attribute type 2 has an invalid length.
[  284.307942][T10408] FAULT_INJECTION: forcing a failure.
[  284.307942][T10408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.314395][T10408] CPU: 2 UID: 0 PID: 10408 Comm: syz.5.1294 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.314424][T10408] Tainted: [L]=SOFTLOCKUP
[  284.314429][T10408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  284.314439][T10408] Call Trace:
[  284.314447][T10408]  <TASK>
[  284.314454][T10408]  dump_stack_lvl+0x100/0x190
[  284.314486][T10408]  should_fail_ex.cold+0x5/0xa
[  284.314508][T10408]  _copy_from_user+0x2e/0xd0
[  284.314531][T10408]  get_compat_msghdr+0xb3/0x4b0
[  284.314557][T10408]  ? __pfx_get_compat_msghdr+0x10/0x10
[  284.314583][T10408]  ? __lock_acquire+0x4a5/0x2630
[  284.314609][T10408]  ___sys_recvmsg+0x193/0x1a0
[  284.314632][T10408]  ? __pfx____sys_recvmsg+0x10/0x10
[  284.314672][T10408]  __sys_recvmsg+0x16d/0x220
[  284.314690][T10408]  ? __pfx___sys_recvmsg+0x10/0x10
[  284.314714][T10408]  ? __pfx_ksys_write+0x10/0x10
[  284.314736][T10408]  __do_fast_syscall_32+0xe3/0x8c0
[  284.314759][T10408]  do_fast_syscall_32+0x32/0x70
[  284.314777][T10408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.314797][T10408] RIP: 0023:0xf703ef6c
[  284.314812][T10408] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  284.314834][T10408] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000174
[  284.314851][T10408] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0
[  284.314861][T10408] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  284.314870][T10408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  284.314880][T10408] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  284.314889][T10408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.314910][T10408]  </TASK>
[  284.699976][   T29] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  284.754933][T10420] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1297'.
[  284.763342][   T40] audit: type=1326 audit(1775447084.208:20256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10414 comm="syz.5.1297" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  284.779766][   T40] audit: type=1326 audit(1775447084.208:20257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10414 comm="syz.5.1297" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  284.799859][   T40] audit: type=1326 audit(1775447084.218:20258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10414 comm="syz.5.1297" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  284.808823][   T40] audit: type=1326 audit(1775447084.218:20259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10414 comm="syz.5.1297" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  284.819958][   T40] audit: type=1326 audit(1775447084.218:20260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10414 comm="syz.5.1297" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  284.894410][T10426] lo: entered allmulticast mode
[  285.834963][T10431] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1302'.
[  285.847117][T10431] 8021q: adding VLAN 0 to HW filter on device bond2
[  285.854313][T10431] vlan2: entered promiscuous mode
[  285.856087][T10431] bond2: entered promiscuous mode
[  285.857847][T10431] vlan2: entered allmulticast mode
[  285.859484][T10431] bond2: entered allmulticast mode
[  285.862847][T10431] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1302'.
[  285.865850][T10431] FAULT_INJECTION: forcing a failure.
[  285.865850][T10431] name failslab, interval 1, probability 0, space 0, times 0
[  285.871432][T10431] CPU: 1 UID: 0 PID: 10431 Comm: syz.1.1302 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  285.871454][T10431] Tainted: [L]=SOFTLOCKUP
[  285.871459][T10431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  285.871467][T10431] Call Trace:
[  285.871473][T10431]  <TASK>
[  285.871478][T10431]  dump_stack_lvl+0x100/0x190
[  285.871504][T10431]  should_fail_ex.cold+0x5/0xa
[  285.871521][T10431]  should_failslab+0xc2/0x120
[  285.871537][T10431]  __kvmalloc_node_noprof+0xfa/0xa00
[  285.871550][T10431]  ? alloc_netdev_mqs+0xaf4/0x14f0
[  285.871563][T10431]  ? __pfx_batadv_meshif_init_early+0x10/0x10
[  285.871643][T10431]  ? lockdep_init_map_type+0x5c/0x250
[  285.871664][T10431]  ? __pfx_batadv_meshif_init_early+0x10/0x10
[  285.871681][T10431]  alloc_netdev_mqs+0xaf4/0x14f0
[  285.871698][T10431]  rtnl_create_link+0xc13/0xf80
[  285.871715][T10431]  rtnl_newlink+0x13b8/0x2380
[  285.871734][T10431]  ? __pfx_rtnl_newlink+0x10/0x10
[  285.871747][T10431]  ? is_bpf_text_address+0x94/0x1a0
[  285.871787][T10431]  ? kernel_text_address+0x8d/0x100
[  285.871810][T10431]  ? arch_stack_walk+0xa6/0xf0
[  285.871832][T10431]  ? __pfx_stack_trace_save+0x10/0x10
[  285.871854][T10431]  ? find_held_lock+0x2b/0x80
[  285.871867][T10431]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  285.871880][T10431]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  285.871894][T10431]  ? __pfx_rtnl_newlink+0x10/0x10
[  285.871907][T10431]  rtnetlink_rcv_msg+0x95e/0xe90
[  285.871923][T10431]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.871940][T10431]  ? __lock_acquire+0x4a5/0x2630
[  285.871961][T10431]  netlink_rcv_skb+0x159/0x420
[  285.871977][T10431]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.871991][T10431]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.872013][T10431]  ? netlink_deliver_tap+0x1ae/0xcc0
[  285.872030][T10431]  netlink_unicast+0x5aa/0x870
[  285.872047][T10431]  ? __pfx_netlink_unicast+0x10/0x10
[  285.872069][T10431]  netlink_sendmsg+0x8b0/0xda0
[  285.872086][T10431]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.872103][T10431]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  285.872122][T10431]  ____sys_sendmsg+0x9e1/0xb70
[  285.872138][T10431]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.872154][T10431]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.872202][T10431]  ___sys_sendmsg+0x190/0x1e0
[  285.872221][T10431]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.872261][T10431]  __sys_sendmsg+0x170/0x220
[  285.872275][T10431]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.872294][T10431]  ? __pfx_ksys_write+0x10/0x10
[  285.872312][T10431]  __do_fast_syscall_32+0xe3/0x8c0
[  285.872330][T10431]  do_fast_syscall_32+0x32/0x70
[  285.872346][T10431]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.872363][T10431] RIP: 0023:0xf6ffef6c
[  285.872376][T10431] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  285.872389][T10431] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  285.872402][T10431] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800000c0
[  285.872411][T10431] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  285.872432][T10431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.872440][T10431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  285.872448][T10431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.872466][T10431]  </TASK>
[  286.240343][T10452] comedi comedi1: comedi_config --init_data is deprecated
[  289.082307][T10516] bridge_slave_0: left allmulticast mode
[  289.088710][T10516] bridge_slave_0: left promiscuous mode
[  289.141583][T10516] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.202900][T10516] bridge_slave_1: left allmulticast mode
[  289.210010][T10516] bridge_slave_1: left promiscuous mode
[  289.218142][T10516] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.302465][T10516] bond0: (slave bond_slave_0): Releasing backup interface
[  289.312656][T10516] bond0: (slave bond_slave_1): Releasing backup interface
[  289.322113][T10516] team0: Port device team_slave_0 removed
[  289.335829][T10516] team0: Port device team_slave_1 removed
[  289.344082][T10516] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  289.811923][   T40] audit: type=1326 audit(1775447089.248:20261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.5.1325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  290.047599][   T40] audit: type=1326 audit(1775447089.248:20262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.5.1325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  290.055714][   T40] audit: type=1326 audit(1775447089.258:20263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.5.1325" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  290.064512][   T40] audit: type=1326 audit(1775447089.258:20264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.5.1325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  290.073169][   T40] audit: type=1326 audit(1775447089.258:20265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.5.1325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000
[  290.975655][T10547] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  290.979943][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.955584][T10565] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  292.656894][T10594] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1344'.
[  292.658582][T10595] netlink: 27 bytes leftover after parsing attributes in process `syz.2.1343'.
[  292.669011][T10595] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1343'.
[  293.550774][T10606] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1344'.
[  293.564942][T10606] bridge_slave_0: left allmulticast mode
[  293.566884][T10606] bridge_slave_0: left promiscuous mode
[  293.569225][T10606] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.680099][   T40] audit: type=1326 audit(1775447093.078:20266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10600 comm="syz.2.1346" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6feef6c code=0x0
[  294.060620][T10606] bridge_slave_1: left allmulticast mode
[  294.062824][T10606] bridge_slave_1: left promiscuous mode
[  294.065147][T10606] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.505960][T10606] bond0: (slave bond_slave_0): Releasing backup interface
[  294.521017][T10606] bond0: (slave bond_slave_1): Releasing backup interface
[  294.525393][T10606] team0: Port device team_slave_1 removed
[  294.527910][T10606] batman_adv: batadv0: Removing interface: batadv_slave_0
[  294.540450][T10606] batman_adv: batadv0: Removing interface: batadv_slave_1
[  294.546711][T10606] team0: Port device geneve0 removed
[  294.561727][T10606] bond1: (slave veth3): Releasing active interface
[  294.570475][   T13] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  294.576856][   T13] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  294.589739][   T13] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  294.599857][   T13] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  294.763512][T10620] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1350'.
[  295.882423][T10630] input: syz0 as /devices/virtual/input/input22
[  296.456971][T10665] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  296.459859][T10665] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  296.463514][T10665] vhci_hcd vhci_hcd.0: Device attached
[  296.591540][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.591638][T10668] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  296.594760][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  296.919893][ T2290] usb 40-1: SetAddress Request (10) to port 0
[  296.922461][ T2290] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  297.159475][T10666] vhci_hcd: connection reset by peer
[  297.164076][   T60] vhci_hcd vhci_hcd.1: stop threads
[  297.166082][   T60] vhci_hcd vhci_hcd.1: release socket
[  297.168096][   T60] vhci_hcd vhci_hcd.1: disconnect device
[  297.469471][T10677] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  297.836130][T10681] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1365'.
[  298.094597][T10685] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  298.564813][T10696] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1369'.
[  298.722504][T10709] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  298.724680][T10709] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  298.730279][T10709] vhci_hcd vhci_hcd.0: Device attached
[  298.859214][T10709] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  299.243476][T10710] vhci_hcd: connection closed
[  299.243666][  T105] vhci_hcd vhci_hcd.1: stop threads
[  299.247286][  T105] vhci_hcd vhci_hcd.1: release socket
[  299.249430][  T105] vhci_hcd vhci_hcd.1: disconnect device
[  300.656452][T10728] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1380'.
[  300.939050][T10738] 9p: Could not find request transport: virt
[  301.209763][ T6003] usb 5-1: new full-speed USB device number 22 using dummy_hcd
[  301.392540][ T6003] usb 5-1: config index 0 descriptor too short (expected 59886, got 27)
[  301.396034][ T6003] usb 5-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  301.410635][ T6003] usb 5-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  301.419707][ T6003] usb 5-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  301.425269][ T6003] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  301.428185][ T6003] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  301.431062][ T6003] usb 5-1: Product: syz
[  301.432671][ T6003] usb 5-1: Manufacturer: syz
[  301.434810][ T6003] usb 5-1: SerialNumber: syz
[  301.653921][ T6003] usb 5-1: USB disconnect, device number 22
[  301.697249][T10750] fuse: Bad value for 'fd'
[  301.975172][ T2290] usb 40-1: device descriptor read/8, error -110
[  302.052982][T10757] batadv_slave_1: entered promiscuous mode
[  302.056454][T10757] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1390'.
[  302.093377][T10756] batadv_slave_1: left promiscuous mode
[  302.124257][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1392'.
[  302.128608][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1392'.
[  302.241553][   T63] Bluetooth: hci0: unexpected event for opcode 0x1004
[  302.371712][ T2290] usb usb40-port1: attempt power cycle
[  302.519849][  T841] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  302.672781][  T841] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  302.676046][  T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.678792][  T841] usb 6-1: Product: syz
[  302.681115][  T841] usb 6-1: Manufacturer: syz
[  302.683053][  T841] usb 6-1: SerialNumber: syz
[  302.686467][  T841] usb 6-1: config 0 descriptor??
[  302.895575][T10771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  302.901596][T10771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  302.906941][ T6003] usb 6-1: USB disconnect, device number 27
[  303.270249][ T2290] usb usb40-port1: unable to enumerate USB device
[  303.310107][T10784] tipc: Started in network mode
[  303.311808][T10784] tipc: Node identity , cluster identity 4711
[  303.313765][T10784] tipc: Failed to obtain node identity
[  303.315502][T10784] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  303.542328][T10793] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1404'.
[  303.604687][T10796] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1404'.
[  303.719847][ T6003] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[  303.849548][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.852566][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.855322][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.860018][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.862848][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.865949][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.868845][T10811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.881753][ T6003] usb 5-1: config index 0 descriptor too short (expected 59886, got 27)
[  303.884776][ T6003] usb 5-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  303.888224][ T6003] usb 5-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  303.891972][ T6003] usb 5-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  303.904214][ T6003] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  303.907692][ T6003] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  303.912501][ T6003] usb 5-1: Product: syz
[  303.913920][ T6003] usb 5-1: Manufacturer: syz
[  303.915429][ T6003] usb 5-1: SerialNumber: syz
[  304.076902][T10823] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  304.079019][T10823] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  304.093881][T10823] vhci_hcd vhci_hcd.0: Device attached
[  304.108964][   T63] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  304.132596][ T6003] usb 5-1: USB disconnect, device number 23
[  304.369776][ T2290] usb 48-1: SetAddress Request (6) to port 0
[  304.372021][ T2290] usb 48-1: new SuperSpeed USB device number 6 using vhci_hcd
[  304.385835][T10834] x_tables: duplicate underflow at hook 2
[  304.576729][T10840] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1419'.
[  304.604860][T10840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  304.607864][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  304.672042][T10825] vhci_hcd: connection reset by peer
[  304.680226][  T363] vhci_hcd vhci_hcd.5: stop threads
[  304.682698][  T363] vhci_hcd vhci_hcd.5: release socket
[  304.687528][  T363] vhci_hcd vhci_hcd.5: disconnect device
[  304.832222][T10847] ieee802154 phy0 wpan0: encryption failed: -22
[  304.942714][T10847] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  304.944786][T10847] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  304.947267][T10847] vhci_hcd vhci_hcd.0: Device attached
[  304.949555][T10850] random: crng reseeded on system resumption
[  304.972031][T10853] vhci_hcd: connection closed
[  304.980017][  T105] vhci_hcd vhci_hcd.0: stop threads
[  304.984244][  T105] vhci_hcd vhci_hcd.0: release socket
[  304.986373][  T105] vhci_hcd vhci_hcd.0: disconnect device
[  305.042003][T10857] kAFS: No cell specified
[  305.536566][T10874] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  305.669817][ T1022] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  305.821211][ T1022] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  305.823516][ T1022] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  305.840708][ T1022] usb 6-1: config 0 interface 0 has no altsetting 0
[  305.845234][ T1022] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  305.847838][ T1022] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  305.850275][ T1022] usb 6-1: Product: syz
[  305.851454][ T1022] usb 6-1: Manufacturer: syz
[  305.852779][ T1022] usb 6-1: SerialNumber: syz
[  305.860461][ T1022] usb 6-1: config 0 descriptor??
[  305.863414][ T1022] hub 6-1:0.0: bad descriptor, ignoring hub
[  305.865369][ T1022] hub 6-1:0.0: probe with driver hub failed with error -5
[  305.869072][ T1022] usb 6-1: selecting invalid altsetting 0
[  306.059116][T10884] netlink: 'syz.5.1434': attribute type 10 has an invalid length.
[  306.142959][T10884] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  306.504868][T10897] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1437'.
[  306.566631][T10907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  306.750684][T10870] usb 6-1: reset high-speed USB device number 28 using dummy_hcd
[  306.763393][T10909] FAULT_INJECTION: forcing a failure.
[  306.763393][T10909] name failslab, interval 1, probability 0, space 0, times 0
[  306.768605][T10909] CPU: 0 UID: 0 PID: 10909 Comm: syz.0.1440 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  306.768625][T10909] Tainted: [L]=SOFTLOCKUP
[  306.768629][T10909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  306.768636][T10909] Call Trace:
[  306.768641][T10909]  <TASK>
[  306.768646][T10909]  dump_stack_lvl+0x100/0x190
[  306.768670][T10909]  should_fail_ex.cold+0x5/0xa
[  306.768685][T10909]  should_failslab+0xc2/0x120
[  306.768698][T10909]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  306.768724][T10909]  ? __alloc_skb+0x140/0x710
[  306.768745][T10909]  __alloc_skb+0x140/0x710
[  306.768763][T10909]  ? __pfx___alloc_skb+0x10/0x10
[  306.768784][T10909]  tipc_buf_acquire+0x26/0xe0
[  306.768848][T10909]  tipc_msg_build+0x112/0x1100
[  306.768869][T10909]  ? __pfx_tipc_msg_build+0x10/0x10
[  306.768893][T10909]  __tipc_sendmsg+0xb68/0x1ae0
[  306.768913][T10909]  ? __pfx___tipc_sendmsg+0x10/0x10
[  306.768928][T10909]  ? __lock_acquire+0x4a5/0x2630
[  306.768942][T10909]  ? __lock_acquire+0x4a5/0x2630
[  306.768960][T10909]  ? __pfx_woken_wake_function+0x10/0x10
[  306.768985][T10909]  ? __local_bh_enable_ip+0x9e/0x120
[  306.769000][T10909]  tipc_sendmsg+0x4f/0x70
[  306.769053][T10909]  ____sys_sendmsg+0x9e1/0xb70
[  306.769067][T10909]  ? __pfx_tipc_sendmsg+0x10/0x10
[  306.769084][T10909]  ? __pfx_____sys_sendmsg+0x10/0x10
[  306.769097][T10909]  ? _parse_integer_limit+0x17f/0x1d0
[  306.769118][T10909]  ? ___sys_sendmsg+0x19d/0x1e0
[  306.769131][T10909]  ? kfree+0x2ec/0x6b0
[  306.769145][T10909]  ? __pfx__kstrtoull+0x10/0x10
[  306.769164][T10909]  ___sys_sendmsg+0x190/0x1e0
[  306.769180][T10909]  ? __pfx____sys_sendmsg+0x10/0x10
[  306.769194][T10909]  ? __lock_acquire+0x4a5/0x2630
[  306.769214][T10909]  ? find_held_lock+0x2b/0x80
[  306.769230][T10909]  ? __pfx___might_resched+0x10/0x10
[  306.769251][T10909]  __sys_sendmmsg+0x2ff/0x430
[  306.769264][T10909]  ? __pfx___sys_sendmmsg+0x10/0x10
[  306.769280][T10909]  ? __fget_files+0x215/0x3d0
[  306.769297][T10909]  ? fput+0x79/0x100
[  306.769311][T10909]  ? ksys_write+0x1ac/0x250
[  306.769321][T10909]  ? __pfx_ksys_write+0x10/0x10
[  306.769334][T10909]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  306.769353][T10909]  ? lockdep_hardirqs_on+0x78/0x100
[  306.769366][T10909]  __do_fast_syscall_32+0xe3/0x8c0
[  306.769380][T10909]  do_fast_syscall_32+0x32/0x70
[  306.769393][T10909]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  306.769407][T10909] RIP: 0023:0xf7f14f6c
[  306.769417][T10909] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  306.769428][T10909] RSP: 002b:00000000f539450c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  306.769439][T10909] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001540
[  306.769446][T10909] RDX: 00000000040001b6 RSI: 0000000000000000 RDI: 0000000000000000
[  306.769452][T10909] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  306.769458][T10909] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  306.769464][T10909] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  306.769478][T10909]  </TASK>
[  306.896106][T10911] netlink: 228 bytes leftover after parsing attributes in process `syz.5.1441'.
[  306.950005][T10870] usb 6-1: device descriptor read/64, error -71
[  307.219765][T10870] usb 6-1: reset high-speed USB device number 28 using dummy_hcd
[  307.349832][T10870] usb 6-1: device descriptor read/64, error -71
[  307.589759][T10870] usb 6-1: reset high-speed USB device number 28 using dummy_hcd
[  307.610578][T10870] usb 6-1: device descriptor read/8, error -71
[  307.859958][T10870] usb 6-1: reset high-speed USB device number 28 using dummy_hcd
[  307.880489][T10870] usb 6-1: device descriptor read/8, error -71
[  307.992239][ T1022] usb 6-1: USB disconnect, device number 28
[  308.139779][ T1022] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  308.289987][ T1022] usb 6-1: device descriptor read/64, error -71
[  308.861320][T10945] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  308.863591][T10945] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  308.879822][T10945] vhci_hcd vhci_hcd.0: Device attached
[  308.889674][T10945] net_ratelimit: 1 callbacks suppressed
[  308.889686][T10945] openvswitch: netlink: Missing key (keys=40, expected=80)
[  308.938623][T10946] vhci_hcd: connection closed
[  308.952357][ T1173] vhci_hcd vhci_hcd.1: stop threads
[  308.955890][ T1173] vhci_hcd vhci_hcd.1: release socket
[  308.957626][ T1173] vhci_hcd vhci_hcd.1: disconnect device
[  309.111281][T10954] FAULT_INJECTION: forcing a failure.
[  309.111281][T10954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.115771][T10954] CPU: 0 UID: 0 PID: 10954 Comm: syz.2.1454 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  309.115790][T10954] Tainted: [L]=SOFTLOCKUP
[  309.115795][T10954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  309.115801][T10954] Call Trace:
[  309.115806][T10954]  <TASK>
[  309.115812][T10954]  dump_stack_lvl+0x100/0x190
[  309.115833][T10954]  should_fail_ex.cold+0x5/0xa
[  309.115847][T10954]  _copy_from_iter+0x43a/0x1690
[  309.115868][T10954]  ? __pfx__copy_from_iter+0x10/0x10
[  309.115884][T10954]  ? find_held_lock+0x2b/0x80
[  309.115895][T10954]  ? rawv6_sendmsg+0xb3c/0x4420
[  309.115907][T10954]  ? rawv6_sendmsg+0xb3c/0x4420
[  309.115921][T10954]  rawv6_sendmsg+0x244a/0x4420
[  309.115935][T10954]  ? aa_profile_af_perm+0x2f0/0x3a0
[  309.115953][T10954]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  309.115965][T10954]  ? __lock_acquire+0x4a5/0x2630
[  309.115997][T10954]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  309.116009][T10954]  ? inet_sendmsg+0x11c/0x140
[  309.116024][T10954]  inet_sendmsg+0x11c/0x140
[  309.116038][T10954]  ____sys_sendmsg+0x98d/0xb70
[  309.116071][T10954]  ? __pfx_inet_sendmsg+0x10/0x10
[  309.116093][T10954]  ? __pfx_____sys_sendmsg+0x10/0x10
[  309.116110][T10954]  ? _parse_integer_limit+0x17f/0x1d0
[  309.116135][T10954]  ? _kstrtoull+0x13c/0x1f0
[  309.116152][T10954]  ? __pfx__kstrtoull+0x10/0x10
[  309.116171][T10954]  ___sys_sendmsg+0x190/0x1e0
[  309.116186][T10954]  ? __pfx____sys_sendmsg+0x10/0x10
[  309.116200][T10954]  ? __lock_acquire+0x4a5/0x2630
[  309.116220][T10954]  ? find_held_lock+0x2b/0x80
[  309.116239][T10954]  __sys_sendmmsg+0x2ff/0x430
[  309.116251][T10954]  ? __pfx___sys_sendmmsg+0x10/0x10
[  309.116266][T10954]  ? __fget_files+0x215/0x3d0
[  309.116284][T10954]  ? fput+0x79/0x100
[  309.116297][T10954]  ? ksys_write+0x1ac/0x250
[  309.116307][T10954]  ? __pfx_ksys_write+0x10/0x10
[  309.116319][T10954]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  309.116339][T10954]  ? lockdep_hardirqs_on+0x78/0x100
[  309.116351][T10954]  __do_fast_syscall_32+0xe3/0x8c0
[  309.116366][T10954]  do_fast_syscall_32+0x32/0x70
[  309.116378][T10954]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  309.116393][T10954] RIP: 0023:0xf6feef6c
[  309.116403][T10954] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  309.116415][T10954] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  309.116427][T10954] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  309.116433][T10954] RDX: 0000000000000001 RSI: 0000000064004884 RDI: 0000000000000000
[  309.116439][T10954] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  309.116445][T10954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.116452][T10954] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  309.116465][T10954]  </TASK>
[  309.176526][ T6003] IPVS: starting estimator thread 0...
[  309.300125][T10956] IPVS: using max 26 ests per chain, 62400 per kthread
[  309.409787][ T2290] usb 48-1: device descriptor read/8, error -110
[  309.685517][T10973] comedi comedi2: ni_at_a2150: I/O port conflict (0xfffffffffffffffd,28)
[  309.753071][T10976] FAULT_INJECTION: forcing a failure.
[  309.753071][T10976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.757646][T10976] CPU: 3 UID: 0 PID: 10976 Comm: syz.5.1461 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  309.757665][T10976] Tainted: [L]=SOFTLOCKUP
[  309.757669][T10976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  309.757676][T10976] Call Trace:
[  309.757682][T10976]  <TASK>
[  309.757687][T10976]  dump_stack_lvl+0x100/0x190
[  309.757708][T10976]  should_fail_ex.cold+0x5/0xa
[  309.757722][T10976]  _copy_from_user+0x2e/0xd0
[  309.757739][T10976]  get_compat_msghdr+0xb3/0x4b0
[  309.757759][T10976]  ? __pfx_get_compat_msghdr+0x10/0x10
[  309.757777][T10976]  ? ___sys_recvmsg+0x177/0x1a0
[  309.757792][T10976]  ? kfree+0x2ec/0x6b0
[  309.757809][T10976]  ___sys_recvmsg+0x193/0x1a0
[  309.757824][T10976]  ? __pfx____sys_recvmsg+0x10/0x10
[  309.757841][T10976]  ? find_held_lock+0x2b/0x80
[  309.757857][T10976]  ? __pfx___might_resched+0x10/0x10
[  309.757877][T10976]  do_recvmmsg+0x563/0x760
[  309.757893][T10976]  ? __pfx_do_recvmmsg+0x10/0x10
[  309.757909][T10976]  ? ksys_write+0x190/0x250
[  309.757920][T10976]  ? ksys_write+0x190/0x250
[  309.757935][T10976]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  309.757952][T10976]  __sys_recvmmsg+0x21f/0x270
[  309.757964][T10976]  ? __pfx___sys_recvmmsg+0x10/0x10
[  309.757976][T10976]  ? ksys_write+0x1ac/0x250
[  309.757989][T10976]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  309.758000][T10976]  ? __do_fast_syscall_32+0x94/0x8c0
[  309.758013][T10976]  ? lockdep_hardirqs_on+0x78/0x100
[  309.758024][T10976]  __do_fast_syscall_32+0xe3/0x8c0
[  309.758038][T10976]  do_fast_syscall_32+0x32/0x70
[  309.758051][T10976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  309.758067][T10976] RIP: 0023:0xf703ef6c
[  309.758077][T10976] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  309.758088][T10976] RSP: 002b:00000000f540c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  309.758099][T10976] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000080002440
[  309.758106][T10976] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000
[  309.758113][T10976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  309.758119][T10976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.758125][T10976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  309.758138][T10976]  </TASK>
[  309.841951][ T2290] usb usb48-port1: attempt power cycle
[  310.193184][T10985] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  310.199796][   T39] lo speed is unknown, defaulting to 1000
[  310.202794][   T39] syz2: Port: 1 Link ACTIVE
[  311.030727][ T2290] usb usb48-port1: unable to enumerate USB device
[  311.187598][T11005] netlink: 'syz.1.1469': attribute type 3 has an invalid length.
[  312.120153][T11004] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  312.122113][T11004] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  312.124028][T11004] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  312.125964][T11004] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  312.139773][T11004] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  312.142348][T11004] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  312.149262][T11004] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  312.233773][T11022] tmpfs: Unknown parameter 'ip<6F�Ė0) max_states_per_insn 0 total_states 0 peak_states 0 m/dev/cpu/#/msr'
[  312.287657][T11030] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  312.317343][T11030] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1477'.
[  312.320329][T11030] netlink: 'syz.2.1477': attribute type 9 has an invalid length.
[  312.546613][T11048] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1482'.
[  312.560412][T11048] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1482'.
[  312.781743][T11051] cgroup: name respecified
[  313.859798][  T841] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  313.880272][T11080] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.883404][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.889566][T11083] comedi comedi3: rti802: I/O port conflict (0x3,4)
[  313.897772][T11083] program syz.5.1495 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  313.905024][T11083] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1495'.
[  313.989745][  T841] usb 6-1: device descriptor read/64, error -71
[  314.209749][ T5934] Bluetooth: hci2: command 0x0c1a tx timeout
[  314.220017][ T5934] Bluetooth: hci3: command 0x0c1a tx timeout
[  314.220141][   T63] Bluetooth: hci1: command 0x0406 tx timeout
[  314.230145][  T841] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  314.361576][  T841] usb 6-1: device descriptor read/64, error -71
[  314.470138][  T841] usb usb6-port1: attempt power cycle
[  314.471013][T11101] netlink: 'syz.5.1505': attribute type 1 has an invalid length.
[  314.503637][T11101] 8021q: adding VLAN 0 to HW filter on device bond1
[  314.809868][  T841] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  314.844346][  T841] usb 6-1: device descriptor read/8, error -71
[  314.899819][   T39] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  315.051020][   T39] usb 5-1: config index 0 descriptor too short (expected 59886, got 27)
[  315.053744][   T39] usb 5-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  315.056537][   T39] usb 5-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  315.060462][   T39] usb 5-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  315.065214][   T39] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  315.068208][   T39] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  315.071246][   T39] usb 5-1: Product: syz
[  315.072631][   T39] usb 5-1: Manufacturer: syz
[  315.074110][   T39] usb 5-1: SerialNumber: syz
[  315.079895][  T841] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  315.100621][  T841] usb 6-1: device descriptor read/8, error -71
[  315.210057][  T841] usb usb6-port1: unable to enumerate USB device
[  315.285219][   T39] usb 5-1: USB disconnect, device number 24
[  315.561384][T11114] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  315.563673][T11114] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  315.566700][T11114] vhci_hcd vhci_hcd.0: Device attached
[  315.859772][ T2290] usb 42-1: SetAddress Request (14) to port 0
[  315.862154][ T2290] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[  316.122187][T11115] vhci_hcd: connection reset by peer
[  316.124995][ T1173] vhci_hcd vhci_hcd.2: stop threads
[  316.127477][ T1173] vhci_hcd vhci_hcd.2: release socket
[  316.129986][ T1173] vhci_hcd vhci_hcd.2: disconnect device
[  316.290040][   T63] Bluetooth: hci3: command 0x0c1a tx timeout
[  316.292265][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  316.380054][   T39] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  316.539799][   T39] usb 10-1: Using ep0 maxpacket: 8
[  316.543849][   T39] usb 10-1: config index 0 descriptor too short (expected 47, got 45)
[  316.547492][   T39] usb 10-1: config 128 has too many interfaces: 254, using maximum allowed: 32
[  316.551530][   T39] usb 10-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  316.555827][   T39] usb 10-1: config 128 has 0 interfaces, different from the descriptor's value: 254
[  316.560102][   T39] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  316.563890][   T39] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.738309][T11131] overlayfs: failed to resolve './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  317.083193][T11143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.116043][T11143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.119504][T11143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.129256][T11143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.132139][T11143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.029736][T11153] lo speed is unknown, defaulting to 1000
[  318.029767][  T841] usb 6-1: new full-speed USB device number 35 using dummy_hcd
[  318.188540][  T841] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  318.192994][  T841] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  318.196916][  T841] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  318.201749][  T841] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  318.210745][  T841] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  318.214028][  T841] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  318.217657][  T841] usb 6-1: Product: syz
[  318.219507][  T841] usb 6-1: Manufacturer: syz
[  318.222052][  T841] usb 6-1: SerialNumber: syz
[  318.369974][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  318.804777][  T841] usb 6-1: USB disconnect, device number 35
[  318.870088][T11168] netlink: 'syz.2.1526': attribute type 1 has an invalid length.
[  318.873023][T11168] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1526'.
[  319.078802][    T9] usb 10-1: USB disconnect, device number 12
[  319.104237][ T1022] kernel read not supported for file /dsp (pid: 1022 comm: kworker/0:2)
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x90000)
[  319.172187][T11179] FAULT_INJECTION: forcing a failure.
[  319.172187][T11179] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.177725][T11179] CPU: 2 UID: 0 PID: 11179 Comm: syz.0.1530 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  319.177753][T11179] Tainted: [L]=SOFTLOCKUP
[  319.177759][T11179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  319.177768][T11179] Call Trace:
[  319.177776][T11179]  <TASK>
[  319.177782][T11179]  dump_stack_lvl+0x100/0x190
[  319.177815][T11179]  should_fail_ex.cold+0x5/0xa
[  319.177838][T11179]  _copy_from_user+0x2e/0xd0
[  319.177861][T11179]  kstrtouint_from_user+0xd6/0x1d0
[  319.177904][T11179]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  319.177929][T11179]  ? __lock_acquire+0x4a5/0x2630
[  319.177954][T11179]  ? lock_acquire+0x1cf/0x380
[  319.177979][T11179]  proc_fail_nth_write+0x83/0x220
[  319.178002][T11179]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  319.178029][T11179]  vfs_write+0x2aa/0x1070
[  319.178048][T11179]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  319.178071][T11179]  ? __pfx_vfs_write+0x10/0x10
[  319.178099][T11179]  ? find_held_lock+0x2b/0x80
[  319.178117][T11179]  ? __fget_files+0x215/0x3d0
[  319.178139][T11179]  ? __fget_files+0x21f/0x3d0
[  319.178162][T11179]  ksys_write+0x12a/0x250
[  319.178179][T11179]  ? __pfx_ksys_write+0x10/0x10
[  319.178201][T11179]  do_int80_emulation+0x141/0x6b0
[  319.178224][T11179]  asm_int80_emulation+0x1a/0x20
[  319.178241][T11179] RIP: 0023:0xf7115cab
[  319.178254][T11179] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  319.178270][T11179] RSP: 002b:00000000f53d64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  319.178287][T11179] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f53d65d0
[  319.178297][T11179] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  319.178306][T11179] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  319.178315][T11179] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  319.178325][T11179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  319.178347][T11179]  </TASK>
[  319.350761][ T1112] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  319.354240][ T1112] ata1: failed to read log page 10h (errno=-5)
[  319.356668][ T1112] ata1.00: NCQ disabled due to excessive errors
[  319.359177][ T1112] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[  319.362141][ T1112] ata1.00: irq_stat 0x40000000
[  319.363994][ T1112] ata1.00: failed command: WRITE FPDMA QUEUED
[  319.366122][ T1112] ata1.00: cmd 61/80:70:b6:6c:0a/04:00:00:00:00/40 tag 14 ncq dma 589824 out
[  319.366122][ T1112]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  319.374035][ T1112] ata1.00: status: { DRDY }
[  319.376381][ T1112] ata1.00: error: { ABRT }
[  319.378257][ T1112] ata1.00: failed command: WRITE FPDMA QUEUED
[  319.383222][ T1112] ata1.00: cmd 61/08:78:36:41:09/00:00:00:00:00/40 tag 15 ncq dma 4096 out
[  319.383222][ T1112]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  319.390342][ T1112] ata1.00: status: { DRDY }
[  319.392178][ T1112] ata1.00: error: { ABRT }
[  319.394773][ T1112] ata1.00: configured for UDMA/100
[  319.396974][ T1112] ata1: EH complete
[  321.688453][ T2290] usb 42-1: device descriptor read/8, error -110
[  322.075704][T11203] FAULT_INJECTION: forcing a failure.
[  322.075704][T11203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.080449][T11203] CPU: 3 UID: 0 PID: 11203 Comm: syz.0.1537 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  322.080473][T11203] Tainted: [L]=SOFTLOCKUP
[  322.080477][T11203] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  322.080485][T11203] Call Trace:
[  322.080491][T11203]  <TASK>
[  322.080498][T11203]  dump_stack_lvl+0x100/0x190
[  322.080522][T11203]  should_fail_ex.cold+0x5/0xa
[  322.080538][T11203]  _copy_to_user+0x32/0xd0
[  322.080558][T11203]  simple_read_from_buffer+0xcb/0x170
[  322.080580][T11203]  proc_fail_nth_read+0x1af/0x230
[  322.080597][T11203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.080615][T11203]  ? rw_verify_area+0xce/0x6d0
[  322.080633][T11203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.080655][T11203]  vfs_read+0x1e4/0xb30
[  322.080670][T11203]  ? __pfx_vfs_read+0x10/0x10
[  322.080680][T11203]  ? find_held_lock+0x2b/0x80
[  322.080694][T11203]  ? __fget_files+0x215/0x3d0
[  322.080710][T11203]  ? __fget_files+0x21f/0x3d0
[  322.080727][T11203]  ksys_read+0x12a/0x250
[  322.080739][T11203]  ? __pfx_ksys_read+0x10/0x10
[  322.080756][T11203]  do_int80_emulation+0x141/0x6b0
[  322.080775][T11203]  asm_int80_emulation+0x1a/0x20
[  322.080789][T11203] RIP: 0023:0xf7115cab
[  322.080801][T11203] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  322.080813][T11203] RSP: 002b:00000000f53d64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  322.080826][T11203] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f53d65d0
[  322.080834][T11203] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  322.080842][T11203] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  322.080849][T11203] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  322.080856][T11203] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  322.080872][T11203]  </TASK>
[  322.219864][ T6003] usb 6-1: new full-speed USB device number 36 using dummy_hcd
[  322.231147][ T2290] usb usb42-port1: attempt power cycle
[  322.231265][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  322.371046][ T6003] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  322.374369][ T6003] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  322.377508][ T6003] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  322.382964][ T6003] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  322.388049][ T6003] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  322.391177][ T6003] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  322.394361][ T6003] usb 6-1: Product: syz
[  322.395990][ T6003] usb 6-1: Manufacturer: syz
[  322.397715][ T6003] usb 6-1: SerialNumber: syz
[  322.609360][ T6003] usb 6-1: USB disconnect, device number 36
[  322.853145][ T2290] usb usb42-port1: unable to enumerate USB device
[  323.144499][T11216] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  323.221574][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.224296][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.236033][T11214] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  323.238246][T11214] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  323.240987][T11214] vhci_hcd vhci_hcd.0: Device attached
[  323.529715][ T6000] usb 42-1: SetAddress Request (18) to port 0
[  323.531949][ T6000] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[  323.595882][T11217] vhci_hcd: connection reset by peer
[  323.599177][T11222] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1541'.
[  323.603103][  T363] vhci_hcd vhci_hcd.2: stop threads
[  323.604906][  T363] vhci_hcd vhci_hcd.2: release socket
[  323.606980][  T363] vhci_hcd vhci_hcd.2: disconnect device
[  323.847836][T11222] lo speed is unknown, defaulting to 1000
[  323.953656][T11226] can0: slcan on ttyS3.
[  324.097201][T11222] can0 (unregistered): slcan off ttyS3.
[  324.910821][T11260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.914375][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  325.159815][   T39] usb 6-1: new full-speed USB device number 37 using dummy_hcd
[  325.321781][   T39] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  325.325214][   T39] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  325.329043][   T39] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  325.338230][   T39] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  325.366883][   T39] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  325.379512][   T39] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  325.384353][   T39] usb 6-1: Product: syz
[  325.385982][   T39] usb 6-1: Manufacturer: syz
[  325.387894][   T39] usb 6-1: SerialNumber: syz
[  325.527143][T11267] SQUASHFS error: Failed to read block 0x0: -5
[  325.529800][T11267] unable to read squashfs_super_block
[  325.601426][   T39] usb 6-1: USB disconnect, device number 37
[  325.833962][   T40] audit: type=1326 audit(1775447125.278:20267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.841010][   T40] audit: type=1326 audit(1775447125.278:20268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.849472][   T40] audit: type=1326 audit(1775447125.278:20269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.857275][   T40] audit: type=1326 audit(1775447125.278:20270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=104 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.865502][   T40] audit: type=1326 audit(1775447125.278:20271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.872544][   T40] audit: type=1326 audit(1775447125.278:20272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.888550][   T40] audit: type=1326 audit(1775447125.278:20273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.896260][   T40] audit: type=1326 audit(1775447125.278:20274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.896293][   T40] audit: type=1326 audit(1775447125.278:20275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  325.896321][   T40] audit: type=1326 audit(1775447125.298:20276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.0.1554" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  326.344341][T11283] netlink: 296 bytes leftover after parsing attributes in process `syz.2.1559'.
[  326.479379][T11294] syzkaller0: left promiscuous mode
[  326.481354][T11294] syzkaller0: left allmulticast mode
[  326.512617][T11296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.515772][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.707914][T11304] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  326.710487][T11304] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  326.733797][T11304] vhci_hcd vhci_hcd.0: Device attached
[  326.827644][T11304] random: crng reseeded on system resumption
[  326.970008][    T9] usb 10-1: new full-speed USB device number 13 using dummy_hcd
[  326.989723][ T2290] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  327.027875][T11297] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1560'.
[  327.132335][    T9] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  327.135510][    T9] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  327.140798][    T9] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  327.144300][    T9] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  327.150772][    T9] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  327.155937][T11305] vhci_hcd: connection reset by peer
[  327.158066][ T1142] vhci_hcd vhci_hcd.1: stop threads
[  327.160223][    T9] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  327.160330][    T9] usb 10-1: Product: syz
[  327.163933][ T1142] vhci_hcd vhci_hcd.1: release socket
[  327.164081][ T1142] vhci_hcd vhci_hcd.1: disconnect device
[  327.165828][    T9] usb 10-1: Manufacturer: syz
[  327.171954][    T9] usb 10-1: SerialNumber: syz
[  327.405737][    T9] usb 10-1: USB disconnect, device number 13
[  327.857596][T11321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1568'.
[  328.573410][T11333] comedi comedi3: comedi_config --init_data is deprecated
[  328.610280][ T6000] usb 42-1: device descriptor read/8, error -110
[  328.829722][   T29] usb 5-1: new full-speed USB device number 25 using dummy_hcd
[  328.981231][   T29] usb 5-1: config index 0 descriptor too short (expected 59886, got 27)
[  328.984967][   T29] usb 5-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  328.988801][   T29] usb 5-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  328.993339][   T29] usb 5-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  328.995000][T11340] netlink: 'syz.1.1573': attribute type 2 has an invalid length.
[  328.997851][   T29] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  328.999092][T11340] netlink: 'syz.1.1573': attribute type 2 has an invalid length.
[  329.002685][   T29] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  329.002706][   T29] usb 5-1: Product: syz
[  329.002719][   T29] usb 5-1: Manufacturer: syz
[  329.002731][   T29] usb 5-1: SerialNumber: syz
[  329.021147][ T6000] usb usb42-port1: attempt power cycle
[  329.218200][   T29] usb 5-1: USB disconnect, device number 25
[  329.386380][T11350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'.
[  329.389545][T11350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'.
[  329.473629][T11351] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1585'.
[  329.476516][T11351] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1585'.
[  329.484311][T11350] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1585'.
[  329.553865][T11350] lo speed is unknown, defaulting to 1000
[  332.130000][ T2290] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  332.347885][ T6000] usb usb42-port1: unable to enumerate USB device
[  333.543735][T11376] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1581'.
[  334.027651][T11383] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1583'.
[  334.639912][   T40] kauditd_printk_skb: 372 callbacks suppressed
[  334.640014][   T40] audit: type=1326 audit(1775447134.058:20649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11379 comm="syz.5.1583" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703ef6c code=0x0
[  336.747855][T11425] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1597'.
[  336.822396][T11425] lo speed is unknown, defaulting to 1000
[  336.984281][T11430] can0: slcan on ttyS3.
[  337.041090][T11433] TCP: TCP_TX_DELAY enabled
[  337.045144][T11433] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1601'.
[  337.050122][T11433] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1601'.
[  337.055147][T11433] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1601'.
[  337.059845][T11433] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1601'.
[  337.060075][T11431] can0 (unregistered): slcan off ttyS3.
[  337.065488][T11433] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1601'.
[  338.189925][   T39] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  338.350153][   T39] usb 10-1: too many configurations: 9, using maximum allowed: 8
[  338.353651][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.356738][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.361133][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.365278][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.368358][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.372632][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.375653][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.378785][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.382702][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.385918][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.388982][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.392763][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.395737][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.398861][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.403006][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.406103][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.409221][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.413003][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.416001][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.418906][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.423218][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.426256][   T39] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  338.429115][   T39] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  338.432939][   T39] usb 10-1: config 0 interface 0 has no altsetting 0
[  338.436769][   T39] usb 10-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  338.440264][   T39] usb 10-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  338.442956][   T39] usb 10-1: Product: syz
[  338.444294][   T39] usb 10-1: Manufacturer: syz
[  338.445918][   T39] usb 10-1: SerialNumber: syz
[  338.448802][   T39] usb 10-1: config 0 descriptor??
[  338.459290][   T39] yurex 10-1:0.0: USB YUREX device now attached to Yurex #0
[  340.939796][   T34] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[  341.110723][   T34] usb 5-1: config index 0 descriptor too short (expected 59886, got 27)
[  341.114341][   T34] usb 5-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  341.118806][   T34] usb 5-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  341.123626][   T34] usb 5-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  341.129957][   T34] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  341.134052][   T34] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  341.138164][   T34] usb 5-1: Product: syz
[  341.140662][   T34] usb 5-1: Manufacturer: syz
[  341.143836][   T34] usb 5-1: SerialNumber: syz
[  341.376562][   T34] usb 5-1: USB disconnect, device number 26
[  341.633138][   T34] usb 10-1: USB disconnect, device number 14
[  341.641029][   T34] yurex 10-1:0.0: USB YUREX #0 now disconnected
[  343.185187][T11525] FAULT_INJECTION: forcing a failure.
[  343.185187][T11525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  343.189811][T11525] CPU: 3 UID: 0 PID: 11525 Comm: syz.1.1631 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.189831][T11525] Tainted: [L]=SOFTLOCKUP
[  343.189835][T11525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  343.189842][T11525] Call Trace:
[  343.189847][T11525]  <TASK>
[  343.189853][T11525]  dump_stack_lvl+0x100/0x190
[  343.189876][T11525]  should_fail_ex.cold+0x5/0xa
[  343.189891][T11525]  _copy_to_user+0x32/0xd0
[  343.189908][T11525]  simple_read_from_buffer+0xcb/0x170
[  343.189940][T11525]  proc_fail_nth_read+0x1af/0x230
[  343.189959][T11525]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  343.189975][T11525]  ? rw_verify_area+0xce/0x6d0
[  343.189992][T11525]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  343.190007][T11525]  vfs_read+0x1e4/0xb30
[  343.190020][T11525]  ? __pfx_vfs_read+0x10/0x10
[  343.190029][T11525]  ? find_held_lock+0x2b/0x80
[  343.190041][T11525]  ? __fget_files+0x215/0x3d0
[  343.190055][T11525]  ? __fget_files+0x21f/0x3d0
[  343.190071][T11525]  ksys_read+0x12a/0x250
[  343.190081][T11525]  ? __pfx_ksys_read+0x10/0x10
[  343.190097][T11525]  do_int80_emulation+0x141/0x6b0
[  343.190114][T11525]  asm_int80_emulation+0x1a/0x20
[  343.190126][T11525] RIP: 0023:0xf7135cab
[  343.190136][T11525] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  343.190148][T11525] RSP: 002b:00000000f53ed4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  343.190159][T11525] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f53ed5d0
[  343.190166][T11525] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  343.190173][T11525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  343.190179][T11525] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  343.190186][T11525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  343.190200][T11525]  </TASK>
[  343.493359][T11529] mac80211_hwsim hwsim7 syzkaller0: left allmulticast mode
[  343.601616][T11539] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  343.721620][T11546] loop2: detected capacity change from 0 to 7
[  343.726954][T10650] Dev loop2: unable to read RDB block 7
[  343.730221][T10650]  loop2: unable to read partition table
[  343.733379][T10650] loop2: partition table beyond EOD, truncated
[  343.825446][T11550] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1638'.
[  343.881114][T11550] lo speed is unknown, defaulting to 1000
[  343.998798][T11551] can0: slcan on ttyS3.
[  344.130422][T11551] can0 (unregistered): slcan off ttyS3.
[  344.273442][T11548] overlayfs: workdir and upperdir must reside under the same mount
[  344.471504][T11546] Dev loop2: unable to read RDB block 7
[  344.473520][T11546]  loop2: unable to read partition table
[  344.476279][T11546] loop2: partition table beyond EOD, truncated
[  344.478656][T11546] loop_reread_partitions: partition scan of loop2 (�被x����� ) failed (rc=-5)
[  344.715154][T11578] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  344.717863][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  345.146724][T11592] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1649'.
[  345.236170][T11594] netlink: 'syz.1.1650': attribute type 1 has an invalid length.
[  345.519991][T11604] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1652'.
[  345.593583][T11604] lo speed is unknown, defaulting to 1000
[  345.653177][T11602] can0: slcan on ttyS3.
[  345.761524][T11602] can0 (unregistered): slcan off ttyS3.
[  346.022126][T11610] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1654'.
[  346.025209][T11610] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1654'.
[  346.028346][T11610] FAULT_INJECTION: forcing a failure.
[  346.028346][T11610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.033116][T11610] CPU: 2 UID: 0 PID: 11610 Comm: syz.2.1654 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  346.033137][T11610] Tainted: [L]=SOFTLOCKUP
[  346.033141][T11610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  346.033148][T11610] Call Trace:
[  346.033152][T11610]  <TASK>
[  346.033157][T11610]  dump_stack_lvl+0x100/0x190
[  346.033179][T11610]  should_fail_ex.cold+0x5/0xa
[  346.033193][T11610]  _copy_to_user+0x32/0xd0
[  346.033210][T11610]  simple_read_from_buffer+0xcb/0x170
[  346.033230][T11610]  proc_fail_nth_read+0x1af/0x230
[  346.033245][T11610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  346.033261][T11610]  ? rw_verify_area+0xce/0x6d0
[  346.033277][T11610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  346.033291][T11610]  vfs_read+0x1e4/0xb30
[  346.033304][T11610]  ? __pfx_vfs_read+0x10/0x10
[  346.033319][T11610]  ? find_held_lock+0x2b/0x80
[  346.033330][T11610]  ? __fget_files+0x215/0x3d0
[  346.033344][T11610]  ? __fget_files+0x21f/0x3d0
[  346.033359][T11610]  ksys_read+0x12a/0x250
[  346.033369][T11610]  ? __pfx_ksys_read+0x10/0x10
[  346.033384][T11610]  do_int80_emulation+0x141/0x6b0
[  346.033399][T11610]  asm_int80_emulation+0x1a/0x20
[  346.033411][T11610] RIP: 0023:0xf7125cab
[  346.033420][T11610] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  346.033431][T11610] RSP: 002b:00000000f53dd4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  346.033442][T11610] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f53dd5d0
[  346.033449][T11610] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  346.033455][T11610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  346.033461][T11610] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  346.033468][T11610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  346.033481][T11610]  </TASK>
[  346.152118][T11614] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1655'.
[  346.157594][T11614] netlink: 'syz.5.1655': attribute type 27 has an invalid length.
[  346.165629][T11614] netlink: 164 bytes leftover after parsing attributes in process `syz.5.1655'.
[  346.189926][T11614] geneve1: entered promiscuous mode
[  346.192166][T11614] macsec1: entered promiscuous mode
[  346.194337][T11614] macsec1: entered allmulticast mode
[  346.199493][T11614] geneve1: entered allmulticast mode
[  346.214140][T11614] geneve1: left allmulticast mode
[  346.216173][T11614] geneve1: left promiscuous mode
[  347.501835][T11636] FAULT_INJECTION: forcing a failure.
[  347.501835][T11636] name failslab, interval 1, probability 0, space 0, times 0
[  347.506442][T11636] CPU: 3 UID: 0 PID: 11636 Comm: syz.2.1665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  347.506463][T11636] Tainted: [L]=SOFTLOCKUP
[  347.506467][T11636] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  347.506474][T11636] Call Trace:
[  347.506479][T11636]  <TASK>
[  347.506486][T11636]  dump_stack_lvl+0x100/0x190
[  347.506510][T11636]  should_fail_ex.cold+0x5/0xa
[  347.506524][T11636]  should_failslab+0xc2/0x120
[  347.506537][T11636]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  347.506556][T11636]  ? __d_alloc+0x34/0xa80
[  347.506573][T11636]  __d_alloc+0x34/0xa80
[  347.506589][T11636]  d_alloc+0x4a/0x1e0
[  347.506603][T11636]  lookup_one_qstr_excl+0x175/0x250
[  347.506620][T11636]  start_dirop+0x59/0xb0
[  347.506632][T11636]  simple_start_creating+0xf9/0x110
[  347.506644][T11636]  ? __pfx_simple_start_creating+0x10/0x10
[  347.506656][T11636]  ? mntput+0x70/0xa0
[  347.506666][T11636]  ? simple_pin_fs+0xa3/0x190
[  347.506683][T11636]  debugfs_start_creating.part.0+0x82/0x170
[  347.506752][T11636]  __debugfs_create_file+0xb3/0x4f0
[  347.506768][T11636]  debugfs_create_file_full+0x41/0x60
[  347.506783][T11636]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  347.506801][T11636]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  347.506829][T11636]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  347.506839][T11636]  ? alloc_netdev_mqs+0xd7/0x14f0
[  347.506851][T11636]  ? lockdep_init_map_type+0x5c/0x250
[  347.506869][T11636]  ? __pfx_ipip_tunnel_setup+0x10/0x10
[  347.506927][T11636]  alloc_netdev_mqs+0x314/0x14f0
[  347.506947][T11636]  rtnl_create_link+0xc13/0xf80
[  347.506963][T11636]  rtnl_newlink+0x13b8/0x2380
[  347.506980][T11636]  ? __pfx_rtnl_newlink+0x10/0x10
[  347.506990][T11636]  ? is_bpf_text_address+0x94/0x1a0
[  347.507009][T11636]  ? kernel_text_address+0x8d/0x100
[  347.507028][T11636]  ? arch_stack_walk+0xa6/0xf0
[  347.507046][T11636]  ? __pfx_stack_trace_save+0x10/0x10
[  347.507064][T11636]  ? find_held_lock+0x2b/0x80
[  347.507074][T11636]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  347.507085][T11636]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  347.507096][T11636]  ? __pfx_rtnl_newlink+0x10/0x10
[  347.507107][T11636]  rtnetlink_rcv_msg+0x95e/0xe90
[  347.507120][T11636]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.507134][T11636]  ? __lock_acquire+0x4a5/0x2630
[  347.507152][T11636]  netlink_rcv_skb+0x159/0x420
[  347.507165][T11636]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.507177][T11636]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  347.507194][T11636]  ? netlink_deliver_tap+0x1ae/0xcc0
[  347.507208][T11636]  netlink_unicast+0x5aa/0x870
[  347.507223][T11636]  ? __pfx_netlink_unicast+0x10/0x10
[  347.507234][T11636]  ? __pfx___might_resched+0x10/0x10
[  347.507256][T11636]  netlink_sendmsg+0x8b0/0xda0
[  347.507270][T11636]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.507285][T11636]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  347.507299][T11636]  ____sys_sendmsg+0x9e1/0xb70
[  347.507313][T11636]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.507326][T11636]  ? __pfx_____sys_sendmsg+0x10/0x10
[  347.507350][T11636]  ___sys_sendmsg+0x190/0x1e0
[  347.507367][T11636]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.507399][T11636]  __sys_sendmsg+0x170/0x220
[  347.507411][T11636]  ? __pfx___sys_sendmsg+0x10/0x10
[  347.507426][T11636]  ? __pfx_ksys_write+0x10/0x10
[  347.507441][T11636]  __do_fast_syscall_32+0xe3/0x8c0
[  347.507462][T11636]  do_fast_syscall_32+0x32/0x70
[  347.507483][T11636]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.507504][T11636] RIP: 0023:0xf6feef6c
[  347.507521][T11636] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  347.507538][T11636] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  347.507558][T11636] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  347.507570][T11636] RDX: 00000000040008c0 RSI: 0000000000000000 RDI: 0000000000000000
[  347.507580][T11636] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.507591][T11636] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  347.507602][T11636] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.507630][T11636]  </TASK>
[  348.024680][T11648] overlay: Unknown parameter 'uid'
[  348.104394][T11652] 9pnet_virtio: no channels available for device syz
[  348.132240][ T5934] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  348.140355][ T5934] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  348.144210][ T5934] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  348.147019][ T5934] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  348.149930][ T5934] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  348.188274][T11658] lo speed is unknown, defaulting to 1000
[  348.404111][  T363] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.836550][  T363] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.942081][  T363] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.951359][T11658] chnl_net:caif_netlink_parms(): no params data found
[  349.037573][  T363] netdevsim netdevsim5 netdevsim0 (unregistering): left promiscuous mode
[  349.043070][  T363] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.099495][T11658] bridge0: port 1(bridge_slave_0) entered blocking state
[  349.102162][T11658] bridge0: port 1(bridge_slave_0) entered disabled state
[  349.105157][T11658] bridge_slave_0: entered allmulticast mode
[  349.108369][T11658] bridge_slave_0: entered promiscuous mode
[  349.116365][T11658] bridge0: port 2(bridge_slave_1) entered blocking state
[  349.124332][T11658] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.126982][T11658] bridge_slave_1: entered allmulticast mode
[  349.130767][T11658] bridge_slave_1: entered promiscuous mode
[  349.210804][T11658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  349.240501][T11658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  349.429110][T11658] team0: Port device team_slave_0 added
[  349.436058][T11658] team0: Port device team_slave_1 added
[  349.456333][  T363] bridge_slave_1: left allmulticast mode
[  349.458783][  T363] bridge_slave_1: left promiscuous mode
[  349.469918][  T363] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.476036][  T363] bridge_slave_0: left allmulticast mode
[  349.478540][  T363] bridge_slave_0: left promiscuous mode
[  349.490008][  T363] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.114685][  T363] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  350.131816][  T363] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  350.155247][  T363] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  350.165552][  T363] bond0 (unregistering): Released all slaves
[  350.185459][  T363] bond1 (unregistering): Released all slaves
[  350.209903][   T63] Bluetooth: hci2: command tx timeout
[  350.287169][T11658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  350.290524][T11658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  350.301635][T11658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  350.393305][T11658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  350.395821][T11658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  350.405064][T11658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  350.567256][T11658] hsr_slave_0: entered promiscuous mode
[  350.573447][T11658] hsr_slave_1: entered promiscuous mode
[  350.576286][T11658] debugfs: 'hsr0' already exists in 'hsr'
[  350.578727][T11658] Cannot create hsr debugfs directory
[  350.926961][T11676] team0: Port device netdevsim0 removed
[  351.059804][  T363] dummy0: left promiscuous mode
[  351.101556][ T2290] libceph: connect (1)[c::]:6789 error -101
[  351.104252][ T2290] libceph: mon0 (1)[c::]:6789 connect error
[  351.196936][  T363] hsr_slave_0: left promiscuous mode
[  351.233961][  T363] hsr_slave_1: left promiscuous mode
[  351.250034][  T363] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  351.253718][  T363] batman_adv: batadv0: Removing interface: batadv_slave_0
[  351.259202][  T363] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  351.262202][  T363] batman_adv: batadv0: Removing interface: batadv_slave_1
[  351.290226][  T363] veth1_macvtap: left promiscuous mode
[  351.292100][  T363] veth0_macvtap: left promiscuous mode
[  351.293978][  T363] veth1_vlan: left promiscuous mode
[  351.295773][  T363] veth0_vlan: left promiscuous mode
[  351.409513][ T2290] libceph: connect (1)[c::]:6789 error -101
[  351.411998][ T2290] libceph: mon0 (1)[c::]:6789 connect error
[  351.619719][  T363] team0 (unregistering): Port device team_slave_1 removed
[  351.627022][  T363] team0 (unregistering): Port device team_slave_0 removed
[  351.750763][T11701] ceph: No mds server is up or the cluster is laggy
[  352.289871][   T63] Bluetooth: hci2: command tx timeout
[  353.777790][  T363] IPVS: stop unused estimator thread 0...
[  353.957027][T11658] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  353.968327][T11658] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  353.974753][T11658] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  353.980629][T11658] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  354.090728][T11658] 8021q: adding VLAN 0 to HW filter on device bond0
[  354.103920][T11658] 8021q: adding VLAN 0 to HW filter on device team0
[  354.114670][  T363] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.117199][  T363] bridge0: port 1(bridge_slave_0) entered forwarding state
[  354.142014][  T363] bridge0: port 2(bridge_slave_1) entered blocking state
[  354.144443][  T363] bridge0: port 2(bridge_slave_1) entered forwarding state
[  354.328922][T11658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  354.370001][   T63] Bluetooth: hci2: command tx timeout
[  354.474778][T11658] veth0_vlan: entered promiscuous mode
[  354.481670][T11658] veth1_vlan: entered promiscuous mode
[  354.498633][T11658] veth0_macvtap: entered promiscuous mode
[  354.507983][T11658] veth1_macvtap: entered promiscuous mode
[  354.518793][T11658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  354.529026][T11658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  354.536889][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  354.542655][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  354.548662][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  354.553178][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  354.597769][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.601104][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.621269][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.624417][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.633953][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.637285][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.641866][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.645012][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.648087][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.652807][T11775] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.673889][T11771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.674985][T11780] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1696'.
[  354.782566][T11780] lo speed is unknown, defaulting to 1000
[  354.835874][T11788] can0: slcan on ttyS3.
[  354.851407][T11792] netlink: 'syz.0.1698': attribute type 8 has an invalid length.
[  354.937316][T11788] can0 (unregistered): slcan off ttyS3.
[  354.996939][T11798] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1697'.
[  355.047732][T11798] lo speed is unknown, defaulting to 1000
[  356.035877][T11818] fuse: Bad value for 'fd'
[  356.164766][T11820] 8021q: adding VLAN 0 to HW filter on device bond2
[  356.240703][T11828] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1704'.
[  356.336088][T11814] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1708'.
[  356.425299][T11814] lo speed is unknown, defaulting to 1000
[  356.449852][   T63] Bluetooth: hci2: command tx timeout
[  356.618676][T11844] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1710'.
[  356.737226][T11846] can0: slcan on ttyS3.
[  356.790516][T11846] can0 (unregistered): slcan off ttyS3.
[  356.793839][T11844] lo speed is unknown, defaulting to 1000
[  357.360125][T11851] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1712'.
[  357.453484][T11851] lo speed is unknown, defaulting to 1000
[  359.420455][T11877] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1719'.
[  361.031273][T11922] FAULT_INJECTION: forcing a failure.
[  361.031273][T11922] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.035706][T11922] CPU: 0 UID: 0 PID: 11922 Comm: syz.2.1730 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  361.035726][T11922] Tainted: [L]=SOFTLOCKUP
[  361.035730][T11922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  361.035737][T11922] Call Trace:
[  361.035743][T11922]  <TASK>
[  361.035748][T11922]  dump_stack_lvl+0x100/0x190
[  361.035771][T11922]  should_fail_ex.cold+0x5/0xa
[  361.035785][T11922]  _copy_to_user+0x32/0xd0
[  361.035802][T11922]  simple_read_from_buffer+0xcb/0x170
[  361.035848][T11922]  proc_fail_nth_read+0x1af/0x230
[  361.035868][T11922]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.035883][T11922]  ? rw_verify_area+0xce/0x6d0
[  361.035900][T11922]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.035914][T11922]  vfs_read+0x1e4/0xb30
[  361.035927][T11922]  ? __pfx_vfs_read+0x10/0x10
[  361.035937][T11922]  ? find_held_lock+0x2b/0x80
[  361.035948][T11922]  ? __fget_files+0x215/0x3d0
[  361.035963][T11922]  ? __fget_files+0x21f/0x3d0
[  361.035977][T11922]  ksys_read+0x12a/0x250
[  361.035988][T11922]  ? __pfx_ksys_read+0x10/0x10
[  361.036003][T11922]  do_int80_emulation+0x141/0x6b0
[  361.036018][T11922]  asm_int80_emulation+0x1a/0x20
[  361.036031][T11922] RIP: 0023:0xf7125cab
[  361.036040][T11922] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  361.036051][T11922] RSP: 002b:00000000f53dd4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  361.036063][T11922] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f53dd5d0
[  361.036069][T11922] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  361.036075][T11922] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.036082][T11922] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  361.036088][T11922] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.036101][T11922]  </TASK>
[  361.146969][T11924] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1733'.
[  361.320141][T11936] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1736'.
[  361.665510][T11945] lo speed is unknown, defaulting to 1000
[  361.867768][ T6022] libceph: connect (1)[c::]:6789 error -101
[  361.871726][ T6022] libceph: mon0 (1)[c::]:6789 connect error
[  362.121423][T11941] ceph: No mds server is up or the cluster is laggy
[  362.511743][T11956] netlink: 'syz.2.1742': attribute type 8 has an invalid length.
[  362.515055][T11956] FAULT_INJECTION: forcing a failure.
[  362.515055][T11956] name failslab, interval 1, probability 0, space 0, times 0
[  362.539680][T11956] CPU: 2 UID: 0 PID: 11956 Comm: syz.2.1742 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.539704][T11956] Tainted: [L]=SOFTLOCKUP
[  362.539708][T11956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  362.539716][T11956] Call Trace:
[  362.539721][T11956]  <TASK>
[  362.539727][T11956]  dump_stack_lvl+0x100/0x190
[  362.539754][T11956]  should_fail_ex.cold+0x5/0xa
[  362.539770][T11956]  should_failslab+0xc2/0x120
[  362.539784][T11956]  __kmalloc_cache_noprof+0x7a/0x6f0
[  362.539801][T11956]  ? vlan_vid_add+0x326/0x730
[  362.539840][T11956]  vlan_vid_add+0x326/0x730
[  362.539856][T11956]  __br_vlan_set_proto+0x2d8/0xbf0
[  362.539879][T11956]  ? __pfx___br_vlan_set_proto+0x10/0x10
[  362.539900][T11956]  ? rtnl_newlink+0x8bb/0x2380
[  362.539911][T11956]  ? __nla_validate_parse+0x1e7/0x28b0
[  362.539926][T11956]  br_changelink+0x462/0x16d0
[  362.539941][T11956]  ? rcu_is_watching+0x12/0xc0
[  362.539961][T11956]  ? __pfx_br_changelink+0x10/0x10
[  362.539979][T11956]  ? ns_capable+0xd2/0xf0
[  362.539994][T11956]  ? __pfx_br_changelink+0x10/0x10
[  362.540008][T11956]  rtnl_newlink+0x1005/0x2380
[  362.540048][T11956]  ? __pfx_rtnl_newlink+0x10/0x10
[  362.540060][T11956]  ? is_bpf_text_address+0x94/0x1a0
[  362.540080][T11956]  ? kernel_text_address+0x8d/0x100
[  362.540097][T11956]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  362.540110][T11956]  ? __kernel_text_address+0xd/0x30
[  362.540128][T11956]  ? unwind_get_return_address+0x59/0xa0
[  362.540142][T11956]  ? arch_stack_walk+0xa6/0xf0
[  362.540162][T11956]  ? __pfx_stack_trace_save+0x10/0x10
[  362.540179][T11956]  ? find_held_lock+0x2b/0x80
[  362.540191][T11956]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  362.540202][T11956]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  362.540218][T11956]  ? __pfx_rtnl_newlink+0x10/0x10
[  362.540230][T11956]  rtnetlink_rcv_msg+0x95e/0xe90
[  362.540243][T11956]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  362.540258][T11956]  ? __lock_acquire+0x4a5/0x2630
[  362.540276][T11956]  netlink_rcv_skb+0x159/0x420
[  362.540291][T11956]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  362.540304][T11956]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  362.540322][T11956]  ? netlink_deliver_tap+0x1ae/0xcc0
[  362.540336][T11956]  netlink_unicast+0x5aa/0x870
[  362.540351][T11956]  ? __pfx_netlink_unicast+0x10/0x10
[  362.540369][T11956]  netlink_sendmsg+0x8b0/0xda0
[  362.540384][T11956]  ? __pfx_netlink_sendmsg+0x10/0x10
[  362.540399][T11956]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  362.540415][T11956]  ____sys_sendmsg+0x9e1/0xb70
[  362.540430][T11956]  ? __pfx_netlink_sendmsg+0x10/0x10
[  362.540443][T11956]  ? __pfx_____sys_sendmsg+0x10/0x10
[  362.540465][T11956]  ___sys_sendmsg+0x190/0x1e0
[  362.540482][T11956]  ? __pfx____sys_sendmsg+0x10/0x10
[  362.540524][T11956]  __sys_sendmsg+0x170/0x220
[  362.540541][T11956]  ? __pfx___sys_sendmsg+0x10/0x10
[  362.540566][T11956]  ? __pfx_ksys_write+0x10/0x10
[  362.540589][T11956]  __do_fast_syscall_32+0xe3/0x8c0
[  362.540615][T11956]  do_fast_syscall_32+0x32/0x70
[  362.540630][T11956]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.540645][T11956] RIP: 0023:0xf6feef6c
[  362.540656][T11956] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  362.540668][T11956] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  362.540680][T11956] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800000c0
[  362.540688][T11956] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  362.540695][T11956] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.540701][T11956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  362.540708][T11956] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.540723][T11956]  </TASK>
[  362.856830][   T40] audit: type=1400 audit(1775447162.298:20650): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=11962 comm="syz.2.1744"
[  362.857967][T11963] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1744'.
[  362.893548][T11963] input: syz1 as /devices/virtual/input/input23
[  362.911060][T11963] tc_dump_action: action bad kind
[  363.316787][T11978] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  363.371958][T11983] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1752'.
[  363.619185][T11993] vlan2: entered promiscuous mode
[  363.621266][T11993] vlan2: entered allmulticast mode
[  363.623001][T11993] hsr_slave_1: entered allmulticast mode
[  363.673691][T11997] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  363.675832][T11997] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  363.681931][T12003] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1755'.
[  363.686427][T11997] vhci_hcd vhci_hcd.0: Device attached
[  363.705983][T11999] vhci_hcd: connection closed
[  363.706223][ T1169] vhci_hcd vhci_hcd.5: stop threads
[  363.709546][ T1169] vhci_hcd vhci_hcd.5: release socket
[  363.711587][ T1169] vhci_hcd vhci_hcd.5: disconnect device
[  363.756154][T12007] syzkaller0: entered promiscuous mode
[  363.757944][T12007] syzkaller0: entered allmulticast mode
[  363.892175][T12013] FAULT_INJECTION: forcing a failure.
[  363.892175][T12013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.896485][T12013] CPU: 0 UID: 0 PID: 12013 Comm: syz.1.1762 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  363.896503][T12013] Tainted: [L]=SOFTLOCKUP
[  363.896507][T12013] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  363.896514][T12013] Call Trace:
[  363.896519][T12013]  <TASK>
[  363.896524][T12013]  dump_stack_lvl+0x100/0x190
[  363.896547][T12013]  should_fail_ex.cold+0x5/0xa
[  363.896561][T12013]  _copy_to_user+0x32/0xd0
[  363.896578][T12013]  bpf_test_finish.isra.0+0x452/0x660
[  363.896599][T12013]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  363.896619][T12013]  ? skb_checksum+0x7f4/0x950
[  363.896639][T12013]  bpf_prog_test_run_skb+0x21a7/0x3230
[  363.896660][T12013]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  363.896674][T12013]  ? fput+0x79/0x100
[  363.896690][T12013]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  363.896712][T12013]  __sys_bpf+0x1725/0x4b90
[  363.896730][T12013]  ? __pfx___sys_bpf+0x10/0x10
[  363.896743][T12013]  ? proc_fail_nth_write+0x9f/0x220
[  363.896758][T12013]  ? find_held_lock+0x2b/0x80
[  363.896773][T12013]  ? find_held_lock+0x2b/0x80
[  363.896784][T12013]  ? ksys_write+0x190/0x250
[  363.896797][T12013]  ? __mutex_unlock_slowpath+0x15c/0x790
[  363.896819][T12013]  ? fput+0x79/0x100
[  363.896832][T12013]  ? ksys_write+0x1ac/0x250
[  363.896845][T12013]  __ia32_sys_bpf+0x79/0xf0
[  363.896859][T12013]  ? lockdep_hardirqs_on+0x78/0x100
[  363.896871][T12013]  __do_fast_syscall_32+0xe3/0x8c0
[  363.896886][T12013]  do_fast_syscall_32+0x32/0x70
[  363.896899][T12013]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  363.896914][T12013] RIP: 0023:0xf6ffef6c
[  363.896924][T12013] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  363.896936][T12013] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  363.896947][T12013] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  363.896954][T12013] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  363.896961][T12013] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  363.896967][T12013] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  363.896973][T12013] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  363.896987][T12013]  </TASK>
[  365.701798][T12041] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  365.752867][T12041] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1771'.
[  366.885341][T12063] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1778'.
[  366.954511][T12065] syzkaller0: entered promiscuous mode
[  366.956614][T12065] syzkaller0: entered allmulticast mode
[  368.807892][   T40] audit: type=1326 audit(1775447168.248:20651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12093 comm="syz.0.1788" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f14f6c code=0x0
[  369.195931][T12099] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  369.200513][T12099] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  369.258509][T12102] comedi comedi0: comedi_config --init_data is deprecated
[  369.455480][   T40] audit: type=1800 audit(1775447168.898:20652): pid=12104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1789" name="cgroup.controllers" dev="tmpfs" ino=2366 res=0 errno=0
[  369.912299][T12120] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1797'.
[  369.956828][T12120] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.968187][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.976105][T12120] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.990600][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.998753][T12120] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.002588][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.006192][T12120] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.105598][T12134] netlink: 'syz.0.1801': attribute type 1 has an invalid length.
[  370.170544][T12131] Cache volume key already in use (9p,syz,)
[  370.770456][T12154] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  371.051355][T12160] netlink: zone id is out of range
[  371.054228][T12160] netlink: zone id is out of range
[  371.069979][T12160] netlink: zone id is out of range
[  371.083136][T12166] 9pnet_fd: Insufficient options for proto=fd
[  371.387555][T12185] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1814'.
[  371.488339][T12189] mac80211_hwsim hwsim7 syzkaller0: entered allmulticast mode
[  371.773468][T12203] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1820'.
[  371.999031][   T63] Bluetooth: hci2: Invalid handle: 0x8e5a > 0x0eff
[  372.884251][ T2290] libceph: connect (1)[c::]:6789 error -101
[  372.886817][ T2290] libceph: mon0 (1)[c::]:6789 connect error
[  372.891690][ T2290] libceph: connect (1)[c::]:6789 error -101
[  372.894664][ T2290] libceph: mon0 (1)[c::]:6789 connect error
[  372.951925][T12227] 8021q: adding VLAN 0 to HW filter on device batadv1
[  373.161440][ T6022] libceph: connect (1)[c::]:6789 error -101
[  373.164277][ T6022] libceph: mon0 (1)[c::]:6789 connect error
[  373.165540][T12231] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1827'.
[  373.476655][T12224] ceph: No mds server is up or the cluster is laggy
[  374.421429][T12243] netlink: 'syz.5.1830': attribute type 10 has an invalid length.
[  374.434424][T12243] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  374.440254][T12243] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1830'.
[  374.482572][T12243] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1830'.
[  374.940688][T12263] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1835'.
[  376.095023][T12275] serio: Serial port ptm0
[  376.146569][T12278] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1840'.
[  376.393423][T12284] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1841'.
[  376.997777][T12294] FAULT_INJECTION: forcing a failure.
[  376.997777][T12294] name failslab, interval 1, probability 0, space 0, times 0
[  377.002150][T12294] CPU: 3 UID: 0 PID: 12294 Comm: syz.1.1845 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.002169][T12294] Tainted: [L]=SOFTLOCKUP
[  377.002173][T12294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  377.002180][T12294] Call Trace:
[  377.002184][T12294]  <TASK>
[  377.002189][T12294]  dump_stack_lvl+0x100/0x190
[  377.002211][T12294]  should_fail_ex.cold+0x5/0xa
[  377.002225][T12294]  ? tomoyo_encode2+0xfb/0x3c0
[  377.002242][T12294]  should_failslab+0xc2/0x120
[  377.002254][T12294]  __kmalloc_noprof+0xe0/0x850
[  377.002274][T12294]  tomoyo_encode2+0xfb/0x3c0
[  377.002292][T12294]  tomoyo_encode+0x29/0x50
[  377.002307][T12294]  tomoyo_realpath_from_path+0x18c/0x690
[  377.002327][T12294]  tomoyo_path_number_perm+0x23c/0x580
[  377.002340][T12294]  ? tomoyo_path_number_perm+0x22e/0x580
[  377.002354][T12294]  ? __pte_offset_map+0xe4/0x310
[  377.002365][T12294]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  377.002393][T12294]  ? find_held_lock+0x2b/0x80
[  377.002404][T12294]  ? hook_file_ioctl_common+0x146/0x410
[  377.002419][T12294]  ? __fget_files+0x215/0x3d0
[  377.002437][T12294]  ? __fget_files+0x21f/0x3d0
[  377.002450][T12294]  security_file_ioctl_compat+0xd3/0x230
[  377.002466][T12294]  __ia32_compat_sys_ioctl+0xc2/0x360
[  377.002485][T12294]  __do_fast_syscall_32+0xe3/0x8c0
[  377.002501][T12294]  do_fast_syscall_32+0x32/0x70
[  377.002513][T12294]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  377.002528][T12294] RIP: 0023:0xf6ffef6c
[  377.002539][T12294] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  377.002550][T12294] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  377.002561][T12294] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c008ae88
[  377.002568][T12294] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  377.002575][T12294] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  377.002581][T12294] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  377.002587][T12294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  377.002600][T12294]  </TASK>
[  377.002611][T12294] ERROR: Out of memory at tomoyo_realpath_from_path.
[  377.761836][   T40] audit: type=1326 audit(1775447177.198:20653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12303 comm="syz.0.1849" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f14f6c code=0x0
[  377.764624][T12306] net_ratelimit: 4 callbacks suppressed
[  377.764636][T12306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.773880][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  378.369747][ T6003] usb 10-1: new full-speed USB device number 15 using dummy_hcd
[  378.521051][ T6003] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  378.523869][ T6003] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  378.526747][ T6003] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  378.539682][ T6003] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  378.552725][ T6003] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  378.555627][ T6003] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  378.559875][ T6003] usb 10-1: Product: syz
[  378.561291][ T6003] usb 10-1: Manufacturer: syz
[  378.562808][ T6003] usb 10-1: SerialNumber: syz
[  378.754900][T12324] tipc: Resetting bearer <eth:syzkaller0>
[  378.780996][ T6003] usb 10-1: USB disconnect, device number 15
[  378.913488][T12336] Cache volume key already in use (9p,syz,)
[  379.182582][T12340] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1862'.
[  379.186505][T12340] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1862'.
[  380.255721][T12360] netlink: 'syz.0.1871': attribute type 2 has an invalid length.
[  380.263947][T12360] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1871'.
[  380.362109][T12373] 9pnet_virtio: no channels available for device syz
[  380.649811][ T6022] usb 6-1: new full-speed USB device number 38 using dummy_hcd
[  380.810641][ T6022] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  380.814053][ T6022] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  380.817058][ T6022] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  380.821441][ T6022] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  380.828112][ T6022] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  380.835428][ T6022] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  380.838140][ T6022] usb 6-1: Product: syz
[  380.840113][ T6022] usb 6-1: Manufacturer: syz
[  380.841670][ T6022] usb 6-1: SerialNumber: syz
[  381.082814][ T6022] usb 6-1: USB disconnect, device number 38
[  381.330857][T12387] Trying to write to read-only block-device nullb0
[  381.823987][T12409] 9pnet_virtio: no channels available for device syz
[  382.067614][T12412] overlayfs: failed to resolve './bus': -2
[  382.073241][T12412] overlayfs: failed to clone upperpath
[  382.297749][T12416] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1891'.
[  382.799867][  T841] usb 10-1: new full-speed USB device number 16 using dummy_hcd
[  382.951412][  T841] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  382.954426][  T841] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  382.957697][  T841] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  382.961708][  T841] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  382.966685][  T841] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  382.970473][  T841] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  382.974108][  T841] usb 10-1: Product: syz
[  382.975532][  T841] usb 10-1: Manufacturer: syz
[  382.977158][  T841] usb 10-1: SerialNumber: syz
[  383.193270][  T841] usb 10-1: USB disconnect, device number 16
[  383.492227][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  383.540174][T12442] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  385.630947][T12486] random: crng reseeded on system resumption
[  387.649783][   T24] usb 6-1: new full-speed USB device number 39 using dummy_hcd
[  387.811218][   T24] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  387.813911][   T24] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  387.816638][   T24] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  387.820203][   T24] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  387.825360][   T24] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  387.828376][   T24] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  387.831368][   T24] usb 6-1: Product: syz
[  387.832899][   T24] usb 6-1: Manufacturer: syz
[  387.834501][   T24] usb 6-1: SerialNumber: syz
[  388.056681][   T24] usb 6-1: USB disconnect, device number 39
[  390.613687][T12588] netem: change failed
[  390.644426][T12589] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1943'.
[  392.089828][    T9] usb 10-1: new full-speed USB device number 17 using dummy_hcd
[  392.095170][T12647] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1960'.
[  392.252421][    T9] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  392.256183][    T9] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  392.260603][    T9] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  392.264990][    T9] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  392.272175][    T9] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  392.275592][    T9] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  392.278912][    T9] usb 10-1: Product: syz
[  392.281558][    T9] usb 10-1: Manufacturer: syz
[  392.283466][    T9] usb 10-1: SerialNumber: syz
[  392.499596][    T9] usb 10-1: USB disconnect, device number 17
[  393.003847][T12658] netlink: 'syz.1.1966': attribute type 12 has an invalid length.
[  393.391461][T12677] Invalid logical block size (1792)
[  393.839946][  T841] usb 10-1: new full-speed USB device number 18 using dummy_hcd
[  393.991287][  T841] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  393.994179][  T841] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  393.997135][  T841] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  394.001034][  T841] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  394.005932][  T841] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  394.009278][  T841] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  394.012308][  T841] usb 10-1: Product: syz
[  394.013733][  T841] usb 10-1: Manufacturer: syz
[  394.015315][  T841] usb 10-1: SerialNumber: syz
[  394.239860][  T841] usb 10-1: USB disconnect, device number 18
[  394.566561][T12694] netlink: 'syz.0.1979': attribute type 12 has an invalid length.
[  396.207616][T12744] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1996'.
[  396.236724][T12744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1996'.
[  396.380451][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  396.677595][T12774] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  396.679778][T12774] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  396.682913][T12774] vhci_hcd vhci_hcd.0: Device attached
[  396.698087][T12774] random: crng reseeded on system resumption
[  396.979740][ T6022] usb 40-1: SetAddress Request (14) to port 0
[  396.982677][ T6022] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[  397.313448][T12775] vhci_hcd: connection reset by peer
[  397.315908][ T1142] vhci_hcd vhci_hcd.1: stop threads
[  397.318074][ T1142] vhci_hcd vhci_hcd.1: release socket
[  397.320464][ T1142] vhci_hcd vhci_hcd.1: disconnect device
[  402.049934][ T6022] usb 40-1: device descriptor read/8, error -110
[  402.440313][ T6022] usb usb40-port1: attempt power cycle
[  403.010854][ T6022] usb usb40-port1: unable to enumerate USB device
[  403.424962][   T40] audit: type=1326 audit(1775447202.868:20654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.849821][   T40] audit: type=1326 audit(1775447202.868:20655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.857165][   T40] audit: type=1326 audit(1775447202.868:20656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.864752][   T40] audit: type=1326 audit(1775447202.868:20657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.873241][   T40] audit: type=1326 audit(1775447202.868:20658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.880757][   T40] audit: type=1326 audit(1775447202.868:20659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.887498][   T40] audit: type=1326 audit(1775447202.868:20660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.894969][   T40] audit: type=1326 audit(1775447202.868:20661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.902366][   T40] audit: type=1326 audit(1775447202.868:20662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  403.909140][   T40] audit: type=1326 audit(1775447202.868:20663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.2006" exe="/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf7f14f6c code=0x7ffc0000
[  404.777450][T12848] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  404.780321][T12848] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  404.806419][T12848] vhci_hcd vhci_hcd.0: Device attached
[  404.842702][T12848] random: crng reseeded on system resumption
[  405.069745][ T6022] usb 48-1: SetAddress Request (10) to port 0
[  405.071913][ T6022] usb 48-1: new SuperSpeed USB device number 10 using vhci_hcd
[  405.319904][T12849] vhci_hcd: connection reset by peer
[  405.322141][ T1142] vhci_hcd vhci_hcd.5: stop threads
[  405.324106][ T1142] vhci_hcd vhci_hcd.5: release socket
[  405.326652][ T1142] vhci_hcd vhci_hcd.5: disconnect device
[  406.549118][   T63] Bluetooth: hci3: hardware error 0x00
[  406.840509][ T2290] usb 10-1: new full-speed USB device number 19 using dummy_hcd
[  407.061336][ T2290] usb 10-1: config index 0 descriptor too short (expected 59886, got 27)
[  407.068978][ T2290] usb 10-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  407.073186][ T2290] usb 10-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  407.078305][ T2290] usb 10-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  407.086689][ T2290] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  407.091705][ T2290] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  407.099810][ T2290] usb 10-1: Product: syz
[  407.110625][ T2290] usb 10-1: Manufacturer: syz
[  407.114344][ T2290] usb 10-1: SerialNumber: syz
[  407.384266][ T2290] usb 10-1: USB disconnect, device number 19
[  408.610151][   T63] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  409.810439][T12950] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  410.030873][T12954] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  410.033119][T12954] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  410.036657][T12954] vhci_hcd vhci_hcd.0: Device attached
[  410.118162][T12963] random: crng reseeded on system resumption
[  410.211203][ T6022] usb 48-1: device descriptor read/8, error -110
[  410.340036][ T2290] usb 42-1: SetAddress Request (22) to port 0
[  410.343085][ T2290] usb 42-1: new SuperSpeed USB device number 22 using vhci_hcd
[  410.388842][T12976] input: syz0 as /devices/virtual/input/input24
[  410.479287][T12980] qnx4: unable to read the superblock
[  410.702045][ T6022] usb usb48-port1: attempt power cycle
[  412.292915][T12955] vhci_hcd: connection reset by peer
[  412.297047][  T105] vhci_hcd vhci_hcd.2: stop threads
[  412.298736][  T105] vhci_hcd vhci_hcd.2: release socket
[  412.300720][  T105] vhci_hcd vhci_hcd.2: disconnect device
[  412.312654][T12992] usb usb1: usbfs: process 12992 (syz.5.2066) did not claim interface 0 before use
[  412.391578][T13001] comedi: valid board names for 8255 driver are:
[  412.394023][T13001]  8255
[  412.395179][T13001] comedi: valid board names for vmk80xx driver are:
[  412.397969][T13001]  vmk80xx
[  412.399327][T13001] comedi: valid board names for usbduxsigma driver are:
[  412.402936][T13001]  usbduxsigma
[  412.404309][T13001] comedi: valid board names for usbduxfast driver are:
[  412.407090][T13001]  usbduxfast
[  412.408519][T13001] comedi: valid board names for usbdux driver are:
[  412.411447][T13001]  usbdux
[  412.412663][T13001] comedi: valid board names for ni6501 driver are:
[  412.415264][T13001]  ni6501
[  412.416458][T13001] comedi: valid board names for dt9812 driver are:
[  412.419022][T13001]  dt9812
[  412.420476][T13001] comedi: valid board names for ni_labpc_cs driver are:
[  412.423295][T13001]  ni_labpc_cs
[  412.424711][T13001] comedi: valid board names for ni_daq_700 driver are:
[  412.427414][T13001]  ni_daq_700
[  412.428788][T13001] comedi: valid board names for labpc_pci driver are:
[  412.431930][T13001]  labpc_pci
[  412.433248][T13001] comedi: valid board names for adl_pci9118 driver are:
[  412.436042][T13001]  pci9118dg
[  412.437357][T13001]  pci9118hg
[  412.438666][T13001]  pci9118hr
[  412.440185][T13001] comedi: valid board names for 8255_pci driver are:
[  412.442975][T13001]  8255_pci
[  412.444384][T13001] comedi: valid board names for s526 driver are:
[  412.447056][T13001]  s526
[  412.448222][T13001] comedi: valid board names for multiq3 driver are:
[  412.451047][T13001]  multiq3
[  412.452352][T13001] comedi: valid board names for pcmuio driver are:
[  412.454887][T13001]  pcmuio48
[  412.455960][T13001]  pcmuio96
[  412.456992][T13001] comedi: valid board names for pcmmio driver are:
[  412.459053][T13001]  pcmmio
[  412.460480][T13001] comedi: valid board names for pcmda12 driver are:
[  412.462764][T13001]  pcmda12
[  412.463861][T13001] comedi: valid board names for pcmad driver are:
[  412.465979][T13001]  pcmad12
[  412.466984][T13001]  pcmad16
[  412.468004][T13001] comedi: valid board names for ni_labpc driver are:
[  412.470389][T13001]  lab-pc-1200
[  412.471513][T13001]  lab-pc-1200ai
[  412.472684][T13001]  lab-pc+
[  412.473685][T13001] comedi: valid board names for atmio16 driver are:
[  412.475830][T13001]  atmio16
[  412.479785][T13001]  atmio16d
[  412.481267][T13001] comedi: valid board names for ni_at_ao driver are:
[  412.483622][T13001]  at-ao-6
[  412.484868][T13001]  at-ao-10
[  412.486169][T13001] comedi: valid board names for ni_at_a2150 driver are:
[  412.488984][T13001]  ni_at_a2150
[  412.490532][T13001] comedi: valid board names for adq12b driver are:
[  412.493026][T13001]  adq12b
[  412.494495][T13001] comedi: valid board names for mpc624 driver are:
[  412.497298][T13001]  mpc624
[  412.498530][T13001] comedi: valid board names for c6xdigio driver are:
[  412.501487][T13001]  c6xdigio
[  412.502602][T13001] comedi: valid board names for aio_iiro_16 driver are:
[  412.505208][T13001]  aio_iiro_16
[  412.506595][T13001] comedi: valid board names for aio_aio12_8 driver are:
[  412.511240][T13001]  aio_aio12_8
[  412.512623][T13001]  aio_ai12_8
[  412.513748][T13001]  aio_ao12_4
[  412.515105][T13001] comedi: valid board names for fl512 driver are:
[  412.517678][T13001]  fl512
[  412.518864][T13001] comedi: valid board names for dmm32at driver are:
[  412.521690][T13001]  dmm32at
[  412.522719][T13001] comedi: valid board names for dt282x driver are:
[  412.525351][T13001]  dt2821
[  412.526680][T13001]  dt2821-f
[  412.528080][T13001]  dt2821-g
[  412.529444][T13001]  dt2823
[  412.530785][T13001]  dt2824-pgh
[  412.532168][T13001]  dt2824-pgl
[  412.533317][T13001]  dt2825
[  412.534389][T13001]  dt2827
[  412.535609][T13001]  dt2828
[  412.536823][T13001]  dt2829
[  412.538043][T13001]  dt21-ez
[  412.539369][T13001]  dt23-ez
[  412.540925][T13001]  dt24-ez
[  412.542336][T13001]  dt24-ez-pgl
[  412.543856][T13001] comedi: valid board names for dt2817 driver are:
[  412.546160][T13001]  dt2817
[  412.547383][T13001] comedi: valid board names for dt2815 driver are:
[  412.550074][T13001]  dt2815
[  412.551316][T13001] comedi: valid board names for dt2814 driver are:
[  412.552556][T13010] overlayfs: failed to clone upperpath
[  412.553942][T13001]  dt2814
[  412.561374][T13001] comedi: valid board names for dt2811 driver are:
[  412.564027][T13001]  dt2811-pgh
[  412.565217][T13001]  dt2811-pgl
[  412.566430][T13001] comedi: valid board names for dt2801 driver are:
[  412.569040][T13001]  dt2801
[  412.579697][T13001] comedi: valid board names for das6402 driver are:
[  412.582393][T13001]  das6402-12
[  412.583780][T13001]  das6402-16
[  412.585103][T13001] comedi: valid board names for das1800 driver are:
[  412.587409][T13001]  das-1701st
[  412.588786][T13001]  das-1701st-da
[  412.590769][T13001]  das-1702st
[  412.592183][T13001]  das-1702st-da
[  412.593736][T13001]  das-1702hr
[  412.595420][T13001]  das-1702hr-da
[  412.596675][T13001]  das-1701ao
[  412.598045][T13001]  das-1702ao
[  412.599416][T13001]  das-1801st
[  412.599765][    T9] usb 6-1: new full-speed USB device number 40 using dummy_hcd
[  412.609302][T13001]  das-1801st-da
[  412.612493][T13001]  das-1802st
[  412.614927][T13001]  das-1802st-da
[  412.616416][T13001]  das-1802hr
[  412.617777][T13001]  das-1802hr-da
[  412.619234][T13001]  das-1801hc
[  412.620926][T13001]  das-1802hc
[  412.622311][T13001]  das-1801ao
[  412.623695][T13001]  das-1802ao
[  412.625074][T13001] comedi: valid board names for das800 driver are:
[  412.629761][T13001]  das-800
[  412.631083][T13001]  cio-das800
[  412.632470][T13001]  das-801
[  412.633742][T13001]  cio-das801
[  412.635118][T13001]  das-802
[  412.636398][T13001]  cio-das802
[  412.640097][T13001]  cio-das802/16
[  412.641613][T13001] comedi: valid board names for isa-das08 driver are:
[  412.644331][T13001]  isa-das08
[  412.645678][T13001]  das08-pgm
[  412.647017][T13001]  das08-pgh
[  412.648368][T13001]  das08-pgl
[  412.649799][T13001]  das08-aoh
[  412.651165][T13001]  das08-aol
[  412.652537][T13001]  das08-aom
[  412.653933][T13001]  das08/jr-ao
[  412.655384][T13001]  das08jr-16-ao
[  412.656919][T13001]  pc104-das08
[  412.658333][T13001]  das08jr/16
[  412.659936][T13001] comedi: valid board names for das16m1 driver are:
[  412.662115][T13001]  das16m1
[  412.663126][T13001] comedi: valid board names for dac02 driver are:
[  412.665301][T13001]  dac02
[  412.666450][T13001] comedi: valid board names for rti802 driver are:
[  412.668535][T13001]  rti802
[  412.669505][T13001] comedi: valid board names for rti800 driver are:
[  412.671828][T13001]  rti800
[  412.672828][T13001]  rti815
[  412.673780][T13001] comedi: valid board names for pcm3724 driver are:
[  412.675891][T13001]  pcm3724
[  412.676894][T13001] comedi: valid board names for pcl818 driver are:
[  412.679046][T13001]  pcl818l
[  412.680185][T13001]  pcl818h
[  412.681181][T13001]  pcl818hd
[  412.682220][T13001]  pcl818hg
[  412.683270][T13001]  pcl818
[  412.684251][T13001]  pcl718
[  412.685297][T13001]  pcm3718
[  412.686359][T13001] comedi: valid board names for pcl816 driver are:
[  412.688499][T13001]  pcl816
[  412.689490][T13001]  pcl814b
[  412.690622][T13001] comedi: valid board names for pcl812 driver are:
[  412.692686][T13001]  pcl812
[  412.693653][T13001]  pcl812pg
[  412.694693][T13001]  acl8112pg
[  412.695942][T13001]  acl8112dg
[  412.697054][T13001]  acl8112hg
[  412.698137][T13001]  a821pgl
[  412.699171][T13001]  a821pglnda
[  412.700420][T13001]  a821pgh
[  412.701484][T13001]  a822pgl
[  412.702574][T13001]  a822pgh
[  412.703665][T13001]  a823pgl
[  412.704860][T13001]  a823pgh
[  412.705939][T13001]  pcl813
[  412.706918][T13001]  pcl813b
[  412.707946][T13001]  acl8113
[  412.708952][T13001]  iso813
[  412.710042][T13001]  acl8216
[  412.711047][T13001]  a826pg
[  412.712009][T13001] comedi: valid board names for pcl730 driver are:
[  412.714069][T13001]  pcl730
[  412.715148][T13001]  iso730
[  412.716465][T13001]  acl7130
[  412.717880][T13001]  pcm3730
[  412.719165][T13001]  pcl725
[  412.720384][T13001]  p8r8dio
[  412.721504][T13001]  acl7225b
[  412.722823][T13001]  p16r16dio
[  412.724144][T13001]  pcl733
[  412.725195][T13001]  pcl734
[  412.726178][T13001]  opmm-1616-xt
[  412.727307][T13001]  pearl-mm-p
[  412.728506][T13001]  ir104-pbf
[  412.729568][T13001] comedi: valid board names for pcl726 driver are:
[  412.731724][T13001]  pcl726
[  412.732697][T13001]  pcl727
[  412.733665][T13001]  pcl728
[  412.734631][T13001]  acl6126
[  412.735724][T13001]  acl6128
[  412.736743][T13001] comedi: valid board names for pcl724 driver are:
[  412.738767][T13001]  pcl724
[  412.739814][T13001]  pcl722
[  412.740802][T13001]  pcl731
[  412.741753][T13001]  acl7122
[  412.742752][T13001]  acl7124
[  412.743775][T13001]  pet48dio
[  412.744863][T13001]  pcmio48
[  412.745993][T13001]  onyx-mm-dio
[  412.747197][T13001] comedi: valid board names for pcl711 driver are:
[  412.749350][T13001]  pcl711
[  412.750471][T13001]  pcl711b
[  412.751470][T13001]  acl8112hg
[  412.752524][T13001]  acl8112dg
[  412.753546][T13001] comedi: valid board names for amplc_pc263 driver are:
[  412.756040][T13001]  pc263
[  412.757109][T13001] comedi: valid board names for amplc_pc236 driver are:
[  412.759268][T13001]  pc36at
[  412.760342][T13001] comedi: valid board names for amplc_dio200 driver are:
[  412.761479][    T9] usb 6-1: config index 0 descriptor too short (expected 59886, got 27)
[  412.762548][T13001]  pc212e
[  412.762556][T13001]  pc214e
[  412.765373][    T9] usb 6-1: config 48 has too many interfaces: 111, using maximum allowed: 32
[  412.766431][T13001]  pc215e
[  412.767467][    T9] usb 6-1: config 48 has an invalid descriptor of length 196, skipping remainder of the config
[  412.770340][T13001]  pc218e
[  412.770348][T13001]  pc272e
[  412.770353][T13001] comedi: valid board names for comedi_parport driver are:
[  412.770358][T13001]  comedi_parport
[  412.770363][T13001] comedi: valid board names for comedi_test driver are:
[  412.770368][T13001]  comedi_test
[  412.770373][T13001] comedi: valid board names for comedi_bond driver are:
[  412.770378][T13001]  comedi_bond
[  412.810802][ T6022] usb usb48-port1: unable to enumerate USB device
[  412.821079][    T9] usb 6-1: config 48 has 0 interfaces, different from the descriptor's value: 111
[  412.832267][    T9] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  412.840245][    T9] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  412.842915][    T9] usb 6-1: Product: syz
[  412.844848][    T9] usb 6-1: Manufacturer: syz
[  412.846791][    T9] usb 6-1: SerialNumber: syz
[  413.000750][T13022] random: crng reseeded on system resumption
[  413.373055][    T9] usb 6-1: USB disconnect, device number 40
[  413.564773][T13035] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2079'.
[  414.161394][T13047] netlink: 'syz.0.2083': attribute type 1 has an invalid length.
[  414.163905][T13048] netlink: 'syz.0.2083': attribute type 1 has an invalid length.
[  414.228327][T13054] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  414.230616][T13054] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  414.233726][T13054] vhci_hcd vhci_hcd.0: Device attached
[  414.345724][T13059] random: crng reseeded on system resumption
[  414.499998][ T6022] usb 40-1: SetAddress Request (18) to port 0
[  414.500989][T13063] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2085'.
[  414.502339][ T6022] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[  414.571970][T13066] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2086'.
[  414.796625][T13055] vhci_hcd: connection reset by peer
[  414.798948][ T1169] vhci_hcd vhci_hcd.1: stop threads
[  414.800789][ T1169] vhci_hcd vhci_hcd.1: release socket
[  414.802545][ T1169] vhci_hcd vhci_hcd.1: disconnect device
[  414.824875][T13079] fuse: Bad value for 'fd'
[  415.063056][T13084] Invalid ELF header magic: != ELF
[  415.135761][   T40] kauditd_printk_skb: 70 callbacks suppressed
[  415.135780][   T40] audit: type=1326 audit(1775447214.578:20734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13087 comm="syz.2.2091" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6feef6c code=0x0
[  415.409803][ T2290] usb 42-1: device descriptor read/8, error -110
[  415.447030][T13109] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  415.616003][T13119] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  415.800416][ T2290] usb usb42-port1: attempt power cycle
[  415.872236][T13131] syzkaller0: entered promiscuous mode
[  415.874839][T13131] syzkaller0: entered allmulticast mode
[  416.076632][T13136] binder: BINDER_SET_CONTEXT_MGR already set
[  416.078850][T13136] binder: 13135:13136 ioctl 4018620d 80000040 returned -16
[  416.161228][T13144] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2115'.
[  416.218313][T13145] 9p: Bad value for 'wfdno'
[  416.360444][ T2290] usb usb42-port1: unable to enumerate USB device
[  417.280002][   T39] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  417.429751][   T39] usb 6-1: Using ep0 maxpacket: 32
[  417.434505][   T39] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  417.440881][   T39] usb 6-1: New USB device found, idVendor=0582, idProduct=0582, bcdDevice= 0.40
[  417.446482][   T39] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.450043][   T39] usb 6-1: Manufacturer: 峱蔌狵ꔡᅳ䙣⃐琌叩⺏됍貈齨
[  417.453285][   T39] usb 6-1: SerialNumber: syz
[  417.669110][   T39] usb 6-1: Audio class v2/v3 interfaces need an interface association
[  417.698092][   T39] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[  417.710291][   T39] usb 6-1: USB disconnect, device number 41
[  417.786752][T12893] udevd[12893]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  419.034059][T13212] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2132'.
[  419.067969][T13212] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2132'.
[  419.843965][T13213] input: syz0 as /devices/virtual/input/input25
[  420.146080][ T6022] usb 40-1: device descriptor read/8, error -110
[  421.077619][T13221] syzkaller0: entered promiscuous mode
[  421.079404][T13221] syzkaller0: entered allmulticast mode
[  421.109202][ T6022] usb usb40-port1: attempt power cycle
[  421.248488][T13231] tmpfs: Bad value for 'mpol'
[  421.722785][ T6022] usb usb40-port1: unable to enumerate USB device
[  421.951816][T13254] netlink: 'syz.0.2153': attribute type 4 has an invalid length.
[  421.966374][T13254] netlink: 'syz.0.2153': attribute type 4 has an invalid length.
[  423.991915][T13277] tmpfs: Bad value for 'mpol'
[  424.602273][T13292] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  424.934081][T13296] netem: change failed
[  425.076581][T13302] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  425.164620][T13307] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2167'.
[  425.184346][T13311] overlayfs: upper fs does not support file handles, falling back to index=off.
[  425.187857][T13311] overlayfs: fs on '.' does not support file handles, falling back to xino=off.
[  425.849741][    T9] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  426.012262][    T9] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  426.015535][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  426.032208][    T9] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  426.035085][    T9] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  426.037678][    T9] usb 6-1: Product: syz
[  426.039134][    T9] usb 6-1: Manufacturer: syz
[  426.042205][    T9] usb 6-1: SerialNumber: syz
[  426.045950][    T9] usb 6-1: config 0 descriptor??
[  426.052460][    T9] usb 6-1: selecting invalid altsetting 0
[  426.326295][    T9] usb 6-1: USB disconnect, device number 42
[  426.372508][   T40] audit: type=1326 audit(1775447225.818:20735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13358 comm="syz.5.2191" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26f6c code=0x0
[  428.292542][    T9] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  428.469754][    T9] usb 6-1: Using ep0 maxpacket: 32
[  428.473821][    T9] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  428.476838][    T9] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  428.480945][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  428.484164][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  428.487224][    T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  428.490740][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  428.495461][    T9] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  428.498345][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  428.502268][    T9] usb 6-1: config 0 descriptor??
[  428.682738][T13410] overlayfs: missing 'lowerdir'
[  428.930780][T13413] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2195'.
[  429.239246][T13414] bridge4: entered allmulticast mode
[  429.298642][T13415] ������: renamed from hsr0
[  429.569518][    T9] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 43 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  429.575400][    T9] usb 6-1: USB disconnect, device number 43
[  429.583474][    T9] usblp0: removed
[  429.628422][T13424] Invalid logical block size (2304)
[  430.373443][T13455] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2211'.
[  430.376498][T13455] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2211'.
[  430.379904][T13455] netlink: 31 bytes leftover after parsing attributes in process `syz.5.2211'.
[  430.385085][T13455] netlink: 'syz.5.2211': attribute type 3 has an invalid length.
[  430.387813][T13455] netlink: 'syz.5.2211': attribute type 2 has an invalid length.
[  430.390820][T13455] netlink: 31 bytes leftover after parsing attributes in process `syz.5.2211'.
[  431.426355][T13483] kernel profiling enabled (shift: 0)
[  434.619873][T13549] kernel read not supported for file /memory.events.local (pid: 13549 comm: syz.1.2242)
[  434.624436][   T40] audit: type=1800 audit(1775447234.068:20736): pid=13549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2242" name="memory.events.local" dev="mqueue" ino=47906 res=0 errno=0
[  434.642477][T13549] input: syz1 as /devices/virtual/input/input27
[  434.720248][    T9] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  434.954510][    T9] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  434.958632][    T9] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  434.965611][    T9] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  434.987317][    T9] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  434.991854][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.994967][    T9] usb 10-1: Product: syz
[  434.996536][    T9] usb 10-1: Manufacturer: syz
[  434.998938][    T9] usb 10-1: SerialNumber: syz
[  435.541385][    T9] hub 10-1:1.0: bad descriptor, ignoring hub
[  435.543905][    T9] hub 10-1:1.0: probe with driver hub failed with error -5
[  435.758425][    T9] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 20 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  435.940934][T13572] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2248'.
[  435.944555][T13572] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2248'.
[  435.947999][T13572] netlink: 'syz.0.2248': attribute type 14 has an invalid length.
[  435.951320][T13572] netlink: 'syz.0.2248': attribute type 12 has an invalid length.
[  436.139916][    T9] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  436.290060][    T9] usb 6-1: Using ep0 maxpacket: 8
[  436.295458][    T9] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[  436.298264][    T9] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  436.302164][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  436.305647][    T9] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  436.309346][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  436.329726][    T9] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  436.335034][    T9] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  436.338268][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.372450][ T5934] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  436.383211][ T5934] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  436.387319][ T5934] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  436.393076][ T5934] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  436.396329][ T5934] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  436.463372][T13597] lo speed is unknown, defaulting to 1000
[  436.566038][    T9] usb 6-1: usb_control_msg returned -32
[  436.567795][    T9] usbtmc 6-1:16.0: can't read capabilities
[  436.605529][T13597] chnl_net:caif_netlink_parms(): no params data found
[  436.669825][T13597] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.672488][T13597] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.675505][T13597] bridge_slave_0: entered allmulticast mode
[  436.678486][T13597] bridge_slave_0: entered promiscuous mode
[  436.682139][T13597] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.684491][T13597] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.687108][T13597] bridge_slave_1: entered allmulticast mode
[  436.690743][T13597] bridge_slave_1: entered promiscuous mode
[  436.724757][T13597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  436.732484][T13597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  436.801993][T13597] team0: Port device team_slave_0 added
[  436.819044][T13597] team0: Port device team_slave_1 added
[  436.858964][   T46] bridge_slave_1: left allmulticast mode
[  436.862279][   T46] bridge_slave_1: left promiscuous mode
[  436.864767][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.872548][   T46] bridge_slave_0: left allmulticast mode
[  436.875104][   T46] bridge_slave_0: left promiscuous mode
[  436.877628][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.949959][T13624] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2263'.
[  437.004294][T13626] overlayfs: failed to resolve './file2': -2
[  437.282916][   T46] bond0 (unregistering): left promiscuous mode
[  437.285151][   T46] bond_slave_0: left promiscuous mode
[  437.288419][   T46] bond_slave_1: left promiscuous mode
[  437.291967][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  437.295904][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  437.299347][   T46] bond0 (unregistering): Released all slaves
[  437.304411][T13597] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.307033][T13597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  437.316029][T13597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.321480][T13597] batman_adv: batadv0: Adding interface: batadv_slave_1
[  437.323793][T13597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  437.332809][T13597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  437.400803][T13597] hsr_slave_0: entered promiscuous mode
[  437.403663][T13597] hsr_slave_1: entered promiscuous mode
[  437.405901][T13597] debugfs: 'hsr0' already exists in 'hsr'
[  437.407891][T13597] Cannot create hsr debugfs directory
[  437.769114][   T46] batadv0: left promiscuous mode
[  437.775205][   T46] hsr_slave_0: left promiscuous mode
[  437.777687][   T46] hsr_slave_1: left promiscuous mode
[  437.782005][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  437.785135][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  437.909405][   T46] team0 (unregistering): Port device team_slave_1 removed
[  437.918334][   T46] team0 (unregistering): Port device team_slave_0 removed
[  437.988892][   T46] lo (unregistering): left allmulticast mode
[  438.225657][T13597] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  438.230845][T13597] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  438.236727][T13597] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  438.244093][T13597] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  438.292294][T13597] 8021q: adding VLAN 0 to HW filter on device bond0
[  438.320277][T13597] 8021q: adding VLAN 0 to HW filter on device team0
[  438.325926][  T105] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.328546][  T105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  438.336812][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.339215][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state
[  438.451123][ T5934] Bluetooth: hci4: command tx timeout
[  438.492181][T13597] 8021q: adding VLAN 0 to HW filter on device batadv0
[  438.520590][T13597] veth0_vlan: entered promiscuous mode
[  438.526379][T13597] veth1_vlan: entered promiscuous mode
[  438.545424][T13597] veth0_macvtap: entered promiscuous mode
[  438.551898][T13597] veth1_macvtap: entered promiscuous mode
[  438.561480][T13597] batman_adv: batadv0: Interface activated: batadv_slave_0
[  438.568017][T13597] batman_adv: batadv0: Interface activated: batadv_slave_1
[  438.575084][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.578697][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.585051][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.588647][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.642453][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  438.648265][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  438.667352][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  438.671039][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.356288][  T841] usb 10-1: USB disconnect, device number 20
[  439.364670][  T841] usblp0: removed
[  439.387181][    T9] usb 6-1: USB disconnect, device number 44
[  439.409427][T13684] 9p: Unknown Cache mode or invalid value fsca
[  439.504373][T13689] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2272'.
[  439.530562][   T63] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  439.534940][   T63] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  439.540466][   T63] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  439.543752][   T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  439.547077][   T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  439.557289][T13694] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2273'.
[  439.584159][T13690] lo speed is unknown, defaulting to 1000
[  439.683535][T13700] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2275'.
[  439.721676][T13700] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  439.728727][T13700] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  439.733652][T13700] bond0 (unregistering): (slave syz_tun): Releasing backup interface
[  439.734704][T13702] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2276'.
[  439.742804][T13700] bond0 (unregistering): Released all slaves
[  439.745141][T13702] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2276'.
[  439.782822][T13690] chnl_net:caif_netlink_parms(): no params data found
[  439.830866][T13690] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.833339][T13690] bridge0: port 1(bridge_slave_0) entered disabled state
[  439.835723][T13690] bridge_slave_0: entered allmulticast mode
[  439.838517][T13690] bridge_slave_0: entered promiscuous mode
[  439.843179][T13690] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.845642][T13690] bridge0: port 2(bridge_slave_1) entered disabled state
[  439.848380][T13690] bridge_slave_1: entered allmulticast mode
[  439.858601][T13690] bridge_slave_1: entered promiscuous mode
[  439.898108][T13690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  439.904322][T13690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  439.928661][T13690] team0: Port device team_slave_0 added
[  439.933933][T13690] team0: Port device team_slave_1 added
[  439.961861][T13690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  439.964182][T13690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  439.973292][T13690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  439.978043][T13690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  439.980532][T13690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  439.988655][T13690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  440.014595][T13690] hsr_slave_0: entered promiscuous mode
[  440.017415][T13690] hsr_slave_1: entered promiscuous mode
[  440.021394][T13690] debugfs: 'hsr0' already exists in 'hsr'
[  440.023732][T13690] Cannot create hsr debugfs directory
[  440.090711][T13710] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2277'.
[  440.093572][T13710] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2277'.
[  440.096359][T13710] netlink: 'syz.2.2277': attribute type 14 has an invalid length.
[  440.098802][T13710] netlink: 'syz.2.2277': attribute type 12 has an invalid length.
[  440.182748][T13718] 9p: Unknown Cache mode or invalid value fsca
[  440.463236][   T60] bond0 (unregistering): (slave bond1): Releasing backup interface
[  440.467972][   T60] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  440.477390][   T60] bond0 (unregistering): Released all slaves
[  440.485572][   T60] bond1 (unregistering): Released all slaves
[  440.495933][   T60] bond2 (unregistering): Released all slaves
[  440.505706][   T60] bond3 (unregistering): Released all slaves
[  440.529736][ T5934] Bluetooth: hci4: command tx timeout
[  440.565885][   T40] audit: type=1804 audit(1775447240.008:20737): pid=13736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.2284" name="/newroot/107/file1" dev="fuse" ino=1 res=1 errno=0
[  440.586934][   T40] audit: type=1800 audit(1775447240.008:20738): pid=13736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2284" name="/" dev="fuse" ino=1 res=0 errno=0
[  440.606374][   T60] tipc: Disabling bearer <eth:syzkaller0>
[  440.609995][   T40] audit: type=1800 audit(1775447240.008:20739): pid=13736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2284" name="/" dev="fuse" ino=1 res=0 errno=0
[  440.629504][   T60] tipc: Left network mode
[  441.576854][ T5934] Bluetooth: hci1: command tx timeout
[  441.716725][T13775] loop4: detected capacity change from 0 to 7
[  441.744071][T12893]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[  441.753762][T12893] loop4: partition table partially beyond EOD, truncated
[  441.758189][T12893] loop4: p1 size 2989602745 extends beyond EOD, truncated
[  441.778689][T13775]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[  441.780746][T13775] loop4: partition table partially beyond EOD, truncated
[  441.783320][T13775] loop4: p1 size 2989602745 extends beyond EOD, truncated
[  441.807566][T12893] udevd[12893]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  441.849343][T12893] udevd[12893]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  441.860623][T13690] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  441.876207][T13690] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  441.900004][T13690] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  441.901974][T13779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2291'.
[  441.901991][T13779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2291'.
[  441.902881][T13690] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  441.971096][T13690] 8021q: adding VLAN 0 to HW filter on device bond0
[  441.978454][T13690] 8021q: adding VLAN 0 to HW filter on device team0
[  441.985288][  T105] bridge0: port 1(bridge_slave_0) entered blocking state
[  441.985369][  T105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  441.990943][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state
[  441.990989][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state
[  442.087880][   T60] hsr_slave_0: left promiscuous mode
[  442.149774][ T6001] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  442.302765][ T6001] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 253, changing to 7
[  442.308549][ T6001] usb 6-1: New USB device found, idVendor=0499, idProduct=1034, bcdDevice= 0.40
[  442.311682][ T6001] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  442.314460][ T6001] usb 6-1: Product: ᰊ
[  442.315938][ T6001] usb 6-1: Manufacturer: ࠒ
[  442.319038][ T6001] usb 6-1: SerialNumber: 鑇餉ꅬ擘姖佒痗⧭쒚暚뤢媓沞鋻⌸鷆⨻㭐ἦ榛戱媙嗦裉ᖒퟡ쐫
[  442.612619][T13690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  442.659085][T13690] veth0_vlan: entered promiscuous mode
[  442.669071][T13690] veth1_vlan: entered promiscuous mode
[  442.671200][ T5934] Bluetooth: hci4: command tx timeout
[  442.716698][T13690] veth0_macvtap: entered promiscuous mode
[  442.722309][T13690] veth1_macvtap: entered promiscuous mode
[  442.741034][ T6001] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  442.746863][ T6001] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -2
[  442.755527][T13690] batman_adv: batadv0: Interface activated: batadv_slave_0
[  442.759746][ T6001] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  442.762620][ T6001] snd-usb-audio 6-1:1.1: probe with driver snd-usb-audio failed with error -2
[  442.767915][T13690] batman_adv: batadv0: Interface activated: batadv_slave_1
[  442.774494][ T6001] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  442.793195][  T105] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  442.798643][  T105] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  442.801179][ T6001] snd-usb-audio 6-1:1.2: probe with driver snd-usb-audio failed with error -2
[  442.805567][  T105] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  442.807082][ T6001] usb 6-1: USB disconnect, device number 45
[  442.820667][  T105] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  442.957656][T13807] netlink: 'syz.5.2297': attribute type 21 has an invalid length.
[  442.972418][T13807] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2297'.
[  443.038142][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  443.047144][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  443.050860][  T105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  4qemu-system-x86_64: hw/ide/core.c:934: ide_dma_cb: Assertion `prep_size >= 0 && prep_size <= n * 512' failed.
Read from remote host localhost: Connection reset by peer
client_loop: send disconnect: Broken pipe