last executing test programs:

39.805098068s ago: executing program 2 (id=4360):
r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESTART(r0, 0x1275, 0x0)
ioctl$BLKTRACESTART(r0, 0x1274, 0x0)

39.41997073s ago: executing program 2 (id=4361):
socket$can_bcm(0x1d, 0x2, 0x2)
timer_create(0x0, 0x0, &(0x7f0000000000))
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000080)={{0x0, 0x5, 0x7fffffffffffffff, 0x7fffffffffffffff, 0x2, 0x2, 0x80000000, 0x7a1, 0x1, 0x101, 0x29d3, 0x0, 0xfff, 0x8, 0xf4}})
syz_open_dev$loop(&(0x7f00000001c0), 0xfff, 0x107382)
memfd_create(&(0x7f0000001ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xefE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xd1\xa7@\xa1_B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7<\x7f\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xb0\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcd\x90\x95\xdd\x8a\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\fe\x84\x7f\x10Y,\xe6\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xab>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1d<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4M\xc7\xfa\f\b\x8f\xc4\xbe\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaa\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00w\xa8wW\xb7\a\xda\xe1\xe0\x9b\xcd\x1dM\t\x86.\xc5\x06A\x17\xd3\xb7\xd7\xe8\xf5\xf4\xa48\xa1\x8cp\x89\x95y\x14\xa5k/\xceu\xad\x7f\x04Q\x96[@\xfb\xe4\x11\x88\xda}\xcd\xe8!\xb8\x92\xa14c\x85b\xd9\f\xbf\x95J\xa1cU\xf9\xa3\x11\xad\xaa\x00vZ]An\xba3\xde}G\x95qZ\xff\x1e\x9d\xd8\x86\x9a\xf8\xca\x1dMiJ\x0f\xed\xbb\x1a\xf5\xf2\x90j\x13\xdc^!\xe2Z\':\xb6\x19js|\xb5\xdf\xe7\xe3\xff\x17+\x96\xae\t\xb7\xcd#s5VTT\x93hD\xe9`\xfbl\xc4\xf9\xe7_\xb4\xc4[%B\x85\x91\x0f\xef\x15)je\xc9.\xec\xb7@\a\xa1\x83\xe3/\x04bw\x00\x00\x00\x00\x00\x00\x00\x00\x00\xda\xca\x1fM\x15\x9c\xe0}\x86,\xef=s(\xc0\x03\xf1H\xa0\xa9\xfblV\x81\xd1\xe3KQlR\xbc\xc9\'O}+e\xc3\xabr?v\x9dMS\xa9<\fq3\xe8\xe2I\x9f\x9b\x11\xa4\xc0\xbdV;\x83Y\x86$\r\a%\x1aV\x00\x00\x00\x00\x8f:R9\xe3HU_\xebJ\xc4C\v)\x87[\xa0\xc0\x90\xb0\x9f\x8f\xae |m\x85m\xe6\xa3~\xa4', 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

28.062727643s ago: executing program 3 (id=4414):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0xc, 0x0, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYBLOB="ba2e8b8a1cd692f38830c7642671d3b57f027344f6528a104ed58188009b", @ANYBLOB="4f7b69647ddcc84b4a"], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000008000000000000000118110000", @ANYRESHEX=r1, @ANYBLOB="0000000000000000b702000014000020b7030000000000108500000008000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0xa, 0x100b, &(0x7f0000001e40)=""/4107, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x36, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000003a000b0000000000000000000100000018000080130003"], 0x2c}}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f0000000000), 0x4)
r5 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
fcntl$getflags(r5, 0x401)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r7 = openat$vsock(0xffffff9c, &(0x7f0000000040), 0x100, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
r10 = dup(r3)
ioctl$KVM_SET_MSRS(r10, 0x4140aecd, &(0x7f00000001c0)=ANY=[])
r11 = syz_open_dev$vcsn(&(0x7f00000002c0), 0x7, 0x40000)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r11, 0x40806685, &(0x7f0000000300)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r11, <r13=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000240)=r12}, 0x1c)
r14 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x101000)
ioctl$KVM_SET_CPUID2(r13, 0x4008ae90, &(0x7f0000000a00)=ANY=[@ANYBLOB="03000000000000000000000009000000050000000800000006000000480900000001000000000000000000000000000007000000090000000500000001040000f501000007000000060000000000000000000000000000000600000003000000020000000900000006000000f8ffffffeb00000000000000000000000000000047489352c9094d41f4b8621bd9d815d00aa154089e534c884cca908d73671ef6d32445ca39e4c2ceea666c8bb8b4cb16b8e657fe4a0bbf769037649c9359225a8e846632b30c38612a52701368c7ad1eb095d3ebed4e9dc23c30e1acfdaa022fa647eb54ce1c79fb82afdbb715ecfb"])
ioctl$FIDEDUPERANGE(r5, 0xc0189436, &(0x7f00000000c0)=ANY=[@ANYBLOB="040000000000000005000000000000000800000000000000", @ANYRES32=r2, @ANYBLOB="000000000600"/28, @ANYRES32=r6, @ANYBLOB="00000000018000"/28, @ANYRES32=r2, @ANYBLOB="000000000200"/28, @ANYRES32=r2, @ANYBLOB='\x00'/28, @ANYRES32=r1, @ANYBLOB="00000000ff00"/28, @ANYRES32=r1, @ANYBLOB="00000000e4b000"/28, @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00\r\x00'/28, @ANYRES32=r14, @ANYBLOB="0000000038ffffffffffffff00"/28])
r15 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r15, 0x29, 0x40, &(0x7f0000000500)=@filter={'filter\x00', 0x2, 0x4, 0x480, 0xffffffff, 0x0, 0x240, 0xec, 0xfeffffff, 0xffffffff, 0x3b8, 0x3b8, 0x3b8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0xc8, 0xec, 0x0, {}, [@common=@ipv6header={{0x24}}]}, @REJECT={0x24}}, {{@ipv6={@local, @dev, [], [], 'pim6reg0\x00', 'veth0_to_batadv\x00'}, 0x0, 0x130, 0x154, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @private0, @dev, @remote, [], [], [], 0x0, 0x4102}}]}, @REJECT={0x24}}, {{@uncond, 0x0, 0x154, 0x178, 0x0, {}, [@common=@inet=@dscp={{0x24}}, @common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @ipv4={'\x00', '\xff\xff', @multicast2}, @loopback}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x4dc)

27.583476468s ago: executing program 3 (id=4416):
syz_open_dev$sndmidi(0x0, 0x0, 0x0) (async)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) (async)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e22, @multicast2}, 0x10) (async)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x4e22, @local}, 0x10)
shutdown(r0, 0x0)
recvfrom$inet(r0, &(0x7f0000000180)=""/128, 0x80, 0x102, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) (async)
r3 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) (async)
r4 = socket$inet6(0xa, 0x802, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c0000006b0376da883ec0a137c489ab7d75e5060a0b0400000004801c0001800b00010072656a65637400000c000280080024950800f8c24e72f481895555e60000010900010073acc2797a30000000000900020073797a3200000000140000"], 0x74}}, 0x0)
setsockopt$inet6_buf(r4, 0x29, 0x39, &(0x7f0000000080)="070304000000000100"/18, 0x12) (async)
r6 = socket(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @dev, 0x34}]}, &(0x7f0000002100)=0x10) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x76, &(0x7f0000000300)={0x0, @in6={{0xa, 0x4e21, 0x400, @local}}, 0x4, 0x1}, &(0x7f0000000240)=0x88) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) (async)
socket$kcm(0x10, 0x2, 0x0) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="bf16000000000000b7070000000100004870000000000000350000000000000095000000000000002ba728041598fbd30cb599e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f0711e6bd917487960717142da7646c4fe02996b60cf81ebcd50fa9ea4318123f602000000000000de89e661168c1886d0d4d94f204e345c652fbc1626e3a2a2ad358061d0ae0209e62f51ee988e6ea604ce974a22a550d6f97080980400003e05df3ceb9f1feae5737ecaa80a666963c474c2a100c788b277beee1cbf9b0a4d3881dcc7b1b85f3c3d44aeaccd3641110bec4e90a6341965c39e4b3431abe802f5ab3e89cf6c662ed4048d3b3e22278d00ce00000000d3a02762c2951257b85802189d74005d2a1bcf9436e192e23fd275985bf31b714f000bcab6fcd610f25f5888000000003f11afc9bd08c6ebfbb89432fb465bc52f49129b9b6150e320c9901de2ebb9000000018e3095c4c5c7a156cec33a667dccaff950ca1e5efdd4c968dacf81baa3a509b1041d06f6b0097c430481824a3f4fddd3c643f630ba175d876defd3541772f26e27c44cfdb2d85d6d29983e830a9cdd79837b3468e8c67a571d0a017c100344c52a6f387a1340a1c8889464f90cc4cd1f570dd39877dfb2ff1ae66e1ce917474b2e650ae630afd014a337ac5d58bcb5e51723257c872c5255f20100000000000000f041b665ab21372c8d8b7bac5b5c784d20a4a24d8dbd75062e1daef9dead619cc6e7baa72707157791c3d2a286ffb8d35452bb5d36c2a8682bf7ecbd53f950ef4709ec01e230d2f53594ef4839c6130c4c13a0cca84b9935f771fd49e480cd9d48aeb12b1d255be1ed66d9051f22614d1f62734d679039a97d2b74f9e8e997ccd314000f747f4e8e7025123e783df8b8a17e3aa9fe1f662aef87a065b03cfb65b4dfe4f1b56e1f23128d743753a1de172d683d5892ce9414a1d98ea93e3d35dbb6c23b90cf36e83b8a434a97d09343d7f83079ccb02e69d384146056d125cfa788237874dd42dae334bda042819a2aa24dba1c25be2794448b4f63483026b5e34d44705b76ef29241adab0dd7d68bf975e02069f6f2425e1bc97a3d588085f16bef63a06578d4f5de7bfb6aaa75f16996d536256c02284cb1d3a6fb8cae87691fae365a70c3fc69e1565bba8dd8a8ca049f798abe646f738bebd69413afc9d8a5edd7aaa000000000000001e6c2f2a287c5278a218dbfaffffff00a14db5cfa6819eb1d39c48cfdc80d215c9e16e0c4736c819363154cca4e2f89800d18c89d7f46f679df6c9e2952ae1ebfd0ca88368ee6ce139e8b5822c22cf2e9dde943d34c432e1001171792c65986146666a5490928441f47e0fe5eac41824ca1fd0eb71aa243c88d5480e5aee9c9e5f2e5a56a6d920335c8e8726fd8329d9a728995b1531bd20360d33d8f9ffffff5f912ac4e34bf6ea8a86da707b03bddb491ba0cc98f6be92c55969a2b50025419d1476c73132ca7ca26ce8a7e3ffb700f09e157f9b844051f1a642aca9ff98c9036471ccff0522903e7bcf62e18f7696bbc280b95e8e0d6fd5644b0ebde3a95b06548862de809d3dae3cccf109f7c78e8479a345e800000000000000000000009455bf417627ce723a5d9103706aba69279500bb82f6b5a3ddc0bd9856712945b70c75ce5b722578820820d010d7a3cffc99fc647d0b82ef26ab708c0b19ed144be51c3b398f0e6bb7a30006000000cba12953d58cff0f0378740fe6662f377b97d8e7cdb047050d7296cd3856476a60a49ad127ba6570bafc2bbcf9ee721fd9cb467ff071e5604fbf0491245c0000007d932d7a64de4c4aa433fc0840aff7c47da3a4c6966d0000000000000000f6bfbae29e8a6e2a889f6ef6869d82d6bd73eb76b65c7a35a54a4a6b8ad4600e3a972a0bb5971a5f16590b0a03dafa3fd1118765cc8ab9fccf3b51c41a339f200f2fa33006910a679a9ae0187b4d750c4bd244cb0cbfd23b265f4d4da448a7a0d19c5e43eae50a31609dfa2dde267551467eb6475293dd7012cc449009981f22820e57a0eff234ccfe21d7a2302e000669753d3c3432cc14ee1abe724adb6b5431befedd3e22971118f0e21aed03a6fe7860b3e13c3173a60a1823cb7dde8212a8531bd9691dd4cc6a370e9eb56b3d790b98f2bd0db1e5de6a146597b2cbb7103040d2a39d7965d34df524b760ab92efcce7dd1574052c735935bf6a752c015c7f5ffee9ff66e5dd2866b15b6e0d17618cb1f5c1ee4b05ebf1445ea110f499f840a5c965443d725556351ee25fe09f69494b053678dcadcf02e063dff2fa4bef1ac3bbbebe6c74d71ec3b23e29895eff1d1017024fe3e8cc759b05785adc346b7ffd05963f92c1d0d7d90ba878ad89e490f3e29ac51d30632869a534418f916bf6fe8167827a8e6c8f8b391c822805cb0adf1b8bd6947ff208753eb0d208ce14f7b206b2e02c21e963abc5ceb735c1b3c46b0a843de52a0000000000000001ee9c2b2705c1a81d9d3b9656b219c8cd99c9cafcd0d0540884d97aecb19983fc6af29ab44a82aff9cba921192c665b877af6539bdb1b567f481ba07982e7ad758f4e1eac69e7e88a63960975f490e161e371ec8534791e3b61c685d900a9c0839208356b53750e76fcc3c2d1bddcbd83897921414d0c02e8188f3df79ea2a5c5444004830e6cb227ca1bdafb977c00000000003a417193b8c5d793687335a930867094fd6a78218218e04b705ec62f1608cb569b81914e68f175b392af6bc4fd2121d7fd276af2c97a441b56e7a0687d98b8e76d8d0d231e4fe00be1de76bd19cc12e2bd938eb681ed6bc951c1b4f7c51af59eea4d40c6000000000200778a677b72786311153271a3313da02645e11761699e4d04ac86dd14ff7b9a10d3fa74696fe3953a5b7706bf5d1faba4b18808d9cb0e9db696dec4e0820ee4028d7225a2c9c427cf64cbde6fba056b2006b7a37c1181d530fb865e235cd302f3b4071ee5237ada186b9e5e3144bf479f277f10656ad3744037ccc9c63685a6f1109d2ea73773d3635f61497f1fa1ea4a16f601800bf3e59141fbf05a96113320c445f9ba8596970d5254727e804fbd99ccefb7c09269dd2c5c25e56e169ac15980f3f85f7ca36dd5950ef5b64fd46f123311829534a82940994199b3cf7a8f09c1946e55289f668c423fcbb31ae91864c882313151741a67538c9689dc8ecc9903c7041e5c0704e2fa55a756487517a7445cbd9e3f5175e41c00000000000000000000000000bf98efd587fffe326f474b0b089c017b16c0062cbce96f5adebec52a79f9363909842f79c50a1520be46d87003137e4c5031f00123e812a5e37cd52c9eb7336281cb8c6ce9934b157d7875a70eaf103cb3138e2361c51cd1eab8a26b232acf6bf0ab829c26dab637538b2eb1420d812d2b80c777710ba0f18e4661681aa218d9ba54023ab4305d77eb15611ae2545835e9d30e9f6d4fb43a291c69545a1eea0f8720431132d8549f99bf6c5cb060da70cbb59d0a000000000034d083fc37d2449f72de0cbea4bc1dc89c136cdbc504f849d5502d77a95c7bfff4cd9c03058d0d4d07ea64824f1acf2b39289f675f39d01719cdbab3f1ce10609c8d7b3e37cb99b41da5e485a441b6a103549f55ab09dc98767763d1f2fafd45bb7d2b40050d1f8292f4d9ec6d0000000000003932062290f4996fdd55b06023437e9e2072daf7f5d82f6f1b5b89a41134f4dc2e65bb11272fdf8c8141f41d6160b3d8b6ecd16d14267f61b4881adee7f07f3d6af5ae79e16fe2c3f55ac7a6392d2e1d9b4286b6c3e1f5a76b85ed6e1f0000c67e6c5fcdc8c39381be4799b8cb2d08b8262c807dd755e22b801162381aa9d1af2bbc9cfd497585337eac408b8475b47a392a10cae349160f128e5f873a58064eb400c36a90624f6aed398a215e9ce64522ab249f67c38a656d32ecff5cdb2b039c4abf349d2c0f88a42e9189bbfa7f5cf35b6e7ef8f9d33163b7ea87550fb1ba334c83e3aec4714c9c4ca3ecb04f2720237615a28bf310b58ffa2a103216fdcc8c2d8f5d55e5e7ebf147105272aaae56e86d856b3cf79a3f7306436762dd07cebc7892ec6f9f696da38feed3dc0001500e34adae1ba89a32bad2af9030f840f1ba4664f35547cdadd5cbacc59352c290f55d971b65953533668c25f21d8d62d849e9058eaa97c63491568887548f668cdbca2abf01a361a0b64d8b523e669da350e3ec7445dfbf366b0b3bc5e76824a1e43eaaeca70db90f2fa39596443447671933079a24fe3681ad9ac361f71ac279a688f10a12105edebc5e3b8dad4c8305ab129ca2dfb9b7c5e9d097bd01b495cccefddce569117f7f5d6a6270ff0f0f4c371029ca8489571b55841bf3dd003bc81460eee57ceb3c33f4e9300b0144fe040cf5fcfcbb616c2070237881afdb314cecd1623f3e55ab8b7627fa1be349145a8d6313cbc790eefe2020138e82fb9d351be4ddcbcc9bc048dd3db5828d16baec6e07a007f0030f34ea3cfd524d6fa1d45da5641d6c94e1d3ae7fba1c85035d2a60ef1696e0d96aa1c60019f73ae0aa6113cd66ef26b5777337c26e1461405d86fdf091edd526f25cada439bb3609ed5c35ab60a539ade786bd6004d0ea3edbd6c4da0d8e8be8c771c8c8a0b07d9859e04adb18964dcce9bce546074c26dffbc2df372a016e8c845d4257000000000000000000000000000000000000f29657697d9c2b132b2dc2f5ea5122836582a7e85fe2bc166f17aefd9d861de0191f5277d4a3b5afb6f200000000000000000089de7f8485d9507164a187220b36ddc7fa645d4bd0c1414c30a416"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001400)={r8, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x0, 0x0, 0x1, 0x8, 0x0, 0x0}}, 0x10) (async)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x4)

27.432050992s ago: executing program 1 (id=4417):
r0 = syz_io_uring_setup(0x1114, &(0x7f0000000200), &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0xc0, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x10, 0x0, 0x7, 0x0, 0x0})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x18, &(0x7f0000000100)={0xfe, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

27.167601668s ago: executing program 1 (id=4420):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
unshare(0x400)
r2 = syz_open_dev$vcsn(&(0x7f0000000040), 0x6, 0x40)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000140)=r2, 0x4) (async)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000140)=r2, 0x4)
socket(0x9, 0x4, 0xffffffff) (async)
socket(0x9, 0x4, 0xffffffff)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/dev_mcast\x00')
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap(&(0x7f0000329000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000080)=ANY=[])
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xf})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x31, &(0x7f0000000540)=ANY=[], 0x0, 0xf, 0xce, &(0x7f0000000140)=""/206, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000300)={0x0, 0xe, 0xf, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x1], 0x0, 0x10, 0x9, @void, @value}, 0x94)
r6 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r6, &(0x7f000001a240)=""/102400, 0x19000, 0x10000a) (async)
pread64(r6, &(0x7f000001a240)=""/102400, 0x19000, 0x10000a)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=r6, @ANYBLOB='g=\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRESDEC=r6], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007baaf8ff00000000b508000000000000db8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYRESHEX=0x0, @ANYRES64=r4, @ANYRES32=r5], &(0x7f0000000100)='GPL\x00', 0x9, 0xff7, &(0x7f00000007c0)=""/4087, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007baaf8ff00000000b508000000000000db8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYRESHEX=0x0, @ANYRES64=r4, @ANYRES32=r5], &(0x7f0000000100)='GPL\x00', 0x9, 0xff7, &(0x7f00000007c0)=""/4087, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e2c, @dev={0xac, 0x14, 0x14, 0x10}}, 0x10) (async)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e2c, @dev={0xac, 0x14, 0x14, 0x10}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) (async)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r7, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r8) (async)
fchdir(r8)
r9 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
lseek(r9, 0x7, 0x0)

27.015347218s ago: executing program 3 (id=4421):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000401e04012810000000000109022400"], 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x28, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03800000000000001c0012800c0001006d6163766c616e000c000280080001000800000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7], 0x4c}, 0x1, 0x0, 0x0, 0xd92e022b44144534}, 0x0)

26.556027473s ago: executing program 1 (id=4423):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x24, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a40)=@delchain={0x24, 0x2e, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x4, 0xffff}}}, 0x24}}, 0x840) (fail_nth: 5)

25.91661737s ago: executing program 1 (id=4424):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="180c000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000030000008500000005000000bf0900000000000055090100000000009500000000000000bc980000000000002408000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

25.745723766s ago: executing program 1 (id=4425):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000100)={0x400, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0x1}, {}, {0x0, 0xffffffff}, 0x0, 0x40, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
munmap(&(0x7f00001a2000/0x1000)=nil, 0x1000)
migrate_pages(0x0, 0x3, &(0x7f0000000040)=0x7f, &(0x7f0000000300)=0xa)
r3 = syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000200)={0x60, 0x0, &(0x7f0000245000/0x2000)=nil, &(0x7f00004c7000/0x1000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0)={0x77359400}, 0x0, 0xfffffffd)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f00000001c0)={0x20, 0x48, &(0x7f0000000180), {0x2, 0x727, 0x42474752, 0x4, 0x8, 0xffff7c9b, 0xb, 0xf67d}})
sendto$inet(0xffffffffffffffff, &(0x7f00000016c0), 0x0, 0xc890, 0x0, 0x0)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x4040080)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x4}, {0xac}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x50, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x0, 0x0, 0x3}, {0x6, 0x24, 0x1a, 0x0, 0x2}}, {{0x9, 0x5, 0x81, 0x3, 0x400}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x7, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x0, 0x7f}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmsg$AUDIT_GET_FEATURE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x10, 0x3fb, 0x0, 0x70bd2b, 0x25dfdbfd, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x804}, 0x20044000)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)

20.400680688s ago: executing program 1 (id=4429):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="020000000400c9f64e403674039502598000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0xc, &(0x7f0000000280)=ANY=[], 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f00000007c0)={0x11d, 0x12, &(0x7f0000000340)})
syz_emit_ethernet(0x6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500340600fe8000000000000000000000000000bbfe80000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="d002000090780000fe06e2d4c3d903030004020402131227406263e43d59dbe1e81b5d6f966a54a764d9e204b34ce0bcd63bd1116edc00"], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
getpgrp(0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000000a80)=""/45, 0x2d, 0x40010002, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r4, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r4, &(0x7f0000000000), 0xe09)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300000000000000000600", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, &(0x7f00000008c0)=""/19, &(0x7f0000000980)="976fba81a3a6999d3b9201153bfab312b2044e2cf3e3a7eea08fc45d36ac35f3ba89d75f4a76e18064997fc13be1fc05b41462d70f5282774fef66873e55fd808457baea9eb2d9460426338c1aefcc8522383c1f3e675492c74b0a761f4b4e4fc3364a88e6461b8437833e59f4f0ec79c4ae", &(0x7f0000000a00)="ef4876298018bcef0ef06c46203c26724a4057216898165e6a7ce1288281a212374fe692b0ef6a5598867b824103d3a9d8b7d2e11dcbd6ce08b516ea20d49e51a5fa94a5200ec48a898cbe2a8f71d1bbaa7154e64da81420b2da30732cd1b8af8b9e2ce1c1bfffa82017c7a9d2afd36ed1", 0x68f, r4, 0x4}, 0x38)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x4040850)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x0)
getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200), &(0x7f0000000940)=0x4)
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x4000041)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

20.272751927s ago: executing program 3 (id=4431):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = dup3(r1, r0, 0x0)
io_setup(0x685, &(0x7f0000000280)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000b80)=[&(0x7f0000000380)={0x503, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000580))
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000080)=0x200000000)
r4 = dup2(r1, r1)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x8008af00, &(0x7f00000003c0)=0x5)

12.507191987s ago: executing program 3 (id=4433):
r0 = socket$kcm(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000b400220000a600000200000000000000000077539a84474420a9b2262c9bcf38224a2bb2e1aa73d36faf531202a0d0754872ef17f9bd7475d7360df6eea300"/75, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000240)={'wg0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_EEE_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x34, r5, 0xab2bf658e72548f3, 0x0, 0x0, {0x3}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}]}]}, 0x34}}, 0x0) (fail_nth: 5)
sendmsg$kcm(r3, &(0x7f00000001c0)={0x0, 0xf0, &(0x7f0000000500)=[{&(0x7f0000000000)="2e00000010008188040f46ecdb4cb9cca7480ef421000000e3bd6efb440013030e000a000d000008ba8000001201", 0x2e}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90224fc60100005000b000900053582c137153e37000c0180fc0b1d00f80b", 0x33fe0}], 0x1}, 0x0)

10.733632561s ago: executing program 4 (id=4435):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000400)="3f4e55f1", 0x4)
sendto$unix(r1, &(0x7f0000000080), 0xffffff9d, 0x0, 0x0, 0x0) (fail_nth: 3)
syz_genetlink_get_family_id$nl80211(0x0, r1)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)

9.7950221s ago: executing program 2 (id=4362):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f000001abc0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r2}, 0x50)
read$FUSE(r0, &(0x7f0000002900)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r3}, 0x10)
syz_fuse_handle_req(r0, &(0x7f00000070c0)="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", 0x2000, &(0x7f0000006d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006d00)={0x20}})
ioctl$FS_IOC_RESVSP(r1, 0x80086601, 0x0)

9.724025983s ago: executing program 3 (id=4437):
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x0)
openat$dsp(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x42, 0x0)
timerfd_gettime(r1, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000180)={0x0, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'})
openat$tun(0xffffff9c, &(0x7f0000000080), 0x202082, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, &(0x7f0000000100)=0x10)
dup2(r4, r3)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r5}, &(0x7f0000000040)=0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r7, 0xc01064c8, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
r8 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
preadv(r8, &(0x7f0000000740)=[{0x0}, {&(0x7f0000000500)=""/97, 0x61}], 0x2, 0x0, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r8, 0xc018643a, &(0x7f0000000080)={0x4000000})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file1/file4/file7\x00', 0x1c0)

9.668922014s ago: executing program 4 (id=4439):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1)
socket$kcm(0x10, 0x2, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffc0002}]})
io_cancel(0x0, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902"], 0x0)
epoll_create1(0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgrp(0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x0, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x60}}, 0x0)

9.382473995s ago: executing program 2 (id=4440):
gettid() (async)
syz_usb_connect(0x0, 0x24, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0x1e, 0x8c, 0x7b, 0x40, 0x711, 0x550, 0xcc97, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x50, 0x27, 0xfa}}]}}]}}, 0x0) (async)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
prlimit64(0x0, 0x0, &(0x7f0000000000)={0x8, 0x8b}, 0x0) (async)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}) (async)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) (async, rerun: 32)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000000)={0x0, {{0x2, 0x0, @multicast1}}}, 0x88) (async, rerun: 32)
setsockopt$inet_group_source_req(r1, 0x0, 0x2d, &(0x7f00000004c0)={0x0, {{0x2, 0x0, @broadcast}}, {{0x2, 0x0, @broadcast}}}, 0x104) (async)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f0000000040)={@my=0x1}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) (async)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000000)="d041362e4c1bf63cf13a51220800", 0xe, 0x0, &(0x7f00000000c0)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @remote}, 0x14) (async)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x3)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000240)={'gretap0\x00', &(0x7f0000000340)={'syztnl2\x00', 0x0, 0x0, 0x10, 0x1, 0x2296, {{0xb, 0x4, 0x1, 0x36, 0x2c, 0x67, 0x0, 0x0, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}, @local, {[@timestamp={0x44, 0x18, 0x3e, 0x0, 0x7, [0x4, 0x2a, 0x454d942d, 0x0, 0x3]}]}}}}}) (async)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0) (async, rerun: 32)
getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14) (rerun: 32)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) (async)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x200000d) (async, rerun: 64)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84) (rerun: 64)
setsockopt(r8, 0x84, 0x81, 0x0, 0x0) (async)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r7, 0x28, 0x2, &(0x7f0000000280), 0x8) (async)
close_range(r3, 0xffffffffffffffff, 0x0) (async, rerun: 64)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0) (rerun: 64)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000140)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d24070000030769dc000049c40c240000e9fffff5ffffffff09240313b7010005024524", @ANYRES8=r9, @ANYBLOB="05"], 0x0)

8.79462157s ago: executing program 2 (id=4441):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000401e04012810000000000109022400"], 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x28, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03800000000000001c0012800c0001006d6163766c616e000c000280080001000800000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7], 0x4c}, 0x1, 0x0, 0x0, 0xd92e022b44144534}, 0x0)

5.864841961s ago: executing program 4 (id=4443):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="a20658b4a862058056a90d1852f4ba120100003a98010802120001000000000904000000573319000000000000000000000000e2e7034510648c5739b39be1cdf0debc2d94b90d20777c0b4a3f6e48fb7f7abd181c012ea835f533abdd0eafe81003587594239d12e0f4b9de376968defd13c825ef2545c555ed3a2a1ad5649290980df81a79f8a7"], 0x0) (async)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000940)={0x60, 0x640, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x1, {}, {}, {}, {0x0, 0x4000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}) (async, rerun: 32)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) (async, rerun: 32)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r3, 0x0, 0x12, &(0x7f0000000040)=0x633, 0x2)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
sendto$inet(r3, &(0x7f00000003c0)="01fb94d37b663374d4e4a718c384905434f1949723cd25c951a590a3ec393f722d67221004232ca806ce8e144b13ae12f4ba6550a1198f418f0836bc98b9e1fe0b", 0x41, 0x0, 0x0, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000500), 0x4) (async)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = dup(r4) (async)
r6 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2000, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0x347, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 32)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async, rerun: 32)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070"], 0x40}}, 0x800) (async)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x5, 0x0, 0x0) (async)
r9 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000008d80472f300000000000109022400010000000009040000010300000009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r9, 0x0, 0x0) (async, rerun: 32)
syz_usb_control_io$uac1(r9, &(0x7f0000000240)={0x14, &(0x7f0000000040)=ANY=[@ANYBLOB="00001600000016e5c1d97f55"], 0x0}, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
eventfd(0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x28, 0xb, &(0x7f0000000440)=ANY=[@ANYRESOCT=0x0], 0x0, 0x4, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffd, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x5, 0xb, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYRESHEX, @ANYRES64, @ANYRES8=r7, @ANYRESHEX=r2, @ANYRES32=r10, @ANYRES16=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xc, 0x8, &(0x7f00000038c0)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r5, 0x8, &(0x7f0000000000)={0x40000007}, 0x8, 0x10, &(0x7f0000000000)={0x20000, 0x20000001}, 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff45, 0x0, 0x0, 0x10, 0x7fff, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000a00)={0x2c, &(0x7f0000000840)=ANY=[@ANYBLOB="0001060000004f982237ba41"], 0x0, 0x0, 0x0, 0x0}) (async)
syz_usb_control_io$printer(r0, 0x0, 0x0)

5.47190005s ago: executing program 0 (id=4444):
r0 = io_uring_setup(0x354a, &(0x7f0000000140))
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000080)={0x3, "03e6ff8dda080600000a00000032000000000000000200", <r2=>0xffffffffffffffff})
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050001010900010073797a300000000040000000030a0103000000000000000005c2208ceecc1cbcd000030073797a32000000001400048008000240000000000800000002140000001100010000000000000000000000000a49e71e39fec9e10000000000000000a889923aa98662e1d86d7b3b9ee8de761779cab5006d9b82a01cb4b2a624fa88a1e4b88075ca795391730d806ba6accf7d462fd54e1a3d8710ca440afe"], 0x88}}, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f00000001c0)={0x7ffffffc, "0392938eda08a5513db99d08fdae429e4ae4c5bac9dd8259be4ee64b32c65e0a", <r5=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r5, 0xc0303e03, &(0x7f0000000280)={"334f00d6daf062d63d5e4449e903f93e48fe794d00c0ad0100000000000000ac", r2, <r6=>0xffffffffffffffff})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_XFRM_DIR={0x5}, @NFTA_XFRM_DREG={0x8}, @NFTA_XFRM_SPNUM={0x8}, @NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x8c}}, 0x0)
close_range(r2, r3, 0x0)
ioctl$SYNC_IOC_MERGE(r6, 0xc0303e03, &(0x7f0000000000)={"63dd039678ac318531cb0000b1b000", r6})
socket$tipc(0x1e, 0x5, 0x0)
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x8c5c0b1899a4112)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
fstat(r10, &(0x7f0000000140))
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
r12 = dup(r11)
ioctl$KVM_SET_MSRS(r12, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r8, @ANYRES64])
ioctl$sock_SIOCDELDLCI(r12, 0x8981, &(0x7f00000002c0)={'veth1_vlan\x00', 0x400})
close_range(r0, 0xffffffffffffffff, 0x0)
r13 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_VERSION(r13, 0xc0106407, &(0x7f0000000000)={0x1, 0x3, 0x1, 0x5})

5.353683642s ago: executing program 4 (id=4445):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="180c000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000030000008500000005000000bf0900000000000055090100000000009500000000000000bc9800000000000024080000000000008500000007000000b7000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

5.17846159s ago: executing program 2 (id=4446):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="020000000400c9f64e403674039502598000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0xc, &(0x7f0000000280)=ANY=[], 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f00000007c0)={0x11d, 0x12, &(0x7f0000000340)})
syz_emit_ethernet(0x6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500340600fe8000000000000000000000000000bbfe80000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="d002000090780000fe06e2d4c3d903030004020402131227406263e43d59dbe1e81b5d6f966a54a764d9e204b34ce0bcd63bd1116edc00"], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
getpgrp(0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000000a80)=""/45, 0x2d, 0x40010002, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r4, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r4, &(0x7f0000000000), 0xe09)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300000000000000000600", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, &(0x7f00000008c0)=""/19, &(0x7f0000000980)="976fba81a3a6999d3b9201153bfab312b2044e2cf3e3a7eea08fc45d36ac35f3ba89d75f4a76e18064997fc13be1fc05b41462d70f5282774fef66873e55fd808457baea9eb2d9460426338c1aefcc8522383c1f3e675492c74b0a761f4b4e4fc3364a88e6461b8437833e59f4f0ec79c4ae", &(0x7f0000000a00)="ef4876298018bcef0ef06c46203c26724a4057216898165e6a7ce1288281a212374fe692b0ef6a5598867b824103d3a9d8b7d2e11dcbd6ce08b516ea20d49e51a5fa94a5200ec48a898cbe2a8f71d1bbaa7154e64da81420b2da30732cd1b8af8b9e2ce1c1bfffa82017c7a9d2afd36ed1", 0x68f, r4, 0x4}, 0x38)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x4040850)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x0)
getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200), &(0x7f0000000940)=0x4)
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x4000041)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

4.728859703s ago: executing program 0 (id=4447):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})
r1 = syz_open_procfs$namespace(r0, &(0x7f0000002d80)='ns/mnt\x00')
r2 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$setlease(r2, 0x400, 0x1)
ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000002dc0)={{}, "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"})
socket$nl_rdma(0x10, 0x3, 0x14)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000011140100000000000000000008004b003b00000008004a000000000008004b0013"], 0x38}}, 0x0)

4.711863915s ago: executing program 4 (id=4448):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@multicast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xfffffffffffffc34, 0x0, 0x0, 0x0, 0x1, 0x0, @broadcast, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x2, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @local}}}}}}, 0x0)

3.612099193s ago: executing program 0 (id=4449):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f000001abc0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r2}, 0x50)
read$FUSE(r0, &(0x7f0000002900)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r3}, 0x10)
syz_fuse_handle_req(r0, &(0x7f00000070c0)="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", 0x2000, &(0x7f0000006d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006d00)={0x20}})
ioctl$FS_IOC_RESVSP(r1, 0x80086601, 0x0)

3.488968809s ago: executing program 0 (id=4450):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xa01e0aec, &(0x7f0000000080), 0x1, 0x0, 0xa00}, 0x0)

3.328741861s ago: executing program 0 (id=4451):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00'}, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}, 0x4de}], 0x1, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x122, &(0x7f00000002c0)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @generic={{0x10, 0x4, 0x1, 0x29, 0x114, 0x68, 0x0, 0x2, 0x6, 0x0, @empty, @local, {[@generic={0x44, 0x8, "7ca69bccb454"}, @timestamp_prespec={0x44, 0x24, 0x31, 0x3, 0x7, [{@multicast1, 0x7ff}, {@empty, 0xffff}, {@local}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7655}]}]}}, "e0b8ba44d9c1167f18ee8f44b4a93718ca3b7251bb34ed55e55bdd3f85cfc64a261a55677e7e571359abd88e7c5ea75f5d0f224332e2f41cefb9a1a35bb87b595aa13b8efe1e9de637a261dd0a44332440620986aeb67263d4326bf70bcd92118fbaeabc7b0009e4f4ca530c3bb52bfbf3a79eecc6851a6c2b46a1126bf106850335eecb70105c1073219a8bb8d3b05c6af71ba92fb6fa37919d9055b2d83380199606a1c6a23a96dd603ff7d8a68dde340d76030e3e1cf4398286e19c4368ec876f46b8792abb2e9b751b236218474ab0e3c7cd"}}}}, 0x0)
recvmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x1000, 0x0)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000100), 0x40000409, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000180)={0x48, 0x1, 0x0, "b49e1b6225be4279fa07fbde4749573e7c17e6e724ae09b9424f5ab23870ecd4", 0x3132564e})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/crypto\x00', 0x0, 0x0)
prctl$PR_SET_KEEPCAPS(0x8, 0x3)
pread64(r2, 0x0, 0x0, 0x4f)
bind$alg(r2, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
unshare(0x2a020480)
r3 = fsopen(&(0x7f00000002c0)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
fchdir(r4)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fchown(r5, 0x0, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCXONC(r6, 0x5608, 0x2)
ioctl$HIDIOCGRAWNAME(r2, 0x80404804, 0x0)

106.171767ms ago: executing program 0 (id=4452):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1)
socket$kcm(0x10, 0x2, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffc0002}]})
io_cancel(0x0, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902"], 0x0)
epoll_create1(0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgrp(0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x0, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x60}}, 0x0)

0s ago: executing program 4 (id=4453):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0))
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x260c0, 0x0)
preadv(r1, 0x0, 0x0, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x4000000000002, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
open$dir(&(0x7f0000000000)='./file0\x00', 0x490a80, 0x0)
r5 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r5, 0x84, 0xb, &(0x7f0000000040), 0x4)
r6 = syz_io_uring_setup(0xbe0, &(0x7f0000000340)={0x0, 0x7bed, 0x40}, &(0x7f0000000240), &(0x7f0000000280)=<r7=>0x0)
syz_io_uring_submit(0x0, r7, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r6, 0x47f9, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet(r5, &(0x7f0000000300)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xffffffffffffff81, &(0x7f0000000100)=[{&(0x7f0000000500)='}'}], 0x1}, 0x4000800)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
arch_prctl$ARCH_GET_XCOMP_PERM(0x1022, &(0x7f0000000040))
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='timers\x00')
read$FUSE(r8, &(0x7f0000000540)={0x2020}, 0x2020)
lseek(r8, 0x3, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x97)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

kernel console output (not intermixed with test programs):

ct, device number 30
[ 1710.348472][T31146] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1710.363433][T31146] bond0 (unregistering): Released all slaves
[ 1710.432408][T29821] veth0_macvtap: entered promiscuous mode
[ 1710.526960][T29821] veth1_macvtap: entered promiscuous mode
[ 1710.650842][T29854] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1710.769181][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.784776][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.795235][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.806420][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.824052][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.834937][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.845009][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.855910][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.876552][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.894614][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.914479][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.936463][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1710.965270][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1710.989021][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1711.009029][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1711.019839][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1711.030264][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1711.041404][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1711.064537][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1711.092604][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1711.104314][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1711.117083][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1711.130689][T29821] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1711.377608][T31146] hsr_slave_0: left promiscuous mode
[ 1711.405015][T31287] FAULT_INJECTION: forcing a failure.
[ 1711.405015][T31287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1711.418785][T31146] hsr_slave_1: left promiscuous mode
[ 1711.421691][T31287] CPU: 1 UID: 0 PID: 31287 Comm: syz.3.4298 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1711.434902][T31287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1711.444984][T31287] Call Trace:
[ 1711.448277][T31287]  <TASK>
[ 1711.451216][T31287]  dump_stack_lvl+0x241/0x360
[ 1711.455923][T31287]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1711.461135][T31287]  ? __pfx__printk+0x10/0x10
[ 1711.465749][T31287]  ? __pfx_lock_release+0x10/0x10
[ 1711.470797][T31287]  ? __lock_acquire+0x1384/0x2050
[ 1711.475875][T31287]  should_fail_ex+0x3b0/0x4e0
[ 1711.480577][T31287]  _copy_from_user+0x2f/0xe0
[ 1711.485185][T31287]  kstrtouint_from_user+0xc6/0x190
[ 1711.490333][T31287]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1711.496073][T31287]  ? __pfx_lock_acquire+0x10/0x10
[ 1711.501124][T31287]  proc_fail_nth_write+0xaa/0x2d0
[ 1711.506172][T31287]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1711.512083][T31287]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1711.517771][T31287]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1711.523455][T31287]  vfs_write+0x29c/0xc90
[ 1711.527732][T31287]  ? __pfx_vfs_write+0x10/0x10
[ 1711.532521][T31287]  ? __fget_files+0x3f3/0x470
[ 1711.537225][T31287]  ? fdget_pos+0x24e/0x320
[ 1711.541660][T31287]  ksys_write+0x183/0x2b0
[ 1711.546017][T31287]  ? __pfx_ksys_write+0x10/0x10
[ 1711.550895][T31287]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1711.557531][T31287]  ? lockdep_hardirqs_on+0x99/0x150
[ 1711.562795][T31287]  __do_fast_syscall_32+0xb4/0x110
[ 1711.567940][T31287]  ? exc_page_fault+0x590/0x8c0
[ 1711.572921][T31287]  do_fast_syscall_32+0x34/0x80
[ 1711.577792][T31287]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1711.584162][T31287] RIP: 0023:0xf7f07579
[ 1711.588273][T31287] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1711.607915][T31287] RSP: 002b:00000000f56865a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[ 1711.616352][T31287] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5686620
[ 1711.624356][T31287] RDX: 0000000000000001 RSI: 00000000f738bff4 RDI: 0000000000000000
[ 1711.632337][T31287] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1711.640320][T31287] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1711.648309][T31287] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1711.656313][T31287]  </TASK>
[ 1711.664295][T10850] Bluetooth: hci0: command tx timeout
[ 1711.731801][T31146] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1711.740181][T31146] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1711.757208][T31146] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1711.765240][T31146] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1711.832333][T31146] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[ 1711.840582][T31146] veth1_macvtap: left promiscuous mode
[ 1711.846890][T31146] veth0_macvtap: left promiscuous mode
[ 1711.852504][T31146] veth1_vlan: left promiscuous mode
[ 1711.857969][T31146] veth0_vlan: left promiscuous mode
[ 1712.054794][ T5232] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 1712.245664][ T5232] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1712.256675][ T5232] usb 4-1: config 0 has no interfaces?
[ 1712.262222][ T5232] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1712.271801][ T5232] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1712.283104][ T5232] usb 4-1: config 0 descriptor??
[ 1712.984292][T31146] team0 (unregistering): Port device team_slave_1 removed
[ 1713.066911][T31146] team0 (unregistering): Port device team_slave_0 removed
[ 1713.685455][T10850] Bluetooth: hci0: command tx timeout
[ 1713.959693][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1713.970825][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1713.981260][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1713.995234][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.005827][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.016399][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.026384][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.037012][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.047046][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.057860][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.071034][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.081948][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.091982][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.102938][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.112940][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.123508][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.133583][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.144090][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.154139][T29821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1714.164907][T29821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.188913][T29821] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1714.226323][ T4536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1714.264019][T31289] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[ 1714.276043][T31289] bridge0: port 3(macvlan2) entered blocking state
[ 1714.282740][T31289] bridge0: port 3(macvlan2) entered disabled state
[ 1714.290657][T31289] macvlan2: entered allmulticast mode
[ 1714.299146][T31289] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[ 1714.308647][T31289] macvlan2: entered promiscuous mode
[ 1714.317770][T29821] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1714.334931][T29821] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1714.344298][T29821] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1714.353814][T29821] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1714.446960][ T5305] usb 4-1: USB disconnect, device number 31
[ 1714.460679][T31159] chnl_net:caif_netlink_parms(): no params data found
[ 1714.646089][T29854] veth0_vlan: entered promiscuous mode
[ 1714.660870][T29854] veth1_vlan: entered promiscuous mode
[ 1714.916861][T31159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1714.924209][T31159] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1714.945739][T31159] bridge_slave_0: entered allmulticast mode
[ 1714.953127][T31159] bridge_slave_0: entered promiscuous mode
[ 1714.987144][T31159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1714.994317][T31159] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1715.015048][T31159] bridge_slave_1: entered allmulticast mode
[ 1715.029926][T31159] bridge_slave_1: entered promiscuous mode
[ 1715.051685][T29854] veth0_macvtap: entered promiscuous mode
[ 1715.151594][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1715.171527][T31159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1715.180995][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1715.206327][T31159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1715.227056][T29854] veth1_macvtap: entered promiscuous mode
[ 1715.475828][T31159] team0: Port device team_slave_0 added
[ 1715.483671][T31492] FAULT_INJECTION: forcing a failure.
[ 1715.483671][T31492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1715.500428][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1715.512676][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1715.534586][T31492] CPU: 1 UID: 0 PID: 31492 Comm: syz.4.4305 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1715.545482][T31492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1715.555586][T31492] Call Trace:
[ 1715.558902][T31492]  <TASK>
[ 1715.561854][T31492]  dump_stack_lvl+0x241/0x360
[ 1715.566581][T31492]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1715.571826][T31492]  ? __pfx__printk+0x10/0x10
[ 1715.576476][T31492]  ? snprintf+0xda/0x120
[ 1715.580759][T31492]  should_fail_ex+0x3b0/0x4e0
[ 1715.585489][T31492]  _copy_to_user+0x2f/0xb0
[ 1715.589957][T31492]  simple_read_from_buffer+0xca/0x150
[ 1715.595385][T31492]  proc_fail_nth_read+0x1e9/0x250
[ 1715.600469][T31492]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1715.606069][T31492]  ? rw_verify_area+0x55e/0x6f0
[ 1715.610977][T31492]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1715.616589][T31492]  vfs_read+0x201/0xbc0
[ 1715.620813][T31492]  ? __pfx_lock_release+0x10/0x10
[ 1715.625901][T31492]  ? __pfx_vfs_read+0x10/0x10
[ 1715.630661][T31492]  ? __fget_files+0x3f3/0x470
[ 1715.635398][T31492]  ? fdget_pos+0x24e/0x320
[ 1715.639888][T31492]  ksys_read+0x183/0x2b0
[ 1715.644157][T31492]  ? __pfx_ksys_read+0x10/0x10
[ 1715.648933][T31492]  ? __secure_computing+0x125/0x370
[ 1715.654153][T31492]  __do_fast_syscall_32+0xb4/0x110
[ 1715.659279][T31492]  ? exc_page_fault+0x590/0x8c0
[ 1715.664248][T31492]  do_fast_syscall_32+0x34/0x80
[ 1715.669109][T31492]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1715.675450][T31492] RIP: 0023:0xf739d579
[ 1715.679528][T31492] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1715.699234][T31492] RSP: 002b:00000000f56865a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[ 1715.707665][T31492] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5686620
[ 1715.715652][T31492] RDX: 000000000000000f RSI: 00000000f738bff4 RDI: 0000000000000000
[ 1715.723633][T31492] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1715.731614][T31492] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1715.739605][T31492] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1715.747808][T31492]  </TASK>
[ 1715.766803][T31159] team0: Port device team_slave_1 added
[ 1715.804571][T10850] Bluetooth: hci0: command tx timeout
[ 1715.825970][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.838797][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.849488][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.860952][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.904679][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.916099][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.926040][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.936600][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.946986][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.958288][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.968363][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1715.978976][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.988901][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1716.000218][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.010374][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1716.021053][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.031039][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1716.042128][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.052779][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1716.063581][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.073507][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1716.084226][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.096133][T29854] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1716.173551][T31159] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1716.191749][T31159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1716.240960][T31522] netlink: 'syz.4.4307': attribute type 1 has an invalid length.
[ 1716.252811][T31522] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.4307'.
[ 1716.263136][T31159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1716.301351][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.318001][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.336609][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.348982][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.359170][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.369966][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.383504][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.394248][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.414551][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.434905][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.454498][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.472180][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.485554][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.502583][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.513017][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.523962][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.534308][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.545784][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.556999][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.581839][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.604631][T29854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1716.630445][T29854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1716.653508][T29854] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1716.708478][T29854] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1716.734586][T29854] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1716.743493][T29854] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1716.795333][T29854] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1716.817355][T31159] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1716.824375][T31159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1716.899728][T31159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1717.139274][T31562] fuse: Unknown parameter 'vd'
[ 1717.159230][T31563] input: syz1 as /devices/virtual/input/input76
[ 1717.280696][T31159] hsr_slave_0: entered promiscuous mode
[ 1717.293413][T31159] hsr_slave_1: entered promiscuous mode
[ 1717.301306][T31159] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1717.309261][T19404] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 1717.318203][T31159] Cannot create hsr debugfs directory
[ 1717.473494][T19404] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1717.492680][T19404] usb 4-1: config 0 has no interfaces?
[ 1717.514398][T19404] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1717.523803][T19404] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1717.543838][ T4536] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1717.557137][T19404] usb 4-1: config 0 descriptor??
[ 1717.752733][ T4536] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1717.835555][T10850] Bluetooth: hci0: command tx timeout
[ 1717.895202][T13755] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1717.903100][T13755] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1717.953840][ T5227] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1717.968641][ T5227] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1717.970940][ T4536] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1718.004620][ T5227] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1718.014098][   T25] usb 4-1: USB disconnect, device number 32
[ 1718.024275][ T5227] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1718.036152][ T5227] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1718.045295][ T5227] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1718.216937][ T4536] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1718.272442][T31146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1718.305080][T31146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1719.126202][ T4536] bridge_slave_1: left allmulticast mode
[ 1719.132119][ T4536] bridge_slave_1: left promiscuous mode
[ 1719.145615][ T4536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1719.157240][ T4536] bridge_slave_0: left allmulticast mode
[ 1719.162961][ T4536] bridge_slave_0: left promiscuous mode
[ 1719.169835][ T4536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1720.169284][ T5227] Bluetooth: hci2: command tx timeout
[ 1720.244402][ T4536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1720.275429][ T4536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1720.315925][ T4536] bond0 (unregistering): Released all slaves
[ 1720.349597][T31817] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_macvtap, syncid = 0, id = 0
[ 1720.528107][T31856] FAULT_INJECTION: forcing a failure.
[ 1720.528107][T31856] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1720.573514][T31856] CPU: 1 UID: 0 PID: 31856 Comm: syz.3.4321 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1720.584375][T31856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1720.594463][T31856] Call Trace:
[ 1720.597789][T31856]  <TASK>
[ 1720.600762][T31856]  dump_stack_lvl+0x241/0x360
[ 1720.605496][T31856]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1720.610758][T31856]  ? __pfx__printk+0x10/0x10
[ 1720.615416][T31856]  ? snprintf+0xda/0x120
[ 1720.619714][T31856]  should_fail_ex+0x3b0/0x4e0
[ 1720.624441][T31856]  _copy_to_user+0x2f/0xb0
[ 1720.628918][T31856]  simple_read_from_buffer+0xca/0x150
[ 1720.634338][T31856]  proc_fail_nth_read+0x1e9/0x250
[ 1720.639410][T31856]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1720.645090][T31856]  ? rw_verify_area+0x55e/0x6f0
[ 1720.649973][T31856]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1720.655572][T31856]  vfs_read+0x201/0xbc0
[ 1720.659793][T31856]  ? __pfx_lock_release+0x10/0x10
[ 1720.664850][T31856]  ? __pfx_vfs_read+0x10/0x10
[ 1720.669556][T31856]  ? __fget_files+0x3f3/0x470
[ 1720.674266][T31856]  ? fdget_pos+0x24e/0x320
[ 1720.678706][T31856]  ksys_read+0x183/0x2b0
[ 1720.682965][T31856]  ? __pfx_ksys_read+0x10/0x10
[ 1720.687742][T31856]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1720.694350][T31856]  ? lockdep_hardirqs_on+0x99/0x150
[ 1720.699574][T31856]  __do_fast_syscall_32+0xb4/0x110
[ 1720.704700][T31856]  ? exc_page_fault+0x590/0x8c0
[ 1720.709575][T31856]  do_fast_syscall_32+0x34/0x80
[ 1720.714444][T31856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1720.720794][T31856] RIP: 0023:0xf7f07579
[ 1720.724879][T31856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1720.744522][T31856] RSP: 002b:00000000f56865a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[ 1720.752965][T31856] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5686620
[ 1720.760957][T31856] RDX: 000000000000000f RSI: 00000000f738bff4 RDI: 0000000000000000
[ 1720.768941][T31856] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1720.776964][T31856] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1720.784945][T31856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1720.792949][T31856]  </TASK>
[ 1720.966535][T31904] fuse: Bad value for 'group_id'
[ 1720.971813][T31904] fuse: Bad value for 'group_id'
[ 1721.038727][T31907] netlink: 'syz.3.4323': attribute type 10 has an invalid length.
[ 1721.047255][T31907] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.4323'.
[ 1721.057388][T31907] openvswitch: netlink: Flow key attr not present in new flow.
[ 1721.239189][T31684] chnl_net:caif_netlink_parms(): no params data found
[ 1721.308644][ T5227] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1721.318115][ T5227] Bluetooth: hci4: Injecting HCI hardware error event
[ 1721.328357][T10850] Bluetooth: hci4: hardware error 0x00
[ 1721.390043][T31159] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1721.485661][ T5283] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[ 1721.525657][T31159] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1721.541497][ T4536] hsr_slave_0: left promiscuous mode
[ 1721.555583][ T4536] hsr_slave_1: left promiscuous mode
[ 1721.562927][ T4536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1721.574981][ T4536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1721.596953][ T4536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1721.612695][ T4536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1721.662893][ T4536] veth1_macvtap: left promiscuous mode
[ 1721.668823][ T4536] veth0_macvtap: left promiscuous mode
[ 1721.680064][ T5283] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1721.690357][ T5283] usb 2-1: config 0 has no interfaces?
[ 1721.696509][ T5283] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1721.706894][ T4536] veth1_vlan: left promiscuous mode
[ 1721.712320][ T4536] veth0_vlan: left promiscuous mode
[ 1721.718291][ T5283] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1721.736361][ T5283] usb 2-1: config 0 descriptor??
[ 1722.234611][ T5227] Bluetooth: hci2: command tx timeout
[ 1722.914321][ T4536] team0 (unregistering): Port device team_slave_1 removed
[ 1722.993303][ T4536] team0 (unregistering): Port device team_slave_0 removed
[ 1723.356630][T10850] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1724.052709][T31159] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1724.073948][T31920] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[ 1724.097166][T31920] bridge0: port 3(macvlan2) entered blocking state
[ 1724.114636][T31920] bridge0: port 3(macvlan2) entered disabled state
[ 1724.121596][T31920] macvlan2: entered allmulticast mode
[ 1724.127641][T31920] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[ 1724.138176][T31920] macvlan2: entered promiscuous mode
[ 1724.148057][T31159] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1724.171601][T31684] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1724.181341][T31684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1724.190599][T31684] bridge_slave_0: entered allmulticast mode
[ 1724.200917][T31684] bridge_slave_0: entered promiscuous mode
[ 1724.222781][T31684] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1724.241012][T31684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1724.256007][T31684] bridge_slave_1: entered allmulticast mode
[ 1724.269004][T31684] bridge_slave_1: entered promiscuous mode
[ 1724.281720][  T937] usb 2-1: USB disconnect, device number 69
[ 1724.316961][T10850] Bluetooth: hci2: command tx timeout
[ 1724.451410][T32056] FAULT_INJECTION: forcing a failure.
[ 1724.451410][T32056] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.464766][T32056] CPU: 1 UID: 0 PID: 32056 Comm: syz.3.4330 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1724.475575][T32056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1724.485680][T32056] Call Trace:
[ 1724.488989][T32056]  <TASK>
[ 1724.491947][T32056]  dump_stack_lvl+0x241/0x360
[ 1724.496657][T32056]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1724.501876][T32056]  ? __pfx__printk+0x10/0x10
[ 1724.506522][T32056]  ? ref_tracker_alloc+0x332/0x490
[ 1724.511657][T32056]  should_fail_ex+0x3b0/0x4e0
[ 1724.516358][T32056]  ? skb_clone+0x20c/0x390
[ 1724.520785][T32056]  should_failslab+0xac/0x100
[ 1724.525476][T32056]  ? skb_clone+0x20c/0x390
[ 1724.529904][T32056]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1724.535296][T32056]  skb_clone+0x20c/0x390
[ 1724.539658][T32056]  __netlink_deliver_tap+0x3cc/0x7c0
[ 1724.545072][T32056]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1724.550285][T32056]  netlink_deliver_tap+0x19d/0x1b0
[ 1724.555433][T32056]  netlink_unicast+0x7c4/0x990
[ 1724.560231][T32056]  ? __pfx_netlink_unicast+0x10/0x10
[ 1724.565545][T32056]  ? __virt_addr_valid+0x183/0x530
[ 1724.570670][T32056]  ? __check_object_size+0x48e/0x900
[ 1724.576000][T32056]  netlink_sendmsg+0x8e4/0xcb0
[ 1724.580804][T32056]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1724.586121][T32056]  ? __pfx_lock_release+0x10/0x10
[ 1724.591179][T32056]  ? aa_sock_msg_perm+0x91/0x160
[ 1724.596143][T32056]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1724.601442][T32056]  __sock_sendmsg+0x221/0x270
[ 1724.606155][T32056]  ____sys_sendmsg+0x52a/0x7e0
[ 1724.610945][T32056]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1724.616256][T32056]  __sys_sendmsg+0x292/0x380
[ 1724.620861][T32056]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1724.626007][T32056]  ? __pfx_vfs_write+0x10/0x10
[ 1724.630978][T32056]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1724.637601][T32056]  ? lockdep_hardirqs_on+0x99/0x150
[ 1724.642845][T32056]  __do_fast_syscall_32+0xb4/0x110
[ 1724.647981][T32056]  ? exc_page_fault+0x590/0x8c0
[ 1724.652859][T32056]  do_fast_syscall_32+0x34/0x80
[ 1724.657724][T32056]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1724.664064][T32056] RIP: 0023:0xf7f07579
[ 1724.668144][T32056] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1724.687762][T32056] RSP: 002b:00000000f568656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1724.696199][T32056] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[ 1724.704210][T32056] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1724.712210][T32056] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1724.720199][T32056] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1724.728189][T32056] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1724.736189][T32056]  </TASK>
[ 1724.779127][T31684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1724.827884][T31684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1724.980190][T32085] fuse: Bad value for 'group_id'
[ 1724.983729][T31684] team0: Port device team_slave_0 added
[ 1724.985390][T32085] fuse: Bad value for 'group_id'
[ 1725.045070][T31684] team0: Port device team_slave_1 added
[ 1725.196430][T31684] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1725.214156][T31684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1725.241210][T31684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1725.355306][T31684] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1725.386296][T31684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1725.474580][T31684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1725.668982][T31684] hsr_slave_0: entered promiscuous mode
[ 1725.681452][T32167] FAULT_INJECTION: forcing a failure.
[ 1725.681452][T32167] name failslab, interval 1, probability 0, space 0, times 0
[ 1725.711321][T32167] CPU: 0 UID: 0 PID: 32167 Comm: syz.3.4336 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1725.722165][T32167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1725.732271][T32167] Call Trace:
[ 1725.735593][T32167]  <TASK>
[ 1725.738568][T32167]  dump_stack_lvl+0x241/0x360
[ 1725.743302][T32167]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1725.748555][T32167]  ? __pfx__printk+0x10/0x10
[ 1725.753301][T32167]  ? ref_tracker_alloc+0x332/0x490
[ 1725.758468][T32167]  should_fail_ex+0x3b0/0x4e0
[ 1725.763211][T32167]  ? skb_clone+0x20c/0x390
[ 1725.767684][T32167]  should_failslab+0xac/0x100
[ 1725.772525][T32167]  ? skb_clone+0x20c/0x390
[ 1725.777085][T32167]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1725.782519][T32167]  skb_clone+0x20c/0x390
[ 1725.786779][T32167]  __netlink_deliver_tap+0x3cc/0x7c0
[ 1725.792203][T32167]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1725.797425][T32167]  netlink_deliver_tap+0x19d/0x1b0
[ 1725.802546][T32167]  netlink_unicast+0x7c4/0x990
[ 1725.807329][T32167]  ? __pfx_netlink_unicast+0x10/0x10
[ 1725.812641][T32167]  ? __virt_addr_valid+0x183/0x530
[ 1725.817770][T32167]  ? __check_object_size+0x48e/0x900
[ 1725.823071][T32167]  netlink_sendmsg+0x8e4/0xcb0
[ 1725.827854][T32167]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1725.833167][T32167]  ? __pfx_lock_release+0x10/0x10
[ 1725.838247][T32167]  ? aa_sock_msg_perm+0x91/0x160
[ 1725.843245][T32167]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1725.848538][T32167]  __sock_sendmsg+0x221/0x270
[ 1725.853234][T32167]  ____sys_sendmsg+0x52a/0x7e0
[ 1725.858016][T32167]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1725.863337][T32167]  __sys_sendmsg+0x292/0x380
[ 1725.867944][T32167]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1725.873079][T32167]  ? __pfx_vfs_write+0x10/0x10
[ 1725.877894][T32167]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1725.884511][T32167]  ? lockdep_hardirqs_on+0x99/0x150
[ 1725.889729][T32167]  __do_fast_syscall_32+0xb4/0x110
[ 1725.894851][T32167]  ? exc_page_fault+0x590/0x8c0
[ 1725.899733][T32167]  do_fast_syscall_32+0x34/0x80
[ 1725.904626][T32167]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1725.910994][T32167] RIP: 0023:0xf7f07579
[ 1725.915097][T32167] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1725.934827][T32167] RSP: 002b:00000000f568656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1725.943267][T32167] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000240
[ 1725.951259][T32167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1725.959248][T32167] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1725.967244][T32167] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1725.975234][T32167] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1725.983226][T32167]  </TASK>
[ 1726.008198][T31684] hsr_slave_1: entered promiscuous mode
[ 1726.015414][T31684] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1726.036659][T31684] Cannot create hsr debugfs directory
[ 1726.151868][T31159] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1726.286654][T31159] 8021q: adding VLAN 0 to HW filter on device team0
[ 1726.335438][ T4536] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1726.342566][ T4536] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1726.388895][ T3020] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1726.396185][ T3020] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1726.404137][T10850] Bluetooth: hci2: command tx timeout
[ 1726.651531][T31159] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1726.683780][T31159] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1726.873489][T32272] fuse: Bad value for 'group_id'
[ 1726.884710][T32272] fuse: Bad value for 'group_id'
[ 1726.895831][T31159] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1727.082938][T31159] veth0_vlan: entered promiscuous mode
[ 1727.186139][T31159] veth1_vlan: entered promiscuous mode
[ 1727.225313][T31684] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1727.237549][T31684] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1727.276626][T31684] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1727.296130][T31684] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1727.328252][   T46] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1727.343203][T31159] veth0_macvtap: entered promiscuous mode
[ 1727.382954][T31159] veth1_macvtap: entered promiscuous mode
[ 1727.440003][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.461218][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.504753][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.521202][   T46] usb 2-1: New USB device found, idVendor=10c4, idProduct=8acf, bcdDevice= 0.00
[ 1727.532120][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1727.540424][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.561719][   T46] usb 2-1: config 0 descriptor??
[ 1727.568010][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.595037][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.612830][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.654317][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.674651][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.692573][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.710359][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.722547][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.732695][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.743472][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.753421][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.765216][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.775616][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.786633][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.796785][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.807707][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.818984][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1727.830184][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.845285][T31159] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1727.915003][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1727.948250][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.971949][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1727.983045][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1727.993441][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.005019][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.016368][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.027880][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.038359][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.049861][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.069177][   T46] hid-u2fzero 0003:10C4:8ACF.007B: hidraw0: USB HID v0.00 Device [HID 10c4:8acf] on usb-dummy_hcd.1-1/input0
[ 1728.085242][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.096737][   T46] hid-u2fzero 0003:10C4:8ACF.007B: U2F Zero LED initialised
[ 1728.104273][   T46] hid-u2fzero 0003:10C4:8ACF.007B: U2F Zero RNG initialised
[ 1728.111835][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.125185][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.137303][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.147886][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.159594][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.170972][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.184771][T10485] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[ 1728.185945][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.202700][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.213584][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.223621][T31159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1728.235509][T31159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1728.247982][T31159] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1728.272929][T31159] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1728.282159][T31159] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1728.293579][T31159] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1728.304797][T31159] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1728.327592][T32281] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1728.345302][T10485] usb 4-1: Using ep0 maxpacket: 32
[ 1728.352013][T32281] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1728.365453][T10485] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1728.389516][ T5283] usb 2-1: USB disconnect, device number 70
[ 1728.404279][T10485] usb 4-1: New USB device found, idVendor=3823, idProduct=0001, bcdDevice= 3.eb
[ 1728.448354][T10485] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1728.478185][T10485] usb 4-1: Product: syz
[ 1728.482419][T10485] usb 4-1: Manufacturer: syz
[ 1728.519796][T10485] usb 4-1: SerialNumber: syz
[ 1728.538211][T10485] usb 4-1: config 0 descriptor??
[ 1728.570496][T10485] usbtouchscreen 4-1:0.0: probe with driver usbtouchscreen failed with error -12
[ 1728.584354][T31684] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1728.627370][T31684] 8021q: adding VLAN 0 to HW filter on device team0
[ 1728.650959][T11611] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1728.658334][T11611] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1728.684362][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1728.707812][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1728.728492][ T4536] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1728.735819][ T4536] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1728.760168][T32318] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4344'.
[ 1728.819871][ T6284] usb 4-1: USB disconnect, device number 33
[ 1728.850241][T11611] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1728.871966][T11611] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1728.992839][T31684] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1729.105760][T32377] input: syz0 as /devices/virtual/input/input78
[ 1729.134202][T31684] veth0_vlan: entered promiscuous mode
[ 1729.190549][T31684] veth1_vlan: entered promiscuous mode
[ 1729.241592][T31684] veth0_macvtap: entered promiscuous mode
[ 1729.252809][T31684] veth1_macvtap: entered promiscuous mode
[ 1729.273226][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.284899][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.295202][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.305941][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.315927][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.326482][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.336465][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.346990][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.358095][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.368759][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.378888][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.389498][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.399460][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.410033][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.419982][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.430544][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.440646][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.451300][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.461761][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.472858][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.482795][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.493459][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.503397][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1729.513953][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.526550][T31684] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1729.549676][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.574539][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.624507][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.640908][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.651412][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.663169][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.673595][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.674615][ T6284] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[ 1729.700969][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.712918][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.725341][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.735535][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.746231][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.758384][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.774227][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.785378][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.796967][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.813993][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.814728][T10485] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1729.826251][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.845289][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.856472][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.867714][ T6284] usb 2-1: Using ep0 maxpacket: 32
[ 1729.880210][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.892044][ T6284] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1729.910083][ T6284] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1729.921698][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.932316][ T6284] usb 2-1: New USB device found, idVendor=1e71, idProduct=200f, bcdDevice= 0.00
[ 1729.942844][T31684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1729.953803][ T6284] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1729.963567][T31684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1729.976748][ T6284] usb 2-1: config 0 descriptor??
[ 1729.994781][T10485] usb 3-1: Using ep0 maxpacket: 8
[ 1730.002261][T31684] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1730.015816][T10485] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1730.018536][T32393] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1730.032279][T32393] IPv6: NLM_F_CREATE should be set when creating new route
[ 1730.036408][T10485] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1730.039631][T32393] IPv6: NLM_F_CREATE should be set when creating new route
[ 1730.088103][T10485] usb 3-1: config 0 descriptor??
[ 1730.094115][T31684] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.116204][T10485] ums-jumpshot 3-1:0.0: USB Mass Storage device detected
[ 1730.124895][T31684] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.146562][T10485] ums-jumpshot 3-1:0.0: Quirks match for vid 05dc pid 0001: 2
[ 1730.155211][T31684] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.164308][T31684] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.246586][T32424] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4348'.
[ 1730.396681][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.403436][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.508964][T32387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1730.571493][ T3020] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1730.598066][T32387] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1730.609169][ T3020] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1730.679636][ T6284] nzxt-smart2 0003:1E71:200F.007C: unknown main item tag 0x0
[ 1730.719889][ T6284] nzxt-smart2 0003:1E71:200F.007C: item fetching failed at offset 2/5
[ 1730.750340][  T927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1730.754979][ T6284] nzxt-smart2 0003:1E71:200F.007C: probe with driver nzxt-smart2 failed with error -22
[ 1730.797957][  T927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1730.925596][ T6284] usb 2-1: USB disconnect, device number 71
[ 1731.228816][   T29] kauditd_printk_skb: 52 callbacks suppressed
[ 1731.228837][   T29] audit: type=1326 audit(1727910382.003:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.271252][T32488] FAULT_INJECTION: forcing a failure.
[ 1731.271252][T32488] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1731.309473][   T29] audit: type=1326 audit(1727910382.003:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.332445][T32488] CPU: 1 UID: 0 PID: 32488 Comm: syz.3.4355 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1731.343368][T32488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1731.353477][T32488] Call Trace:
[ 1731.356804][T32488]  <TASK>
[ 1731.359777][T32488]  dump_stack_lvl+0x241/0x360
[ 1731.364516][T32488]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1731.369764][T32488]  ? __pfx__printk+0x10/0x10
[ 1731.374413][T32488]  ? snprintf+0xda/0x120
[ 1731.378711][T32488]  should_fail_ex+0x3b0/0x4e0
[ 1731.383453][T32488]  _copy_to_user+0x2f/0xb0
[ 1731.385939][   T29] audit: type=1326 audit(1727910382.003:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.387919][T32488]  simple_read_from_buffer+0xca/0x150
[ 1731.387967][T32488]  proc_fail_nth_read+0x1e9/0x250
[ 1731.420368][T32488]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1731.425945][T32488]  ? rw_verify_area+0x55e/0x6f0
[ 1731.430817][T32488]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1731.436390][T32488]  vfs_read+0x201/0xbc0
[ 1731.440570][T32488]  ? __pfx_lock_release+0x10/0x10
[ 1731.445621][T32488]  ? __pfx_vfs_read+0x10/0x10
[ 1731.450322][T32488]  ? __fget_files+0x3f3/0x470
[ 1731.455047][T32488]  ? fdget_pos+0x24e/0x320
[ 1731.459482][T32488]  ksys_read+0x183/0x2b0
[ 1731.463736][T32488]  ? __pfx_ksys_read+0x10/0x10
[ 1731.468521][T32488]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1731.475133][T32488]  ? lockdep_hardirqs_on+0x99/0x150
[ 1731.480354][T32488]  __do_fast_syscall_32+0xb4/0x110
[ 1731.485486][T32488]  ? exc_page_fault+0x590/0x8c0
[ 1731.490358][T32488]  do_fast_syscall_32+0x34/0x80
[ 1731.495222][T32488]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1731.501572][T32488] RIP: 0023:0xf7f07579
[ 1731.505659][T32488] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1731.525283][T32488] RSP: 002b:00000000f56865a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[ 1731.533725][T32488] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5686620
[ 1731.541751][T32488] RDX: 000000000000000f RSI: 00000000f738bff4 RDI: 0000000000000000
[ 1731.549838][T32488] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1731.557964][T32488] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1731.565952][T32488] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1731.573963][T32488]  </TASK>
[ 1731.577103][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1731.592185][   T29] audit: type=1326 audit(1727910382.003:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.625037][   T29] audit: type=1326 audit(1727910382.003:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.648045][   T29] audit: type=1326 audit(1727910382.013:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.670750][   T29] audit: type=1326 audit(1727910382.013:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.692751][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1731.744354][   T29] audit: type=1326 audit(1727910382.013:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.766906][ T6284] usb 1-1: new high-speed USB device number 63 using dummy_hcd
[ 1731.776923][   T29] audit: type=1326 audit(1727910382.013:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.800118][   T29] audit: type=1326 audit(1727910382.013:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32485 comm="syz.0.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1731.822120][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1731.941530][ T6284] usb 1-1: config 0 has no interfaces?
[ 1731.948785][ T6284] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[ 1731.974612][ T6284] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1731.990498][ T6284] usb 1-1: config 0 descriptor??
[ 1732.041246][T32504] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1732.175028][  T937] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[ 1732.362463][  T937] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1732.394775][  T937] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1732.434603][  T937] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1732.452610][  T937] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1732.475031][  T937] usb 2-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00
[ 1732.504707][  T937] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1732.511641][ T6284] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 1732.531145][  T937] usb 2-1: config 0 descriptor??
[ 1732.552036][ T5281] usb 3-1: USB disconnect, device number 52
[ 1732.717165][ T6284] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1732.732686][ T6284] usb 4-1: config 0 has no interfaces?
[ 1732.781841][ T6284] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1732.814768][ T6284] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1732.857075][ T6284] usb 4-1: config 0 descriptor??
[ 1733.050206][  T937] thrustmaster 0003:044F:B653.007D: unbalanced delimiter at end of report description
[ 1733.097294][  T937] thrustmaster 0003:044F:B653.007D: parse failed
[ 1733.117463][  T937] thrustmaster 0003:044F:B653.007D: probe with driver thrustmaster failed with error -22
[ 1733.164305][T11611] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.250326][T32498] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1733.299914][T32498] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1733.371643][ T5281] usb 4-1: USB disconnect, device number 34
[ 1733.388180][  T937] usb 2-1: USB disconnect, device number 72
[ 1733.532079][T11611] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.726675][T11611] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.746407][T32587] FAULT_INJECTION: forcing a failure.
[ 1733.746407][T32587] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1733.795302][T32587] CPU: 1 UID: 0 PID: 32587 Comm: syz.1.4364 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1733.806239][T32587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1733.816341][T32587] Call Trace:
[ 1733.819664][T32587]  <TASK>
[ 1733.822631][T32587]  dump_stack_lvl+0x241/0x360
[ 1733.827358][T32587]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1733.832626][T32587]  ? __pfx__printk+0x10/0x10
[ 1733.837294][T32587]  ? __pfx_lock_release+0x10/0x10
[ 1733.842391][T32587]  should_fail_ex+0x3b0/0x4e0
[ 1733.847136][T32587]  _copy_from_iter+0x1ed/0x1d60
[ 1733.852043][T32587]  ? __virt_addr_valid+0x183/0x530
[ 1733.857313][T32587]  ? __pfx_lock_release+0x10/0x10
[ 1733.862410][T32587]  ? __alloc_skb+0x28f/0x440
[ 1733.867050][T32587]  ? __pfx__copy_from_iter+0x10/0x10
[ 1733.872489][T32587]  ? __virt_addr_valid+0x183/0x530
[ 1733.877669][T32587]  ? __virt_addr_valid+0x183/0x530
[ 1733.882834][T32587]  ? __virt_addr_valid+0x45f/0x530
[ 1733.888004][T32587]  ? __check_object_size+0x48e/0x900
[ 1733.893374][T32587]  netlink_sendmsg+0x73d/0xcb0
[ 1733.898201][T32587]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1733.903560][T32587]  ? __pfx_lock_release+0x10/0x10
[ 1733.908660][T32587]  ? aa_sock_msg_perm+0x91/0x160
[ 1733.913653][T32587]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1733.919000][T32587]  __sock_sendmsg+0x221/0x270
[ 1733.923756][T32587]  ____sys_sendmsg+0x52a/0x7e0
[ 1733.928673][T32587]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1733.934030][T32587]  __sys_sendmsg+0x292/0x380
[ 1733.938685][T32587]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1733.943861][T32587]  ? __pfx_vfs_write+0x10/0x10
[ 1733.948712][T32587]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1733.955376][T32587]  ? lockdep_hardirqs_on+0x99/0x150
[ 1733.960649][T32587]  __do_fast_syscall_32+0xb4/0x110
[ 1733.965822][T32587]  ? exc_page_fault+0x590/0x8c0
[ 1733.970746][T32587]  do_fast_syscall_32+0x34/0x80
[ 1733.975655][T32587]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1733.982042][T32587] RIP: 0023:0xf7f3f579
[ 1733.986161][T32587] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1734.005825][T32587] RSP: 002b:00000000f56c656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1734.014302][T32587] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200000c0
[ 1734.022335][T32587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1734.030360][T32587] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1734.038172][ T5227] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1734.038349][T32587] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1734.038372][T32587] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1734.050882][ T5227] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1734.053635][T32587]  </TASK>
[ 1734.078100][ T5227] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1734.088516][ T5227] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1734.096401][ T5227] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1734.107939][ T5227] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1734.347158][T11611] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1734.471480][ T6284] usb 1-1: USB disconnect, device number 63
[ 1734.505061][T32629] ip6t_srh: unknown srh invflags 4102
[ 1734.891919][T32591] chnl_net:caif_netlink_parms(): no params data found
[ 1734.917109][T11611] bridge_slave_1: left allmulticast mode
[ 1734.922814][T11611] bridge_slave_1: left promiscuous mode
[ 1734.967449][T11611] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1735.065385][T11611] bridge_slave_0: left allmulticast mode
[ 1735.071114][T11611] bridge_slave_0: left promiscuous mode
[ 1735.099860][T11611] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1735.722979][T32767] loop9: detected capacity change from 0 to 7
[ 1735.762642][T32767] Dev loop9: unable to read RDB block 7
[ 1735.778308][T32767]  loop9: unable to read partition table
[ 1735.795564][T32767] loop9: partition table beyond EOD, truncated
[ 1735.809337][T32767] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[ 1735.809337][T32767] 
) failed (rc=-5)
[ 1735.984572][ T5281] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[ 1736.135071][ T5281] usb 1-1: Using ep0 maxpacket: 32
[ 1736.155799][ T5227] Bluetooth: hci0: command tx timeout
[ 1736.168136][ T5281] usb 1-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[ 1736.177491][ T5281] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1736.188512][ T5281] usb 1-1: config 0 descriptor??
[ 1736.197889][ T5281] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[ 1736.641532][  T319] netlink: 'syz.3.4376': attribute type 11 has an invalid length.
[ 1736.665365][  T319] netlink: 204 bytes leftover after parsing attributes in process `syz.3.4376'.
[ 1736.850522][T11611] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1736.864372][T11611] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1736.910425][T11611] bond0 (unregistering): Released all slaves
[ 1736.958869][  T309] netlink: 'syz.4.4374': attribute type 10 has an invalid length.
[ 1737.079257][  T309] batman_adv: batadv0: Adding interface: team0
[ 1737.086738][  T309] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1737.114069][  T309] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 1737.194305][  T311] netlink: 'syz.4.4374': attribute type 10 has an invalid length.
[ 1737.203586][ T5281] gspca_vc032x: reg_w err -71
[ 1737.214667][  T311] netlink: 2 bytes leftover after parsing attributes in process `syz.4.4374'.
[ 1737.223786][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.226654][  T311] team0: entered promiscuous mode
[ 1737.234771][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.235560][  T311] team_slave_0: entered promiscuous mode
[ 1737.254817][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.264996][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.266995][  T311] team_slave_1: entered promiscuous mode
[ 1737.284906][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.292682][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.305952][  T311] 8021q: adding VLAN 0 to HW filter on device team0
[ 1737.312713][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.313324][  T311] batman_adv: batadv0: Interface activated: team0
[ 1737.318574][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.330488][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.335719][  T311] batman_adv: batadv0: Interface deactivated: team0
[ 1737.336160][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.349841][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.355597][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.362963][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.368585][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.374574][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.379895][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.385451][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.390782][ T5281] gspca_vc032x: I2c Bus Busy Wait 00
[ 1737.396205][ T5281] gspca_vc032x: Unknown sensor...
[ 1737.396515][  T311] batman_adv: batadv0: Removing interface: team0
[ 1737.401370][ T5281] vc032x 1-1:0.0: probe with driver vc032x failed with error -22
[ 1737.419872][ T5281] usb 1-1: USB disconnect, device number 64
[ 1737.436663][   T25] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[ 1737.465319][  T311] bridge0: port 3(team0) entered blocking state
[ 1737.471896][  T311] bridge0: port 3(team0) entered disabled state
[ 1737.480486][  T311] team0: entered allmulticast mode
[ 1737.487264][  T311] team_slave_0: entered allmulticast mode
[ 1737.493148][  T311] team_slave_1: entered allmulticast mode
[ 1737.509761][  T311] bridge0: port 3(team0) entered blocking state
[ 1737.516153][  T311] bridge0: port 3(team0) entered forwarding state
[ 1737.624679][   T25] usb 2-1: Using ep0 maxpacket: 32
[ 1737.654524][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1737.676896][   T25] usb 2-1: New USB device found, idVendor=3823, idProduct=0001, bcdDevice= 3.eb
[ 1737.686399][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1737.704591][   T25] usb 2-1: Product: syz
[ 1737.708827][   T25] usb 2-1: Manufacturer: syz
[ 1737.713449][   T25] usb 2-1: SerialNumber: syz
[ 1737.745505][   T25] usb 2-1: config 0 descriptor??
[ 1737.817325][   T25] usbtouchscreen 2-1:0.0: probe with driver usbtouchscreen failed with error -12
[ 1737.912744][  T364] FAULT_INJECTION: forcing a failure.
[ 1737.912744][  T364] name failslab, interval 1, probability 0, space 0, times 0
[ 1737.965023][  T364] CPU: 0 UID: 0 PID: 364 Comm: syz.0.4379 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1737.975701][  T364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1737.985804][  T364] Call Trace:
[ 1737.989133][  T364]  <TASK>
[ 1737.992103][  T364]  dump_stack_lvl+0x241/0x360
[ 1737.996920][  T364]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1738.002168][  T364]  ? __pfx__printk+0x10/0x10
[ 1738.006841][  T364]  ? ref_tracker_alloc+0x332/0x490
[ 1738.011968][  T364]  should_fail_ex+0x3b0/0x4e0
[ 1738.016667][  T364]  ? skb_clone+0x20c/0x390
[ 1738.021096][  T364]  should_failslab+0xac/0x100
[ 1738.025805][  T364]  ? skb_clone+0x20c/0x390
[ 1738.030273][  T364]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1738.035709][  T364]  skb_clone+0x20c/0x390
[ 1738.040013][  T364]  __netlink_deliver_tap+0x3cc/0x7c0
[ 1738.045353][  T364]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1738.050600][  T364]  netlink_deliver_tap+0x19d/0x1b0
[ 1738.055759][  T364]  netlink_unicast+0x7c4/0x990
[ 1738.060592][  T364]  ? __pfx_netlink_unicast+0x10/0x10
[ 1738.065933][  T364]  ? __virt_addr_valid+0x183/0x530
[ 1738.071113][  T364]  ? __check_object_size+0x48e/0x900
[ 1738.076457][  T364]  netlink_sendmsg+0x8e4/0xcb0
[ 1738.081283][  T364]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1738.086622][  T364]  ? __pfx_lock_release+0x10/0x10
[ 1738.091702][  T364]  ? aa_sock_msg_perm+0x91/0x160
[ 1738.096688][  T364]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1738.102014][  T364]  __sock_sendmsg+0x221/0x270
[ 1738.106757][  T364]  ____sys_sendmsg+0x52a/0x7e0
[ 1738.111601][  T364]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1738.116953][  T364]  __sys_sendmsg+0x292/0x380
[ 1738.121590][  T364]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1738.126758][  T364]  ? __pfx_vfs_write+0x10/0x10
[ 1738.131603][  T364]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1738.138251][  T364]  ? lockdep_hardirqs_on+0x99/0x150
[ 1738.143511][  T364]  __do_fast_syscall_32+0xb4/0x110
[ 1738.148676][  T364]  ? exc_page_fault+0x590/0x8c0
[ 1738.153603][  T364]  do_fast_syscall_32+0x34/0x80
[ 1738.158498][  T364]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1738.164875][  T364] RIP: 0023:0xf7f57579
[ 1738.168982][  T364] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1738.188655][  T364] RSP: 002b:00000000f56d656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1738.197219][  T364] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[ 1738.205249][  T364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1738.213275][  T364] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1738.221386][  T364] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1738.229416][  T364] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1738.237452][  T364]  </TASK>
[ 1738.240568][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1738.248863][ T5227] Bluetooth: hci0: command tx timeout
[ 1738.335998][  T328] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4377'.
[ 1738.879521][  T410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4383'.
[ 1738.928291][  T410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4383'.
[ 1738.945285][T28950] usb 2-1: USB disconnect, device number 73
[ 1738.985001][  T410] netlink: 116 bytes leftover after parsing attributes in process `syz.3.4383'.
[ 1738.994339][  T410] netlink: 116 bytes leftover after parsing attributes in process `syz.3.4383'.
[ 1739.093540][T32591] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1739.138804][T32591] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1739.169598][T32591] bridge_slave_0: entered allmulticast mode
[ 1739.193123][T32591] bridge_slave_0: entered promiscuous mode
[ 1739.211785][T11611] hsr_slave_0: left promiscuous mode
[ 1739.242061][T11611] hsr_slave_1: left promiscuous mode
[ 1739.249349][T11611] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1739.264673][T11611] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1739.284033][T11611] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1739.294709][T11611] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1739.334771][T11611] veth1_macvtap: left promiscuous mode
[ 1739.340533][T11611] veth0_macvtap: left promiscuous mode
[ 1739.346525][T11611] veth1_vlan: left promiscuous mode
[ 1739.351876][T11611] veth0_vlan: left promiscuous mode
[ 1740.322314][  T484] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4394'.
[ 1740.331557][T10850] Bluetooth: hci0: command tx timeout
[ 1740.584661][T10485] usb 2-1: new high-speed USB device number 74 using dummy_hcd
[ 1740.699201][T11611] team0 (unregistering): Port device team_slave_1 removed
[ 1740.725118][T10485] usb 2-1: device descriptor read/64, error -71
[ 1740.791717][T11611] team0 (unregistering): Port device team_slave_0 removed
[ 1740.974733][T10485] usb 2-1: new high-speed USB device number 75 using dummy_hcd
[ 1741.124696][T10485] usb 2-1: device descriptor read/64, error -71
[ 1741.245081][T10485] usb usb2-port1: attempt power cycle
[ 1741.571842][T32591] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1741.584724][T32591] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1741.592145][T32591] bridge_slave_1: entered allmulticast mode
[ 1741.594997][T10485] usb 2-1: new high-speed USB device number 76 using dummy_hcd
[ 1741.602933][T32591] bridge_slave_1: entered promiscuous mode
[ 1741.612330][  T458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4384'.
[ 1741.635331][T10485] usb 2-1: device descriptor read/8, error -71
[ 1741.827454][  T530] FAULT_INJECTION: forcing a failure.
[ 1741.827454][  T530] name failslab, interval 1, probability 0, space 0, times 0
[ 1741.840862][  T530] CPU: 1 UID: 0 PID: 530 Comm: syz.0.4395 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1741.851537][  T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1741.861646][  T530] Call Trace:
[ 1741.864969][  T530]  <TASK>
[ 1741.867942][  T530]  dump_stack_lvl+0x241/0x360
[ 1741.872759][  T530]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1741.878003][  T530]  ? __pfx__printk+0x10/0x10
[ 1741.882654][  T530]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1741.888691][  T530]  ? __pfx___might_resched+0x10/0x10
[ 1741.894025][  T530]  should_fail_ex+0x3b0/0x4e0
[ 1741.898745][  T530]  should_failslab+0xac/0x100
[ 1741.899697][T32591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1741.903450][  T530]  ? __alloc_skb+0x1c3/0x440
[ 1741.903480][  T530]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1741.918403][T32591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1741.922993][  T530]  ? do_raw_spin_lock+0x14f/0x370
[ 1741.923035][  T530]  __alloc_skb+0x1c3/0x440
[ 1741.923062][  T530]  ? __pfx___alloc_skb+0x10/0x10
[ 1741.923089][  T530]  ? _raw_spin_unlock+0x28/0x50
[ 1741.944644][T10485] usb 2-1: new high-speed USB device number 77 using dummy_hcd
[ 1741.946491][  T530]  ? unix_create1+0x60c/0x7a0
[ 1741.963752][  T530]  sock_wmalloc+0xab/0x120
[ 1741.965749][T10485] usb 2-1: device descriptor read/8, error -71
[ 1741.968199][  T530]  unix_stream_connect+0x352/0x10e0
[ 1741.979635][  T530]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1741.984535][  T530]  ? __might_fault+0xaa/0x120
[ 1741.989261][  T530]  ? __pfx_unix_stream_connect+0x10/0x10
[ 1741.994959][  T530]  ? __pfx_unix_stream_connect+0x10/0x10
[ 1742.000646][  T530]  __sys_connect+0x2d1/0x300
[ 1742.005289][  T530]  ? __pfx___sys_connect+0x10/0x10
[ 1742.010479][  T530]  __ia32_sys_connect+0x7a/0x90
[ 1742.015384][  T530]  __do_fast_syscall_32+0xb4/0x110
[ 1742.020563][  T530]  ? exc_page_fault+0x590/0x8c0
[ 1742.025471][  T530]  do_fast_syscall_32+0x34/0x80
[ 1742.030364][  T530]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1742.036736][  T530] RIP: 0023:0xf7f57579
[ 1742.040840][  T530] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1742.060503][  T530] RSP: 002b:00000000f56d656c EFLAGS: 00000206 ORIG_RAX: 000000000000016a
[ 1742.068981][  T530] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000640
[ 1742.077002][  T530] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[ 1742.085014][  T530] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1742.093024][  T530] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1742.094941][T10485] usb usb2-port1: unable to enumerate USB device
[ 1742.101008][  T530] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1742.101043][  T530]  </TASK>
[ 1742.267645][T32591] team0: Port device team_slave_0 added
[ 1742.335390][T32591] team0: Port device team_slave_1 added
[ 1742.352703][  T549] ip6t_srh: unknown srh invflags 4102
[ 1742.407735][T10850] Bluetooth: hci0: command tx timeout
[ 1742.416487][T32591] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1742.427047][T32591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1742.453446][  T596] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4400'.
[ 1742.461431][T32591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1742.475970][T32591] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1742.483974][T32591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1742.511171][T32591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1742.834914][T32591] hsr_slave_0: entered promiscuous mode
[ 1742.894320][T32591] hsr_slave_1: entered promiscuous mode
[ 1742.922973][T32591] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1742.947843][T32591] Cannot create hsr debugfs directory
[ 1743.150287][  T689] FAULT_INJECTION: forcing a failure.
[ 1743.150287][  T689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1743.187792][  T689] CPU: 1 UID: 0 PID: 689 Comm: syz.4.4407 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1743.198477][  T689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1743.208585][  T689] Call Trace:
[ 1743.211908][  T689]  <TASK>
[ 1743.214886][  T689]  dump_stack_lvl+0x241/0x360
[ 1743.219616][  T689]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1743.224879][  T689]  ? __pfx__printk+0x10/0x10
[ 1743.229539][  T689]  ? __pfx_lock_release+0x10/0x10
[ 1743.234628][  T689]  ? __lock_acquire+0x1384/0x2050
[ 1743.239723][  T689]  should_fail_ex+0x3b0/0x4e0
[ 1743.244483][  T689]  _copy_from_user+0x2f/0xe0
[ 1743.249149][  T689]  io_submit_one+0xc1/0x18a0
[ 1743.253893][  T689]  ? __pfx_io_submit_one+0x10/0x10
[ 1743.259067][  T689]  ? __might_fault+0xaa/0x120
[ 1743.263800][  T689]  ? __pfx_lock_release+0x10/0x10
[ 1743.268881][  T689]  ? lookup_ioctx+0x94/0x6a0
[ 1743.273498][  T689]  ? __might_fault+0xaa/0x120
[ 1743.278188][  T689]  ? __might_fault+0xc6/0x120
[ 1743.282881][  T689]  __se_compat_sys_io_submit+0x188/0x310
[ 1743.288550][  T689]  ? __pfx___se_compat_sys_io_submit+0x10/0x10
[ 1743.294745][  T689]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1743.301380][  T689]  ? lockdep_hardirqs_on+0x99/0x150
[ 1743.306607][  T689]  __do_fast_syscall_32+0xb4/0x110
[ 1743.311737][  T689]  ? exc_page_fault+0x590/0x8c0
[ 1743.316615][  T689]  do_fast_syscall_32+0x34/0x80
[ 1743.321478][  T689]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1743.327825][  T689] RIP: 0023:0xf739d579
[ 1743.331909][  T689] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1743.351590][  T689] RSP: 002b:00000000f568656c EFLAGS: 00000206 ORIG_RAX: 00000000000000f8
[ 1743.360059][  T689] RAX: ffffffffffffffda RBX: 00000000f7f00000 RCX: 0000000000000001
[ 1743.368057][  T689] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1743.376058][  T689] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1743.384040][  T689] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1743.392030][  T689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1743.400049][  T689]  </TASK>
[ 1743.997457][  T751] loop9: detected capacity change from 0 to 7
[ 1744.032356][  T751] Dev loop9: unable to read RDB block 7
[ 1744.053717][  T751]  loop9: unable to read partition table
[ 1744.061163][  T751] loop9: partition table beyond EOD, truncated
[ 1744.111338][  T751] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[ 1744.111338][  T751] 
) failed (rc=-5)
[ 1744.112915][  T769] netlink: 'syz.0.4411': attribute type 10 has an invalid length.
[ 1744.190057][  T769] batman_adv: batadv0: Adding interface: team0
[ 1744.190075][  T769] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1744.190096][  T769] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 1744.307616][  T771] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1744.461275][  T751] netlink: 'syz.0.4411': attribute type 10 has an invalid length.
[ 1744.461306][  T751] netlink: 2 bytes leftover after parsing attributes in process `syz.0.4411'.
[ 1744.461525][  T751] team0: entered promiscuous mode
[ 1744.461541][  T751] team_slave_0: entered promiscuous mode
[ 1744.461653][  T751] team_slave_1: entered promiscuous mode
[ 1744.480321][  T751] 8021q: adding VLAN 0 to HW filter on device team0
[ 1744.481158][  T751] batman_adv: batadv0: Interface activated: team0
[ 1744.481244][  T751] batman_adv: batadv0: Interface deactivated: team0
[ 1744.481274][  T751] batman_adv: batadv0: Removing interface: team0
[ 1744.487936][  T751] bridge0: port 3(team0) entered blocking state
[ 1744.488140][  T751] bridge0: port 3(team0) entered disabled state
[ 1744.488327][  T751] team0: entered allmulticast mode
[ 1744.488344][  T751] team_slave_0: entered allmulticast mode
[ 1744.488357][  T751] team_slave_1: entered allmulticast mode
[ 1744.499885][  T751] bridge0: port 3(team0) entered blocking state
[ 1744.499972][  T751] bridge0: port 3(team0) entered forwarding state
[ 1744.622982][  T788] ip6t_srh: unknown srh invflags 4102
[ 1744.831239][T32591] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1744.864105][T32591] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1744.921661][T32591] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1744.965593][T32591] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1745.362358][  T835] random: crng reseeded on system resumption
[ 1745.416260][T32591] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1745.488068][T32591] 8021q: adding VLAN 0 to HW filter on device team0
[ 1745.513047][T31146] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1745.518177][   T29] kauditd_printk_skb: 52 callbacks suppressed
[ 1745.518198][   T29] audit: type=1326 audit(1727910396.283:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.520265][T31146] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1745.558640][   T29] audit: type=1326 audit(1727910396.333:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.594937][   T29] audit: type=1326 audit(1727910396.353:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.618398][   T29] audit: type=1326 audit(1727910396.353:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.643070][   T29] audit: type=1326 audit(1727910396.353:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.678016][  T927] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1745.679691][   T29] audit: type=1326 audit(1727910396.353:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.685188][  T927] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1745.864825][   T29] audit: type=1326 audit(1727910396.353:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.897707][T32591] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1745.925748][  T850] FAULT_INJECTION: forcing a failure.
[ 1745.925748][  T850] name failslab, interval 1, probability 0, space 0, times 0
[ 1745.938202][   T29] audit: type=1326 audit(1727910396.353:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1745.960184][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.966529][  T850] CPU: 1 UID: 0 PID: 850 Comm: syz.1.4423 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1745.977714][  T850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1745.987824][  T850] Call Trace:
[ 1745.991128][  T850]  <TASK>
[ 1745.994077][  T850]  dump_stack_lvl+0x241/0x360
[ 1745.998801][  T850]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1746.004036][  T850]  ? __pfx__printk+0x10/0x10
[ 1746.008674][  T850]  ? ref_tracker_alloc+0x332/0x490
[ 1746.013820][  T850]  should_fail_ex+0x3b0/0x4e0
[ 1746.018549][  T850]  ? skb_clone+0x20c/0x390
[ 1746.023013][  T850]  should_failslab+0xac/0x100
[ 1746.027727][  T850]  ? skb_clone+0x20c/0x390
[ 1746.032170][  T850]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1746.037610][  T850]  skb_clone+0x20c/0x390
[ 1746.041907][  T850]  __netlink_deliver_tap+0x3cc/0x7c0
[ 1746.047275][  T850]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1746.052518][  T850]  netlink_deliver_tap+0x19d/0x1b0
[ 1746.057679][  T850]  netlink_unicast+0x7c4/0x990
[ 1746.061878][T32591] veth0_vlan: entered promiscuous mode
[ 1746.062487][  T850]  ? __pfx_netlink_unicast+0x10/0x10
[ 1746.073261][  T850]  ? __virt_addr_valid+0x183/0x530
[ 1746.078412][  T850]  ? __check_object_size+0x48e/0x900
[ 1746.083745][  T850]  netlink_sendmsg+0x8e4/0xcb0
[ 1746.088555][  T850]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1746.093899][  T850]  ? __pfx_lock_release+0x10/0x10
[ 1746.098977][  T850]  ? aa_sock_msg_perm+0x91/0x160
[ 1746.103971][  T850]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1746.105351][T32591] veth1_vlan: entered promiscuous mode
[ 1746.109277][  T850]  __sock_sendmsg+0x221/0x270
[ 1746.109318][  T850]  ____sys_sendmsg+0x52a/0x7e0
[ 1746.124273][  T850]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1746.129623][  T850]  __sys_sendmsg+0x292/0x380
[ 1746.134253][  T850]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1746.139425][  T850]  ? __pfx_vfs_write+0x10/0x10
[ 1746.144261][  T850]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1746.150920][  T850]  ? lockdep_hardirqs_on+0x99/0x150
[ 1746.156188][  T850]  __do_fast_syscall_32+0xb4/0x110
[ 1746.161364][  T850]  ? exc_page_fault+0x590/0x8c0
[ 1746.166370][  T850]  do_fast_syscall_32+0x34/0x80
[ 1746.171312][  T850]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1746.177699][  T850] RIP: 0023:0xf7f3f579
[ 1746.181828][  T850] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1746.201454][  T850] RSP: 002b:00000000f56c656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1746.209949][  T850] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1746.218041][  T850] RDX: 0000000000000840 RSI: 0000000000000000 RDI: 0000000000000000
[ 1746.222772][T32591] veth0_macvtap: entered promiscuous mode
[ 1746.226032][  T850] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1746.226052][  T850] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1746.226066][  T850] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1746.226095][  T850]  </TASK>
[ 1746.267536][   T29] audit: type=1326 audit(1727910397.033:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1746.344948][   T29] audit: type=1326 audit(1727910397.033:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=844 comm="syz.4.4422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1746.441395][T32591] veth1_macvtap: entered promiscuous mode
[ 1746.512869][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.544511][T28950] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[ 1746.579593][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.610120][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.642697][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.663070][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.685289][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.704550][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.725561][T28950] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1746.744504][T28950] usb 4-1: config 0 has no interfaces?
[ 1746.750208][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.761980][T28950] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1746.774674][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.781639][T28950] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1746.814664][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.818557][T28950] usb 4-1: config 0 descriptor??
[ 1746.835201][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.871988][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.891180][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.901808][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.911952][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.924954][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1746.967347][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1746.994525][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.014620][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1747.032655][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.046007][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1747.057758][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.068570][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1747.080877][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.096652][T32591] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1747.172246][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.204521][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.215050][T28950] usb 2-1: new high-speed USB device number 78 using dummy_hcd
[ 1747.217830][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.254491][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.271940][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.294571][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.305158][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.315773][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.325730][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.336488][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.346892][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.357673][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.367621][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.378514][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.388839][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.399395][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.406361][T28950] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1747.409669][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.430774][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.440764][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.451306][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.461234][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.471761][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.472017][T28950] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[ 1747.482112][T32591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1747.482140][T32591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1747.484224][T32591] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1747.524085][T32591] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1747.533301][T32591] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1747.542219][T32591] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1747.551075][T32591] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1747.634074][   T46] usb 4-1: USB disconnect, device number 35
[ 1751.976988][   T16] sched: DL replenish lagged too much
[ 1752.157249][T28950] usb 2-1: string descriptor 0 read error: -71
[ 1752.163587][T28950] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1759.169843][T28950] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1759.287833][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1759.437065][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1761.116656][  T997] FAULT_INJECTION: forcing a failure.
[ 1761.116656][  T997] name failslab, interval 1, probability 0, space 0, times 0
[ 1761.136933][  T927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1761.200077][  T927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1761.233948][  T997] CPU: 1 UID: 0 PID: 997 Comm: syz.3.4433 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1761.244611][  T997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1761.254810][  T997] Call Trace:
[ 1761.258119][  T997]  <TASK>
[ 1761.261084][  T997]  dump_stack_lvl+0x241/0x360
[ 1761.265810][  T997]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1761.271066][  T997]  ? __pfx__printk+0x10/0x10
[ 1761.275725][  T997]  ? ref_tracker_alloc+0x332/0x490
[ 1761.280878][  T997]  should_fail_ex+0x3b0/0x4e0
[ 1761.285610][  T997]  ? skb_clone+0x20c/0x390
[ 1761.290071][  T997]  should_failslab+0xac/0x100
[ 1761.294796][  T997]  ? skb_clone+0x20c/0x390
[ 1761.299257][  T997]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1761.304694][  T997]  skb_clone+0x20c/0x390
[ 1761.308985][  T997]  __netlink_deliver_tap+0x3cc/0x7c0
[ 1761.314416][  T997]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1761.319656][  T997]  netlink_deliver_tap+0x19d/0x1b0
[ 1761.324822][  T997]  netlink_unicast+0x7c4/0x990
[ 1761.329657][  T997]  ? __pfx_netlink_unicast+0x10/0x10
[ 1761.334990][  T997]  ? __virt_addr_valid+0x183/0x530
[ 1761.340143][  T997]  ? __check_object_size+0x48e/0x900
[ 1761.345568][  T997]  netlink_sendmsg+0x8e4/0xcb0
[ 1761.350379][  T997]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1761.355730][  T997]  ? __pfx_lock_release+0x10/0x10
[ 1761.360801][  T997]  ? aa_sock_msg_perm+0x91/0x160
[ 1761.365781][  T997]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1761.371105][  T997]  __sock_sendmsg+0x221/0x270
[ 1761.375839][  T997]  ____sys_sendmsg+0x52a/0x7e0
[ 1761.380654][  T997]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1761.386036][  T997]  __sys_sendmsg+0x292/0x380
[ 1761.390668][  T997]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1761.395838][  T997]  ? __pfx_vfs_write+0x10/0x10
[ 1761.400669][  T997]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1761.407306][  T997]  ? lockdep_hardirqs_on+0x99/0x150
[ 1761.412563][  T997]  __do_fast_syscall_32+0xb4/0x110
[ 1761.417715][  T997]  ? exc_page_fault+0x590/0x8c0
[ 1761.422634][  T997]  do_fast_syscall_32+0x34/0x80
[ 1761.427544][  T997]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1761.433998][  T997] RIP: 0023:0xf7f07579
[ 1761.438101][  T997] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1761.457751][  T997] RSP: 002b:00000000f568656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1761.466250][  T997] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000200
[ 1761.474263][  T997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1761.482272][  T997] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1761.490366][  T997] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1761.498397][  T997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1761.506510][  T997]  </TASK>
[ 1761.729385][ T1019] FAULT_INJECTION: forcing a failure.
[ 1761.729385][ T1019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1761.754642][ T1019] CPU: 1 UID: 0 PID: 1019 Comm: syz.4.4435 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1761.765442][ T1019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1761.775536][ T1019] Call Trace:
[ 1761.778854][ T1019]  <TASK>
[ 1761.781815][ T1019]  dump_stack_lvl+0x241/0x360
[ 1761.786556][ T1019]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1761.791794][ T1019]  ? __pfx__printk+0x10/0x10
[ 1761.796438][ T1019]  ? __pfx_lock_release+0x10/0x10
[ 1761.801520][ T1019]  should_fail_ex+0x3b0/0x4e0
[ 1761.806256][ T1019]  _copy_from_iter+0x1ed/0x1d60
[ 1761.811157][ T1019]  ? __virt_addr_valid+0x183/0x530
[ 1761.816316][ T1019]  ? __pfx_lock_release+0x10/0x10
[ 1761.821401][ T1019]  ? alloc_pages_mpol_noprof+0x417/0x680
[ 1761.827084][ T1019]  ? __pfx__copy_from_iter+0x10/0x10
[ 1761.832418][ T1019]  ? __virt_addr_valid+0x183/0x530
[ 1761.837575][ T1019]  ? __virt_addr_valid+0x183/0x530
[ 1761.842727][ T1019]  ? __virt_addr_valid+0x45f/0x530
[ 1761.847881][ T1019]  ? __check_object_size+0x48e/0x900
[ 1761.853231][ T1019]  af_alg_sendmsg+0x1519/0x2650
[ 1761.858161][ T1019]  ? __pfx_af_alg_sendmsg+0x10/0x10
[ 1761.863521][ T1019]  ? skcipher_check_key+0x15c/0x1d0
[ 1761.868767][ T1019]  ? skcipher_sendmsg_nokey+0x61/0x130
[ 1761.874266][ T1019]  ? __pfx_skcipher_sendmsg_nokey+0x10/0x10
[ 1761.880200][ T1019]  __sock_sendmsg+0x221/0x270
[ 1761.885021][ T1019]  __sys_sendto+0x39b/0x4f0
[ 1761.889567][ T1019]  ? __pfx___sys_sendto+0x10/0x10
[ 1761.894628][ T1019]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1761.900330][ T1019]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1761.906716][ T1019]  __ia32_sys_sendto+0xdd/0x100
[ 1761.911623][ T1019]  __do_fast_syscall_32+0xb4/0x110
[ 1761.916776][ T1019]  ? exc_page_fault+0x590/0x8c0
[ 1761.921675][ T1019]  do_fast_syscall_32+0x34/0x80
[ 1761.926568][ T1019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1761.932941][ T1019] RIP: 0023:0xf739d579
[ 1761.937135][ T1019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1761.956795][ T1019] RSP: 002b:00000000f568656c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[ 1761.965382][ T1019] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000080
[ 1761.973493][ T1019] RDX: 00000000ffffff9d RSI: 0000000000000000 RDI: 0000000000000000
[ 1761.981504][ T1019] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1761.989517][ T1019] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1761.997527][ T1019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1762.005558][ T1019]  </TASK>
[ 1762.187862][   T25] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[ 1762.211890][  T997] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4433'.
[ 1762.264218][  T997] openvswitch: netlink: Key type 29 is not supported
[ 1762.304842][ T1023] netlink: 'syz.3.4433': attribute type 10 has an invalid length.
[ 1762.377679][ T1023] bond0: (slave bond_slave_0): Releasing backup interface
[ 1762.396242][   T25] usb 1-1: device descriptor read/64, error -71
[ 1762.400629][T28950] usb 2-1: can't set config #1, error -71
[ 1762.554366][T28950] usb 2-1: USB disconnect, device number 78
[ 1762.654666][   T25] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[ 1762.829766][   T25] usb 1-1: device descriptor read/64, error -71
[ 1762.986504][   T25] usb usb1-port1: attempt power cycle
[ 1763.116704][   T29] kauditd_printk_skb: 2 callbacks suppressed
[ 1763.116728][   T29] audit: type=1326 audit(1727910413.833:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1763.225023][   T46] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1763.305360][   T29] audit: type=1326 audit(1727910413.833:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1763.364649][   T25] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 1763.440161][   T46] usb 4-1: Using ep0 maxpacket: 16
[ 1763.445882][   T25] usb 1-1: device descriptor read/8, error -71
[ 1763.469288][   T29] audit: type=1326 audit(1727910413.833:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1763.495186][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1763.585207][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1763.630654][   T46] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1763.664292][   T29] audit: type=1326 audit(1727910413.833:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1763.731574][   T46] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0014, bcdDevice= 0.00
[ 1763.754825][   T25] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 1763.797501][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1763.816817][   T25] usb 1-1: device descriptor read/8, error -71
[ 1763.824496][   T29] audit: type=1326 audit(1727910413.833:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1763.883519][   T46] usb 4-1: config 0 descriptor??
[ 1763.947374][   T25] usb usb1-port1: unable to enumerate USB device
[ 1764.028477][   T29] audit: type=1326 audit(1727910413.833:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1764.158113][ T5227] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1764.197502][ T5227] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1764.209922][ T5227] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1764.221768][ T5227] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1764.231046][ T5227] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1764.242460][ T5227] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1764.274842][ T6284] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1764.560528][ T6284] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1764.579619][   T29] audit: type=1326 audit(1727910413.833:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1764.731032][ T6284] usb 3-1: config 0 has no interfaces?
[ 1764.813275][ T6284] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1764.890680][   T29] audit: type=1326 audit(1727910413.833:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1764.913043][ T6284] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1764.974601][ T6284] usb 3-1: config 0 descriptor??
[ 1765.115232][   T29] audit: type=1326 audit(1727910413.843:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1765.587426][   T29] audit: type=1326 audit(1727910413.843:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1041 comm="syz.4.4439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1765.903208][ T1117] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[ 1766.324926][ T5227] Bluetooth: hci5: command tx timeout
[ 1766.507743][ T1117] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[ 1767.097311][ T1177] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4444'.
[ 1767.130026][T29372] usb 3-1: USB disconnect, device number 53
[ 1767.606686][ T1078] chnl_net:caif_netlink_parms(): no params data found
[ 1767.811540][ T1243] loop9: detected capacity change from 0 to 7
[ 1767.864370][ T1243] Dev loop9: unable to read RDB block 7
[ 1767.904717][ T1243]  loop9: unable to read partition table
[ 1767.937594][ T1243] loop9: partition table beyond EOD, truncated
[ 1767.943913][ T1243] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[ 1767.943913][ T1243] 
) failed (rc=-5)
[ 1768.022349][ T1273] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4447'.
[ 1768.394897][ T5227] Bluetooth: hci5: command tx timeout
[ 1768.640695][   T46] usbhid 4-1:0.0: can't add hid device: -71
[ 1768.656358][   T46] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1768.706347][   T46] usb 4-1: USB disconnect, device number 36
[ 1770.475181][ T5227] Bluetooth: hci5: command tx timeout
[ 1772.470309][   T29] kauditd_printk_skb: 3 callbacks suppressed
[ 1772.470331][   T29] audit: type=1326 audit(1727910423.223:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.554967][ T5227] Bluetooth: hci5: command tx timeout
[ 1772.664648][   T29] audit: type=1326 audit(1727910423.223:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.694786][ T6284] usb 1-1: new high-speed USB device number 69 using dummy_hcd
[ 1772.712743][   T29] audit: type=1326 audit(1727910423.223:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.767069][   T29] audit: type=1326 audit(1727910423.223:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.823997][   T29] audit: type=1326 audit(1727910423.223:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.873841][   T29] audit: type=1326 audit(1727910423.223:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1772.933033][ T6284] usb 1-1: config 0 has no interfaces?
[ 1772.939945][ T6284] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[ 1772.976351][ T6284] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1772.990734][   T29] audit: type=1326 audit(1727910423.223:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1773.047421][ T6284] usb 1-1: config 0 descriptor??
[ 1773.204810][   T29] audit: type=1326 audit(1727910423.223:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1773.280778][   T29] audit: type=1326 audit(1727910423.223:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1773.320206][   T46] usb 1-1: USB disconnect, device number 69
[ 1773.552499][   T29] audit: type=1326 audit(1727910423.233:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1293 comm="syz.0.4452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f57579 code=0x7ffc0000
[ 1775.014017][T10850] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1775.030149][T10850] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1775.041923][T10850] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1775.115777][T10850] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1775.123718][T10850] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1775.132728][T10850] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1777.194832][T10850] Bluetooth: hci6: command tx timeout
[ 1778.591472][ T5227] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1778.604245][ T5227] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1778.615620][ T5227] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1778.635614][ T5227] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1778.643498][ T5227] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1778.653748][ T5227] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1779.274722][T10850] Bluetooth: hci6: command tx timeout
[ 1780.715120][T10850] Bluetooth: hci7: command tx timeout
[ 1781.354721][T10850] Bluetooth: hci6: command tx timeout
[ 1782.795036][T10850] Bluetooth: hci7: command tx timeout
[ 1783.434611][T10850] Bluetooth: hci6: command tx timeout
[ 1783.910015][ T5227] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1783.923663][ T5227] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1783.946927][ T5227] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1783.959387][ T5227] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1783.970748][ T5227] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1783.978307][ T5227] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1784.148649][T10850] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1784.167735][T10850] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1784.177002][T10850] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1784.189418][T10850] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1784.209331][T10850] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1784.217243][T10850] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1784.875044][T10850] Bluetooth: hci7: command tx timeout
[ 1786.075369][ T5227] Bluetooth: hci8: command tx timeout
[ 1786.314915][T10850] Bluetooth: hci9: command tx timeout
[ 1786.955199][T10850] Bluetooth: hci7: command tx timeout
[ 1788.154872][T10850] Bluetooth: hci8: command tx timeout
[ 1788.394779][T10850] Bluetooth: hci9: command tx timeout
[ 1790.234738][T10850] Bluetooth: hci8: command tx timeout
[ 1790.474761][T10850] Bluetooth: hci9: command tx timeout
[ 1791.864325][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[ 1791.872365][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.314743][T10850] Bluetooth: hci8: command tx timeout
[ 1792.554885][T10850] Bluetooth: hci9: command tx timeout
[ 1793.041588][ T1272] netlink: 'syz.2.4446': attribute type 10 has an invalid length.
[ 1793.107108][ T1272] netlink: 2 bytes leftover after parsing attributes in process `syz.2.4446'.
[ 1793.156176][ T1272] team0: entered promiscuous mode
[ 1793.161278][ T1272] team_slave_0: entered promiscuous mode
[ 1793.195226][ T1272] team_slave_1: entered promiscuous mode
[ 1793.202930][ T1272] bridge0: port 3(team0) entered blocking state
[ 1793.246961][ T1272] bridge0: port 3(team0) entered disabled state
[ 1793.265439][ T1272] team0: entered allmulticast mode
[ 1793.295799][ T1272] team_slave_0: entered allmulticast mode
[ 1793.301560][ T1272] team_slave_1: entered allmulticast mode
[ 1793.349144][ T1272] bridge0: port 3(team0) entered blocking state
[ 1793.355590][ T1272] bridge0: port 3(team0) entered forwarding state
[ 1823.386250][ T5227] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1823.404857][ T5227] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1823.416607][ T5227] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1823.430012][ T5227] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1823.440095][ T5227] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1823.449727][ T5227] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1825.514870][T10850] Bluetooth: hci1: command tx timeout
[ 1827.594884][T10850] Bluetooth: hci1: command tx timeout
[ 1829.674862][T10850] Bluetooth: hci1: command tx timeout
[ 1831.754811][T10850] Bluetooth: hci1: command tx timeout
[ 1835.617939][ T5227] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1835.635624][ T5227] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1835.646796][ T5227] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1835.659306][ T5227] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1835.675217][ T5227] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1835.685835][ T5227] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1839.661730][ T1391] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1839.672203][ T1391] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1839.686361][ T1391] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1839.697275][ T1391] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1839.707072][ T1391] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1839.717896][ T1391] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1845.134116][ T1406] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1845.150230][ T1406] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1845.161785][ T1406] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1845.173409][ T1406] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1845.182801][ T1406] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1845.190362][ T1406] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1845.203859][ T1406] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1845.215625][ T1406] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1845.224507][ T1406] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1845.327914][ T1401] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1845.335839][ T1401] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1845.343327][ T1401] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1853.497414][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.503869][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[ 1853.668161][ T1401] Bluetooth: hci11: command tx timeout
[ 1855.674686][ T1391] Bluetooth: hci3: command tx timeout
[ 1855.683501][ T5227] Bluetooth: hci12: command tx timeout
[ 1855.755315][ T5227] Bluetooth: hci10: command tx timeout
[ 1855.762636][ T5227] Bluetooth: hci11: command tx timeout
[ 1857.754869][ T1391] Bluetooth: hci3: command tx timeout
[ 1857.761689][ T5227] Bluetooth: hci12: command tx timeout
[ 1857.834880][ T5227] Bluetooth: hci11: command tx timeout
[ 1857.840450][ T5227] Bluetooth: hci10: command tx timeout
[ 1859.834704][ T1401] Bluetooth: hci3: command tx timeout
[ 1859.841443][ T5227] Bluetooth: hci12: command tx timeout
[ 1859.914868][ T5227] Bluetooth: hci10: command tx timeout
[ 1859.920428][ T5227] Bluetooth: hci11: command tx timeout
[ 1860.485602][ T5227] Bluetooth: hci0: command 0x0406 tx timeout
[ 1861.914752][ T5227] Bluetooth: hci3: command tx timeout
[ 1861.920279][ T1391] Bluetooth: hci12: command tx timeout
[ 1861.995354][ T1391] Bluetooth: hci10: command tx timeout
[ 1885.539460][ T5227] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1885.554059][ T5227] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1885.564655][ T5227] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1885.572876][ T5227] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1885.594722][ T5227] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1885.602152][ T5227] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1887.674620][ T5227] Bluetooth: hci2: command tx timeout
[ 1889.754725][ T5227] Bluetooth: hci2: command tx timeout
[ 1891.201030][ T5227] Bluetooth: hci5: command 0x0406 tx timeout
[ 1891.834585][ T5227] Bluetooth: hci2: command tx timeout
[ 1893.914615][ T5227] Bluetooth: hci2: command tx timeout
[ 1896.970601][ T1401] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1896.986093][ T1401] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1896.997464][ T1401] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1897.008035][ T1401] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1897.034812][ T1401] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1897.045054][ T1401] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1900.825394][T10850] Bluetooth: hci13: command tx timeout
[ 1901.439577][ T1401] Bluetooth: hci6: command 0x0406 tx timeout
[ 1901.446007][T10850] Bluetooth: hci7: command 0x0406 tx timeout
[ 1901.617086][T10850] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1901.630134][T10850] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1901.646166][T10850] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1901.654510][T10850] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1901.662625][T10850] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 1901.670232][T10850] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1902.874809][ T1401] Bluetooth: hci13: command tx timeout
[ 1904.958549][ T1455] Bluetooth: hci13: command tx timeout
[ 1905.728472][T19587] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1905.748059][T19587] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1905.757954][T19587] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1905.768162][T19587] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1905.781322][T19587] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[ 1905.790969][T19587] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1905.941891][ T1462] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1905.960024][ T1462] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1905.969845][ T1462] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1905.978535][ T1462] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1905.988256][ T1462] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[ 1905.998824][ T1462] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1906.596631][ T1474] Bluetooth: hci8: command 0x0406 tx timeout
[ 1906.618529][ T1455] Bluetooth: hci9: command 0x0406 tx timeout
[ 1907.034834][ T1455] Bluetooth: hci13: command tx timeout
[ 1914.716860][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.723233][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[ 1921.754945][   T30] INFO: task syz.4.4453:1302 blocked for more than 143 seconds.
[ 1921.763673][   T30]       Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1921.825345][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1921.834093][   T30] task:syz.4.4453      state:D stack:24000 pid:1302  tgid:1299  ppid:29186  flags:0x20000004
[ 1921.975351][   T30] Call Trace:
[ 1921.978864][   T30]  <TASK>
[ 1921.981845][   T30]  __schedule+0x1895/0x4b30
[ 1922.074542][   T30]  ? __pfx___schedule+0x10/0x10
[ 1922.079502][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1922.145030][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1922.150600][   T30]  ? schedule+0x90/0x320
[ 1922.194576][   T30]  schedule+0x14b/0x320
[ 1922.198841][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1922.254995][   T30]  __mutex_lock+0x6a7/0xd70
[ 1922.259606][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1922.304529][   T30]  ? __tun_chr_ioctl+0x48c/0x2400
[ 1922.344796][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1922.349937][   T30]  ? __might_fault+0xc6/0x120
[ 1922.404706][   T30]  __tun_chr_ioctl+0x48c/0x2400
[ 1922.409674][   T30]  ? __pfx___tun_chr_ioctl+0x10/0x10
[ 1922.475355][   T30]  ? __fget_files+0x3f3/0x470
[ 1922.514482][   T30]  __se_compat_sys_ioctl+0x510/0xc90
[ 1922.519863][   T30]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[ 1922.576675][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1922.615754][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1922.622198][   T30]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1922.684816][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1922.690152][   T30]  __do_fast_syscall_32+0xb4/0x110
[ 1922.744484][   T30]  ? exc_page_fault+0x590/0x8c0
[ 1922.749448][   T30]  do_fast_syscall_32+0x34/0x80
[ 1922.794614][   T30]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1922.806815][   T30] RIP: 0023:0xf739d579
[ 1922.810965][   T30] RSP: 002b:00000000f564456c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[ 1922.889678][   T30] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400454ca
[ 1922.920401][   T30] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[ 1922.945773][   T30] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1922.953838][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1922.982775][   T30] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1923.004495][   T30]  </TASK>
[ 1923.008294][   T30] INFO: task syz-executor:1316 blocked for more than 144 seconds.
[ 1923.026321][   T30]       Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1923.046272][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1923.065826][   T30] task:syz-executor    state:D stack:25184 pid:1316  tgid:1316  ppid:1      flags:0x20004004
[ 1923.096715][   T30] Call Trace:
[ 1923.100083][   T30]  <TASK>
[ 1923.103061][   T30]  __schedule+0x1895/0x4b30
[ 1923.114717][   T30]  ? __pfx___schedule+0x10/0x10
[ 1923.119669][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1923.136098][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1923.141656][   T30]  ? schedule+0x90/0x320
[ 1923.165938][   T30]  schedule+0x14b/0x320
[ 1923.170215][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1923.184473][   T30]  __mutex_lock+0x6a7/0xd70
[ 1923.189082][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1923.193811][   T30]  ? register_nexthop_notifier+0x84/0x290
[ 1923.224602][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1923.229737][   T30]  ? __asan_memset+0x23/0x50
[ 1923.246450][   T30]  register_nexthop_notifier+0x84/0x290
[ 1923.252093][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[ 1923.274125][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[ 1923.283624][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[ 1923.299270][   T30]  ? __asan_memset+0x23/0x50
[ 1923.303955][   T30]  ops_init+0x31e/0x590
[ 1923.324574][   T30]  ? lockdep_init_map_type+0xa1/0x910
[ 1923.330146][   T30]  setup_net+0x287/0x9e0
[ 1923.346374][   T30]  ? __pfx_down_read_killable+0x10/0x10
[ 1923.352037][   T30]  ? __pfx_setup_net+0x10/0x10
[ 1923.368850][   T30]  copy_net_ns+0x33f/0x570
[ 1923.373376][   T30]  create_new_namespaces+0x425/0x7b0
[ 1923.394540][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[ 1923.404899][   T30]  ksys_unshare+0x619/0xc10
[ 1923.409496][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[ 1923.428083][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1923.434175][   T30]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[ 1923.456160][   T30]  __ia32_sys_unshare+0x37/0x40
[ 1923.461099][   T30]  __do_fast_syscall_32+0xb4/0x110
[ 1923.484307][   T30]  ? exc_page_fault+0x590/0x8c0
[ 1923.489505][   T30]  do_fast_syscall_32+0x34/0x80
[ 1923.504087][   T30]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1923.519992][   T30] RIP: 0023:0xf7fc1579
[ 1923.524155][   T30] RSP: 002b:00000000f75aff7c EFLAGS: 00000206 ORIG_RAX: 0000000000000136
[ 1923.553851][   T30] RAX: ffffffffffffffda RBX: 0000000040000000 RCX: 0000000000000000
[ 1923.564549][   T30] RDX: 00000000f744bff4 RSI: 00000000f732224b RDI: 0000000030000000
[ 1923.572645][   T30] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1923.602612][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1923.624461][   T30] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1923.632543][   T30]  </TASK>
[ 1923.646563][   T30] 
[ 1923.646563][   T30] Showing all locks held in the system:
[ 1923.676025][   T30] 3 locks held by kworker/u8:0/11:
[ 1923.684608][   T30]  #0: ffff88814aea5948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1923.709011][   T30]  #1: ffffc90000107d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1923.744154][   T30]  #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[ 1923.764496][   T30] 3 locks held by kworker/1:0/25:
[ 1923.769609][   T30]  #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1923.800834][   T30]  #1: ffffc900001f7d00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1923.823707][   T30]  #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 1923.845926][   T30] 1 lock held by khungtaskd/30:
[ 1923.850931][   T30]  #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 1923.874539][   T30] 3 locks held by kworker/1:1/46:
[ 1923.879651][   T30]  #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1923.917734][   T30]  #1: ffffc90000b67d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1923.945889][   T30]  #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0
[ 1923.964509][   T30] 2 locks held by kworker/u8:3/52:
[ 1923.969733][   T30] 3 locks held by kworker/u8:6/3020:
[ 1923.988931][   T30]  #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1924.023471][   T30]  #1: ffffc90009f37d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1924.053464][   T30]  #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[ 1924.074725][   T30] 2 locks held by getty/4983:
[ 1924.079486][   T30]  #0: ffff88802ef1f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1924.104449][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[ 1924.124587][   T30] 5 locks held by kworker/0:1/10485:
[ 1924.129955][   T30] 4 locks held by kworker/u9:0/10850:
[ 1924.152961][   T30]  #0: ffff88809a10d948 ((wq_completion)hci14#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1924.174472][   T30]  #1: ffffc900045a7d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1924.204578][   T30]  #2: ffff88807e198078 (&hdev->lock){+.+.}-{3:3}, at: le_conn_complete_evt+0xb3/0x12e0
[ 1924.224478][   T30]  #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm+0x24/0x150
[ 1924.255024][   T30] 4 locks held by kworker/u9:3/19587:
[ 1924.260476][   T30]  #0: ffff88808c6b8148 ((wq_completion)hci15#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1924.284550][   T30]  #1: ffffc9000da1fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1924.315380][   T30]  #2: ffff888079904078 (&hdev->lock){+.+.}-{3:3}, at: le_conn_complete_evt+0xb3/0x12e0
[ 1924.338210][   T30]  #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm+0x24/0x150
[ 1924.365002][   T30] 1 lock held by syz-executor/29279:
[ 1924.370369][   T30]  #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[ 1924.394797][   T30] 2 locks held by syz.1.4429/973:
[ 1924.399898][   T30] 1 lock held by syz-executor/1078:
[ 1924.419315][   T30]  #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[ 1924.444515][   T30] 1 lock held by syz.2.4446/1239:
[ 1924.449613][   T30]  #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[ 1924.476821][   T30] 1 lock held by syz.0.4452/1293:
[ 1924.481921][   T30]  #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[ 1924.506305][   T30] 1 lock held by syz.4.4453/1302:
[ 1924.511405][   T30]  #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48c/0x2400
[ 1924.544584][   T30] 2 locks held by syz-executor/1316:
[ 1924.550089][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.574538][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.602053][   T30] 2 locks held by syz-executor/1326:
[ 1924.608042][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.636676][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.662864][   T30] 2 locks held by syz-executor/1337:
[ 1924.670117][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.694925][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.716546][   T30] 2 locks held by syz-executor/1345:
[ 1924.721902][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.753824][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.774510][   T30] 2 locks held by syz-executor/1374:
[ 1924.779884][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.804977][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.825998][   T30] 2 locks held by syz-executor/1385:
[ 1924.831355][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.864641][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.894529][   T30] 2 locks held by syz-executor/1394:
[ 1924.899900][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1924.924521][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1924.944889][   T30] 5 locks held by kworker/u9:4/1401:
[ 1924.950254][   T30]  #0: ffff888033824148 ((wq_completion)hci9){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1924.984647][   T30]  #1: ffffc9000a037d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1925.014395][   T30]  #2: ffff888068e20d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1925.035643][   T30]  #3: ffff888068e20078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[ 1925.054456][   T30]  #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300
[ 1925.084593][   T30] 6 locks held by kworker/u9:5/1406:
[ 1925.089996][   T30]  #0: ffff888073de6148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1925.123495][   T30]  #1: ffffc9000a007d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1925.144448][   T30]  #2: ffff888026dc0d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1925.172749][   T30]  #3: ffff888026dc0078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[ 1925.194672][   T30]  #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300
[ 1925.214540][   T30]  #5: ffffffff8e93d378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[ 1925.245479][   T30] 2 locks held by syz-executor/1409:
[ 1925.250838][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.275115][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.304535][   T30] 2 locks held by syz-executor/1411:
[ 1925.309912][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.334572][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.355101][   T30] 2 locks held by syz-executor/1433:
[ 1925.366228][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.384737][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.414525][   T30] 2 locks held by syz-executor/1443:
[ 1925.419892][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.444666][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.474562][   T30] 2 locks held by syz-executor/1453:
[ 1925.479927][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.505186][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.534538][   T30] 4 locks held by kworker/u9:7/1462:
[ 1925.539902][   T30]  #0: ffff888082fe7148 ((wq_completion)hci16#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1925.564473][   T30]  #1: ffffc900096f7d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1925.593782][   T30]  #2: ffff888082e98078 (&hdev->lock){+.+.}-{3:3}, at: le_conn_complete_evt+0xb3/0x12e0
[ 1925.615228][   T30]  #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm+0x24/0x150
[ 1925.644486][   T30] 2 locks held by syz-executor/1464:
[ 1925.650106][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.674552][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.696047][   T30] 2 locks held by syz-executor/1472:
[ 1925.701397][   T30]  #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1925.729836][   T30]  #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1925.759102][   T30] 1 lock held by dhcpcd/1482:
[ 1925.763878][   T30]  #0: ffff88809ba3c258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[ 1925.791745][   T30] 1 lock held by dhcpcd/1483:
[ 1925.797201][   T30]  #0: ffff88809ba3a258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[ 1925.824469][   T30] 1 lock held by dhcpcd/1484:
[ 1925.829218][   T30]  #0: ffff888051b78258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[ 1925.859366][   T30] 
[ 1925.861765][   T30] =============================================
[ 1925.861765][   T30] 
[ 1925.889432][   T30] NMI backtrace for cpu 1
[ 1925.893921][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1925.904459][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1925.914553][   T30] Call Trace:
[ 1925.917865][   T30]  <TASK>
[ 1925.920823][   T30]  dump_stack_lvl+0x241/0x360
[ 1925.925563][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1925.931323][   T30]  ? __pfx__printk+0x10/0x10
[ 1925.935970][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[ 1925.940956][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1925.946460][   T30]  ? _printk+0xd5/0x120
[ 1925.950662][   T30]  ? __pfx__printk+0x10/0x10
[ 1925.955301][   T30]  ? __wake_up_klogd+0xcc/0x110
[ 1925.960200][   T30]  ? __pfx__printk+0x10/0x10
[ 1925.964836][   T30]  ? __rcu_read_unlock+0xa1/0x110
[ 1925.969916][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1925.975948][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 1925.982050][   T30]  watchdog+0xff4/0x1040
[ 1925.986338][   T30]  ? watchdog+0x1ea/0x1040
[ 1925.990800][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1925.995522][   T30]  kthread+0x2f0/0x390
[ 1925.999633][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1926.004353][   T30]  ? __pfx_kthread+0x10/0x10
[ 1926.008979][   T30]  ret_from_fork+0x4b/0x80
[ 1926.013457][   T30]  ? __pfx_kthread+0x10/0x10
[ 1926.018083][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1926.022907][   T30]  </TASK>
[ 1926.027483][   T30] Sending NMI from CPU 1 to CPUs 0:
[ 1926.032753][    C0] NMI backtrace for cpu 0
[ 1926.032768][    C0] CPU: 0 UID: 0 PID: 28950 Comm: kworker/0:6 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1926.032791][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1926.032805][    C0] Workqueue: events_power_efficient neigh_managed_work
[ 1926.032834][    C0] RIP: 0010:__lock_acquire+0x1250/0x2050
[ 1926.032871][    C0] Code: 00 cc 0a 8c e8 31 7b e5 ff 48 bf 00 00 00 00 00 fc ff df 90 0f 0b 90 90 90 31 db 48 83 c3 40 48 89 d8 48 c1 e8 03 80 3c 38 00 <74> 12 48 89 df e8 e6 2f 8e 00 48 bf 00 00 00 00 00 fc ff df 48 83
[ 1926.032888][    C0] RSP: 0018:ffffc90000006c50 EFLAGS: 00000046
[ 1926.032904][    C0] RAX: 1ffffffff2787e32 RBX: ffffffff93c3f190 RCX: ffffffff817059ec
[ 1926.032919][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: dffffc0000000000
[ 1926.032945][    C0] RBP: 2886dbf14d0b5487 R08: ffffffff942c5807 R09: 1ffffffff2858b00
[ 1926.032959][    C0] R10: dffffc0000000000 R11: fffffbfff2858b01 R12: 0000000000000000
[ 1926.032972][    C0] R13: ffff88807936a8d8 R14: 1ffff1100f26d534 R15: ffff88807936a9a0
[ 1926.032987][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1926.033002][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1926.033015][    C0] CR2: 000000002000f018 CR3: 000000006e55a000 CR4: 00000000003526f0
[ 1926.033031][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1926.033042][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1926.033054][    C0] Call Trace:
[ 1926.033061][    C0]  <NMI>
[ 1926.033069][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1926.033093][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1926.033120][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1926.033148][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1926.033172][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1926.033191][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1926.033210][    C0]  ? __lock_acquire+0x1250/0x2050
[ 1926.033236][    C0]  ? default_do_nmi+0x63/0x160
[ 1926.033259][    C0]  ? exc_nmi+0x123/0x1f0
[ 1926.033279][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1926.033300][    C0]  ? __lock_acquire+0xf3c/0x2050
[ 1926.033326][    C0]  ? __lock_acquire+0x1250/0x2050
[ 1926.033353][    C0]  ? __lock_acquire+0x1250/0x2050
[ 1926.033379][    C0]  ? __lock_acquire+0x1250/0x2050
[ 1926.033406][    C0]  </NMI>
[ 1926.033412][    C0]  <IRQ>
[ 1926.033425][    C0]  lock_acquire+0x1ed/0x550
[ 1926.033470][    C0]  ? nf_hook+0x9e/0x450
[ 1926.033497][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1926.033526][    C0]  ? ip_route_me_harder+0xc98/0x1300
[ 1926.033553][    C0]  nf_hook+0xbf/0x450
[ 1926.033575][    C0]  ? nf_hook+0x9e/0x450
[ 1926.033598][    C0]  ? nf_hook+0x9e/0x450
[ 1926.033621][    C0]  ? __pfx_nf_hook+0x10/0x10
[ 1926.033648][    C0]  ? ip_fast_csum+0x1f0/0x2b0
[ 1926.033671][    C0]  __ip_local_out+0x3d9/0x4e0
[ 1926.033694][    C0]  ? __pfx_dst_output+0x10/0x10
[ 1926.033719][    C0]  ip_local_out+0x26/0x70
[ 1926.033743][    C0]  synproxy_send_client_synack+0x8b8/0xf30
[ 1926.033774][    C0]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[ 1926.033801][    C0]  ? synproxy_pernet+0x45/0x270
[ 1926.033828][    C0]  nft_synproxy_eval_v4+0x3ca/0x610
[ 1926.033857][    C0]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[ 1926.033892][    C0]  ? nf_ip_checksum+0x13a/0x500
[ 1926.033920][    C0]  nft_synproxy_do_eval+0x362/0xa60
[ 1926.033949][    C0]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[ 1926.033977][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 1926.034001][    C0]  nft_do_chain+0x4ad/0x1da0
[ 1926.034023][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[ 1926.034048][    C0]  ? __local_bh_enable_ip+0x168/0x200
[ 1926.034083][    C0]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[ 1926.034103][    C0]  nft_do_chain_inet+0x418/0x6b0
[ 1926.034130][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1926.034156][    C0]  ? ipt_do_table+0x312/0x1860
[ 1926.034187][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1926.034212][    C0]  nf_hook_slow+0xc3/0x220
[ 1926.034235][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1926.034257][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1926.034278][    C0]  NF_HOOK+0x29e/0x450
[ 1926.034299][    C0]  ? NF_HOOK+0x9a/0x450
[ 1926.034318][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1926.034343][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1926.034368][    C0]  ? ip_rcv_finish+0x406/0x560
[ 1926.034391][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1926.034413][    C0]  NF_HOOK+0x3a4/0x450
[ 1926.034435][    C0]  ? NF_HOOK+0x9a/0x450
[ 1926.034455][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1926.034476][    C0]  ? ip_rcv_core+0x801/0xd10
[ 1926.034498][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1926.034524][    C0]  ? __pfx_ip_rcv+0x10/0x10
[ 1926.034548][    C0]  __netif_receive_skb+0x2bf/0x650
[ 1926.034576][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1926.034606][    C0]  ? __pfx___netif_receive_skb+0x10/0x10
[ 1926.034632][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1926.034663][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1926.034694][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1926.034729][    C0]  process_backlog+0x662/0x15b0
[ 1926.034759][    C0]  ? process_backlog+0x33b/0x15b0
[ 1926.034790][    C0]  ? __pfx_process_backlog+0x10/0x10
[ 1926.034817][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1926.034847][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1926.034881][    C0]  __napi_poll+0xcb/0x490
[ 1926.034904][    C0]  net_rx_action+0x89b/0x1240
[ 1926.034936][    C0]  ? __pfx_net_rx_action+0x10/0x10
[ 1926.034961][    C0]  ? sched_clock+0x4a/0x70
[ 1926.034990][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1926.035021][    C0]  handle_softirqs+0x2c5/0x980
[ 1926.035047][    C0]  ? do_softirq+0x11b/0x1e0
[ 1926.035071][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1926.035098][    C0]  do_softirq+0x11b/0x1e0
[ 1926.035138][    C0]  </IRQ>
[ 1926.035145][    C0]  <TASK>
[ 1926.035152][    C0]  ? __pfx_do_softirq+0x10/0x10
[ 1926.035189][    C0]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[ 1926.035216][    C0]  ? __pfx_queue_delayed_work_on+0x10/0x10
[ 1926.035244][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1926.035265][    C0]  __local_bh_enable_ip+0x1bb/0x200
[ 1926.035289][    C0]  ? process_scheduled_works+0xa63/0x1850
[ 1926.035314][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1926.035338][    C0]  ? process_scheduled_works+0x976/0x1850
[ 1926.035362][    C0]  ? neigh_managed_work+0x20d/0x240
[ 1926.035385][    C0]  ? process_scheduled_works+0x976/0x1850
[ 1926.035409][    C0]  ? process_scheduled_works+0x976/0x1850
[ 1926.035434][    C0]  process_scheduled_works+0xa63/0x1850
[ 1926.035468][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1926.035496][    C0]  ? assign_work+0x364/0x3d0
[ 1926.035521][    C0]  worker_thread+0x870/0xd30
[ 1926.035549][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1926.035576][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1926.035603][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1926.035629][    C0]  kthread+0x2f0/0x390
[ 1926.035647][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1926.035690][    C0]  ? __pfx_kthread+0x10/0x10
[ 1926.035708][    C0]  ret_from_fork+0x4b/0x80
[ 1926.035734][    C0]  ? __pfx_kthread+0x10/0x10
[ 1926.035752][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1926.035784][    C0]  </TASK>
[ 1926.801744][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1926.808673][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[ 1926.819214][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1926.829308][   T30] Call Trace:
[ 1926.832621][   T30]  <TASK>
[ 1926.835581][   T30]  dump_stack_lvl+0x241/0x360
[ 1926.840304][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1926.845547][   T30]  ? __pfx__printk+0x10/0x10
[ 1926.850276][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1926.856317][   T30]  ? vscnprintf+0x5d/0x90
[ 1926.860693][   T30]  panic+0x349/0x880
[ 1926.864640][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1926.870837][   T30]  ? __pfx_panic+0x10/0x10
[ 1926.875298][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[ 1926.880724][   T30]  ? __irq_work_queue_local+0x137/0x410
[ 1926.886314][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1926.891719][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1926.897924][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 1926.904134][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 1926.910340][   T30]  watchdog+0x1033/0x1040
[ 1926.914717][   T30]  ? watchdog+0x1ea/0x1040
[ 1926.919179][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1926.923894][   T30]  kthread+0x2f0/0x390
[ 1926.927995][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1926.932713][   T30]  ? __pfx_kthread+0x10/0x10
[ 1926.937339][   T30]  ret_from_fork+0x4b/0x80
[ 1926.941798][   T30]  ? __pfx_kthread+0x10/0x10
[ 1926.946426][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1926.951254][   T30]  </TASK>
[ 1926.954681][   T30] Kernel Offset: disabled
[ 1926.959016][   T30] Rebooting in 86400 seconds..