last executing test programs:

35.029608947s ago: executing program 4 (id=1445):
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x2400c0, 0x0)
recvmmsg(r0, &(0x7f0000003280)=[{{&(0x7f0000000140)=@ax25={{0x3, @bcast}, [@remote, @remote, @rose, @netrom, @default, @netrom, @default, @bcast]}, 0x80, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/163, 0xa3}, {&(0x7f0000000280)=""/234, 0xea}, {&(0x7f0000000380)=""/159, 0x9f}, {&(0x7f0000000440)=""/125, 0x7d}], 0x4}, 0x2}, {{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000540)=""/61, 0x3d}, {&(0x7f0000000580)=""/129, 0x81}, {&(0x7f0000003140)=""/218, 0xda}, {&(0x7f0000000740)=""/48, 0x30}, {0x0}, {&(0x7f00000004c0)=""/52, 0x34}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/217, 0xd9}, {&(0x7f0000001900)=""/185, 0xb9}, {&(0x7f00000019c0)=""/137, 0x89}], 0xa, &(0x7f0000001b40)=""/58, 0x3a}, 0x1}, {{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f0000001c00)=""/18, 0x12}, {&(0x7f0000001c40)=""/82, 0x52}, {0x0}, {&(0x7f0000001dc0)=""/20, 0x14}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x5, &(0x7f0000002e80)=""/213, 0xd5}, 0x80000000}, {{0x0, 0x0, &(0x7f0000003100)=[{&(0x7f0000002f80)=""/181, 0xb5}, {&(0x7f0000000780)=""/9, 0x9}, {&(0x7f0000003080)=""/93, 0x5d}], 0x3}, 0xe}], 0x4, 0xc0002160, &(0x7f0000003240)={0x0, 0x3938700})
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="02c82078f4726fa942f819feffff0d0007ff0400ff7f08000a050200060005015a00cd000300010001028093757a21050d8b8dc08b9a9f000409010c21f30000049fec04090403050400040004000610020209000100002cc70000000800080001021b000612ff02a516ab8300000c0000002f01000006100001f8ff7e6700020000000000a548a149e37a645e74e6849779931837e1aeefc24e61064af4c0e346a8da6c7ec34fa24ec94f7772ef0cc3ee74cbbe7804006da720a814c99ada2ca60f38f42e7e837373fcb867ed2882630323cc61fcda0a067fa451f0ab74da7eb5f5d1a75e011354467fb26a7913a1210ad9bd7a48efc21afa36433ea69fba3b6b8d9604b12a288dfb0563579bc99d3a78db00c23816a24026e5260ba3aa6490f82ccd161ee8bb86c35a76fe3340c3d731ba99e1b5eff3b96c4d7fe0b49158ef50c35731dc67bebf"], 0x7d)
socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = fsopen(&(0x7f0000000100)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsmount(r4, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_emit_vhci(0x0, 0x8a)
socket(0x0, 0xa, 0xaed)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="1400000035000b63d25a80643d66b7d802f2e2ff", 0x14}], 0x1}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x0)
r6 = socket(0x0, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

31.772007693s ago: executing program 4 (id=1453):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000002c0)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_SET_TX_POWER(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="45f600000000000000000c0000000c000600000000000000000008000300", @ANYRES32=r3, @ANYBLOB="57747f2e4b1f1d"], 0x28}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6(0xa, 0x80002, 0x88)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
setsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000040)=0x8004, 0x4)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
r8 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100), 0x4080c0, 0x0)
write$dsp(r8, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SPEED(r8, 0x5000, 0x0)
recvmmsg(r5, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r9 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1001, 0x12)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r9)
bpf$BPF_PROG_TEST_RUN(0xe, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32, @ANYBLOB="08009e"], 0x24}}, 0x48880)

28.715818509s ago: executing program 4 (id=1460):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xa, &(0x7f00000000c0), 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000180)={0x2f, 0x4, 0x0, {0x1, 0xfffffffffffffffa, 0x7, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x2f)
syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000000000/0x4000)=nil)
listen(0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r4, &(0x7f00000005c0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
r5 = dup(r4)
ioctl$UI_DEV_CREATE(r5, 0x5501)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x13f}}, 0x20)

27.658978133s ago: executing program 4 (id=1462):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r3, 0x0, 0x0, 0x20048004, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={<r5=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x85, &(0x7f0000000000)={r5, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000340)={r5, @in={{0x2, 0x13, @empty}}, 0x0, 0xfffe, 0x4, 0x0, 0x2c}, 0x9c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_io_uring_setup(0x34b6, &(0x7f0000000180)={0x0, 0x0, 0x30c0}, &(0x7f0000000100), &(0x7f0000000140))
r8 = epoll_create(0xaf2)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r7, 0xc, 0x0, 0x0)
epoll_pwait2(r8, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000080))
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x18, r9, 0x300, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x240048c0)
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)

25.933416811s ago: executing program 4 (id=1463):
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x2400c0, 0x0)
recvmmsg(r0, &(0x7f0000003280)=[{{&(0x7f0000000140)=@ax25={{0x3, @bcast}, [@remote, @remote, @rose, @netrom, @default, @netrom, @default, @bcast]}, 0x80, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/163, 0xa3}, {&(0x7f0000000280)=""/234, 0xea}, {&(0x7f0000000380)=""/159, 0x9f}, {&(0x7f0000000440)=""/125, 0x7d}], 0x4}, 0x2}, {{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000540)=""/61, 0x3d}, {&(0x7f0000000580)=""/129, 0x81}, {&(0x7f0000003140)=""/218, 0xda}, {&(0x7f0000000740)=""/48, 0x30}, {&(0x7f0000003040)=""/8, 0x8}, {&(0x7f00000004c0)=""/52, 0x34}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/217, 0xd9}, {&(0x7f0000001900)=""/185, 0xb9}, {&(0x7f00000019c0)=""/137, 0x89}], 0xa, &(0x7f0000001b40)=""/58, 0x3a}, 0x1}, {{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f0000001c00)=""/18, 0x12}, {&(0x7f0000001c40)=""/82, 0x52}, {&(0x7f0000001cc0)=""/226, 0xe2}, {&(0x7f0000001dc0)=""/20, 0x14}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x5, &(0x7f0000002e80)=""/213, 0xd5}, 0x80000000}, {{0x0, 0x0, &(0x7f0000003100)=[{&(0x7f0000002f80)=""/181, 0xb5}, {&(0x7f0000000780)=""/9, 0x9}, {&(0x7f0000003080)=""/93, 0x5d}], 0x3}, 0xe}], 0x4, 0xc0002160, &(0x7f0000003240)={0x0, 0x3938700})
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x7d)
socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = fsopen(&(0x7f0000000100)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsmount(r4, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(0x0, 0x8a)
socket(0x0, 0xa, 0xaed)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="1400000035000b63d25a80643d66b7d802f2e2ff", 0x14}], 0x1}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x0)
r6 = socket(0x0, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

23.282441299s ago: executing program 4 (id=1467):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpid()
syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100002eab5a40401c3405cc6d01020301090212000100000000090400000076dfdb00a5da88f4307a6df108a6b81ec224913b45b2423a9b415b1858a821749a07cbcc52de9de38b0e7277de99acc42e04"], 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000940)=ANY=[@ANYBLOB="1201000041436120410e515001d6000000010902f98a5c01000000090401001186eee20009058217048a"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
r5 = eventfd(0x4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000001a00)={0x1, r5})
r6 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000008c0), 0xc000, 0x0)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000a00)={0x0, 0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000a40)={&(0x7f00000009c0)=[0x0, 0x0], 0x2, r7})
r8 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r8, 0x0, &(0x7f00000010c0)={0xffffffffffffff05, &(0x7f00000001c0)=ANY=[@ANYBLOB="0000010000000853a6e1d127e5d5292f3b9e67925d96d34b70244f25560e8a01161d39c2fd200ad0f9fe1a4903b6bdad0aca2777873287cad6c24404fe323db091f3913431ce0858a5ecc0bc481c4d31ac1cb548f19d5596e87dc3f3cec115a8c7d16540fbbfd3e5c2b33fe0a15100bb12af65c34ee94a0e5c8e5397f0f1918586431d448d026e43d8bd62c3cf2894a636ed227598a49d1f3fb7285dd678417f26cf74501fc312ec277ab56c915765169c1eb07285aac055fe513f76a98170f0a384fde61aea5b185ef2459b9173477fc9a2fb2a8b90b9", @ANYRES32=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYBLOB="fde4dc6bf8179da06e7b2963cf41d5080000000200"/31], 0x10}, 0x2}, 0x0)
r10 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ppoll(&(0x7f0000000540)=[{r10}], 0x1, &(0x7f00000005c0), 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000000040), 0x1ff, 0x100)
syz_usb_control_io(r8, &(0x7f0000000300)={0x2c, &(0x7f0000000ac0)=ANY=[@ANYBLOB="40313a0000003a230783d40c5ab7fb2325e7e2d2bc62271f4d5af9aa15152e2d35836327d02e53fa90ed48a9366f474e541ff8bb4059fde45923b7d5edaabe7f3ac8a7c6c241731905a4604d7b52369a2c315403f0b2d7ee451a441469e1fbbbf97429ce0048b71ee25c35917a0c7a82d7c0d791a996d0b1a5f5ab9d4e97b2fc6cdbbb06365b0833a45b149b2258351d1629c5"], &(0x7f00000000c0)={0x0, 0x3, 0x21, @string={0x21, 0x3, "440da73f01904eed8e1c558ceac29f00bd0421d3c9dfaf808ff8e3e7821919"}}, &(0x7f0000000100)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x8, 0x48, 0x6d, 0x1, 0x1, 0x40}]}}, &(0x7f0000000140)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x1, 0x4, 0xca, "192b30d9", "d3455aed"}}, &(0x7f00000002c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x5, 0x80, 0x9c, 0x9, 0xff, 0x0, 0x7}}}, &(0x7f0000000800)={0x84, &(0x7f0000000340)={0x80, 0x18, 0xbb, "84d60f9ed5f0f9b5bb74fe08f6798fe9107684ab2ec7da34b472a95720ecdef4d77bee2cdee0f84f169fc638c1b1916338b9cd85959e5dde200fd97a1bfa0464f4b1d408f3c1368654420b1601e177d9419d85857717377afa8b20bd783f754759353aad4b6571da1b6ebcb505f5be285fc72d4382c723e341edfe1209e4daf98f22cb86bd59b56a80f22a1c65ed769f872b5a8b3fe58a786a5d488bc2f2be4896595afdd81207fc200a70259c285c0f1d0bbd67b382325735b818"}, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x6f}, &(0x7f0000000480)={0x0, 0x8, 0x1, 0xfc}, &(0x7f00000004c0)={0x20, 0x0, 0x4, {0x5}}, &(0x7f0000000500)={0x20, 0x0, 0x8, {0x1000, 0x8, [0xf00]}}, &(0x7f0000000540)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000580)={0x40, 0x9, 0x1, 0x1}, &(0x7f00000005c0)={0x40, 0xb, 0x2, "d4f8"}, &(0x7f0000000600)={0x40, 0xf, 0x2, 0x6}, &(0x7f0000000640)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000680)={0x40, 0x17, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}}, &(0x7f00000006c0)={0x40, 0x19, 0x2, "3ae0"}, &(0x7f0000000700)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000740)={0x40, 0x1c, 0x1, 0x3}, &(0x7f0000000780)={0x40, 0x1e, 0x1, 0x2}, &(0x7f00000007c0)={0x40, 0x21, 0x1, 0x9}})
syz_usb_control_io(r8, 0x0, &(0x7f0000000900)={0x84, &(0x7f0000000180)=ANY=[@ANYRES64=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sched_setscheduler(r0, 0x0, &(0x7f0000000080)=0x10)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r11, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x10020f58, 0x0, [{}, {}, {0x0, 0x1}, {0x0, 0x35}, {}, {}, {}, {}, {}, {0xfd}]}})
ioctl$KVM_RUN(r11, 0x8004ae98, 0x0)

20.981770346s ago: executing program 3 (id=1472):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
epoll_create1(0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x4, 0xfc, 0xa, 0x80}}}, 0xb8}}, 0x8001)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000200)={r5, 0x3, 0xffffffffffffffff, 0x5})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000300)={r5, 0x7628, 0x7})
sendmsg$NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x104, r3, 0x419, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0xd9, 0x2a, [@rann={0x7e, 0x15, {{0x0, 0x2e}, 0xf7, 0x9, @device_b, 0x1ff, 0x80, 0xc0}}, @fast_bss_trans={0x37, 0xbc, {0x1, 0x6, "80f1e734949811a860b74652604f1469", "1bba78a99d94108a2ddcdeb3ee2fc42a35cb8fcbb776d45958a0ebe8ea0839ad", "d4ded1979f26c8742f7dfc65501eb1f56ca43926f2dbc5a109a2b1775a454a39", [{0x1}, {0x1, 0x18, "ce00ef10dbe120630625c6f947665500a76d76363d019313"}, {0x2, 0x1f, "43209235d5a8db66282dcd01c40bdadae3f6b305474fa0898063de23b8c8c8"}, {0x1, 0x1c, "f9fe23d92954d22c7e90195d6005235e59de3de92cbd7e1a8b540a55"}, {0x1, 0x4, "736953a1"}, {0x2, 0x7, "c72ff3ada12281"}]}}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x2}, @NL80211_ATTR_IE={0x7, 0x2a, [@dsss={0x3, 0x1, 0xe}]}, @NL80211_ATTR_IE={0x4}]}, 0x104}, 0x1, 0x0, 0x0, 0x814}, 0x1e000)
socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r6, &(0x7f0000000000)={0x24, @short={0x2, 0x3}}, 0x14)

12.046994824s ago: executing program 1 (id=1478):
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x2400c0, 0x0)
recvmmsg(r0, &(0x7f0000003280)=[{{&(0x7f0000000140)=@ax25={{0x3, @bcast}, [@remote, @remote, @rose, @netrom, @default, @netrom, @default, @bcast]}, 0x80, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/163, 0xa3}, {&(0x7f0000000280)=""/234, 0xea}, {&(0x7f0000000380)=""/159, 0x9f}, {&(0x7f0000000440)=""/125, 0x7d}], 0x4}, 0x2}, {{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000540)=""/61, 0x3d}, {&(0x7f0000000580)=""/129, 0x81}, {&(0x7f0000003140)=""/218, 0xda}, {&(0x7f0000000740)=""/48, 0x30}, {&(0x7f0000003040)=""/8, 0x8}, {&(0x7f00000004c0)=""/52, 0x34}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/217, 0xd9}, {&(0x7f0000001900)=""/185, 0xb9}, {&(0x7f00000019c0)=""/137, 0x89}], 0xa, &(0x7f0000001b40)=""/58, 0x3a}, 0x1}, {{0x0, 0x0, &(0x7f0000003100)=[{&(0x7f0000002f80)=""/181, 0xb5}, {&(0x7f0000000780)=""/9, 0x9}, {&(0x7f0000003080)=""/93, 0x5d}], 0x3}, 0xe}], 0x3, 0xc0002160, &(0x7f0000003240)={0x0, 0x3938700})
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x7d)
socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = fsopen(&(0x7f0000000100)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsmount(r4, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(0x0, 0x8a)
socket(0x0, 0xa, 0xaed)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="1400000035000b63d25a80643d66b7d802f2e2ff", 0x14}], 0x1}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x0)
r6 = socket(0x0, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

12.010686649s ago: executing program 3 (id=1479):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r1, &(0x7f00000000c0)='!', 0xb7f40}])

11.268089516s ago: executing program 2 (id=1480):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x80)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = dup(r5)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xe501, 0x3, 0x490, 0x320, 0x6affffff, 0x3403000b, 0x320, 0x7, 0x3f8, 0x230, 0x230, 0x3f8, 0x223, 0x3, 0x0, {[{{@ip={@remote, @local, 0x0, 0x0, 'veth1_macvtap\x00', 'veth1_to_team\x00'}, 0x0, 0x2d8, 0x320, 0x0, {}, [@common=@unspec=@bpf0={{0x230}}, @common=@unspec=@time={{0x38}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4f0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='configfs\x00', 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r7, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
chmod(&(0x7f0000000080)='./file0\x00', 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r8, 0x0, 0x0, 0xffffff8d, &(0x7f0000002800)={0xa, 0x4e20, 0xfffffffc, @mcast2, 0x3}, 0x1c)
sendmmsg$inet6(r8, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x2, 0x0)

10.120438682s ago: executing program 2 (id=1482):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
futex_waitv(0x0, 0x0, 0x2, 0x0, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0xffffffffffffffff, 0x2)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
r2 = socket$tipc(0x1e, 0x2, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f00000056c0)=[{&(0x7f0000001240)="80349c0d9e8fcc9f44658138dc4a3c4ad42f918348474a5bc38ff0e0571fc22c8eb5cb22fdf30ced1a4c1ccb5e5b35fed7db48c1a8a7132adc5623d146ddfe2254dd2579b4284b53d1cea6206864473d31bdb00c9d1462458b678827e80c94d88099e7471a58b1463086f9cdd1ccc19fa2fc4a9dd5a56fe782d15e66648c7630f1aaa7e9820460c46e292dbb8fa6f6701048ff17f46097b1ee0750ed038f18b81b2ba014bf866062c9a6f88b5d07e13b7eddd968ba9c7a53609c7b61471a51fd85bceebc0a92b2cd7c45a7f4571e693abebc3c5ff16c8128d924", 0xda}, {&(0x7f0000000280)="5b4ea50f20d7212327afde5e7a457cde2dff791c69fbc3", 0x17}, {&(0x7f00000002c0)}, {0x0}, {&(0x7f0000002440)="253c10cd0a56ebbb9e8b465670109c340c95f1d27d36cbeb7fa948545e9b18da346b70b5dc6ea12ad1a30e4f7038336f1af1d61b04de988f1755e9b3ba9919b2a4952ceda920a7f0e22dd239d4a74f2d1c854bc64f09f979aa3e9f5c25ff8ec189e5d809483583f648cd8870291200e428", 0x71}, {&(0x7f00000024c0)="2ba671ae8107530b978dd82841597ed8f4275ed9e6b9f7b73ee6324ddf688ad9d88125b82afd2e28aef7183086ce0dd4ee880fc56a2ca8b52ef8f5b5f3e475f49b0bcd201fe612703d680fdd1151dd32535b04d4697d472c7750d6c4c197162e9f872253b611b1ca20e79dcf40d1faf58a453f8db9a03fdd351b54ad4e77fa0fda7990bb281079ae7ba3994aef7380e1d6342305e2d12c57379fd12e784f48e4e832171df4576c8724e3bfd70ebc92fc11914cd4", 0xb4}, {&(0x7f00000025c0)="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", 0xa9b}], 0x7}}], 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000140), 0x10)
setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x44, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r3=>0x0})
sendmsg$can_raw(r1, &(0x7f00000004c0)={&(0x7f0000000100)={0x1d, r3}, 0x10, &(0x7f0000000140)={&(0x7f0000000440)=@canfd={{}, 0x0, 0x0, 0x0, 0x0, "bc27adc50d030b37a26d1d33610708eb844846979c3e552e4f42626ec483561f987f1c2a5455252a23b32ffd44fd8a40b0353a4025411e0620ec9757810556d2"}, 0x48}, 0x2}, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6000002, 0x12, 0xffffffffffffffff, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000180), 0x88603, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x24, 0x800000000004}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000600), 0x4)
socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f310000001725001700000000040037000900030001372564b758b9a64411f6bb744dc48f57", 0x6f}], 0x1)
sendto$inet(r5, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b0", 0x27, 0x11, 0x0, 0x0)

9.171171852s ago: executing program 3 (id=1483):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xa, &(0x7f00000000c0), 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000180)={0x2f, 0x4, 0x0, {0x1, 0xfffffffffffffffa, 0x7, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x2f)
syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000000000/0x4000)=nil)
listen(0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r4, &(0x7f00000005c0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
r5 = dup(r4)
ioctl$UI_DEV_CREATE(r5, 0x5501)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x13f}}, 0x20)

7.853984202s ago: executing program 3 (id=1484):
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'tunl0\x00', 0x0})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000340)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioperm(0x0, 0x7, 0xe)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffc, 0x0, 0x4}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffff8)
r4 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000100)='asymmetric\x00', 0x0, &(0x7f0000000180)="3082", 0x71, r4)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r5 = dup(r2)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
socket$inet6(0xa, 0x8b3f341251287e20, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000480)="400f01dfc4c131c6b70e0000009c440f01d1f30f1eebc7442400d5000000c744240200509f08c7442406000000000f01142466ba430066b8004866ef67f30f300f00564c0f0766ba2000ed", 0x4b}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x2, 0x100000000, 0x100, 0x7, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x814, 0x0, 0x2d, 0x3, 0x9], 0xd000, 0x4300})

7.661731471s ago: executing program 2 (id=1485):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0x5414, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0xfffffffa)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "00769a7d8200010000001495595915303d6000"})
r4 = syz_open_pts(r1, 0x0)
ioctl$TCFLSH(r4, 0x540b, 0x2)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB], 0x17)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000002080)=0x64, 0x23b)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r7, 0x0, 0x3e, 0x0, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002080)=0x64, 0x23b)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r9 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r9, r8, &(0x7f0000002080)=0x64, 0x23b)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, &(0x7f0000000080)={&(0x7f0000000000)=[0x0, 0x0], &(0x7f0000000040)=[0x0, 0xffffffffffffffff, 0xf4], 0x49, 0x2, 0x2})
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[]}, 0x78)

7.229628788s ago: executing program 1 (id=1486):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000003040), 0x8000, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000003080)=0xfff)

7.022359748s ago: executing program 1 (id=1487):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpid()
syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100002eab5a40401c3405cc6d01020301090212000100000000090400000076dfdb00a5da88f4307a6df108a6b81ec224913b45b2423a9b415b1858a821749a07cbcc52de9de38b0e7277de99acc42e04"], 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000940)=ANY=[@ANYBLOB="1201000041436120410e515001d6000000010902f98a5c01000000090401001186eee20009058217048a"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
r5 = eventfd(0x4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000001a00)={0x1, r5})
r6 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000008c0), 0xc000, 0x0)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000a00)={0x0, 0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000a40)={&(0x7f00000009c0)=[0x0, 0x0], 0x2, r7})
r8 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r8, 0x0, &(0x7f00000010c0)={0xffffffffffffff05, &(0x7f00000001c0)=ANY=[@ANYBLOB="0000010000000853a6e1d127e5d5292f3b9e67925d96d34b70244f25560e8a01161d39c2fd200ad0f9fe1a4903b6bdad0aca2777873287cad6c24404fe323db091f3913431ce0858a5ecc0bc481c4d31ac1cb548f19d5596e87dc3f3cec115a8c7d16540fbbfd3e5c2b33fe0a15100bb12af65c34ee94a0e5c8e5397f0f1918586431d448d026e43d8bd62c3cf2894a636ed227598a49d1f3fb7285dd678417f26cf74501fc312ec277ab56c915765169c1eb07285aac055fe513f76a98170f0a384fde61aea5b185ef2459b9173477fc9a2fb2a8b90b9", @ANYRES32=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYBLOB="fde4dc6bf8179da06e7b2963cf41d5080000000200"/31], 0x10}, 0x2}, 0x0)
r10 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ppoll(&(0x7f0000000540)=[{r10}], 0x1, &(0x7f00000005c0), 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000000040), 0x1ff, 0x100)
syz_usb_control_io(r8, &(0x7f0000000300)={0x2c, &(0x7f0000000ac0)=ANY=[@ANYBLOB="40313a0000003a230783d40c5ab7fb2325e7e2d2bc62271f4d5af9aa15152e2d35836327d02e53fa90ed48a9366f474e541ff8bb4059fde45923b7d5edaabe7f3ac8a7c6c241731905a4604d7b52369a2c315403f0b2d7ee451a441469e1fbbbf97429ce0048b71ee25c35917a0c7a82d7c0d791a996d0b1a5f5ab9d4e97b2fc6cdbbb06365b0833a45b149b2258351d1629c5"], &(0x7f00000000c0)={0x0, 0x3, 0x21, @string={0x21, 0x3, "440da73f01904eed8e1c558ceac29f00bd0421d3c9dfaf808ff8e3e7821919"}}, &(0x7f0000000100)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x8, 0x48, 0x6d, 0x1, 0x1, 0x40}]}}, &(0x7f0000000140)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x1, 0x4, 0xca, "192b30d9", "d3455aed"}}, &(0x7f00000002c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x5, 0x80, 0x9c, 0x9, 0xff, 0x0, 0x7}}}, &(0x7f0000000800)={0x84, &(0x7f0000000340)={0x80, 0x18, 0xbb, "84d60f9ed5f0f9b5bb74fe08f6798fe9107684ab2ec7da34b472a95720ecdef4d77bee2cdee0f84f169fc638c1b1916338b9cd85959e5dde200fd97a1bfa0464f4b1d408f3c1368654420b1601e177d9419d85857717377afa8b20bd783f754759353aad4b6571da1b6ebcb505f5be285fc72d4382c723e341edfe1209e4daf98f22cb86bd59b56a80f22a1c65ed769f872b5a8b3fe58a786a5d488bc2f2be4896595afdd81207fc200a70259c285c0f1d0bbd67b382325735b818"}, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x6f}, &(0x7f0000000480)={0x0, 0x8, 0x1, 0xfc}, &(0x7f00000004c0)={0x20, 0x0, 0x4, {0x5}}, &(0x7f0000000500)={0x20, 0x0, 0x8, {0x1000, 0x8, [0xf00]}}, &(0x7f0000000540)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000580)={0x40, 0x9, 0x1, 0x1}, &(0x7f00000005c0)={0x40, 0xb, 0x2, "d4f8"}, &(0x7f0000000600)={0x40, 0xf, 0x2, 0x6}, &(0x7f0000000640)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000680)={0x40, 0x17, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}}, &(0x7f00000006c0)={0x40, 0x19, 0x2, "3ae0"}, &(0x7f0000000700)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000740)={0x40, 0x1c, 0x1, 0x3}, &(0x7f0000000780)={0x40, 0x1e, 0x1, 0x2}, &(0x7f00000007c0)={0x40, 0x21, 0x1, 0x9}})
syz_usb_control_io(r8, 0x0, &(0x7f0000000900)={0x84, &(0x7f0000000180)=ANY=[@ANYRES64=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sched_setscheduler(r0, 0x0, &(0x7f0000000080)=0x10)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r11, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x10020f58, 0x0, [{}, {}, {0x0, 0x1}, {0x0, 0x35}, {}, {}, {}, {}, {}, {0xfd}]}})
ioctl$KVM_RUN(r11, 0x8004ae98, 0x0)

4.907906309s ago: executing program 0 (id=1490):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x58, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x16, 0x0, 0x0, 0x0, 0x0, {[@mss={0x1e, 0x4, 0xfe80}, @sack_perm={0x4, 0x2}, @generic={0x0, 0x9, "8bfbd54ae56dd0"}, @timestamp={0x8, 0xa}, @sack_perm={0x4, 0x2}, @md5sig={0x13, 0x12, "7232407c80067615774fdbb46eb86cc8"}, @fastopen={0x22, 0x2}, @md5sig={0x13, 0x12, "afaef899268be1f44ecf183114ba0513"}]}}}}}}}}, 0x0)

4.487716144s ago: executing program 3 (id=1491):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x80)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = dup(r5)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xe501, 0x3, 0x490, 0x320, 0x6affffff, 0x3403000b, 0x320, 0x7, 0x3f8, 0x230, 0x230, 0x3f8, 0x223, 0x3, 0x0, {[{{@ip={@remote, @local, 0x0, 0x0, 'veth1_macvtap\x00', 'veth1_to_team\x00'}, 0x0, 0x2d8, 0x320, 0x0, {}, [@common=@unspec=@bpf0={{0x230}}, @common=@unspec=@time={{0x38}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4f0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='configfs\x00', 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r7, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
chmod(&(0x7f0000000080)='./file0\x00', 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r8, 0x0, 0x0, 0xffffff8d, &(0x7f0000002800)={0xa, 0x4e20, 0xfffffffc, @mcast2, 0x3}, 0x1c)
sendmmsg$inet6(r8, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x2, 0x0)

4.436359845s ago: executing program 0 (id=1492):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
epoll_create1(0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x4, 0xfc, 0xa, 0x80}}}, 0xb8}}, 0x8001)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000200)={r5, 0x3, 0xffffffffffffffff, 0x5})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000300)={r5, 0x7628, 0x7})
sendmsg$NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x10c, r3, 0x419, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0xd9, 0x2a, [@rann={0x7e, 0x15, {{0x0, 0x2e}, 0xf7, 0x9, @device_b, 0x1ff, 0x80, 0xc0}}, @fast_bss_trans={0x37, 0xbc, {0x1, 0x6, "80f1e734949811a860b74652604f1469", "1bba78a99d94108a2ddcdeb3ee2fc42a35cb8fcbb776d45958a0ebe8ea0839ad", "d4ded1979f26c8742f7dfc65501eb1f56ca43926f2dbc5a109a2b1775a454a39", [{0x1}, {0x1, 0x18, "ce00ef10dbe120630625c6f947665500a76d76363d019313"}, {0x2, 0x1f, "43209235d5a8db66282dcd01c40bdadae3f6b305474fa0898063de23b8c8c8"}, {0x1, 0x1c, "f9fe23d92954d22c7e90195d6005235e59de3de92cbd7e1a8b540a55"}, {0x1, 0x4, "736953a1"}, {0x2, 0x7, "c72ff3ada12281"}]}}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x2}, @NL80211_ATTR_IE={0xf, 0x2a, [@dsss={0x3, 0x1, 0xe}, @cf={0x4, 0x6, {0x0, 0x4, 0x0, 0x3}}]}, @NL80211_ATTR_IE={0x4}]}, 0x10c}, 0x1, 0x0, 0x0, 0x814}, 0x1e000)
socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r6, &(0x7f0000000000)={0x24, @short={0x2, 0x3}}, 0x14)

2.578241843s ago: executing program 2 (id=1493):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080)=0xfffffffa)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "00769a7d8200010000001495595915303d6000"})
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x200001)
read$nci(r1, &(0x7f0000000140)=""/92, 0x5c)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000002080)=0x64, 0x23b)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r5, r4, &(0x7f0000002080)=0x64, 0x23b)

2.449933576s ago: executing program 3 (id=1494):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
futex_waitv(0x0, 0x0, 0x2, 0x0, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0xffffffffffffffff, 0x2)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
r2 = socket$tipc(0x1e, 0x2, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f00000056c0)=[{&(0x7f0000001240)="80349c0d9e8fcc9f44658138dc4a3c4ad42f918348474a5bc38ff0e0571fc22c8eb5cb22fdf30ced1a4c1ccb5e5b35fed7db48c1a8a7132adc5623d146ddfe2254dd2579b4284b53d1cea6206864473d31bdb00c9d1462458b678827e80c94d88099e7471a58b1463086f9cdd1ccc19fa2fc4a9dd5a56fe782d15e66648c7630f1aaa7e9820460c46e292dbb8fa6f6701048ff17f46097b1ee0750ed038f18b81b2ba014bf866062c9a6f88b5d07e13b7eddd968ba9c7a53609c7b61471a51fd85bceebc0a92b2cd7c45a7f4571e693abebc3c5ff16c8128d924", 0xda}, {&(0x7f0000000280)="5b4ea50f20d7212327afde5e7a457cde2dff791c69fbc3", 0x17}, {&(0x7f00000002c0)}, {0x0}, {&(0x7f0000002440)="253c10cd0a56ebbb9e8b465670109c340c95f1d27d36cbeb7fa948545e9b18da346b70b5dc6ea12ad1a30e4f7038336f1af1d61b04de988f1755e9b3ba9919b2a4952ceda920a7f0e22dd239d4a74f2d1c854bc64f09f979aa3e9f5c25ff8ec189e5d809483583f648cd8870291200e428", 0x71}, {&(0x7f00000024c0)="2ba671ae8107530b978dd82841597ed8f4275ed9e6b9f7b73ee6324ddf688ad9d88125b82afd2e28aef7183086ce0dd4ee880fc56a2ca8b52ef8f5b5f3e475f49b0bcd201fe612703d680fdd1151dd32535b04d4697d472c7750d6c4c197162e9f872253b611b1ca20e79dcf40d1faf58a453f8db9a03fdd351b54ad4e77fa0fda7990bb281079ae7ba3994aef7380e1d6342305e2d12c57379fd12e784f48e4e832171df4576c8724e3bfd70ebc92fc11914cd4", 0xb4}, {&(0x7f00000025c0)="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", 0xa9b}], 0x7}}], 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000140), 0x10)
setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x44, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r3=>0x0})
sendmsg$can_raw(r1, &(0x7f00000004c0)={&(0x7f0000000100)={0x1d, r3}, 0x10, &(0x7f0000000140)={&(0x7f0000000440)=@canfd={{}, 0x0, 0x0, 0x0, 0x0, "bc27adc50d030b37a26d1d33610708eb844846979c3e552e4f42626ec483561f987f1c2a5455252a23b32ffd44fd8a40b0353a4025411e0620ec9757810556d2"}, 0x48}, 0x2}, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6000002, 0x12, 0xffffffffffffffff, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000180), 0x88603, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x24, 0x800000000004}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000600), 0x4)
socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f310000001725001700000000040037000900030001372564b758b9a64411f6bb744dc48f57", 0x6f}], 0x1)
sendto$inet(r5, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b0", 0x27, 0x11, 0x0, 0x0)

2.378257788s ago: executing program 0 (id=1495):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000020000000000000000a00000000000000000000000d9fb41f479313f85a46c317d0a244629626f4596cb2c5ee4ec1104fb3c30b44cd376de2adf4c5ac1193c39e17660ea93e848616823fa689f5e5070d596dd062229d638394619e107671f34987a1617420678dd173093a6dbb4e4883a3599fb5f4e9a5b09f7dc42e0a85f558515fd5be00486e37da41a810e019a541560d77d62526d70d6600d09e3720b866d8be384fdc4c"], 0x0, 0x17}, 0x20)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000004c0)=ANY=[@ANYRES64, @ANYRES32=0x0, @ANYBLOB="97af320d5c46232c18d7ef3f9a80574d9fce416c13f6cc52118c9b", @ANYRES8=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYRESOCT=r0, @ANYRESHEX=r0, @ANYRES16=r0])
read$FUSE(r1, &(0x7f0000008180)={0x2020, 0x0, <r2=>0x0}, 0x205a)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = fsopen(&(0x7f0000000040)='fusectl\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fspick(r5, &(0x7f0000000340)='.\x00', 0x0)
write$FUSE_INIT(r1, &(0x7f0000000100)={0x50, 0x0, r2}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002120702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
getrandom(0x0, 0x0, 0x0)
syz_fuse_handle_req(r1, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}}}, 0x0, 0x0, 0x0, 0x0})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
getsockname$packet(r0, &(0x7f0000000380)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000003c0)=0x14)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x80000001, 0xfffffffc, 0x8, 0x100, r5, 0x9, '\x00', r7, r0, 0x1, 0x0, 0x5, 0xb}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c003d000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r10}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r11 = getpid()
sched_setscheduler(r11, 0x2, &(0x7f0000000200)=0x4)

2.093548385s ago: executing program 1 (id=1496):
r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000003080)=0xfff)

2.069308651s ago: executing program 0 (id=1497):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x16b601, 0x0)
write$sequencer(r0, &(0x7f0000000100)=[@generic, @v={0x93, 0x0, 0x0, 0x0, @generic}], 0x9)

1.80008758s ago: executing program 1 (id=1498):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x2}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = timerfd_create(0x0, 0x0)
timerfd_gettime(r1, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r6, 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000240)={{{@in=@empty, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0xc3c, 0x0, 0x0, 0xfffffffffffffffc}, {}, 0xf, 0x40000, 0x1}, {{@in=@loopback, 0x0, 0x33}, 0x0, @in, 0x0, 0x0, 0x0, 0x7}}, 0xe8)
sendmmsg(r6, &(0x7f0000000480), 0x2e9, 0xff00)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)
ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000001c0))

1.754237315s ago: executing program 0 (id=1499):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_open_dev$video4linux(&(0x7f0000000040), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000300)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
close(0xffffffffffffffff)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$lock(r1, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r1, 0x26, &(0x7f00000031c0))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
syz_open_dev$video4linux(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000080)='host1x_cdma_push_wide\x00'}, 0x10)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000100)={@desc={0x1, 0x0, @desc4}, 0x40, 0x0, '\x00', @a})
semop(0x0, &(0x7f00000000c0)=[{0x2, 0x6, 0x1000}, {0x1, 0x1}, {0x1, 0x3, 0x800}], 0x3)
personality(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_RENAME(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000008c0)=ANY=[@ANYBLOB="14000000eff65415047a35f7e181320506000000"], 0x14}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

527.993347ms ago: executing program 1 (id=1500):
socket$inet6(0xa, 0x6, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_open_dev$video(&(0x7f0000000400), 0x9, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7fff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0xf3a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000200)={0x5, &(0x7f0000000100)=[{0x2, 0x68, 0x3, 0xa5d}, {0xfff8, 0x2, 0x2, 0xe}, {0x81, 0x6, 0x5, 0x7f}, {0x3, 0x58, 0xff, 0x3}, {0x724, 0x4, 0x4, 0x2}]})
listen(r4, 0x0)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4)
syz_emit_ethernet(0x36, &(0x7f0000000540)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)
write(0xffffffffffffffff, &(0x7f0000001100)="94", 0x1)
read$alg(r2, &(0x7f0000000140)=""/116, 0x74)
tee(0xffffffffffffffff, r3, 0x81, 0x0)
close(r0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r6, &(0x7f0000000900)={&(0x7f00000000c0)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000300)=[@rthdr_2292={{0x28, 0x29, 0x5, {0x0, 0x2, 0x2, 0x1, 0x0, [@empty]}}}], 0x28}, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
writev(r5, &(0x7f0000000180)=[{&(0x7f00000001c0)='\b\x00\x00\x00', 0x4}], 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
ppoll(&(0x7f0000000100), 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000000)={0xfc}, 0x0, 0x0, 0x0, 0x0)

308.846262ms ago: executing program 2 (id=1501):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x58, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x16, 0x0, 0x0, 0x0, 0x0, {[@mss={0x1e, 0x4, 0xfe80}, @sack_perm={0x4, 0x2}, @generic={0x0, 0x9, "8bfbd54ae56dd0"}, @timestamp={0x8, 0xa}, @sack_perm={0x4, 0x2}, @md5sig={0x13, 0x12, "7232407c80067615774fdbb46eb86cc8"}, @fastopen={0x22, 0x2}, @md5sig={0x13, 0x12, "afaef899268be1f44ecf183114ba0513"}]}}}}}}}}, 0x0)

208.931964ms ago: executing program 2 (id=1502):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
setregid(0xee01, 0x0)
statx(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000500))

0s ago: executing program 0 (id=1503):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc0286687, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112})
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x30, 0x0, 0x0, 0xfffff018}, {0x6}]})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x143ffd, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r6, &(0x7f0000000180), 0x20000000}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f00000000c0)={r6, &(0x7f0000000180), 0x0}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@private0}, 0x13)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x40000)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r7, 0x5419, 0x0)

kernel console output (not intermixed with test programs):

octl, please convert it to SG_IO
[  651.177972][T10624] Cannot find add_set index 0 as target
[  651.774783][T10639] xt_bpf: check failed: parse error
[  651.833550][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  651.833589][   T29] audit: type=1326 audit(1721737195.205:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.513812][   T29] audit: type=1326 audit(1721737195.205:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.598816][   T29] audit: type=1326 audit(1721737195.205:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.731273][   T29] audit: type=1326 audit(1721737195.205:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.766332][   T29] audit: type=1326 audit(1721737195.205:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.905325][   T29] audit: type=1326 audit(1721737195.205:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  652.980982][   T29] audit: type=1326 audit(1721737195.215:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  653.013256][    T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  653.029293][   T29] audit: type=1326 audit(1721737195.215:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  653.053090][   T29] audit: type=1326 audit(1721737195.215:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  653.081736][   T29] audit: type=1326 audit(1721737195.215:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10636 comm="syz.4.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  653.313535][    T9] usb 3-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  653.362540][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.448427][    T9] usb 3-1: Product: syz
[  653.463984][    T9] usb 3-1: Manufacturer: syz
[  653.477619][    T9] usb 3-1: SerialNumber: syz
[  653.525429][    T9] usb 3-1: config 0 descriptor??
[  653.589669][    T9] i2c-tiny-usb 3-1:0.0: version 6d.cc found at bus 003 address 009
[  653.976086][T10641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  654.002550][T10641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  654.085058][T10641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  654.124493][T10641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  654.507288][    T9]  (null): failure setting delay to 10us
[  654.513023][    T9] i2c-tiny-usb 3-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  654.549980][    T9] usb 3-1: USB disconnect, device number 9
[  655.056765][T10675] xt_bpf: check failed: parse error
[  656.576829][T10688] xt_bpf: check failed: parse error
[  657.358746][T10686] program syz.4.1070 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  657.485973][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.492870][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.499925][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.507676][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.514552][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.524817][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.533517][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.545003][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.552190][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.559108][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.565985][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.572805][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.579676][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.586528][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.593330][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.600190][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.607032][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.613839][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.620722][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.627574][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.635801][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.642612][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.651681][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.658530][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.665398][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.672203][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.695187][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.703263][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.710294][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.717308][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.724848][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.731785][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  657.739506][ T5106] Bluetooth: hci0: unexpected event for opcode 0x0c14
[  659.442338][T10711] FAULT_INJECTION: forcing a failure.
[  659.442338][T10711] name failslab, interval 1, probability 0, space 0, times 0
[  659.503158][T10711] CPU: 0 UID: 0 PID: 10711 Comm: syz.1.1078 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  659.513606][T10711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  659.523649][T10711] Call Trace:
[  659.526915][T10711]  <TASK>
[  659.529833][T10711]  dump_stack_lvl+0x16c/0x1f0
[  659.534503][T10711]  should_fail_ex+0x497/0x5b0
[  659.539171][T10711]  ? fs_reclaim_acquire+0xae/0x160
[  659.544269][T10711]  should_failslab+0xc2/0x120
[  659.548936][T10711]  __kmalloc_noprof+0xcb/0x400
[  659.553690][T10711]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  659.560810][T10711]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  659.566304][T10711]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  659.572410][T10711]  ? security_capable+0x98/0xd0
[  659.577282][T10711]  genl_rcv_msg+0x565/0x800
[  659.581800][T10711]  ? __pfx_genl_rcv_msg+0x10/0x10
[  659.586841][T10711]  ? __pfx___lock_acquire+0x10/0x10
[  659.592058][T10711]  ? __pfx_netlbl_unlabel_staticadd+0x10/0x10
[  659.598148][T10711]  ? __pfx___lock_acquire+0x10/0x10
[  659.603371][T10711]  netlink_rcv_skb+0x16b/0x440
[  659.608166][T10711]  ? __pfx_genl_rcv_msg+0x10/0x10
[  659.613203][T10711]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  659.618501][T10711]  ? down_read+0xc9/0x330
[  659.622835][T10711]  ? __pfx_down_read+0x10/0x10
[  659.627601][T10711]  ? netlink_deliver_tap+0x1ae/0xd90
[  659.632886][T10711]  genl_rcv+0x28/0x40
[  659.636871][T10711]  netlink_unicast+0x544/0x830
[  659.641636][T10711]  ? __pfx_netlink_unicast+0x10/0x10
[  659.646924][T10711]  netlink_sendmsg+0x8b8/0xd70
[  659.651694][T10711]  ? __pfx_netlink_sendmsg+0x10/0x10
[  659.656985][T10711]  ? __import_iovec+0x1fd/0x6e0
[  659.661837][T10711]  ____sys_sendmsg+0xab5/0xc90
[  659.666605][T10711]  ? copy_msghdr_from_user+0x10b/0x160
[  659.672061][T10711]  ? __pfx_____sys_sendmsg+0x10/0x10
[  659.677349][T10711]  ? find_held_lock+0x2d/0x110
[  659.682117][T10711]  ? __pfx___lock_acquire+0x10/0x10
[  659.687315][T10711]  ___sys_sendmsg+0x135/0x1e0
[  659.691991][T10711]  ? __pfx____sys_sendmsg+0x10/0x10
[  659.697188][T10711]  ? ksys_write+0x21c/0x260
[  659.701689][T10711]  ? __fget_light+0x173/0x210
[  659.706374][T10711]  __sys_sendmsg+0x117/0x1f0
[  659.710963][T10711]  ? __pfx___sys_sendmsg+0x10/0x10
[  659.716077][T10711]  do_syscall_64+0xcd/0x250
[  659.720581][T10711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.726473][T10711] RIP: 0033:0x7f3ec9f75f19
[  659.730882][T10711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.750483][T10711] RSP: 002b:00007f3ecada7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  659.758893][T10711] RAX: ffffffffffffffda RBX: 00007f3eca105f60 RCX: 00007f3ec9f75f19
[  659.766861][T10711] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  659.774827][T10711] RBP: 00007f3ecada70a0 R08: 0000000000000000 R09: 0000000000000000
[  659.782794][T10711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  659.790762][T10711] R13: 000000000000000b R14: 00007f3eca105f60 R15: 00007ffed6b931c8
[  659.798731][T10711]  </TASK>
[  659.801898][    C0] vkms_vblank_simulate: vblank timer overrun
[  659.802004][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  659.802017][   T29] audit: type=1400 audit(1721737203.005:855): avc:  denied  { read write } for  pid=10712 comm="syz.4.1076" name="nvram" dev="devtmpfs" ino=625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  659.839962][   T29] audit: type=1400 audit(1721737203.005:856): avc:  denied  { open } for  pid=10712 comm="syz.4.1076" path="/dev/nvram" dev="devtmpfs" ino=625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  659.879166][   T29] audit: type=1400 audit(1721737203.285:857): avc:  denied  { ioctl } for  pid=10712 comm="syz.4.1076" path="/dev/nvram" dev="devtmpfs" ino=625 ioctlcmd=0x5720 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  660.098590][   T29] audit: type=1400 audit(1721737203.495:858): avc:  denied  { setopt } for  pid=10719 comm="syz.3.1081" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  660.157370][   T29] audit: type=1400 audit(1721737203.565:859): avc:  denied  { create } for  pid=10719 comm="syz.3.1081" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  660.386290][T10723] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  660.501290][T10728] xt_bpf: check failed: parse error
[  660.711761][   T29] audit: type=1326 audit(1721737203.955:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.4.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  660.735231][    C0] vkms_vblank_simulate: vblank timer overrun
[  660.741913][   T29] audit: type=1326 audit(1721737203.955:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.4.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  661.474181][   T29] audit: type=1326 audit(1721737203.965:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.4.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  661.513677][T10733] FAULT_INJECTION: forcing a failure.
[  661.513677][T10733] name failslab, interval 1, probability 0, space 0, times 0
[  661.561445][   T29] audit: type=1326 audit(1721737203.975:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.4.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  661.595468][T10733] CPU: 0 UID: 0 PID: 10733 Comm: syz.0.1084 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  661.605929][T10733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  661.614626][T10730] fuse: Bad value for 'fd'
[  661.620404][T10733] Call Trace:
[  661.623676][T10733]  <TASK>
[  661.626599][T10733]  dump_stack_lvl+0x16c/0x1f0
[  661.631267][T10733]  should_fail_ex+0x497/0x5b0
[  661.635937][T10733]  ? fs_reclaim_acquire+0xae/0x160
[  661.641048][T10733]  should_failslab+0xc2/0x120
[  661.645724][T10733]  __kmalloc_noprof+0xcb/0x400
[  661.650480][T10733]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  661.657589][T10733]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  661.663041][T10733]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  661.669105][T10733]  ? security_capable+0x98/0xd0
[  661.673948][T10733]  genl_rcv_msg+0x565/0x800
[  661.678443][T10733]  ? __pfx_genl_rcv_msg+0x10/0x10
[  661.683452][T10733]  ? __pfx___lock_acquire+0x10/0x10
[  661.688643][T10733]  ? __pfx_netlbl_unlabel_staticadd+0x10/0x10
[  661.694712][T10733]  ? __pfx___lock_acquire+0x10/0x10
[  661.699933][T10733]  netlink_rcv_skb+0x16b/0x440
[  661.704721][T10733]  ? __pfx_genl_rcv_msg+0x10/0x10
[  661.709735][T10733]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  661.715026][T10733]  ? down_read+0xc9/0x330
[  661.719376][T10733]  ? __pfx_down_read+0x10/0x10
[  661.724132][T10733]  ? netlink_deliver_tap+0x1ae/0xd90
[  661.729411][T10733]  genl_rcv+0x28/0x40
[  661.733391][T10733]  netlink_unicast+0x544/0x830
[  661.738177][T10733]  ? __pfx_netlink_unicast+0x10/0x10
[  661.743478][T10733]  netlink_sendmsg+0x8b8/0xd70
[  661.748233][T10733]  ? __pfx_netlink_sendmsg+0x10/0x10
[  661.753510][T10733]  ? __import_iovec+0x1fd/0x6e0
[  661.758363][T10733]  ____sys_sendmsg+0xab5/0xc90
[  661.763147][T10733]  ? copy_msghdr_from_user+0x10b/0x160
[  661.768596][T10733]  ? __pfx_____sys_sendmsg+0x10/0x10
[  661.773876][T10733]  ? find_held_lock+0x2d/0x110
[  661.778633][T10733]  ? __pfx___lock_acquire+0x10/0x10
[  661.783821][T10733]  ___sys_sendmsg+0x135/0x1e0
[  661.788488][T10733]  ? __pfx____sys_sendmsg+0x10/0x10
[  661.793678][T10733]  ? ksys_write+0x21c/0x260
[  661.798168][T10733]  ? __fget_light+0x173/0x210
[  661.802840][T10733]  __sys_sendmsg+0x117/0x1f0
[  661.807422][T10733]  ? __pfx___sys_sendmsg+0x10/0x10
[  661.812527][T10733]  do_syscall_64+0xcd/0x250
[  661.817021][T10733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.822903][T10733] RIP: 0033:0x7f88ca375f19
[  661.827302][T10733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.846900][T10733] RSP: 002b:00007f88cb1f0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  661.855301][T10733] RAX: ffffffffffffffda RBX: 00007f88ca505f60 RCX: 00007f88ca375f19
[  661.863263][T10733] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  661.871221][T10733] RBP: 00007f88cb1f00a0 R08: 0000000000000000 R09: 0000000000000000
[  661.879178][T10733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.887135][T10733] R13: 000000000000000b R14: 00007f88ca505f60 R15: 00007ffe1eec7258
[  661.895097][T10733]  </TASK>
[  661.898172][    C0] vkms_vblank_simulate: vblank timer overrun
[  661.906175][   T29] audit: type=1326 audit(1721737203.975:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.4.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  662.236091][T10742] FAULT_INJECTION: forcing a failure.
[  662.236091][T10742] name failslab, interval 1, probability 0, space 0, times 0
[  662.251822][T10742] CPU: 1 UID: 0 PID: 10742 Comm: syz.3.1088 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  662.262268][T10742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  662.272338][T10742] Call Trace:
[  662.275632][T10742]  <TASK>
[  662.278570][T10742]  dump_stack_lvl+0x16c/0x1f0
[  662.283271][T10742]  should_fail_ex+0x497/0x5b0
[  662.287968][T10742]  should_failslab+0xc2/0x120
[  662.292663][T10742]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  662.298057][T10742]  ? skb_clone+0x190/0x3f0
[  662.302493][T10742]  skb_clone+0x190/0x3f0
[  662.306757][T10742]  netlink_deliver_tap+0xab3/0xd90
[  662.311891][T10742]  netlink_unicast+0x606/0x830
[  662.316695][T10742]  ? __pfx_netlink_unicast+0x10/0x10
[  662.322009][T10742]  netlink_sendmsg+0x8b8/0xd70
[  662.326796][T10742]  ? __pfx_netlink_sendmsg+0x10/0x10
[  662.332101][T10742]  ? __import_iovec+0x1fd/0x6e0
[  662.336976][T10742]  ____sys_sendmsg+0xab5/0xc90
[  662.341764][T10742]  ? copy_msghdr_from_user+0x10b/0x160
[  662.347242][T10742]  ? __pfx_____sys_sendmsg+0x10/0x10
[  662.352556][T10742]  ? find_held_lock+0x2d/0x110
[  662.357349][T10742]  ? __pfx___lock_acquire+0x10/0x10
[  662.362574][T10742]  ___sys_sendmsg+0x135/0x1e0
[  662.367269][T10742]  ? __pfx____sys_sendmsg+0x10/0x10
[  662.372487][T10742]  ? ksys_write+0x21c/0x260
[  662.377010][T10742]  ? __fget_light+0x173/0x210
[  662.381713][T10742]  __sys_sendmsg+0x117/0x1f0
[  662.386320][T10742]  ? __pfx___sys_sendmsg+0x10/0x10
[  662.391452][T10742]  do_syscall_64+0xcd/0x250
[  662.395979][T10742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.401893][T10742] RIP: 0033:0x7f34a4d75f19
[  662.406319][T10742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.425945][T10742] RSP: 002b:00007f34a5ae7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  662.434379][T10742] RAX: ffffffffffffffda RBX: 00007f34a4f05f60 RCX: 00007f34a4d75f19
[  662.442361][T10742] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  662.450344][T10742] RBP: 00007f34a5ae70a0 R08: 0000000000000000 R09: 0000000000000000
[  662.458330][T10742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  662.466313][T10742] R13: 000000000000000b R14: 00007f34a4f05f60 R15: 00007ffd3b4844e8
[  662.474300][T10742]  </TASK>
[  665.115303][T10773] xt_bpf: check failed: parse error
[  665.146392][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  665.146408][   T29] audit: type=1326 audit(1721737208.535:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.327729][   T29] audit: type=1326 audit(1721737208.535:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.359694][   T29] audit: type=1326 audit(1721737208.535:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.402542][   T29] audit: type=1326 audit(1721737208.535:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.481459][   T29] audit: type=1326 audit(1721737208.535:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.754243][   T29] audit: type=1326 audit(1721737208.545:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.844751][    T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  665.854946][   T29] audit: type=1326 audit(1721737208.545:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  665.966806][   T29] audit: type=1326 audit(1721737208.545:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  666.043035][T10783] input: syz1 as /devices/virtual/input/input15
[  666.095217][    T9] usb 5-1: Using ep0 maxpacket: 32
[  666.110286][    T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  666.173361][   T29] audit: type=1326 audit(1721737208.545:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  666.217230][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  666.259798][T10784] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  666.290699][    T9] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  666.341441][   T29] audit: type=1326 audit(1721737208.545:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff50b975f19 code=0x7ffc0000
[  666.414343][    T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  667.104885][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  667.114227][    T9] usb 5-1: Product: syz
[  667.120352][    T9] usb 5-1: Manufacturer: syz
[  667.660448][    T9] usb 5-1: SerialNumber: syz
[  667.676542][    T9] cdc_ncm 5-1:1.0: skipping garbage
[  667.681777][    T9] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  667.689579][    T9] cdc_ncm 5-1:1.0: bind() failure
[  670.376336][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  670.376354][   T29] audit: type=1400 audit(1721737213.785:898): avc:  denied  { bind } for  pid=10804 comm="syz.2.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  670.416481][T10807] input: syz0 as /devices/virtual/input/input17
[  670.477520][   T29] audit: type=1400 audit(1721737213.825:899): avc:  denied  { connect } for  pid=10804 comm="syz.2.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  670.641507][   T25] usb 5-1: USB disconnect, device number 9
[  671.724738][   T29] audit: type=1400 audit(1721737215.115:900): avc:  denied  { create } for  pid=10804 comm="syz.2.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  672.100938][T10820] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  672.124839][T10822] input: syz1 as /devices/virtual/input/input18
[  672.443835][T10829] FAULT_INJECTION: forcing a failure.
[  672.443835][T10829] name failslab, interval 1, probability 0, space 0, times 0
[  672.459319][T10829] CPU: 1 UID: 0 PID: 10829 Comm: syz.3.1112 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  672.469758][T10829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  672.479826][T10829] Call Trace:
[  672.483117][T10829]  <TASK>
[  672.486063][T10829]  dump_stack_lvl+0x16c/0x1f0
[  672.490766][T10829]  should_fail_ex+0x497/0x5b0
[  672.495471][T10829]  should_failslab+0xc2/0x120
[  672.500173][T10829]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  672.505581][T10829]  ? skb_clone+0x190/0x3f0
[  672.510024][T10829]  skb_clone+0x190/0x3f0
[  672.514289][T10829]  netlink_deliver_tap+0xab3/0xd90
[  672.519431][T10829]  netlink_unicast+0x606/0x830
[  672.524221][T10829]  ? __pfx_netlink_unicast+0x10/0x10
[  672.529535][T10829]  netlink_sendmsg+0x8b8/0xd70
[  672.534338][T10829]  ? __pfx_netlink_sendmsg+0x10/0x10
[  672.539654][T10829]  ? __import_iovec+0x1fd/0x6e0
[  672.544534][T10829]  ____sys_sendmsg+0xab5/0xc90
[  672.549324][T10829]  ? copy_msghdr_from_user+0x10b/0x160
[  672.554803][T10829]  ? __pfx_____sys_sendmsg+0x10/0x10
[  672.560115][T10829]  ? find_held_lock+0x2d/0x110
[  672.564904][T10829]  ? __pfx___lock_acquire+0x10/0x10
[  672.570126][T10829]  ___sys_sendmsg+0x135/0x1e0
[  672.574828][T10829]  ? __pfx____sys_sendmsg+0x10/0x10
[  672.580049][T10829]  ? ksys_write+0x21c/0x260
[  672.584570][T10829]  ? __fget_light+0x173/0x210
[  672.589275][T10829]  __sys_sendmsg+0x117/0x1f0
[  672.593892][T10829]  ? __pfx___sys_sendmsg+0x10/0x10
[  672.599028][T10829]  do_syscall_64+0xcd/0x250
[  672.603557][T10829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.609472][T10829] RIP: 0033:0x7f34a4d75f19
[  672.613897][T10829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.633524][T10829] RSP: 002b:00007f34a5ac6048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  672.641957][T10829] RAX: ffffffffffffffda RBX: 00007f34a4f06038 RCX: 00007f34a4d75f19
[  672.649942][T10829] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000005
[  672.657930][T10829] RBP: 00007f34a5ac60a0 R08: 0000000000000000 R09: 0000000000000000
[  672.665914][T10829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  672.673900][T10829] R13: 000000000000006e R14: 00007f34a4f06038 R15: 00007ffd3b4844e8
[  672.681895][T10829]  </TASK>
[  675.010093][   T29] audit: type=1400 audit(1721737218.415:901): avc:  denied  { sqpoll } for  pid=10846 comm="syz.0.1119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  675.040631][   T25] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  675.279608][   T25] usb 5-1: Using ep0 maxpacket: 32
[  675.304092][   T25] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  675.355151][   T25] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  675.412559][   T25] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  675.518119][   T25] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  675.544889][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  675.570057][   T25] usb 5-1: Product: syz
[  675.593075][   T25] usb 5-1: Manufacturer: syz
[  675.631328][   T25] usb 5-1: SerialNumber: syz
[  675.730592][   T25] cdc_ncm 5-1:1.0: skipping garbage
[  675.741565][   T25] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  675.768756][   T25] cdc_ncm 5-1:1.0: bind() failure
[  678.415296][   T25] usb 5-1: USB disconnect, device number 10
[  678.561153][T10874] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1125'.
[  678.771557][T10879] input: syz0 as /devices/virtual/input/input19
[  680.584777][   T29] audit: type=1400 audit(1721737223.985:902): avc:  denied  { write } for  pid=10899 comm="syz.3.1134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  680.800185][   T29] audit: type=1400 audit(1721737224.205:903): avc:  denied  { ioctl } for  pid=10899 comm="syz.3.1134" path="socket:[36331]" dev="sockfs" ino=36331 ioctlcmd=0x941c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  681.039741][   T29] audit: type=1400 audit(1721737224.435:904): avc:  denied  { shutdown } for  pid=10903 comm="syz.1.1135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  681.107944][   T29] audit: type=1400 audit(1721737224.435:905): avc:  denied  { setopt } for  pid=10903 comm="syz.1.1135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  681.194773][   T29] audit: type=1400 audit(1721737224.545:906): avc:  denied  { mounton } for  pid=10913 comm="syz.2.1137" path="/220/file0" dev="ramfs" ino=37339 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  681.642180][T10930] input: syz0 as /devices/virtual/input/input20
[  681.671966][ T5149] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  682.143694][ T5149] usb 3-1: config 0 has no interfaces?
[  682.373060][ T5149] usb 3-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[  682.405038][ T5149] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.446661][ T5149] usb 3-1: config 0 descriptor??
[  682.573981][T10938] FAULT_INJECTION: forcing a failure.
[  682.573981][T10938] name failslab, interval 1, probability 0, space 0, times 0
[  682.597789][T10938] CPU: 1 UID: 0 PID: 10938 Comm: syz.3.1144 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  682.608236][T10938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  682.618320][T10938] Call Trace:
[  682.621617][T10938]  <TASK>
[  682.624563][T10938]  dump_stack_lvl+0x16c/0x1f0
[  682.629270][T10938]  should_fail_ex+0x497/0x5b0
[  682.633978][T10938]  ? fs_reclaim_acquire+0xae/0x160
[  682.639117][T10938]  should_failslab+0xc2/0x120
[  682.643822][T10938]  __kmalloc_noprof+0xcb/0x400
[  682.648644][T10938]  ? d_absolute_path+0x137/0x1b0
[  682.653599][T10938]  tomoyo_encode2+0x100/0x3e0
[  682.658304][T10938]  tomoyo_encode+0x29/0x50
[  682.662740][T10938]  tomoyo_realpath_from_path+0x19d/0x720
[  682.668400][T10938]  tomoyo_path_number_perm+0x245/0x590
[  682.673878][T10938]  ? tomoyo_path_number_perm+0x232/0x590
[  682.679532][T10938]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  682.685536][T10938]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  682.691541][T10938]  ? __fget_files+0x256/0x400
[  682.696249][T10938]  security_file_ioctl+0x75/0xc0
[  682.701213][T10938]  __x64_sys_ioctl+0xbb/0x220
[  682.705920][T10938]  do_syscall_64+0xcd/0x250
[  682.710446][T10938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.716358][T10938] RIP: 0033:0x7f34a4d75f19
[  682.720786][T10938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  682.740410][T10938] RSP: 002b:00007f34a5ae7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  682.748841][T10938] RAX: ffffffffffffffda RBX: 00007f34a4f05f60 RCX: 00007f34a4d75f19
[  682.756825][T10938] RDX: 00000000200002c0 RSI: 00000000c01864c6 RDI: 0000000000000003
[  682.764810][T10938] RBP: 00007f34a5ae70a0 R08: 0000000000000000 R09: 0000000000000000
[  682.772791][T10938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  682.780773][T10938] R13: 000000000000000b R14: 00007f34a4f05f60 R15: 00007ffd3b4844e8
[  682.788759][T10938]  </TASK>
[  682.868509][T10938] ERROR: Out of memory at tomoyo_realpath_from_path.
[  682.928564][ T5147] usb 3-1: USB disconnect, device number 10
[  684.240535][ T2468] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.419489][ T2468] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.538712][ T2468] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.672595][ T2468] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.976510][   T29] audit: type=1400 audit(1721737228.375:907): avc:  denied  { mount } for  pid=10957 comm="syz.4.1154" name="/" dev="autofs" ino=36596 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  685.069226][ T2468] bridge_slave_0: left allmulticast mode
[  685.110300][ T2468] bridge_slave_0: left promiscuous mode
[  685.123943][ T2468] bridge0: port 1(bridge_slave_0) entered disabled state
[  685.337222][ T9095] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  685.350435][ T9095] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  685.376054][ T9095] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  685.472112][T10977] input: syz0 as /devices/virtual/input/input21
[  685.522591][ T9095] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  685.545089][ T9095] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  685.558705][ T9095] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  686.254904][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  686.261257][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  688.267594][ T9095] Bluetooth: hci2: command tx timeout
[  688.323640][   T29] audit: type=1400 audit(1721737231.715:908): avc:  denied  { unmount } for  pid=8710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  689.898239][ T2468] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  689.919541][ T2468] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  689.936729][ T2468] bond0 (unregistering): Released all slaves
[  690.325549][ T9095] Bluetooth: hci2: command tx timeout
[  690.682371][T11030] input: syz0 as /devices/virtual/input/input23
[  691.636574][   T29] audit: type=1400 audit(1721737235.045:909): avc:  denied  { write } for  pid=11018 comm="syz.0.1164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  692.404888][ T9095] Bluetooth: hci2: command tx timeout
[  692.484618][ T2468] hsr_slave_0: left promiscuous mode
[  692.511106][ T2468] hsr_slave_1: left promiscuous mode
[  692.597798][ T2468] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  692.646580][ T2468] batman_adv: batadv0: Removing interface: batadv_slave_0
[  692.739906][ T2468] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  692.755959][ T2468] batman_adv: batadv0: Removing interface: batadv_slave_1
[  692.843545][ T2468] veth1_macvtap: left promiscuous mode
[  692.863160][ T2468] veth0_macvtap: left promiscuous mode
[  692.884510][ T2468] veth1_vlan: left promiscuous mode
[  692.900850][ T2468] veth0_vlan: left promiscuous mode
[  694.545024][ T9095] Bluetooth: hci2: command tx timeout
[  699.162378][ T2468] team0 (unregistering): Port device team_slave_1 removed
[  699.301761][ T2468] team0 (unregistering): Port device team_slave_0 removed
[  700.311841][T10971] chnl_net:caif_netlink_parms(): no params data found
[  700.463802][T11103] input: syz0 as /devices/virtual/input/input24
[  702.439723][T11123] FAULT_INJECTION: forcing a failure.
[  702.439723][T11123] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  702.452878][T11123] CPU: 1 UID: 0 PID: 11123 Comm: syz.4.1180 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  702.463310][T11123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  702.473378][T11123] Call Trace:
[  702.476667][T11123]  <TASK>
[  702.479606][T11123]  dump_stack_lvl+0x16c/0x1f0
[  702.484305][T11123]  should_fail_ex+0x497/0x5b0
[  702.489008][T11123]  _copy_from_user+0x30/0xf0
[  702.493621][T11123]  snd_pcm_oss_write2+0x1c6/0x3f0
[  702.498756][T11123]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  702.504318][T11123]  ? snd_pcm_kernel_ioctl+0x257/0x2d0
[  702.509714][T11123]  ? snd_pcm_oss_prepare+0x11e/0x220
[  702.515016][T11123]  snd_pcm_oss_write+0x733/0xa10
[  702.519973][T11123]  ? rw_verify_area+0xd0/0x6c0
[  702.524760][T11123]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  702.530235][T11123]  vfs_write+0x29a/0x1140
[  702.534579][T11123]  ? __pfx_vfs_write+0x10/0x10
[  702.539356][T11123]  ? __fget_files+0x256/0x400
[  702.544055][T11123]  ? __fget_light+0x173/0x210
[  702.548758][T11123]  ksys_write+0x12f/0x260
[  702.553101][T11123]  ? __pfx_ksys_write+0x10/0x10
[  702.557975][T11123]  do_syscall_64+0xcd/0x250
[  702.562515][T11123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.568437][T11123] RIP: 0033:0x7fd0bc975f19
[  702.572869][T11123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  702.592496][T11123] RSP: 002b:00007fd0bd764048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  702.600937][T11123] RAX: ffffffffffffffda RBX: 00007fd0bcb06038 RCX: 00007fd0bc975f19
[  702.608922][T11123] RDX: 0000000000004000 RSI: 00000000200012c0 RDI: 0000000000000008
[  702.616908][T11123] RBP: 00007fd0bd7640a0 R08: 0000000000000000 R09: 0000000000000000
[  702.624897][T11123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  702.632884][T11123] R13: 000000000000006e R14: 00007fd0bcb06038 R15: 00007ffe81892598
[  702.640868][T11123]  </TASK>
[  702.873534][T10971] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.906692][T10971] bridge0: port 1(bridge_slave_0) entered disabled state
[  702.924525][T10971] bridge_slave_0: entered allmulticast mode
[  703.040345][T10971] bridge_slave_0: entered promiscuous mode
[  703.132317][ T5106] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  703.142691][ T5106] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  703.230248][ T5106] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  703.283608][ T5106] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  703.297681][ T5106] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  703.307597][ T5106] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  703.343301][T10971] bridge0: port 2(bridge_slave_1) entered blocking state
[  703.352872][T10971] bridge0: port 2(bridge_slave_1) entered disabled state
[  703.360234][T10971] bridge_slave_1: entered allmulticast mode
[  703.369187][T10971] bridge_slave_1: entered promiscuous mode
[  703.497978][T10971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  703.557550][T10971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  704.132114][T10971] team0: Port device team_slave_0 added
[  704.186891][T10971] team0: Port device team_slave_1 added
[  704.334189][T10971] batman_adv: batadv0: Adding interface: batadv_slave_0
[  704.348500][T10971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  704.382214][T10971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  704.685572][T10971] batman_adv: batadv0: Adding interface: batadv_slave_1
[  704.693228][T10971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  705.485944][ T5106] Bluetooth: hci3: command tx timeout
[  705.704616][T10971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  706.101260][T11160] input: syz0 as /devices/virtual/input/input25
[  707.036269][T10971] hsr_slave_0: entered promiscuous mode
[  707.089023][T10971] hsr_slave_1: entered promiscuous mode
[  707.537532][ T9095] Bluetooth: hci3: command tx timeout
[  707.769432][ T2431] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.624925][ T9095] Bluetooth: hci3: command tx timeout
[  709.813967][ T2431] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.093009][T11130] chnl_net:caif_netlink_parms(): no params data found
[  711.313303][ T2431] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.466344][T11213] input: syz0 as /devices/virtual/input/input26
[  711.834941][ T9095] Bluetooth: hci3: command tx timeout
[  712.344452][ T2431] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  712.951803][T11130] bridge0: port 1(bridge_slave_0) entered blocking state
[  712.969761][T11130] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.977859][T11130] bridge_slave_0: entered allmulticast mode
[  712.995599][T11130] bridge_slave_0: entered promiscuous mode
[  713.013581][T11130] bridge0: port 2(bridge_slave_1) entered blocking state
[  713.032414][T11130] bridge0: port 2(bridge_slave_1) entered disabled state
[  713.055561][T11130] bridge_slave_1: entered allmulticast mode
[  713.080913][T11130] bridge_slave_1: entered promiscuous mode
[  713.700380][T11130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  714.089165][T11130] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  714.100077][ T2431] bridge_slave_1: left allmulticast mode
[  714.213800][ T2431] bridge_slave_1: left promiscuous mode
[  714.696685][ T2431] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.759581][ T2431] bridge_slave_0: left allmulticast mode
[  714.883204][ T2431] bridge_slave_0: left promiscuous mode
[  714.893960][ T2431] bridge0: port 1(bridge_slave_0) entered disabled state
[  721.308666][ T2431] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  721.351939][ T2431] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  721.375693][ T2431] bond0 (unregistering): Released all slaves
[  722.882529][T11130] team0: Port device team_slave_0 added
[  723.115979][T11260] input: syz0 as /devices/virtual/input/input27
[  723.856175][T11130] team0: Port device team_slave_1 added
[  724.064181][T11269] input: syz0 as /devices/virtual/input/input28
[  724.702112][T11130] batman_adv: batadv0: Adding interface: batadv_slave_0
[  724.716465][T11130] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  724.742964][T11130] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  724.801962][ T5103] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  724.845489][T11130] batman_adv: batadv0: Adding interface: batadv_slave_1
[  724.852452][T11130] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  724.886204][ T5103] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  724.956874][T11130] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  725.295655][ T2431] hsr_slave_0: left promiscuous mode
[  725.360989][ T2431] hsr_slave_1: left promiscuous mode
[  725.384280][ T2431] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  725.415114][ T2431] batman_adv: batadv0: Removing interface: batadv_slave_0
[  725.441865][ T2431] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  725.464832][ T2431] batman_adv: batadv0: Removing interface: batadv_slave_1
[  725.521341][ T2431] veth1_macvtap: left promiscuous mode
[  725.554836][ T2431] veth0_macvtap: left promiscuous mode
[  725.563961][ T2431] veth1_vlan: left promiscuous mode
[  725.584881][ T2431] veth0_vlan: left promiscuous mode
[  725.681863][ T9095] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  726.128677][T11301] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[  726.135446][T11301] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  726.153290][T11301] vhci_hcd vhci_hcd.0: Device attached
[  726.217937][T11301] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  726.248259][T11301] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(17)
[  726.254874][T11301] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  726.269637][T11301] vhci_hcd vhci_hcd.0: Device attached
[  726.333313][T11303] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  726.344916][ T5103] vhci_hcd: vhci_device speed not set
[  726.414920][ T5103] usb 11-1: new full-speed USB device number 5 using vhci_hcd
[  726.667825][T11306] vhci_hcd: connection closed
[  726.669536][ T2489] vhci_hcd: stop threads
[  726.698171][T11304] vhci_hcd: connection reset by peer
[  726.739181][ T2489] vhci_hcd: release socket
[  726.766241][ T2489] vhci_hcd: disconnect device
[  726.771304][ T2489] vhci_hcd: stop threads
[  726.784815][ T2489] vhci_hcd: release socket
[  726.789502][ T2489] vhci_hcd: disconnect device
[  727.068326][ T2431] team0 (unregistering): Port device team_slave_1 removed
[  727.143783][ T2431] team0 (unregistering): Port device team_slave_0 removed
[  728.209189][T10971] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  728.269440][T10971] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  728.892964][T11130] hsr_slave_0: entered promiscuous mode
[  729.612271][T11130] hsr_slave_1: entered promiscuous mode
[  729.646372][T11130] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  729.694162][T11130] Cannot create hsr debugfs directory
[  730.264909][T10971] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  730.817612][T11331] input: syz0 as /devices/virtual/input/input29
[  730.858378][T10971] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  731.894063][ T5103] vhci_hcd: vhci_device speed not set
[  732.198839][ T5098] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  732.220775][ T5098] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  732.510484][T11346] binder: BINDER_SET_CONTEXT_MGR already set
[  732.596591][T10971] 8021q: adding VLAN 0 to HW filter on device bond0
[  732.652802][T11346] binder: 11343:11346 ioctl 4018620d 20000100 returned -16
[  732.873606][T10971] 8021q: adding VLAN 0 to HW filter on device team0
[  732.922870][ T5154] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.930111][ T5154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  733.129985][ T5098] bridge0: port 2(bridge_slave_1) entered blocking state
[  733.137152][ T5098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  733.337722][T10971] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  733.790353][T11130] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  733.900057][T11130] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  733.950029][T11130] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  734.057530][T11130] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  734.307435][T10971] 8021q: adding VLAN 0 to HW filter on device batadv0
[  734.408568][T10971] veth0_vlan: entered promiscuous mode
[  734.421052][T10971] veth1_vlan: entered promiscuous mode
[  734.449634][T10971] veth0_macvtap: entered promiscuous mode
[  734.459392][T10971] veth1_macvtap: entered promiscuous mode
[  734.477391][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  734.488161][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.498085][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  734.509757][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.532969][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  734.552504][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.610148][T10971] batman_adv: batadv0: Interface activated: batadv_slave_0
[  734.741517][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.752397][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.762577][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.773218][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.783806][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.795253][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.807377][T10971] batman_adv: batadv0: Interface activated: batadv_slave_1
[  734.851354][T10971] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  734.865993][T10971] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  734.877015][T10971] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  734.889287][T10971] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  735.692890][ T9095] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  736.851380][T11394] input: syz0 as /devices/virtual/input/input30
[  737.231130][T11130] 8021q: adding VLAN 0 to HW filter on device bond0
[  737.467976][T11130] 8021q: adding VLAN 0 to HW filter on device team0
[  737.555816][T11401] FAULT_INJECTION: forcing a failure.
[  737.555816][T11401] name failslab, interval 1, probability 0, space 0, times 0
[  737.608669][T11032] bridge0: port 1(bridge_slave_0) entered blocking state
[  737.615904][T11032] bridge0: port 1(bridge_slave_0) entered forwarding state
[  737.616813][T11401] CPU: 1 UID: 0 PID: 11401 Comm: syz.1.1230 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  737.633524][T11401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  737.643594][T11401] Call Trace:
[  737.646877][T11401]  <TASK>
[  737.649794][T11401]  dump_stack_lvl+0x16c/0x1f0
[  737.654470][T11401]  should_fail_ex+0x497/0x5b0
[  737.659153][T11401]  ? fs_reclaim_acquire+0xae/0x160
[  737.664255][T11401]  should_failslab+0xc2/0x120
[  737.668924][T11401]  __kmalloc_noprof+0xcb/0x400
[  737.673678][T11401]  ? d_absolute_path+0x137/0x1b0
[  737.678608][T11401]  tomoyo_encode2+0x100/0x3e0
[  737.683274][T11401]  tomoyo_encode+0x29/0x50
[  737.687683][T11401]  tomoyo_realpath_from_path+0x19d/0x720
[  737.693303][T11401]  tomoyo_path_number_perm+0x245/0x590
[  737.698843][T11401]  ? tomoyo_path_number_perm+0x232/0x590
[  737.704461][T11401]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  737.710461][T11401]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  737.716442][T11401]  ? __fget_files+0x256/0x400
[  737.721114][T11401]  security_file_ioctl+0x75/0xc0
[  737.726042][T11401]  __x64_sys_ioctl+0xbb/0x220
[  737.730710][T11401]  do_syscall_64+0xcd/0x250
[  737.735206][T11401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.741086][T11401] RIP: 0033:0x7f3ec9f75f19
[  737.745503][T11401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  737.765103][T11401] RSP: 002b:00007f3ecada7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  737.773511][T11401] RAX: ffffffffffffffda RBX: 00007f3eca105f60 RCX: 00007f3ec9f75f19
[  737.781479][T11401] RDX: 0000000020000040 RSI: 00000000c01c64ae RDI: 0000000000000003
[  737.789441][T11401] RBP: 00007f3ecada70a0 R08: 0000000000000000 R09: 0000000000000000
[  737.797398][T11401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  737.805355][T11401] R13: 000000000000000b R14: 00007f3eca105f60 R15: 00007ffed6b931c8
[  737.813318][T11401]  </TASK>
[  737.850694][ T5149] bridge0: port 2(bridge_slave_1) entered blocking state
[  737.857830][ T5149] bridge0: port 2(bridge_slave_1) entered forwarding state
[  738.041819][T11130] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  738.045765][T11401] ERROR: Out of memory at tomoyo_realpath_from_path.
[  738.061330][T11130] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  738.093141][   T25] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  738.101079][T11391] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(14)
[  738.107694][T11391] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  738.145351][   T25] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  738.163240][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  738.182518][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  738.201579][T11396] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  738.269022][T11405] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(20)
[  738.275660][T11405] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  738.373976][T11391] vhci_hcd vhci_hcd.0: Device attached
[  738.457995][  T751] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  738.458905][ T5149] vhci_hcd: vhci_device speed not set
[  738.479997][T11405] vhci_hcd vhci_hcd.0: Device attached
[  738.503072][  T751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  738.522855][T11420] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  738.717989][ T5149] usb 17-1: new full-speed USB device number 9 using vhci_hcd
[  738.976184][T11428] No such timeout policy "syz1"
[  741.480830][T11130] 8021q: adding VLAN 0 to HW filter on device batadv0
[  741.854491][T11458] input: syz0 as /devices/virtual/input/input31
[  742.488459][T11415] vhci_hcd: connection closed
[  742.489234][ T2489] vhci_hcd: stop threads
[  742.523978][T11408] vhci_hcd: connection reset by peer
[  742.534779][T11130] veth0_vlan: entered promiscuous mode
[  742.573461][ T2489] vhci_hcd: release socket
[  742.582246][ T2489] vhci_hcd: disconnect device
[  742.590201][ T2489] vhci_hcd: stop threads
[  742.594834][ T2489] vhci_hcd: release socket
[  742.599501][ T2489] vhci_hcd: disconnect device
[  742.613989][T11130] veth1_vlan: entered promiscuous mode
[  742.646780][T11130] veth0_macvtap: entered promiscuous mode
[  742.735028][T11130] veth1_macvtap: entered promiscuous mode
[  743.038666][T11470] input: syz0 as /devices/virtual/input/input32
[  743.640631][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  743.728175][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  743.769054][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  743.804021][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  743.819281][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  743.863226][ T5149] vhci_hcd: vhci_device speed not set
[  743.874965][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  743.914766][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  743.947061][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.021118][T11130] batman_adv: batadv0: Interface activated: batadv_slave_0
[  744.048510][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.050563][T11479] overlayfs: failed to resolve './file1': -2
[  744.123780][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.201046][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.243244][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.287357][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.298926][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.311260][T11130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.323211][T11130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.348312][T11130] batman_adv: batadv0: Interface activated: batadv_slave_1
[  744.376413][T11130] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  744.385672][T11130] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  744.394466][T11130] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  744.411260][T11130] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  744.615031][ T2431] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  744.622868][ T2431] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  744.874023][ T2431] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  744.915143][ T2431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  745.421918][T11508] input: syz0 as /devices/virtual/input/input33
[  746.636422][ T5154] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  746.689732][ T5154] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  747.692499][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  747.699071][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  747.806325][   T29] audit: type=1400 audit(1721737291.215:910): avc:  denied  { read } for  pid=11537 comm="syz.3.1247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  751.804040][ T5154] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  751.846995][ T5154] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  753.889080][T11624] Bluetooth: MGMT ver 1.23
[  753.895001][T11624] Bluetooth: hci3: invalid length 0, exp 2 for type 0
[  753.947572][   T29] audit: type=1400 audit(1721737297.295:911): avc:  denied  { write } for  pid=11617 comm="syz.0.1261" path="socket:[40882]" dev="sockfs" ino=40882 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  754.623889][   T29] audit: type=1400 audit(1721737298.025:912): avc:  denied  { ioctl } for  pid=11625 comm="syz.4.1262" path="socket:[41295]" dev="sockfs" ino=41295 ioctlcmd=0x8912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  754.673072][   T29] audit: type=1400 audit(1721737298.065:913): avc:  denied  { read } for  pid=11625 comm="syz.4.1262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  754.754170][   T29] audit: type=1400 audit(1721737298.065:914): avc:  denied  { write } for  pid=11625 comm="syz.4.1262" name="sg0" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  757.024291][   T29] audit: type=1400 audit(1721737300.415:915): avc:  denied  { append } for  pid=11664 comm="syz.3.1269" name="nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  757.824473][    T9] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  757.883889][    T9] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  758.407766][T11692] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1274'.
[  758.634746][T11692] mkiss: ax0: crc mode is auto.
[  759.632536][T11724] input: syz0 as /devices/virtual/input/input34
[  761.136173][T10104] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  761.239716][T10104] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  762.309973][T11752] FAULT_INJECTION: forcing a failure.
[  762.309973][T11752] name failslab, interval 1, probability 0, space 0, times 0
[  762.356049][T11752] CPU: 0 UID: 0 PID: 11752 Comm: syz.3.1288 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  762.366503][T11752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  762.376650][T11752] Call Trace:
[  762.379918][T11752]  <TASK>
[  762.382841][T11752]  dump_stack_lvl+0x16c/0x1f0
[  762.387525][T11752]  should_fail_ex+0x497/0x5b0
[  762.392231][T11752]  ? fs_reclaim_acquire+0xae/0x160
[  762.397354][T11752]  should_failslab+0xc2/0x120
[  762.402053][T11752]  kmem_cache_alloc_node_noprof+0x71/0x310
[  762.407883][T11752]  ? __alloc_skb+0x2b1/0x380
[  762.412492][T11752]  __alloc_skb+0x2b1/0x380
[  762.416929][T11752]  ? __pfx___alloc_skb+0x10/0x10
[  762.421891][T11752]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  762.427899][T11752]  netlink_alloc_large_skb+0x69/0x130
[  762.433295][T11752]  netlink_sendmsg+0x689/0xd70
[  762.438076][T11752]  ? __pfx_netlink_sendmsg+0x10/0x10
[  762.443362][T11752]  ? __import_iovec+0x1fd/0x6e0
[  762.448228][T11752]  ____sys_sendmsg+0xab5/0xc90
[  762.452996][T11752]  ? copy_msghdr_from_user+0x10b/0x160
[  762.458473][T11752]  ? __pfx_____sys_sendmsg+0x10/0x10
[  762.463783][T11752]  ? find_held_lock+0x2d/0x110
[  762.468576][T11752]  ? __pfx___lock_acquire+0x10/0x10
[  762.473799][T11752]  ___sys_sendmsg+0x135/0x1e0
[  762.478491][T11752]  ? __pfx____sys_sendmsg+0x10/0x10
[  762.483701][T11752]  ? ksys_write+0x21c/0x260
[  762.488227][T11752]  ? __fget_light+0x173/0x210
[  762.492904][T11752]  __sys_sendmsg+0x117/0x1f0
[  762.497490][T11752]  ? __pfx___sys_sendmsg+0x10/0x10
[  762.502594][T11752]  do_syscall_64+0xcd/0x250
[  762.507101][T11752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.512996][T11752] RIP: 0033:0x7f34a4d75f19
[  762.517401][T11752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.536997][T11752] RSP: 002b:00007f34a5ae7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  762.545408][T11752] RAX: ffffffffffffffda RBX: 00007f34a4f05f60 RCX: 00007f34a4d75f19
[  762.553367][T11752] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  762.561329][T11752] RBP: 00007f34a5ae70a0 R08: 0000000000000000 R09: 0000000000000000
[  762.569289][T11752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  762.577248][T11752] R13: 000000000000000b R14: 00007f34a4f05f60 R15: 00007ffd3b4844e8
[  762.585209][T11752]  </TASK>
[  762.915845][T10104] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  762.973669][T10104] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  763.875839][T11774] input: syz0 as /devices/virtual/input/input35
[  765.086160][   T29] audit: type=1400 audit(1721737308.495:916): avc:  denied  { read } for  pid=11779 comm="syz.4.1296" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  765.204572][   T29] audit: type=1400 audit(1721737308.495:917): avc:  denied  { open } for  pid=11779 comm="syz.4.1296" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  765.991165][T11795] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1297'.
[  767.970591][T11822] input: syz0 as /devices/virtual/input/input36
[  769.127279][ T5103] hid-generic 0000:0000:0000.0019: unknown main item tag 0x0
[  769.167302][ T5103] hid-generic 0000:0000:0000.0019: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  770.681918][T11849] xt_bpf: check failed: parse error
[  770.744342][   T29] audit: type=1326 audit(1721737314.115:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  771.443146][   T29] audit: type=1326 audit(1721737314.115:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  771.545695][   T29] audit: type=1326 audit(1721737314.115:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  771.571041][   T29] audit: type=1326 audit(1721737314.115:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  772.388129][   T29] audit: type=1326 audit(1721737314.125:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  772.505146][   T29] audit: type=1326 audit(1721737314.125:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  773.394746][   T29] audit: type=1326 audit(1721737314.125:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  773.505570][   T29] audit: type=1326 audit(1721737314.125:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  773.629790][   T29] audit: type=1326 audit(1721737314.135:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  773.681135][   T29] audit: type=1326 audit(1721737314.135:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11846 comm="syz.4.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0bc975f19 code=0x7ffc0000
[  773.944639][T11872] input: syz0 as /devices/virtual/input/input37
[  776.123762][T11890] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  776.166976][T11888] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(13)
[  776.173595][T11888] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  776.344196][T11890] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(18)
[  776.350837][T11890] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  776.513880][T11888] vhci_hcd vhci_hcd.0: Device attached
[  776.563655][T11890] vhci_hcd vhci_hcd.0: Device attached
[  776.747639][T11902] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  776.847020][T11906] xt_bpf: check failed: parse error
[  776.900738][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  776.900755][   T29] audit: type=1326 audit(1721737320.285:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  777.536159][   T25] vhci_hcd: vhci_device speed not set
[  777.588612][ T5106] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  777.594900][   T29] audit: type=1326 audit(1721737320.285:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  777.624856][   T25] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[  777.691806][ T5106] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  777.717698][ T5106] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  777.741615][   T29] audit: type=1326 audit(1721737320.285:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  777.769325][ T5106] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  777.786967][T11895] vhci_hcd: connection closed
[  777.788017][T11892] vhci_hcd: connection reset by peer
[  777.792899][   T11] vhci_hcd: stop threads
[  777.803150][ T5106] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  777.810758][ T5106] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  777.835098][   T11] vhci_hcd: release socket
[  777.844576][   T11] vhci_hcd: disconnect device
[  777.844774][   T29] audit: type=1326 audit(1721737320.285:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  777.876783][   T29] audit: type=1326 audit(1721737320.285:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  777.908470][ T2468] vhci_hcd: stop threads
[  777.934888][ T2468] vhci_hcd: release socket
[  777.964416][ T2468] vhci_hcd: disconnect device
[  778.087127][   T29] audit: type=1326 audit(1721737320.285:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  778.150539][   T29] audit: type=1326 audit(1721737320.285:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  778.183775][   T29] audit: type=1326 audit(1721737320.285:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  778.212952][   T29] audit: type=1326 audit(1721737320.295:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  778.276586][   T29] audit: type=1326 audit(1721737320.295:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11899 comm="syz.2.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  778.380322][ T2431] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  778.703869][ T2431] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.049299][ T2431] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.974924][ T5111] Bluetooth: hci1: command tx timeout
[  780.178573][T11929] No such timeout policy "syz1"
[  780.402694][ T2431] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.066638][T11904] chnl_net:caif_netlink_parms(): no params data found
[  781.461585][ T2431] bridge_slave_1: left allmulticast mode
[  781.509208][ T2431] bridge_slave_1: left promiscuous mode
[  781.545259][ T2431] bridge0: port 2(bridge_slave_1) entered disabled state
[  781.557623][ T2431] bridge_slave_0: left allmulticast mode
[  781.580525][ T2431] bridge_slave_0: left promiscuous mode
[  781.767511][ T2431] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.044913][ T5111] Bluetooth: hci1: command tx timeout
[  782.725082][   T25] vhci_hcd: vhci_device speed not set
[  782.928725][T10104] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  782.976569][T10104] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  784.101978][ T5111] Bluetooth: hci1: command tx timeout
[  784.496352][T11977] No such timeout policy "syz1"
[  785.297645][ T5111] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  785.359885][T11982] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  785.665194][T11987] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[  785.671820][T11987] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  785.702933][T11987] vhci_hcd vhci_hcd.0: Device attached
[  785.731388][ T2431] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  785.745679][T11994] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  785.764224][ T2431] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  785.801524][ T2431] bond0 (unregistering): Released all slaves
[  785.807741][T11994] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(15)
[  785.814345][T11994] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  785.829534][T11994] vhci_hcd vhci_hcd.0: Device attached
[  785.840471][T11987] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  785.907296][ T5103] vhci_hcd: vhci_device speed not set
[  786.013420][ T5103] usb 11-1: new full-speed USB device number 6 using vhci_hcd
[  786.116174][T12002] vhci_hcd: connection closed
[  786.116563][ T2422] vhci_hcd: stop threads
[  786.129819][T11996] vhci_hcd: connection reset by peer
[  786.164781][ T5111] Bluetooth: hci1: command tx timeout
[  786.229239][ T2422] vhci_hcd: release socket
[  786.247116][ T2422] vhci_hcd: disconnect device
[  786.254027][ T2422] vhci_hcd: stop threads
[  786.263161][ T2422] vhci_hcd: release socket
[  786.273226][ T2422] vhci_hcd: disconnect device
[  787.163184][T11904] bridge0: port 1(bridge_slave_0) entered blocking state
[  787.181969][T11904] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.330423][T11904] bridge_slave_0: entered allmulticast mode
[  787.339865][T11904] bridge_slave_0: entered promiscuous mode
[  787.352772][T11904] bridge0: port 2(bridge_slave_1) entered blocking state
[  787.360477][T11904] bridge0: port 2(bridge_slave_1) entered disabled state
[  787.367766][T11904] bridge_slave_1: entered allmulticast mode
[  787.376082][T11904] bridge_slave_1: entered promiscuous mode
[  789.842686][ T5154] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  789.888574][ T5154] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  791.084068][T11904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  791.170724][T11904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  791.195141][ T5103] vhci_hcd: vhci_device speed not set
[  792.304260][ T2431] hsr_slave_0: left promiscuous mode
[  792.335121][ T2431] hsr_slave_1: left promiscuous mode
[  792.379747][ T2431] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  792.413908][ T2431] batman_adv: batadv0: Removing interface: batadv_slave_0
[  792.419620][ T2431] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  792.419648][ T2431] batman_adv: batadv0: Removing interface: batadv_slave_1
[  792.503460][ T2431] veth1_macvtap: left promiscuous mode
[  792.503564][ T2431] veth0_macvtap: left promiscuous mode
[  792.503807][ T2431] veth1_vlan: left promiscuous mode
[  792.504009][ T2431] veth0_vlan: left promiscuous mode
[  793.950811][T12076] input: syz0 as /devices/virtual/input/input38
[  794.937458][T12081] FAULT_INJECTION: forcing a failure.
[  794.937458][T12081] name failslab, interval 1, probability 0, space 0, times 0
[  794.951475][T12081] CPU: 0 UID: 0 PID: 12081 Comm: syz.1.1354 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  794.961913][T12081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  794.971986][T12081] Call Trace:
[  794.975275][T12081]  <TASK>
[  794.978218][T12081]  dump_stack_lvl+0x16c/0x1f0
[  794.982913][T12081]  should_fail_ex+0x497/0x5b0
[  794.987612][T12081]  ? fs_reclaim_acquire+0xae/0x160
[  794.992742][T12081]  should_failslab+0xc2/0x120
[  794.997441][T12081]  __kmalloc_noprof+0xcb/0x400
[  795.002224][T12081]  tomoyo_encode2+0x100/0x3e0
[  795.006923][T12081]  tomoyo_encode+0x29/0x50
[  795.011363][T12081]  tomoyo_realpath_from_path+0x19d/0x720
[  795.017022][T12081]  tomoyo_path_number_perm+0x245/0x590
[  795.022497][T12081]  ? tomoyo_path_number_perm+0x232/0x590
[  795.028149][T12081]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  795.034150][T12081]  ? vfs_write+0x454/0x1140
[  795.038668][T12081]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  795.044671][T12081]  ? __fget_files+0x256/0x400
[  795.049374][T12081]  security_file_ioctl+0x75/0xc0
[  795.054337][T12081]  __x64_sys_ioctl+0xbb/0x220
[  795.059043][T12081]  do_syscall_64+0xcd/0x250
[  795.063569][T12081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.069483][T12081] RIP: 0033:0x7f3ec9f75f19
[  795.073906][T12081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  795.093529][T12081] RSP: 002b:00007f3ecad65048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  795.101972][T12081] RAX: ffffffffffffffda RBX: 00007f3eca106110 RCX: 00007f3ec9f75f19
[  795.109962][T12081] RDX: 0000000020000400 RSI: 0000000000003ba0 RDI: 0000000000000003
[  795.117943][T12081] RBP: 00007f3ecad650a0 R08: 0000000000000000 R09: 0000000000000000
[  795.125932][T12081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  795.133915][T12081] R13: 000000000000006e R14: 00007f3eca106110 R15: 00007ffed6b931c8
[  795.141901][T12081]  </TASK>
[  795.151358][T12081] ERROR: Out of memory at tomoyo_realpath_from_path.
[  797.408870][ T2431] team0 (unregistering): Port device team_slave_1 removed
[  797.661008][ T2431] team0 (unregistering): Port device team_slave_0 removed
[  799.889533][T11904] team0: Port device team_slave_0 added
[  799.928487][T11904] team0: Port device team_slave_1 added
[  800.135337][T11904] batman_adv: batadv0: Adding interface: batadv_slave_0
[  800.177642][T11904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  800.216944][T11904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  800.234983][T11904] batman_adv: batadv0: Adding interface: batadv_slave_1
[  800.246814][T11904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  800.386290][T11904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  803.860304][T11904] hsr_slave_0: entered promiscuous mode
[  804.009182][T11904] hsr_slave_1: entered promiscuous mode
[  804.169246][T11904] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  804.232361][T11904] Cannot create hsr debugfs directory
[  807.557765][T11904] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  807.619374][T11904] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  807.670460][T11904] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  807.686687][T11904] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  809.235740][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  809.308971][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  809.825260][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  809.825327][   T29] audit: type=1326 audit(1721737353.165:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.0.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  810.969542][T11904] 8021q: adding VLAN 0 to HW filter on device bond0
[  810.978629][   T29] audit: type=1326 audit(1721737353.165:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.0.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  811.120139][   T29] audit: type=1326 audit(1721737353.285:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.0.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  811.130455][T11904] 8021q: adding VLAN 0 to HW filter on device team0
[  811.256252][   T29] audit: type=1326 audit(1721737353.285:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.0.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  811.290557][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  811.298064][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  811.324789][ T9095] Bluetooth: hci2: command 0x0406 tx timeout
[  811.547352][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[  811.554548][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  811.720472][T11904] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  811.736375][T11904] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  815.036240][T11904] 8021q: adding VLAN 0 to HW filter on device batadv0
[  815.554793][ T5147] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  815.775178][ T5147] usb 2-1: Using ep0 maxpacket: 32
[  816.476277][ T5147] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  816.535807][ T5147] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  816.575020][ T5111] Bluetooth: hci0: command 0x0406 tx timeout
[  816.591566][ T5147] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  816.638195][ T5147] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  816.652243][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  816.663726][ T5147] usb 2-1: Product: syz
[  816.675353][ T5147] usb 2-1: Manufacturer: syz
[  816.680057][ T5147] usb 2-1: SerialNumber: syz
[  816.912512][T11904] veth0_vlan: entered promiscuous mode
[  817.446127][T11904] veth1_vlan: entered promiscuous mode
[  817.515915][ T5147] cdc_ncm 2-1:1.0: skipping garbage
[  817.521160][ T5147] cdc_ncm 2-1:1.0: CDC Union missing and no IAD found
[  817.572028][ T5147] cdc_ncm 2-1:1.0: bind() failure
[  817.645360][ T5147] usb 2-1: USB disconnect, device number 3
[  817.692012][T11904] veth0_macvtap: entered promiscuous mode
[  817.739664][T11904] veth1_macvtap: entered promiscuous mode
[  817.857491][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.885882][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.926702][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.998366][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.063500][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  818.143964][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.190783][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  818.249521][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.312036][T11904] batman_adv: batadv0: Interface activated: batadv_slave_0
[  818.341837][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.354741][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.472424][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.505332][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.580393][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.602612][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.619529][T11904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.639463][T11904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.663954][T11904] batman_adv: batadv0: Interface activated: batadv_slave_1
[  818.712563][T11904] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  818.763974][T11904] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  818.799029][T11904] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  818.814014][T11904] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  826.297336][ T2422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  826.355596][ T2422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  826.486785][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  826.532763][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  826.567700][ T5111] Bluetooth: hci3: command 0x0406 tx timeout
[  827.273101][T11032] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  827.303160][T11032] hid-generic 0000:0000:0000.001C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  827.343677][T12373] xt_bpf: check failed: parse error
[  827.433454][   T29] audit: type=1326 audit(1721737370.775:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  827.561300][   T29] audit: type=1326 audit(1721737370.775:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.035692][   T29] audit: type=1326 audit(1721737370.775:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.115779][   T29] audit: type=1326 audit(1721737370.775:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.225282][   T29] audit: type=1326 audit(1721737370.785:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.415755][   T29] audit: type=1326 audit(1721737370.785:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.731658][   T29] audit: type=1326 audit(1721737370.785:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  828.806118][   T29] audit: type=1326 audit(1721737370.785:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  829.280001][   T29] audit: type=1326 audit(1721737370.785:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  829.867402][   T29] audit: type=1326 audit(1721737370.795:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12364 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  831.967049][ T5111] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  831.978014][ T5111] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  831.988119][ T5111] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  832.002304][ T5111] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  832.012730][ T5111] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  832.026512][ T5111] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  832.920374][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.149188][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.342500][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.608313][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  834.087801][ T5111] Bluetooth: hci4: command tx timeout
[  834.096267][T11032] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  834.132987][T12428] chnl_net:caif_netlink_parms(): no params data found
[  834.158724][T11032] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  834.288450][   T12] bridge_slave_1: left allmulticast mode
[  834.294116][   T12] bridge_slave_1: left promiscuous mode
[  834.452966][T12471] FAULT_INJECTION: forcing a failure.
[  834.452966][T12471] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  834.469028][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.474330][T12471] CPU: 1 UID: 0 PID: 12471 Comm: syz.4.1422 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  834.486473][T12471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  834.496538][T12471] Call Trace:
[  834.499817][T12471]  <TASK>
[  834.502735][T12471]  dump_stack_lvl+0x16c/0x1f0
[  834.507408][T12471]  should_fail_ex+0x497/0x5b0
[  834.512075][T12471]  _copy_to_user+0x30/0xc0
[  834.516490][T12471]  simple_read_from_buffer+0xd0/0x160
[  834.521867][T12471]  proc_fail_nth_read+0x1b0/0x290
[  834.526880][T12471]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  834.532416][T12471]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  834.537948][T12471]  vfs_read+0x1d4/0xbd0
[  834.542090][T12471]  ? __fdget_pos+0xeb/0x180
[  834.546587][T12471]  ? __pfx_vfs_read+0x10/0x10
[  834.551256][T12471]  ? __pfx___mutex_lock+0x10/0x10
[  834.556273][T12471]  ? __fget_files+0x256/0x400
[  834.560946][T12471]  ksys_read+0x12f/0x260
[  834.565178][T12471]  ? __pfx_ksys_read+0x10/0x10
[  834.569929][T12471]  do_syscall_64+0xcd/0x250
[  834.574421][T12471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.580307][T12471] RIP: 0033:0x7f9ad3f749fc
[  834.584713][T12471] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  834.604307][T12471] RSP: 002b:00007f9ad4d5a040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  834.612707][T12471] RAX: ffffffffffffffda RBX: 00007f9ad4106038 RCX: 00007f9ad3f749fc
[  834.620665][T12471] RDX: 000000000000000f RSI: 00007f9ad4d5a0b0 RDI: 0000000000000007
[  834.628622][T12471] RBP: 00007f9ad4d5a0a0 R08: 0000000000000000 R09: 0000000000000000
[  834.636578][T12471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  834.644535][T12471] R13: 000000000000006e R14: 00007f9ad4106038 R15: 00007ffc9f412ab8
[  834.652493][T12471]  </TASK>
[  834.719582][   T12] bridge_slave_0: left allmulticast mode
[  834.747866][   T12] bridge_slave_0: left promiscuous mode
[  834.759625][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.994386][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  834.994402][   T29] audit: type=1400 audit(1721737378.395:976): avc:  denied  { map } for  pid=12466 comm="syz.2.1421" path="/dev/nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  836.166528][ T5111] Bluetooth: hci4: command tx timeout
[  836.381785][T12467] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  836.793466][T12495] input: syz0 as /devices/virtual/input/input39
[  837.850805][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  837.885513][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  837.902280][   T12] bond0 (unregistering): Released all slaves
[  838.245169][ T5111] Bluetooth: hci4: command tx timeout
[  838.667516][T12428] bridge0: port 1(bridge_slave_0) entered blocking state
[  838.735119][T12428] bridge0: port 1(bridge_slave_0) entered disabled state
[  838.778660][T12428] bridge_slave_0: entered allmulticast mode
[  838.975949][T12428] bridge_slave_0: entered promiscuous mode
[  840.287233][T12519] tmpfs: Unknown parameter 'tmpfs'
[  840.325153][ T5111] Bluetooth: hci4: command tx timeout
[  840.425339][T12428] bridge0: port 2(bridge_slave_1) entered blocking state
[  840.478133][T12428] bridge0: port 2(bridge_slave_1) entered disabled state
[  840.544911][T12428] bridge_slave_1: entered allmulticast mode
[  840.552644][T12428] bridge_slave_1: entered promiscuous mode
[  840.684587][   T29] audit: type=1326 audit(1721737384.085:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12526 comm="syz.2.1435" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x0
[  840.812662][T11032] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  840.848564][T12530] FAULT_INJECTION: forcing a failure.
[  840.848564][T12530] name failslab, interval 1, probability 0, space 0, times 0
[  840.891942][T11032] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  840.938917][T12530] CPU: 1 UID: 0 PID: 12530 Comm: syz.2.1435 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  840.949355][T12530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  840.959400][T12530] Call Trace:
[  840.962667][T12530]  <TASK>
[  840.965588][T12530]  dump_stack_lvl+0x16c/0x1f0
[  840.970268][T12530]  should_fail_ex+0x497/0x5b0
[  840.974949][T12530]  ? fs_reclaim_acquire+0xae/0x160
[  840.980066][T12530]  should_failslab+0xc2/0x120
[  840.984737][T12530]  __kmalloc_noprof+0xcb/0x400
[  840.989493][T12530]  ? percpu_counter_add_batch+0x174/0x1e0
[  840.995213][T12530]  io_alloc_async_data+0x9d/0x150
[  841.000231][T12530]  io_prep_rw+0x30d/0xb70
[  841.004550][T12530]  io_prep_rwv+0xa8/0x350
[  841.008867][T12530]  ? __pfx_io_prep_rwv+0x10/0x10
[  841.013794][T12530]  ? __mutex_lock+0x1a6/0x9c0
[  841.018465][T12530]  io_submit_sqes+0x8aa/0x2500
[  841.023227][T12530]  __do_sys_io_uring_enter+0xbd8/0x1130
[  841.028765][T12530]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  841.034742][T12530]  ? ksys_write+0x1ab/0x260
[  841.039238][T12530]  ? __pfx_ksys_write+0x10/0x10
[  841.044079][T12530]  do_syscall_64+0xcd/0x250
[  841.048579][T12530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.054468][T12530] RIP: 0033:0x7f436db75f19
[  841.058872][T12530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  841.078466][T12530] RSP: 002b:00007f436e89c048 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  841.086867][T12530] RAX: ffffffffffffffda RBX: 00007f436dd06038 RCX: 00007f436db75f19
[  841.094828][T12530] RDX: 0000000000000000 RSI: 0000000000005113 RDI: 0000000000000004
[  841.102787][T12530] RBP: 00007f436e89c0a0 R08: 0000000000000000 R09: 0000000000000000
[  841.110747][T12530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  841.118722][T12530] R13: 000000000000006e R14: 00007f436dd06038 R15: 00007ffed2afeab8
[  841.126686][T12530]  </TASK>
[  841.143091][T12428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  841.412784][T12428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  841.968640][T12550] netlink: 4272 bytes leftover after parsing attributes in process `syz.4.1437'.
[  841.978724][T12550] netlink: 133 bytes leftover after parsing attributes in process `syz.4.1437'.
[  843.466916][   T12] hsr_slave_0: left promiscuous mode
[  843.516887][   T12] hsr_slave_1: left promiscuous mode
[  843.534125][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  843.564928][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  843.576487][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  843.759495][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  844.609636][   T12] veth1_macvtap: left promiscuous mode
[  844.624981][   T12] veth0_macvtap: left promiscuous mode
[  844.632721][   T12] veth1_vlan: left promiscuous mode
[  844.639930][   T12] veth0_vlan: left promiscuous mode
[  846.318691][   T12] team0 (unregistering): Port device team_slave_1 removed
[  846.480710][   T12] team0 (unregistering): Port device team_slave_0 removed
[  847.185349][T12593] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(14)
[  847.192069][T12593] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  847.204297][T12593] vhci_hcd vhci_hcd.0: Device attached
[  847.221917][T12593] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  847.268734][T12593] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(18)
[  847.275369][T12593] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  847.296492][T12593] vhci_hcd vhci_hcd.0: Device attached
[  847.362646][T12593] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  847.440113][ T5103] vhci_hcd: vhci_device speed not set
[  847.520284][ T5103] usb 17-1: new full-speed USB device number 10 using vhci_hcd
[  847.577920][T12557] netlink: 'syz.2.1439': attribute type 4 has an invalid length.
[  847.670769][T12600] vhci_hcd: connection closed
[  847.675568][ T2422] vhci_hcd: stop threads
[  847.684620][ T2422] vhci_hcd: release socket
[  847.699006][T12597] vhci_hcd: connection reset by peer
[  847.709732][ T2422] vhci_hcd: disconnect device
[  847.739598][ T2422] vhci_hcd: stop threads
[  847.744179][T12428] team0: Port device team_slave_0 added
[  847.768963][ T2422] vhci_hcd: release socket
[  847.797488][T12428] team0: Port device team_slave_1 added
[  847.803135][ T2422] vhci_hcd: disconnect device
[  847.902993][T12428] batman_adv: batadv0: Adding interface: batadv_slave_0
[  847.961359][T12428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  848.150074][T12428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  848.237877][T12428] batman_adv: batadv0: Adding interface: batadv_slave_1
[  848.264153][T12613] netlink: 4272 bytes leftover after parsing attributes in process `syz.3.1450'.
[  848.273752][T12613] netlink: 133 bytes leftover after parsing attributes in process `syz.3.1450'.
[  849.298104][T12428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  849.413305][T11032] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  849.422077][T12428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  849.452457][T11032] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  849.817866][    T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  849.821205][T12428] hsr_slave_0: entered promiscuous mode
[  849.892773][T12428] hsr_slave_1: entered promiscuous mode
[  849.923622][T12428] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  849.954946][T12428] Cannot create hsr debugfs directory
[  850.051578][    T9] usb 3-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  850.071748][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  850.110685][    T9] usb 3-1: Product: syz
[  850.129529][    T9] usb 3-1: Manufacturer: syz
[  850.154804][    T9] usb 3-1: SerialNumber: syz
[  850.200099][    T9] usb 3-1: config 0 descriptor??
[  850.220753][    T9] i2c-tiny-usb 3-1:0.0: version 6d.cc found at bus 003 address 011
[  850.510377][T12626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  850.544204][T12626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  850.603541][T12626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  850.631823][T12626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  850.888810][    T9]  (null): failure setting delay to 10us
[  850.894552][    T9] i2c-tiny-usb 3-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  850.960683][    T9] usb 3-1: USB disconnect, device number 11
[  851.235514][T12651] FAULT_INJECTION: forcing a failure.
[  851.235514][T12651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  851.293391][T12651] CPU: 1 UID: 0 PID: 12651 Comm: syz.0.1456 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  851.303869][T12651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  851.313945][T12651] Call Trace:
[  851.317225][T12651]  <TASK>
[  851.320153][T12651]  dump_stack_lvl+0x16c/0x1f0
[  851.324840][T12651]  should_fail_ex+0x497/0x5b0
[  851.329526][T12651]  _copy_to_user+0x30/0xc0
[  851.334034][T12651]  ucma_create_id+0x255/0x380
[  851.338721][T12651]  ? __pfx_ucma_create_id+0x10/0x10
[  851.343926][T12651]  ? __pfx_ucma_create_id+0x10/0x10
[  851.349132][T12651]  ucma_write+0x205/0x340
[  851.353469][T12651]  ? __pfx_ucma_write+0x10/0x10
[  851.358322][T12651]  ? security_file_permission+0x98/0xc0
[  851.363877][T12651]  ? __pfx_ucma_write+0x10/0x10
[  851.368735][T12651]  vfs_writev+0x6ec/0xde0
[  851.373076][T12651]  ? __pfx_vfs_writev+0x10/0x10
[  851.377936][T12651]  ? __fget_files+0x24c/0x400
[  851.382629][T12651]  ? do_writev+0x287/0x370
[  851.387054][T12651]  do_writev+0x287/0x370
[  851.391304][T12651]  ? __pfx_do_writev+0x10/0x10
[  851.396078][T12651]  do_syscall_64+0xcd/0x250
[  851.400587][T12651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  851.406484][T12651] RIP: 0033:0x7f38eeb75f19
[  851.410901][T12651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  851.430509][T12651] RSP: 002b:00007f38ef8b8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  851.438928][T12651] RAX: ffffffffffffffda RBX: 00007f38eed05f60 RCX: 00007f38eeb75f19
[  851.446899][T12651] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000004
[  851.454868][T12651] RBP: 00007f38ef8b80a0 R08: 0000000000000000 R09: 0000000000000000
[  851.462839][T12651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  851.470809][T12651] R13: 000000000000000b R14: 00007f38eed05f60 R15: 00007ffe936f18c8
[  851.478782][T12651]  </TASK>
[  852.014107][T12428] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  852.081666][T12662] xt_bpf: check failed: parse error
[  852.274942][   T29] audit: type=1326 audit(1721737395.515:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  852.738971][ T5103] vhci_hcd: vhci_device speed not set
[  852.811175][T12428] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  852.838549][   T29] audit: type=1326 audit(1721737395.515:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  852.896729][T12428] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  852.944495][T12428] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  852.961951][   T29] audit: type=1326 audit(1721737395.515:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  853.164323][T12676] input: syz0 as /devices/virtual/input/input40
[  853.999587][   T29] audit: type=1326 audit(1721737395.525:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  854.031456][   T29] audit: type=1326 audit(1721737395.525:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  854.272945][   T29] audit: type=1326 audit(1721737395.525:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  854.349498][T12682] netlink: 4272 bytes leftover after parsing attributes in process `syz.0.1461'.
[  854.358705][T12682] netlink: 133 bytes leftover after parsing attributes in process `syz.0.1461'.
[  854.447746][   T29] audit: type=1326 audit(1721737395.525:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  854.482526][   T29] audit: type=1326 audit(1721737395.525:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  854.845838][   T29] audit: type=1326 audit(1721737395.525:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  855.772859][   T29] audit: type=1326 audit(1721737395.535:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12659 comm="syz.2.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436db75f19 code=0x7ffc0000
[  855.809107][T12428] 8021q: adding VLAN 0 to HW filter on device bond0
[  855.881417][T12428] 8021q: adding VLAN 0 to HW filter on device team0
[  855.959523][T10104] bridge0: port 1(bridge_slave_0) entered blocking state
[  855.966646][T10104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  856.017384][ T5111] Bluetooth: Unexpected start frame (len 120)
[  856.059379][T10104] bridge0: port 2(bridge_slave_1) entered blocking state
[  856.066618][T10104] bridge0: port 2(bridge_slave_1) entered forwarding state
[  856.307666][T12428] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  856.373501][T12428] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  856.587788][T12696] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(13)
[  856.594420][T12696] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  856.659635][T12696] vhci_hcd vhci_hcd.0: Device attached
[  856.660278][T12697] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  856.757415][T12696] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  856.764042][T12696] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  856.857520][T12696] vhci_hcd vhci_hcd.0: Device attached
[  856.858351][T12697] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  856.874861][    T9] vhci_hcd: vhci_device speed not set
[  856.984831][    T9] usb 17-1: new full-speed USB device number 11 using vhci_hcd
[  857.117592][T12428] 8021q: adding VLAN 0 to HW filter on device batadv0
[  857.206838][T12709] vhci_hcd: connection closed
[  857.207184][   T12] vhci_hcd: stop threads
[  857.238699][T12704] vhci_hcd: connection reset by peer
[  857.249239][   T12] vhci_hcd: release socket
[  857.280263][   T12] vhci_hcd: disconnect device
[  857.309747][   T12] vhci_hcd: stop threads
[  857.336836][   T12] vhci_hcd: release socket
[  857.369178][T12428] veth0_vlan: entered promiscuous mode
[  857.375062][   T12] vhci_hcd: disconnect device
[  857.422968][T12428] veth1_vlan: entered promiscuous mode
[  857.434957][ T1148] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  857.634840][ T1148] usb 4-1: Using ep0 maxpacket: 16
[  857.637584][T12428] veth0_macvtap: entered promiscuous mode
[  857.650429][ T1148] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  857.693679][T12428] veth1_macvtap: entered promiscuous mode
[  857.710106][ T1148] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  857.769306][ T1148] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  857.817045][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  857.838432][ T1148] usb 4-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  857.880363][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  857.884713][ T1148] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  857.927598][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  857.958648][ T1148] usb 4-1: config 0 descriptor??
[  857.994714][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.025403][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  858.076757][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.148099][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  858.189018][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.249184][T12428] batman_adv: batadv0: Interface activated: batadv_slave_0
[  858.339866][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  858.351752][T12722] fuse: Unknown parameter '0x000000000000000300000000000000000000'
[  858.384975][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.421925][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  858.485851][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.520378][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  858.543850][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.558038][T12428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  858.598147][T12428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  858.861003][T12428] batman_adv: batadv0: Interface activated: batadv_slave_1
[  859.190950][T12428] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  859.202372][T12428] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  859.212566][T12428] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  859.221833][T12428] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  859.315747][   T25] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  859.697772][ T2468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  859.772576][ T2468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  859.844274][   T25] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  859.862985][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  859.876059][   T25] usb 5-1: Product: syz
[  859.880236][   T25] usb 5-1: Manufacturer: syz
[  859.884897][   T25] usb 5-1: SerialNumber: syz
[  859.892072][   T25] usb 5-1: config 0 descriptor??
[  859.972490][T12749] xt_bpf: check failed: parse error
[  860.165774][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  860.172036][   T29] audit: type=1326 audit(1721737403.415:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  860.575295][ T1148] usbhid 4-1:0.0: can't add hid device: -71
[  860.577433][   T25] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 011
[  860.581295][ T1148] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  860.667353][   T29] audit: type=1326 audit(1721737403.425:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  860.753211][ T1148] usb 4-1: USB disconnect, device number 3
[  860.782769][   T29] audit: type=1326 audit(1721737403.425:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  860.823800][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  860.986429][T12759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  860.989043][   T29] audit: type=1326 audit(1721737403.435:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  861.023822][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  861.038042][   T29] audit: type=1326 audit(1721737403.435:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  861.155297][T12763] input: syz0 as /devices/virtual/input/input41
[  861.785690][T12759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  862.105043][    T9] vhci_hcd: vhci_device speed not set
[  862.772346][   T29] audit: type=1326 audit(1721737403.435:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  862.772365][   T25]  (null): failure setting delay to 10us
[  867.062848][   T29] audit: type=1326 audit(1721737403.445:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  867.119828][   T25] i2c-tiny-usb 5-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  867.166431][   T29] audit: type=1326 audit(1721737403.445:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  868.418520][   T29] audit: type=1326 audit(1721737403.445:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  868.744966][   T25] usb 5-1: USB disconnect, device number 11
[  869.199555][   T29] audit: type=1326 audit(1721737403.455:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  869.553311][   T29] audit: type=1326 audit(1721737403.455:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  869.679356][   T29] audit: type=1326 audit(1721737403.465:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  869.777024][   T29] audit: type=1326 audit(1721737403.475:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  869.893761][   T29] audit: type=1326 audit(1721737403.475:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  869.994616][   T29] audit: type=1326 audit(1721737403.485:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  870.108640][   T29] audit: type=1326 audit(1721737403.485:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12742 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38eeb75f19 code=0x7ffc0000
[  870.299450][T12800] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[  870.306076][T12800] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  870.347927][ T9095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  870.368857][T12800] vhci_hcd vhci_hcd.0: Device attached
[  870.375057][ T9095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  870.395084][ T9095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  870.423460][ T9095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  870.433568][ T9095] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  870.441151][ T9095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  870.616517][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  870.624493][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  870.711962][T12810] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  870.810477][T12813] xt_bpf: check failed: parse error
[  870.929352][ T5103] vhci_hcd: vhci_device speed not set
[  871.045014][ T5103] usb 11-1: new full-speed USB device number 7 using vhci_hcd
[  871.508525][ T9095] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  871.624106][T12798] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(17)
[  871.630755][T12798] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  871.656555][ T2422] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  871.667360][T12798] vhci_hcd vhci_hcd.0: Device attached
[  871.668048][T12800] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  871.770382][T12796] fuse: Unknown parameter '0x000000000000000400000000000000000000'
[  871.969307][T12829] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(13)
[  871.975924][T12829] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  872.027140][T12829] vhci_hcd vhci_hcd.0: Device attached
[  872.088761][ T2422] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  872.121446][T12817] vhci_hcd: connection closed
[  872.121697][   T62] vhci_hcd: stop threads
[  872.135850][T12803] vhci_hcd: connection reset by peer
[  872.171339][   T62] vhci_hcd: release socket
[  872.182819][T12834] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  872.208732][   T62] vhci_hcd: disconnect device
[  872.244276][ T1148] vhci_hcd: vhci_device speed not set
[  872.249856][   T62] vhci_hcd: stop threads
[  872.266274][   T62] vhci_hcd: release socket
[  872.297056][   T62] vhci_hcd: disconnect device
[  872.334847][ T1148] usb 9-1: new full-speed USB device number 3 using vhci_hcd
[  872.377417][T12829] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  872.421289][T12821] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(17)
[  872.427900][T12821] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  872.487003][ T9095] Bluetooth: hci0: command tx timeout
[  872.510071][ T2422] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  872.556133][T12821] vhci_hcd vhci_hcd.0: Device attached
[  872.836718][T12847] input: syz0 as /devices/virtual/input/input42
[  873.586441][T12837] vhci_hcd: connection closed
[  873.586645][   T62] vhci_hcd: stop threads
[  873.599816][T12830] vhci_hcd: connection reset by peer
[  873.625089][   T62] vhci_hcd: release socket
[  873.653046][   T62] vhci_hcd: disconnect device
[  873.704801][   T62] vhci_hcd: stop threads
[  873.711550][   T62] vhci_hcd: release socket
[  873.729884][ T2422] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  873.773557][   T62] vhci_hcd: disconnect device
[  874.318735][ T2422] bridge_slave_1: left allmulticast mode
[  874.335059][ T2422] bridge_slave_1: left promiscuous mode
[  874.382425][ T2422] bridge0: port 2(bridge_slave_1) entered disabled state
[  874.500457][ T2422] bridge_slave_0: left allmulticast mode
[  874.537892][ T2422] bridge_slave_0: left promiscuous mode
[  874.570318][ T9095] Bluetooth: hci0: command tx timeout
[  874.584984][ T2422] bridge0: port 1(bridge_slave_0) entered disabled state
[  875.335603][   T25] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  876.263382][   T25] usb 2-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  876.301201][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  876.354067][   T25] usb 2-1: Product: syz
[  876.373211][   T25] usb 2-1: Manufacturer: syz
[  876.386182][   T25] usb 2-1: SerialNumber: syz
[  876.416175][ T5103] vhci_hcd: vhci_device speed not set
[  876.439451][   T25] usb 2-1: config 0 descriptor??
[  876.449558][   T25] i2c-tiny-usb 2-1:0.0: version 6d.cc found at bus 002 address 004
[  876.659629][ T9095] Bluetooth: hci0: command tx timeout
[  876.801599][T12889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  876.845619][T12889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  877.023871][T12893] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  877.100017][T12869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  877.145571][T12869] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  877.700535][T12902] xt_bpf: check failed: parse error
[  877.717399][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  877.717415][   T29] audit: type=1326 audit(1721737421.115:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  877.824785][ T1148] vhci_hcd: vhci_device speed not set
[  878.010422][   T29] audit: type=1326 audit(1721737421.115:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.029036][T12857] syz.2.1485 (12857): drop_caches: 2
[  878.257880][   T29] audit: type=1326 audit(1721737421.115:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.525592][   T29] audit: type=1326 audit(1721737421.115:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.585608][   T25]  (null): failure setting delay to 10us
[  878.643251][ T2422] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  878.652867][   T25] i2c-tiny-usb 2-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  878.656736][   T29] audit: type=1326 audit(1721737421.115:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.686674][   T29] audit: type=1326 audit(1721737421.115:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.742282][ T9095] Bluetooth: hci0: command tx timeout
[  878.743083][   T25] usb 2-1: USB disconnect, device number 4
[  878.795246][   T29] audit: type=1326 audit(1721737421.115:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  878.893018][ T2422] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  878.943707][T12865] syz.2.1485 (12865): drop_caches: 2
[  878.986178][   T29] audit: type=1326 audit(1721737421.115:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  879.013416][ T2422] bond0 (unregistering): Released all slaves
[  879.062180][   T29] audit: type=1326 audit(1721737421.115:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  879.120522][T12802] chnl_net:caif_netlink_parms(): no params data found
[  879.140397][   T29] audit: type=1326 audit(1721737421.115:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12897 comm="syz.3.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34a4d75f19 code=0x7ffc0000
[  879.405145][T12924] fuse: Unknown parameter 'ÿÿÿÿÿÿÿÿ'
[  881.268382][T12913] syz.2.1493 (12913): drop_caches: 2
[  881.271588][T12916] syz.2.1493 (12916): drop_caches: 2
[  881.388106][T12947] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  932.009322][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  932.015833][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  954.574745][ T5111] Bluetooth: hci4: command 0x0406 tx timeout
[  993.449723][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  993.456233][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  995.525050][T12965] Bluetooth: hci0: command 0x0406 tx timeout
[ 1034.405787][   T30] INFO: task kworker/u8:6:2422 blocked for more than 143 seconds.
[ 1034.413639][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1034.423266][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1034.432315][   T30] task:kworker/u8:6    state:D stack:24008 pid:2422  tgid:2422  ppid:2      flags:0x00004000
[ 1034.442854][   T30] Workqueue: netns cleanup_net
[ 1034.447952][   T30] Call Trace:
[ 1034.451246][   T30]  <TASK>
[ 1034.454192][   T30]  __schedule+0xe37/0x5490
[ 1034.459298][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1034.466718][   T30]  ? hlock_class+0x4e/0x130
[ 1034.471249][   T30]  ? mark_lock+0xb5/0xc60
[ 1034.476092][   T30]  ? __pfx___schedule+0x10/0x10
[ 1034.480970][   T30]  ? schedule+0x298/0x350
[ 1034.487246][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1034.492300][   T30]  ? rwsem_down_write_slowpath+0x48a/0x12a0
[ 1034.500623][   T30]  schedule+0xe7/0x350
[ 1034.511991][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1034.517815][   T30]  rwsem_down_write_slowpath+0x539/0x12a0
[ 1034.523566][   T30]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[ 1034.530366][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1034.542545][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1034.548410][   T30]  down_write+0x1d8/0x200
[ 1034.552767][   T30]  ? __pfx_down_write+0x10/0x10
[ 1034.558268][   T30]  kernfs_remove_by_name_ns+0x87/0x130
[ 1034.563758][   T30]  sysfs_unmerge_group+0xe7/0x170
[ 1034.577854][   T30]  dpm_sysfs_remove+0x68/0xb0
[ 1034.582568][   T30]  device_del+0x1a1/0x9f0
[ 1034.591683][   T30]  ? __pfx_device_del+0x10/0x10
[ 1034.598146][   T30]  ? rtnl_is_locked+0x15/0x20
[ 1034.602853][   T30]  ? cfg80211_rdev_by_wiphy_idx+0xe1/0x1b0
[ 1034.617368][   T30]  ? wiphy_idx_to_wiphy+0x46/0xa0
[ 1034.622429][   T30]  wiphy_unregister+0x2f6/0xc10
[ 1034.627481][   T30]  ? __pfx_wiphy_unregister+0x10/0x10
[ 1034.632887][   T30]  ? skb_queue_purge_reason+0x2c3/0x410
[ 1034.645749][   T30]  ieee80211_unregister_hw+0x248/0x3a0
[ 1034.651236][   T30]  hwsim_exit_net+0x3ad/0x7d0
[ 1034.661861][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1034.670161][   T30]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[ 1034.675808][   T30]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[ 1034.681556][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1034.688178][   T30]  ops_exit_list+0xb0/0x180
[ 1034.692710][   T30]  cleanup_net+0x5b7/0xbf0
[ 1034.697227][   T30]  ? __pfx_cleanup_net+0x10/0x10
[ 1034.702187][   T30]  process_one_work+0x9c5/0x1b40
[ 1034.708764][   T30]  ? __pfx_wg_packet_handshake_send_worker+0x10/0x10
[ 1034.716846][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1034.722246][   T30]  ? assign_work+0x1a0/0x250
[ 1034.726943][   T30]  worker_thread+0x6c8/0xf20
[ 1034.731559][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1034.737051][   T30]  kthread+0x2c1/0x3a0
[ 1034.741140][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1034.747855][   T30]  ? __pfx_kthread+0x10/0x10
[ 1034.752472][   T30]  ret_from_fork+0x45/0x80
[ 1034.757583][   T30]  ? __pfx_kthread+0x10/0x10
[ 1034.762193][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1034.774088][   T30]  </TASK>
[ 1034.777445][   T30] INFO: task kworker/u8:10:2489 blocked for more than 143 seconds.
[ 1034.786371][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1034.793665][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1034.802452][   T30] task:kworker/u8:10   state:D stack:23456 pid:2489  tgid:2489  ppid:2      flags:0x00004000
[ 1034.814297][   T30] Workqueue: cfg80211 cfg80211_dfs_channels_update_work
[ 1034.823045][   T30] Call Trace:
[ 1034.827836][   T30]  <TASK>
[ 1034.830781][   T30]  __schedule+0xe37/0x5490
[ 1034.835695][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1034.840916][   T30]  ? mark_lock+0xb5/0xc60
[ 1034.845821][   T30]  ? __pfx___schedule+0x10/0x10
[ 1034.850696][   T30]  ? schedule+0x298/0x350
[ 1034.855546][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1034.860595][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1034.866059][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1034.871546][   T30]  schedule+0xe7/0x350
[ 1034.876907][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1034.882417][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1034.888002][   T30]  ? cfg80211_dfs_channels_update_work+0xd0/0x640
[ 1034.894450][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1034.900527][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1034.906076][   T30]  ? cfg80211_dfs_channels_update_work+0xd0/0x640
[ 1034.912520][   T30]  cfg80211_dfs_channels_update_work+0xd0/0x640
[ 1034.920452][   T30]  ? __pfx_cfg80211_dfs_channels_update_work+0x10/0x10
[ 1034.929085][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1034.934138][   T30]  process_one_work+0x9c5/0x1b40
[ 1034.940644][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1034.946126][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1034.951549][   T30]  ? assign_work+0x1a0/0x250
[ 1034.961242][   T30]  worker_thread+0x6c8/0xf20
[ 1034.966248][   T30]  ? __kthread_parkme+0x148/0x220
[ 1034.971289][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1034.990528][   T30]  kthread+0x2c1/0x3a0
[ 1034.994626][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1035.000334][   T30]  ? __pfx_kthread+0x10/0x10
[ 1035.012345][   T30]  ret_from_fork+0x45/0x80
[ 1035.017149][   T30]  ? __pfx_kthread+0x10/0x10
[ 1035.021756][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1035.028850][   T30]  </TASK>
[ 1035.031914][   T30] INFO: task udevd:4543 blocked for more than 143 seconds.
[ 1035.061910][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1035.070855][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1035.080784][   T30] task:udevd           state:D stack:24416 pid:4543  tgid:4543  ppid:1      flags:0x00004002
[ 1035.091370][   T30] Call Trace:
[ 1035.094979][   T30]  <TASK>
[ 1035.097931][   T30]  __schedule+0xe37/0x5490
[ 1035.102369][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1035.108272][   T30]  ? __pfx___schedule+0x10/0x10
[ 1035.113150][   T30]  ? schedule+0x298/0x350
[ 1035.117997][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1035.123046][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1035.129741][   T30]  schedule+0xe7/0x350
[ 1035.133841][   T30]  __wait_on_freeing_inode+0x13b/0x320
[ 1035.141030][   T30]  ? __pfx___wait_on_freeing_inode+0x10/0x10
[ 1035.147346][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[ 1035.152832][   T30]  ? __pfx_rwsem_read_trylock+0x10/0x10
[ 1035.161489][   T30]  find_inode_fast+0x262/0x600
[ 1035.166565][   T30]  iget_locked+0x98/0x6c0
[ 1035.170919][   T30]  kernfs_get_inode+0x48/0x460
[ 1035.176210][   T30]  kernfs_iop_lookup+0x1ec/0x330
[ 1035.181995][   T30]  __lookup_slow+0x24f/0x460
[ 1035.187085][   T30]  ? __pfx___lookup_slow+0x10/0x10
[ 1035.192231][   T30]  ? __startup_64+0x120/0x2a0
[ 1035.197426][   T30]  ? __startup_64+0x120/0x2a0
[ 1035.202129][   T30]  ? lookup_fast+0x155/0x540
[ 1035.207179][   T30]  walk_component+0x350/0x5b0
[ 1035.211888][   T30]  path_lookupat+0x17f/0x770
[ 1035.217008][   T30]  filename_lookup+0x1e5/0x5b0
[ 1035.221796][   T30]  ? __virt_addr_valid+0x2b4/0x590
[ 1035.227376][   T30]  ? __pfx_filename_lookup+0x10/0x10
[ 1035.232688][   T30]  ? getname_flags.part.0+0x1c5/0x550
[ 1035.238650][   T30]  do_readlinkat+0xcf/0x390
[ 1035.243189][   T30]  ? __pfx_do_readlinkat+0x10/0x10
[ 1035.250084][   T30]  __x64_sys_readlink+0x78/0xc0
[ 1035.255474][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1035.260700][   T30]  do_syscall_64+0xcd/0x250
[ 1035.269080][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1035.275327][   T30] RIP: 0033:0x7fd80d5a0d47
[ 1035.279757][   T30] RSP: 002b:00007ffd521bd638 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[ 1035.289949][   T30] RAX: ffffffffffffffda RBX: 00007ffd521bd648 RCX: 00007fd80d5a0d47
[ 1035.298343][   T30] RDX: 0000000000000400 RSI: 00007ffd521bd648 RDI: 00007ffd521bdb28
[ 1035.306641][   T30] RBP: 0000000000000400 R08: 0000558cee5f3974 R09: 0000000000000000
[ 1035.314630][   T30] R10: 0000000000000812 R11: 0000000000000246 R12: 00007ffd521bdb28
[ 1035.323140][   T30] R13: 00007ffd521bda98 R14: 0000558cee5d82c0 R15: 0000000000000000
[ 1035.332226][   T30]  </TASK>
[ 1035.335646][   T30] INFO: task dhcpcd:4756 blocked for more than 144 seconds.
[ 1035.342940][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1035.350736][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1035.360905][   T30] task:dhcpcd          state:D stack:24512 pid:4756  tgid:4756  ppid:1      flags:0x00000002
[ 1035.372023][   T30] Call Trace:
[ 1035.378282][   T30]  <TASK>
[ 1035.381235][   T30]  __schedule+0xe37/0x5490
[ 1035.386858][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1035.392093][   T30]  ? __pfx___schedule+0x10/0x10
[ 1035.397506][   T30]  ? schedule+0x298/0x350
[ 1035.401864][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1035.410882][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1035.415694][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1035.421182][   T30]  schedule+0xe7/0x350
[ 1035.432716][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1035.438578][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1035.443111][   T30]  ? vlan_ioctl_handler+0xcf/0xa80
[ 1035.455133][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1035.460189][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1035.475125][   T30]  ? __might_fault+0xe3/0x190
[ 1035.479827][   T30]  ? __pfx_vlan_ioctl_handler+0x10/0x10
[ 1035.493962][   T30]  ? vlan_ioctl_handler+0xcf/0xa80
[ 1035.499464][   T30]  vlan_ioctl_handler+0xcf/0xa80
[ 1035.504432][   T30]  ? __pfx_vlan_ioctl_handler+0x10/0x10
[ 1035.510548][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1035.515953][   T30]  ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470
[ 1035.522482][   T30]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[ 1035.529453][   T30]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1035.536664][   T30]  ? __pfx_vlan_ioctl_handler+0x10/0x10
[ 1035.542266][   T30]  sock_ioctl+0x4c4/0x6c0
[ 1035.552908][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1035.558132][   T30]  ? selinux_file_ioctl+0x180/0x270
[ 1035.563360][   T30]  ? selinux_file_ioctl+0xb4/0x270
[ 1035.575943][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1035.580826][   T30]  __x64_sys_ioctl+0x193/0x220
[ 1035.593500][   T30]  do_syscall_64+0xcd/0x250
[ 1035.600819][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1035.612684][   T30] RIP: 0033:0x7f86f46cdd49
[ 1035.617261][   T30] RSP: 002b:00007ffd2c2377f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1035.632857][   T30] RAX: ffffffffffffffda RBX: 0000555c1dfc7d60 RCX: 00007f86f46cdd49
[ 1035.640966][   T30] RDX: 00007ffd2c237800 RSI: 0000000000008982 RDI: 0000000000000011
[ 1035.649218][   T30] RBP: 0000000000000002 R08: 0000000000000008 R09: 0000000000000000
[ 1035.664114][   T30] R10: 00007ffd2c247e80 R11: 0000000000000246 R12: 00007ffd2c237800
[ 1035.672155][   T30] R13: 00007ffd2c2378c0 R14: 0000555c1dfc7d60 R15: 0000555c1e1c77a0
[ 1035.684748][   T30]  </TASK>
[ 1035.689106][   T30] INFO: task kworker/0:4:5148 blocked for more than 144 seconds.
[ 1035.704554][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1035.714981][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1035.723669][   T30] task:kworker/0:4     state:D stack:24368 pid:5148  tgid:5148  ppid:2      flags:0x00004000
[ 1035.742964][   T30] Workqueue: events linkwatch_event
[ 1035.748494][   T30] Call Trace:
[ 1035.751783][   T30]  <TASK>
[ 1035.762311][   T30]  __schedule+0xe37/0x5490
[ 1035.767100][   T30]  ? __pfx_mark_lock+0x10/0x10
[ 1035.771891][   T30]  ? do_raw_spin_unlock+0x172/0x230
[ 1035.777798][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1035.783631][   T30]  ? __pfx___schedule+0x10/0x10
[ 1035.799346][   T30]  ? schedule+0x298/0x350
[ 1035.803705][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1035.813981][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1035.821176][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1035.833641][   T30]  schedule+0xe7/0x350
[ 1035.838042][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1035.843524][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1035.850003][   T30]  ? linkwatch_event+0x51/0xc0
[ 1035.857072][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1035.862127][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1035.868435][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1035.873490][   T30]  ? linkwatch_event+0x51/0xc0
[ 1035.878808][   T30]  ? rtnl_lock+0x9/0x20
[ 1035.882991][   T30]  linkwatch_event+0x51/0xc0
[ 1035.888823][   T30]  ? __pfx_linkwatch_event+0x10/0x10
[ 1035.894134][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1035.900619][   T30]  process_one_work+0x9c5/0x1b40
[ 1035.907136][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1035.912186][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1035.918065][   T30]  ? assign_work+0x1a0/0x250
[ 1035.922682][   T30]  worker_thread+0x6c8/0xf20
[ 1035.929224][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1035.934375][   T30]  kthread+0x2c1/0x3a0
[ 1035.938936][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1035.944162][   T30]  ? __pfx_kthread+0x10/0x10
[ 1035.949258][   T30]  ret_from_fork+0x45/0x80
[ 1035.953794][   T30]  ? __pfx_kthread+0x10/0x10
[ 1035.960550][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1035.965721][   T30]  </TASK>
[ 1035.968813][   T30] INFO: task syz-executor:8075 blocked for more than 144 seconds.
[ 1035.977188][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1035.990641][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1036.000440][   T30] task:syz-executor    state:D stack:23648 pid:8075  tgid:8075  ppid:1      flags:0x00000004
[ 1036.019941][   T30] Call Trace:
[ 1036.023242][   T30]  <TASK>
[ 1036.030306][   T30]  __schedule+0xe37/0x5490
[ 1036.036647][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1036.041875][   T30]  ? hlock_class+0x4e/0x130
[ 1036.053767][   T30]  ? mark_lock+0xb5/0xc60
[ 1036.058440][   T30]  ? __pfx___schedule+0x10/0x10
[ 1036.063312][   T30]  ? schedule+0x298/0x350
[ 1036.069513][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1036.074565][   T30]  ? rwsem_down_read_slowpath+0x2c4/0xb20
[ 1036.100877][   T30]  schedule+0xe7/0x350
[ 1036.110212][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1036.119560][   T30]  rwsem_down_read_slowpath+0x61e/0xb20
[ 1036.126783][   T30]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 1036.132882][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1036.147367][   T30]  ? rwsem_read_trylock+0x6d/0x250
[ 1036.152598][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1036.164365][   T30]  down_read+0x124/0x330
[ 1036.169335][   T30]  ? __pfx_down_read+0x10/0x10
[ 1036.174133][   T30]  kernfs_dop_revalidate+0xf0/0x5a0
[ 1036.181231][   T30]  lookup_fast+0x239/0x540
[ 1036.186003][   T30]  walk_component+0x5b/0x5b0
[ 1036.190632][   T30]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1036.198465][   T30]  path_openat+0x238/0x2d20
[ 1036.202992][   T30]  ? __lock_acquire+0x1620/0x3cb0
[ 1036.209716][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1036.215043][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1036.220268][   T30]  ? find_held_lock+0x2d/0x110
[ 1036.225537][   T30]  do_filp_open+0x1dc/0x430
[ 1036.230077][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1036.241466][   T30]  ? find_held_lock+0x2d/0x110
[ 1036.249505][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1036.254384][   T30]  ? alloc_fd+0x2d7/0x6c0
[ 1036.271194][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1036.275986][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1036.281483][   T30]  ? __pfx_get_timespec64+0x10/0x10
[ 1036.288412][   T30]  __x64_sys_openat+0x175/0x210
[ 1036.293297][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1036.304713][   T30]  do_syscall_64+0xcd/0x250
[ 1036.311278][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1036.317553][   T30] RIP: 0033:0x7f34a4d75811
[ 1036.321991][   T30] RSP: 002b:00007ffd3b484780 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1036.330694][   T30] RAX: ffffffffffffffda RBX: 000000000000032b RCX: 00007f34a4d75811
[ 1036.338803][   T30] RDX: 0000000000090800 RSI: 00007f34a4de3a0a RDI: 00000000ffffff9c
[ 1036.348181][   T30] RBP: 00007ffd3b48483c R08: 0000000000000000 R09: 00007f34a5ae8080
[ 1036.356257][   T30] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffd3b4848b0
[ 1036.364248][   T30] R13: 0000000000000000 R14: 00000000000d6e1f R15: 00000000000d6ab7
[ 1036.373933][   T30]  </TASK>
[ 1036.377061][   T30] INFO: task kworker/1:1:10104 blocked for more than 145 seconds.
[ 1036.384974][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1036.392261][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1036.402326][   T30] task:kworker/1:1     state:D stack:26016 pid:10104 tgid:10104 ppid:2      flags:0x00004000
[ 1036.413765][   T30] Workqueue: events uhid_device_add_worker
[ 1036.419673][   T30] Call Trace:
[ 1036.422959][   T30]  <TASK>
[ 1036.426166][   T30]  __schedule+0xe37/0x5490
[ 1036.430607][   T30]  ? __pfx_mark_lock+0x10/0x10
[ 1036.435882][   T30]  ? __pfx___schedule+0x10/0x10
[ 1036.440758][   T30]  ? schedule+0x298/0x350
[ 1036.445575][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1036.450628][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1036.458178][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1036.463406][   T30]  schedule+0xe7/0x350
[ 1036.468032][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1036.473520][   T30]  rwsem_down_write_slowpath+0x539/0x12a0
[ 1036.481139][   T30]  ? __kernfs_new_node+0x2e6/0x890
[ 1036.490027][   T30]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[ 1036.498811][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1036.503864][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1036.511644][   T30]  down_write+0x1d8/0x200
[ 1036.516393][   T30]  ? __pfx_down_write+0x10/0x10
[ 1036.521282][   T30]  ? __pfx_stack_trace_save+0x10/0x10
[ 1036.527177][   T30]  ? stack_depot_save_flags+0x28/0x8f0
[ 1036.532758][   T30]  kernfs_add_one+0xb1/0x520
[ 1036.538006][   T30]  kernfs_create_dir_ns+0xf4/0x150
[ 1036.543154][   T30]  sysfs_create_dir_ns+0x13b/0x2b0
[ 1036.548807][   T30]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1036.554464][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1036.560340][   T30]  ? do_raw_spin_unlock+0x172/0x230
[ 1036.567028][   T30]  kobject_add_internal+0x2c8/0x990
[ 1036.572257][   T30]  kobject_add+0x16f/0x240
[ 1036.577180][   T30]  ? __pfx_kobject_add+0x10/0x10
[ 1036.582144][   T30]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1036.588732][   T30]  ? class_to_subsys+0x131/0x160
[ 1036.593703][   T30]  ? device_add+0x250/0x1a70
[ 1036.600113][   T30]  device_add+0x289/0x1a70
[ 1036.604568][   T30]  ? __pfx_device_add+0x10/0x10
[ 1036.609930][   T30]  ? __debugfs_create_file+0x413/0x660
[ 1036.618755][   T30]  hid_add_device+0x37f/0xa70
[ 1036.623471][   T30]  ? __pfx_hid_add_device+0x10/0x10
[ 1036.635875][   T30]  uhid_device_add_worker+0x3e/0x110
[ 1036.641195][   T30]  process_one_work+0x9c5/0x1b40
[ 1036.652969][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1036.659412][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1036.670934][   T30]  ? assign_work+0x1a0/0x250
[ 1036.677079][   T30]  worker_thread+0x6c8/0xf20
[ 1036.681699][   T30]  ? __kthread_parkme+0x148/0x220
[ 1036.693930][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1036.699153][   T30]  kthread+0x2c1/0x3a0
[ 1036.703407][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1036.710601][   T30]  ? __pfx_kthread+0x10/0x10
[ 1036.720346][   T30]  ret_from_fork+0x45/0x80
[ 1036.730551][   T30]  ? __pfx_kthread+0x10/0x10
[ 1036.735437][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1036.740237][   T30]  </TASK>
[ 1036.743278][   T30] INFO: task syz-executor:10971 blocked for more than 145 seconds.
[ 1036.751595][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1036.759185][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1036.767937][   T30] task:syz-executor    state:D stack:23472 pid:10971 tgid:10971 ppid:1      flags:0x00000004
[ 1036.778364][   T30] Call Trace:
[ 1036.781650][   T30]  <TASK>
[ 1036.784589][   T30]  __schedule+0xe37/0x5490
[ 1036.790630][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1036.795924][   T30]  ? hlock_class+0x4e/0x130
[ 1036.800680][   T30]  ? mark_lock+0xb5/0xc60
[ 1036.805254][   T30]  ? __pfx___schedule+0x10/0x10
[ 1036.810154][   T30]  ? schedule+0x298/0x350
[ 1036.814505][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1036.822341][   T30]  ? rwsem_down_read_slowpath+0x2c4/0xb20
[ 1036.828396][   T30]  schedule+0xe7/0x350
[ 1036.832489][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1036.839584][   T30]  rwsem_down_read_slowpath+0x61e/0xb20
[ 1036.845511][   T30]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 1036.851613][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1036.857623][   T30]  ? rwsem_read_trylock+0x6d/0x250
[ 1036.862765][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1036.874272][   T30]  down_read+0x124/0x330
[ 1036.880035][   T30]  ? __pfx_down_read+0x10/0x10
[ 1036.891093][   T30]  kernfs_dop_revalidate+0xf0/0x5a0
[ 1036.897895][   T30]  lookup_fast+0x239/0x540
[ 1036.902348][   T30]  walk_component+0x5b/0x5b0
[ 1036.914350][   T30]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1036.922917][   T30]  path_openat+0x238/0x2d20
[ 1036.929548][   T30]  ? __lock_acquire+0x1620/0x3cb0
[ 1036.934605][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1036.940811][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1036.946354][   T30]  ? find_held_lock+0x2d/0x110
[ 1036.951147][   T30]  do_filp_open+0x1dc/0x430
[ 1036.957199][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1036.962246][   T30]  ? find_held_lock+0x2d/0x110
[ 1036.967527][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1036.972403][   T30]  ? alloc_fd+0x2d7/0x6c0
[ 1036.977249][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1036.982103][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1036.987834][   T30]  ? __pfx_get_timespec64+0x10/0x10
[ 1036.993060][   T30]  __x64_sys_openat+0x175/0x210
[ 1036.998418][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1037.003820][   T30]  do_syscall_64+0xcd/0x250
[ 1037.010120][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1037.017412][   T30] RIP: 0033:0x7f436db75811
[ 1037.021844][   T30] RSP: 002b:00007ffed2afed50 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1037.031496][   T30] RAX: ffffffffffffffda RBX: 00000000000000fb RCX: 00007f436db75811
[ 1037.041316][   T30] RDX: 0000000000090800 RSI: 00007f436dbe3a0a RDI: 00000000ffffff9c
[ 1037.049598][   T30] RBP: 00007ffed2afee0c R08: 0000000000000000 R09: 00007f436e8be080
[ 1037.057903][   T30] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffed2afee80
[ 1037.067555][   T30] R13: 0000000000000000 R14: 00000000000d766e R15: 00000000000d731a
[ 1037.075874][   T30]  </TASK>
[ 1037.078930][   T30] INFO: task syz-executor:11130 blocked for more than 146 seconds.
[ 1037.092123][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1037.099748][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1037.108509][   T30] task:syz-executor    state:D stack:23792 pid:11130 tgid:11130 ppid:1      flags:0x00000004
[ 1037.120473][   T30] Call Trace:
[ 1037.123782][   T30]  <TASK>
[ 1037.138568][   T30]  __schedule+0xe37/0x5490
[ 1037.143019][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.150584][   T30]  ? hlock_class+0x4e/0x130
[ 1037.156290][   T30]  ? mark_lock+0xb5/0xc60
[ 1037.160657][   T30]  ? __pfx___schedule+0x10/0x10
[ 1037.165964][   T30]  ? schedule+0x298/0x350
[ 1037.170318][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1037.177038][   T30]  ? rwsem_down_read_slowpath+0x2c4/0xb20
[ 1037.182795][   T30]  schedule+0xe7/0x350
[ 1037.187327][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1037.192813][   T30]  rwsem_down_read_slowpath+0x61e/0xb20
[ 1037.198858][   T30]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 1037.205656][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1037.210710][   T30]  ? rwsem_read_trylock+0x6d/0x250
[ 1037.216319][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1037.221641][   T30]  down_read+0x124/0x330
[ 1037.227538][   T30]  ? __pfx_down_read+0x10/0x10
[ 1037.233183][   T30]  kernfs_dop_revalidate+0xf0/0x5a0
[ 1037.238988][   T30]  lookup_fast+0x239/0x540
[ 1037.243442][   T30]  walk_component+0x5b/0x5b0
[ 1037.248532][   T30]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1037.256895][   T30]  path_openat+0x238/0x2d20
[ 1037.261433][   T30]  ? __lock_acquire+0x1620/0x3cb0
[ 1037.267035][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1037.272002][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.277718][   T30]  ? find_held_lock+0x2d/0x110
[ 1037.282523][   T30]  do_filp_open+0x1dc/0x430
[ 1037.288985][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1037.294042][   T30]  ? find_held_lock+0x2d/0x110
[ 1037.299354][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1037.304235][   T30]  ? alloc_fd+0x2d7/0x6c0
[ 1037.309022][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1037.313727][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1037.319490][   T30]  ? __pfx_get_timespec64+0x10/0x10
[ 1037.325023][   T30]  __x64_sys_openat+0x175/0x210
[ 1037.329906][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1037.338401][   T30]  do_syscall_64+0xcd/0x250
[ 1037.342944][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1037.349312][   T30] RIP: 0033:0x7f38eeb75811
[ 1037.353745][   T30] RSP: 002b:00007ffe936f1b60 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1037.362733][   T30] RAX: ffffffffffffffda RBX: 00000000000000f9 RCX: 00007f38eeb75811
[ 1037.372639][   T30] RDX: 0000000000090800 RSI: 00007f38eebe3a0a RDI: 00000000ffffff9c
[ 1037.392028][   T30] RBP: 00007ffe936f1c1c R08: 0000000000000000 R09: 00007f38ef8b9080
[ 1037.401527][   T30] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffe936f1c90
[ 1037.409798][   T30] R13: 0000000000000000 R14: 00000000000d773a R15: 00000000000d73ec
[ 1037.424711][   T30]  </TASK>
[ 1037.427777][   T30] INFO: task syz-executor:12428 blocked for more than 146 seconds.
[ 1037.438004][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1037.447129][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1037.456179][   T30] task:syz-executor    state:D stack:23664 pid:12428 tgid:12428 ppid:1      flags:0x00000004
[ 1037.466676][   T30] Call Trace:
[ 1037.469968][   T30]  <TASK>
[ 1037.472909][   T30]  __schedule+0xe37/0x5490
[ 1037.479491][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.485061][   T30]  ? hlock_class+0x4e/0x130
[ 1037.489590][   T30]  ? mark_lock+0xb5/0xc60
[ 1037.493936][   T30]  ? __pfx___schedule+0x10/0x10
[ 1037.499506][   T30]  ? schedule+0x298/0x350
[ 1037.503865][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1037.510592][   T30]  ? rwsem_down_read_slowpath+0x2c4/0xb20
[ 1037.516666][   T30]  schedule+0xe7/0x350
[ 1037.520761][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1037.526699][   T30]  rwsem_down_read_slowpath+0x61e/0xb20
[ 1037.532281][   T30]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 1037.540045][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1037.545409][   T30]  ? rwsem_read_trylock+0x6d/0x250
[ 1037.550554][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1037.557542][   T30]  down_read+0x124/0x330
[ 1037.561818][   T30]  ? __pfx_down_read+0x10/0x10
[ 1037.567125][   T30]  kernfs_dop_revalidate+0xf0/0x5a0
[ 1037.572352][   T30]  lookup_fast+0x239/0x540
[ 1037.577759][   T30]  walk_component+0x5b/0x5b0
[ 1037.582388][   T30]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1037.589817][   T30]  path_openat+0x238/0x2d20
[ 1037.594348][   T30]  ? __lock_acquire+0x1620/0x3cb0
[ 1037.601063][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1037.606326][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.611553][   T30]  ? find_held_lock+0x2d/0x110
[ 1037.619069][   T30]  do_filp_open+0x1dc/0x430
[ 1037.623601][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1037.629595][   T30]  ? find_held_lock+0x2d/0x110
[ 1037.634400][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1037.648529][   T30]  ? alloc_fd+0x2d7/0x6c0
[ 1037.652901][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1037.657925][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1037.663156][   T30]  ? __pfx_get_timespec64+0x10/0x10
[ 1037.676857][   T30]  __x64_sys_openat+0x175/0x210
[ 1037.681743][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1037.692177][   T30]  do_syscall_64+0xcd/0x250
[ 1037.696960][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1037.702882][   T30] RIP: 0033:0x7f1235175811
[ 1037.716165][   T30] RSP: 002b:00007fff1e020d20 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1037.724607][   T30] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 00007f1235175811
[ 1037.740731][   T30] RDX: 0000000000090800 RSI: 00007f12351e3a0a RDI: 00000000ffffff9c
[ 1037.751771][   T30] RBP: 00007fff1e020ddc R08: 0000000000000000 R09: 00007f1235f7b080
[ 1037.760090][   T30] R10: 0000000000000000 R11: 0000000000000287 R12: 00007fff1e020e50
[ 1037.768345][   T30] R13: 0000000000000000 R14: 00000000000d758a R15: 00000000000d7224
[ 1037.777705][   T30]  </TASK>
[ 1037.780744][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1037.789853][   T30] INFO: task syz-executor:12802 blocked for more than 146 seconds.
[ 1037.798057][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1037.805431][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1037.814289][   T30] task:syz-executor    state:D stack:25136 pid:12802 tgid:12802 ppid:1      flags:0x00004004
[ 1037.826185][   T30] Call Trace:
[ 1037.829485][   T30]  <TASK>
[ 1037.832424][   T30]  __schedule+0xe37/0x5490
[ 1037.838807][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.845152][   T30]  ? find_held_lock+0x2d/0x110
[ 1037.849962][   T30]  ? __pfx___schedule+0x10/0x10
[ 1037.855420][   T30]  ? schedule+0x298/0x350
[ 1037.859775][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1037.865291][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1037.869998][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1037.876038][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1037.881448][   T30]  schedule+0xe7/0x350
[ 1037.887350][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1037.892841][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1037.898090][   T30]  ? rtnetlink_rcv_msg+0x372/0xea0
[ 1037.903227][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1037.909970][   T30]  ? rtnetlink_rcv_msg+0x372/0xea0
[ 1037.919966][   T30]  rtnetlink_rcv_msg+0x372/0xea0
[ 1037.925049][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1037.930524][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.947081][   T30]  ? avc_has_perm+0x11b/0x1c0
[ 1037.951802][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1037.957669][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[ 1037.962726][   T30]  ? __lock_acquire+0xbdd/0x3cb0
[ 1037.968126][   T30]  netlink_rcv_skb+0x16b/0x440
[ 1037.972920][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1037.978850][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1037.984169][   T30]  ? netlink_deliver_tap+0x1ae/0xd90
[ 1037.989966][   T30]  netlink_unicast+0x544/0x830
[ 1037.996406][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[ 1038.001724][   T30]  netlink_sendmsg+0x8b8/0xd70
[ 1038.007142][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1038.012461][   T30]  __sys_sendto+0x47f/0x4e0
[ 1038.017504][   T30]  ? __pfx___sys_sendto+0x10/0x10
[ 1038.022570][   T30]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 1038.035789][   T30]  ? kasan_quarantine_put+0x10a/0x240
[ 1038.041195][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1038.049276][   T30]  ? __fput+0x6c5/0xbb0
[ 1038.053471][   T30]  __x64_sys_sendto+0xe0/0x1c0
[ 1038.061378][   T30]  ? do_syscall_64+0x91/0x250
[ 1038.066143][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1038.071534][   T30]  do_syscall_64+0xcd/0x250
[ 1038.076145][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.082063][   T30] RIP: 0033:0x7f5a2fd77cac
[ 1038.086774][   T30] RSP: 002b:00007fff11b49880 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1038.095307][   T30] RAX: ffffffffffffffda RBX: 00007f5a30a34620 RCX: 00007f5a2fd77cac
[ 1038.103543][   T30] RDX: 0000000000000028 RSI: 00007f5a30a34670 RDI: 0000000000000003
[ 1038.111646][   T30] RBP: 0000000000000000 R08: 00007fff11b498d4 R09: 000000000000000c
[ 1038.121127][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1038.129170][   T30] R13: 0000000000000000 R14: 00007f5a30a34670 R15: 0000000000000000
[ 1038.137419][   T30]  </TASK>
[ 1038.140455][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1038.150380][   T30] INFO: task syz.3.1494:12918 blocked for more than 147 seconds.
[ 1038.159580][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1038.182181][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1038.190921][   T30] task:syz.3.1494      state:D stack:27168 pid:12918 tgid:12918 ppid:8075   flags:0x00004006
[ 1038.201263][   T30] Call Trace:
[ 1038.204552][   T30]  <TASK>
[ 1038.207562][   T30]  __schedule+0xe37/0x5490
[ 1038.212003][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1038.217308][   T30]  ? __pfx___schedule+0x10/0x10
[ 1038.222184][   T30]  ? schedule+0x298/0x350
[ 1038.227815][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1038.232867][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1038.237636][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1038.243128][   T30]  schedule+0xe7/0x350
[ 1038.247607][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1038.253900][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1038.264726][   T30]  ? raw_release+0x1c6/0xae0
[ 1038.269350][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1038.274440][   T30]  ? raw_release+0x1c1/0xae0
[ 1038.289269][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1038.299462][   T30]  ? raw_release+0x1c6/0xae0
[ 1038.304080][   T30]  ? rtnl_lock+0x9/0x20
[ 1038.310692][   T30]  raw_release+0x1c6/0xae0
[ 1038.319922][   T30]  ? __pfx_locks_remove_file+0x10/0x10
[ 1038.325647][   T30]  __sock_release+0xb0/0x270
[ 1038.330265][   T30]  ? __pfx_sock_close+0x10/0x10
[ 1038.346009][   T30]  sock_close+0x1c/0x30
[ 1038.350317][   T30]  __fput+0x408/0xbb0
[ 1038.363543][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1038.368851][   T30]  task_work_run+0x14e/0x250
[ 1038.373471][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1038.378869][   T30]  ? handle_edge_irq+0x40f/0xd10
[ 1038.383837][   T30]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1038.397325][   T30]  do_syscall_64+0xda/0x250
[ 1038.401871][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.418703][   T30] RIP: 0033:0x7f34a4d75f19
[ 1038.423146][   T30] RSP: 002b:00007ffd3b4845c8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1038.434005][   T30] RAX: 0000000000000000 RBX: 00007f34a4f07a60 RCX: 00007f34a4d75f19
[ 1038.442209][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1038.455997][   T30] RBP: 00007f34a4f07a60 R08: 0000000000000006 R09: 0000001d3b4848ef
[ 1038.466797][   T30] R10: 00000000003fe0b0 R11: 0000000000000246 R12: 00000000000d6e0c
[ 1038.475121][   T30] R13: 0000000000000032 R14: 00007f34a4f07a60 R15: 00007f34a4f06110
[ 1038.483208][   T30]  </TASK>
[ 1038.486760][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1038.496162][   T30] INFO: task syz.1.1500:12941 blocked for more than 147 seconds.
[ 1038.503899][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1038.520624][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1038.530841][   T30] task:syz.1.1500      state:D stack:27168 pid:12941 tgid:12941 ppid:12428  flags:0x00000004
[ 1038.541396][   T30] Call Trace:
[ 1038.544965][   T30]  <TASK>
[ 1038.547911][   T30]  __schedule+0xe37/0x5490
[ 1038.552356][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1038.558214][   T30]  ? hlock_class+0x4e/0x130
[ 1038.571212][   T30]  ? __pfx___schedule+0x10/0x10
[ 1038.580413][   T30]  ? schedule+0x298/0x350
[ 1038.588574][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1038.593631][   T30]  schedule+0xe7/0x350
[ 1038.598667][   T30]  schedule_timeout+0x258/0x2a0
[ 1038.603546][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[ 1038.616550][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1038.621786][   T30]  __wait_for_common+0x3de/0x5f0
[ 1038.632743][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[ 1038.638688][   T30]  ? __pfx___wait_for_common+0x10/0x10
[ 1038.644175][   T30]  ? __virt_addr_valid+0x5e/0x590
[ 1038.649853][   T30]  __flush_work+0x5bd/0xc60
[ 1038.654394][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1038.660673][   T30]  ? __pfx___flush_work+0x10/0x10
[ 1038.668226][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[ 1038.673555][   T30]  ? __pfx_uhid_char_release+0x10/0x10
[ 1038.684025][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1038.693116][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1038.702781][   T30]  ? __pfx_uhid_char_release+0x10/0x10
[ 1038.712301][   T30]  __cancel_work_sync+0x10c/0x130
[ 1038.717757][   T30]  uhid_char_release+0xca/0x210
[ 1038.722642][   T30]  __fput+0x408/0xbb0
[ 1038.734050][   T30]  task_work_run+0x14e/0x250
[ 1038.739172][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1038.744320][   T30]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[ 1038.751446][   T30]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1038.757435][   T30]  do_syscall_64+0xda/0x250
[ 1038.761968][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.771685][   T30] RIP: 0033:0x7f1235175f19
[ 1038.776455][   T30] RSP: 002b:00007fff1e020b68 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1038.786445][   T30] RAX: 0000000000000000 RBX: 00007f1235307a60 RCX: 00007f1235175f19
[ 1038.794443][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1038.802883][   T30] RBP: 00007f1235307a60 R08: 0000000000000006 R09: 0000001b1e020e8f
[ 1038.811203][   T30] R10: 00000000005dce88 R11: 0000000000000246 R12: 00000000000d7588
[ 1038.819489][   T30] R13: 0000000000000032 R14: 00007f1235307a60 R15: 00007fff1e020c50
[ 1038.827861][   T30]  </TASK>
[ 1038.830901][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1038.840501][   T30] INFO: task syz.2.1502:12950 blocked for more than 147 seconds.
[ 1038.848566][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1038.856206][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1038.865334][   T30] task:syz.2.1502      state:D stack:27856 pid:12950 tgid:12949 ppid:10971  flags:0x00004004
[ 1038.880173][   T30] Call Trace:
[ 1038.883474][   T30]  <TASK>
[ 1038.887292][   T30]  __schedule+0xe37/0x5490
[ 1038.891748][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1038.898664][   T30]  ? hlock_class+0x4e/0x130
[ 1038.903196][   T30]  ? __pfx___schedule+0x10/0x10
[ 1038.908521][   T30]  ? schedule+0x298/0x350
[ 1038.912877][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1038.918400][   T30]  ? rwsem_down_write_slowpath+0x48a/0x12a0
[ 1038.924334][   T30]  schedule+0xe7/0x350
[ 1038.928873][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1038.934364][   T30]  rwsem_down_write_slowpath+0x539/0x12a0
[ 1038.940617][   T30]  ? __kernfs_new_node+0x2e6/0x890
[ 1038.946028][   T30]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[ 1038.952217][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1038.957865][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1038.963185][   T30]  down_write+0x1d8/0x200
[ 1038.972200][   T30]  ? __pfx_down_write+0x10/0x10
[ 1038.977473][   T30]  kernfs_add_one+0xb1/0x520
[ 1038.982100][   T30]  kernfs_create_dir_ns+0xf4/0x150
[ 1038.987771][   T30]  sysfs_create_dir_ns+0x13b/0x2b0
[ 1038.992916][   T30]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1038.999117][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1039.004524][   T30]  ? class_dir_child_ns_type+0xd/0x60
[ 1039.011630][   T30]  kobject_add_internal+0x2c8/0x990
[ 1039.017200][   T30]  kobject_add+0x16f/0x240
[ 1039.021645][   T30]  ? __pfx_kobject_add+0x10/0x10
[ 1039.031608][   T30]  ? do_raw_spin_unlock+0x172/0x230
[ 1039.036921][   T30]  ? kobject_put+0xbe/0x5b0
[ 1039.041449][   T30]  device_add+0x289/0x1a70
[ 1039.054708][   T30]  ? __pfx_device_add+0x10/0x10
[ 1039.059595][   T30]  ? kfree+0x245/0x3b0
[ 1039.063681][   T30]  ? kstrdup+0x5c/0x70
[ 1039.068576][   T30]  device_create_groups_vargs+0x1f8/0x270
[ 1039.077346][   T30]  device_create+0xe9/0x130
[ 1039.081890][   T30]  ? __pfx_device_create+0x10/0x10
[ 1039.087547][   T30]  ? __pfx_vsnprintf+0x10/0x10
[ 1039.092335][   T30]  ? mark_held_locks+0x9f/0xe0
[ 1039.097180][   T30]  bdi_register_va+0x116/0x820
[ 1039.101977][   T30]  ? __pfx_bdi_register_va+0x10/0x10
[ 1039.108004][   T30]  ? do_init_timer+0xc9/0x110
[ 1039.112709][   T30]  super_setup_bdi_name+0x100/0x250
[ 1039.119540][   T30]  ? __pfx_super_setup_bdi_name+0x10/0x10
[ 1039.126647][   T30]  ? fuse_fill_super_common+0x487/0x1040
[ 1039.132320][   T30]  fuse_fill_super_common+0x5e6/0x1040
[ 1039.138204][   T30]  ? __pfx_fuse_fill_super_common+0x10/0x10
[ 1039.144130][   T30]  ? __init_swait_queue_head+0xca/0x150
[ 1039.150141][   T30]  ? shrinker_register+0x1a8/0x260
[ 1039.155609][   T30]  ? sget_fc+0x717/0xb00
[ 1039.159874][   T30]  ? __pfx_fuse_fill_super+0x10/0x10
[ 1039.165683][   T30]  fuse_fill_super+0x201/0x2e0
[ 1039.170482][   T30]  get_tree_nodev+0xda/0x190
[ 1039.179000][   T30]  fuse_get_tree+0x279/0x600
[ 1039.183628][   T30]  vfs_get_tree+0x8f/0x380
[ 1039.188550][   T30]  path_mount+0x14e6/0x1f20
[ 1039.193077][   T30]  ? __pfx_path_mount+0x10/0x10
[ 1039.198416][   T30]  ? putname+0x12e/0x170
[ 1039.202687][   T30]  ? putname+0x12e/0x170
[ 1039.207862][   T30]  __x64_sys_mount+0x294/0x320
[ 1039.212654][   T30]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1039.218435][   T30]  do_syscall_64+0xcd/0x250
[ 1039.222971][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.230931][   T30] RIP: 0033:0x7f436db75f19
[ 1039.235695][   T30] RSP: 002b:00007f436e8bd048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1039.244137][   T30] RAX: ffffffffffffffda RBX: 00007f436dd05f60 RCX: 00007f436db75f19
[ 1039.252651][   T30] RDX: 0000000020002100 RSI: 00000000200020c0 RDI: 0000000000000000
[ 1039.260958][   T30] RBP: 00007f436dbe4e68 R08: 0000000020002140 R09: 0000000000000000
[ 1039.269296][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.279838][   T30] R13: 000000000000000b R14: 00007f436dd05f60 R15: 00007ffed2afeab8
[ 1039.288202][   T30]  </TASK>
[ 1039.291237][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1039.304307][   T30] INFO: task syz.0.1503:12954 blocked for more than 148 seconds.
[ 1039.312350][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1039.319939][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1039.328941][   T30] task:syz.0.1503      state:D stack:27248 pid:12954 tgid:12953 ppid:11130  flags:0x00000004
[ 1039.340674][   T30] Call Trace:
[ 1039.343975][   T30]  <TASK>
[ 1039.347406][   T30]  __schedule+0xe37/0x5490
[ 1039.351856][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1039.360927][   T30]  ? __pfx___schedule+0x10/0x10
[ 1039.366210][   T30]  ? schedule+0x298/0x350
[ 1039.370568][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1039.388339][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1039.393061][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1039.402146][   T30]  schedule+0xe7/0x350
[ 1039.411339][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1039.417195][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1039.421730][   T30]  ? __tun_chr_ioctl+0x4fc/0x4770
[ 1039.434305][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1039.439637][   T30]  ? __might_fault+0xe3/0x190
[ 1039.444339][   T30]  ? __tun_chr_ioctl+0x4fc/0x4770
[ 1039.454688][   T30]  ? rtnl_lock+0x9/0x20
[ 1039.458878][   T30]  __tun_chr_ioctl+0x4fc/0x4770
[ 1039.463754][   T30]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1039.478634][   T30]  ? __pfx___tun_chr_ioctl+0x10/0x10
[ 1039.487419][   T30]  ? selinux_file_ioctl+0x180/0x270
[ 1039.492657][   T30]  ? selinux_file_ioctl+0xb4/0x270
[ 1039.498513][   T30]  ? __pfx_tun_chr_ioctl+0x10/0x10
[ 1039.503656][   T30]  __x64_sys_ioctl+0x193/0x220
[ 1039.508983][   T30]  do_syscall_64+0xcd/0x250
[ 1039.513525][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.519904][   T30] RIP: 0033:0x7f38eeb75f19
[ 1039.524338][   T30] RSP: 002b:00007f38ef8b8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1039.533573][   T30] RAX: ffffffffffffffda RBX: 00007f38eed05f60 RCX: 00007f38eeb75f19
[ 1039.541865][   T30] RDX: 0000000020000000 RSI: 00000000400454ca RDI: 0000000000000008
[ 1039.550173][   T30] RBP: 00007f38eebe4e68 R08: 0000000000000000 R09: 0000000000000000
[ 1039.560669][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.568974][   T30] R13: 000000000000000b R14: 00007f38eed05f60 R15: 00007ffe936f18c8
[ 1039.577256][   T30]  </TASK>
[ 1039.580287][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1039.593059][   T30] INFO: task syz.0.1503:12955 blocked for more than 148 seconds.
[ 1039.607267][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1039.614570][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1039.629094][   T30] task:syz.0.1503      state:D stack:29056 pid:12955 tgid:12953 ppid:11130  flags:0x00000004
[ 1039.639709][   T30] Call Trace:
[ 1039.643001][   T30]  <TASK>
[ 1039.646541][   T30]  __schedule+0xe37/0x5490
[ 1039.650983][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1039.656642][   T30]  ? __pfx___schedule+0x10/0x10
[ 1039.661518][   T30]  ? schedule+0x298/0x350
[ 1039.667520][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1039.672572][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1039.677713][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1039.683204][   T30]  schedule+0xe7/0x350
[ 1039.691928][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1039.702438][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1039.709593][   T30]  ? __tun_chr_ioctl+0x62d/0x4770
[ 1039.714938][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1039.719991][   T30]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1039.733503][   T30]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1039.738835][   T30]  ? __tun_chr_ioctl+0x62d/0x4770
[ 1039.743888][   T30]  ? rtnl_lock+0x9/0x20
[ 1039.748335][   T30]  __tun_chr_ioctl+0x62d/0x4770
[ 1039.753208][   T30]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1039.768672][   T30]  ? __pfx___tun_chr_ioctl+0x10/0x10
[ 1039.774001][   T30]  ? selinux_file_ioctl+0x180/0x270
[ 1039.785032][   T30]  ? selinux_file_ioctl+0xb4/0x270
[ 1039.793763][   T30]  ? __pfx_tun_chr_ioctl+0x10/0x10
[ 1039.804686][   T30]  __x64_sys_ioctl+0x193/0x220
[ 1039.809487][   T30]  do_syscall_64+0xcd/0x250
[ 1039.814016][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.820714][   T30] RIP: 0033:0x7f38eeb75f19
[ 1039.825448][   T30] RSP: 002b:00007f38ef897048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1039.833887][   T30] RAX: ffffffffffffffda RBX: 00007f38eed06038 RCX: 00007f38eeb75f19
[ 1039.842375][   T30] RDX: 0000000020000040 RSI: 00000000401054d5 RDI: 0000000000000008
[ 1039.850632][   T30] RBP: 00007f38eebe4e68 R08: 0000000000000000 R09: 0000000000000000
[ 1039.858936][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.867204][   T30] R13: 000000000000006e R14: 00007f38eed06038 R15: 00007ffe936f18c8
[ 1039.875521][   T30]  </TASK>
[ 1039.878555][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1039.899381][   T30] INFO: task syz.0.1503:12956 blocked for more than 148 seconds.
[ 1039.912262][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1039.922200][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1039.936266][   T30] task:syz.0.1503      state:D stack:26992 pid:12956 tgid:12953 ppid:11130  flags:0x00004004
[ 1039.951600][   T30] Call Trace:
[ 1039.955248][   T30]  <TASK>
[ 1039.958194][   T30]  __schedule+0xe37/0x5490
[ 1039.962633][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1039.975352][   T30]  ? __pfx___schedule+0x10/0x10
[ 1039.980233][   T30]  ? schedule+0x298/0x350
[ 1039.984580][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1039.995294][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1040.000013][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1040.008316][   T30]  schedule+0xe7/0x350
[ 1040.012419][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1040.018705][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1040.023240][   T30]  ? do_ipv6_setsockopt+0x2162/0x47b0
[ 1040.029099][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1040.034157][   T30]  ? __might_fault+0xe3/0x190
[ 1040.039303][   T30]  ? do_ipv6_setsockopt+0x2162/0x47b0
[ 1040.044996][   T30]  ? rtnl_lock+0x9/0x20
[ 1040.049181][   T30]  do_ipv6_setsockopt+0x2162/0x47b0
[ 1040.054407][   T30]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1040.060699][   T30]  ? __pfx___schedule+0x10/0x10
[ 1040.065855][   T30]  ? sock_has_perm+0x25a/0x2f0
[ 1040.070649][   T30]  ? irqentry_exit+0x3b/0x90
[ 1040.075759][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1040.080993][   T30]  ? ipv6_setsockopt+0xe3/0x1a0
[ 1040.086323][   T30]  ipv6_setsockopt+0xe3/0x1a0
[ 1040.091033][   T30]  tcp_setsockopt+0xa4/0x100
[ 1040.103235][   T30]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1040.110599][   T30]  do_sock_setsockopt+0x222/0x480
[ 1040.123245][   T30]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1040.130535][   T30]  ? __fget_light+0x173/0x210
[ 1040.142203][   T30]  __sys_setsockopt+0x1a4/0x270
[ 1040.148604][   T30]  ? __pfx___sys_setsockopt+0x10/0x10
[ 1040.154001][   T30]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1040.164697][   T30]  __x64_sys_setsockopt+0xbd/0x160
[ 1040.169836][   T30]  ? do_syscall_64+0x91/0x250
[ 1040.174545][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1040.187877][   T30]  do_syscall_64+0xcd/0x250
[ 1040.192424][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.209265][   T30] RIP: 0033:0x7f38eeb75f19
[ 1040.213705][   T30] RSP: 002b:00007f38ef876048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1040.224692][   T30] RAX: ffffffffffffffda RBX: 00007f38eed06110 RCX: 00007f38eeb75f19
[ 1040.232688][   T30] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000003
[ 1040.248380][   T30] RBP: 00007f38eebe4e68 R08: 0000000000000013 R09: 0000000000000000
[ 1040.260672][   T30] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[ 1040.272585][   T30] R13: 000000000000006e R14: 00007f38eed06110 R15: 00007ffe936f18c8
[ 1040.284325][   T30]  </TASK>
[ 1040.291125][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1040.305167][   T30] INFO: task syz-executor:12958 blocked for more than 149 seconds.
[ 1040.313077][   T30]       Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1040.320701][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1040.329707][   T30] task:syz-executor    state:D stack:27408 pid:12958 tgid:12958 ppid:5080   flags:0x00000004
[ 1040.340129][   T30] Call Trace:
[ 1040.343432][   T30]  <TASK>
[ 1040.346435][   T30]  __schedule+0xe37/0x5490
[ 1040.351103][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1040.357781][   T30]  ? hlock_class+0x4e/0x130
[ 1040.362310][   T30]  ? mark_lock+0xb5/0xc60
[ 1040.366702][   T30]  ? __pfx___schedule+0x10/0x10
[ 1040.371911][   T30]  ? schedule+0x298/0x350
[ 1040.376592][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1040.381646][   T30]  ? rwsem_down_read_slowpath+0x2c4/0xb20
[ 1040.388443][   T30]  schedule+0xe7/0x350
[ 1040.392544][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1040.398524][   T30]  rwsem_down_read_slowpath+0x61e/0xb20
[ 1040.414960][   T30]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 1040.421070][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1040.434900][   T30]  ? rwsem_read_trylock+0x6d/0x250
[ 1040.440050][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1040.452874][   T30]  down_read+0x124/0x330
[ 1040.457444][   T30]  ? __pfx_down_read+0x10/0x10
[ 1040.462240][   T30]  kernfs_dop_revalidate+0xf0/0x5a0
[ 1040.469319][   T30]  lookup_fast+0x239/0x540
[ 1040.473773][   T30]  walk_component+0x5b/0x5b0
[ 1040.485026][   T30]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1040.491397][   T30]  path_openat+0x238/0x2d20
[ 1040.511444][   T30]  ? __lock_acquire+0x1620/0x3cb0
[ 1040.516644][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1040.521605][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1040.534015][   T30]  ? find_held_lock+0x2d/0x110
[ 1040.538902][   T30]  do_filp_open+0x1dc/0x430
[ 1040.543427][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1040.554693][   T30]  ? find_held_lock+0x2d/0x110
[ 1040.559498][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1040.564368][   T30]  ? alloc_fd+0x2d7/0x6c0
[ 1040.575773][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1040.580487][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1040.592959][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[ 1040.599429][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1040.604489][   T30]  __x64_sys_openat+0x175/0x210
[ 1040.619012][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1040.624432][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[ 1040.629927][   T30]  do_syscall_64+0xcd/0x250
[ 1040.634466][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.640575][   T30] RIP: 0033:0x7f4c663748d1
[ 1040.645144][   T30] RSP: 002b:00007fff48321880 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 1040.653583][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4c663748d1
[ 1040.661617][   T30] RDX: 0000000000000002 RSI: 00007f4c663e3b5f RDI: 00000000ffffff9c
[ 1040.669679][   T30] RBP: 00007f4c663e3b5f R08: 0000000000000000 R09: 00007fff48321bc8
[ 1040.677719][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c
[ 1040.685780][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009
[ 1040.693770][   T30]  </TASK>
[ 1040.698038][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 1040.713365][   T30] 
[ 1040.713365][   T30] Showing all locks held in the system:
[ 1040.724561][   T30] 3 locks held by kworker/u8:1/12:
[ 1040.733354][   T30]  #0: ffff88802a003148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1040.744787][   T30]  #1: ffffc90000117d80 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1040.757927][   T30]  #2: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30
[ 1040.767497][   T30] 3 locks held by kworker/1:0/25:
[ 1040.772528][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1040.783068][   T30]  #1: ffffc900001f7d80 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1040.793497][   T30]  #2: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 1040.810975][   T30] 1 lock held by khungtaskd/30:
[ 1040.821351][   T30]  #0: ffffffff8dbb5220 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[ 1040.831696][   T30] 6 locks held by kworker/u8:6/2422:
[ 1040.837212][   T30]  #0: ffff8880162db148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1040.847805][   T30]  #1: ffffc9000910fd80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1040.857980][   T30]  #2: ffffffff8f75ca90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xbb/0xbf0
[ 1040.867522][   T30]  #3: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: wiphy_unregister+0x13e/0xc10
[ 1040.877093][   T30]  #4: ffff888066560768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: wiphy_unregister+0x148/0xc10
[ 1040.888315][   T30]  #5: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_remove_by_name_ns+0x87/0x130
[ 1040.899260][   T30] 3 locks held by kworker/u8:7/2431:
[ 1040.904554][   T30]  #0: ffff8880b923ee18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[ 1040.917186][   T30]  #1: ffff8880b9328a48 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2d9/0x900
[ 1040.932388][   T30]  #2: ffff8880b932a898 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x5d/0x220
[ 1040.945354][   T30] 3 locks held by kworker/u8:10/2489:
[ 1040.950743][   T30]  #0: ffff888017779148 ((wq_completion)cfg80211){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1040.961832][   T30]  #1: ffffc900091cfd80 ((work_completion)(&(&rdev->dfs_update_channels_wk)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1040.979770][   T30]  #2: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: cfg80211_dfs_channels_update_work+0xd0/0x640
[ 1040.994346][   T30] 2 locks held by udevd/4543:
[ 1041.002761][   T30]  #0: ffff88807e648650 (&type->i_mutex_dir_key#4){++++}-{3:3}, at: walk_component+0x342/0x5b0
[ 1041.020506][   T30]  #1: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_lookup+0xa3/0x330
[ 1041.034454][   T30] 2 locks held by dhcpcd/4756:
[ 1041.044302][   T30]  #0: ffffffff8f747fe8 (vlan_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x4a8/0x6c0
[ 1041.058193][   T30]  #1: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: vlan_ioctl_handler+0xcf/0xa80
[ 1041.071688][   T30] 2 locks held by getty/4845:
[ 1041.080097][   T30]  #0: ffff88802abd70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1041.093640][   T30]  #1: ffffc9000311b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc8/0x1490
[ 1041.108190][   T30] 4 locks held by kworker/1:3/5098:
[ 1041.113407][   T30]  #0: ffff8880b923ee18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[ 1041.134370][   T30]  #1: ffff8880b9328a48 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2d9/0x900
[ 1041.155971][   T30]  #2: ffff8880b932a898 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x5d/0x220
[ 1041.172526][   T30]  #3: ffffffff94d76218 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x199/0x540
[ 1041.183172][   T30] 5 locks held by kworker/u9:4/5106:
[ 1041.189114][   T30]  #0: ffff88802290d948 ((wq_completion)hci0){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1041.199888][   T30]  #1: ffffc900035e7d80 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1041.212094][   T30]  #2: ffff8880783acd80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x170/0x410
[ 1041.224360][   T30]  #3: ffff8880783ac078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x150/0xb50
[ 1041.234321][   T30]  #4: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x71/0xc0
[ 1041.251873][   T30] 3 locks held by kworker/1:4/5147:
[ 1041.258465][   T30]  #0: ffff888015481948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1041.277724][   T30]  #1: ffffc90003b9fd80 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1041.292622][   T30]  #2: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x84/0x1140
[ 1041.306420][   T30] 3 locks held by kworker/0:4/5148:
[ 1041.311636][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1041.327142][   T30]  #1: ffffc900031f7d80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1041.337827][   T30]  #2: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x51/0xc0
[ 1041.347144][   T30] 2 locks held by kworker/u8:11/7151:
[ 1041.352533][   T30] 1 lock held by syz-executor/8075:
[ 1041.358024][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.370562][   T30] 5 locks held by kworker/u9:1/9095:
[ 1041.376349][   T30]  #0: ffff88805ef48148 ((wq_completion)hci4){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1041.386860][   T30]  #1: ffffc90003b07d80 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1041.399054][   T30]  #2: ffff88807dc50d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x170/0x410
[ 1041.409114][   T30]  #3: ffff88807dc50078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x150/0xb50
[ 1041.419044][   T30]  #4: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x71/0xc0
[ 1041.432177][   T30] 3 locks held by kworker/1:1/10104:
[ 1041.442504][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[ 1041.453965][   T30]  #1: ffffc900034efd80 ((work_completion)(&uhid->worker)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[ 1041.465908][   T30]  #2: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_add_one+0xb1/0x520
[ 1041.478675][   T30] 1 lock held by syz-executor/10971:
[ 1041.483974][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.495043][   T30] 1 lock held by syz-executor/11130:
[ 1041.500341][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.511343][   T30] 1 lock held by syz-executor/12428:
[ 1041.516909][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.527762][   T30] 1 lock held by syz-executor/12802:
[ 1041.534111][   T30]  #0: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xea0
[ 1041.544081][   T30] 2 locks held by syz.3.1494/12918:
[ 1041.550790][   T30]  #0: ffff888077127408 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release+0x86/0x270
[ 1041.561766][   T30]  #1: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1c6/0xae0
[ 1041.571037][   T30] 2 locks held by syz.2.1502/12950:
[ 1041.576554][   T30]  #0: ffff88807a59a0e0 (&type->s_umount_key#65/1){+.+.}-{3:3}, at: alloc_super+0x23d/0xbd0
[ 1041.590972][   T30]  #1: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_add_one+0xb1/0x520
[ 1041.601536][   T30] 1 lock held by syz.0.1503/12954:
[ 1041.607418][   T30]  #0: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x4fc/0x4770
[ 1041.617118][   T30] 1 lock held by syz.0.1503/12955:
[ 1041.622244][   T30]  #0: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x62d/0x4770
[ 1041.632865][   T30] 1 lock held by syz.0.1503/12956:
[ 1041.638351][   T30]  #0: ffffffff8f7721e8 (rtnl_mutex){+.+.}-{3:3}, at: do_ipv6_setsockopt+0x2162/0x47b0
[ 1041.648389][   T30] 1 lock held by syz-executor/12958:
[ 1041.653688][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.666028][   T30] 1 lock held by syz-executor/12959:
[ 1041.671328][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.682331][   T30] 1 lock held by syz-executor/12960:
[ 1041.687998][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.701592][   T30] 1 lock held by syz-executor/12961:
[ 1041.708003][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.718786][   T30] 1 lock held by syz-executor/12962:
[ 1041.724081][   T30]  #0: ffff8880162dc148 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xf0/0x5a0
[ 1041.735881][   T30] 
[ 1041.738223][   T30] =============================================
[ 1041.738223][   T30] 
[ 1041.747296][   T30] NMI backtrace for cpu 1
[ 1041.751636][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1041.761797][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1041.771857][   T30] Call Trace:
[ 1041.775144][   T30]  <TASK>
[ 1041.778085][   T30]  dump_stack_lvl+0x116/0x1f0
[ 1041.782780][   T30]  nmi_cpu_backtrace+0x27b/0x390
[ 1041.787740][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1041.793742][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1041.799753][   T30]  watchdog+0xf4e/0x1280
[ 1041.804020][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1041.808713][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1041.813918][   T30]  ? __kthread_parkme+0x148/0x220
[ 1041.818938][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1041.823614][   T30]  kthread+0x2c1/0x3a0
[ 1041.827692][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1041.832898][   T30]  ? __pfx_kthread+0x10/0x10
[ 1041.837485][   T30]  ret_from_fork+0x45/0x80
[ 1041.841907][   T30]  ? __pfx_kthread+0x10/0x10
[ 1041.846492][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1041.851272][   T30]  </TASK>
[ 1041.855209][   T30] Sending NMI from CPU 1 to CPUs 0:
[ 1041.860435][    C0] NMI backtrace for cpu 0
[ 1041.860446][    C0] CPU: 0 UID: 0 PID: 2431 Comm: kworker/u8:7 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1041.860473][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1041.860487][    C0] Workqueue: bat_events batadv_nc_worker
[ 1041.860523][    C0] RIP: 0010:__lock_acquire+0x264/0x3cb0
[ 1041.860554][    C0] Code: 00 41 0f b7 56 20 8b 74 24 20 81 e2 ff 1f 00 00 39 f2 75 0c 48 83 7c 24 10 00 0f 85 5a 0c 00 00 48 8b 04 24 44 0f b7 74 24 20 <49> 01 c5 49 8d 45 20 66 41 81 e6 ff 1f 48 89 c2 48 89 44 24 30 48
[ 1041.860575][    C0] RSP: 0018:ffffc900092bf8e0 EFLAGS: 00000006
[ 1041.860593][    C0] RAX: ffff888029bce4e0 RBX: 0000000000000000 RCX: 1ffff11005379ca5
[ 1041.860609][    C0] RDX: 00000000000006f3 RSI: 0000000000000021 RDI: ffff888029bce528
[ 1041.860624][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1041.860638][    C0] R10: 000000000000000a R11: 0000000000000002 R12: ffffffff8dbb5220
[ 1041.860652][    C0] R13: 0000000000000050 R14: 0000000000000021 R15: ffff888029bcda00
[ 1041.860667][    C0] FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
[ 1041.860690][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1041.860706][    C0] CR2: 00007f1c9731ffff CR3: 000000000d97c000 CR4: 00000000003506f0
[ 1041.860721][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1041.860735][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1041.860750][    C0] Call Trace:
[ 1041.860757][    C0]  <NMI>
[ 1041.860764][    C0]  ? show_regs+0x8c/0xa0
[ 1041.860798][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[ 1041.860830][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1041.860862][    C0]  ? nmi_handle+0x1a9/0x5c0
[ 1041.860883][    C0]  ? __lock_acquire+0x264/0x3cb0
[ 1041.860910][    C0]  ? default_do_nmi+0x6a/0x160
[ 1041.860932][    C0]  ? exc_nmi+0x170/0x1e0
[ 1041.860952][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1041.860982][    C0]  ? __lock_acquire+0x264/0x3cb0
[ 1041.861014][    C0]  ? __lock_acquire+0x264/0x3cb0
[ 1041.861041][    C0]  ? __lock_acquire+0x264/0x3cb0
[ 1041.861068][    C0]  </NMI>
[ 1041.861074][    C0]  <TASK>
[ 1041.861084][    C0]  ? mark_lock+0xb5/0xc60
[ 1041.861109][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 1041.861136][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 1041.861163][    C0]  ? __pfx_mark_lock+0x10/0x10
[ 1041.861191][    C0]  lock_acquire+0x1b1/0x560
[ 1041.861218][    C0]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[ 1041.861256][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1041.861283][    C0]  ? batadv_nc_process_nc_paths.part.0+0x215/0x3e0
[ 1041.861320][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1041.861348][    C0]  ? mark_held_locks+0x9f/0xe0
[ 1041.861374][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[ 1041.861410][    C0]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[ 1041.861444][    C0]  batadv_nc_process_nc_paths.part.0+0xe4/0x3e0
[ 1041.861482][    C0]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[ 1041.861519][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 1041.861548][    C0]  batadv_nc_worker+0xd53/0x10f0
[ 1041.861585][    C0]  ? __pfx_batadv_nc_worker+0x10/0x10
[ 1041.861623][    C0]  process_one_work+0x9c5/0x1b40
[ 1041.861657][    C0]  ? __pfx_batadv_nc_worker+0x10/0x10
[ 1041.861691][    C0]  ? __pfx_process_one_work+0x10/0x10
[ 1041.861723][    C0]  ? assign_work+0x1a0/0x250
[ 1041.861750][    C0]  worker_thread+0x6c8/0xf20
[ 1041.861782][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1041.861812][    C0]  kthread+0x2c1/0x3a0
[ 1041.861832][    C0]  ? __pfx_kthread+0x10/0x10
[ 1041.861852][    C0]  ret_from_fork+0x45/0x80
[ 1041.861885][    C0]  ? __pfx_kthread+0x10/0x10
[ 1041.861905][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1041.861941][    C0]  </TASK>
[ 1042.215322][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1042.222183][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[ 1042.232341][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1042.242396][   T30] Call Trace:
[ 1042.245676][   T30]  <TASK>
[ 1042.248606][   T30]  dump_stack_lvl+0x3d/0x1f0
[ 1042.253195][   T30]  panic+0x6f5/0x7a0
[ 1042.257086][   T30]  ? __pfx_panic+0x10/0x10
[ 1042.261496][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1042.266865][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1042.272844][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1042.278208][   T30]  ? watchdog+0xd8a/0x1280
[ 1042.282622][   T30]  ? watchdog+0xd7d/0x1280
[ 1042.287035][   T30]  watchdog+0xd9b/0x1280
[ 1042.291277][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1042.295950][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1042.301144][   T30]  ? __kthread_parkme+0x148/0x220
[ 1042.306160][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1042.310831][   T30]  kthread+0x2c1/0x3a0
[ 1042.314894][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1042.320086][   T30]  ? __pfx_kthread+0x10/0x10
[ 1042.324669][   T30]  ret_from_fork+0x45/0x80
[ 1042.329087][   T30]  ? __pfx_kthread+0x10/0x10
[ 1042.333665][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1042.338438][   T30]  </TASK>
[ 1042.341663][   T30] Kernel Offset: disabled
[ 1042.345981][   T30] Rebooting in 86400 seconds..