last executing test programs:

42.844210063s ago: executing program 0 (id=3005):
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x0, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x810, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a300000000e080005400000000f2c0000000b0a01080000000000000000010000000900020073797a32000000000900010073797a300000000014000000020a03"], 0xc4}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r5, &(0x7f00000001c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000140)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x40408c0}, 0x50)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mount(&(0x7f0000000080)=@sg0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000340)='smb3\x00', 0x206000c, &(0x7f0000000380)='&+\x00')
copy_file_range(r7, 0x0, r7, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x4a, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_freezer_state(r8, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r9, &(0x7f0000000040)='FROZEN\x00', 0x7)
read(r9, &(0x7f00000000c0)=""/29, 0x1d)
r10 = openat$cgroup_procs(r8, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f0000000240), 0x12)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000004c0)=ANY=[])
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x0, 0x40000002, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)

37.486468072s ago: executing program 3 (id=3036):
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x44}}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))

15.154012973s ago: executing program 4 (id=3086):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2c, &(0x7f00000004c0)={0xaf3, {{0xa, 0x4e20, 0x6, @mcast2}}, {{0xa, 0x4e24, 0x6, @dev={0xfe, 0x80, '\x00', 0x26}, 0x6}}}, 0x108)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

14.052189651s ago: executing program 4 (id=3087):
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000080)={0x5})
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000180)={0x5, 0x5825})
r1 = syz_open_dev$video4linux(&(0x7f0000000300), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0x2c, &(0x7f0000000340)={0xffffffff, {{0x2, 0x0, @private=0xa010100}}, {{0x2, 0x4e20, @empty}}}, 0x108)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cgroup.kill\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xbcb07b29f486204c, 0x10012, r3, 0x0)
getsockopt$inet_buf(r2, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1)
dup3(r1, r0, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
setreuid(0x0, 0xee00)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000080)="58000000140019234083598082e59a49e8aefc0b45ff810500000000070058000b480400945f640094272d7061d328b92d000000004c8537db9600f854c8a4487c752f7020847ff67dcae59ba172a685d0373f2cfc597650b0f6f46c3dff31a28a7d4c9846ca547d6196ae21463f928a6db09257485ce2b118c97338a50c1c5821d29fd3dfe75000000000000000b84a425792b472b240abfda8dec7fedf4a5b1b0d", 0xa2}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000000)=ANY=[@ANYRES32=r4])
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, &(0x7f00000003c0)='@', 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)=@assoc_value, &(0x7f0000000080)=0x8)

12.665944607s ago: executing program 4 (id=3089):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = open(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x8000003d)
lsetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
lsetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss={0x2, 0xfff}, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8}]}, 0x24}}, 0x0)

10.240258965s ago: executing program 1 (id=3093):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$PPPIOCSDEBUG(r2, 0x40047440, &(0x7f0000000240)=0x7)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000006114660000000000620000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f00000001c0)="3c75c2015e8724b5a4c586f2ae924b277f0443ec773eab27570e28988217c9b0", 0x20)
r7 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$alg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000003c0)="c3c6c0a2d26edc1a7a3a415836614200050036ce5e9f92ac98ee958361caa6b47501391486a7a98c73ea06db", 0x2c}, {&(0x7f0000002480)="b8487e899178", 0x6}], 0x2}, 0x0)
recvmmsg(r7, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000180)=[{0x0}, {&(0x7f0000000800)=""/103, 0x67}], 0x2}}], 0x1, 0x40032041, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r8, 0x4048ae9b, &(0x7f0000000300)={0xe0001})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000140)="f20f1c0166b864912c870f23c80f21f866350c0080000f23f80f01fc0f20e06635000010000f22e066f30fa7c00f1c9700000f01c566b9a001000066b80400000066ba000000000f30c0dbb6660f3adf932700de", 0x54}], 0x1, 0x0, 0x0, 0x0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r9, 0x29, 0x31, &(0x7f0000000000)=0x7ff, 0x4)
getsockopt$inet6_buf(r9, 0x29, 0x6, &(0x7f0000000100)=""/21, &(0x7f0000000180)=0x15)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f0000000040)=0x4, 0x4)
dup2(r1, r0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000000)=ANY=[@ANYRES8=r1], 0x0)
r10 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
fdatasync(r10)

8.833236959s ago: executing program 0 (id=3051):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41)
recvmsg(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="04", 0x1}], 0x1}, 0x1)
recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x2020) (fail_nth: 1)
sendmsg$inet(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)='#', 0x1}], 0x1}, 0x0)

8.773876706s ago: executing program 2 (id=3094):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
r1 = open_tree(0xffffffffffffff9c, 0x0, 0x89901)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
dup3(r2, r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)

8.404330804s ago: executing program 4 (id=3095):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f00000001c0)=""/107, 0x6b, 0x0, &(0x7f0000000b00)=""/4096, 0x1000}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x2}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_GETFSLABEL(r4, 0x400452c8, &(0x7f0000000100))

8.346433329s ago: executing program 2 (id=3096):
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095000000000000007eba521fb0ec4d39ac64443a2f35563e79d33e2470a6957d373becac05b54c"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='uid_map\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
r8 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r8)
getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r9, @ANYBLOB="00000000010000001c0012000c00010062726964"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001340)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x8, 0x2, [@TCA_FLOW_POLICE={0x4}]}}]}, 0x38}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x1c)

8.215647769s ago: executing program 0 (id=3097):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000080)=0xc)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeea, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x65c, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r5, &(0x7f0000000040)=0x1f00, 0x12)

6.414374359s ago: executing program 0 (id=3098):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x1c, 0x4, 0x0, 0x0, 0x70, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x4, 0xc0, 0x3, 0x1}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x8, [{@remote}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @lsrr={0x83, 0xb, 0xdc, [@private=0xa010102, @rand_addr=0x64010102]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
preadv(r5, &(0x7f0000000100)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1, 0x0, 0x0)

6.300252067s ago: executing program 2 (id=3099):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000080)=0xc)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeea, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x65c, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r5, &(0x7f0000000040)=0x1f00, 0x12)

6.116174098s ago: executing program 1 (id=3100):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x20d6, 0xcb17, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect$uac1(0x4, 0xf2, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0xff, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xe0, 0x3, 0x1, 0x10, 0x20, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x1}, [@output_terminal={0x9, 0x24, 0x3, 0x3, 0x101, 0x6, 0x5, 0x1}, @processing_unit={0x9, 0x24, 0x7, 0x3, 0x0, 0x5, "44eb"}, @output_terminal={0x9, 0x24, 0x3, 0x2, 0x306, 0x4, 0x5, 0xbc}, @input_terminal={0xc, 0x24, 0x2, 0x4, 0x202, 0x3, 0x8, 0x200, 0x9, 0x1}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x7f, 0x0, 0x2}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0xf6, 0x4, 0x54, 0xd, "f3a872", 'q'}, @format_type_i_discrete={0xc, 0x24, 0x2, 0x1, 0x8, 0x4, 0x10, 0x5, "e86b7b76"}, @format_type_i_discrete={0xa, 0x24, 0x2, 0x1, 0x4, 0x1, 0xfe, 0xf, "479c"}]}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0x9, 0xe, 0x0, {0x7, 0x25, 0x1, 0x81, 0x2, 0x6}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x5, 0x2, 0x2, 0x7f}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0x7, 0x4, 0x9, 0xe, "194a8bb8f1a166"}, @format_type_ii_discrete={0xf, 0x24, 0x2, 0x2, 0x7, 0xfff9, 0x6, "46ef78476a22"}, @format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0x7, 0x2, 0x6, 0x9, "036a", "c9"}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x1, 0x54, 0x7, {0x7, 0x25, 0x1, 0x80, 0x7, 0xff}}}}}}}]}}, &(0x7f0000000340)={0xa, &(0x7f00000001c0)={0xa, 0x6, 0x201, 0x8, 0x5, 0xfc, 0xff, 0x9}, 0x39, &(0x7f0000000240)={0x5, 0xf, 0x39, 0x5, [@ptm_cap={0x3}, @ssp_cap={0x10, 0x10, 0xa, 0x2, 0x1, 0xffff, 0xf, 0x5, [0x0]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x3, 0x80, 0x80, 0x101}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "656d14e4ffbeccd57bf016806ecca5d9"}, @ptm_cap={0x3}]}, 0x3, [{0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x404}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0xc1a}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0xc04}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xa, {[@main=@item_4={0x3, 0x0, 0x8, "0100"}, @main=@item_4={0x3, 0x0, 0xa, "ad625814"}]}}, 0x0}, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x22002)

5.11885832s ago: executing program 2 (id=3101):
syz_open_dev$video4linux(&(0x7f0000000040), 0x5, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="a8b25e06772d372c5a7514d4aad17b0e366c230d50f22201649c6730f7145a80de46b0764bed7e684c5e2bc80ff990ade8611e6607d90ce7315db8aeba57ee2af5e97de9174fed1839258c5a6708cf14c09649edbdddf61311e5900791155998b96f8244658487c821cf38604db8beb1b41771a2be21db92ebac2549cbe7d9"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0x200000000000004f, &(0x7f0000000040)=ANY=[@ANYRES64], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

4.149758722s ago: executing program 0 (id=3102):
chdir(0x0)
sync()
socket(0x1, 0x800, 0x9)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0xa40c00, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000000100))
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0xfffffffffffffff5}, 0x50)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x40, 0x0, 0x0, 0xfffffffc}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x220000, 0x0)
munmap(&(0x7f0000952000/0x3000)=nil, 0x3000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000064000000060a010400000000000000000100000008000b40000000000900010073797a30000000003c0004803800018007000100"], 0xec}}, 0x0)
syz_emit_ethernet(0x38e, &(0x7f0000000980)={@local, @dev, @void, {@ipv6={0x86dd, @tipc_packet={0x8, 0x6, "803cbe", 0x358, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @local, {[@dstopts={0x87, 0x10, '\x00', [@padn, @pad1, @enc_lim={0x4, 0x1, 0x8}, @generic={0x0, 0x7b, "2e374f6db5dbd0ad60f2d88fa475a09b317306bd2479f197ce7034d2580c2c99b3b9a7217dd1ff824950e026763a3d4fd04cb23861713590ce15bcc10d138cb5821a1bc9fb38311142e09181cdf59bab38cfaac3eba27908dfeb11c0477be689372363d17618832d65d90e49812d5372a2d9b4573d1ec13a9ef5e7"}]}, @fragment={0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x67}, @hopopts={0x11, 0x2, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0xc, 0x5, [0x5]}}]}, @routing={0x2f, 0x6, 0x1, 0x2, 0x0, [@remote, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}, @srh={0x2f, 0x6, 0x4, 0x3, 0x3, 0x20, 0x9, [@loopback, @private1, @remote]}, @routing={0x2b, 0x6, 0x0, 0x7f, 0x0, [@rand_addr=' \x01\x00', @private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x23}]}, @hopopts={0x2c, 0x26, '\x00', [@hao={0xc9, 0x10, @remote}, @generic={0x3, 0x9, "7782cefc516006073b"}, @jumbo={0xc2, 0x4, 0x7}, @jumbo={0xc2, 0x4, 0xecd}, @generic={0xf2, 0xa7, "38c6ac45b2ae12376c464a1ba0ace099cd70830a363d7deaa82b51b6cec080652d0aa3bcc567d49a3b4c4970102ee0f24167b968e831f54c8a4337e734653be3457496bfcfef9a97b0efff162a679d3b2fa725873e12581aec3ffd08c9249acb37f1612ec5ab83b24a6be5d6d967190afdabaaa167f351cad7bf2ff78606621f7984e8b6b635283389fe942dc0bc1a2be982ea555f4e75e8494995a71ceb6616e5ea8e16fa4464"}, @generic={0x2, 0x57, "5d68a751046ee3ed1c8c1906200cc0516fb66d13320663cf47962a71feab544739e322eec0854874f7c39f0353d4ac422c00ec98cbee8e4b19f25c6da0c06f3577f6ddcc07e70d0b38047e14c78b246553b9f98cd38ed9"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @routing={0x2c, 0x4, 0x0, 0x4, 0x0, [@local, @local]}], @name_distributor={{0x98, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x4, 0x0, 0x3, 0x8, 0xc, 0x1, 0x4e22, 0x4e23, 0x1, 0x0, 0x0, 0x0, 0x1}, [{0x0, 0x1ff, 0x6, 0x6, 0x3, 0x9, 0xe, 0x8000}, {0x7c, 0x0, 0x1, 0x8, 0x1, 0x2, 0x9, 0x5}, {0x1, 0x2, 0x2, 0xa, 0xc778, 0xe24, 0x0, 0x114b}, {0x80, 0x5, 0x10000, 0x2, 0x9, 0x9, 0x3}]}}}}}}, 0x0)

3.950895463s ago: executing program 2 (id=3103):
r0 = socket(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'macvlan0\x00', <r1=>0x0})
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x0, 0x0, r1}, 0xc)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x691, 0x0, 0x0, 0xfffffffe]}}, 0x5c)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000007c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r4, @ANYBLOB="14000200fe8000000000000000000000000000aa140006000000000001f0ffff000000000001000014000100"], 0x54}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000060000000200"], 0x20}}, 0x0)

3.652619444s ago: executing program 2 (id=3104):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = open(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x8000003d)
lsetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
lsetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss={0x2, 0xfff}, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8}]}, 0x24}}, 0x0)

3.177176671s ago: executing program 3 (id=3063):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x9, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000440), &(0x7f0000000480)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f0000000100)}, 0x20) (fail_nth: 1)

3.01969613s ago: executing program 1 (id=3105):
socket$igmp(0x2, 0x3, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.idle_time\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x2)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
syz_emit_ethernet(0x66, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0xf, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @remote, {[@ra={0x94, 0x4}, @cipso={0x86, 0x24, 0x0, [{0x0, 0x10, "f79eb4cf48b5a5788fc15a45b5b1"}, {0x0, 0xe, "749018c9a54b61394327f115"}]}]}}}}}}}, 0x0)

2.708263137s ago: executing program 4 (id=3106):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r5 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f00000002c0)='./file1\x00', 0xc000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r5, &(0x7f0000000100)='./file1\x00', r5, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x0)

2.644247562s ago: executing program 1 (id=3107):
add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000300)={0x0, "f35075351c90c3ed5a4b8e2fa9e14a4b4a78a328bebff2005f39e2e5a9bc1ed91421fbb8a182e8f1de1ca5b46ff8c955666e1652f84536d3369cfa049f70352b", 0x2}, 0x48, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)=ANY=[@ANYBLOB="98000000e73611c223f7ab76f07114cb", @ANYRES16=r0, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB], 0x98}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x1a, &(0x7f0000000000)=0x6, 0x4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="60000000100001040100"/20, @ANYRES32=0x0, @ANYBLOB="7b130000000000003800128008000100677470002c00028008000100", @ANYRES32, @ANYBLOB="080003000800000008000100", @ANYRES32=r4], 0x60}}, 0x0)
close(r4)

2.59918933s ago: executing program 3 (id=3108):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x3f00, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.721860663s ago: executing program 4 (id=3109):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = open(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x8000003d)
lsetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
lsetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@known='user.incfs.size\x00', 0x0, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss={0x2, 0xfff}, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

682.188296ms ago: executing program 0 (id=3110):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x20d6, 0xcb17, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x1243, @fixed}, 0xe)
r2 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
r7 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r7, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c", 0x3}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)
sendmsg$rds(r6, &(0x7f0000001300)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000011c0)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x57}, &(0x7f0000000480)=[{&(0x7f0000000880)=""/87, 0x57}], 0x1, 0xe0ffffff}}], 0x48}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, 0x0, 0x0)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r8, &(0x7f0000000f40)={&(0x7f0000000740)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@mask_fadd={0x58, 0x114, 0x8, {{0x4}, 0x0, 0x0}}], 0x58}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r0, @ANYRES8=r0, @ANYRESHEX=r0, @ANYRES64=r0], 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)={0x40, 0x21, 0xbb, {0xbb, 0x21, "bfe1df2bf082782957818b618bdfcc0b4cb56709d023192506f33ca55b5a9d402a124263505f80357a16237d3d03a315f8347b5d63bc9c7445398368ae357777fdc2b36e955b9bf61cac0956a6cb37fbeb283565c61c7e9d65a029d64e796a773a3fd38ff153b406d50bdc52ccc981ac5d3e6f14f4eb6a04b247520c65ecb3d4353789a00f876bf31924ad7331c3c54089a7f662dbe0b32b2e93ce2ece1f952c85d283158f22f3f37f8bc4b9cfad1db4782e2aa8b21816088f"}}, &(0x7f0000000240)={0x0, 0x3, 0x101, @string={0x101, 0x3, "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"}}, &(0x7f0000000040)={0x0, 0xf, 0x2e, {0x5, 0xf, 0x2e, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x1a, 0x1, 0xf, 0x7}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x1, 0x1, 0x4}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0xf, 0x6, 0x400}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x2, 0x2, 0x1000}, @ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x7, 0x3, 0x2}]}}, &(0x7f00000001c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0xf9, 0x0, 0x9, 0x2a, "62e2918a", "5266e29b"}}, &(0x7f0000000380)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x3, 0x7, 0x2, 0x7, 0xe32, 0x1d48}}}, &(0x7f0000000880)={0x84, &(0x7f0000000400)={0x0, 0xe, 0xef, "d81399ec91737a1a276fc908fdd7a2e91d4ab174eed99125e1ae83c835c79412ebc424729fd00321308ad8f0f0a53e6766de240276f2811dd10b02d364a7151bd4a67940222a73ddc50b92349df94b47b40e751487c54cf3aa6aef92b796e897d2a6e9ad3ea5f651cb76e48624b091352d2e0d049df9ba4ba012aa9c108381e6595f8e2ac46aedb20e3ef4b16d90256066ff34d604d6cf37d820d2d91f13e44b3a540e977cf9cbafb22be9cf4c6f34b36ef28e85edce7b04bce55d9d9f03ceb17d006f45e7d456c609e75e3afbb75aa7e0f8ddcd8e341e43ce0bc37d2af501d4ccf66c05a8420fb9fa7b03f408ef99"}, &(0x7f0000000500)={0x0, 0xa, 0x1, 0x1}, &(0x7f0000000540)={0x0, 0x8, 0x1, 0x58}, &(0x7f0000000580)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000005c0)={0x20, 0x0, 0x4, {0x2, 0x4}}, &(0x7f0000000600)={0x40, 0x7, 0x2}, &(0x7f0000000640)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000000680)={0x40, 0xb, 0x2, "aa25"}, &(0x7f00000006c0)={0x40, 0xf, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}}, 0xfffffffffffffffd, &(0x7f0000000740)={0x40, 0x19, 0x2, "181e"}, &(0x7f0000000780)={0x40, 0x1a, 0x2, 0x7}, &(0x7f00000007c0)={0x40, 0x1c, 0x1}, &(0x7f0000000800)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000840)={0x40, 0x21, 0x1, 0x4}})

577.903285ms ago: executing program 1 (id=3111):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @func={0x4, 0x0, 0x0, 0xc, 0x2}]}}, 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}, @IFLA_XFRM_LINK={0x8, 0x1, 0x3}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x58}}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000407b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), r3)
sendmsg$BATADV_CMD_SET_HARDIF(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r4, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7ff}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x3}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40008000}, 0x81)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SCSI_IOCTL_GET_PCI(r6, 0x5385, &(0x7f0000000000))
write$binfmt_script(r3, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0)
r7 = socket(0x15, 0x5, 0x0)
bind$l2tp6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x20)

432.382294ms ago: executing program 3 (id=3112):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000004340)={0x6, 0x4, &(0x7f00000007c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd0}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'wg0\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r3, 0x25, 0x0, @val=@netfilter}, 0x40)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0xc)

377.775647ms ago: executing program 1 (id=3113):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000075f84c1071042703a461000000010902120001000000000904"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000100000011"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000780)={0x34, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x18000000000002a0, 0x1e, 0x0, &(0x7f00000011c0)="b9ffddc1ddc8cdde75537d07007e0d0000bf2dfe443b1b5e2a0800001000", 0x0, 0x600, 0x60000009, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff6ffc}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x54000002, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r2 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x81\x84\xb8\x92P\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r2, 0x0, 0x400000000000000, 0x7)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

343.06732ms ago: executing program 3 (id=3114):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000300)={<r2=>r1, 0x80000000, 0x8, 0x2})
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000340)={r2, r1}, 0xc)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="d9fa1761fef400"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff66c9}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x30000000}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x50, 0x6000000}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0xf1}, {0x7, 0x1, 0x2, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x3, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000001e00)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000a40)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12d1569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d", 0x80}, {&(0x7f0000000f00)="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", 0x149}, {&(0x7f0000000700)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd6c8461de7afec966f9c023ffe15c3c1c", 0xd9}, {&(0x7f0000000180)="fff5c0293353dbff0f8392718c8095fbc29ac956aabc8929dc44daa822ea8a760660b1f14b8875544c069e061289bccad9dafa30fe0e30e4e47919cdfbd921e215b4c89d69b7560660", 0x49}], 0x4}}], 0x1, 0x4000000)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
sendmmsg$inet(r0, &(0x7f0000001100)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001e80)="a475b3847befbdaf2c955ef3ab6e66a6dc2270053b304b224eea5cbf7d3c0b03c12c7d0ec5477c86172226422b9032a238cdb402c4a0a924c8285e3c4f7bb3fd0d01b2af8626216b776bf99347ddaaad57b486389d654c4ac5156c54021d367b046a7ef284b0b700db7a2b0f3d291220075cbcdcdd43f02272d6359673d2f9cc3aef5a1d244b55f2633bab444effbf57d9b4e9c9566048437b2c2b361900f2568a88ed49ffc318005ef36da8084c99481ca950770fdea707d9bd1899960fbf3135c5c835cccf083b7a8e07fbdf686598c520fa8edd550660353114f442273b0e4747610c2c880bf6c78aa1a321fc2f2d1d2ee593fc529c4a8e841faf504eb9806d347588a36f3b537d7dd6a0ed85c4853de8a43b42044b7beb939bcab17803014a2863411ed94911f17a37b44083bddd69bfeceaa8e1e8146b5080807c35cd073eed35686d5e77a527662fa9cd22f8a82b54755f299225d162c27ff95a30b862994c08f9c995e7e430f328e9dfcd9458229446718b8a38db454d1e1eddc652d238285d7098575ce21279470ce3d33b9f9f3cbd9ac9f1f031c83d87517512b0dd562690c1fb90152e7127bf3779bbadce6b9f856edae63fe7ad2941b4ed0d81a7dfa4f89b8d799b18b2c4a6b0a06ecf4069a6b072d007e418004cfaf133cd09a7e3bf73399ef5bec35be2067fbe6b9794291e10b7eaa456426046f88297ed21ae50096873f473f7fd23bec687d01e1a58395e450f1f1751cc629ad0445dd58aca1888943ef0ac30a475d0584424315bd00b0368570e28e4dda4428e1cdf79f0b059b92ea6d6dfce4d962b3ea8d7a8f2f9ae45c887acb9b6eaf0e0b9d0057ccb9d1dded9f04ee6415267c1b52a67c1d695850951432a15b836cf8cb3a526ebd05584a0a20bb907114ffd6c8f49af0f69", 0x28f}], 0x1}}], 0x1, 0x1)

0s ago: executing program 3 (id=3115):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000240)="4b8d7acda0b2", 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000800)=<r3=>0x0)
capset(&(0x7f0000000840)={0x19980330, r3}, &(0x7f0000000880)={0x6, 0x1, 0x3, 0x5, 0xb, 0xd})
r4 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_WATCH_KEY(0x20, r4, r2, 0x0)
write$cgroup_int(r2, &(0x7f0000000940)=0x7fffffffffffffff, 0x12)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000080)={0x0, <r6=>0x0, <r7=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r6)
sendmsg$nl_generic(r2, &(0x7f00000007c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000640)={&(0x7f0000000b40)={0x5b4, 0x30, 0x400, 0x70bd27, 0x25dfdbfb, {0xa}, [@nested={0xf9, 0xfe, 0x0, 0x1, [@generic="12b05121c3c4ed07a6477b064bed31ff2412c9acc4b0999f0c9f8b3295ecea0ab17e038f5285d16f2062ed480bf2d13535d6fcaba7fd945dc0f39804c7ee8e53d9dd7206ae2e8fb5faf31ee68ff720a801e1f46b45", @generic="bd40ad1d9a1bd9b85592d79449e86f62d9eceebca287b84fd25177e28109cab4951fbefcf8023b32e181e4a21304", @generic="39d72e1a3eb017466911bdd9ee860da7234b93f89f860dd9a9948dc5b0be685749", @generic="30be6b7dd6b8228e19b10d47bdbc4cf6b33df801d61e5accec7bf11e7fd04317e2822795e27b69d8aea285c2762ba03a92078ce93b98bc9c611b590475e65a2050125181", @generic="3ead5bc017", @typed={0x8, 0x90, 0x0, 0x0, @u32=0x2}]}, @nested={0x18b, 0x63, 0x0, 0x1, [@generic="9859d4094d69c501ca6680232e88c8bc2e0fb3762cb05ea3a0264015e63daab1530771a29d531e0ce40e390d50ad3738578e2ccf8eee3e81", @typed={0x8, 0xd1, 0x0, 0x0, @uid=r6}, @generic="d4a67d23c4201405fac2fb9bd9e02201e4469baa56c20b3bdf134205c7294dad6f23b1d2e80bc96ff659ace8e16e996797ea050df8ee05cae06637e2f943f04bbce58862d437f96d446169cc7111d0140cd7b5437fecb8158ba99116d11db04e713f0f8fc812f3b37d549f71b8e55d6d754e06fa49a6ad72b7a01c709baf74458325ff0ca275141f22278d7039d592fd018a2a80d537d0ff6922561941d30988", @generic="c20492bff68ed020de7927b1d749287b93a6bd2ae57a8e899ae1fed8e3ae3091d18f158139f1028614e13b2fa5177cb8432ee4572b2d1ddeb6b6dd08d9fed4afb784da57e5ec641c99d3fd17967600f24b951e4dd6b5bb2010a3e871e05c10c52d51abeb9afe36f05c19da9fab715a1c44cebc18e3e64acdb26505ccff7882ab8f2224868b1df5651488cfa824eae90b0fcd3acd4fab08e37a1a0443c6b3283be162e6a25dcbc0"]}, @typed={0x14, 0x59, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x98, 0x6e, 0x0, 0x1, [@generic="6bbcf3e9149605765bdcccd4ce65c35144babc837192fa7dad1f51d9e70ac1cec3a74f20ce313bb1e09219cf8f27b7c83bd7ac5b145c120a57edfb896816", @generic="7812e142ed01f682faa0846f894e9cd55ef7ddc2838175a6b210908c8db3f79f0e82d88f6c7405bd9d33d899b740fa1240a0a2ec91937d25810316870703b3c073a396a738a21093b2e6933e55e6d5993725167b6870"]}, @typed={0xc, 0xd7, 0x0, 0x0, @u64=0x4}, @generic="6d0e755c956b9c04f891230cf751d6399ef2ce84de637c306d6c11b6be5a92662890d9defe46526f49c9a24232560f553866c3a7550e576eebecaf7ebd73070fe613b4ff309e54d8f64dd73dad4b50cdaca274acfde55062f0f069f64f15fd4b76faa4c68070841c36c20528282dc5d89d3d5b1dfe2d9c2b1dd82ae582ba173fdeb2ea27", @typed={0x9, 0x8, 0x0, 0x0, @str='syz0\x00'}, @generic="2b2968eabf9a6de8417ea19c4c6c4a3092915e400512c3b2772306a23c4717dc3a30f8d07ca1fbb73efe45541310a9324cd4ef9a05ca3fa8edb9d96788837a7634e9921ea8a5563ae68670250ad9b576a0304f5eb755b7785335e4b7f578b04cc752b299d719f7b94c49ec772b37478261f33ce68998266806a7ff78e2a94cd8349da99fc43b80ba91c91fec62941a5a39476be66576de6dbe0d7d3dfb98194f87e03fa2357eec2ea30f1b7fc865b240e0cc49c044ebc4b2fb8111eaef", @nested={0xfa, 0xf9, 0x0, 0x1, [@typed={0x14, 0x14b, 0x0, 0x0, @ipv6=@remote}, @generic="d101179a2c95f953c55bacee3438faffa5ede964007848a16ee38c5320641cfee23c", @typed={0xa, 0x34, 0x0, 0x0, @str='match\x00'}, @generic="d53742dbddd49148052cadf4bc0c583f555fc69808b91dd2e691173a744b5df9cb886f35ada5f0cd7ae3c2ffcd08fb633078638785cf2c1e9acfd0a581153e34de8ed247f4ea0ca42fbf50d942c79e1dbbf764a127d15957d92602a1d2ba15ec5573d049c8584be8a9834700408c85ae0fd7eed6f9fa83bc71bf2046a112b8824c3869c71bce21c85107c2957ddf60052bc293db57fe994b0a1dc2a5e2167421ae94b8f83cc5f3329f4fa08cb2b8e54ceec2ce96"]}, @typed={0x14, 0x60, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x32}}]}, 0x5b4}, 0x1, 0x0, 0x0, 0x40840}, 0x40000)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
preadv(r0, &(0x7f0000000540)=[{&(0x7f0000000040)=""/153, 0x99}, {&(0x7f0000000100)=""/62, 0x3e}, {&(0x7f0000000440)=""/209, 0xd1}, {&(0x7f0000000340)=""/97, 0x61}, {&(0x7f0000000140)=""/52, 0x34}, {&(0x7f00000006c0)=""/220, 0xdc}], 0x6, 0x4, 0x3)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000280)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'udp\x00'}, @NFTA_MATCH_INFO={0xe, 0x3, "7acc6338a90000b03bd9"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5c}]}]}], {0x14}}, 0x98}}, 0x4)
r8 = msgget(0x0, 0x3d0)
msgctl$IPC_SET(r8, 0x1, &(0x7f00000008c0)={{0x1, r6, r7, r6, r7, 0x1d3, 0x2}, 0x0, 0x0, 0xc, 0x7fffffffffffffff, 0x1, 0x100000001, 0x8000000000000000, 0x1, 0x154, 0xcb, r3, r3})
syz_usb_connect(0x0, 0x26, &(0x7f0000000680)=ANY=[@ANYBLOB="12010000db93f310d80483001d9a010203010902140001000000400904000000020201"], 0x0)

kernel console output (not intermixed with test programs):

0
[ 1300.110579][T16088]  tcp_sendmsg+0x30/0x50
[ 1300.114841][T16088]  __sock_sendmsg+0xef/0x270
[ 1300.119450][T16088]  sock_write_iter+0x2d7/0x3f0
[ 1300.124237][T16088]  ? __pfx_sock_write_iter+0x10/0x10
[ 1300.129563][T16088]  do_iter_readv_writev+0x600/0x880
[ 1300.134788][T16088]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1300.140530][T16088]  ? bpf_lsm_file_permission+0x9/0x10
[ 1300.145921][T16088]  ? security_file_permission+0x74/0x280
[ 1300.151581][T16088]  ? rw_verify_area+0x1c3/0x6f0
[ 1300.156445][T16088]  vfs_writev+0x376/0xba0
[ 1300.160796][T16088]  ? __pfx_vfs_writev+0x10/0x10
[ 1300.165677][T16088]  ? fdget_pos+0x19a/0x320
[ 1300.170112][T16088]  do_writev+0x1b1/0x350
[ 1300.174397][T16088]  ? __pfx_do_writev+0x10/0x10
[ 1300.179199][T16088]  ? do_syscall_64+0x100/0x230
[ 1300.183985][T16088]  ? do_syscall_64+0xb6/0x230
[ 1300.188725][T16088]  do_syscall_64+0xf3/0x230
[ 1300.193257][T16088]  ? clear_bhb_loop+0x35/0x90
[ 1300.197969][T16088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.203907][T16088] RIP: 0033:0x7fd1ab37def9
[ 1300.208349][T16088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1300.227980][T16088] RSP: 002b:00007fd1ac1f1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1300.236421][T16088] RAX: ffffffffffffffda RBX: 00007fd1ab536130 RCX: 00007fd1ab37def9
[ 1300.244403][T16088] RDX: 0000000000000002 RSI: 0000000020002fc0 RDI: 0000000000000003
[ 1300.252392][T16088] RBP: 00007fd1ac1f1090 R08: 0000000000000000 R09: 0000000000000000
[ 1300.260377][T16088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1300.268363][T16088] R13: 0000000000000001 R14: 00007fd1ab536130 R15: 00007ffe6e493b78
[ 1300.276363][T16088]  </TASK>
[ 1300.330504][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.506314][ T9827] scsi host1: usb-storage 4-1:0.20
[ 1300.524698][ T9827] usb 4-1: USB disconnect, device number 45
[ 1300.816198][T16098] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2780'.
[ 1300.907686][T16100] FAULT_INJECTION: forcing a failure.
[ 1300.907686][T16100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1300.940809][T16100] CPU: 1 UID: 0 PID: 16100 Comm: syz.2.2781 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1300.951311][T16100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1300.961407][T16100] Call Trace:
[ 1300.964723][T16100]  <TASK>
[ 1300.967683][T16100]  dump_stack_lvl+0x241/0x360
[ 1300.972416][T16100]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1300.977666][T16100]  ? __pfx__printk+0x10/0x10
[ 1300.982307][T16100]  ? __pfx_lock_release+0x10/0x10
[ 1300.987389][T16100]  should_fail_ex+0x3b0/0x4e0
[ 1300.992116][T16100]  _copy_from_user+0x2f/0xe0
[ 1300.996750][T16100]  copy_msghdr_from_user+0xae/0x680
[ 1301.002002][T16100]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1301.007878][T16100]  __sys_sendmsg+0x22d/0x380
[ 1301.012519][T16100]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1301.017691][T16100]  ? __pfx_vfs_write+0x10/0x10
[ 1301.022532][T16100]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1301.028916][T16100]  ? do_syscall_64+0x100/0x230
[ 1301.033726][T16100]  ? do_syscall_64+0xb6/0x230
[ 1301.038440][T16100]  do_syscall_64+0xf3/0x230
[ 1301.042983][T16100]  ? clear_bhb_loop+0x35/0x90
[ 1301.047715][T16100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.053668][T16100] RIP: 0033:0x7fc74ff7def9
[ 1301.058117][T16100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1301.077766][T16100] RSP: 002b:00007fc750e15038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1301.086225][T16100] RAX: ffffffffffffffda RBX: 00007fc750135f80 RCX: 00007fc74ff7def9
[ 1301.094236][T16100] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[ 1301.102242][T16100] RBP: 00007fc750e15090 R08: 0000000000000000 R09: 0000000000000000
[ 1301.110248][T16100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1301.118255][T16100] R13: 0000000000000000 R14: 00007fc750135f80 R15: 00007ffd6b6b2928
[ 1301.126280][T16100]  </TASK>
[ 1301.265677][T10745] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[ 1301.351493][T16106] xt_ipcomp: unknown flags 12
[ 1301.451970][T10745] usb 1-1: Using ep0 maxpacket: 16
[ 1301.469863][T10745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1301.490097][T10745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1301.530194][T10745] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1301.550058][T14051] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1301.560298][T10745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1301.613252][T10745] usb 1-1: config 0 descriptor??
[ 1301.721810][T14051] usb 4-1: Using ep0 maxpacket: 32
[ 1301.739065][T14051] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1301.807395][T14051] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1301.818234][T14051] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1301.828685][T14051] usb 4-1: Product: syz
[ 1301.832944][T14051] usb 4-1: Manufacturer: syz
[ 1302.264169][T16118] netlink: 8280 bytes leftover after parsing attributes in process `syz.4.2787'.
[ 1302.295485][T16118] netlink: 8280 bytes leftover after parsing attributes in process `syz.4.2787'.
[ 1302.843181][T14051] usb 4-1: SerialNumber: syz
[ 1304.207362][T14051] usb 4-1: 2:1 : sample bitwidth 253 in over sample bytes 3
[ 1304.247754][T14051] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1304.341388][   T29] audit: type=1326 audit(1727204208.469:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16121 comm="syz.4.2788" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f425f17def9 code=0x0
[ 1304.373994][T14051] usb 4-1: USB disconnect, device number 46
[ 1304.397917][T10745] usbhid 1-1:0.0: can't add hid device: -71
[ 1304.405038][T10745] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1304.414962][T10745] usb 1-1: USB disconnect, device number 64
[ 1305.757285][T16138] block device autoloading is deprecated and will be removed.
[ 1305.767303][T16138] syz.3.2795: attempt to access beyond end of device
[ 1305.767303][T16138] md102: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1306.493289][T14106] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1306.646946][   T51] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[ 1306.689572][T14106] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1306.696589][T14106] usb 2-1: New USB device found, idVendor=0e41, idProduct=4150, bcdDevice=1f.c8
[ 1306.706276][T14106] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1306.892194][ T5268] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1306.901733][T14106] usb 2-1: config 0 descriptor??
[ 1306.916253][T14106] snd_usb_toneport 2-1:0.0: Line 6 POD Studio UX1 found
[ 1306.984997][   T51] usb 5-1: Using ep0 maxpacket: 32
[ 1306.998988][   T51] usb 5-1: config 0 has an invalid interface number: 35 but max is 0
[ 1307.007335][   T51] usb 5-1: config 0 has no interface number 0
[ 1307.017803][   T51] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[ 1307.031846][   T51] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1307.050613][   T51] usb 5-1: Product: syz
[ 1307.058153][   T51] usb 5-1: Manufacturer: syz
[ 1307.064931][   T51] usb 5-1: SerialNumber: syz
[ 1307.075897][   T51] usb 5-1: config 0 descriptor??
[ 1307.083502][ T5268] usb 4-1: New USB device found, idVendor=046d, idProduct=08b7, bcdDevice=ca.8e
[ 1307.098882][ T5268] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1307.124063][T14106] snd_usb_toneport 2-1:0.0: cannot get proper max packet size
[ 1307.136155][T14106] snd_usb_toneport 2-1:0.0: Line 6 POD Studio UX1 now disconnected
[ 1307.149747][T14106] snd_usb_toneport 2-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1307.179009][ T5268] pwc: Logitech ViewPort AV 100 webcam detected.
[ 1307.293692][T16148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1307.309956][T16148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1307.318899][T16148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1307.346101][T16159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1307.360795][T16148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1307.371849][T16159] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1307.423760][   T51] radio-si470x 5-1:0.35: this is not a si470x device.
[ 1307.466320][   T51] radio-raremono 5-1:0.35: this is not Thanko's Raremono.
[ 1307.497768][   T51] usb 5-1: USB disconnect, device number 48
[ 1307.509786][T10745] kernel write not supported for file /snd/seq (pid: 10745 comm: kworker/0:4)
[ 1307.605282][T16150] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2797'.
[ 1307.716749][ T5268] pwc: send_video_command error -71
[ 1307.728201][ T5268] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1307.740109][ T5268] Philips webcam 4-1:127.0: probe with driver Philips webcam failed with error -71
[ 1307.761924][ T5268] usb 4-1: USB disconnect, device number 47
[ 1307.855727][   T51] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[ 1308.028644][   T51] usb 5-1: Using ep0 maxpacket: 16
[ 1308.040835][   T51] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1308.062569][   T51] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1308.087662][   T51] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1308.105087][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1308.137574][   T51] usb 5-1: config 0 descriptor??
[ 1308.251945][   T29] audit: type=1326 audit(1727204212.303:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16172 comm="syz.2.2804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc74ff7def9 code=0x0
[ 1308.604950][    T9] usb 2-1: USB disconnect, device number 40
[ 1308.781870][T16164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1308.792656][T16164] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1308.848420][T16164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1308.859407][T16164] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1308.872216][   T51] usbhid 5-1:0.0: can't add hid device: -71
[ 1308.884343][   T51] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1308.896017][   T51] usb 5-1: USB disconnect, device number 49
[ 1309.077624][    T9] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1309.234456][    T9] usb 2-1: Using ep0 maxpacket: 16
[ 1309.251940][    T9] usb 2-1: config 1 has an invalid interface descriptor of length 7, skipping
[ 1309.262306][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1309.273038][    T9] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1309.284899][    T9] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1309.298082][    T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1309.316854][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1309.324995][    T9] usb 2-1: Product: syz
[ 1309.329540][    T9] usb 2-1: Manufacturer: syz
[ 1309.334550][    T9] usb 2-1: SerialNumber: syz
[ 1309.558832][T16179] Bluetooth: MGMT ver 1.23
[ 1309.604284][    T9] usb 2-1: USB disconnect, device number 41
[ 1311.962816][T16202] syz.0.2814: attempt to access beyond end of device
[ 1311.962816][T16202] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[ 1312.547583][T16213] netlink: 'syz.0.2817': attribute type 1 has an invalid length.
[ 1314.389760][T16228] netlink: 108 bytes leftover after parsing attributes in process `syz.0.2819'.
[ 1316.801751][T16250] fuse: Unknown parameter '0x00000000000000060x0000000000000007'
[ 1317.240778][T14106] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[ 1317.321511][    T9] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[ 1317.428308][T14106] usb 5-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice=51.8f
[ 1317.450726][T14106] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1317.490739][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 146, changing to 11
[ 1317.499706][T14106] usb 5-1: Product: syz
[ 1317.514492][T14106] usb 5-1: Manufacturer: syz
[ 1317.523962][T14106] usb 5-1: SerialNumber: syz
[ 1317.529047][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 33535, setting to 1024
[ 1317.536765][T14106] usb 5-1: config 0 descriptor??
[ 1317.720082][    T9] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1317.746762][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1318.069078][T14106] as10x_usb: device has been detected
[ 1318.075424][T14106] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[ 1318.721370][ T5230] Bluetooth: hci5: command 0x0406 tx timeout
[ 1318.910659][T16257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1318.934818][T14106] usb 5-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)...
[ 1318.938095][    T9] usb 1-1: config 0 descriptor??
[ 1318.997029][T14106] as10x_usb: error during firmware upload part1
[ 1319.004000][T14106] Registered device Elgato EyeTV DTT Deluxe
[ 1319.213488][T16257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1320.256524][T14106] usb 5-1: USB disconnect, device number 50
[ 1320.347778][T14106] Unregistered device Elgato EyeTV DTT Deluxe
[ 1320.361576][T14106] as10x_usb: device has been disconnected
[ 1321.721970][T16297] FAULT_INJECTION: forcing a failure.
[ 1321.721970][T16297] name failslab, interval 1, probability 0, space 0, times 0
[ 1321.796225][T16297] CPU: 0 UID: 0 PID: 16297 Comm: syz.0.2839 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1321.806729][T16297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1321.816828][T16297] Call Trace:
[ 1321.820146][T16297]  <TASK>
[ 1321.823110][T16297]  dump_stack_lvl+0x241/0x360
[ 1321.827845][T16297]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1321.833102][T16297]  ? __pfx__printk+0x10/0x10
[ 1321.837747][T16297]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1321.843335][T16297]  ? __pfx___might_resched+0x10/0x10
[ 1321.848668][T16297]  ? __lock_acquire+0x1384/0x2050
[ 1321.853744][T16297]  should_fail_ex+0x3b0/0x4e0
[ 1321.858473][T16297]  ? prepare_creds+0x31/0x640
[ 1321.863185][T16297]  should_failslab+0xac/0x100
[ 1321.867916][T16297]  ? prepare_creds+0x31/0x640
[ 1321.872634][T16297]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1321.878050][T16297]  prepare_creds+0x31/0x640
[ 1321.882594][T16297]  ? validate_chain+0x11e/0x5920
[ 1321.887572][T16297]  cap_task_prctl+0x980/0xbd0
[ 1321.892310][T16297]  security_task_prctl+0xdd/0x160
[ 1321.897372][T16297]  __se_sys_prctl+0x110/0x3a20
[ 1321.902177][T16297]  ? mark_lock+0x9a/0x360
[ 1321.906517][T16297]  ? __lock_acquire+0x1384/0x2050
[ 1321.911578][T16297]  ? _parse_integer_limit+0x1b5/0x200
[ 1321.916967][T16297]  ? mark_lock+0x9a/0x360
[ 1321.921309][T16297]  ? __lock_acquire+0x1384/0x2050
[ 1321.926368][T16297]  ? __pfx___se_sys_prctl+0x10/0x10
[ 1321.931598][T16297]  ? __pfx_lock_acquire+0x10/0x10
[ 1321.936642][T16297]  ? get_pid_task+0x23/0x1f0
[ 1321.941417][T16297]  ? __pfx_lock_release+0x10/0x10
[ 1321.946467][T16297]  ? kstrtouint_from_user+0x128/0x190
[ 1321.951909][T16297]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1321.957815][T16297]  ? ksys_write+0x229/0x2b0
[ 1321.962454][T16297]  ? __pfx_lock_release+0x10/0x10
[ 1321.967500][T16297]  ? vfs_write+0x7bf/0xc90
[ 1321.971929][T16297]  ? kmem_cache_free+0x1a2/0x420
[ 1321.976881][T16297]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1321.982531][T16297]  ? __pfx_vfs_write+0x10/0x10
[ 1321.987330][T16297]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1321.993347][T16297]  ? __fget_files+0x3f3/0x470
[ 1321.998071][T16297]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1322.004103][T16297]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1322.010482][T16297]  ? do_syscall_64+0x100/0x230
[ 1322.015270][T16297]  ? __x64_sys_prctl+0x20/0xc0
[ 1322.020058][T16297]  do_syscall_64+0xf3/0x230
[ 1322.024578][T16297]  ? clear_bhb_loop+0x35/0x90
[ 1322.029279][T16297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1322.035189][T16297] RIP: 0033:0x7fd1ab37def9
[ 1322.039620][T16297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1322.059249][T16297] RSP: 002b:00007fd1ac212038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[ 1322.067691][T16297] RAX: ffffffffffffffda RBX: 00007fd1ab536058 RCX: 00007fd1ab37def9
[ 1322.075676][T16297] RDX: 0000000000000000 RSI: 000000000000001d RDI: 000000000000001c
[ 1322.083659][T16297] RBP: 00007fd1ac212090 R08: 0000000000000000 R09: 0000000000000000
[ 1322.091642][T16297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1322.099624][T16297] R13: 0000000000000000 R14: 00007fd1ab536058 R15: 00007ffe6e493b78
[ 1322.107825][T16297]  </TASK>
[ 1322.162264][    T9] usbhid 1-1:0.0: can't add hid device: -71
[ 1322.168347][    T9] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1322.182441][    T9] usb 1-1: USB disconnect, device number 65
[ 1323.285115][T10090] Bluetooth: hci1: command 0x0405 tx timeout
[ 1324.822336][T16309] FAULT_INJECTION: forcing a failure.
[ 1324.822336][T16309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1325.951211][T16309] CPU: 0 UID: 0 PID: 16309 Comm: syz.3.2842 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1325.961694][T16309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1325.971803][T16309] Call Trace:
[ 1325.975124][T16309]  <TASK>
[ 1325.978084][T16309]  dump_stack_lvl+0x241/0x360
[ 1325.982824][T16309]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1325.988075][T16309]  ? __pfx__printk+0x10/0x10
[ 1325.992713][T16309]  ? __pfx_lock_release+0x10/0x10
[ 1325.997788][T16309]  should_fail_ex+0x3b0/0x4e0
[ 1326.002524][T16309]  _copy_from_user+0x2f/0xe0
[ 1326.007154][T16309]  copy_msghdr_from_user+0xae/0x680
[ 1326.012402][T16309]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1326.018267][T16309]  do_recvmmsg+0x3f9/0xad0
[ 1326.022734][T16309]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1326.027731][T16309]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1326.033667][T16309]  ? ksys_write+0x229/0x2b0
[ 1326.038204][T16309]  ? __pfx_lock_release+0x10/0x10
[ 1326.043283][T16309]  ? vfs_write+0x7bf/0xc90
[ 1326.047734][T16309]  ? kmem_cache_free+0x1a2/0x420
[ 1326.052721][T16309]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1326.058770][T16309]  __x64_sys_recvmmsg+0x199/0x250
[ 1326.063844][T16309]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1326.069421][T16309]  ? do_syscall_64+0x100/0x230
[ 1326.074201][T16309]  ? do_syscall_64+0xb6/0x230
[ 1326.078887][T16309]  do_syscall_64+0xf3/0x230
[ 1326.083401][T16309]  ? clear_bhb_loop+0x35/0x90
[ 1326.088094][T16309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1326.094000][T16309] RIP: 0033:0x7f8d9b17def9
[ 1326.098421][T16309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1326.118042][T16309] RSP: 002b:00007f8d9abde038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1326.126471][T16309] RAX: ffffffffffffffda RBX: 00007f8d9b336058 RCX: 00007f8d9b17def9
[ 1326.134451][T16309] RDX: 0000000000000001 RSI: 0000000020003c40 RDI: 0000000000000006
[ 1326.142427][T16309] RBP: 00007f8d9abde090 R08: 0000000000000000 R09: 0000000000000000
[ 1326.150407][T16309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1326.158410][T16309] R13: 0000000000000000 R14: 00007f8d9b336058 R15: 00007ffcc1689758
[ 1326.166411][T16309]  </TASK>
[ 1327.874508][    T9] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[ 1328.042040][    T9] usb 1-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1328.053504][    T9] usb 1-1: config 0 interface 0 altsetting 253 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1328.132562][    T9] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1328.148272][    T9] usb 1-1: New USB device found, idVendor=056a, idProduct=0035, bcdDevice= 0.00
[ 1328.176946][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1328.219066][    T9] usb 1-1: config 0 descriptor??
[ 1328.234985][T16342] syz.1.2849 (16342): drop_caches: 2
[ 1329.508221][    T9] wacom 0003:056A:0035.0013: hidraw0: USB HID v0.00 Device [HID 056a:0035] on usb-dummy_hcd.0-1/input0
[ 1330.402973][T10090] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1330.452735][T10090] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1330.477931][T10090] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1330.699958][   T51] usb 1-1: USB disconnect, device number 66
[ 1330.710580][T10090] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1330.721493][T10090] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1330.801231][T10090] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1330.813334][T16359] FAULT_INJECTION: forcing a failure.
[ 1330.813334][T16359] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.840995][T16359] CPU: 0 UID: 0 PID: 16359 Comm: syz.4.2855 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1330.851583][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1330.861684][T16359] Call Trace:
[ 1330.865004][T16359]  <TASK>
[ 1330.867965][T16359]  dump_stack_lvl+0x241/0x360
[ 1330.872704][T16359]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1330.877960][T16359]  ? __pfx__printk+0x10/0x10
[ 1330.882607][T16359]  ? fs_reclaim_acquire+0x93/0x140
[ 1330.887888][T16359]  ? __pfx___might_resched+0x10/0x10
[ 1330.893221][T16359]  should_fail_ex+0x3b0/0x4e0
[ 1330.897949][T16359]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1330.903711][T16359]  should_failslab+0xac/0x100
[ 1330.908441][T16359]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1330.914210][T16359]  __kmalloc_noprof+0xd8/0x400
[ 1330.919020][T16359]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1330.924621][T16359]  tomoyo_path_number_perm+0x23a/0x880
[ 1330.930133][T16359]  ? tomoyo_path_number_perm+0x208/0x880
[ 1330.935908][T16359]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1330.941983][T16359]  ? __fget_files+0x29/0x470
[ 1330.946634][T16359]  ? __fget_files+0x3f3/0x470
[ 1330.951368][T16359]  security_file_ioctl+0xc6/0x2a0
[ 1330.956463][T16359]  __se_sys_ioctl+0x47/0x170
[ 1330.961119][T16359]  do_syscall_64+0xf3/0x230
[ 1330.965673][T16359]  ? clear_bhb_loop+0x35/0x90
[ 1330.970399][T16359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.976338][T16359] RIP: 0033:0x7f425f17def9
[ 1330.980789][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1331.000443][T16359] RSP: 002b:00007f425ffe1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1331.008907][T16359] RAX: ffffffffffffffda RBX: 00007f425f336058 RCX: 00007f425f17def9
[ 1331.016916][T16359] RDX: 00000000200001c0 RSI: 000000008010500d RDI: 0000000000000003
[ 1331.024921][T16359] RBP: 00007f425ffe1090 R08: 0000000000000000 R09: 0000000000000000
[ 1331.032926][T16359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1331.040929][T16359] R13: 0000000000000001 R14: 00007f425f336058 R15: 00007ffc928372c8
[ 1331.048950][T16359]  </TASK>
[ 1331.080594][T16359] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1331.451462][T13802] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1332.472217][T13802] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1332.478907][T16378] FAULT_INJECTION: forcing a failure.
[ 1332.478907][T16378] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1332.821176][T16378] CPU: 1 UID: 0 PID: 16378 Comm: syz.3.2861 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1332.831766][T16378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1332.841881][T16378] Call Trace:
[ 1332.845174][T16378]  <TASK>
[ 1332.848111][T16378]  dump_stack_lvl+0x241/0x360
[ 1332.852813][T16378]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1332.858042][T16378]  ? __pfx__printk+0x10/0x10
[ 1332.862664][T16378]  ? __pfx_lock_release+0x10/0x10
[ 1332.867702][T16378]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1332.873359][T16378]  should_fail_ex+0x3b0/0x4e0
[ 1332.878050][T16378]  strncpy_from_user+0x36/0x250
[ 1332.882918][T16378]  __se_sys_add_key+0xd9/0x490
[ 1332.887702][T16378]  ? __pfx___se_sys_add_key+0x10/0x10
[ 1332.893122][T16378]  ? do_syscall_64+0x100/0x230
[ 1332.897897][T16378]  ? __x64_sys_add_key+0x20/0xc0
[ 1332.902954][T16378]  do_syscall_64+0xf3/0x230
[ 1332.907470][T16378]  ? clear_bhb_loop+0x35/0x90
[ 1332.912169][T16378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.918090][T16378] RIP: 0033:0x7f8d9b17def9
[ 1332.922539][T16378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1332.942174][T16378] RSP: 002b:00007f8d9abff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[ 1332.950616][T16378] RAX: ffffffffffffffda RBX: 00007f8d9b335f80 RCX: 00007f8d9b17def9
[ 1332.958604][T16378] RDX: 0000000020000a80 RSI: 0000000000000000 RDI: 0000000020001380
[ 1332.966578][T16378] RBP: 00007f8d9abff090 R08: 000000001084d8db R09: 0000000000000000
[ 1332.974594][T16378] R10: 00000000000005c1 R11: 0000000000000246 R12: 0000000000000001
[ 1332.982567][T16378] R13: 0000000000000000 R14: 00007f8d9b335f80 R15: 00007ffcc1689758
[ 1332.990553][T16378]  </TASK>
[ 1333.164389][T13802] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1333.483387][T10090] Bluetooth: hci4: command tx timeout
[ 1334.397122][T13802] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1335.036340][T13802] bridge_slave_1: left allmulticast mode
[ 1335.069018][T13802] bridge_slave_1: left promiscuous mode
[ 1335.095745][T13802] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1335.134281][T13802] bridge_slave_0: left allmulticast mode
[ 1335.157257][T13802] bridge_slave_0: left promiscuous mode
[ 1335.165068][T13802] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1335.601745][T10090] Bluetooth: hci4: command tx timeout
[ 1336.120702][T13802] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1336.132646][T13802] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1336.144848][T13802] bond0 (unregistering): Released all slaves
[ 1336.158994][T16353] chnl_net:caif_netlink_parms(): no params data found
[ 1336.164643][T10745] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1336.203754][   T51] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[ 1336.324396][T10745] usb 4-1: Using ep0 maxpacket: 16
[ 1336.331534][T10745] usb 4-1: config 1 has an invalid interface descriptor of length 7, skipping
[ 1336.352509][T10745] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1336.383398][T10745] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1336.395118][T10745] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1336.406261][   T51] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1336.412743][T10745] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1336.432108][T10745] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1336.435753][   T51] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1336.440620][T10745] usb 4-1: Product: syz
[ 1336.457716][   T51] usb 5-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[ 1336.465043][T10745] usb 4-1: Manufacturer: syz
[ 1336.467184][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1336.478692][T10745] usb 4-1: SerialNumber: syz
[ 1336.485407][   T51] usb 5-1: config 0 descriptor??
[ 1336.513611][T16353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1336.525664][T16353] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1336.533349][T16353] bridge_slave_0: entered allmulticast mode
[ 1336.545000][T16353] bridge_slave_0: entered promiscuous mode
[ 1336.554606][T16353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1336.562108][T16353] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1336.569828][T16353] bridge_slave_1: entered allmulticast mode
[ 1336.579090][T16353] bridge_slave_1: entered promiscuous mode
[ 1336.632471][T16353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1336.650657][T16353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1336.676804][T14051] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 1336.700660][T13802] hsr_slave_0: left promiscuous mode
[ 1336.707264][T13802] hsr_slave_1: left promiscuous mode
[ 1336.729617][T13802] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1336.755933][T13802] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1336.758767][T10745] usb 4-1: USB disconnect, device number 48
[ 1336.793579][T13802] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1336.803876][T13802] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1336.813302][   T51] usbhid 5-1:0.0: can't add hid device: -71
[ 1336.823241][   T51] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1336.845872][T13802] veth1_macvtap: left promiscuous mode
[ 1336.853748][   T51] usb 5-1: USB disconnect, device number 51
[ 1336.865522][T13802] veth1_vlan: left promiscuous mode
[ 1336.868249][T14051] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1336.877345][T13802] veth0_vlan: left promiscuous mode
[ 1336.887081][T14051] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1336.898437][T14051] usb 1-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[ 1336.907734][T14051] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1336.924105][T14051] usb 1-1: config 0 descriptor??
[ 1337.027271][    T8] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1337.197757][    T8] usb 2-1: Using ep0 maxpacket: 16
[ 1337.216598][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1337.231967][    T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1337.274530][    T8] usb 2-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[ 1337.296852][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1337.327473][    T8] usb 2-1: config 0 descriptor??
[ 1337.659371][T10090] Bluetooth: hci4: command tx timeout
[ 1337.765328][    T8] ortek 0003:1223:3F07.0014: unknown main item tag 0x6
[ 1337.775719][T13802] team0 (unregistering): Port device team_slave_1 removed
[ 1337.784221][    T8] ortek 0003:1223:3F07.0014: report_id 29495 is invalid
[ 1337.792426][    T8] ortek 0003:1223:3F07.0014: item 0 2 1 8 parsing failed
[ 1337.801378][    T8] ortek 0003:1223:3F07.0014: probe with driver ortek failed with error -22
[ 1337.875072][T13802] team0 (unregistering): Port device team_slave_0 removed
[ 1337.987526][    T8] usb 2-1: USB disconnect, device number 42
[ 1339.016834][T14051] usbhid 1-1:0.0: can't add hid device: -71
[ 1339.046484][T14051] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1339.049491][T16353] team0: Port device team_slave_0 added
[ 1339.082688][T14051] usb 1-1: USB disconnect, device number 67
[ 1339.098754][T16353] team0: Port device team_slave_1 added
[ 1339.228853][T16353] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1339.256594][T16353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1339.386817][T16353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1339.426981][T16353] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1339.442928][T16353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1339.475255][T16353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1339.509321][T16445] netlink: 'syz.3.2881': attribute type 20 has an invalid length.
[ 1339.620736][T10090] Bluetooth: hci5: unexpected event for opcode 0x0c22
[ 1339.706302][T16353] hsr_slave_0: entered promiscuous mode
[ 1339.712798][T16353] hsr_slave_1: entered promiscuous mode
[ 1339.755527][T10090] Bluetooth: hci4: command tx timeout
[ 1339.875774][   T51] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 1339.928193][    T8] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 1339.935943][T14051] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1340.120188][   T51] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1340.140030][   T51] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10175, setting to 1024
[ 1340.162623][   T51] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[ 1340.181628][   T51] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1340.198104][   T51] usb 4-1: config 0 descriptor??
[ 1340.214882][T16446] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1340.296953][    T8] usb 1-1: Using ep0 maxpacket: 8
[ 1340.308176][T14051] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1340.324782][T14051] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1340.336427][    T8] usb 1-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[ 1340.346948][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1340.356450][    T8] usb 1-1: Product: syz
[ 1340.361539][T14051] usb 2-1: config 0 descriptor??
[ 1340.366998][    T8] usb 1-1: Manufacturer: syz
[ 1340.371906][    T8] usb 1-1: SerialNumber: syz
[ 1340.452951][    T8] usb 1-1: config 0 descriptor??
[ 1340.735665][T14051] cp210x 2-1:0.0: cp210x converter detected
[ 1340.868324][    T8] usb 1-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[ 1341.252249][   T51] lg-g15 0003:046D:C222.0015: unknown main item tag 0x0
[ 1341.259330][   T51] lg-g15 0003:046D:C222.0015: item fetching failed at offset 9/11
[ 1341.268539][   T51] lg-g15 0003:046D:C222.0015: probe with driver lg-g15 failed with error -22
[ 1341.274952][T16353] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1341.336610][T14051] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71
[ 1341.348910][T16353] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1341.366352][T14051] cp210x 2-1:0.0: GPIO initialisation failed: -71
[ 1341.375135][T14051] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1341.386983][    T9] usb 4-1: USB disconnect, device number 49
[ 1341.404324][T14051] usb 2-1: USB disconnect, device number 43
[ 1341.417771][T14051] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1341.443029][T14051] cp210x 2-1:0.0: device disconnected
[ 1341.466602][T16353] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1341.498059][T16353] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1341.703749][T16353] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1341.730268][T16353] 8021q: adding VLAN 0 to HW filter on device team0
[ 1341.758376][ T6207] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1341.765756][ T6207] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1341.803645][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1341.810898][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1342.147296][T16353] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1342.238243][T16353] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1343.068115][T16475] sg_write: process 217 (syz.4.2890) changed security contexts after opening file descriptor, this is not allowed.
[ 1343.095026][T16475] program syz.4.2890 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1343.142776][T16353] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1343.227817][T16353] veth0_vlan: entered promiscuous mode
[ 1343.278534][T16353] veth1_vlan: entered promiscuous mode
[ 1343.285034][T16484] FAULT_INJECTION: forcing a failure.
[ 1343.285034][T16484] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1343.309784][T16484] CPU: 1 UID: 0 PID: 16484 Comm: syz.1.2892 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1343.320278][T16484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1343.330342][T16484] Call Trace:
[ 1343.333622][T16484]  <TASK>
[ 1343.336555][T16484]  dump_stack_lvl+0x241/0x360
[ 1343.341252][T16484]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1343.346462][T16484]  ? __pfx__printk+0x10/0x10
[ 1343.351070][T16484]  ? __pfx_lock_release+0x10/0x10
[ 1343.356110][T16484]  ? do_sys_openat2+0x17a/0x1d0
[ 1343.360965][T16484]  should_fail_ex+0x3b0/0x4e0
[ 1343.365658][T16484]  _copy_from_user+0x2f/0xe0
[ 1343.370257][T16484]  __se_sys_io_pgetevents+0x117/0x4a0
[ 1343.375654][T16484]  ? __pfx___se_sys_io_pgetevents+0x10/0x10
[ 1343.381565][T16484]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1343.388004][T16484]  ? do_syscall_64+0x100/0x230
[ 1343.392784][T16484]  ? __x64_sys_io_pgetevents+0x21/0xf0
[ 1343.398256][T16484]  do_syscall_64+0xf3/0x230
[ 1343.402762][T16484]  ? clear_bhb_loop+0x35/0x90
[ 1343.407452][T16484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1343.413355][T16484] RIP: 0033:0x7fa70e77def9
[ 1343.417785][T16484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1343.437408][T16484] RSP: 002b:00007fa70f54a038 EFLAGS: 00000246 ORIG_RAX: 000000000000014d
[ 1343.445839][T16484] RAX: ffffffffffffffda RBX: 00007fa70e935f80 RCX: 00007fa70e77def9
[ 1343.453826][T16484] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000
[ 1343.461811][T16484] RBP: 00007fa70f54a090 R08: 0000000000000000 R09: 0000000020000280
[ 1343.469798][T16484] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001
[ 1343.477782][T16484] R13: 0000000000000000 R14: 00007fa70e935f80 R15: 00007fff8982e8d8
[ 1343.485776][T16484]  </TASK>
[ 1343.541492][T16353] veth0_macvtap: entered promiscuous mode
[ 1343.551087][T16353] veth1_macvtap: entered promiscuous mode
[ 1343.573582][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.604578][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.632514][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.649390][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.664614][    T8] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1343.675650][    T8] dvbdev: DVB: registering new adapter (Terratec H7)
[ 1343.682512][    T8] usb 1-1: media controller created
[ 1343.713384][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.929262][    T8] usb read operation failed. (-71)
[ 1343.939194][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.952171][    T8] dvb_usb_az6007 1-1:0.0: probe with driver dvb_usb_az6007 failed with error -5
[ 1343.961374][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.961491][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.961644][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1344.008619][    T8] usb 1-1: USB disconnect, device number 68
[ 1344.025373][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.035715][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1344.048615][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.104590][T16353] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1344.155341][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1344.187015][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.221001][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1344.256035][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.269621][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1344.283477][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.293860][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1344.304713][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.315724][T16353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1344.326452][T16353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.349574][T16353] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1344.370040][T16494] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2894'.
[ 1344.414684][T16494] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.441927][T16353] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.485274][T16353] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.496109][T16353] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.506522][T16353] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.795415][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1344.817980][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1345.130480][   T51] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[ 1345.648636][T16503] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2896'.
[ 1345.792079][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1345.810063][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1345.820334][   T51] usb 5-1: device descriptor read/64, error -71
[ 1346.285331][ T9827] usb 1-1: new high-speed USB device number 69 using dummy_hcd
[ 1346.295172][   T51] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1346.322323][T16519] netlink: 8280 bytes leftover after parsing attributes in process `syz.2.2852'.
[ 1346.334783][T16519] netlink: 8280 bytes leftover after parsing attributes in process `syz.2.2852'.
[ 1346.511358][ T9827] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1347.072093][ T9827] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1347.115454][ T9827] usb 1-1: config 0 descriptor??
[ 1347.126451][T16522] FAULT_INJECTION: forcing a failure.
[ 1347.126451][T16522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1347.139777][T16522] CPU: 1 UID: 0 PID: 16522 Comm: syz.2.2900 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1347.150255][T16522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1347.160361][T16522] Call Trace:
[ 1347.163677][T16522]  <TASK>
[ 1347.166644][T16522]  dump_stack_lvl+0x241/0x360
[ 1347.171388][T16522]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1347.176638][T16522]  ? __pfx__printk+0x10/0x10
[ 1347.181286][T16522]  ? __pfx_lock_release+0x10/0x10
[ 1347.186370][T16522]  ? __lock_acquire+0x1384/0x2050
[ 1347.191454][T16522]  should_fail_ex+0x3b0/0x4e0
[ 1347.196175][T16522]  _copy_from_user+0x2f/0xe0
[ 1347.200871][T16522]  do_ipv6_setsockopt+0x2f1/0x3630
[ 1347.206011][T16522]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1347.211577][T16522]  ? __pfx_lock_acquire+0x10/0x10
[ 1347.216716][T16522]  ? get_pid_task+0x23/0x1f0
[ 1347.221316][T16522]  ? __pfx_lock_release+0x10/0x10
[ 1347.226359][T16522]  ? kstrtouint_from_user+0x128/0x190
[ 1347.231755][T16522]  ? mark_lock+0x9a/0x360
[ 1347.236100][T16522]  ? __lock_acquire+0x1384/0x2050
[ 1347.241163][T16522]  ? __pfx_lock_acquire+0x10/0x10
[ 1347.246211][T16522]  ipv6_setsockopt+0x5d/0x170
[ 1347.250912][T16522]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1347.256838][T16522]  do_sock_setsockopt+0x3af/0x720
[ 1347.261877][T16522]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1347.267432][T16522]  ? __fget_files+0x29/0x470
[ 1347.272039][T16522]  ? __fget_files+0x3f3/0x470
[ 1347.276729][T16522]  ? __fget_files+0x29/0x470
[ 1347.281336][T16522]  __sys_setsockopt+0x1a2/0x250
[ 1347.286227][T16522]  __x64_sys_setsockopt+0xb5/0xd0
[ 1347.291268][T16522]  do_syscall_64+0xf3/0x230
[ 1347.295788][T16522]  ? clear_bhb_loop+0x35/0x90
[ 1347.300490][T16522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1347.306404][T16522] RIP: 0033:0x7fc64437def9
[ 1347.310831][T16522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1347.330447][T16522] RSP: 002b:00007fc6450ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1347.338963][T16522] RAX: ffffffffffffffda RBX: 00007fc644535f80 RCX: 00007fc64437def9
[ 1347.346945][T16522] RDX: 0000000000000015 RSI: 0000000000000029 RDI: 0000000000000005
[ 1347.354924][T16522] RBP: 00007fc6450ee090 R08: 000000000000003d R09: 0000000000000000
[ 1347.362904][T16522] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[ 1347.370888][T16522] R13: 0000000000000000 R14: 00007fc644535f80 R15: 00007ffea0cb4f68
[ 1347.378884][T16522]  </TASK>
[ 1347.402026][ T9827] cp210x 1-1:0.0: cp210x converter detected
[ 1347.513075][   T51] usb 5-1: device descriptor read/64, error -71
[ 1347.623632][   T51] usb usb5-port1: attempt power cycle
[ 1347.743959][T14051] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1347.909916][T14051] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1347.956164][T14051] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1347.991698][T14051] usb 2-1: config 0 descriptor??
[ 1348.003951][ T9827] cp210x 1-1:0.0: failed to get vendor val 0x000e size 678: -71
[ 1348.012051][ T9827] cp210x 1-1:0.0: GPIO initialisation failed: -71
[ 1348.022138][ T9827] usb 1-1: cp210x converter now attached to ttyUSB0
[ 1348.052505][ T9827] usb 1-1: USB disconnect, device number 69
[ 1348.071038][T14051] cp210x 2-1:0.0: cp210x converter detected
[ 1348.163677][ T9827] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1348.175559][ T9827] cp210x 1-1:0.0: device disconnected
[ 1348.702077][T14051] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71
[ 1348.712216][T14051] cp210x 2-1:0.0: GPIO initialisation failed: -71
[ 1348.732942][T14051] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1348.744718][T14051] usb 2-1: USB disconnect, device number 44
[ 1348.775596][T14051] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1348.795379][T14051] cp210x 2-1:0.0: device disconnected
[ 1349.919480][T16547] bridge1: entered promiscuous mode
[ 1350.013666][T16547] bridge1: entered allmulticast mode
[ 1350.113826][T16558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2914'.
[ 1350.194148][T16563] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2914'.
[ 1350.338008][T14051] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[ 1350.636216][T14051] usb 5-1: Using ep0 maxpacket: 32
[ 1351.047091][T14051] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1351.379741][T14051] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1351.428774][T14051] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1351.605038][T14051] usb 5-1: Product: syz
[ 1351.609303][T14051] usb 5-1: Manufacturer: syz
[ 1351.613902][T14051] usb 5-1: SerialNumber: syz
[ 1351.620042][T14051] usb 5-1: config 0 descriptor??
[ 1351.625759][T16555] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1351.856241][    T8] usb 5-1: USB disconnect, device number 55
[ 1352.989704][T16598] FAULT_INJECTION: forcing a failure.
[ 1352.989704][T16598] name failslab, interval 1, probability 0, space 0, times 0
[ 1353.002778][T16598] CPU: 1 UID: 0 PID: 16598 Comm: syz.4.2927 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1353.013256][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1353.023356][T16598] Call Trace:
[ 1353.026672][T16598]  <TASK>
[ 1353.029640][T16598]  dump_stack_lvl+0x241/0x360
[ 1353.034463][T16598]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1353.039713][T16598]  ? __pfx__printk+0x10/0x10
[ 1353.044353][T16598]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1353.049949][T16598]  ? __pfx___might_resched+0x10/0x10
[ 1353.055301][T16598]  should_fail_ex+0x3b0/0x4e0
[ 1353.060033][T16598]  ? getname_flags+0xb7/0x540
[ 1353.064775][T16598]  should_failslab+0xac/0x100
[ 1353.069590][T16598]  ? getname_flags+0xb7/0x540
[ 1353.074316][T16598]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1353.079729][T16598]  getname_flags+0xb7/0x540
[ 1353.084273][T16598]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1353.090300][T16598]  user_path_at+0x24/0x60
[ 1353.094666][T16598]  __se_sys_name_to_handle_at+0x119/0x8b0
[ 1353.100428][T16598]  ? __pfx___se_sys_name_to_handle_at+0x10/0x10
[ 1353.106876][T16598]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1353.112899][T16598]  ? do_syscall_64+0x100/0x230
[ 1353.117721][T16598]  ? __x64_sys_name_to_handle_at+0x20/0xc0
[ 1353.123643][T16598]  do_syscall_64+0xf3/0x230
[ 1353.128168][T16598]  ? clear_bhb_loop+0x35/0x90
[ 1353.132913][T16598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1353.138828][T16598] RIP: 0033:0x7f425f17def9
[ 1353.143254][T16598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1353.162968][T16598] RSP: 002b:00007f4260002038 EFLAGS: 00000246 ORIG_RAX: 000000000000012f
[ 1353.171578][T16598] RAX: ffffffffffffffda RBX: 00007f425f335f80 RCX: 00007f425f17def9
[ 1353.179571][T16598] RDX: 0000000020000140 RSI: 0000000020000100 RDI: ffffffffffffff9c
[ 1353.187575][T16598] RBP: 00007f4260002090 R08: 0000000000000600 R09: 0000000000000000
[ 1353.195704][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1353.203785][T16598] R13: 0000000000000000 R14: 00007f425f335f80 R15: 00007ffc928372c8
[ 1353.211785][T16598]  </TASK>
[ 1353.313965][    T9] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1353.613594][    T9] usb 2-1: config 0 has no interfaces?
[ 1353.619514][    T9] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1353.656498][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1353.775788][    T9] usb 2-1: config 0 descriptor??
[ 1354.893181][    T8] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[ 1355.024704][ T5319] usb 2-1: USB disconnect, device number 45
[ 1355.055162][    T8] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1355.073430][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1355.095925][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1355.108740][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1355.121970][    T8] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1355.131370][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1355.151132][    T8] usb 5-1: config 0 descriptor??
[ 1355.157417][T16608] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1355.523993][ T5319] usb 4-1: new full-speed USB device number 50 using dummy_hcd
[ 1356.393984][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.404770][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.419877][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.428891][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.447287][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.456216][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.463760][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1356.495624][ T5319] usb 4-1: config 7 has an invalid interface number: 129 but max is 3
[ 1356.716921][T16646] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2940'.
[ 1356.726518][T16646] openvswitch: netlink: IP tunnel attribute has 3036 unknown bytes.
[ 1357.057249][ T5319] usb 4-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1357.073707][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.091550][ T5319] usb 4-1: config 7 has 2 interfaces, different from the descriptor's value: 4
[ 1357.100901][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.131395][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.144444][ T5319] usb 4-1: config 7 has no interface number 0
[ 1357.185522][ T5319] usb 4-1: config 7 has no interface number 1
[ 1357.192342][ T5319] usb 4-1: config 7 interface 129 altsetting 15 has a duplicate endpoint with address 0xF, skipping
[ 1357.205487][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.212931][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.245604][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.253716][ T5319] usb 4-1: config 7 interface 129 altsetting 15 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1357.275579][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.283543][ T5319] usb 4-1: config 7 interface 3 altsetting 24 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[ 1357.317421][    T8] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[ 1357.346237][    T8] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[ 1357.358127][ T5319] usb 4-1: config 7 interface 3 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1357.411782][    T8] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1357.427952][ T5319] usb 4-1: config 7 interface 129 has no altsetting 0
[ 1357.443441][ T5319] usb 4-1: config 7 interface 3 has no altsetting 0
[ 1357.468401][    T8] usb 5-1: USB disconnect, device number 56
[ 1357.507259][ T5319] usb 4-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=78.c6
[ 1357.528294][ T5319] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1357.546615][T16653] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2943'.
[ 1357.585940][ T5319] usb 4-1: Product: syz
[ 1357.604852][ T5319] usb 4-1: Manufacturer: syz
[ 1357.624784][ T5319] usb 4-1: SerialNumber: syz
[ 1358.003184][T16668] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2945'.
[ 1358.901385][ T5319] usb 4-1: USB disconnect, device number 50
[ 1359.342151][T16633] coredump: 223(syz.3.2937): written to core: VMAs: 34, size 97419264; core: 60015558 bytes, pos 97427456
[ 1362.042137][T16705] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2959'.
[ 1362.066132][T16705] netlink: 'syz.2.2959': attribute type 10 has an invalid length.
[ 1362.105533][T16705] 8021q: adding VLAN 0 to HW filter on device team0
[ 1362.114978][T16705] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1362.129254][T16709] netlink: 'syz.2.2959': attribute type 10 has an invalid length.
[ 1362.149587][   T51] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1362.150287][T16707] overlayfs: missing 'workdir'
[ 1362.168898][T16709] bond0: (slave team0): Releasing backup interface
[ 1362.196024][T16709] bridge0: port 3(team0) entered blocking state
[ 1362.282853][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.306020][   T51] usb 2-1: too many configurations: 9, using maximum allowed: 8
[ 1362.381780][T16709] bridge0: port 3(team0) entered disabled state
[ 1362.432708][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1362.556855][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1362.592695][T16709] team0: entered allmulticast mode
[ 1362.680778][T16709] team_slave_0: entered allmulticast mode
[ 1362.736590][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1362.775258][T16709] team_slave_1: entered allmulticast mode
[ 1362.851681][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.028671][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.041863][T16709] team0: entered promiscuous mode
[ 1363.046967][T16709] team_slave_0: entered promiscuous mode
[ 1363.083385][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.120954][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.139568][T16709] team_slave_1: entered promiscuous mode
[ 1363.252306][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.263465][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.517870][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.527109][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.538635][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.546518][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.555532][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.566480][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.587194][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.596322][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.610597][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.630933][T10745] usb 1-1: new high-speed USB device number 70 using dummy_hcd
[ 1363.631095][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.679935][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.714051][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.734655][   T51] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1363.743758][   T51] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1363.769417][   T51] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1363.796227][   T51] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1363.802982][T10745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1363.807629][   T51] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1363.827156][T10745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1363.840243][T10745] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1363.859261][T10745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1363.862816][   T51] usb 2-1: Product: syz
[ 1363.870227][T10745] usb 1-1: config 0 descriptor??
[ 1363.894550][   T51] usb 2-1: Manufacturer: syz
[ 1363.899513][   T51] usb 2-1: SerialNumber: syz
[ 1363.920724][ T5267] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[ 1363.950542][   T51] usb 2-1: config 0 descriptor??
[ 1363.962633][   T51] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0
[ 1364.135734][ T5267] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1364.253349][ T5267] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1364.347648][ T5267] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1364.421232][ T5267] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1364.496936][   T51] usb 2-1: USB disconnect, device number 46
[ 1364.618750][T10745] keytouch 0003:0926:3333.0017: fixing up Keytouch IEC report descriptor
[ 1364.621231][ T5267] usb 5-1: config 0 descriptor??
[ 1364.636295][   T51] yurex 2-1:0.0: USB YUREX #0 now disconnected
[ 1364.717753][T10745] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0017/input/input20
[ 1364.855953][T10745] keytouch 0003:0926:3333.0017: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[ 1364.902625][T16737] FAULT_INJECTION: forcing a failure.
[ 1364.902625][T16737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1364.938519][T10745] usb 1-1: USB disconnect, device number 70
[ 1364.945578][T16737] CPU: 1 UID: 0 PID: 16737 Comm: syz.2.2970 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1364.956066][T16737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1364.966177][T16737] Call Trace:
[ 1364.969492][T16737]  <TASK>
[ 1364.972454][T16737]  dump_stack_lvl+0x241/0x360
[ 1364.977275][T16737]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1364.982608][T16737]  ? __pfx__printk+0x10/0x10
[ 1364.987250][T16737]  ? __pfx_lock_release+0x10/0x10
[ 1364.992331][T16737]  should_fail_ex+0x3b0/0x4e0
[ 1364.997052][T16737]  _copy_from_user+0x2f/0xe0
[ 1365.001777][T16737]  ucma_write+0x17d/0x420
[ 1365.006159][T16737]  ? __import_iovec+0x361/0x820
[ 1365.011062][T16737]  ? __pfx_ucma_write+0x10/0x10
[ 1365.015961][T16737]  ? bpf_lsm_file_permission+0x9/0x10
[ 1365.021393][T16737]  ? security_file_permission+0x74/0x280
[ 1365.027079][T16737]  ? rw_verify_area+0x1c3/0x6f0
[ 1365.031984][T16737]  vfs_writev+0x5a9/0xba0
[ 1365.036355][T16737]  ? __pfx_ucma_write+0x10/0x10
[ 1365.041251][T16737]  ? __pfx_vfs_writev+0x10/0x10
[ 1365.046243][T16737]  ? fdget_pos+0x19a/0x320
[ 1365.050711][T16737]  do_writev+0x1b1/0x350
[ 1365.054995][T16737]  ? __pfx_do_writev+0x10/0x10
[ 1365.059790][T16737]  ? do_syscall_64+0x100/0x230
[ 1365.064589][T16737]  ? do_syscall_64+0xb6/0x230
[ 1365.069301][T16737]  do_syscall_64+0xf3/0x230
[ 1365.073860][T16737]  ? clear_bhb_loop+0x35/0x90
[ 1365.078676][T16737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1365.084714][T16737] RIP: 0033:0x7fc64437def9
[ 1365.089164][T16737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1365.109163][T16737] RSP: 002b:00007fc6450ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1365.117631][T16737] RAX: ffffffffffffffda RBX: 00007fc644535f80 RCX: 00007fc64437def9
[ 1365.125749][T16737] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000005
[ 1365.133782][T16737] RBP: 00007fc6450ee090 R08: 0000000000000000 R09: 0000000000000000
[ 1365.141812][T16737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1365.149832][T16737] R13: 0000000000000000 R14: 00007fc644535f80 R15: 00007ffea0cb4f68
[ 1365.157878][T16737]  </TASK>
[ 1365.806917][T14106] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1365.876780][   T29] audit: type=1326 audit(1727204269.594:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1365.976726][T16753] netlink: 108 bytes leftover after parsing attributes in process `syz.0.2973'.
[ 1366.089305][T14106] usb 3-1: config 0 has no interfaces?
[ 1366.691467][T14106] usb 3-1: New USB device found, idVendor=44b7, idProduct=0000, bcdDevice= 0.00
[ 1366.700715][T14106] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1366.709056][T14106] usb 3-1: SerialNumber: syz
[ 1366.717255][T14106] usb 3-1: config 0 descriptor??
[ 1366.731318][   T29] audit: type=1326 audit(1727204269.624:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.754554][   T29] audit: type=1326 audit(1727204269.634:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.780082][   T29] audit: type=1326 audit(1727204270.324:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.839372][   T29] audit: type=1326 audit(1727204270.324:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.891763][   T29] audit: type=1326 audit(1727204270.324:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.915977][   T29] audit: type=1326 audit(1727204270.324:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1366.944343][T16740] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1366.945548][ T5267] usbhid 5-1:0.0: can't add hid device: -71
[ 1366.970639][ T5267] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1366.990674][ T5267] usb 5-1: USB disconnect, device number 57
[ 1367.010111][   T29] audit: type=1326 audit(1727204270.324:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1367.045409][   T29] audit: type=1326 audit(1727204270.324:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1367.074286][   T29] audit: type=1326 audit(1727204270.324:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.1.2972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa70e77def9 code=0x7ffc0000
[ 1367.106338][T16740] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1368.028595][T14106] usb 3-1: USB disconnect, device number 54
[ 1368.134414][T16781] overlayfs: failed to resolve './file0': -2
[ 1369.093330][T16795] FAULT_INJECTION: forcing a failure.
[ 1369.093330][T16795] name failslab, interval 1, probability 0, space 0, times 0
[ 1369.106798][T16795] CPU: 1 UID: 0 PID: 16795 Comm: syz.4.2987 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1369.117275][T16795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1369.127393][T16795] Call Trace:
[ 1369.130889][T16795]  <TASK>
[ 1369.133847][T16795]  dump_stack_lvl+0x241/0x360
[ 1369.138594][T16795]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1369.143817][T16795]  ? __pfx__printk+0x10/0x10
[ 1369.148438][T16795]  ? fs_reclaim_acquire+0x93/0x140
[ 1369.153580][T16795]  ? __pfx___might_resched+0x10/0x10
[ 1369.158906][T16795]  should_fail_ex+0x3b0/0x4e0
[ 1369.163625][T16795]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1369.169468][T16795]  should_failslab+0xac/0x100
[ 1369.174182][T16795]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1369.179925][T16795]  __kmalloc_noprof+0xd8/0x400
[ 1369.184713][T16795]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1369.190284][T16795]  tomoyo_path_number_perm+0x23a/0x880
[ 1369.195770][T16795]  ? tomoyo_path_number_perm+0x208/0x880
[ 1369.201455][T16795]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1369.207483][T16795]  ? __fget_files+0x29/0x470
[ 1369.212100][T16795]  ? __fget_files+0x3f3/0x470
[ 1369.216817][T16795]  security_file_ioctl+0xc6/0x2a0
[ 1369.221886][T16795]  __se_sys_ioctl+0x47/0x170
[ 1369.226504][T16795]  do_syscall_64+0xf3/0x230
[ 1369.231022][T16795]  ? clear_bhb_loop+0x35/0x90
[ 1369.235743][T16795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1369.241656][T16795] RIP: 0033:0x7f425f17def9
[ 1369.246083][T16795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1369.265722][T16795] RSP: 002b:00007f4260002038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1369.274156][T16795] RAX: ffffffffffffffda RBX: 00007f425f335f80 RCX: 00007f425f17def9
[ 1369.282174][T16795] RDX: 0000000020000040 RSI: 000000004008ae89 RDI: 0000000000000006
[ 1369.290681][T16795] RBP: 00007f4260002090 R08: 0000000000000000 R09: 0000000000000000
[ 1369.298665][T16795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1369.306647][T16795] R13: 0000000000000000 R14: 00007f425f335f80 R15: 00007ffc928372c8
[ 1369.314662][T16795]  </TASK>
[ 1369.373564][T16795] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1369.404734][T16803] pim6reg1: entered promiscuous mode
[ 1369.433644][T16803] pim6reg1: entered allmulticast mode
[ 1370.622044][T10745] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[ 1370.926046][T16837] overlayfs: failed to resolve './file0': -2
[ 1371.627435][T16836] FAULT_INJECTION: forcing a failure.
[ 1371.627435][T16836] name failslab, interval 1, probability 0, space 0, times 0
[ 1371.640814][T16836] CPU: 1 UID: 0 PID: 16836 Comm: syz.3.2999 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1371.651274][T16836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1371.661346][T16836] Call Trace:
[ 1371.664631][T16836]  <TASK>
[ 1371.667594][T16836]  dump_stack_lvl+0x241/0x360
[ 1371.672341][T16836]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1371.674303][T10745] usb 5-1: Using ep0 maxpacket: 16
[ 1371.677549][T16836]  ? __pfx__printk+0x10/0x10
[ 1371.677591][T16836]  ? fs_reclaim_acquire+0x93/0x140
[ 1371.677620][T16836]  ? __pfx___might_resched+0x10/0x10
[ 1371.677656][T16836]  should_fail_ex+0x3b0/0x4e0
[ 1371.677687][T16836]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1371.677713][T16836]  should_failslab+0xac/0x100
[ 1371.677748][T16836]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1371.677774][T16836]  __kmalloc_noprof+0xd8/0x400
[ 1371.677804][T16836]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1371.677842][T16836]  tomoyo_path_number_perm+0x23a/0x880
[ 1371.677883][T16836]  ? tomoyo_path_number_perm+0x208/0x880
[ 1371.677916][T16836]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1371.677990][T16836]  ? __fget_files+0x29/0x470
[ 1371.678025][T16836]  ? __fget_files+0x3f3/0x470
[ 1371.678067][T16836]  security_file_ioctl+0xc6/0x2a0
[ 1371.678105][T16836]  __se_sys_ioctl+0x47/0x170
[ 1371.678136][T16836]  do_syscall_64+0xf3/0x230
[ 1371.678166][T16836]  ? clear_bhb_loop+0x35/0x90
[ 1371.678201][T16836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1371.678231][T16836] RIP: 0033:0x7f8d9b17def9
[ 1371.678254][T16836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1371.678274][T16836] RSP: 002b:00007f8d9abff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1371.678300][T16836] RAX: ffffffffffffffda RBX: 00007f8d9b335f80 RCX: 00007f8d9b17def9
[ 1371.678318][T16836] RDX: 0000000020000100 RSI: 0000000080047458 RDI: 0000000000000004
[ 1371.678335][T16836] RBP: 00007f8d9abff090 R08: 0000000000000000 R09: 0000000000000000
[ 1371.678352][T16836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1371.678368][T16836] R13: 0000000000000000 R14: 00007f8d9b335f80 R15: 00007ffcc1689758
[ 1371.678404][T16836]  </TASK>
[ 1371.883765][T16836] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1372.013514][T10745] usb 5-1: config 0 has an invalid interface number: 251 but max is 0
[ 1372.026041][T10745] usb 5-1: config 0 has no interface number 0
[ 1372.039036][T10745] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1372.066787][T10745] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1372.108037][T10745] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1372.122571][T10745] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1372.149274][T16846] FAULT_INJECTION: forcing a failure.
[ 1372.149274][T16846] name failslab, interval 1, probability 0, space 0, times 0
[ 1372.162086][T16846] CPU: 0 UID: 0 PID: 16846 Comm: syz.3.3002 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1372.172556][T16846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1372.182661][T16846] Call Trace:
[ 1372.186060][T16846]  <TASK>
[ 1372.189035][T16846]  dump_stack_lvl+0x241/0x360
[ 1372.193863][T16846]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1372.199562][T16846]  ? __pfx__printk+0x10/0x10
[ 1372.204221][T16846]  ? fs_reclaim_acquire+0x93/0x140
[ 1372.209392][T16846]  ? __pfx___might_resched+0x10/0x10
[ 1372.214734][T16846]  should_fail_ex+0x3b0/0x4e0
[ 1372.219553][T16846]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1372.225318][T16846]  should_failslab+0xac/0x100
[ 1372.230067][T16846]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1372.235812][T16846]  __kmalloc_noprof+0xd8/0x400
[ 1372.240602][T16846]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1372.246172][T16846]  tomoyo_path_number_perm+0x23a/0x880
[ 1372.251677][T16846]  ? tomoyo_path_number_perm+0x208/0x880
[ 1372.257358][T16846]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1372.263390][T16846]  ? __fget_files+0x29/0x470
[ 1372.268010][T16846]  ? __fget_files+0x3f3/0x470
[ 1372.272717][T16846]  security_file_ioctl+0xc6/0x2a0
[ 1372.277790][T16846]  __se_sys_ioctl+0x47/0x170
[ 1372.282483][T16846]  do_syscall_64+0xf3/0x230
[ 1372.287000][T16846]  ? clear_bhb_loop+0x35/0x90
[ 1372.292003][T16846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1372.297928][T16846] RIP: 0033:0x7f8d9b17def9
[ 1372.302361][T16846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1372.321983][T16846] RSP: 002b:00007f8d9abff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1372.330419][T16846] RAX: ffffffffffffffda RBX: 00007f8d9b335f80 RCX: 00007f8d9b17def9
[ 1372.338410][T16846] RDX: 00000000200001c0 RSI: 00000000c008640a RDI: 0000000000000007
[ 1372.346480][T16846] RBP: 00007f8d9abff090 R08: 0000000000000000 R09: 0000000000000000
[ 1372.354572][T16846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1372.362561][T16846] R13: 0000000000000000 R14: 00007f8d9b335f80 R15: 00007ffcc1689758
[ 1372.370568][T16846]  </TASK>
[ 1372.380316][T10745] usb 5-1: Product: syz
[ 1372.385572][T16846] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1372.398304][T10745] usb 5-1: Manufacturer: syz
[ 1372.409621][T10745] usb 5-1: SerialNumber: syz
[ 1372.440317][T10745] usb 5-1: config 0 descriptor??
[ 1372.452300][T16819] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1372.490604][T16819] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1372.525558][T14106] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1372.726294][T14106] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1372.734932][T14106] usb 2-1: config 0 has no interface number 0
[ 1372.785001][T14106] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1372.804183][T14106] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1372.837213][T14106] usb 2-1: Product: syz
[ 1372.841454][T14106] usb 2-1: Manufacturer: syz
[ 1372.856172][T16819] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1372.881494][T16819] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1372.889011][T14106] usb 2-1: SerialNumber: syz
[ 1372.917091][T14106] usb 2-1: config 0 descriptor??
[ 1373.178046][T14106] dvb_usb_ec168 2-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1373.234988][T14106] usb 2-1: USB disconnect, device number 47
[ 1373.743908][T10745] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1373.764155][T10745] asix 5-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 1373.787134][T10745] asix 5-1:0.251: probe with driver asix failed with error -71
[ 1373.817807][T10745] usb 5-1: USB disconnect, device number 58
[ 1374.100343][T16879] overlayfs: failed to resolve './file0': -2
[ 1375.254467][T16897] FAULT_INJECTION: forcing a failure.
[ 1375.254467][T16897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1375.275907][   T51] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1375.283729][T16897] CPU: 0 UID: 0 PID: 16897 Comm: syz.3.3018 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1375.294182][T16897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1375.304344][T16897] Call Trace:
[ 1375.307636][T16897]  <TASK>
[ 1375.310580][T16897]  dump_stack_lvl+0x241/0x360
[ 1375.315290][T16897]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1375.320515][T16897]  ? __pfx__printk+0x10/0x10
[ 1375.325130][T16897]  ? kstrtouint_from_user+0x128/0x190
[ 1375.330532][T16897]  ? __pfx_lock_release+0x10/0x10
[ 1375.335589][T16897]  should_fail_ex+0x3b0/0x4e0
[ 1375.340373][T16897]  strncpy_from_user+0x36/0x250
[ 1375.345250][T16897]  keyctl_keyring_search+0xa2/0x3f0
[ 1375.350476][T16897]  ? ksys_write+0x229/0x2b0
[ 1375.355022][T16897]  ? __pfx_keyctl_keyring_search+0x10/0x10
[ 1375.360942][T16897]  ? vfs_write+0x7bf/0xc90
[ 1375.365387][T16897]  __se_sys_keyctl+0x5e1/0xa50
[ 1375.370182][T16897]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1375.375842][T16897]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1375.381155][T16897]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1375.387160][T16897]  ? __fget_files+0x3f3/0x470
[ 1375.391868][T16897]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1375.398150][T16897]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1375.404501][T16897]  ? do_syscall_64+0x100/0x230
[ 1375.409286][T16897]  ? __x64_sys_keyctl+0x20/0xc0
[ 1375.414151][T16897]  do_syscall_64+0xf3/0x230
[ 1375.418670][T16897]  ? clear_bhb_loop+0x35/0x90
[ 1375.423373][T16897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1375.429300][T16897] RIP: 0033:0x7f8d9b17def9
[ 1375.433743][T16897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1375.453364][T16897] RSP: 002b:00007f8d9abff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1375.461798][T16897] RAX: ffffffffffffffda RBX: 00007f8d9b335f80 RCX: 00007f8d9b17def9
[ 1375.469791][T16897] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 000000000000000a
[ 1375.477777][T16897] RBP: 00007f8d9abff090 R08: fffffffffffffffc R09: 0000000000000000
[ 1375.485850][T16897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1375.493832][T16897] R13: 0000000000000000 R14: 00007f8d9b335f80 R15: 00007ffcc1689758
[ 1375.501834][T16897]  </TASK>
[ 1375.565836][T14106] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1375.597158][   T51] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1375.607538][   T51] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1375.621228][   T51] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1375.630849][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1375.639047][   T51] usb 3-1: Product: syz
[ 1375.643457][   T51] usb 3-1: Manufacturer: syz
[ 1375.651359][   T51] usb 3-1: SerialNumber: syz
[ 1375.663560][   T51] cdc_ncm 3-1:1.0: skipping garbage
[ 1375.669074][   T51] cdc_ncm 3-1:1.0: NCM or ECM functional descriptors missing
[ 1375.677606][   T51] cdc_ncm 3-1:1.0: bind() failure
[ 1375.688024][   T51] usbtest 3-1:1.0: couldn't get endpoints, -22
[ 1375.706674][   T51] usbtest 3-1:1.0: probe with driver usbtest failed with error -22
[ 1375.725290][   T51] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[ 1375.747265][T14106] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1375.762043][   T51] cdc_ncm 3-1:1.1: bind() failure
[ 1375.769415][   T51] usbtest 3-1:1.1: couldn't get endpoints, -22
[ 1375.776793][T14106] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1375.787030][   T51] usbtest 3-1:1.1: probe with driver usbtest failed with error -22
[ 1375.796094][T14106] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[ 1375.805221][   T29] kauditd_printk_skb: 18 callbacks suppressed
[ 1375.805235][   T29] audit: type=1326 audit(1727204279.520:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16901 comm="syz.3.3020" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8d9b17def9 code=0x0
[ 1375.834568][T14106] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1375.845104][T14106] usb 2-1: config 0 descriptor??
[ 1375.874212][ T9827] usb 3-1: USB disconnect, device number 55
[ 1376.258043][T14106] lg-g15 0003:046D:C222.0018: unbalanced collection at end of report description
[ 1376.268218][T14106] lg-g15 0003:046D:C222.0018: probe with driver lg-g15 failed with error -22
[ 1376.503052][T16907] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3022'.
[ 1376.515405][T16894] capability: warning: `syz.1.3017' uses 32-bit capabilities (legacy support in use)
[ 1376.537808][T14106] usb 2-1: USB disconnect, device number 48
[ 1376.648967][   T29] audit: type=1326 audit(1727204280.360:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16909 comm="syz.2.3023" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc64437def9 code=0x0
[ 1376.745956][   T29] audit: type=1326 audit(1727204280.460:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16915 comm="syz.4.3026" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f425f17def9 code=0x0
[ 1377.832747][T16935] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3029'.
[ 1377.858687][T16935] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1378.047617][   T51] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[ 1378.116360][T14106] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1378.134218][T16949] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3034'.
[ 1378.230064][   T51] usb 5-1: New USB device found, idVendor=046d, idProduct=08b7, bcdDevice=ca.8e
[ 1378.240937][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1378.259765][   T51] pwc: Logitech ViewPort AV 100 webcam detected.
[ 1378.286316][T14106] usb 2-1: Using ep0 maxpacket: 16
[ 1378.302355][T14106] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1378.330355][T14106] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1378.351774][T14106] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1378.361167][T14106] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1378.371078][T14106] usb 2-1: config 0 descriptor??
[ 1378.676660][T16933] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3031'.
[ 1379.012405][T16937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1379.027474][T16937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1379.111554][   T51] pwc: send_video_command error -71
[ 1379.128396][   T51] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1379.136130][   T51] Philips webcam 5-1:127.0: probe with driver Philips webcam failed with error -71
[ 1379.150914][T16937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1379.160898][   T51] usb 5-1: USB disconnect, device number 59
[ 1379.168923][T16937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1379.213205][T14106] usbhid 2-1:0.0: can't add hid device: -71
[ 1379.230835][T14106] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1379.245400][T14106] usb 2-1: USB disconnect, device number 49
[ 1379.265333][T16961] Bluetooth: hci3: invalid length 2, exp 1 for type 31
[ 1379.344593][T16963] FAULT_INJECTION: forcing a failure.
[ 1379.344593][T16963] name failslab, interval 1, probability 0, space 0, times 0
[ 1379.358390][T16963] CPU: 1 UID: 0 PID: 16963 Comm: syz.2.3040 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1379.368870][T16963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1379.378949][T16963] Call Trace:
[ 1379.382248][T16963]  <TASK>
[ 1379.385192][T16963]  dump_stack_lvl+0x241/0x360
[ 1379.389928][T16963]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1379.395156][T16963]  ? __pfx__printk+0x10/0x10
[ 1379.399806][T16963]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1379.405808][T16963]  ? __pfx___might_resched+0x10/0x10
[ 1379.411120][T16963]  should_fail_ex+0x3b0/0x4e0
[ 1379.415819][T16963]  should_failslab+0xac/0x100
[ 1379.420526][T16963]  ? __alloc_skb+0x1c3/0x440
[ 1379.425143][T16963]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1379.430973][T16963]  __alloc_skb+0x1c3/0x440
[ 1379.435416][T16963]  ? validate_chain+0x11e/0x5920
[ 1379.440373][T16963]  ? __pfx___alloc_skb+0x10/0x10
[ 1379.445429][T16963]  ? reacquire_held_locks+0x650/0x690
[ 1379.450824][T16963]  ? __pfx_lock_release+0x10/0x10
[ 1379.455879][T16963]  alloc_skb_with_frags+0xc3/0x820
[ 1379.461009][T16963]  ? mark_lock+0x9a/0x360
[ 1379.465360][T16963]  ? __lock_acquire+0x1384/0x2050
[ 1379.470420][T16963]  sock_alloc_send_pskb+0x91a/0xa60
[ 1379.475661][T16963]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1379.481417][T16963]  ? smack_socket_sendmsg+0x178/0x540
[ 1379.486816][T16963]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[ 1379.492554][T16963]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[ 1379.498989][T16963]  hci_sock_sendmsg+0x22b/0x11c0
[ 1379.503953][T16963]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[ 1379.510738][T16963]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1379.516142][T16963]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1379.521536][T16963]  __sock_sendmsg+0x221/0x270
[ 1379.526242][T16963]  sock_write_iter+0x2d7/0x3f0
[ 1379.531050][T16963]  ? __pfx_sock_write_iter+0x10/0x10
[ 1379.536370][T16963]  ? bpf_lsm_file_permission+0x9/0x10
[ 1379.541777][T16963]  ? security_file_permission+0x74/0x280
[ 1379.547438][T16963]  vfs_write+0xa6d/0xc90
[ 1379.551715][T16963]  ? __pfx_sock_write_iter+0x10/0x10
[ 1379.557022][T16963]  ? __pfx_vfs_write+0x10/0x10
[ 1379.561816][T16963]  ? fdget_pos+0x19a/0x320
[ 1379.566373][T16963]  ksys_write+0x183/0x2b0
[ 1379.570740][T16963]  ? __pfx_ksys_write+0x10/0x10
[ 1379.575616][T16963]  ? do_syscall_64+0x100/0x230
[ 1379.580402][T16963]  ? do_syscall_64+0xb6/0x230
[ 1379.585098][T16963]  do_syscall_64+0xf3/0x230
[ 1379.589619][T16963]  ? clear_bhb_loop+0x35/0x90
[ 1379.594414][T16963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1379.600341][T16963] RIP: 0033:0x7fc64437def9
[ 1379.604776][T16963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1379.624401][T16963] RSP: 002b:00007fc6450ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1379.632835][T16963] RAX: ffffffffffffffda RBX: 00007fc644535f80 RCX: 00007fc64437def9
[ 1379.640913][T16963] RDX: 000000000000000d RSI: 0000000020000080 RDI: 000000000000001f
[ 1379.648991][T16963] RBP: 00007fc6450ee090 R08: 0000000000000000 R09: 0000000000000000
[ 1379.657097][T16963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1379.665094][T16963] R13: 0000000000000000 R14: 00007fc644535f80 R15: 00007ffea0cb4f68
[ 1379.673125][T16963]  </TASK>
[ 1381.367773][T16985] FAULT_INJECTION: forcing a failure.
[ 1381.367773][T16985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1381.381215][T16985] CPU: 0 UID: 0 PID: 16985 Comm: syz.4.3046 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1381.391695][T16985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1381.401805][T16985] Call Trace:
[ 1381.405140][T16985]  <TASK>
[ 1381.408109][T16985]  dump_stack_lvl+0x241/0x360
[ 1381.412860][T16985]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1381.418104][T16985]  ? __pfx__printk+0x10/0x10
[ 1381.422745][T16985]  ? __pfx_lock_release+0x10/0x10
[ 1381.427822][T16985]  should_fail_ex+0x3b0/0x4e0
[ 1381.432542][T16985]  _copy_from_user+0x2f/0xe0
[ 1381.437169][T16985]  copy_msghdr_from_user+0xae/0x680
[ 1381.442505][T16985]  ? __lock_acquire+0x1384/0x2050
[ 1381.447679][T16985]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1381.453542][T16985]  do_recvmmsg+0x3f9/0xad0
[ 1381.458007][T16985]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1381.463012][T16985]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1381.468949][T16985]  ? ksys_write+0x229/0x2b0
[ 1381.473610][T16985]  ? __pfx_lock_release+0x10/0x10
[ 1381.478689][T16985]  ? vfs_write+0x7bf/0xc90
[ 1381.483144][T16985]  ? kmem_cache_free+0x1a2/0x420
[ 1381.488137][T16985]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1381.494180][T16985]  __x64_sys_recvmmsg+0x199/0x250
[ 1381.499334][T16985]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1381.504927][T16985]  ? do_syscall_64+0x100/0x230
[ 1381.509764][T16985]  ? do_syscall_64+0xb6/0x230
[ 1381.514481][T16985]  do_syscall_64+0xf3/0x230
[ 1381.519018][T16985]  ? clear_bhb_loop+0x35/0x90
[ 1381.523741][T16985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1381.529767][T16985] RIP: 0033:0x7f425f17def9
[ 1381.534214][T16985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1381.553861][T16985] RSP: 002b:00007f4260002038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1381.562321][T16985] RAX: ffffffffffffffda RBX: 00007f425f335f80 RCX: 00007f425f17def9
[ 1381.570326][T16985] RDX: 0000000000000001 RSI: 00000000200015c0 RDI: 0000000000000005
[ 1381.578521][T16985] RBP: 00007f4260002090 R08: 0000000000000000 R09: 0000000000000000
[ 1381.586634][T16985] R10: 0000000000000120 R11: 0000000000000246 R12: 0000000000000001
[ 1381.594646][T16985] R13: 0000000000000000 R14: 00007f425f335f80 R15: 00007ffc928372c8
[ 1381.602673][T16985]  </TASK>
[ 1382.074143][T16995] batadv_slave_0: mtu less than device minimum
[ 1382.097043][T14106] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1383.067450][T14106] usb 2-1: Using ep0 maxpacket: 16
[ 1383.085854][T14106] usb 2-1: config 0 has no interfaces?
[ 1383.099147][T14106] usb 2-1: New USB device found, idVendor=12d1, idProduct=1c05, bcdDevice=d3.2f
[ 1383.116553][T14106] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1383.125692][T14106] usb 2-1: Product: syz
[ 1383.130169][T14106] usb 2-1: Manufacturer: syz
[ 1383.134812][T14106] usb 2-1: SerialNumber: syz
[ 1383.141903][T14106] usb 2-1: config 0 descriptor??
[ 1383.359895][T14106] usb 2-1: USB disconnect, device number 50
[ 1384.047542][ T5319] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[ 1384.367043][T17007] netlink: 'syz.1.3054': attribute type 14 has an invalid length.
[ 1384.418031][ T9750] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1384.438356][ T9750] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1384.456712][ T9750] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1384.480655][ T9750] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1384.492395][ T9750] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1384.499917][ T9750] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1385.186327][ T5319] usb 5-1: New USB device found, idVendor=046d, idProduct=08b7, bcdDevice=ca.8e
[ 1385.200482][ T5319] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1385.215377][ T5319] pwc: Logitech ViewPort AV 100 webcam detected.
[ 1385.489746][T17008] chnl_net:caif_netlink_parms(): no params data found
[ 1385.671530][T17005] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3053'.
[ 1385.882837][T17008] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1385.919123][T17008] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1385.938462][T17008] bridge_slave_0: entered allmulticast mode
[ 1385.971870][T17008] bridge_slave_0: entered promiscuous mode
[ 1386.006518][T17008] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1386.025567][T17008] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1386.038498][T17008] bridge_slave_1: entered allmulticast mode
[ 1386.402869][T17008] bridge_slave_1: entered promiscuous mode
[ 1386.545567][T17008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1386.554751][ T5319] pwc: send_video_command error -71
[ 1386.554773][ T5319] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1386.573578][ T5319] Philips webcam 5-1:127.0: probe with driver Philips webcam failed with error -71
[ 1386.586832][ T5319] usb 5-1: USB disconnect, device number 60
[ 1386.589744][T17008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1386.621225][ T9750] Bluetooth: hci6: command tx timeout
[ 1386.752462][T17008] team0: Port device team_slave_0 added
[ 1386.802263][T17035] FAULT_INJECTION: forcing a failure.
[ 1386.802263][T17035] name failslab, interval 1, probability 0, space 0, times 0
[ 1386.815503][T17035] CPU: 0 UID: 0 PID: 17035 Comm: syz.2.3058 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1386.826061][T17035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1386.836190][T17035] Call Trace:
[ 1386.839518][T17035]  <TASK>
[ 1386.842496][T17035]  dump_stack_lvl+0x241/0x360
[ 1386.847290][T17035]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1386.852586][T17035]  should_fail_ex+0x3b0/0x4e0
[ 1386.857339][T17035]  ? copy_fs_struct+0x4e/0x270
[ 1386.862182][T17035]  should_failslab+0xac/0x100
[ 1386.866934][T17035]  ? copy_fs_struct+0x4e/0x270
[ 1386.871868][T17035]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1386.877297][T17035]  copy_fs_struct+0x4e/0x270
[ 1386.881938][T17035]  ksys_unshare+0x463/0xc10
[ 1386.886511][T17035]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1386.892916][T17035]  ? __pfx_ksys_unshare+0x10/0x10
[ 1386.898030][T17035]  __x64_sys_unshare+0x38/0x40
[ 1386.902852][T17035]  do_syscall_64+0xf3/0x230
[ 1386.907411][T17035]  ? clear_bhb_loop+0x35/0x90
[ 1386.912281][T17035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1386.918244][T17035] RIP: 0033:0x7fc64437def9
[ 1386.922703][T17035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1386.942461][T17035] RSP: 002b:00007fc6450cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1386.950948][T17035] RAX: ffffffffffffffda RBX: 00007fc644536058 RCX: 00007fc64437def9
[ 1386.953557][T17008] team0: Port device team_slave_1 added
[ 1386.958940][T17035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020020000
[ 1386.958966][T17035] RBP: 00007fc6450cd090 R08: 0000000000000000 R09: 0000000000000000
[ 1386.958982][T17035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1386.958998][T17035] R13: 0000000000000000 R14: 00007fc644536058 R15: 00007ffea0cb4f68
[ 1386.959031][T17035]  </TASK>
[ 1387.069350][T17008] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1387.076368][T17008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1387.108197][   T29] audit: type=1326 audit(1727204290.688:735): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=_ pid=17033 comm="syz.2.3058" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc64437def9 code=0x0
[ 1387.487931][T17008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1387.561966][T17008] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1387.617586][T17008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1387.670061][T17040] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3059'.
[ 1387.912889][T17008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1388.073434][T17008] hsr_slave_0: entered promiscuous mode
[ 1388.096403][T17008] hsr_slave_1: entered promiscuous mode
[ 1388.128093][T17008] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1388.154482][T17008] Cannot create hsr debugfs directory
[ 1388.628102][ T5319] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1388.718091][ T9750] Bluetooth: hci6: command tx timeout
[ 1388.831541][T17008] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1388.908183][ T5319] usb 3-1: Using ep0 maxpacket: 32
[ 1388.933919][ T5319] usb 3-1: New USB device found, idVendor=a97a, idProduct=5131, bcdDevice=c0.00
[ 1388.973266][ T5319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1388.975871][T10090] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1389.002782][T10090] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1389.013193][T10090] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1389.048289][ T5319] usb 3-1: Product: syz
[ 1389.052634][ T5319] usb 3-1: Manufacturer: syz
[ 1389.057271][ T5319] usb 3-1: SerialNumber: syz
[ 1389.068125][T10090] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1389.076524][T10090] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1389.096842][T10090] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1389.164307][ T5319] usb 3-1: config 0 descriptor??
[ 1389.200783][ T5319] usb-storage 3-1:0.0: USB Mass Storage device detected
[ 1389.240805][T17008] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1389.481329][T17008] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1389.636000][ T1299] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1389.740816][T17008] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1389.771608][T17065] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.3065'.
[ 1389.861930][ T1299] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1390.918597][T10090] Bluetooth: hci6: command tx timeout
[ 1390.956258][ T9827] usb 3-1: USB disconnect, device number 56
[ 1390.991045][ T1299] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1391.230159][T10090] Bluetooth: hci7: command tx timeout
[ 1391.243200][ T1299] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1391.274029][T17008] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1391.294562][T17008] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1391.355836][T17008] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1391.392015][T17008] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1391.458657][ T9827] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1391.528514][T14106] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1391.611360][ T9827] usb 3-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36
[ 1391.911326][ T9827] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1391.929916][T14106] usb 5-1: New USB device found, idVendor=046d, idProduct=08b7, bcdDevice=ca.8e
[ 1391.941394][ T9827] usb 3-1: config 0 descriptor??
[ 1391.946641][T14106] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1391.964604][T14106] pwc: Logitech ViewPort AV 100 webcam detected.
[ 1392.079027][ T1299] bridge_slave_1: left allmulticast mode
[ 1392.084768][ T1299] bridge_slave_1: left promiscuous mode
[ 1392.090763][ T1299] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1392.124745][ T1299] bridge_slave_0: left allmulticast mode
[ 1392.144921][ T1299] bridge_slave_0: left promiscuous mode
[ 1392.158818][ T1299] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1392.432959][ T9827] kaweth 3-1:0.0: Firmware present in device.
[ 1392.528588][   T51] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1392.633194][ T9827] kaweth 3-1:0.0: Statistics collection: 0
[ 1392.639300][ T9827] kaweth 3-1:0.0: Multicast filter limit: 0
[ 1392.645468][ T9827] kaweth 3-1:0.0: MTU: 0
[ 1392.651894][ T9827] kaweth 3-1:0.0: Read MAC address 00:00:00:00:00:00
[ 1392.679168][   T51] usb 2-1: Using ep0 maxpacket: 32
[ 1392.701613][   T51] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1392.715946][   T51] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1392.725478][   T51] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1392.733873][   T51] usb 2-1: Product: syz
[ 1392.738150][   T51] usb 2-1: Manufacturer: syz
[ 1392.743575][   T51] usb 2-1: SerialNumber: syz
[ 1392.753024][   T51] usb 2-1: config 0 descriptor??
[ 1392.759431][T17085] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 1392.984394][ T1299] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1392.988926][T10090] Bluetooth: hci6: command tx timeout
[ 1393.010063][ T5267] usb 2-1: USB disconnect, device number 51
[ 1393.016786][ T1299] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1393.036944][ T1299] bond0 (unregistering): Released all slaves
[ 1393.070102][T17008] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1393.098120][T17008] 8021q: adding VLAN 0 to HW filter on device team0
[ 1393.121305][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1393.128566][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1393.153666][T17052] chnl_net:caif_netlink_parms(): no params data found
[ 1393.215590][T17076] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3069'.
[ 1393.308907][T10090] Bluetooth: hci7: command tx timeout
[ 1393.317288][T14106] pwc: send_video_command error -71
[ 1393.322977][T14106] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1393.332644][T14106] Philips webcam 5-1:127.0: probe with driver Philips webcam failed with error -71
[ 1393.344322][T14106] usb 5-1: USB disconnect, device number 61
[ 1393.393588][ T9827] kaweth 3-1:0.0: Error setting receive filter
[ 1393.400037][ T9827] kaweth 3-1:0.0: probe with driver kaweth failed with error -5
[ 1393.414033][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1393.414251][ T9827] usb 3-1: USB disconnect, device number 57
[ 1393.421289][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1393.531735][ T5267] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1393.564498][T17052] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1393.574088][T17052] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1393.581452][T17052] bridge_slave_0: entered allmulticast mode
[ 1393.591704][T17052] bridge_slave_0: entered promiscuous mode
[ 1393.611274][T17052] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1393.620162][T17052] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1393.627494][T17052] bridge_slave_1: entered allmulticast mode
[ 1393.635793][T17052] bridge_slave_1: entered promiscuous mode
[ 1393.669965][ T1299] hsr_slave_0: left promiscuous mode
[ 1393.676868][ T1299] hsr_slave_1: left promiscuous mode
[ 1393.683138][ T1299] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1393.691256][ T1299] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1393.699793][ T5267] usb 2-1: too many configurations: 13, using maximum allowed: 8
[ 1393.710896][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.711024][ T1299] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1393.717954][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.727526][ T1299] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1393.737742][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.744655][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.751771][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.758828][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.765482][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.770194][ T1299] veth1_macvtap: left promiscuous mode
[ 1393.772452][ T5267] usb 2-1: config 0 has no interfaces?
[ 1393.776582][ T1299] veth0_macvtap: left promiscuous mode
[ 1393.784734][ T5267] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1393.796941][ T1299] veth1_vlan: left promiscuous mode
[ 1393.804423][ T1299] veth0_vlan: left promiscuous mode
[ 1393.809019][ T5267] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1393.817895][ T5267] usb 2-1: Product: syz
[ 1393.822555][ T5267] usb 2-1: Manufacturer: syz
[ 1393.827216][ T5267] usb 2-1: SerialNumber: syz
[ 1393.834428][ T5267] usb 2-1: config 0 descriptor??
[ 1394.073352][    T9] usb 2-1: USB disconnect, device number 52
[ 1394.932073][T14051] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1395.268780][T14051] usb 2-1: Using ep0 maxpacket: 32
[ 1395.300280][T14051] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1395.313492][T14051] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1395.362635][T14051] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1395.380916][T14051] usb 2-1: Product: syz
[ 1395.385166][T14051] usb 2-1: Manufacturer: syz
[ 1395.390347][T14051] usb 2-1: SerialNumber: syz
[ 1395.423531][T10090] Bluetooth: hci7: command tx timeout
[ 1395.424544][T14051] usb 2-1: config 0 descriptor??
[ 1395.457952][T17085] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1395.739554][ T5267] usb 2-1: USB disconnect, device number 53
[ 1395.790100][   T51] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1395.968674][   T51] usb 3-1: Using ep0 maxpacket: 8
[ 1396.015817][   T51] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1396.097089][   T51] usb 3-1: config 8 has an invalid interface number: 255 but max is 0
[ 1396.185186][   T51] usb 3-1: config 8 has no interface number 0
[ 1396.264766][   T51] usb 3-1: config 8 interface 255 has no altsetting 0
[ 1396.447965][   T51] usb 3-1: string descriptor 0 read error: -22
[ 1396.454763][   T51] usb 3-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf
[ 1396.497198][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1396.558815][ T1299] team0 (unregistering): Port device team_slave_1 removed
[ 1396.799785][ T1299] team0 (unregistering): Port device team_slave_0 removed
[ 1397.036374][   T51] eth%d: CATC EL1210A NetMate USB Ethernet at usb-dummy_hcd.2-1, 00:00:00:00:00:00.
[ 1397.637185][T10090] Bluetooth: hci7: command tx timeout
[ 1398.922375][T17052] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1399.092009][T17052] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1399.159937][   T51] usb 3-1: USB disconnect, device number 58
[ 1399.475492][T17134] netlink: 'syz.1.3082': attribute type 14 has an invalid length.
[ 1400.289151][T17052] team0: Port device team_slave_0 added
[ 1400.372128][T17052] team0: Port device team_slave_1 added
[ 1400.510201][T17052] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1400.517228][T17052] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1400.564781][T17052] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1400.593859][T17052] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1400.601313][T17052] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1400.627795][T17052] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1400.687241][T17008] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1400.817092][T17052] hsr_slave_0: entered promiscuous mode
[ 1400.833096][T17052] hsr_slave_1: entered promiscuous mode
[ 1400.847627][T17052] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1400.858152][T17052] Cannot create hsr debugfs directory
[ 1401.009048][ T5267] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1401.169902][ T5267] usb 2-1: Using ep0 maxpacket: 32
[ 1401.198237][ T5267] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1401.782017][ T5267] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1401.800173][ T5267] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1401.808454][ T5267] usb 2-1: Product: syz
[ 1401.812904][ T5267] usb 2-1: Manufacturer: syz
[ 1401.817527][ T5267] usb 2-1: SerialNumber: syz
[ 1401.830337][ T5267] usb 2-1: config 0 descriptor??
[ 1401.837614][T17143] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1401.906045][T17151] program syz.4.3087 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1402.022343][T17008] veth0_vlan: entered promiscuous mode
[ 1402.066510][T17008] veth1_vlan: entered promiscuous mode
[ 1402.071230][T14106] usb 2-1: USB disconnect, device number 54
[ 1402.152149][T17008] veth0_macvtap: entered promiscuous mode
[ 1402.201376][T17008] veth1_macvtap: entered promiscuous mode
[ 1402.264271][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.275181][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.285424][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.296054][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.306733][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.318375][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.328400][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.339218][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.349526][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.360290][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.370223][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1402.380768][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1402.392111][T17008] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1402.750608][ T5319] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1402.895877][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1402.986855][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.058886][ T5319] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1403.149536][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.160479][ T5319] usb 3-1: New USB device found, idVendor=046d, idProduct=c532, bcdDevice= 0.00
[ 1403.171224][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.184820][ T5319] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1403.193157][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.206035][ T5319] usb 3-1: config 0 descriptor??
[ 1403.211396][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.226466][ T5319] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[ 1403.235753][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.250703][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.262752][T17008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.273518][T17008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.288570][T17008] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1403.345762][T17008] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1403.411650][T17008] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1403.463219][T17008] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1403.496785][T17008] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.391362][T17052] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1405.443569][T14051] usb 3-1: USB disconnect, device number 59
[ 1405.575757][ T5783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1405.619959][ T5783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1405.628774][T17052] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1405.681239][T17052] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1405.745207][T17052] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1405.787762][T17164] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1406.145167][T17164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1407.084983][T17188] FAULT_INJECTION: forcing a failure.
[ 1407.084983][T17188] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1407.131715][T17188] CPU: 1 UID: 0 PID: 17188 Comm: syz.0.3051 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1407.142279][T17188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1407.152382][T17188] Call Trace:
[ 1407.155709][T17188]  <TASK>
[ 1407.158669][T17188]  dump_stack_lvl+0x241/0x360
[ 1407.163410][T17188]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1407.165232][T17052] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1407.168736][T17188]  ? __pfx__printk+0x10/0x10
[ 1407.179974][T17188]  ? __pfx_lock_release+0x10/0x10
[ 1407.185043][T17188]  should_fail_ex+0x3b0/0x4e0
[ 1407.189746][T17188]  _copy_from_user+0x2f/0xe0
[ 1407.194529][T17188]  copy_msghdr_from_user+0xae/0x680
[ 1407.199752][T17188]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1407.205613][T17188]  __sys_recvmsg+0x24c/0x3d0
[ 1407.210225][T17188]  ? __pfx___sys_recvmsg+0x10/0x10
[ 1407.215393][T17188]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1407.221078][T17188]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1407.227436][T17188]  ? do_syscall_64+0x100/0x230
[ 1407.232266][T17188]  ? do_syscall_64+0xb6/0x230
[ 1407.236969][T17188]  do_syscall_64+0xf3/0x230
[ 1407.241486][T17188]  ? clear_bhb_loop+0x35/0x90
[ 1407.246273][T17188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1407.252194][T17188] RIP: 0033:0x7fb82517def9
[ 1407.256623][T17188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1407.276330][T17188] RSP: 002b:00007fb825f41038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 1407.284764][T17188] RAX: ffffffffffffffda RBX: 00007fb825335f80 RCX: 00007fb82517def9
[ 1407.292749][T17188] RDX: 0000000000002020 RSI: 0000000020000480 RDI: 0000000000000003
[ 1407.300733][T17188] RBP: 00007fb825f41090 R08: 0000000000000000 R09: 0000000000000000
[ 1407.308737][T17188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1407.316747][T17188] R13: 0000000000000000 R14: 00007fb825335f80 R15: 00007ffcfa975478
[ 1407.324760][T17188]  </TASK>
[ 1407.356062][T17052] 8021q: adding VLAN 0 to HW filter on device team0
[ 1407.384553][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1407.391804][ T5783] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1407.425306][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1407.432520][ T5783] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1409.012943][ T9827] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 1409.390948][T17204] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3096'.
[ 1409.672947][T17052] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1409.714842][T17052] veth0_vlan: entered promiscuous mode
[ 1409.727716][T17052] veth1_vlan: entered promiscuous mode
[ 1409.756592][T17052] veth0_macvtap: entered promiscuous mode
[ 1409.766671][T17052] veth1_macvtap: entered promiscuous mode
[ 1409.975727][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.083700][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.181501][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.339686][ T9827] usb 2-1: device descriptor read/64, error -71
[ 1410.366085][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.505622][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.558279][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.592168][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.605336][ T9827] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[ 1410.629425][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.661741][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.699365][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.737978][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.748815][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.769433][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1410.788638][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.817173][T17052] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1410.871097][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1410.892248][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.934016][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1410.969533][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1410.999719][ T9827] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1411.011722][ T9827] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1411.021968][ T9827] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1411.035157][ T9827] usb 2-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00
[ 1411.042469][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1411.044242][ T9827] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1411.169216][ T9827] usb 2-1: config 0 descriptor??
[ 1411.406868][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1411.689652][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1411.741671][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1411.795904][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1411.844785][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1411.855147][T17052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1411.865880][T17052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1411.877665][T17052] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1411.890894][ T9827] hid-udraw 0003:20D6:CB17.0019: item fetching failed at offset 5/7
[ 1411.919869][T17233] macvlan0: entered allmulticast mode
[ 1411.929935][ T9827] hid-udraw 0003:20D6:CB17.0019: parse failed
[ 1411.936715][ T9827] hid-udraw 0003:20D6:CB17.0019: probe with driver hid-udraw failed with error -22
[ 1411.953535][T17233] veth1_vlan: entered allmulticast mode
[ 1411.983323][T17052] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1412.000960][T17052] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1412.018643][T17052] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1412.040723][T17052] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1412.176122][ T5319] usb 2-1: USB disconnect, device number 56
[ 1412.290079][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.306141][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.359935][ T6207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1412.385916][ T6207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1412.439669][ T5783] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1412.450112][ T5783] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1412.458920][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.479251][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.592410][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.635870][T17234] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3102'.
[ 1412.730215][T17243] FAULT_INJECTION: forcing a failure.
[ 1412.730215][T17243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1412.819943][T17243] CPU: 1 UID: 0 PID: 17243 Comm: syz.3.3063 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1412.830982][T17243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1412.841521][T17243] Call Trace:
[ 1412.844826][T17243]  <TASK>
[ 1412.847779][T17243]  dump_stack_lvl+0x241/0x360
[ 1412.852489][T17243]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1412.857702][T17243]  ? __pfx__printk+0x10/0x10
[ 1412.862315][T17243]  ? __pfx_lock_release+0x10/0x10
[ 1412.867360][T17243]  should_fail_ex+0x3b0/0x4e0
[ 1412.872104][T17243]  _copy_from_user+0x2f/0xe0
[ 1412.876716][T17243]  __sys_bpf+0x1a4/0x810
[ 1412.880994][T17243]  ? __pfx___sys_bpf+0x10/0x10
[ 1412.885785][T17243]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1412.891788][T17243]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1412.898195][T17243]  ? do_syscall_64+0x100/0x230
[ 1412.902986][T17243]  __x64_sys_bpf+0x7c/0x90
[ 1412.907414][T17243]  do_syscall_64+0xf3/0x230
[ 1412.911928][T17243]  ? clear_bhb_loop+0x35/0x90
[ 1412.916639][T17243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1412.922548][T17243] RIP: 0033:0x7f4c70b7def9
[ 1412.926989][T17243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1412.946611][T17243] RSP: 002b:00007f4c719d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1412.955067][T17243] RAX: ffffffffffffffda RBX: 00007f4c70d35f80 RCX: 00007f4c70b7def9
[ 1412.963267][T17243] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1412.971369][T17243] RBP: 00007f4c719d8090 R08: 0000000000000000 R09: 0000000000000000
[ 1412.979351][T17243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1412.987369][T17243] R13: 0000000000000000 R14: 00007f4c70d35f80 R15: 00007ffd7f743498
[ 1412.995369][T17243]  </TASK>
[ 1415.132504][T17256] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3107'.
[ 1415.141680][T17256] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3107'.
[ 1415.599568][ T9827] usb 1-1: new high-speed USB device number 71 using dummy_hcd
[ 1415.962476][T17278] rdma_op ffff888031f9d1f0 conn xmit_rdma 0000000000000000
[ 1416.910406][   T51] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 1416.926900][T17277] ==================================================================
[ 1416.935028][T17277] BUG: KASAN: slab-use-after-free in smk_access+0xae/0x4e0
[ 1416.942267][T17277] Read of size 8 at addr ffff88805fb0e360 by task syz.3.3115/17277
[ 1416.950193][T17277] 
[ 1416.952651][T17277] CPU: 0 UID: 0 PID: 17277 Comm: syz.3.3115 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1416.963268][T17277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1416.973355][T17277] Call Trace:
[ 1416.976659][T17277]  <TASK>
[ 1416.979653][T17277]  dump_stack_lvl+0x241/0x360
[ 1416.984390][T17277]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1416.989629][T17277]  ? __pfx__printk+0x10/0x10
[ 1416.994260][T17277]  ? _printk+0xd5/0x120
[ 1416.998453][T17277]  ? __virt_addr_valid+0x183/0x530
[ 1417.003596][T17277]  ? __virt_addr_valid+0x183/0x530
[ 1417.008741][T17277]  print_report+0x169/0x550
[ 1417.013444][T17277]  ? __virt_addr_valid+0x183/0x530
[ 1417.018590][T17277]  ? __virt_addr_valid+0x183/0x530
[ 1417.023731][T17277]  ? __virt_addr_valid+0x45f/0x530
[ 1417.028871][T17277]  ? __phys_addr+0xba/0x170
[ 1417.033407][T17277]  ? smk_access+0xae/0x4e0
[ 1417.037858][T17277]  kasan_report+0x143/0x180
[ 1417.042419][T17277]  ? smk_access+0xae/0x4e0
[ 1417.046881][T17277]  smk_access+0xae/0x4e0
[ 1417.051175][T17277]  smack_watch_key+0x2f4/0x3a0
[ 1417.055971][T17277]  ? __pfx_smack_watch_key+0x10/0x10
[ 1417.061282][T17277]  ? __kasan_kmalloc+0x98/0xb0
[ 1417.066080][T17277]  security_watch_key+0x86/0x250
[ 1417.071052][T17277]  keyctl_watch_key+0x2b7/0x480
[ 1417.075938][T17277]  __se_sys_keyctl+0x106/0xa50
[ 1417.080726][T17277]  ? do_futex+0x392/0x560
[ 1417.085110][T17277]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1417.090424][T17277]  ? __pfx_do_futex+0x10/0x10
[ 1417.095134][T17277]  ? __se_sys_add_key+0x3be/0x490
[ 1417.100207][T17277]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1417.106314][T17277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1417.113212][T17277]  ? do_syscall_64+0x100/0x230
[ 1417.118025][T17277]  ? __x64_sys_keyctl+0x20/0xc0
[ 1417.122959][T17277]  do_syscall_64+0xf3/0x230
[ 1417.127511][T17277]  ? clear_bhb_loop+0x35/0x90
[ 1417.132234][T17277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1417.138187][T17277] RIP: 0033:0x7f4c70b7def9
[ 1417.142636][T17277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1417.162290][T17277] RSP: 002b:00007f4c719d8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1417.170622][   T51] usb 2-1: Using ep0 maxpacket: 16
[ 1417.170728][T17277] RAX: ffffffffffffffda RBX: 00007f4c70d35f80 RCX: 00007f4c70b7def9
[ 1417.170753][T17277] RDX: 0000000000000006 RSI: 000000003b1d19d9 RDI: 0000000000000020
[ 1417.190635][   T51] usb 2-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[ 1417.191899][T17277] RBP: 00007f4c70bf0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1417.191927][T17277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1417.191945][T17277] R13: 0000000000000000 R14: 00007f4c70d35f80 R15: 00007ffd7f743498
[ 1417.191972][T17277]  </TASK>
[ 1417.205835][   T51] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1417.208939][T17277] 
[ 1417.208949][T17277] Allocated by task 17052:
[ 1417.208964][T17277]  kasan_save_track+0x3f/0x80
[ 1417.245743][   T51] usb 2-1: config 0 descriptor??
[ 1417.247499][T17277]  __kasan_kmalloc+0x98/0xb0
[ 1417.257155][T17277]  __kmalloc_node_noprof+0x22a/0x440
[ 1417.262478][T17277]  __vmalloc_node_range_noprof+0x5c3/0x13f0
[ 1417.268413][T17277]  vzalloc_noprof+0x79/0x90
[ 1417.272955][T17277]  __do_replace+0xc8/0xa50
[ 1417.275620][   T51] gspca_main: sonixj-2.14.0 probing 0471:0327
[ 1417.277400][T17277]  do_ip6t_set_ctl+0xf11/0x1270
[ 1417.277437][T17277]  nf_setsockopt+0x295/0x2c0
[ 1417.292963][T17277]  do_sock_setsockopt+0x3af/0x720
[ 1417.298022][T17277]  __sys_setsockopt+0x1a2/0x250
[ 1417.302904][T17277]  __x64_sys_setsockopt+0xb5/0xd0
[ 1417.307960][T17277]  do_syscall_64+0xf3/0x230
[ 1417.312492][T17277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1417.318421][T17277] 
[ 1417.320769][T17277] Freed by task 17052:
[ 1417.324954][T17277]  kasan_save_track+0x3f/0x80
[ 1417.329762][T17277]  kasan_save_free_info+0x40/0x50
[ 1417.334824][T17277]  __kasan_slab_free+0x59/0x70
[ 1417.339625][T17277]  kfree+0x1a0/0x440
[ 1417.343557][T17277]  vfree+0x24c/0x2e0
[ 1417.347488][T17277]  __do_replace+0x874/0xa50
[ 1417.352037][T17277]  do_ip6t_set_ctl+0xf11/0x1270
[ 1417.356935][T17277]  nf_setsockopt+0x295/0x2c0
[ 1417.361569][T17277]  do_sock_setsockopt+0x3af/0x720
[ 1417.366635][T17277]  __sys_setsockopt+0x1a2/0x250
[ 1417.371522][T17277]  __x64_sys_setsockopt+0xb5/0xd0
[ 1417.376584][T17277]  do_syscall_64+0xf3/0x230
[ 1417.381138][T17277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1417.387075][T17277] 
[ 1417.389773][T17277] The buggy address belongs to the object at ffff88805fb0e360
[ 1417.389773][T17277]  which belongs to the cache kmalloc-8 of size 8
[ 1417.403512][T17277] The buggy address is located 0 bytes inside of
[ 1417.403512][T17277]  freed 8-byte region [ffff88805fb0e360, ffff88805fb0e368)
[ 1417.417007][T17277] 
[ 1417.419371][T17277] The buggy address belongs to the physical page:
[ 1417.425818][T17277] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5fb0e
[ 1417.434603][T17277] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1417.441742][T17277] page_type: f5(slab)
[ 1417.445739][T17277] raw: 00fff00000000000 ffff88801ac41500 ffffea0000afa040 dead000000000002
[ 1417.454352][T17277] raw: 0000000000000000 0000000080800080 00000001f5000000 0000000000000000
[ 1417.462954][T17277] page dumped because: kasan: bad access detected
[ 1417.469375][T17277] page_owner tracks the page as allocated
[ 1417.475111][T17277] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 13372, tgid 13371 (syz.0.2033), ts 989460382404, free_ts 988852172919
[ 1417.494609][T17277]  post_alloc_hook+0x1f3/0x230
[ 1417.499398][T17277]  get_page_from_freelist+0x3039/0x3180
[ 1417.504984][T17277]  __alloc_pages_noprof+0x256/0x6c0
[ 1417.510204][T17277]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1417.515686][T17277]  alloc_slab_page+0x6a/0x120
[ 1417.520378][T17277]  allocate_slab+0x5a/0x2f0
[ 1417.524894][T17277]  ___slab_alloc+0xcd1/0x14b0
[ 1417.529587][T17277]  __slab_alloc+0x58/0xa0
[ 1417.533932][T17277]  __kmalloc_node_track_caller_noprof+0x281/0x440
[ 1417.540373][T17277]  kstrdup+0x3a/0x80
[ 1417.544287][T17277]  __kernfs_new_node+0x9d/0x870
[ 1417.549167][T17277]  kernfs_new_node+0x137/0x240
[ 1417.553964][T17277]  __kernfs_create_file+0x49/0x2e0
[ 1417.559109][T17277]  sysfs_add_file_mode_ns+0x24a/0x310
[ 1417.564598][T17277]  internal_create_group+0x7a7/0x11d0
[ 1417.569990][T17277]  sysfs_create_groups+0x56/0x120
[ 1417.575119][T17277] page last free pid 8676 tgid 8676 stack trace:
[ 1417.581533][T17277]  free_unref_page+0xcd0/0xf00
[ 1417.586344][T17277]  vfree+0x186/0x2e0
[ 1417.590252][T17277]  delayed_vfree_work+0x56/0x80
[ 1417.595116][T17277]  process_scheduled_works+0xa63/0x1850
[ 1417.600680][T17277]  worker_thread+0x870/0xd30
[ 1417.605287][T17277]  kthread+0x2f0/0x390
[ 1417.609367][T17277]  ret_from_fork+0x4b/0x80
[ 1417.613895][T17277]  ret_from_fork_asm+0x1a/0x30
[ 1417.618674][T17277] 
[ 1417.621094][T17277] Memory state around the buggy address:
[ 1417.626725][T17277]  ffff88805fb0e200: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[ 1417.634791][T17277]  ffff88805fb0e280: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[ 1417.642867][T17277] >ffff88805fb0e300: 06 fc fc fc 06 fc fc fc 00 fc fc fc fa fc fc fc
[ 1417.650931][T17277]                                                        ^
[ 1417.658219][T17277]  ffff88805fb0e380: 05 fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[ 1417.666477][T17277]  ffff88805fb0e400: fa fc fc fc 05 fc fc fc 05 fc fc fc fa fc fc fc
[ 1417.674725][T17277] ==================================================================
[ 1417.689009][T17277] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1417.696282][T17277] CPU: 1 UID: 0 PID: 17277 Comm: syz.3.3115 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[ 1417.706741][T17277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1417.716835][T17277] Call Trace:
[ 1417.720152][T17277]  <TASK>
[ 1417.723091][T17277]  dump_stack_lvl+0x241/0x360
[ 1417.727795][T17277]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1417.733015][T17277]  ? __pfx__printk+0x10/0x10
[ 1417.737654][T17277]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1417.743662][T17277]  ? vscnprintf+0x5d/0x90
[ 1417.748006][T17277]  panic+0x349/0x880
[ 1417.751920][T17277]  ? check_panic_on_warn+0x21/0xb0
[ 1417.757041][T17277]  ? __pfx_panic+0x10/0x10
[ 1417.761477][T17277]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 1417.767476][T17277]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1417.773823][T17277]  check_panic_on_warn+0x86/0xb0
[ 1417.778775][T17277]  ? smk_access+0xae/0x4e0
[ 1417.783201][T17277]  end_report+0x77/0x160
[ 1417.787459][T17277]  kasan_report+0x154/0x180
[ 1417.791981][T17277]  ? smk_access+0xae/0x4e0
[ 1417.796586][T17277]  smk_access+0xae/0x4e0
[ 1417.800850][T17277]  smack_watch_key+0x2f4/0x3a0
[ 1417.805635][T17277]  ? __pfx_smack_watch_key+0x10/0x10
[ 1417.810932][T17277]  ? __kasan_kmalloc+0x98/0xb0
[ 1417.815725][T17277]  security_watch_key+0x86/0x250
[ 1417.820687][T17277]  keyctl_watch_key+0x2b7/0x480
[ 1417.825553][T17277]  __se_sys_keyctl+0x106/0xa50
[ 1417.830328][T17277]  ? do_futex+0x392/0x560
[ 1417.834668][T17277]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1417.839963][T17277]  ? __pfx_do_futex+0x10/0x10
[ 1417.844650][T17277]  ? __se_sys_add_key+0x3be/0x490
[ 1417.849696][T17277]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1417.855703][T17277]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1417.862049][T17277]  ? do_syscall_64+0x100/0x230
[ 1417.866826][T17277]  ? __x64_sys_keyctl+0x20/0xc0
[ 1417.871695][T17277]  do_syscall_64+0xf3/0x230
[ 1417.876217][T17277]  ? clear_bhb_loop+0x35/0x90
[ 1417.881041][T17277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1417.886950][T17277] RIP: 0033:0x7f4c70b7def9
[ 1417.891377][T17277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1417.910993][T17277] RSP: 002b:00007f4c719d8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1417.919419][T17277] RAX: ffffffffffffffda RBX: 00007f4c70d35f80 RCX: 00007f4c70b7def9
[ 1417.927485][T17277] RDX: 0000000000000006 RSI: 000000003b1d19d9 RDI: 0000000000000020
[ 1417.935472][T17277] RBP: 00007f4c70bf0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1417.943465][T17277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1417.951444][T17277] R13: 0000000000000000 R14: 00007f4c70d35f80 R15: 00007ffd7f743498
[ 1417.959434][T17277]  </TASK>
[ 1417.962825][T17277] Kernel Offset: disabled
[ 1417.967162][T17277] Rebooting in 86400 seconds..