last executing test programs:

2m50.50023411s ago: executing program 3 (id=978):
socket$unix(0x1, 0x1, 0x0)
r0 = socket(0x840000000002, 0x3, 0xff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

2m45.525283745s ago: executing program 3 (id=991):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000068000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000030c00014000000000000001016c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000400003803c000080080003400000000230000b802c0001800a0001006c696d69740000001c0002800c00024000000000000000000c000140000000000000000938010000080a05000000000000000000050000072c0007403d71b32682bbe6000000d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a310900020073797a310000000008000940000000024a0007405c890b690e2214dac90362bb4f8e989a74bdc1985458a1e6868adb9ac469290098443d437b475c9c2a18de6b34f9e8558b70644604cadd65d58ce8b25f35723200cfaabbf18500003c0005800800014000000006080001400000008808000140000000320800014000000015080001400000002b080002400000000308000140000000290900020073797a30000000000c000580080001400000890d44000740bef2077827d68611293f798db07a28cc2c1202c7e2d73fcc3d77ee08e72db9248d17c4cb04a4ef18eb8f1f24c9c36d7d09b85546d932ec0960261f57c866e38f88020000080a01020000000000000000020001800a0001006c696d69740000000c0001800700010072740000680001800e000100636f6e6e6c696d697400000054000280080001400000000108100140000001000800024000000001080001400000000908000140000000f008000140000000040800024000000000080001400000000b08000240f44e26cb0800024000000001480001800e000100696d6d65646961746500000034000280080001400000000d0800014000000004080001400000000008000140000000030800014000000010080001400000000a3c0001800b000100736f636b657400002c00028008000240000000100800030000000033080002400000001208000240000000000878746864720000240001800a00010072616e676500000014000280080002400000000008000140000000021c000180090001006d617371000000000c000280080001400000000418010480100001800b0001006e756d676e00004800018008000100667764003c0002800800024000000002080002400000000a080003400000000a0800024000000014080002400000000e080001400000000c0800024000000000600001800a00010071750c00014000000000000000000c000440000000000000000908000240000000000c00044000000000000000050c00014000"], 0x4dc}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

2m44.147820875s ago: executing program 3 (id=995):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)=@userptr={0x0, 0x1, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b1cc37e0"}, 0x0, 0x2, {0x0}})
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000280)=@mmap={0x0, 0x1, 0x4, 0x100004, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})

2m43.707984521s ago: executing program 3 (id=997):
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000680)=ANY=[@ANYBLOB="6802000000050104000000000000000000000000540201"], 0x268}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000000680)=ANY=[], 0x268}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05400000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a300000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a01040000000000000000010000002400048020000180080001006f736600140002800500020000000000080001400000001408000b40000000000900010073797a300000000014000000110001"], 0xd4}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000380)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)

2m43.530092521s ago: executing program 3 (id=999):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
clock_adjtime(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0)
flock(r2, 0x5)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r3, 0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x44000, 0x0)
ioctl$RTC_ALM_SET(r5, 0x40247007, &(0x7f0000000040)={0x37, 0x21, 0x5, 0xd, 0x6, 0xfff, 0x3, 0x12a, 0xffffffffffffffff})
syz_emit_ethernet(0x6e, &(0x7f00000002c0)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @private2, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "00641a", 0x0, 0x3a, 0x0, @mcast1, @local, [], "1e520b4c951ee12e"}}}}}}}, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x4a, 0x1, 0x2, "6040c419020000000000000073d600", 0x494e4f4b})

2m42.522511611s ago: executing program 3 (id=1003):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000001580)={0x14, 0x25, 0x1, 0x70bd2c, 0x25dfdbff, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x40080c0}, 0x24000100)

2m35.18061603s ago: executing program 2 (id=1036):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000d00)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x9, 0x2, 0x0, 0x0, 0xa, 0x8}, {0x12, 0x3, 0x0, 0x401, 0x8001, 0x400}, 0xa5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
r4 = socket(0x10, 0x3, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xc, 0xa}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xa495, 0x7ff, 0x4, 0x0, 0xffffffff}, 0x80, 0x0, 0x3, 0x4, 0x8, 0xd, 0x17, 0x1b, 0x11, 0x4625b128, {0x9, 0x5, 0x0, 0x2, 0xb, 0x6}}}}]}, 0x78}}, 0x4000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210057ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

2m35.091720867s ago: executing program 2 (id=1037):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$loop(&(0x7f0000000100), 0x3, 0x101002)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0x5]}, 0x8)
eventfd(0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r1})
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

2m34.942416483s ago: executing program 2 (id=1039):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
clock_adjtime(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0)
flock(r2, 0x5)
flock(0xffffffffffffffff, 0x1)
flock(0xffffffffffffffff, 0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x44000, 0x0)
ioctl$RTC_ALM_SET(r4, 0x40247007, &(0x7f0000000040)={0x37, 0x21, 0x5, 0xd, 0x6, 0xfff, 0x3, 0x12a, 0xffffffffffffffff})
syz_emit_ethernet(0x6e, &(0x7f00000002c0)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @private2, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "00641a", 0x0, 0x3a, 0x0, @mcast1, @local, [], "1e520b4c951ee12e"}}}}}}}, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x4a, 0x1, 0x2, "6040c419020000000000000073d600", 0x494e4f4b})

2m34.168207785s ago: executing program 2 (id=1041):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000040)="05000000010000", 0x7)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
write(0xffffffffffffffff, &(0x7f0000000040)="05000000010001", 0x7)

2m33.714497141s ago: executing program 2 (id=1043):
socket$unix(0x1, 0x1, 0x0)
r0 = socket(0x840000000002, 0x3, 0xff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

2m33.27610544s ago: executing program 2 (id=1045):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000001580)={0x14, 0x25, 0x1, 0x70bd2c, 0x25dfdbff, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x40080c0}, 0x24000100)

2m27.23438484s ago: executing program 32 (id=1003):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000001580)={0x14, 0x25, 0x1, 0x70bd2c, 0x25dfdbff, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x40080c0}, 0x24000100)

2m18.102299396s ago: executing program 33 (id=1045):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000001580)={0x14, 0x25, 0x1, 0x70bd2c, 0x25dfdbff, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x40080c0}, 0x24000100)

11.60754556s ago: executing program 0 (id=1511):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000140)={0x1000200, 0x0, 0x80000000, 0xffff, 0x0, "4ae23ae17df2e98c69ba36c4095c911abad88f"})
ioctl$TIOCSTI(r1, 0x5412, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x9)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x2)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000080)={0xf0f03c, 0x1})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r3)
unshare(0x40000800)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000880)={0x0, 0x5f, &(0x7f0000000100)={&(0x7f0000000140)={0x4c, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30004}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9f8}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}]}, 0x4c}}, 0x0)

11.521621666s ago: executing program 5 (id=1513):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x3c2}], 0x1}, 0x0)
r1 = syz_io_uring_setup(0x18e0, &(0x7f0000000140)={0x0, 0xfffffffe, 0x0, 0x2}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000580), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_GETPDP(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}]}, 0x1c}}, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r6, 0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[], 0x28}, 0x0, 0x4044094, 0x1})
io_uring_enter(r1, 0x47f9, 0x0, 0x0, 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000200)={0x3, 0x3a, 0xfffffffe, 0xfffffffd, 0xa, 0x4f, 0xffffffff, 0x4, 0xffffffffffffffff})

10.682322141s ago: executing program 0 (id=1516):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x5}, {0xc, 0xa}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xa495, 0x7ff, 0x4, 0x0, 0xffffffff}, 0x80, 0x0, 0x3, 0x4, 0x8, 0xd, 0x17, 0x1b, 0x11, 0x4625b128, {0x9, 0x5, 0x0, 0x2, 0xb, 0x6}}}}]}, 0x78}}, 0x4000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210057ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

9.706491284s ago: executing program 0 (id=1517):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000040))
epoll_create1(0x0)
socket$unix(0x1, 0x1, 0x0)
socket$rxrpc(0x21, 0x2, 0x2)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r1, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r1, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

9.682438151s ago: executing program 5 (id=1518):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = fanotify_init(0x8, 0x800)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x6, 0xff, 0x2}, {0x0, 0xfffc, 0xfc, 0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xba}], 0x3})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(0xffffffffffffffff, &(0x7f0000000000)='4\x00', 0xfffffffffffffe12)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)
sendmmsg(r0, &(0x7f0000000d00)=[{{&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x4, 0x3, 0x4, 0x2, {0xa, 0x4e22, 0x7f, @mcast1, 0x1}}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000380)="2091353cda53d4a5493f43dd2a1ca7e5f7afabc43e3d69aa9e68b452a1b27684835a84a534c5272d25a07fe26d829a8f8b0bbe39b691ed77387abca8ef14281ef973dcf6aa298abf3a214a1b6f82dd205c724c278d031d88e6cb004616c8962af27cdb69d12ff242fab0dd42a039f8644157fb28422127b6b2850ab68321ee37da064573847e45ff9e5530852e063d9105ecb64e62938527b8f9f8aec3aaf77e3089cebfd32be265d42385e421daf57929ade819dcf362608b5f75dcb1999377d889dbb02e", 0xc5}], 0x1, 0xfffffffffffffffc}}, {{&(0x7f0000000240)=@generic={0x1d, "939143da7cbe654c200aa1af18f286ddf768525e60bade6516685f1d8f24c253947d6a1c36bc32ec285b896148ceb1a775b83c56d3edd489c177f7c7b779f943ca441ab3438f20ea5edd6ac63562cb6abdb8c3f3918aabe41cc02601147ca7dfa105da3c01af47c68d7a03b4c733b81461750482f600d18d5f668f00c6aa"}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000480)="af47b8a4dad887a00f0220cc548e6c5585b84341cb7b9432edabcf4fb192403a757cd812f3510e8d0aa817cf457edab08aa0d103c585e93430567e82ebed13ab62b80eedfcf6c0792b89e77ac57b404f0bc3a102fab4f28fe78e43138a43eda822015e7ed985897c4ac927c4e625694ffc44656eaed8fcbe92f67fbf3c23ae62fcaa24c1caa2d452aed7e607ad9d4feca8a7c80377024e1188f27fc16eb0546d0e7029d42096484e00e79adc5d24fe301df45d17", 0xb4}, {&(0x7f0000000540)="4d3c2f9e315284c79d7f622c6d892548af053644f5f8c4fc836534069b6598261cb9fbd508dea21a9a22f69376c50ebf3cda801822f9fa3e405a09d2c0ac0249f960ce02bea8490ea85ad98302598dffc273c5e63b87dc4728895591f7e8b802a448f4f9cf7819cca9bf2f56abf51e1c47a9712e29d456c60561a3a27891d5be9028", 0x82}, {&(0x7f00000002c0)="8d7e346b9e01d84cbf6d75fd5c4e4ff25fe2973c3621f23037176643574be559c6ed", 0x22}, {&(0x7f0000000600)="93a96d0240cabb251280c0eef3151d9a65fc0f5c1c25c375ae0b7ec00e678b76b3f6ea79655c1eadc9d08604afa82ca7fb487af14fd0da8f3fddd3befb00e271d05fc1fc26c6f808072308902d837f4f74454c5a04b72344791148c57601f2937d80bc8ddad51be1b408270c", 0x6c}, {&(0x7f0000000680)="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", 0xfc}], 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="78000000000000000901000030e628afc37f8deefaffffff73444aba64afa66bfbe7a252247347478c6d10d875b07fc82812550981c2c9b36def6354b303e924b2f58fd57d6dc366daa08fb6a7824fd32e3ae36b56c8dae060d22ffbfe04c7a8b537320c808afdbee3b7ee024f5d2f72b3db147ce2dcc3afb20000000000000060000000000000003a0000000100000086f21e9e7448120709198b0dd9d1976a4f0538415a1afb9292abde91e5a12cf3abe8713baa4227cda75d209c15e6ae860b63ff6a3f469054b4dc02be535bca9304ce1d29941e3689190000000000000030000000000000000000000002000000fbd2cb9fae0bcf31075df404947629e560f5dcc41eab9e0b54912bd7e7210000c8000000000000000e010000060000009f4f80d59b40aadbc0070c09a1619b6f0b7dbe4f3bf7a7f6b0f7eaff06d5b93cb12de36594f2a84630e2e778f3f2e70cabefe5ed36722cb4b2251a4b6911bae780df8a24391c0189c9ecbcfd1ce6d402772f710cfa47f8c2e6d4aea01691a83affcf90bc14b887377de2076cd5e3f8453ee4a73309f77ce10fbc316c40f6da4f82cac46f4b4d5317884562b3e4fc20c6dd8bc74cceb662be1de1dfff886c6490a24998ba9ff6fa4767c2054f5c17f727263ff265fe79726250000000000000000d0100000001000074a8d43daa29a3d3c03173184c998e2380d7223b4342a1ea0fba1d3c9f18a5f2169d91542e1ee8320d53e869fcc76a409c265a24fc7db57edf3552d7000000007000000000000000100100000100000084b7b3d4e6406874c4686d0ff810d022395e39cfec35e2836d1ebae52813822d47e79ac5c7e58568e853c82d801d727c9e5b904efdccc39434469f006e902b6bc7694ab41c60fe53390013eecb88d5e39a097bf28c55b16a4d42f07b48e42e253800000000000000130100007fe6000046ae1f9998f02752273a929eb03acc49862e6ac4299c2a4244b6a75a18aadd1a79cc0f1ccbf50000600000000000000002010000d4000000232624f8826fb530eeb464d0847b26f6bfd528c894344b5b1cbfcfdb7625727f036f2041b2c24b4322d23beceda4b9578598ec5cc8ab7b8b322ae70c39d7aa73f6c1af8b54a9f429452a160000000000"], 0x328}}, {{&(0x7f0000001f40)=@in6={0xa, 0x4e24, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0xffffffff}, 0x80, &(0x7f0000002080)=[{&(0x7f0000001fc0)="5a356fcb37b3297368fa0b13f9e6316e6e9a3c901fe9ece50e2573fef898a411effc2d6a594f656fb51d1b4adb17a3d823b98ffcc39910e0a8f28fe66325c69ed2f0b02da0f93d58305ffca22981be570a4e181d027d2b74a0712fe175897bf317a0e4bcc40f99f9036b8ca8f2d74a2a022e425d199c35f12b5425d426561de8e627bcaaba14ad89b4ee19a4b7ef210ea3865b5ae7fcea55a4", 0x99}], 0x1}}], 0x3, 0x24000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x40)
fanotify_mark(r1, 0x41, 0x8000038, r3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
io_setup(0x4, &(0x7f0000000280)=<r6=>0x0)
io_submit(r6, 0x20000113, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
connect$unix(r5, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x8}}}, 0x24}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007080)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0xfff2}, {0x10, 0x4}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mkdir(0x0, 0x0)

7.714540722s ago: executing program 5 (id=1524):
socket(0x1000000010, 0x80002, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
pipe2$9p(&(0x7f0000000000), 0x0)
socket$netlink(0x10, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x692}, 0x0, &(0x7f00000002c0)={0x3ff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x75}, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)=ANY=[@ANYBLOB="1400000000000a58000000090a010400000000000000000a00000008000a400000000008000640ffffff000900010073797a3000000000080005400000001c0900020073797a320000000008000340000000880c000b400000000000000005140000001000010000000000000000000084000a"], 0x80}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
modify_ldt$read(0x0, &(0x7f0000000040)=""/44, 0x2c)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x20000c10)
fanotify_mark(0xffffffffffffffff, 0x101, 0x4000086e, r2, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, &(0x7f0000000080)={{@local, 0x6}, 0x1, 0x7})
linkat(0xffffffffffffff9c, &(0x7f00000004c0)='./file5\x00', 0xffffffffffffff9c, &(0x7f0000000500)='./file7\x00', 0x0)

7.240036178s ago: executing program 4 (id=1526):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
close(r1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)

7.018121992s ago: executing program 1 (id=1527):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1801000084f906076f17df25b0b9d5ecb2b1b13c0700000091a9e62e00000000850000"], &(0x7f0000000340)='GPL\x00', 0x0, 0xffffffffffffffde, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f0000000780)={0x4, 0x395e, 0x3, {0x1, @sdr={0x3031334d, 0xdd17}}, 0x6})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, 0x0)
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, &(0x7f0000000440)={0x28, 0x5, r5, 0x0, &(0x7f0000000480)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0xd, 0x2})
creat(&(0x7f0000000040)='./bus\x00', 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x4e22, 0x3, @dev={0xfe, 0x80, '\x00', 0x17}, 0x8}}, 0x0, 0x0, 0x39, 0x0, "a09368aa323944f80e6b1458e67f744d556133ef0160b1f004fe99a5ce227ef7cbe11d0277ccc0470e9a03d11ed6c7c3e8c2e4bb356dac2480241ed05bfe1b5f66f2d61b31b71e8371c4dfbe6d259272"}, 0xd8)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000200000067000043a979645c932f691d7ec27c1c4f63000000000000000000000000000017000000"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000), 0x4)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001440)=@newtaction={0x850, 0x31, 0x1, 0x0, 0x0, {}, [{0x83c, 0x1, [@m_police={0x838, 0x0, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x4, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd]}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x3ff, 0x0, 0x8000000, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000040, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x850}}, 0x0)

7.016203568s ago: executing program 4 (id=1528):
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05400000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a300000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a01040000000000000000010000002400048020000180080001006f73"], 0xd4}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000380)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)

6.970718988s ago: executing program 0 (id=1529):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
creat(&(0x7f0000001200)='./file0\x00', 0x41)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0900000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000082f1", @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="020000000100"/28], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r6, 0x0, '\x00', 0x0, r5, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

6.383183936s ago: executing program 4 (id=1531):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$loop(&(0x7f0000000100), 0x3, 0x101002)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0x5]}, 0x8)
eventfd(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r1})
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

6.367161177s ago: executing program 1 (id=1532):
syz_clone3(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ustat(0xfffffffeffffffff, 0x0)

6.366888595s ago: executing program 5 (id=1533):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000000c0)={0x9}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
setresuid(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x6)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(0x0)
r5 = openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r7=>r6}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {0x100}}, './file1\x00'})
write(r0, &(0x7f0000000040)="1c0000001a005f0214f9f507000909000a000000000000000000000004", 0x1d)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000, 0x52, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$l2tp(0x2, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)

6.248449792s ago: executing program 6 (id=1534):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = fanotify_init(0x8, 0x800)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x6, 0xff, 0x2}, {0x0, 0xfffc, 0xfc, 0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xba}], 0x3})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(0xffffffffffffffff, &(0x7f0000000000)='4\x00', 0xfffffffffffffe12)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)
sendmmsg(r0, &(0x7f0000000d00)=[{{&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x4, 0x3, 0x4, 0x2, {0xa, 0x4e22, 0x7f, @mcast1, 0x1}}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000380)="2091353cda53d4a5493f43dd2a1ca7e5f7afabc43e3d69aa9e68b452a1b27684835a84a534c5272d25a07fe26d829a8f8b0bbe39b691ed77387abca8ef14281ef973dcf6aa298abf3a214a1b6f82dd205c724c278d031d88e6cb004616c8962af27cdb69d12ff242fab0dd42a039f8644157fb28422127b6b2850ab68321ee37da064573847e45ff9e5530852e063d9105ecb64e62938527b8f9f8aec3aaf77e3089cebfd32be265d42385e421daf57929ade819dcf362608b5f75dcb1999377d889dbb02e", 0xc5}], 0x1, 0xfffffffffffffffc}}, {{&(0x7f0000000240)=@generic={0x1d, "939143da7cbe654c200aa1af18f286ddf768525e60bade6516685f1d8f24c253947d6a1c36bc32ec285b896148ceb1a775b83c56d3edd489c177f7c7b779f943ca441ab3438f20ea5edd6ac63562cb6abdb8c3f3918aabe41cc02601147ca7dfa105da3c01af47c68d7a03b4c733b81461750482f600d18d5f668f00c6aa"}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000480)="af47b8a4dad887a00f0220cc548e6c5585b84341cb7b9432edabcf4fb192403a757cd812f3510e8d0aa817cf457edab08aa0d103c585e93430567e82ebed13ab62b80eedfcf6c0792b89e77ac57b404f0bc3a102fab4f28fe78e43138a43eda822015e7ed985897c4ac927c4e625694ffc44656eaed8fcbe92f67fbf3c23ae62fcaa24c1caa2d452aed7e607ad9d4feca8a7c80377024e1188f27fc16eb0546d0e7029d42096484e00e79adc5d24fe301df45d17", 0xb4}, {&(0x7f0000000540)="4d3c2f9e315284c79d7f622c6d892548af053644f5f8c4fc836534069b6598261cb9fbd508dea21a9a22f69376c50ebf3cda801822f9fa3e405a09d2c0ac0249f960ce02bea8490ea85ad98302598dffc273c5e63b87dc4728895591f7e8b802a448f4f9cf7819cca9bf2f56abf51e1c47a9712e29d456c60561a3a27891d5be9028", 0x82}, {&(0x7f00000002c0)="8d7e346b9e01d84cbf6d75fd5c4e4ff25fe2973c3621f23037176643574be559c6ed", 0x22}, {&(0x7f0000000600)="93a96d0240cabb251280c0eef3151d9a65fc0f5c1c25c375ae0b7ec00e678b76b3f6ea79655c1eadc9d08604afa82ca7fb487af14fd0da8f3fddd3befb00e271d05fc1fc26c6f808072308902d837f4f74454c5a04b72344791148c57601f2937d80bc8ddad51be1b408270c", 0x6c}, {&(0x7f0000000680)="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", 0xfc}], 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], 0x328}}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000bc0)="66a02bfb4413b67adff0d86c90d6a494c43e576d4c2c22a4ef58c2786f5e1b72cd8d323db6b7f3b331381719a223bcea1adf123828235de191273c67e4df29a3abb5902e9521b6dafbec58c18e6dbcaf7a29d540beca8b90e1ed3c6b176198d36fb9893a9771f9db1824d2f18819410c16519319eff5507b80681a450e473e8e952703bcb3e31de944e89353ff9d2739a2cf16367b56d80988f352acdb9b76395c9c7b9e1a0d0afbd39898015e6bee83f58d9833ad2d3cb730346a1743a05aa4760f801cef60132c52adf2b92593a59d005c38f20c6f0ddd4e10aca79c510fb6ae59088d0d3113a38e8add1659", 0xed}], 0x1, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x1218}}, {{&(0x7f0000001f40)=@in6={0xa, 0x4e24, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0xffffffff}, 0x80, &(0x7f0000002080)=[{&(0x7f0000001fc0)="5a356fcb37b3297368fa0b13f9e6316e6e9a3c901fe9ece50e2573fef898a411effc2d6a594f656fb51d1b4adb17a3d823b98ffcc39910e0a8f28fe66325c69ed2f0b02da0f93d58305ffca22981be570a4e181d027d2b74a0712fe175897bf317a0e4bcc40f99f9036b8ca8f2d74a2a022e425d199c35f12b5425d426561de8e627bcaaba14ad89b4ee19a4b7ef210ea3865b5ae7fcea55a4", 0x99}], 0x1}}], 0x4, 0x24000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x40)
fanotify_mark(r1, 0x41, 0x8000038, r3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
io_setup(0x4, &(0x7f0000000280)=<r6=>0x0)
io_submit(r6, 0x20000113, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
connect$unix(r5, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x8}}}, 0x24}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007080)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0xfff2}, {0x10, 0x4}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mkdir(0x0, 0x0)

4.502550548s ago: executing program 0 (id=1535):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="180000110000185c55363250ce0c37d76fdbe7adb100bcc14337c5cdb34354c3e7b8c3d4b2744aca1d8161cb24d0b4184d6e2d9dbf8208ec3d20c92b4514d75d560800000031847fd8aa554c4b429e7b", @ANYRES8=r2, @ANYBLOB="0000000000000000b702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40500000000000061109a000000000007000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close_range(r3, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904"], 0x0)
r4 = dup(r2)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000090000040"])
mount(&(0x7f0000000000)=@sr0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='virtiofs\x00', 0x2001, &(0x7f0000000100)='([^\x00')

4.445892388s ago: executing program 5 (id=1536):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x1})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0003"], 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000680)={0x2c, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0003690000006903"], 0x0, 0x0, 0x0}, 0x0)

4.332362506s ago: executing program 4 (id=1537):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
setresuid(0x0, 0x0, 0x0)
statx(0xffffffffffffffff, 0x0, 0x6d00, 0x20, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x6)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r7=>r6}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {0x100}}, './file1\x00'})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000, 0x52, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)

4.02581382s ago: executing program 6 (id=1538):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@can={0x1d, r2}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)="27050200590214000600002fb96dbcf706e10500000086ddffff1144ee162fd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000102821880b000000000000", 0x4a}, {&(0x7f0000000240)="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", 0x11b}], 0x2}, 0x9cdc2384056b48b8)

3.281875678s ago: executing program 5 (id=1539):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000040))
epoll_create1(0x0)
socket$unix(0x1, 0x1, 0x0)
socket$rxrpc(0x21, 0x2, 0x2)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r1, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r1, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

3.281180874s ago: executing program 4 (id=1540):
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4, 0x0, 0x8}, 0x18)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r5 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000240)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r6 = add_key$user(&(0x7f0000000480), &(0x7f0000000280)={'syz', 0x0}, &(0x7f0000000a00)="c218b8fb4f2711662cda1925942565487e7d348d3cb55586a0b8af4c8b0e15dd9b6a54e2b1949a11fd43529b6d7178ad1bca2c14db39ff5a5cc5653035257088bc479654863b4172cad06d296711c31da28fd6ee8733d014bdff64c5adb64d1df761b14bf856875d2ccbe1d4559c3a7600ffffff237a5aa929be91720ce0468e265d13f9ce80c2d474cff4fabd20cfa00fdc867ccd24521a769b61fd609b55a3672c221fc7ad9d29bb5a826e9e", 0xad, r5)
r7 = add_key$user(&(0x7f00000001c0), &(0x7f0000000000)={'syz', 0x1}, &(0x7f00000003c0)="d1", 0x1, r5)
r8 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r7, r8, r6}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'crct10dif\x00\x00\x00 \x00\x00\x00+\xcc\xff%\xd2cTH,\x00'}})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'syz_tun\x00'})
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)

3.162980626s ago: executing program 6 (id=1541):
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x2}}, './file0\x00'})
signalfd(r0, &(0x7f0000000040), 0x8)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x11}})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt(r2, 0x0, 0x82, 0x0, 0x0)

2.904598176s ago: executing program 1 (id=1542):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x38, 0x10, 0x403, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x1814, 0x927}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ppp={{0x8}, {0xc, 0x2, 0x0, 0x1, {0x8, 0x1, r1}}}}]}, 0x38}}, 0x0)

1.962207722s ago: executing program 6 (id=1543):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1801000084f906076f17df25b0b9d5ecb2b1b13c0700000091a9e62e00000000850000"], &(0x7f0000000340)='GPL\x00', 0x0, 0xffffffffffffffde, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f0000000780)={0x4, 0x395e, 0x3, {0x1, @sdr={0x3031334d, 0xdd17}}, 0x6})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, 0x0)
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, &(0x7f0000000440)={0x28, 0x5, r5, 0x0, &(0x7f0000000480)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0xd, 0x2})
creat(&(0x7f0000000040)='./bus\x00', 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x4e22, 0x3, @dev={0xfe, 0x80, '\x00', 0x17}, 0x8}}, 0x0, 0x0, 0x39, 0x0, "a09368aa323944f80e6b1458e67f744d556133ef0160b1f004fe99a5ce227ef7cbe11d0277ccc0470e9a03d11ed6c7c3e8c2e4bb356dac2480241ed05bfe1b5f66f2d61b31b71e8371c4dfbe6d259272"}, 0xd8)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000200000067000043a979645c932f691d7ec27c1c4f63000000000000000000000000000017000000"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000), 0x4)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001440)=@newtaction={0x850, 0x31, 0x1, 0x0, 0x0, {}, [{0x83c, 0x1, [@m_police={0x838, 0x0, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x4, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd]}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x3ff, 0x0, 0x8000000, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000040, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x850}}, 0x0)

1.255386244s ago: executing program 1 (id=1544):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0x0, 0x1}, {0x0, 0xf}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@newtfilter={0xa4, 0x2c, 0xd27, 0x10, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x8, 0xa}}, [@filter_kind_options=@f_u32={{0x8}, {0x93, 0x2, [@TCA_U32_SEL={0x74, 0x5, {0x2, 0x7, 0x6, 0xfffb, 0x8, 0x5, 0xffff, 0x5, [{0x7, 0x9, 0x81, 0xfff}, {0x7, 0x9, 0x200, 0x2}, {0x8, 0x8, 0x8, 0x6e}, {0x1, 0x1, 0x4, 0x2}, {0xb, 0x4, 0x9, 0x6}, {0x4, 0x3, 0x1ff, 0x3}]}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000001}, 0xc004)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.254780181s ago: executing program 6 (id=1545):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
readahead(0xffffffffffffffff, 0x1, 0xe)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6(0xa, 0x6, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000040)={0x10000000})
close_range(r5, r5, 0x2)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
epoll_wait(r6, &(0x7f0000001940)=[{}], 0x1, 0x4)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000003700010324bd70028ae79ca907"], 0x14}}, 0x0)
recvmmsg(r4, &(0x7f0000002900)=[{{0x0, 0x0, 0x0}, 0xfffffffe}], 0x1, 0x0, 0x0)

1.158582433s ago: executing program 1 (id=1546):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
creat(&(0x7f0000001200)='./file0\x00', 0x41)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0900000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000082f1", @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="020000000100"/28], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r6, 0x0, '\x00', 0x0, r5, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

41.565402ms ago: executing program 0 (id=1547):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$loop(&(0x7f0000000100), 0x3, 0x101002)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0x5]}, 0x8)
eventfd(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r1})
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

39.751976ms ago: executing program 4 (id=1548):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = fanotify_init(0x8, 0x800)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x6, 0xff, 0x2}, {0x0, 0xfffc, 0xfc, 0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xba}], 0x3})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(0xffffffffffffffff, &(0x7f0000000000)='4\x00', 0xfffffffffffffe12)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)
sendmmsg(r0, &(0x7f0000000d00)=[{{&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x4, 0x3, 0x4, 0x2, {0xa, 0x4e22, 0x7f, @mcast1, 0x1}}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000380)="2091353cda53d4a5493f43dd2a1ca7e5f7afabc43e3d69aa9e68b452a1b27684835a84a534c5272d25a07fe26d829a8f8b0bbe39b691ed77387abca8ef14281ef973dcf6aa298abf3a214a1b6f82dd205c724c278d031d88e6cb004616c8962af27cdb69d12ff242fab0dd42a039f8644157fb28422127b6b2850ab68321ee37da064573847e45ff9e5530852e063d9105ecb64e62938527b8f9f8aec3aaf77e3089cebfd32be265d42385e421daf57929ade819dcf362608b5f75dcb1999377d889dbb02e", 0xc5}], 0x1, 0xfffffffffffffffc}}, {{&(0x7f0000000240)=@generic={0x1d, "939143da7cbe654c200aa1af18f286ddf768525e60bade6516685f1d8f24c253947d6a1c36bc32ec285b896148ceb1a775b83c56d3edd489c177f7c7b779f943ca441ab3438f20ea5edd6ac63562cb6abdb8c3f3918aabe41cc02601147ca7dfa105da3c01af47c68d7a03b4c733b81461750482f600d18d5f668f00c6aa"}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000480)="af47b8a4dad887a00f0220cc548e6c5585b84341cb7b9432edabcf4fb192403a757cd812f3510e8d0aa817cf457edab08aa0d103c585e93430567e82ebed13ab62b80eedfcf6c0792b89e77ac57b404f0bc3a102fab4f28fe78e43138a43eda822015e7ed985897c4ac927c4e625694ffc44656eaed8fcbe92f67fbf3c23ae62fcaa24c1caa2d452aed7e607ad9d4feca8a7c80377024e1188f27fc16eb0546d0e7029d42096484e00e79adc5d24fe301df45d17", 0xb4}, {&(0x7f0000000540)="4d3c2f9e315284c79d7f622c6d892548af053644f5f8c4fc836534069b6598261cb9fbd508dea21a9a22f69376c50ebf3cda801822f9fa3e405a09d2c0ac0249f960ce02bea8490ea85ad98302598dffc273c5e63b87dc4728895591f7e8b802a448f4f9cf7819cca9bf2f56abf51e1c47a9712e29d456c60561a3a27891d5be9028", 0x82}, {&(0x7f00000002c0)="8d7e346b9e01d84cbf6d75fd5c4e4ff25fe2973c3621f23037176643574be559c6ed", 0x22}, {&(0x7f0000000600)="93a96d0240cabb251280c0eef3151d9a65fc0f5c1c25c375ae0b7ec00e678b76b3f6ea79655c1eadc9d08604afa82ca7fb487af14fd0da8f3fddd3befb00e271d05fc1fc26c6f808072308902d837f4f74454c5a04b72344791148c57601f2937d80bc8ddad51be1b408270c", 0x6c}, {&(0x7f0000000680)="463a1dff7ed2c5706185bf73898908d700249a52bb7039d634ac81b30046f479fbddd5f88c2e6ddccbfe436bb776645a76173cbfe9088baa422f80aa346185657b47ae0cc4d185c779edbf2905cbf7fb6b18757b56c622c8d9aabf648c30ddbf3b49da3ac7b6441e5c25180dcbd930030710ea68060cd872585b5348830283b7629ed266ab26fd75c406a0f05f34974783eec6cd08bfb7754577183ae733438efcb0d475e89773b866f56132522f2d8b9a7278ef606baa306c8c7d50fc9bbff22b48b6bb7062998d742b4cbc74175a0ae4b6e94471b2c9fb6376b9a24eff4b0ba513d25a75efb5ae864b1aad4c7ed5a581aef21ed1e38001ec6c3ef7", 0xfc}], 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="78000000000000000901000030e628afc37f8deefaffffff73444aba64afa66bfbe7a252247347478c6d10d875b07fc82812550981c2c9b36def6354b303e924b2f58fd57d6dc366daa08fb6a7824fd32e3ae36b56c8dae060d22ffbfe04c7a8b537320c808afdbee3b7ee024f5d2f72b3db147ce2dcc3afb20000000000000060000000000000003a0000000100000086f21e9e7448120709198b0dd9d1976a4f0538415a1afb9292abde91e5a12cf3abe8713baa4227cda75d209c15e6ae860b63ff6a3f469054b4dc02be535bca9304ce1d29941e3689190000000000000030000000000000000000000002000000fbd2cb9fae0bcf31075df404947629e560f5dcc41eab9e0b54912bd7e7210000c8000000000000000e010000060000009f4f80d59b40aadbc0070c09a1619b6f0b7dbe4f3bf7a7f6b0f7eaff06d5b93cb12de36594f2a84630e2e778f3f2e70cabefe5ed36722cb4b2251a4b6911bae780df8a24391c0189c9ecbcfd1ce6d402772f710cfa47f8c2e6d4aea01691a83affcf90bc14b887377de2076cd5e3f8453ee4a73309f77ce10fbc316c40f6da4f82cac46f4b4d5317884562b3e4fc20c6dd8bc74cceb662be1de1dfff886c6490a24998ba9ff6fa4767c2054f5c17f727263ff265fe79726250000000000000000d0100000001000074a8d43daa29a3d3c03173184c998e2380d7223b4342a1ea0fba1d3c9f18a5f2169d91542e1ee8320d53e869fcc76a409c265a24fc7db57edf3552d7000000007000000000000000100100000100000084b7b3d4e6406874c4686d0ff810d022395e39cfec35e2836d1ebae52813822d47e79ac5c7e58568e853c82d801d727c9e5b904efdccc39434469f006e902b6bc7694ab41c60fe53390013eecb88d5e39a097bf28c55b16a4d42f07b48e42e253800000000000000130100007fe6000046ae1f9998f02752273a929eb03acc49862e6ac4299c2a4244b6a75a18aadd1a79cc0f1ccbf50000600000000000000002010000d4000000232624f8826fb530eeb464d0847b26f6bfd528c894344b5b1cbfcfdb7625727f036f2041b2c24b4322d23beceda4b9578598ec5cc8ab7b8b322ae70c39d7aa73f6c1af8b54a9f429452a160000000000"], 0x328}}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000bc0)="66a02bfb4413b67adff0d86c90d6a494c43e576d4c2c22a4ef58c2786f5e1b72cd8d323db6b7f3b331381719a223bcea1adf123828235de191273c67e4df29a3abb5902e9521b6dafbec58c18e6dbcaf7a29d540beca8b90e1ed3c6b176198d36fb9893a9771f9db1824d2f18819410c16519319eff5507b80681a450e473e8e952703bcb3e31de944e89353ff9d2739a2cf16367b56d80988f352acdb9b76395c9c7b9e1a0d0afbd39898015e6bee83f58d9833ad2d3cb730346a1743a05aa4760f801cef60132c52adf2b92593a59d005c38f20c6f0ddd4e10aca79c510fb6ae59088d0d3113a38e8add1659", 0xed}], 0x1, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x1218}}, {{&(0x7f0000001f40)=@in6={0xa, 0x4e24, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0xffffffff}, 0x80, &(0x7f0000002080)=[{&(0x7f0000001fc0)="5a356fcb37b3297368fa0b13f9e6316e6e9a3c901fe9ece50e2573fef898a411effc2d6a594f656fb51d1b4adb17a3d823b98ffcc39910e0a8f28fe66325c69ed2f0b02da0f93d58305ffca22981be570a4e181d027d2b74a0712fe175897bf317a0e4bcc40f99f9036b8ca8f2d74a2a022e425d199c35f12b5425d426561de8e627bcaaba14ad89b4ee19a4b7ef210ea3865b5ae7fcea55a4", 0x99}], 0x1}}], 0x4, 0x24000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x40)
fanotify_mark(r1, 0x41, 0x8000038, r3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
io_setup(0x4, &(0x7f0000000280)=<r6=>0x0)
io_submit(r6, 0x20000113, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
connect$unix(r5, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x8}}}, 0x24}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007080)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0xfff2}, {0x10, 0x4}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mkdir(0x0, 0x0)

32.429961ms ago: executing program 6 (id=1549):
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05400000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a300000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a01040000000000000000010000002400048020000180080001006f736600140002800500020000000000080001400000001408000b40000000000900010073797a"], 0xd4}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000380)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)

0s ago: executing program 1 (id=1550):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
setresuid(0x0, 0x0, 0x0)
statx(0xffffffffffffffff, 0x0, 0x6d00, 0x20, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x6)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r7=>r6}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {0x100}}, './file1\x00'})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="b4050000200080066110000000000000c6000000000000009500d800000000009f33ef60916e55893f1eeb0b2ae13d922e6235592ce847e2566c43d72918a897323fd0723043c47c896ce0bce66a245ad9d6817fd98cd824498949714ffaac8a6f77ef0000ca5d82054d54d53cd2b6db714e75d9bdae214fa68a0557eb2c5ca683a4b6fcfcff0bffffffffffd47042eaebfa6fa26fa7a347c7faa8e700458c60897d4a6148a1c11428427c40de60beacf871ab5c2ff88a02084e5b5271e45f00003826fb8579c1fb01d2c5553d2ccb5fc5b51fe6b174ebd9907dcff414ed55b0c20cdbe7009a6fe7cc78762f1d4dcdbca64920db9a50f86c21632f7a4bd344e0bd74ff05d37ef68e3b9db863c758ffffffffabe90ac5d08dd9d4e0359c41cf3626e1230bc1cd4c02c460ceb44276e9bd94d1c2e6d17dc5c2edf332a62f5fe68fbbbbfcfd00000000000fbf940e6652d357474ed5f816f66ac3027460ae66317f83cdd7a7eb2a7003d1a6cf5478533584961c329fcf5a43e05c92bfef0dcd28000000003f2915a3039c9a78f63b8ec7e60a0000fed7d67c440e23d130e51eea1e085bebabe7059de9cbfc5117c024185a062acb6b8eec31c21b3af8b9eedb4660ed2deb7acf2a33a376a5cb7d4266d5b0be14488d14b473502486ad8dd600000000000000000000c7766ea7c581782c0d90f42a85303835fc291c25d29e6bead5d7360f2e1929d7736ebc8558c4506407d3046022bdf25485bd5442e05d9b4c1278343581b7a06f65e8ea6b042c4fd08381e5000000000000006398d6480000001a723b91030000006480304c66b217aea0156ce9eef911fe5b7370f79987303ecb3aabc53c60014a0101ab766754f596b41da9534d12b8306a1b36cf3b03f0d790879f523eabfbee83d8bd472ef69660cf6ec897106c51e54a17497f384c4956b41f3843e7c878b1e11316d8ddae1c6c3b85aaf7a9fcaf8f5d6186c42542d68ba72682c938d3c0a2e6e10eed71b1d31c9f300b41745329bf34495c63e43fb896e4903fb0fae54a8f0fe3b48a5b29d279070647e65097c8ecf32a15080000000000000001007ba4a70a084bd994ac5e00000000000000000000000000351a30cd97f83d72631d0fe92efa974a53f4dc1eb9a86df632a6d463688123f64d42a919bcfc44a90ffd680200000091f842a91c977f6075d07e39e669b0713af0498a99bf5261cb3269d499a5202d7a08b33ade7b38829b9bd39619688d5e9af22170ef83e5b92cbb32b655c45de1c154aad81bf64351668a3f76d5afa958aff76249e0ffdf8e45155536a1a44bfcbfbfd232af000052f9002a"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000, 0x52, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)

kernel console output (not intermixed with test programs):

246 ORIG_RAX: 0000000000000009
[  327.915903][ T8453] RAX: ffffffffffffffda RBX: 00007f29ba575fa0 RCX: 00007f29ba385d19
[  327.923891][ T8453] RDX: 0000000000000001 RSI: 0000000000003000 RDI: 0000000020ffd000
[  327.931978][ T8453] RBP: 00007f29b81f6090 R08: 0000000000000003 R09: 0000000100000000
[  327.939988][ T8453] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  327.947982][ T8453] R13: 0000000000000000 R14: 00007f29ba575fa0 R15: 00007ffe6c3ea0c8
[  327.955997][ T8453]  </TASK>
[  329.821639][ T8469] FAULT_INJECTION: forcing a failure.
[  329.821639][ T8469] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  329.874522][ T8469] CPU: 1 UID: 0 PID: 8469 Comm: syz.1.739 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  329.885196][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  329.895303][ T8469] Call Trace:
[  329.898637][ T8469]  <TASK>
[  329.901611][ T8469]  dump_stack_lvl+0x241/0x360
[  329.906358][ T8469]  ? __pfx_dump_stack_lvl+0x10/0x10
[  329.911615][ T8469]  ? __pfx__printk+0x10/0x10
[  329.916239][ T8469]  ? register_lock_class+0x102/0x980
[  329.921556][ T8469]  should_fail_ex+0x3b0/0x4e0
[  329.926268][ T8469]  prepare_alloc_pages+0x1da/0x5b0
[  329.931427][ T8469]  __alloc_pages_noprof+0x16f/0x710
[  329.936665][ T8469]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  329.942461][ T8469]  alloc_pages_mpol_noprof+0x3e8/0x680
[  329.947973][ T8469]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  329.954056][ T8469]  ? inode_query_iversion+0x17f/0x1f0
[  329.959566][ T8469]  ? do_raw_spin_unlock+0x13c/0x8b0
[  329.964794][ T8469]  folio_alloc_noprof+0x128/0x180
[  329.969837][ T8469]  fuse_readdir+0x1362/0x31a0
[  329.974539][ T8469]  ? __pfx_register_lock_class+0x10/0x10
[  329.980193][ T8469]  ? mark_lock+0x9a/0x360
[  329.984562][ T8469]  ? __pfx_fuse_readdir+0x10/0x10
[  329.989624][ T8469]  ? __pfx_lock_acquire+0x10/0x10
[  329.994763][ T8469]  ? __pfx___might_resched+0x10/0x10
[  330.000431][ T8469]  ? __pfx___mutex_trylock_common+0x10/0x10
[  330.006357][ T8469]  ? rcu_is_watching+0x15/0xb0
[  330.011174][ T8469]  ? __pfx___mutex_lock+0x10/0x10
[  330.016224][ T8469]  ? vfs_write+0x730/0xd30
[  330.020668][ T8469]  ? __fget_files+0x2a/0x410
[  330.025281][ T8469]  iterate_dir+0x571/0x800
[  330.029731][ T8469]  __se_sys_getdents64+0x1e2/0x4b0
[  330.034961][ T8469]  ? __pfx___se_sys_getdents64+0x10/0x10
[  330.040624][ T8469]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  330.046633][ T8469]  ? __pfx_filldir64+0x10/0x10
[  330.051432][ T8469]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  330.057804][ T8469]  ? do_syscall_64+0x100/0x230
[  330.062609][ T8469]  ? do_syscall_64+0xb6/0x230
[  330.067331][ T8469]  do_syscall_64+0xf3/0x230
[  330.071866][ T8469]  ? clear_bhb_loop+0x35/0x90
[  330.076571][ T8469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.082487][ T8469] RIP: 0033:0x7f704fd85d19
[  330.086917][ T8469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.106540][ T8469] RSP: 002b:00007f7050bb9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  330.114983][ T8469] RAX: ffffffffffffffda RBX: 00007f704ff75fa0 RCX: 00007f704fd85d19
[  330.122969][ T8469] RDX: 0000000000000011 RSI: 0000000000000000 RDI: 0000000000000004
[  330.130954][ T8469] RBP: 00007f7050bb9090 R08: 0000000000000000 R09: 0000000000000000
[  330.138939][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.146920][ T8469] R13: 0000000000000000 R14: 00007f704ff75fa0 R15: 00007ffed0ee9718
[  330.154923][ T8469]  </TASK>
[  330.441170][ T5877] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  330.497616][ T8483] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  330.651078][ T5877] usb 1-1: Using ep0 maxpacket: 8
[  330.703466][ T8489] netlink: 16 bytes leftover after parsing attributes in process `syz.1.743'.
[  330.740883][ T8489] netlink: 16 bytes leftover after parsing attributes in process `syz.1.743'.
[  330.749858][ T8489] netlink: 8 bytes leftover after parsing attributes in process `syz.1.743'.
[  330.789755][ T5877] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  330.801337][ T5877] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  330.818751][ T5877] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.847944][ T5877] usb 1-1: config 0 descriptor??
[  330.895962][ T8493] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  331.092574][ T5877] iowarrior 1-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  331.238505][ T8501] FAULT_INJECTION: forcing a failure.
[  331.238505][ T8501] name failslab, interval 1, probability 0, space 0, times 0
[  331.257718][ T8501] CPU: 0 UID: 0 PID: 8501 Comm: syz.3.746 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  331.268385][ T8501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  331.278489][ T8501] Call Trace:
[  331.281807][ T8501]  <TASK>
[  331.284768][ T8501]  dump_stack_lvl+0x241/0x360
[  331.289504][ T8501]  ? __pfx_dump_stack_lvl+0x10/0x10
[  331.291442][ T5877] usb 1-1: USB disconnect, device number 9
[  331.294736][ T8501]  ? __pfx__printk+0x10/0x10
[  331.294775][ T8501]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  331.311303][ T8501]  ? __pfx___might_resched+0x10/0x10
[  331.316657][ T8501]  should_fail_ex+0x3b0/0x4e0
[  331.321418][ T8501]  should_failslab+0xac/0x100
[  331.326173][ T8501]  kmem_cache_alloc_node_noprof+0x77/0x380
[  331.332032][ T8501]  ? __alloc_skb+0x1c3/0x440
[  331.336675][ T8501]  __alloc_skb+0x1c3/0x440
[  331.341139][ T8501]  ? validate_chain+0x11e/0x5920
[  331.346106][ T8501]  ? __pfx___alloc_skb+0x10/0x10
[  331.351146][ T8501]  ? reacquire_held_locks+0x690/0x690
[  331.356535][ T8501]  ? __pfx_lock_release+0x10/0x10
[  331.361590][ T8501]  alloc_skb_with_frags+0xc3/0x820
[  331.366739][ T8501]  ? mark_lock+0x9a/0x360
[  331.371091][ T8501]  ? __pfx_validate_chain+0x10/0x10
[  331.376311][ T8501]  ? __lock_acquire+0x1397/0x2100
[  331.381370][ T8501]  sock_alloc_send_pskb+0x91a/0xa60
[  331.386610][ T8501]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  331.392354][ T8501]  ? smack_socket_sendmsg+0x178/0x540
[  331.397745][ T8501]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  331.403490][ T8501]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  331.409927][ T8501]  hci_sock_sendmsg+0x22b/0x11c0
[  331.414981][ T8501]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  331.421774][ T8501]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  331.427161][ T8501]  ? get_pid_task+0x23/0x1f0
[  331.431769][ T8501]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  331.437150][ T8501]  __sock_sendmsg+0x221/0x270
[  331.441847][ T8501]  sock_write_iter+0x2d7/0x3f0
[  331.446633][ T8501]  ? __pfx_sock_write_iter+0x10/0x10
[  331.451945][ T8501]  ? bpf_lsm_file_permission+0x9/0x10
[  331.457337][ T8501]  ? security_file_permission+0x74/0x280
[  331.462997][ T8501]  vfs_write+0xaeb/0xd30
[  331.467270][ T8501]  ? __pfx_sock_write_iter+0x10/0x10
[  331.472572][ T8501]  ? __pfx_vfs_write+0x10/0x10
[  331.477375][ T8501]  ? __fget_files+0x2a/0x410
[  331.481986][ T8501]  ? __fget_files+0x2a/0x410
[  331.486595][ T8501]  ksys_write+0x18f/0x2b0
[  331.490950][ T8501]  ? __pfx_ksys_write+0x10/0x10
[  331.495834][ T8501]  ? do_syscall_64+0x100/0x230
[  331.500645][ T8501]  ? do_syscall_64+0xb6/0x230
[  331.505346][ T8501]  do_syscall_64+0xf3/0x230
[  331.509868][ T8501]  ? clear_bhb_loop+0x35/0x90
[  331.514572][ T8501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.520495][ T8501] RIP: 0033:0x7fe680785d19
[  331.524944][ T8501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.544604][ T8501] RSP: 002b:00007fe6815de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  331.553038][ T8501] RAX: ffffffffffffffda RBX: 00007fe680975fa0 RCX: 00007fe680785d19
[  331.561031][ T8501] RDX: 0000000000000007 RSI: 0000000020000000 RDI: 000000000000000a
[  331.569050][ T8501] RBP: 00007fe6815de090 R08: 0000000000000000 R09: 0000000000000000
[  331.577031][ T8501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.585012][ T8501] R13: 0000000000000000 R14: 00007fe680975fa0 R15: 00007ffd2dfd6ba8
[  331.593016][ T8501]  </TASK>
[  331.596202][    C0] vkms_vblank_simulate: vblank timer overrun
[  334.321694][ T8527] FAULT_INJECTION: forcing a failure.
[  334.321694][ T8527] name failslab, interval 1, probability 0, space 0, times 0
[  334.334921][ T8527] CPU: 1 UID: 0 PID: 8527 Comm: syz.0.755 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  334.345561][ T8527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  334.355668][ T8527] Call Trace:
[  334.358981][ T8527]  <TASK>
[  334.361943][ T8527]  dump_stack_lvl+0x241/0x360
[  334.366676][ T8527]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.371916][ T8527]  ? __pfx__printk+0x10/0x10
[  334.376552][ T8527]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  334.381957][ T8527]  ? __pfx___might_resched+0x10/0x10
[  334.387297][ T8527]  should_fail_ex+0x3b0/0x4e0
[  334.392038][ T8527]  should_failslab+0xac/0x100
[  334.396773][ T8527]  __kmalloc_node_noprof+0xe1/0x4d0
[  334.402012][ T8527]  ? __kvmalloc_node_noprof+0x72/0x190
[  334.407510][ T8527]  ? irqentry_exit+0x63/0x90
[  334.412147][ T8527]  __kvmalloc_node_noprof+0x72/0x190
[  334.417471][ T8527]  seq_read_iter+0x20c/0xd70
[  334.422097][ T8527]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  334.427863][ T8527]  ? kernfs_fop_read_iter+0x8a/0x640
[  334.433182][ T8527]  ? kernfs_fop_read_iter+0x142/0x640
[  334.438606][ T8527]  vfs_read+0x991/0xb70
[  334.442809][ T8527]  ? __pfx_vfs_read+0x10/0x10
[  334.447549][ T8527]  ? __fget_files+0x2a/0x410
[  334.452179][ T8527]  ? __fget_files+0x2a/0x410
[  334.456824][ T8527]  __x64_sys_pread64+0x1ac/0x240
[  334.461805][ T8527]  ? __pfx___x64_sys_pread64+0x10/0x10
[  334.467320][ T8527]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  334.473686][ T8527]  ? do_syscall_64+0xb6/0x230
[  334.478580][ T8527]  do_syscall_64+0xf3/0x230
[  334.483124][ T8527]  ? clear_bhb_loop+0x35/0x90
[  334.487841][ T8527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.493770][ T8527] RIP: 0033:0x7f79d8785d19
[  334.498222][ T8527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.517866][ T8527] RSP: 002b:00007f79d9581038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  334.526322][ T8527] RAX: ffffffffffffffda RBX: 00007f79d8976160 RCX: 00007f79d8785d19
[  334.534345][ T8527] RDX: 000000000000008e RSI: 0000000020000080 RDI: 0000000000000008
[  334.542405][ T8527] RBP: 00007f79d9581090 R08: 0000000000000000 R09: 0000000000000000
[  334.550407][ T8527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.558424][ T8527] R13: 0000000000000000 R14: 00007f79d8976160 R15: 00007ffe9758e578
[  334.566545][ T8527]  </TASK>
[  336.176380][ T8542] FAULT_INJECTION: forcing a failure.
[  336.176380][ T8542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.201926][ T8542] CPU: 1 UID: 0 PID: 8542 Comm: syz.2.758 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  336.212564][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  336.222629][ T8542] Call Trace:
[  336.225913][ T8542]  <TASK>
[  336.228856][ T8542]  dump_stack_lvl+0x241/0x360
[  336.233557][ T8542]  ? __pfx_dump_stack_lvl+0x10/0x10
[  336.238763][ T8542]  ? __pfx__printk+0x10/0x10
[  336.243364][ T8542]  ? __pfx_lock_release+0x10/0x10
[  336.248427][ T8542]  should_fail_ex+0x3b0/0x4e0
[  336.253150][ T8542]  _copy_from_user+0x2f/0xc0
[  336.257771][ T8542]  get_timespec64+0x97/0x280
[  336.262465][ T8542]  ? __pfx_vfs_write+0x10/0x10
[  336.267238][ T8542]  ? __pfx_get_timespec64+0x10/0x10
[  336.272467][ T8542]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  336.278547][ T8542]  ? __fget_files+0x2a/0x410
[  336.283146][ T8542]  __se_sys_pselect6+0x12e/0x3f0
[  336.288099][ T8542]  ? __pfx___se_sys_pselect6+0x10/0x10
[  336.293569][ T8542]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  336.299996][ T8542]  ? do_syscall_64+0x100/0x230
[  336.305581][ T8542]  ? __x64_sys_pselect6+0x21/0xf0
[  336.310637][ T8542]  do_syscall_64+0xf3/0x230
[  336.315150][ T8542]  ? clear_bhb_loop+0x35/0x90
[  336.319840][ T8542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.325748][ T8542] RIP: 0033:0x7fb045385d19
[  336.330166][ T8542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.349803][ T8542] RSP: 002b:00007fb046121038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  336.358227][ T8542] RAX: ffffffffffffffda RBX: 00007fb045575fa0 RCX: 00007fb045385d19
[  336.366201][ T8542] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040
[  336.374269][ T8542] RBP: 00007fb046121090 R08: 0000000020000300 R09: 0000000000000000
[  336.382333][ T8542] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001
[  336.390307][ T8542] R13: 0000000000000000 R14: 00007fb045575fa0 R15: 00007fff7b1c3df8
[  336.398301][ T8542]  </TASK>
[  336.550943][   T29] audit: type=1326 audit(1734139550.952:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8540 comm="syz.4.759" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  336.588241][ T8545] netlink: 'syz.4.759': attribute type 5 has an invalid length.
[  336.900845][    T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  336.965101][ T5876] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  337.270928][    T9] usb 4-1: Using ep0 maxpacket: 16
[  337.282539][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  337.293023][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  337.317790][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  337.330941][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.339014][    T9] usb 4-1: Product: syz
[  337.360812][    T9] usb 4-1: Manufacturer: syz
[  337.367775][    T9] usb 4-1: SerialNumber: syz
[  337.421699][ T5876] usb 3-1: Using ep0 maxpacket: 32
[  337.428978][ T5876] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  337.437919][ T5876] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  337.453585][ T5876] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  337.488048][ T5876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  337.503777][ T5876] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  337.518488][ T5876] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  337.535332][ T5876] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  337.549269][ T5876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.579553][ T5876] usb 3-1: config 0 descriptor??
[  337.908266][ T5876] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  337.960936][ T5840] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  338.090720][    C1] hrtimer: interrupt took 47009 ns
[  338.112324][    C1] usblp0: nonzero read bulk status received: -71
[  338.121753][ T5877] usb 3-1: USB disconnect, device number 9
[  338.144993][ T5840] usb 1-1: Using ep0 maxpacket: 16
[  338.184884][ T5840] usb 1-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.221199][ T5840] usb 1-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.285922][ T5840] usb 1-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  338.319815][ T5840] usb 1-1: config 0 interface 0 has no altsetting 0
[  338.323518][    T9] usb 4-1: cannot find UAC_HEADER
[  338.349530][    T9] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  338.356726][ T5840] usb 1-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  338.361383][    T9] usb 4-1: USB disconnect, device number 14
[  338.387247][ T5840] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.611503][ T8546] usblp0: removed
[  339.696487][ T8211] udevd[8211]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  339.965063][ T8571] 9pnet_fd: Insufficient options for proto=fd
[  340.117170][ T5840] usb 1-1: config 0 descriptor??
[  340.201031][    T9] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  340.810983][ T5840] usbhid 1-1:0.0: can't add hid device: -71
[  340.817087][ T5840] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  340.928595][ T8578] loop3: detected capacity change from 0 to 7
[  340.978740][ T8578] Dev loop3: unable to read RDB block 7
[  340.984833][ T8578]  loop3: unable to read partition table
[  340.992467][ T8578] loop3: partition table beyond EOD, truncated
[  340.998883][ T8578] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  341.748812][ T8581] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  341.915134][ T5840] usb 1-1: USB disconnect, device number 10
[  342.065169][ T8585] netlink: 52 bytes leftover after parsing attributes in process `syz.2.771'.
[  342.155336][ T8585] netlink: 84 bytes leftover after parsing attributes in process `syz.2.771'.
[  342.393174][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  342.414193][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  342.424283][    T9] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  342.611826][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.704073][    T9] usb 2-1: config 0 descriptor??
[  342.942633][   T29] audit: type=1326 audit(1734139557.362:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8591 comm="syz.3.773" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe680785d19 code=0x0
[  342.993522][ T8595] netlink: 'syz.3.773': attribute type 5 has an invalid length.
[  342.993681][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  343.008106][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  343.043108][    T9] usb 2-1: USB disconnect, device number 11
[  343.359450][ T8604] 9pnet_fd: Insufficient options for proto=fd
[  345.394316][ T8616] fuse: Bad value for 'rootmode'
[  345.700856][ T5946] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  345.875706][ T5946] usb 1-1: too many configurations: 9, using maximum allowed: 8
[  345.931275][ T5946] usb 1-1: config 0 has no interfaces?
[  346.004218][ T5946] usb 1-1: config 0 has no interfaces?
[  346.058664][ T5946] usb 1-1: config 0 has no interfaces?
[  346.171959][ T5946] usb 1-1: config 0 has no interfaces?
[  346.187472][ T5946] usb 1-1: config 0 has no interfaces?
[  346.210125][ T5946] usb 1-1: config 0 has no interfaces?
[  346.246514][ T5946] usb 1-1: config 0 has no interfaces?
[  346.256170][ T5946] usb 1-1: config 0 has no interfaces?
[  346.289788][ T5946] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  346.315527][ T5946] usb 1-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  346.352098][ T5946] usb 1-1: Product: syz
[  346.356391][ T5946] usb 1-1: Manufacturer: syz
[  346.361027][ T5876] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  346.376427][ T5946] usb 1-1: SerialNumber: syz
[  346.392071][ T5946] usb 1-1: config 0 descriptor??
[  346.510876][ T5876] usb 4-1: Using ep0 maxpacket: 16
[  346.542070][ T5876] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  346.557026][ T5876] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 3
[  346.721530][ T5876] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  346.730662][ T5876] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.738977][ T5876] usb 4-1: Product: syz
[  346.743839][ T5876] usb 4-1: Manufacturer: syz
[  346.748492][ T5876] usb 4-1: SerialNumber: syz
[  346.780508][ T8644] 9pnet_fd: Insufficient options for proto=fd
[  348.227948][ T5946] usb 4-1: USB disconnect, device number 15
[  348.319349][ T8659] FAULT_INJECTION: forcing a failure.
[  348.319349][ T8659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.341594][ T8659] CPU: 1 UID: 0 PID: 8659 Comm: syz.3.795 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  348.352279][ T8659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  348.362382][ T8659] Call Trace:
[  348.365699][ T8659]  <TASK>
[  348.368659][ T8659]  dump_stack_lvl+0x241/0x360
[  348.373426][ T8659]  ? __pfx_dump_stack_lvl+0x10/0x10
[  348.378687][ T8659]  ? __pfx__printk+0x10/0x10
[  348.383334][ T8659]  ? snprintf+0xda/0x120
[  348.387705][ T8659]  should_fail_ex+0x3b0/0x4e0
[  348.392439][ T8659]  _copy_to_user+0x31/0xb0
[  348.396911][ T8659]  simple_read_from_buffer+0xca/0x150
[  348.402369][ T8659]  proc_fail_nth_read+0x1e9/0x250
[  348.407444][ T8659]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  348.413057][ T8659]  ? rw_verify_area+0x55e/0x6f0
[  348.417958][ T8659]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  348.423560][ T8659]  vfs_read+0x1fc/0xb70
[  348.427768][ T8659]  ? __pfx___mutex_lock+0x10/0x10
[  348.432848][ T8659]  ? __pfx_vfs_read+0x10/0x10
[  348.437572][ T8659]  ? __fget_files+0x2a/0x410
[  348.442203][ T8659]  ? __fget_files+0x395/0x410
[  348.446915][ T8659]  ? __fget_files+0x2a/0x410
[  348.451555][ T8659]  ksys_read+0x18f/0x2b0
[  348.455840][ T8659]  ? __pfx_ksys_read+0x10/0x10
[  348.461087][ T8659]  ? __secure_computing+0x125/0x370
[  348.466342][ T8659]  do_syscall_64+0xf3/0x230
[  348.470890][ T8659]  ? clear_bhb_loop+0x35/0x90
[  348.475625][ T8659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.481584][ T8659] RIP: 0033:0x7fe68078472c
[  348.486051][ T8659] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  348.505712][ T8659] RSP: 002b:00007fe6815de030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  348.514194][ T8659] RAX: ffffffffffffffda RBX: 00007fe680975fa0 RCX: 00007fe68078472c
[  348.522218][ T8659] RDX: 000000000000000f RSI: 00007fe6815de0a0 RDI: 0000000000000003
[  348.530229][ T8659] RBP: 00007fe6815de090 R08: 0000000000000000 R09: 0000000000000000
[  348.538249][ T8659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.546287][ T8659] R13: 0000000000000000 R14: 00007fe680975fa0 R15: 00007ffd2dfd6ba8
[  348.554329][ T8659]  </TASK>
[  348.642088][   T29] audit: type=1326 audit(1734139563.062:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8653 comm="syz.1.794" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  348.692464][ T8655] netlink: 'syz.1.794': attribute type 5 has an invalid length.
[  348.946512][ T5946] usb 1-1: USB disconnect, device number 11
[  348.982514][ T5876] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  349.220820][ T5876] usb 4-1: Using ep0 maxpacket: 16
[  349.227714][ T5876] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  349.242375][ T5876] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  349.258554][ T5876] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  349.278218][ T5876] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  349.318335][ T8670] binder: BINDER_SET_CONTEXT_MGR already set
[  349.329347][ T5876] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.337478][ T8670] binder: 8669:8670 ioctl 4018620d 20000040 returned -16
[  349.941436][ T5876] usb 4-1: config 0 descriptor??
[  350.144380][ T8680] 9pnet_fd: Insufficient options for proto=fd
[  350.493569][ T5876] microsoft 0003:045E:07DA.0006: ignoring exceeding usage max
[  350.504367][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.512036][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.519454][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.527594][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.535818][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.544111][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.551625][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.559034][ T5876] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  350.781715][ T5876] microsoft 0003:045E:07DA.0006: No inputs registered, leaving
[  350.913673][ T5876] microsoft 0003:045E:07DA.0006: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  350.925771][ T5876] microsoft 0003:045E:07DA.0006: no inputs found
[  350.932757][ T5876] microsoft 0003:045E:07DA.0006: could not initialize ff, continuing anyway
[  351.518251][    T8] usb 4-1: USB disconnect, device number 16
[  351.945613][ T8690] overlay: ./bus is not a directory
[  352.046764][ T8695] loop8: detected capacity change from 0 to 7
[  352.057208][ T8695] Dev loop8: unable to read RDB block 7
[  352.144492][ T8695]  loop8: unable to read partition table
[  352.360496][ T8695] loop8: partition table beyond EOD, truncated
[  352.394428][ T8695] loop_reread_partitions: partition scan of loop8 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  352.394428][ T8695] 
) failed (rc=-5)
[  352.431007][ T5877] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  352.524841][   T29] audit: type=1326 audit(1734139566.942:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8702 comm="syz.3.809" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe680785d19 code=0x0
[  352.575266][ T8704] netlink: 'syz.3.809': attribute type 5 has an invalid length.
[  352.585079][ T5877] usb 2-1: Using ep0 maxpacket: 8
[  352.602200][ T5877] usb 2-1: config index 0 descriptor too short (expected 6427, got 27)
[  352.611214][ T5877] usb 2-1: config 0 has an invalid interface number: 21 but max is 0
[  352.619407][ T5877] usb 2-1: config 0 has no interface number 0
[  352.625769][ T5877] usb 2-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  352.637442][ T5877] usb 2-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  352.649487][ T5877] usb 2-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  352.690790][ T5877] usb 2-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  352.699934][ T5877] usb 2-1: New USB device strings: Mfr=31, Product=1, SerialNumber=0
[  352.708259][ T5877] usb 2-1: Product: syz
[  352.712535][ T5877] usb 2-1: Manufacturer: syz
[  352.724167][ T5877] usb 2-1: config 0 descriptor??
[  352.735614][ T8690] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  352.959659][ T5877] usb 2-1: USB disconnect, device number 12
[  353.186624][ T8710] syzkaller1: entered promiscuous mode
[  353.193509][ T8710] syzkaller1: entered allmulticast mode
[  353.304375][ T8712] netlink: 28 bytes leftover after parsing attributes in process `syz.4.813'.
[  353.324366][ T8712] netlink: 28 bytes leftover after parsing attributes in process `syz.4.813'.
[  353.403792][ T8712] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  353.454181][ T8712] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  353.478990][ T8714] netlink: 'syz.4.813': attribute type 1 has an invalid length.
[  353.522924][ T8714] netlink: 4 bytes leftover after parsing attributes in process `syz.4.813'.
[  353.829215][ T8721] syz.2.815: attempt to access beyond end of device
[  353.829215][ T8721] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  353.843148][ T8721] hpfs: hpfs_map_sector(): read error
[  353.905198][ T8712] netlink: 60 bytes leftover after parsing attributes in process `syz.4.813'.
[  356.806781][   T29] audit: type=1326 audit(1734139571.222:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8751 comm="syz.4.824" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  356.860491][ T8755] netlink: 'syz.4.824': attribute type 5 has an invalid length.
[  356.987979][ T8757] FAULT_INJECTION: forcing a failure.
[  356.987979][ T8757] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.021003][ T8757] CPU: 0 UID: 0 PID: 8757 Comm: syz.3.826 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  357.031667][ T8757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  357.041761][ T8757] Call Trace:
[  357.045051][ T8757]  <TASK>
[  357.047982][ T8757]  dump_stack_lvl+0x241/0x360
[  357.052691][ T8757]  ? __pfx_dump_stack_lvl+0x10/0x10
[  357.057894][ T8757]  ? __pfx__printk+0x10/0x10
[  357.062493][ T8757]  ? __pfx_lock_release+0x10/0x10
[  357.067547][ T8757]  should_fail_ex+0x3b0/0x4e0
[  357.072240][ T8757]  _copy_from_user+0x2f/0xc0
[  357.076836][ T8757]  copy_msghdr_from_user+0xae/0x680
[  357.082078][ T8757]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  357.087920][ T8757]  ? __fget_files+0x2a/0x410
[  357.092520][ T8757]  ? __fget_files+0x2a/0x410
[  357.097116][ T8757]  __sys_sendmsg+0x209/0x350
[  357.101744][ T8757]  ? __pfx_lock_release+0x10/0x10
[  357.106775][ T8757]  ? __pfx___sys_sendmsg+0x10/0x10
[  357.111902][ T8757]  ? __pfx_vfs_write+0x10/0x10
[  357.116692][ T8757]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  357.123038][ T8757]  ? do_syscall_64+0x100/0x230
[  357.127810][ T8757]  ? do_syscall_64+0xb6/0x230
[  357.132496][ T8757]  do_syscall_64+0xf3/0x230
[  357.137001][ T8757]  ? clear_bhb_loop+0x35/0x90
[  357.141684][ T8757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.147620][ T8757] RIP: 0033:0x7fe680785d19
[  357.152053][ T8757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.171668][ T8757] RSP: 002b:00007fe6815de038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  357.180088][ T8757] RAX: ffffffffffffffda RBX: 00007fe680975fa0 RCX: 00007fe680785d19
[  357.188091][ T8757] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005
[  357.196100][ T8757] RBP: 00007fe6815de090 R08: 0000000000000000 R09: 0000000000000000
[  357.204092][ T8757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.212091][ T8757] R13: 0000000000000000 R14: 00007fe680975fa0 R15: 00007ffd2dfd6ba8
[  357.220075][ T8757]  </TASK>
[  358.794578][ T8775] netlink: 16 bytes leftover after parsing attributes in process `syz.3.833'.
[  358.849230][ T8776] 9pnet_fd: Insufficient options for proto=fd
[  358.911808][ T8775] netlink: 16 bytes leftover after parsing attributes in process `syz.3.833'.
[  359.032305][ T8775] netlink: 8 bytes leftover after parsing attributes in process `syz.3.833'.
[  360.851888][ T8792] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  361.613177][   T29] audit: type=1326 audit(1734139576.022:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8795 comm="syz.4.840" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  361.657538][ T8796] netlink: 'syz.4.840': attribute type 5 has an invalid length.
[  361.957349][ T8804] netlink: 252 bytes leftover after parsing attributes in process `syz.0.838'.
[  361.966942][ T8804] netlink: 24 bytes leftover after parsing attributes in process `syz.0.838'.
[  363.018409][ T8813] netlink: 8 bytes leftover after parsing attributes in process `syz.4.843'.
[  363.641111][ T8813] Invalid logical block size (4)
[  363.658512][ T8820] netlink: 28 bytes leftover after parsing attributes in process `syz.1.845'.
[  363.678585][ T8820] netlink: 28 bytes leftover after parsing attributes in process `syz.1.845'.
[  363.746625][ T8826] netlink: 16 bytes leftover after parsing attributes in process `syz.0.846'.
[  363.789148][ T8826] netlink: 16 bytes leftover after parsing attributes in process `syz.0.846'.
[  363.833597][ T8826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.846'.
[  363.904708][ T8820] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  363.940554][ T8820] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  364.073657][ T8827] netlink: 'syz.1.845': attribute type 1 has an invalid length.
[  364.083325][ T8825] netlink: 60 bytes leftover after parsing attributes in process `syz.1.845'.
[  364.092354][ T8827] netlink: 4 bytes leftover after parsing attributes in process `syz.1.845'.
[  366.228909][   T29] audit: type=1326 audit(1734139580.642:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8855 comm="syz.1.853" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  366.279631][ T8856] netlink: 'syz.1.853': attribute type 5 has an invalid length.
[  366.360673][ T8860] FAULT_INJECTION: forcing a failure.
[  366.360673][ T8860] name failslab, interval 1, probability 0, space 0, times 0
[  366.373586][ T8860] CPU: 1 UID: 0 PID: 8860 Comm: syz.0.854 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  366.384211][ T8860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  366.394291][ T8860] Call Trace:
[  366.397586][ T8860]  <TASK>
[  366.400530][ T8860]  dump_stack_lvl+0x241/0x360
[  366.405254][ T8860]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.410472][ T8860]  ? __pfx__printk+0x10/0x10
[  366.415083][ T8860]  ? fs_reclaim_acquire+0x93/0x130
[  366.420212][ T8860]  ? __pfx___might_resched+0x10/0x10
[  366.425519][ T8860]  should_fail_ex+0x3b0/0x4e0
[  366.430224][ T8860]  should_failslab+0xac/0x100
[  366.434922][ T8860]  __kmalloc_noprof+0xdd/0x4c0
[  366.439697][ T8860]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  366.445548][ T8860]  tomoyo_realpath_from_path+0xcf/0x5e0
[  366.451117][ T8860]  tomoyo_path_number_perm+0x236/0x860
[  366.456584][ T8860]  ? __lock_acquire+0x1397/0x2100
[  366.461626][ T8860]  ? tomoyo_path_number_perm+0x206/0x860
[  366.467274][ T8860]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  366.473291][ T8860]  ? __fget_files+0x2a/0x410
[  366.477894][ T8860]  ? __fget_files+0x2a/0x410
[  366.482512][ T8860]  security_file_ioctl+0xc6/0x2a0
[  366.487552][ T8860]  __se_sys_ioctl+0x46/0x170
[  366.492158][ T8860]  do_syscall_64+0xf3/0x230
[  366.496696][ T8860]  ? clear_bhb_loop+0x35/0x90
[  366.501397][ T8860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.507313][ T8860] RIP: 0033:0x7f79d8785d19
[  366.511753][ T8860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.531373][ T8860] RSP: 002b:00007f79d95a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  366.539821][ T8860] RAX: ffffffffffffffda RBX: 00007f79d8976080 RCX: 00007f79d8785d19
[  366.547807][ T8860] RDX: 0000000020000440 RSI: 0000000000003b85 RDI: 0000000000000005
[  366.555791][ T8860] RBP: 00007f79d95a2090 R08: 0000000000000000 R09: 0000000000000000
[  366.563776][ T8860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.571761][ T8860] R13: 0000000000000000 R14: 00007f79d8976080 R15: 00007ffe9758e578
[  366.579760][ T8860]  </TASK>
[  366.583932][ T8860] ERROR: Out of memory at tomoyo_realpath_from_path.
[  367.995001][ T8878] FAULT_INJECTION: forcing a failure.
[  367.995001][ T8878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.589418][ T8878] CPU: 0 UID: 0 PID: 8878 Comm: syz.3.858 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  368.600091][ T8878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  368.610197][ T8878] Call Trace:
[  368.613509][ T8878]  <TASK>
[  368.616465][ T8878]  dump_stack_lvl+0x241/0x360
[  368.621206][ T8878]  ? __pfx_dump_stack_lvl+0x10/0x10
[  368.626441][ T8878]  ? __pfx__printk+0x10/0x10
[  368.631077][ T8878]  should_fail_ex+0x3b0/0x4e0
[  368.635797][ T8878]  _copy_to_user+0x31/0xb0
[  368.640272][ T8878]  simple_read_from_buffer+0xca/0x150
[  368.645714][ T8878]  proc_fail_nth_read+0x1e9/0x250
[  368.650803][ T8878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.656417][ T8878]  ? rw_verify_area+0x55e/0x6f0
[  368.661344][ T8878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.666954][ T8878]  vfs_read+0x1fc/0xb70
[  368.671157][ T8878]  ? __pfx___mutex_lock+0x10/0x10
[  368.676227][ T8878]  ? __pfx_vfs_read+0x10/0x10
[  368.680956][ T8878]  ? __fget_files+0x2a/0x410
[  368.685599][ T8878]  ? __fget_files+0x395/0x410
[  368.690304][ T8878]  ? __fget_files+0x2a/0x410
[  368.694936][ T8878]  ksys_read+0x18f/0x2b0
[  368.699228][ T8878]  ? __pfx_ksys_read+0x10/0x10
[  368.704054][ T8878]  ? do_syscall_64+0x100/0x230
[  368.708870][ T8878]  ? do_syscall_64+0xb6/0x230
[  368.713625][ T8878]  do_syscall_64+0xf3/0x230
[  368.718173][ T8878]  ? clear_bhb_loop+0x35/0x90
[  368.722902][ T8878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.728847][ T8878] RIP: 0033:0x7fe68078472c
[  368.733297][ T8878] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  368.752956][ T8878] RSP: 002b:00007fe68159c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  368.761420][ T8878] RAX: ffffffffffffffda RBX: 00007fe680976160 RCX: 00007fe68078472c
[  368.769438][ T8878] RDX: 000000000000000f RSI: 00007fe68159c0a0 RDI: 0000000000000004
[  368.777457][ T8878] RBP: 00007fe68159c090 R08: 0000000000000000 R09: 0000000000000000
[  368.785577][ T8878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.793586][ T8878] R13: 0000000000000001 R14: 00007fe680976160 R15: 00007ffd2dfd6ba8
[  368.801610][ T8878]  </TASK>
[  371.732564][ T5827] Bluetooth: hci4: command 0x0406 tx timeout
[  372.383100][   T29] audit: type=1400 audit(1734139586.802:142): lsm=SMACK fn=smack_ipc_permission action=denied subject="w" object="_" requested=w pid=8905 comm="syz.2.866" ipc_key=0 
[  372.399910][   T29] audit: type=1400 audit(1734139586.812:143): lsm=SMACK fn=smack_inode_permission action=denied subject="w" object="_" requested=rw pid=8905 comm="syz.2.866" name="raw-gadget" dev="devtmpfs" ino=820
[  373.641096][ T8912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.868'.
[  374.898831][ T8900] netlink: 16 bytes leftover after parsing attributes in process `syz.3.862'.
[  374.908852][ T8900] netlink: 16 bytes leftover after parsing attributes in process `syz.3.862'.
[  374.918471][ T8900] netlink: 8 bytes leftover after parsing attributes in process `syz.3.862'.
[  374.931024][ T8906] netlink: 'syz.2.866': attribute type 12 has an invalid length.
[  375.091710][ T8919] FAULT_INJECTION: forcing a failure.
[  375.091710][ T8919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  375.129123][ T8919] CPU: 0 UID: 0 PID: 8919 Comm: syz.4.871 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  375.139879][ T8919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  375.149979][ T8919] Call Trace:
[  375.153292][ T8919]  <TASK>
[  375.156241][ T8919]  dump_stack_lvl+0x241/0x360
[  375.161033][ T8919]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.166341][ T8919]  ? __pfx__printk+0x10/0x10
[  375.170962][ T8919]  ? snprintf+0xda/0x120
[  375.175219][ T8919]  should_fail_ex+0x3b0/0x4e0
[  375.179928][ T8919]  _copy_to_user+0x31/0xb0
[  375.184376][ T8919]  simple_read_from_buffer+0xca/0x150
[  375.189775][ T8919]  proc_fail_nth_read+0x1e9/0x250
[  375.194826][ T8919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  375.200398][ T8919]  ? rw_verify_area+0x55e/0x6f0
[  375.205266][ T8919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  375.210838][ T8919]  vfs_read+0x1fc/0xb70
[  375.215031][ T8919]  ? __pfx___mutex_lock+0x10/0x10
[  375.220077][ T8919]  ? __pfx_vfs_read+0x10/0x10
[  375.224775][ T8919]  ? __fget_files+0x2a/0x410
[  375.229382][ T8919]  ? __fget_files+0x395/0x410
[  375.234067][ T8919]  ? __fget_files+0x2a/0x410
[  375.238672][ T8919]  ksys_read+0x18f/0x2b0
[  375.242931][ T8919]  ? __pfx_ksys_read+0x10/0x10
[  375.247703][ T8919]  ? arch_syscall_is_vdso_sigreturn+0x125/0x1a0
[  375.253970][ T8919]  ? syscall_user_dispatch+0x4e/0x90
[  375.259289][ T8919]  do_syscall_64+0xf3/0x230
[  375.263901][ T8919]  ? clear_bhb_loop+0x35/0x90
[  375.268597][ T8919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.274507][ T8919] RIP: 0033:0x7f29ba38472c
[  375.278930][ T8919] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  375.298567][ T8919] RSP: 002b:00007f29b81f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  375.306998][ T8919] RAX: ffffffffffffffda RBX: 00007f29ba575fa0 RCX: 00007f29ba38472c
[  375.314987][ T8919] RDX: 000000000000000f RSI: 00007f29b81f60a0 RDI: 0000000000000003
[  375.322971][ T8919] RBP: 00007f29b81f6090 R08: 0000000000000000 R09: 0000000000000006
[  375.330953][ T8919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.338932][ T8919] R13: 0000000000000000 R14: 00007f29ba575fa0 R15: 00007ffe6c3ea0c8
[  375.346945][ T8919]  </TASK>
[  375.351328][   T29] audit: type=1326 audit(1734139589.772:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8915 comm="syz.1.869" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  375.406491][ T8920] can: request_module (can-proto-0) failed.
[  375.481783][ T8918] netlink: 'syz.1.869': attribute type 5 has an invalid length.
[  376.392834][ T8937] netlink: 24 bytes leftover after parsing attributes in process `syz.0.877'.
[  376.469536][ T8937] netlink: 'syz.0.877': attribute type 4 has an invalid length.
[  376.590994][ T5877] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  376.820920][ T5877] usb 4-1: Using ep0 maxpacket: 32
[  376.884347][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.032261][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  377.170196][ T5877] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  377.250635][ T5877] usb 4-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  377.295253][ T5877] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.313800][ T5877] usb 4-1: config 0 descriptor??
[  377.396431][ T8946] netlink: 'syz.2.879': attribute type 1 has an invalid length.
[  377.422319][ T8946] netlink: 'syz.2.879': attribute type 4 has an invalid length.
[  377.438836][ T8941] syz.0.877 (8941) used greatest stack depth: 18864 bytes left
[  377.452976][ T8946] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.879'.
[  377.646296][ T5877] usbhid 4-1:0.0: can't add hid device: -71
[  377.655063][ T5877] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  377.684556][ T5877] usb 4-1: USB disconnect, device number 17
[  377.801513][ T8953] tipc: Started in network mode
[  377.806449][ T8953] tipc: Node identity f7, cluster identity 4711
[  377.844472][ T8953] tipc: Node number set to 247
[  377.863378][ T8954] netlink: 120 bytes leftover after parsing attributes in process `syz.0.881'.
[  377.875892][ T8957] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  378.099892][ T5827] Bluetooth: hci2: Malformed LE Event: 0x1b
[  378.222992][ T8970] bridge0: port 3(syz_tun) entered blocking state
[  378.240185][ T8970] bridge0: port 3(syz_tun) entered disabled state
[  378.261286][ T8970] syz_tun: entered allmulticast mode
[  378.283480][ T8970] syz_tun: entered promiscuous mode
[  378.312961][ T8967] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  378.335546][ T8970] bridge0: port 3(syz_tun) entered blocking state
[  378.343960][ T8970] bridge0: port 3(syz_tun) entered forwarding state
[  379.133526][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  379.143567][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  380.240843][ T5827] Bluetooth: hci1: command tx timeout
[  381.820776][ T8991] loop3: detected capacity change from 0 to 7
[  381.846356][ T8991] Dev loop3: unable to read RDB block 7
[  381.852923][ T8991]  loop3: unable to read partition table
[  381.858763][ T8991] loop3: partition table beyond EOD, truncated
[  381.865859][ T8991] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  381.990875][   T29] audit: type=1326 audit(1734139596.362:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8983 comm="syz.2.894" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb045385d19 code=0x0
[  382.024832][ T8996] netlink: 'syz.2.894': attribute type 5 has an invalid length.
[  382.438152][ T9009] 9pnet_fd: Insufficient options for proto=fd
[  386.796846][ T9102] netlink: 16 bytes leftover after parsing attributes in process `syz.3.912'.
[  386.905564][ T9102] netlink: 16 bytes leftover after parsing attributes in process `syz.3.912'.
[  386.996751][ T9102] netlink: 8 bytes leftover after parsing attributes in process `syz.3.912'.
[  387.021701][ T9107] loop3: detected capacity change from 0 to 7
[  387.223504][ T9107] Dev loop3: unable to read RDB block 7
[  387.229395][ T9107]  loop3: unable to read partition table
[  387.242265][ T9107] loop3: partition table beyond EOD, truncated
[  387.249712][ T9107] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  387.332228][ T9110] netlink: 36 bytes leftover after parsing attributes in process `syz.4.913'.
[  391.267228][ T9149] netlink: 128 bytes leftover after parsing attributes in process `syz.1.927'.
[  391.281629][ T9149] netlink: 32 bytes leftover after parsing attributes in process `syz.1.927'.
[  391.418629][ T9149] tipc: Failed to obtain node identity
[  391.551820][ T9149] tipc: Enabling of bearer <ib:veth1_to_team> rejected, failed to enable media
[  392.128050][ T9160] batman_adv: batadv0: Adding interface: dummy0
[  392.158438][ T9160] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.231834][ T9160] batman_adv: batadv0: Interface activated: dummy0
[  392.248573][ T9163] netlink: 16 bytes leftover after parsing attributes in process `syz.0.929'.
[  392.277991][ T9163] netlink: 16 bytes leftover after parsing attributes in process `syz.0.929'.
[  392.297556][ T9163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.929'.
[  392.312617][ T5877] IPVS: starting estimator thread 0...
[  392.322024][ T9160] IPVS: wrr: FWM 4 0x00000004 - no destination available
[  392.324612][ T9164] batadv0: mtu less than device minimum
[  392.354195][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.367385][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.380161][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.392948][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.405577][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.418326][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.431019][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.431348][ T9167] IPVS: using max 20 ests per chain, 48000 per kthread
[  392.443513][ T9164] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  392.770193][ T9172] loop3: detected capacity change from 0 to 7
[  392.779099][ T9172] Dev loop3: unable to read RDB block 7
[  392.785095][ T9172]  loop3: unable to read partition table
[  392.791074][ T9172] loop3: partition table beyond EOD, truncated
[  392.797270][ T9172] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  394.094047][ T9185] netlink: 28 bytes leftover after parsing attributes in process `syz.0.936'.
[  394.103257][ T9185] netlink: 28 bytes leftover after parsing attributes in process `syz.0.936'.
[  394.293128][ T9185] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  394.388321][ T9185] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  394.474429][ T9185] netlink: 60 bytes leftover after parsing attributes in process `syz.0.936'.
[  394.586193][ T5877] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  394.599877][ T9203] trusted_key: syz.4.942 sent an empty control message without MSG_MORE.
[  394.779637][ T5877] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  394.807320][ T5877] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.869921][ T5877] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  394.928170][ T5877] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  395.005407][ T5877] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  395.042410][ T5877] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  395.094240][ T5877] usb 2-1: Manufacturer: syz
[  395.118069][ T5877] usb 2-1: config 0 descriptor??
[  395.197780][ T9210] netlink: 16 bytes leftover after parsing attributes in process `syz.3.944'.
[  395.221443][ T9210] netlink: 16 bytes leftover after parsing attributes in process `syz.3.944'.
[  395.236261][ T9210] netlink: 8 bytes leftover after parsing attributes in process `syz.3.944'.
[  395.566005][ T5877] appleir 0003:05AC:8243.0007: unknown main item tag 0x0
[  395.591546][ T5877] appleir 0003:05AC:8243.0007: No inputs registered, leaving
[  395.639065][ T5877] appleir 0003:05AC:8243.0007: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  395.787883][ T9218] 9pnet_fd: Insufficient options for proto=fd
[  397.790993][ T5946] usb 2-1: USB disconnect, device number 13
[  399.063967][ T9254] netlink: 252 bytes leftover after parsing attributes in process `syz.1.959'.
[  399.073809][ T9254] netlink: 24 bytes leftover after parsing attributes in process `syz.1.959'.
[  400.201003][ T9265] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  400.528097][ T9273] No control pipe specified
[  401.791213][   T46] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  402.049677][   T46] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  402.090543][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  402.314524][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  402.403449][   T46] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  402.473809][   T46] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  402.521480][   T46] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  402.571929][   T46] usb 5-1: Manufacturer: syz
[  402.609132][   T46] usb 5-1: config 0 descriptor??
[  403.336198][ T9298] netlink: 28 bytes leftover after parsing attributes in process `syz.0.973'.
[  403.407988][ T9300] netlink: 252 bytes leftover after parsing attributes in process `syz.3.975'.
[  403.417192][ T9300] netlink: 24 bytes leftover after parsing attributes in process `syz.3.975'.
[  403.942787][   T46] appleir 0003:05AC:8243.0008: unknown main item tag 0x0
[  403.951125][   T46] appleir 0003:05AC:8243.0008: No inputs registered, leaving
[  403.962827][   T46] appleir 0003:05AC:8243.0008: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  404.065158][ T9310] loop3: detected capacity change from 0 to 7
[  404.205844][ T5877] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  404.278060][ T9310] Dev loop3: unable to read RDB block 7
[  404.284404][ T9310]  loop3: unable to read partition table
[  404.291875][ T9310] loop3: partition table beyond EOD, truncated
[  404.298199][ T9310] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  404.991300][ T5877] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  405.019051][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  405.084224][ T5877] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  405.116089][ T5877] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  405.135801][ T5877] usb 3-1: Manufacturer: syz
[  405.150297][ T5877] usb 3-1: config 0 descriptor??
[  405.351433][ T5877] rc_core: IR keymap rc-hauppauge not found
[  405.367767][ T5877] Registered IR keymap rc-empty
[  405.401314][ T5877] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  405.437520][ T5877] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input16
[  405.950904][ T5879] usb 5-1: reset high-speed USB device number 4 using dummy_hcd
[  406.018548][    C1] igorplugusb 3-1:0.0: receive overflow invalid: 70
[  407.464599][ T5876] usb 5-1: USB disconnect, device number 4
[  408.068084][ T9340] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  408.430822][ T5946] usb 3-1: USB disconnect, device number 10
[  408.635471][ T9343] netlink: 8 bytes leftover after parsing attributes in process `syz.0.988'.
[  408.840866][ T9349] netlink: 252 bytes leftover after parsing attributes in process `syz.3.991'.
[  408.995759][ T9349] netlink: 24 bytes leftover after parsing attributes in process `syz.3.991'.
[  409.571200][   T29] audit: type=1326 audit(1734139623.922:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9346 comm="syz.1.989" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  410.527703][ T9347] netlink: 'syz.1.989': attribute type 5 has an invalid length.
[  410.761564][ T9375] netlink: 28 bytes leftover after parsing attributes in process `syz.2.998'.
[  410.890253][ T9376] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  410.944668][ T9375] netlink: 28 bytes leftover after parsing attributes in process `syz.2.998'.
[  411.116710][ T9376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.998'.
[  411.142664][ T9376] netlink: 60 bytes leftover after parsing attributes in process `syz.2.998'.
[  412.043728][ T9400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1007'.
[  412.194444][ T9404] autofs: Bad value for 'fd'
[  412.871737][ T9409] netlink: 'syz.4.1009': attribute type 1 has an invalid length.
[  412.879552][ T9409] netlink: 'syz.4.1009': attribute type 4 has an invalid length.
[  412.887527][ T9409] netlink: 15334 bytes leftover after parsing attributes in process `syz.4.1009'.
[  413.145102][   T29] audit: type=1326 audit(1734139627.562:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9413 comm="syz.4.1011" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  413.306146][ T9420] netlink: 'syz.4.1011': attribute type 5 has an invalid length.
[  415.483550][ T9435] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1018'.
[  415.520025][ T9436] netlink: 'syz.4.1017': attribute type 1 has an invalid length.
[  415.536005][ T9436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1017'.
[  415.618897][ T9439] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1017'.
[  416.010201][ T9448] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  416.084299][ T9449] autofs: Unknown parameter '0x0000000000000000'
[  417.367502][   T29] audit: type=1326 audit(1734139631.782:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9450 comm="syz.0.1023" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f79d8785d19 code=0x0
[  417.443782][ T9462] netlink: 'syz.0.1023': attribute type 5 has an invalid length.
[  417.452825][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  417.458964][ T5827] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  417.476292][ T9466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1028'.
[  418.605271][ T9487] autofs: Unknown parameter '0x0000000000000000'
[  418.972759][ T9489] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  419.531216][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  419.540337][ T5827] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  421.022476][ T9515] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  421.515679][ T9525] autofs: Unknown parameter '0x0000000000000000'
[  422.423248][ T5827] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  422.432899][ T5827] Bluetooth: hci0: command 0x0406 tx timeout
[  423.784237][ T9542] autofs: Bad value for 'fd'
[  424.664857][ T9557] netlink: 'syz.0.1064': attribute type 1 has an invalid length.
[  424.685368][ T9557] netlink: 'syz.0.1064': attribute type 4 has an invalid length.
[  424.724875][ T9557] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1064'.
[  424.928619][ T9562] autofs: Unknown parameter '0x0000000000000000'
[  425.721129][    T8] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  425.740425][ T9570] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1070'.
[  425.751218][ T9570] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1070'.
[  425.764346][ T9570] netlink: 'syz.4.1070': attribute type 1 has an invalid length.
[  425.772505][ T9570] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1070'.
[  425.842473][ T9574] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1070'.
[  425.875825][    T8] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  425.905572][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  425.918253][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  425.928698][    T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  425.946576][    T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  425.968043][    T8] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  425.990419][    T8] usb 1-1: Manufacturer: syz
[  426.008781][    T8] usb 1-1: config 0 descriptor??
[  426.019659][ T9582] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  426.796306][    T8] appleir 0003:05AC:8243.0009: unknown main item tag 0x0
[  426.836135][    T8] appleir 0003:05AC:8243.0009: No inputs registered, leaving
[  426.924571][    T8] appleir 0003:05AC:8243.0009: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  427.116728][ T5827] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  427.129128][ T5827] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  427.138594][ T5827] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  427.149917][ T5827] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  427.158215][ T5827] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  427.166029][ T5827] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  427.555464][ T9606] autofs: Unknown parameter '0x0000000000000000'
[  428.275979][ T9595] chnl_net:caif_netlink_parms(): no params data found
[  428.283904][ T5946] usb 1-1: USB disconnect, device number 12
[  428.532144][ T9595] bridge0: port 1(bridge_slave_0) entered blocking state
[  428.539828][ T9595] bridge0: port 1(bridge_slave_0) entered disabled state
[  428.551080][ T9595] bridge_slave_0: entered allmulticast mode
[  428.559376][ T9595] bridge_slave_0: entered promiscuous mode
[  428.576872][ T9595] bridge0: port 2(bridge_slave_1) entered blocking state
[  428.584288][ T9595] bridge0: port 2(bridge_slave_1) entered disabled state
[  428.591894][ T9595] bridge_slave_1: entered allmulticast mode
[  428.599001][ T9595] bridge_slave_1: entered promiscuous mode
[  428.703081][ T9595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  428.725037][ T9595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  428.897161][ T9631] 9pnet_fd: Insufficient options for proto=fd
[  429.298848][   T54] Bluetooth: hci5: command tx timeout
[  429.622850][ T9595] team0: Port device team_slave_0 added
[  429.725922][ T9595] team0: Port device team_slave_1 added
[  429.822272][ T9595] batman_adv: batadv0: Adding interface: batadv_slave_0
[  429.829463][ T9595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  429.855961][ T9595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  429.868709][ T9595] batman_adv: batadv0: Adding interface: batadv_slave_1
[  429.875857][ T9595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  429.902840][ T9595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  430.575293][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  430.673358][ T5827] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  430.895642][ T5877] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  430.969282][ T9595] hsr_slave_0: entered promiscuous mode
[  431.019706][ T9595] hsr_slave_1: entered promiscuous mode
[  431.040307][ T9595] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  431.055793][ T9595] Cannot create hsr debugfs directory
[  431.094477][ T9646] 9pnet: Could not find request transport: fd0x0000000000000003
[  431.132493][ T5877] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  431.143927][ T5877] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  431.165844][ T5877] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  431.191539][ T5877] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  431.242841][ T5877] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  431.253137][ T5877] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  431.281107][ T5877] usb 1-1: Manufacturer: syz
[  431.288002][ T5877] usb 1-1: config 0 descriptor??
[  431.371157][   T54] Bluetooth: hci5: command tx timeout
[  431.414732][ T9595] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  431.476284][ T9595] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  431.559282][ T9595] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  431.592710][ T9595] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  432.005963][ T5877] appleir 0003:05AC:8243.000A: unknown main item tag 0x0
[  432.110047][ T5877] appleir 0003:05AC:8243.000A: No inputs registered, leaving
[  432.520891][ T5877] appleir 0003:05AC:8243.000A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  432.565956][ T9595] 8021q: adding VLAN 0 to HW filter on device bond0
[  432.616841][ T9595] 8021q: adding VLAN 0 to HW filter on device team0
[  432.703949][ T9669] autofs: Unknown parameter '0x0000000000000000'
[  432.797085][ T9595] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  432.807776][ T9595] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  432.924518][ T9081] bridge0: port 1(bridge_slave_0) entered blocking state
[  432.931805][ T9081] bridge0: port 1(bridge_slave_0) entered forwarding state
[  432.963798][ T9081] bridge0: port 2(bridge_slave_1) entered blocking state
[  432.971066][ T9081] bridge0: port 2(bridge_slave_1) entered forwarding state
[  433.288670][ T5877] usb 1-1: USB disconnect, device number 13
[  433.468378][ T5827] Bluetooth: hci5: command tx timeout
[  433.761348][ T5827] Bluetooth: hci0: command 0x0406 tx timeout
[  433.769710][   T54] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  434.201080][ T9684] autofs: Unknown parameter 'fd0x0000000000000000'
[  434.575728][ T9595] 8021q: adding VLAN 0 to HW filter on device batadv0
[  435.530842][ T5827] Bluetooth: hci5: command tx timeout
[  435.913993][ T9595] veth0_vlan: entered promiscuous mode
[  435.953769][ T9595] veth1_vlan: entered promiscuous mode
[  436.060819][ T5876] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  436.089722][ T9595] veth0_macvtap: entered promiscuous mode
[  436.125842][ T9595] veth1_macvtap: entered promiscuous mode
[  436.183753][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.196516][ T9708] infiniband syz0: set active
[  436.210098][ T9708] infiniband syz0: added bond0
[  436.210903][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.232373][ T5876] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  436.240716][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.260915][ T5876] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  436.270732][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.283401][ T9708] syz0: rxe_create_cq: returned err = -12
[  436.289817][ T9708] infiniband syz0: Couldn't create ib_mad CQ
[  436.292388][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.297536][ T5876] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  436.328841][ T9708] infiniband syz0: Couldn't open port 1
[  436.351059][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.366514][ T5876] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  436.379969][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.404043][ T5876] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  436.413510][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.440864][ T5876] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  436.450021][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.468036][ T9708] RDS/IB: syz0: added
[  436.472252][ T5876] usb 2-1: Manufacturer: syz
[  436.488039][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.493801][ T5876] usb 2-1: config 0 descriptor??
[  436.504397][ T9708] smc: adding ib device syz0 with port count 1
[  436.518028][ T9708] smc:    ib device syz0 port 1 has pnetid 
[  436.518468][ T9595] batman_adv: batadv0: Interface activated: batadv_slave_0
[  436.607651][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.653049][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.682810][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.736852][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.764167][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.775336][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.787706][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.798276][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.808204][ T9595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.825356][ T9595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.899600][ T9721] autofs: Unknown parameter 'fd0x0000000000000000'
[  436.932534][ T5827] Bluetooth: hci0: command 0x0406 tx timeout
[  436.939367][   T54] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  437.021013][ T5876] appleir 0003:05AC:8243.000B: unknown main item tag 0x0
[  437.040139][ T5876] appleir 0003:05AC:8243.000B: No inputs registered, leaving
[  437.247004][ T5876] appleir 0003:05AC:8243.000B: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  437.482357][ T9595] batman_adv: batadv0: Interface activated: batadv_slave_1
[  437.575672][ T9595] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.600769][ T9595] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.609549][ T9595] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.618586][ T9595] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.634281][ T5827] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  437.646234][ T5827] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  437.655306][ T5878] usb 2-1: USB disconnect, device number 14
[  437.655460][ T5827] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  437.670152][ T5827] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  437.678890][ T5827] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  437.687920][ T5827] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  438.317714][ T3009] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  438.436850][ T3009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  438.471729][ T7226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  438.500770][ T7226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.088198][ T9744] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1078'.
[  439.097943][ T9744] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1078'.
[  439.909470][   T54] Bluetooth: hci6: command tx timeout
[  440.104159][ T9748] netlink: 'syz.4.1124': attribute type 1 has an invalid length.
[  440.118087][ T9748] netlink: 'syz.4.1124': attribute type 4 has an invalid length.
[  440.142984][ T9748] netlink: 15334 bytes leftover after parsing attributes in process `syz.4.1124'.
[  440.574078][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  440.584705][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  440.610628][ T9755] autofs: Unknown parameter 'fd0x0000000000000000'
[  441.051709][ T5827] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  441.069751][ T5827] Bluetooth: hci0: command 0x0406 tx timeout
[  441.598468][ T9765] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1127'.
[  441.607699][ T9765] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1127'.
[  442.373706][ T5827] Bluetooth: hci6: command tx timeout
[  442.694019][ T5877] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  442.992808][ T5877] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  443.137373][ T9723] chnl_net:caif_netlink_parms(): no params data found
[  443.175791][ T5877] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.263567][ T5877] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  443.295574][ T5877] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  443.361996][ T5877] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  443.380852][ T5877] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  443.389021][ T5877] usb 5-1: Manufacturer: syz
[  443.577665][ T5877] usb 5-1: config 0 descriptor??
[  444.377547][ T5877] appleir 0003:05AC:8243.000C: unknown main item tag 0x0
[  444.385469][ T5877] appleir 0003:05AC:8243.000C: No inputs registered, leaving
[  444.403752][ T5877] appleir 0003:05AC:8243.000C: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  444.411274][ T9723] bridge0: port 1(bridge_slave_0) entered blocking state
[  444.422688][ T5827] Bluetooth: hci6: command tx timeout
[  444.440498][ T9723] bridge0: port 1(bridge_slave_0) entered disabled state
[  444.511231][ T9723] bridge_slave_0: entered allmulticast mode
[  444.518405][ T9723] bridge_slave_0: entered promiscuous mode
[  444.549355][ T9723] bridge0: port 2(bridge_slave_1) entered blocking state
[  444.566079][ T9723] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.573818][ T9723] bridge_slave_1: entered allmulticast mode
[  444.581617][ T9723] bridge_slave_1: entered promiscuous mode
[  444.818663][ T9723] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  444.936332][ T9723] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.855920][ T9723] team0: Port device team_slave_0 added
[  445.866338][ T9723] team0: Port device team_slave_1 added
[  446.186348][ T5877] usb 5-1: reset high-speed USB device number 5 using dummy_hcd
[  446.322658][ T9807] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1139'.
[  446.332249][ T9807] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1139'.
[  446.536128][ T9723] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.640046][ T5827] Bluetooth: hci6: command tx timeout
[  446.697773][ T9723] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.959051][ T9723] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.972452][ T9723] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.979446][ T9723] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  447.005481][    C0] vkms_vblank_simulate: vblank timer overrun
[  447.013263][ T9723] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  447.084561][ T5946] usb 5-1: USB disconnect, device number 5
[  447.290101][ T9816] rdma_rxe: rxe_newlink: failed to add bond0
[  447.339116][ T9723] hsr_slave_0: entered promiscuous mode
[  447.364581][ T9723] hsr_slave_1: entered promiscuous mode
[  447.411758][ T9723] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  447.434154][ T9723] Cannot create hsr debugfs directory
[  448.338226][ T9826] netlink: 'syz.0.1147': attribute type 1 has an invalid length.
[  448.370794][ T9826] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1147'.
[  448.390143][ T9723] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  448.404721][ T9723] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  448.423958][ T9723] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  448.454564][ T9826] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1147'.
[  448.493368][ T9723] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  449.949854][ T9723] 8021q: adding VLAN 0 to HW filter on device bond0
[  449.989376][ T9723] 8021q: adding VLAN 0 to HW filter on device team0
[  450.025085][ T9066] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.032258][ T9066] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.071214][ T9066] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.078393][ T9066] bridge0: port 2(bridge_slave_1) entered forwarding state
[  450.286374][ T5878] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  451.355038][ T5878] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  451.366184][ T5878] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  451.378016][ T5878] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  451.388241][ T5878] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  451.612543][ T9723] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.637344][ T5878] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  451.647524][ T5878] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  451.655839][ T5878] usb 6-1: Manufacturer: syz
[  451.666192][ T5878] usb 6-1: config 0 descriptor??
[  451.768503][ T9873] autofs: Unknown parameter '0x0000000000000000'
[  452.471325][ T5878] appleir 0003:05AC:8243.000D: unknown main item tag 0x0
[  452.478957][ T5878] appleir 0003:05AC:8243.000D: No inputs registered, leaving
[  452.544095][ T5878] appleir 0003:05AC:8243.000D: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  453.038527][ T5878] usb 6-1: USB disconnect, device number 2
[  453.314643][ T9723] veth0_vlan: entered promiscuous mode
[  453.325607][ T9723] veth1_vlan: entered promiscuous mode
[  453.350589][ T9723] veth0_macvtap: entered promiscuous mode
[  453.361905][ T9723] veth1_macvtap: entered promiscuous mode
[  453.383246][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.396008][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.406682][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.418030][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.428227][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.600337][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.611052][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.664228][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.674771][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.725838][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.738228][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.750936][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.902252][ T9723] batman_adv: batadv0: Interface activated: batadv_slave_0
[  454.000838][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.151771][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.311967][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.322587][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.333412][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.343971][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.363856][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.374778][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.397029][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.409245][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.458485][ T9723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.490943][ T9723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.508436][ T9723] batman_adv: batadv0: Interface activated: batadv_slave_1
[  455.271968][ T9907] loop3: detected capacity change from 0 to 7
[  455.279681][ T9903] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  455.290034][ T9907] Dev loop3: unable to read RDB block 7
[  455.296705][ T9907]  loop3: unable to read partition table
[  455.302651][ T9907] loop3: partition table beyond EOD, truncated
[  455.308853][ T9907] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  455.502726][ T9723] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  455.539863][ T9723] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  455.557742][ T9723] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  455.567285][ T9723] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  456.329564][ T9923] autofs: Unknown parameter '0x0000000000000000'
[  456.686185][ T9073] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  456.699237][ T9073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.614061][ T7226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  457.643270][ T7226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  458.318117][ T9950] autofs: Bad value for 'fd'
[  459.121067][ T5946] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  459.516992][ T5946] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  459.528600][ T5946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  459.539981][ T5946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  459.549851][ T5946] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  459.556715][   T29] audit: type=1326 audit(1734139673.972:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9956 comm="syz.0.1180" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f79d8785d19 code=0x0
[  460.425228][ T9965] loop3: detected capacity change from 0 to 7
[  460.435540][ T9965] Dev loop3: unable to read RDB block 7
[  460.441396][ T9965]  loop3: unable to read partition table
[  460.447302][ T9965] loop3: partition table beyond EOD, truncated
[  460.454032][ T9965] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  460.499092][ T9957] netlink: 'syz.0.1180': attribute type 5 has an invalid length.
[  460.509641][ T5946] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  460.523309][ T5946] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  460.538525][ T5946] usb 5-1: Manufacturer: syz
[  461.295756][ T5946] usb 5-1: config 0 descriptor??
[  461.347974][ T5946] usb 5-1: can't set config #0, error -71
[  461.361403][ T5946] usb 5-1: USB disconnect, device number 6
[  461.470474][ T9976] netlink: 'syz.1.1185': attribute type 1 has an invalid length.
[  461.545155][ T9976] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1185'.
[  461.621928][ T9976] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1185'.
[  461.868596][ T9984] autofs: Unknown parameter 'fd0x0000000000000000'
[  465.181185][T10011] loop3: detected capacity change from 0 to 7
[  465.252320][T10011] Dev loop3: unable to read RDB block 7
[  465.258400][T10011]  loop3: unable to read partition table
[  465.264640][T10011] loop3: partition table beyond EOD, truncated
[  465.271316][T10011] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  466.545713][T10034] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1200'.
[  466.556013][T10034] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1200'.
[  466.795743][ T9730] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  467.146446][ T9730] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  467.201790][ T9730] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  467.242863][ T9730] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.252808][ T9730] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  467.268036][ T9730] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  467.386055][ T9730] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  467.420775][ T9730] usb 1-1: Manufacturer: syz
[  467.441531][ T9730] usb 1-1: config 0 descriptor??
[  468.783548][ T9730] appleir 0003:05AC:8243.000E: unknown main item tag 0x0
[  468.921341][ T9730] appleir 0003:05AC:8243.000E: No inputs registered, leaving
[  469.002250][ T9730] appleir 0003:05AC:8243.000E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  470.372180][ T5876] usb 1-1: USB disconnect, device number 14
[  471.442243][ T5876] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  471.802521][ T5876] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  471.828857][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  471.861798][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  471.875939][ T5876] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  471.892288][ T5876] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  471.906227][ T5876] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  471.938327][ T5876] usb 1-1: Manufacturer: syz
[  471.962514][ T5876] usb 1-1: config 0 descriptor??
[  472.465175][ T5876] appleir 0003:05AC:8243.000F: unknown main item tag 0x0
[  472.494003][ T5876] appleir 0003:05AC:8243.000F: No inputs registered, leaving
[  472.569500][ T5876] appleir 0003:05AC:8243.000F: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  473.871266][   T46] usb 1-1: reset high-speed USB device number 15 using dummy_hcd
[  474.595522][ T5876] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  474.855259][ T5840] usb 1-1: USB disconnect, device number 15
[  475.567199][ T5876] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  475.579116][ T5876] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  475.610976][ T5876] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  475.641313][ T5876] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  475.681382][ T5876] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  475.735954][ T5876] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  475.754436][ T5876] usb 7-1: Manufacturer: syz
[  476.457650][ T5876] usb 7-1: config 0 descriptor??
[  476.741158][   T29] audit: type=1326 audit(1734139691.132:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10116 comm="syz.0.1226" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f79d8785d19 code=0x0
[  476.771692][T10124] netlink: 'syz.0.1226': attribute type 5 has an invalid length.
[  476.913686][ T5876] appleir 0003:05AC:8243.0010: unknown main item tag 0x0
[  476.921613][ T5876] appleir 0003:05AC:8243.0010: No inputs registered, leaving
[  476.938719][ T5876] appleir 0003:05AC:8243.0010: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0
[  477.696732][ T5876] usb 7-1: USB disconnect, device number 2
[  479.170977][T10139] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  481.857816][   T29] audit: type=1326 audit(1734139696.252:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10172 comm="syz.1.1244" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  482.386425][T10180] netlink: 'syz.1.1244': attribute type 5 has an invalid length.
[  483.320904][ T5876] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  483.427032][T10194] netlink: 120 bytes leftover after parsing attributes in process `syz.4.1250'.
[  483.518663][ T5876] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  483.567598][ T5876] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.609588][ T5876] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.660019][ T5876] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  483.713307][ T5876] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  483.730426][ T5876] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  483.739662][ T5876] usb 6-1: Manufacturer: syz
[  483.757410][ T5876] usb 6-1: config 0 descriptor??
[  484.172252][T10211] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1257'.
[  484.184068][ T5876] appleir 0003:05AC:8243.0011: unknown main item tag 0x0
[  484.190811][T10211] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1257'.
[  484.201964][ T5876] appleir 0003:05AC:8243.0011: No inputs registered, leaving
[  484.229455][ T5876] appleir 0003:05AC:8243.0011: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  484.315042][T10214] netlink: 'syz.1.1257': attribute type 1 has an invalid length.
[  484.424319][T10214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1257'.
[  484.539378][T10211] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1257'.
[  485.766798][ T9730] usb 6-1: USB disconnect, device number 3
[  485.961140][   T29] audit: type=1326 audit(1734139700.372:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10234 comm="syz.4.1262" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  486.010077][T10235] netlink: 'syz.4.1262': attribute type 5 has an invalid length.
[  486.051120][T10239] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  488.520939][    T8] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  488.762808][    T8] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  488.790892][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  488.876210][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  488.949642][    T8] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  489.151593][    T8] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  489.161441][    T8] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  489.169609][    T8] usb 7-1: Manufacturer: syz
[  489.199228][    T8] usb 7-1: config 0 descriptor??
[  489.956216][T10288] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  490.120832][    T8] appleir 0003:05AC:8243.0012: unknown main item tag 0x0
[  490.190833][    T8] appleir 0003:05AC:8243.0012: No inputs registered, leaving
[  490.486910][    T8] appleir 0003:05AC:8243.0012: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0
[  491.719407][    T8] usb 7-1: USB disconnect, device number 3
[  494.881660][ T5878] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  495.508224][ T5878] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  495.560904][ T5878] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  495.593159][ T5878] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  495.603178][ T5878] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  495.686245][ T5878] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  495.695564][ T5878] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  495.704124][ T5878] usb 7-1: Manufacturer: syz
[  495.710422][ T5878] usb 7-1: config 0 descriptor??
[  495.840574][T10334] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  496.997849][T10351] loop3: detected capacity change from 0 to 7
[  497.255260][ T5878] appleir 0003:05AC:8243.0013: unknown main item tag 0x0
[  497.255295][T10351] Dev loop3: unable to read RDB block 7
[  497.263085][ T5878] appleir 0003:05AC:8243.0013: No inputs registered, leaving
[  497.269995][T10351]  loop3: unable to read partition table
[  497.285689][T10351] loop3: partition table beyond EOD, truncated
[  497.292192][T10351] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  497.302256][ T5878] appleir 0003:05AC:8243.0013: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0
[  499.551575][ T9730] usb 7-1: USB disconnect, device number 4
[  501.453443][T10381] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  502.012954][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  502.058244][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  502.198668][T10404] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1312'.
[  502.207935][T10404] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1312'.
[  503.669369][ T5946] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  503.881353][ T5946] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  503.938075][ T5946] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  503.961010][ T5946] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  503.981438][ T5946] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  504.117416][T10420] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1318'.
[  504.126668][T10420] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1318'.
[  506.050007][ T5946] usb 7-1: string descriptor 0 read error: -71
[  506.082325][ T5946] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  506.556172][T10423] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1320'.
[  506.565557][T10423] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1320'.
[  507.042537][ T5946] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  507.326008][ T5946] usb 7-1: config 0 descriptor??
[  507.331923][ T5946] usb 7-1: can't set config #0, error -71
[  507.566887][ T5946] usb 7-1: USB disconnect, device number 5
[  507.670298][T10442] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1328'.
[  507.752187][T10444] binder_alloc: 10443: pid 10443 spamming oneway? 1 buffers allocated for a total size of 1792
[  507.797746][   T29] audit: type=1326 audit(1734139722.212:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10439 comm="syz.6.1327" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f783cb85d19 code=0x0
[  507.924138][T10440] netlink: 'syz.6.1327': attribute type 5 has an invalid length.
[  508.385507][T10456] No control pipe specified
[  510.003698][   T46] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  510.136492][T10472] smc: removing ib device syz0
[  510.227118][   T46] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  510.242951][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  510.263040][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  510.300999][   T46] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  510.327901][   T46] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  510.345903][   T46] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  510.366377][   T46] usb 5-1: Manufacturer: syz
[  510.413557][   T46] usb 5-1: config 0 descriptor??
[  510.510578][T10482] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1342'.
[  511.460872][T10489] No control pipe specified
[  511.999738][   T46] usbhid 5-1:0.0: can't add hid device: -71
[  512.009826][   T46] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  512.101043][   T46] usb 5-1: USB disconnect, device number 7
[  514.159567][T10522] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1352'.
[  514.169908][T10522] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1352'.
[  514.241491][T10520] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1351'.
[  514.477730][T10520] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1351'.
[  514.585886][T10520] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1351'.
[  516.861339][T10535] No control pipe specified
[  517.477152][T10544] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1359'.
[  517.488025][T10544] netlink: 'syz.1.1359': attribute type 1 has an invalid length.
[  517.496294][T10544] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1359'.
[  518.503040][T10551] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1360'.
[  518.512305][T10551] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1360'.
[  519.319730][ T5877] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  519.461881][T10544] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1359'.
[  519.703343][ T5877] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  519.736988][ T5877] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  519.758806][ T5877] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  519.800739][ T5877] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  519.876642][ T5877] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  519.889377][ T5877] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  519.899599][ T5877] usb 5-1: Manufacturer: syz
[  519.906486][ T5877] usb 5-1: config 0 descriptor??
[  521.041058][    T8] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  521.120559][ T5877] usbhid 5-1:0.0: can't add hid device: -71
[  521.130494][ T5877] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  521.150972][ T5877] usb 5-1: USB disconnect, device number 8
[  521.225248][T10575] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1369'.
[  521.243262][    T8] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  521.276192][    T8] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  521.400545][    T8] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  521.467575][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  521.478139][    T8] usb 7-1: SerialNumber: syz
[  522.453417][    T8] usb 7-1: 0:2 : does not exist
[  522.468458][    T8] usb 7-1: USB disconnect, device number 6
[  522.641691][ T8211] udevd[8211]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  523.739007][T10615] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1383'.
[  523.748848][T10615] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1383'.
[  524.164923][T10619] loop3: detected capacity change from 0 to 7
[  524.186910][ T5877] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  525.137938][T10620] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1384'.
[  525.147495][T10620] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1384'.
[  525.481362][T10619] Dev loop3: unable to read RDB block 7
[  525.487015][T10619]  loop3: unable to read partition table
[  525.493221][T10619] loop3: partition table beyond EOD, truncated
[  525.499561][T10619] loop_reread_partitions: partition scan of loop3 (þ被) failed (rc=-5)
[  526.011219][T10625] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1382'.
[  526.020336][T10625] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1382'.
[  526.502912][ T5877] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  526.514121][ T5877] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  526.527349][ T5877] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  526.537377][ T5877] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  526.593629][ T5877] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  526.603016][ T5877] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  526.611354][ T5877] usb 7-1: Manufacturer: syz
[  526.628996][ T5877] usb 7-1: config 0 descriptor??
[  526.888578][ T5877] usbhid 7-1:0.0: can't add hid device: -71
[  526.895507][ T5877] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  526.905522][ T5877] usb 7-1: USB disconnect, device number 7
[  526.995330][T10632] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1386'.
[  527.068786][T10632] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1386'.
[  527.101662][T10632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1386'.
[  528.077188][   T29] audit: type=1326 audit(1734139742.492:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10639 comm="syz.4.1388" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  528.331433][T10648] netlink: 'syz.4.1388': attribute type 5 has an invalid length.
[  528.347503][   T29] audit: type=1326 audit(1734139742.762:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10652 comm="syz.0.1390" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f79d8785d19 code=0x0
[  528.423657][T10654] netlink: 'syz.0.1390': attribute type 5 has an invalid length.
[  528.560164][T10656] FAULT_INJECTION: forcing a failure.
[  528.560164][T10656] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  528.573748][T10656] CPU: 0 UID: 0 PID: 10656 Comm: syz.5.1391 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  528.584556][T10656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  528.594640][T10656] Call Trace:
[  528.597946][T10656]  <TASK>
[  528.600907][T10656]  dump_stack_lvl+0x241/0x360
[  528.605640][T10656]  ? __pfx_dump_stack_lvl+0x10/0x10
[  528.610917][T10656]  should_fail_ex+0x3b0/0x4e0
[  528.615644][T10656]  _copy_from_user+0x2f/0xc0
[  528.620274][T10656]  copy_msghdr_from_user+0xae/0x680
[  528.625555][T10656]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  528.631406][T10656]  ? __fget_files+0x2a/0x410
[  528.636028][T10656]  ? __fget_files+0x2a/0x410
[  528.640647][T10656]  __sys_sendmsg+0x209/0x350
[  528.645275][T10656]  ? __pfx_lock_release+0x10/0x10
[  528.650337][T10656]  ? __pfx___sys_sendmsg+0x10/0x10
[  528.655494][T10656]  ? __pfx_vfs_write+0x10/0x10
[  528.660336][T10656]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  528.666689][T10656]  ? do_syscall_64+0x100/0x230
[  528.671493][T10656]  ? do_syscall_64+0xb6/0x230
[  528.676207][T10656]  do_syscall_64+0xf3/0x230
[  528.680745][T10656]  ? clear_bhb_loop+0x35/0x90
[  528.685467][T10656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.691412][T10656] RIP: 0033:0x7f9b6f785d19
[  528.695873][T10656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.715514][T10656] RSP: 002b:00007f9b6d5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  528.723966][T10656] RAX: ffffffffffffffda RBX: 00007f9b6f976160 RCX: 00007f9b6f785d19
[  528.731979][T10656] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000009
[  528.739975][T10656] RBP: 00007f9b6d5f6090 R08: 0000000000000000 R09: 0000000000000000
[  528.747971][T10656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  528.755967][T10656] R13: 0000000000000000 R14: 00007f9b6f976160 R15: 00007ffe20445408
[  528.763980][T10656]  </TASK>
[  528.767092][    C0] vkms_vblank_simulate: vblank timer overrun
[  530.087551][T10669] FAULT_INJECTION: forcing a failure.
[  530.087551][T10669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  530.105907][T10669] CPU: 0 UID: 0 PID: 10669 Comm: syz.0.1396 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  530.116724][T10669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  530.126898][T10669] Call Trace:
[  530.130227][T10669]  <TASK>
[  530.133204][T10669]  dump_stack_lvl+0x241/0x360
[  530.137938][T10669]  ? __pfx_dump_stack_lvl+0x10/0x10
[  530.143197][T10669]  ? __pfx__printk+0x10/0x10
[  530.147799][T10669]  ? __pfx_lock_release+0x10/0x10
[  530.152868][T10669]  should_fail_ex+0x3b0/0x4e0
[  530.157583][T10669]  _copy_from_user+0x2f/0xc0
[  530.162207][T10669]  copy_msghdr_from_user+0xae/0x680
[  530.167438][T10669]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  530.173252][T10669]  ? __fget_files+0x2a/0x410
[  530.177848][T10669]  ? __fget_files+0x2a/0x410
[  530.182457][T10669]  __sys_sendmsg+0x209/0x350
[  530.187082][T10669]  ? __pfx_lock_release+0x10/0x10
[  530.192115][T10669]  ? __pfx___sys_sendmsg+0x10/0x10
[  530.197245][T10669]  ? __pfx_vfs_write+0x10/0x10
[  530.202074][T10669]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  530.208422][T10669]  ? do_syscall_64+0x100/0x230
[  530.213199][T10669]  ? do_syscall_64+0xb6/0x230
[  530.217884][T10669]  do_syscall_64+0xf3/0x230
[  530.222388][T10669]  ? clear_bhb_loop+0x35/0x90
[  530.227072][T10669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.232968][T10669] RIP: 0033:0x7f79d8785d19
[  530.237380][T10669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.257004][T10669] RSP: 002b:00007f79d95a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  530.265442][T10669] RAX: ffffffffffffffda RBX: 00007f79d8976080 RCX: 00007f79d8785d19
[  530.273435][T10669] RDX: 0000000000000800 RSI: 0000000020000d00 RDI: 0000000000000008
[  530.281425][T10669] RBP: 00007f79d95a2090 R08: 0000000000000000 R09: 0000000000000000
[  530.289410][T10669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.297392][T10669] R13: 0000000000000000 R14: 00007f79d8976080 R15: 00007ffe9758e578
[  530.305384][T10669]  </TASK>
[  530.308654][    C0] vkms_vblank_simulate: vblank timer overrun
[  530.417691][T10673] 9pnet_fd: Insufficient options for proto=fd
[  531.081315][T10686] netlink: 92 bytes leftover after parsing attributes in process `syz.6.1401'.
[  531.114532][T10686] program syz.6.1401 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  531.124739][T10692] FAULT_INJECTION: forcing a failure.
[  531.124739][T10692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  531.147457][T10692] CPU: 0 UID: 0 PID: 10692 Comm: syz.5.1403 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  531.158258][T10692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  531.158289][T10692] Call Trace:
[  531.158299][T10692]  <TASK>
[  531.158309][T10692]  dump_stack_lvl+0x241/0x360
[  531.158347][T10692]  ? __pfx_dump_stack_lvl+0x10/0x10
[  531.158376][T10692]  ? __pfx__printk+0x10/0x10
[  531.189387][T10692]  ? snprintf+0xda/0x120
[  531.193679][T10692]  should_fail_ex+0x3b0/0x4e0
[  531.198411][T10692]  _copy_to_user+0x31/0xb0
[  531.201972][T10684] binder: 10681:10684 ioctl c0306201 20000480 returned -22
[  531.202856][T10692]  simple_read_from_buffer+0xca/0x150
[  531.215504][T10692]  proc_fail_nth_read+0x1e9/0x250
[  531.220577][T10692]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  531.226173][T10692]  ? rw_verify_area+0x55e/0x6f0
[  531.231062][T10692]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  531.236661][T10692]  vfs_read+0x1fc/0xb70
[  531.240861][T10692]  ? __pfx___mutex_lock+0x10/0x10
[  531.245930][T10692]  ? __pfx_vfs_read+0x10/0x10
[  531.250647][T10692]  ? __fget_files+0x2a/0x410
[  531.255274][T10692]  ? __fget_files+0x395/0x410
[  531.259985][T10692]  ? __fget_files+0x2a/0x410
[  531.264623][T10692]  ksys_read+0x18f/0x2b0
[  531.268915][T10692]  ? __pfx_ksys_read+0x10/0x10
[  531.273728][T10692]  ? do_syscall_64+0x100/0x230
[  531.278541][T10692]  ? do_syscall_64+0xb6/0x230
[  531.283357][T10692]  do_syscall_64+0xf3/0x230
[  531.287904][T10692]  ? clear_bhb_loop+0x35/0x90
[  531.292627][T10692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.298561][T10692] RIP: 0033:0x7f9b6f78472c
[  531.303007][T10692] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  531.322665][T10692] RSP: 002b:00007f9b70500030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  531.331132][T10692] RAX: ffffffffffffffda RBX: 00007f9b6f975fa0 RCX: 00007f9b6f78472c
[  531.339148][T10692] RDX: 000000000000000f RSI: 00007f9b705000a0 RDI: 0000000000000003
[  531.347162][T10692] RBP: 00007f9b70500090 R08: 0000000000000000 R09: 0000000000000000
[  531.355160][T10692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  531.363152][T10692] R13: 0000000000000000 R14: 00007f9b6f975fa0 R15: 00007ffe20445408
[  531.371178][T10692]  </TASK>
[  531.374372][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.428752][   T29] audit: type=1326 audit(1734139745.842:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10688 comm="syz.1.1404" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  531.470769][T10689] netlink: 'syz.1.1404': attribute type 5 has an invalid length.
[  531.772002][ T5840] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  531.871991][ T5877] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  532.052505][ T5840] usb 7-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02
[  532.095172][ T5877] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  532.136491][ T5840] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  532.167305][ T5877] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  532.184146][ T5840] usb 7-1: Product: syz
[  532.197395][ T5840] usb 7-1: Manufacturer: syz
[  532.202645][ T5877] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  532.213478][ T5840] usb 7-1: SerialNumber: syz
[  532.224719][ T5840] usb 7-1: config 0 descriptor??
[  532.275611][ T5877] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  532.369944][ T5877] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  532.418086][ T5877] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  532.461176][ T5877] usb 6-1: Manufacturer: syz
[  532.519002][T10714] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1410'.
[  532.522835][ T5877] usb 6-1: config 0 descriptor??
[  532.583731][T10714] netlink: 'syz.1.1410': attribute type 1 has an invalid length.
[  532.622447][ T5840] hso 7-1:0.0: Failed to find BULK IN ep
[  532.955212][ T5840] usb 7-1: USB disconnect, device number 8
[  533.001619][T10714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1410'.
[  533.610367][T10714] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1410'.
[  533.648607][ T5877] appleir 0003:05AC:8243.0014: unknown main item tag 0x0
[  533.656825][ T5877] appleir 0003:05AC:8243.0014: No inputs registered, leaving
[  533.683979][ T5877] appleir 0003:05AC:8243.0014: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  533.689132][T10723] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1412'.
[  533.715483][T10723] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1412'.
[  533.745417][T10723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1412'.
[  534.552617][T10743] netlink: 252 bytes leftover after parsing attributes in process `syz.6.1416'.
[  534.561964][T10743] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1416'.
[  534.835833][ T5827] Bluetooth: hci1: command 0x0406 tx timeout
[  535.262878][   T29] audit: type=1326 audit(1734139749.682:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10748 comm="syz.4.1420" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  535.323445][T10750] netlink: 'syz.4.1420': attribute type 5 has an invalid length.
[  535.998293][    T8] usb 6-1: USB disconnect, device number 4
[  537.516767][   T29] audit: type=1326 audit(1734139751.852:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10766 comm="syz.0.1426" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f79d8785d19 code=0x0
[  537.620941][T10782] netlink: 'syz.0.1426': attribute type 5 has an invalid length.
[  537.717903][T10784] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1429'.
[  537.727465][T10784] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1429'.
[  539.903377][T10799] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1435'.
[  541.232130][T10808] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1439'.
[  541.268880][T10808] netlink: 'syz.0.1439': attribute type 1 has an invalid length.
[  541.326901][T10808] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1439'.
[  541.460822][   T29] audit: type=1326 audit(1734139755.872:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10812 comm="syz.4.1440" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  541.465294][T10808] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1439'.
[  541.671259][T10819] netlink: 'syz.4.1440': attribute type 5 has an invalid length.
[  543.583185][   T29] audit: type=1326 audit(1734139757.922:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10827 comm="syz.6.1445" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f783cb85d19 code=0x0
[  543.676126][T10839] netlink: 'syz.6.1445': attribute type 5 has an invalid length.
[  543.916204][T10844] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1447'.
[  543.925936][T10844] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1447'.
[  544.671237][T10847] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1449'.
[  546.868446][T10873] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1455'.
[  547.075839][T10873] netlink: 'syz.0.1455': attribute type 8 has an invalid length.
[  547.363979][T10873] netlink: 'syz.0.1455': attribute type 1 has an invalid length.
[  547.557497][T10873] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1455'.
[  549.205225][T10873] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1455'.
[  549.676070][T10888] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  549.925876][T10899] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1462'.
[  550.034074][   T29] audit: type=1326 audit(1734139764.422:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10890 comm="syz.1.1460" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f704fd85d19 code=0x0
[  550.116067][T10901] netlink: 'syz.1.1460': attribute type 5 has an invalid length.
[  550.651564][T10906] No control pipe specified
[  551.520688][ T5827] Bluetooth: hci5: command 0x0406 tx timeout
[  552.371517][T10921] netlink: 252 bytes leftover after parsing attributes in process `syz.6.1466'.
[  552.380807][T10921] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1466'.
[  553.646647][T10941] xt_NFQUEUE: number of queues (1280) out of range (got 65792)
[  554.160480][T10939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1474'.
[  554.292503][T10939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1474'.
[  554.735528][T10951] No control pipe specified
[  555.235056][   T29] audit: type=1326 audit(1734139769.652:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10948 comm="syz.4.1477" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29ba385d19 code=0x0
[  555.257853][T10953] netlink: 'syz.4.1477': attribute type 5 has an invalid length.
[  556.903363][T10978] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1483'.
[  556.912666][T10978] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1483'.
[  557.051111][ T5876] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  557.287499][ T5876] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  557.414822][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  557.670808][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  557.690788][ T5876] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  557.742142][ T5876] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  557.761087][ T5876] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  557.878849][ T5876] usb 1-1: Manufacturer: syz
[  557.901453][ T5876] usb 1-1: config 0 descriptor??
[  558.115027][T10986] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1486'.
[  558.130311][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1487'.
[  558.148252][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1487'.
[  558.163819][T10973] kvm: emulating exchange as write
[  558.319810][ T5876] appleir 0003:05AC:8243.0015: unknown main item tag 0x0
[  558.346910][ T5876] appleir 0003:05AC:8243.0015: No inputs registered, leaving
[  558.377786][ T5876] appleir 0003:05AC:8243.0015: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  558.449354][T10996] binder_alloc: 10995: pid 10995 spamming oneway? 1 buffers allocated for a total size of 1792
[  558.760580][T11002] No control pipe specified
[  559.540230][T11012] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1495'.
[  559.549497][T11012] netlink: 'syz.4.1495': attribute type 8 has an invalid length.
[  559.559713][T11012] netlink: 'syz.4.1495': attribute type 1 has an invalid length.
[  559.571036][   T29] audit: type=1326 audit(1734139773.982:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11006 comm="syz.6.1493" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f783cb85d19 code=0x0
[  559.608791][T11012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1495'.
[  559.638563][T11013] netlink: 'syz.6.1493': attribute type 5 has an invalid length.
[  559.676072][T11012] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1495'.
[  559.903395][ T5876] usb 1-1: USB disconnect, device number 16
[  559.927671][T11025] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1497'.
[  560.168043][T11030] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1499'.
[  560.178465][T11030] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1499'.
[  560.373472][T11030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1499'.
[  560.404718][T11036] FAULT_INJECTION: forcing a failure.
[  560.404718][T11036] name failslab, interval 1, probability 0, space 0, times 0
[  560.417880][T11036] CPU: 1 UID: 0 PID: 11036 Comm: syz.5.1502 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  560.428694][T11036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  560.438791][T11036] Call Trace:
[  560.442120][T11036]  <TASK>
[  560.445164][T11036]  dump_stack_lvl+0x241/0x360
[  560.449877][T11036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  560.455090][T11036]  ? __pfx__printk+0x10/0x10
[  560.459687][T11036]  ? fs_reclaim_acquire+0x93/0x130
[  560.464823][T11036]  ? __pfx___might_resched+0x10/0x10
[  560.470165][T11036]  should_fail_ex+0x3b0/0x4e0
[  560.474916][T11036]  should_failslab+0xac/0x100
[  560.479703][T11036]  __kmalloc_noprof+0xdd/0x4c0
[  560.484480][T11036]  ? kstrtouint_from_user+0x128/0x190
[  560.489870][T11036]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  560.495660][T11036]  tomoyo_realpath_from_path+0xcf/0x5e0
[  560.501255][T11036]  tomoyo_path_number_perm+0x236/0x860
[  560.506748][T11036]  ? __lock_acquire+0x1397/0x2100
[  560.511794][T11036]  ? tomoyo_path_number_perm+0x206/0x860
[  560.517465][T11036]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  560.523506][T11036]  ? __fget_files+0x2a/0x410
[  560.528114][T11036]  ? __fget_files+0x2a/0x410
[  560.532730][T11036]  security_file_ioctl+0xc6/0x2a0
[  560.537770][T11036]  __se_sys_ioctl+0x46/0x170
[  560.542383][T11036]  do_syscall_64+0xf3/0x230
[  560.546908][T11036]  ? clear_bhb_loop+0x35/0x90
[  560.551611][T11036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.557523][T11036] RIP: 0033:0x7f9b6f785d19
[  560.561958][T11036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.581666][T11036] RSP: 002b:00007f9b70500038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  560.590097][T11036] RAX: ffffffffffffffda RBX: 00007f9b6f975fa0 RCX: 00007f9b6f785d19
[  560.598079][T11036] RDX: 0000000020000180 RSI: 00000000000007a4 RDI: 0000000000000005
[  560.606055][T11036] RBP: 00007f9b70500090 R08: 0000000000000000 R09: 0000000000000000
[  560.614032][T11036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  560.622007][T11036] R13: 0000000000000000 R14: 00007f9b6f975fa0 R15: 00007ffe20445408
[  560.630033][T11036]  </TASK>
[  560.997145][T11036] ERROR: Out of memory at tomoyo_realpath_from_path.
[  561.641779][   T29] audit: type=1326 audit(1734139776.062:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11043 comm="syz.6.1504" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f783cb85d19 code=0x0
[  561.694523][T11049] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1506'.
[  561.716190][T11047] netlink: 'syz.6.1504': attribute type 5 has an invalid length.
[  563.300783][ T5879] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  563.473219][ T5879] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  563.494437][ T5879] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  563.515012][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  563.522424][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  563.574745][ T5879] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  563.627093][ T5879] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  564.428857][ T5879] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  564.441058][ T5879] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  564.450492][ T5879] usb 2-1: Manufacturer: syz
[  564.457758][ T5879] usb 2-1: config 0 descriptor??
[  565.183146][T11086] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1518'.
[  565.311137][ T5879] appleir 0003:05AC:8243.0016: unknown main item tag 0x0
[  565.331862][ T5879] appleir 0003:05AC:8243.0016: No inputs registered, leaving
[  565.967594][T11086] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1518'.
[  565.976834][T11086] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1518'.
[  566.183943][ T5879] appleir 0003:05AC:8243.0016: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  567.111170][ T5877] usb 2-1: USB disconnect, device number 15
[  567.769766][T11128] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1530'.
[  569.793471][T11135] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1534'.
[  569.811911][T11135] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1534'.
[  569.916165][T11135] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1534'.
[  570.121072][ T5877] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  570.431648][ T5877] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  570.670879][ T5877] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.817510][ T5877] usb 1-1: config 0 descriptor??
[  571.158862][ T5877] ums-realtek 1-1:0.0: USB Mass Storage device detected
[  572.215685][ T5877] usb 1-1: USB disconnect, device number 17
[  572.869122][T11172] netlink: 120 bytes leftover after parsing attributes in process `syz.1.1544'.
[  574.355341][   T30] INFO: task syz.2.1045:9511 blocked for more than 143 seconds.
[  574.363698][   T30]       Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  574.371851][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  574.382529][   T30] task:syz.2.1045      state:D stack:22840 pid:9511  tgid:9510  ppid:7826   flags:0x00000004
[  574.392979][   T30] Call Trace:
[  574.396294][   T30]  <TASK>
[  574.399265][   T30]  __schedule+0x17fb/0x4be0
[  574.404202][   T30]  ? __pfx___schedule+0x10/0x10
[  574.409115][   T30]  ? __pfx_lock_release+0x10/0x10
[  574.414382][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  574.420334][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  574.440800][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  574.447422][   T30]  ? schedule+0x90/0x320
[  574.460370][   T30]  schedule+0x14b/0x320
[  574.468342][   T30]  schedule_preempt_disabled+0x13/0x30
[  574.618615][   T30]  __mutex_lock+0x7e7/0xee0
[  574.810917][   T30]  ? __mutex_lock+0x5ef/0xee0
[  574.934719][   T30]  ? nfsd_nl_listener_set_doit+0x12d/0x1a90
[  575.006447][T11191] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1548'.
[  575.028445][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  575.053441][   T30]  ? __asan_memset+0x23/0x50
[  575.080024][T11191] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1548'.
[  575.093719][   T30]  ? netlink_unicast+0x7f6/0x990
[  575.124368][   T30]  ? netlink_sendmsg+0x8e4/0xcb0
[  575.146433][   T30]  ? __sock_sendmsg+0x221/0x270
[  575.151841][T11191] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1548'.
[  575.161417][   T30]  ? __sys_sendmsg+0x269/0x350
[  575.166254][   T30]  nfsd_nl_listener_set_doit+0x12d/0x1a90
[  575.172122][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  575.177925][   T30]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  575.184201][   T30]  ? __nla_parse+0x40/0x60
[  575.188681][   T30]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  575.202342][   T30]  genl_rcv_msg+0xb14/0xec0
[  575.207194][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  575.215447][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  575.220532][   T30]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  575.240665][   T30]  ? __pfx___might_resched+0x10/0x10
[  575.246059][   T30]  netlink_rcv_skb+0x1e3/0x430
[  575.260687][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  575.265808][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  575.275722][   T30]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  575.300738][   T30]  genl_rcv+0x28/0x40
[  575.304808][   T30]  netlink_unicast+0x7f6/0x990
[  575.309640][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  575.323222][   T30]  ? __virt_addr_valid+0x45f/0x530
[  575.328503][   T30]  ? __phys_addr_symbol+0x2f/0x70
[  575.339384][   T30]  ? __check_object_size+0x47a/0x730
[  575.357631][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  575.363026][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  575.368376][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  575.383928][   T30]  __sock_sendmsg+0x221/0x270
[  575.388700][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  575.406932][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  575.416745][   T30]  ? __fget_files+0x2a/0x410
[  575.425964][   T30]  ? __fget_files+0x2a/0x410
[  575.435139][   T30]  __sys_sendmsg+0x269/0x350
[  575.439817][   T30]  ? __pfx_futex_wake+0x10/0x10
[  575.449598][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  575.458916][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  575.470750][   T30]  ? do_syscall_64+0x100/0x230
[  575.475607][   T30]  ? do_syscall_64+0xb6/0x230
[  575.480422][   T30]  do_syscall_64+0xf3/0x230
[  575.491198][   T30]  ? clear_bhb_loop+0x35/0x90
[  575.496061][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.516612][   T30] RIP: 0033:0x7fb045385d19
[  575.527111][   T30] RSP: 002b:00007fb046121038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  575.540299][   T30] RAX: ffffffffffffffda RBX: 00007fb045575fa0 RCX: 00007fb045385d19
[  575.550739][   T30] RDX: 0000000024000100 RSI: 0000000020001740 RDI: 0000000000000003
[  575.558767][   T30] RBP: 00007fb045401a20 R08: 0000000000000000 R09: 0000000000000000
[  575.578179][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  575.588082][   T30] R13: 0000000000000000 R14: 00007fb045575fa0 R15: 00007fff7b1c3df8
[  575.606111][   T30]  </TASK>
[  575.609253][   T30] 
[  575.609253][   T30] Showing all locks held in the system:
[  575.624806][   T30] 1 lock held by khungtaskd/30:
[  575.629886][   T30]  #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  575.647545][   T30] 1 lock held by udevd/5195:
[  575.654950][   T30] 2 locks held by getty/5580:
[  575.670859][   T30]  #0: ffff888035ae20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  575.681675][   T30]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  575.692377][   T30] 2 locks held by kworker/0:5/5879:
[  575.697633][   T30]  #0: ffff8880b863e758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  575.710151][   T30]  #1: ffff8880b8628948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x41d/0x7a0
[  575.722172][   T30] 2 locks held by kworker/u8:15/9066:
[  575.727562][   T30]  #0: ffff8880b863e758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  575.737714][   T30]  #1: ffff8880b8628948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x41d/0x7a0
[  575.749355][   T30] 2 locks held by syz.3.1003/9395:
[  575.754838][   T30]  #0: ffffffff8fd01990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  575.763214][   T30]  #1: ffffffff8ebff248 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  575.773506][   T30] 2 locks held by syz.2.1045/9511:
[  575.778638][   T30]  #0: ffffffff8fd01990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  575.787220][   T30]  #1: ffffffff8ebff248 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  575.797584][   T30] 
[  575.799944][   T30] =============================================
[  575.799944][   T30] 
[  575.813285][   T30] NMI backtrace for cpu 1
[  575.817641][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  575.828142][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  575.838219][   T30] Call Trace:
[  575.841508][   T30]  <TASK>
[  575.844457][   T30]  dump_stack_lvl+0x241/0x360
[  575.849154][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  575.854374][   T30]  ? __pfx__printk+0x10/0x10
[  575.859013][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  575.863997][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  575.869472][   T30]  ? _printk+0xd5/0x120
[  575.873656][   T30]  ? __pfx__printk+0x10/0x10
[  575.878263][   T30]  ? __wake_up_klogd+0xcc/0x110
[  575.883125][   T30]  ? __pfx__printk+0x10/0x10
[  575.887714][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  575.892750][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  575.898761][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  575.904749][   T30]  watchdog+0xff6/0x1040
[  575.908990][   T30]  ? watchdog+0x1ea/0x1040
[  575.913418][   T30]  ? __pfx_watchdog+0x10/0x10
[  575.918120][   T30]  kthread+0x2f0/0x390
[  575.922195][   T30]  ? __pfx_watchdog+0x10/0x10
[  575.926873][   T30]  ? __pfx_kthread+0x10/0x10
[  575.931478][   T30]  ret_from_fork+0x4b/0x80
[  575.935892][   T30]  ? __pfx_kthread+0x10/0x10
[  575.940485][   T30]  ret_from_fork_asm+0x1a/0x30
[  575.945272][   T30]  </TASK>
[  575.949706][   T30] Sending NMI from CPU 1 to CPUs 0:
[  575.955747][    C0] NMI backtrace for cpu 0
[  575.955761][    C0] CPU: 0 UID: 0 PID: 9081 Comm: kworker/u8:21 Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  575.955783][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  575.955794][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[  575.955827][    C0] RIP: 0010:__lock_acquire+0x8aa/0x2100
[  575.955848][    C0] Code: 8b 5d 00 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 80 e8 26 94 be 08 00 00 00 e8 8e 8e 88 00 48 0f a3 1d c6 40 ac 12 <73> 1a 48 69 c3 c8 00 00 00 48 8d 98 40 67 be 93 48 ba 00 00 00 00
[  575.955864][    C0] RSP: 0018:ffffc90002e56af0 EFLAGS: 00000057
[  575.955879][    C0] RAX: 0000000000000001 RBX: 000000000000002b RCX: ffffffff817aa7b2
[  575.955892][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9426e880
[  575.955904][    C0] RBP: 0000000000000004 R08: ffffffff9426e887 R09: 1ffffffff284dd10
[  575.955917][    C0] R10: dffffc0000000000 R11: fffffbfff284dd11 R12: 0000000000000003
[  575.955930][    C0] R13: ffff888060dbc778 R14: 0000000000000003 R15: ffff888060dbc778
[  575.955943][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  575.955959][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  575.955971][    C0] CR2: 00007f79d8948178 CR3: 000000000e736000 CR4: 00000000003526f0
[  575.955988][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  575.955999][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  575.956011][    C0] Call Trace:
[  575.956017][    C0]  <NMI>
[  575.956025][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  575.956045][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  575.956065][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  575.956092][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  575.956118][    C0]  ? nmi_handle+0x14f/0x5a0
[  575.956138][    C0]  ? nmi_handle+0x2a/0x5a0
[  575.956158][    C0]  ? __lock_acquire+0x8aa/0x2100
[  575.956176][    C0]  ? default_do_nmi+0x63/0x160
[  575.956195][    C0]  ? exc_nmi+0x123/0x1f0
[  575.956212][    C0]  ? end_repeat_nmi+0xf/0x53
[  575.956241][    C0]  ? __lock_acquire+0x8a2/0x2100
[  575.956259][    C0]  ? __lock_acquire+0x8aa/0x2100
[  575.956278][    C0]  ? __lock_acquire+0x8aa/0x2100
[  575.956297][    C0]  ? __lock_acquire+0x8aa/0x2100
[  575.956315][    C0]  </NMI>
[  575.956321][    C0]  <TASK>
[  575.956334][    C0]  lock_acquire+0x1ed/0x550
[  575.956358][    C0]  ? put_cpu_partial+0x70/0x250
[  575.956383][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  575.956401][    C0]  ? put_cpu_partial+0x70/0x250
[  575.956423][    C0]  ? __pfx_lock_release+0x10/0x10
[  575.956445][    C0]  ? _raw_spin_lock_irqsave+0xe1/0x120
[  575.956467][    C0]  put_cpu_partial+0x91/0x250
[  575.956488][    C0]  ? put_cpu_partial+0x70/0x250
[  575.956509][    C0]  ? put_cpu_partial+0x70/0x250
[  575.956532][    C0]  get_partial_node+0x13e/0x3f0
[  575.956555][    C0]  ? ___slab_alloc+0x256/0x14a0
[  575.956575][    C0]  ___slab_alloc+0xb75/0x14a0
[  575.956596][    C0]  ? cfg80211_inform_single_bss_data+0xb2d/0x2070
[  575.956622][    C0]  ? cfg80211_inform_single_bss_data+0xb2d/0x2070
[  575.956645][    C0]  __slab_alloc+0x58/0xa0
[  575.956665][    C0]  __kmalloc_noprof+0x2e6/0x4c0
[  575.956682][    C0]  ? cfg80211_inform_single_bss_data+0xb2d/0x2070
[  575.956707][    C0]  cfg80211_inform_single_bss_data+0xb2d/0x2070
[  575.956734][    C0]  ? deref_stack_reg+0x17c/0x210
[  575.956752][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[  575.956784][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  575.956811][    C0]  ? cfg80211_inform_bss_data+0x3b6/0x5e80
[  575.956836][    C0]  cfg80211_inform_bss_data+0x3ce/0x5e80
[  575.956868][    C0]  ? __pfx_validate_chain+0x10/0x10
[  575.956899][    C0]  ? __pfx_validate_chain+0x10/0x10
[  575.956922][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[  575.956948][    C0]  ? mark_lock+0x9a/0x360
[  575.956969][    C0]  ? __lock_acquire+0x1397/0x2100
[  575.956998][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  575.957016][    C0]  ? ieee80211_bss_info_update+0x3d9/0xbc0
[  575.957038][    C0]  cfg80211_inform_bss_frame_data+0x3bb/0x720
[  575.957065][    C0]  ? ieee80211_bss_info_update+0x3d9/0xbc0
[  575.957083][    C0]  ieee80211_bss_info_update+0x8a7/0xbc0
[  575.957105][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[  575.957124][    C0]  ? __pfx_lock_release+0x10/0x10
[  575.957148][    C0]  ieee80211_ibss_rx_queued_mgmt+0x1969/0x2d70
[  575.957173][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf7e/0x2d70
[  575.957191][    C0]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[  575.957214][    C0]  ? mark_lock+0x9a/0x360
[  575.957234][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  575.957254][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  575.957274][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  575.957306][    C0]  ieee80211_iface_work+0x8a5/0xf20
[  575.957329][    C0]  cfg80211_wiphy_work+0x2db/0x480
[  575.957366][    C0]  ? process_scheduled_works+0x976/0x1840
[  575.957393][    C0]  process_scheduled_works+0xa66/0x1840
[  575.957430][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  575.957460][    C0]  ? assign_work+0x364/0x3d0
[  575.957487][    C0]  worker_thread+0x870/0xd30
[  575.957509][    C0]  ? __kthread_parkme+0x169/0x1d0
[  575.957527][    C0]  ? __pfx_worker_thread+0x10/0x10
[  575.957544][    C0]  kthread+0x2f0/0x390
[  575.957562][    C0]  ? __pfx_worker_thread+0x10/0x10
[  575.957578][    C0]  ? __pfx_kthread+0x10/0x10
[  575.957597][    C0]  ret_from_fork+0x4b/0x80
[  575.957613][    C0]  ? __pfx_kthread+0x10/0x10
[  575.957632][    C0]  ret_from_fork_asm+0x1a/0x30
[  575.957663][    C0]  </TASK>
[  575.972193][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  575.972216][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc2-syzkaller-00159-gf932fb9b4074 #0
[  575.972243][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  575.972258][   T30] Call Trace:
[  575.972268][   T30]  <TASK>
[  575.972278][   T30]  dump_stack_lvl+0x241/0x360
[  575.972316][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  575.972347][   T30]  ? __pfx__printk+0x10/0x10
[  575.972373][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  575.972407][   T30]  ? vscnprintf+0x5d/0x90
[  575.972435][   T30]  panic+0x349/0x880
[  575.972465][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  575.972494][   T30]  ? __pfx_panic+0x10/0x10
[  575.972518][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  575.972552][   T30]  ? __irq_work_queue_local+0x137/0x410
[  575.972580][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  575.972604][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  575.972631][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  575.972660][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  575.972691][   T30]  watchdog+0x1035/0x1040
[  575.972717][   T30]  ? watchdog+0x1ea/0x1040
[  575.972747][   T30]  ? __pfx_watchdog+0x10/0x10
[  575.972772][   T30]  kthread+0x2f0/0x390
[  575.972798][   T30]  ? __pfx_watchdog+0x10/0x10
[  575.972822][   T30]  ? __pfx_kthread+0x10/0x10
[  575.972849][   T30]  ret_from_fork+0x4b/0x80
[  575.972870][   T30]  ? __pfx_kthread+0x10/0x10
[  575.972896][   T30]  ret_from_fork_asm+0x1a/0x30
[  575.972943][   T30]  </TASK>
[  576.636495][   T30] Kernel Offset: disabled
[  576.640830][   T30] Rebooting in 86400 seconds..