last executing test programs:

34.198774389s ago: executing program 4 (id=2339):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000840000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0800034000000010440000000c0a01020000000000000000010000000900020073797a32000000000900010073797a30000000001800038014000080040001800c0005"], 0xd0}}, 0x0)

22.385068604s ago: executing program 1 (id=2381):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r1)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000300)={0x0, 0xfffffffffffffe7a, r3})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000080)={&(0x7f0000000000)=[0x0, 0x0], 0x2, r3})
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000027c0)={0x2, 0x3, 0x0, 0x2, 0x10, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, '['}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast1}}]}, 0x80}, 0x1, 0x7}, 0x0)

22.052995398s ago: executing program 1 (id=2383):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000f00)="f5", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000014c0)="23004e4ee760d48ddc6b7a1ebfc6e0276028840fb20d5233e81c802684e8ac1dc195296ffaaeace75a07a652ee918f67beb970cd36769470f7acb5cd5becfa3839cec05a81f9488931e0a9ba9a246f45fee8b5240bd1e078539b56973bfbbee5a100668daf66ef25121ca65db1d1", 0x6e}], 0x20}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)="1ee88f78de", 0x5}], 0x1}}], 0x3, 0x0)

21.796743788s ago: executing program 1 (id=2384):
unshare(0x68040200) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000f40)='fdinfo\x00')
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES32, @ANYRES8=r1], 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x2400, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_MSRS(r6, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r3]) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="769100001500010084be0000000f00000a84000001000000000301"], 0x1}}, 0x5) (async)
socket$inet6(0x10, 0x3, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
setresuid(0xee01, 0xee00, 0xffffffffffffffff) (async)
setresuid(0x0, 0xffffffffffffffff, 0xffffffffffffffff)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000004c0)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10) (async)
r11 = fcntl$dupfd(r0, 0x0, r9)
sendmsg$BATADV_CMD_SET_HARDIF(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x40020}, 0x0) (async)
socket$inet6(0xa, 0x2, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)

19.803841126s ago: executing program 1 (id=2393):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/partitions\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
getsockname$tipc(r0, &(0x7f0000000000), &(0x7f0000000280)=0x10)
sendfile(r1, r0, &(0x7f00000000c0)=0x58, 0x9)
writev(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)="e7", 0xfffffdd6}], 0x1)
r2 = socket(0xa, 0x1, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'ip_vti0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000001640)={0x10, 0x13, 0x200, 0x70bd2b, 0x25dfdbfe}, 0x10}], 0x1, 0x0, 0x0, 0x4000000}, 0x14008000)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f000000c3c0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f00000000c0)={0x50, 0x0, r7, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f000000e400)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000141bdb7989c08b32000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000180000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007ed10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000889049938edebcd600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r6, &(0x7f0000004140)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x18, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x147982, 0x40)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8, 0x12, r8, 0x0)
syz_clone(0x41080, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r8, 0x8905, &(0x7f0000000000))
ptrace(0x10, r9)
waitid(0x0, 0x0, 0x0, 0x8, &(0x7f00000013c0))
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="400000001000000400000000fcfffffb00000000222ac7931ac6d6ed93ee210e06e7732201f4c3e6805f7deaa7e89ebc223bbaba409e8f8634fb6d27979b8f3d69ec7adb5f00a9cd046aadf53dda1c5e4568d3cd1886693938e9c032cd97f8fe059f957c7bccbe3cc5bd935b84f7ba197b55793de8ccfe50f372cd0ad0d07bd854051f6b84a5d3d17f2f101b88a94710e0f7f2806ecac3fce671e1edcea321418ac4bc15b89156b54ba8c03f32400903db7bf092d2f7121d3529d72ee252eace22e3170587ee892c74be416859b973a3131fff75b208775119335b1952", @ANYRES32=r4, @ANYBLOB="000000000000000020001280080001007674690014000280080003000300000008000100", @ANYRES32=r4, @ANYBLOB], 0x40}}, 0x0)
io_setup(0x9, &(0x7f0000000040)=<r10=>0x0)
r11 = socket(0xa, 0x3, 0x4)
io_submit(r10, 0x2, &(0x7f0000000380)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r11, 0x0, 0x0, 0xfffffffffffffffc}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, r2, 0x0, 0x0, 0xffffffffffff8004, 0x0, 0x2}])

17.963322388s ago: executing program 3 (id=2402):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x8481, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000002c0))
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000000)=0x27) (fail_nth: 6)

17.180974858s ago: executing program 3 (id=2404):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000480)={'vcan0\x00', <r1=>0x0})
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
writev(r3, &(0x7f0000004940)=[{&(0x7f00000002c0)="d258b3eb", 0x4}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={<r4=>0x0}, &(0x7f00000004c0)=0xc)
sched_setaffinity(r4, 0x0, 0x0)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f000001d980)=""/102396, 0x18ffc}], 0x1, 0xfffffffc, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r5)
fsopen(&(0x7f0000000080)='nfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x20, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs2/custom0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r7, 0x851, 0x0)
connect$can_bcm(0xffffffffffffffff, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x20)
syz_io_uring_setup(0x5d21, &(0x7f0000000540)={0x0, 0xa2c, 0x20, 0x0, 0x7, 0x0, r7}, 0x0, &(0x7f00000003c0))
connect$l2tp6(r7, &(0x7f0000000380)={0xa, 0x0, 0xbdd, @private0, 0x2b}, 0x66)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000180)={0x1d, r1, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[], 0x4640}, 0x2, 0x0, 0x0, 0x40804}, 0x44444)
socket$kcm(0x10, 0x2, 0x0)
pipe2(0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r8, &(0x7f0000000c00), &(0x7f0000000000), 0x2}, 0x20)

16.651135331s ago: executing program 3 (id=2406):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0xffffffff, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x6}]}, @NFT_MSG_NEWSETELEM={0x70, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x44, 0x3, 0x0, 0x1, [{0x40, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x34, 0xb, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_TARGET_NAME={0xe, 0x1, 'connlimit\x00'}, @NFTA_TARGET_INFO={0x4}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x5}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xf4}}, 0x0)

16.224135764s ago: executing program 1 (id=2408):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000280)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000300)="2826849cd905", 0x0, 0x0, 0x0, 0x1000000, 0x0})

16.177009296s ago: executing program 3 (id=2409):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f00000021c0), 0x2, 0x0)
r3 = dup(r2)
r4 = fsopen(&(0x7f0000002240)='overlay\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r4, 0x5, &(0x7f0000002280)='default_permissions', 0x0, r3)
move_mount(r1, &(0x7f0000000200)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

15.494185736s ago: executing program 1 (id=2413):
socket$netlink(0x10, 0x3, 0x7)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100), 0x42c240, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x8, 0x0)
syz_emit_ethernet(0x14a, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x0)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000140)={0x0, 0xfffffff1}, &(0x7f00000001c0)=0x8)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[], 0x3c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
mknodat$loop(r2, &(0x7f0000000180)='./file2/file0\x00', 0x1, 0x1)
write$binfmt_script(r3, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x4040800, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = syz_open_dev$vim2m(&(0x7f0000000040), 0x40000000f, 0x2)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
writev(r5, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000000)={0x32, 0x2, 0x0, "444900e1b0faa9b0071c937f7f00002e0c0000ff070000ff0f0000c39b00"})
syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x422000)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r6, &(0x7f0000001ac0), 0x0, 0xfff, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c8600c137ad4cb7815a6ede3491e8cdcb4100100001c6000000000000890a91abce98eeb3c5a0ff9f00749b86a8a500000000000b52a1a3d0fb15b308590c10ea908a38df9d06e52e0210d4577643b4961a441de0cbe7b01448b6fe6791320c67d7cc5df98009c4f5033abc450b57cc183af0fd96c79d1bc01a85e40eac087e", @ANYRES32=0x0, @ANYBLOB="4901000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32, @ANYBLOB], 0x4c}}, 0x0)

15.492741885s ago: executing program 3 (id=2414):
r0 = socket$kcm(0x10, 0x3, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000240)={'wg0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x4, &(0x7f0000000040)={&(0x7f0000000440)=@ipv4_newroute={0x2c, 0x18, 0xaba64f4add525e83, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfe, 0x2}, [@RTA_OIF={0x8, 0x4, r4}, @RTA_PREFSRC={0x8, 0x7, @broadcast}]}, 0x2c}, 0x1, 0xffffff7f}, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x9004}, 0x4)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x2, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)
syz_emit_ethernet(0xbc, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, '\x00', 0x86, 0x2f, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x0, [0x8]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [], "e92d90e74bb151c5255a0592d288f06f2eebf6674a0e1283d79429f43e319bc8b70341d40c10d6c5"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x1ff], "d1296902a8ab000000070000661625c54d22af8f0000"}, {0x8, 0x88be, 0x2, {{}, 0x1, {0x400}}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5}}}}}}}}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000007c0)="1400000035000b63525a80643d66b7d809f2e2ff", 0x14}], 0x1}, 0x0)

15.061074446s ago: executing program 3 (id=2417):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000300)={0x0, 0xfffffffffffffe7a, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f00000000c0)={r2, r3})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x308800, 0x800, 0x0, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', <r6=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r7, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r4, &(0x7f00000001c0)={0x2c, 0x6, r6}, 0x10)
close(r0)

13.987815697s ago: executing program 4 (id=2340):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad", 0x1)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x1000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)

13.781551539s ago: executing program 4 (id=2423):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
creat(&(0x7f0000000040)='./file0\x00', 0x1de)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)}, 0x0)
sendmsg$kcm(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
msgget$private(0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, 0x0, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r5, 0x84, 0x6, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB="2c726f6f746d6f64653d30303030303030293030303030303030303034303030302c757365725f69643d2a32e1e0c26fff7509408b648dda043ebb5f045463fdaf340352a57b7dec0fcace101c726cd7118833bbde2e176d810b1099e3d4c5bea4963620b81527d4e64b8deed3d6055a9eaef2ee790ae47509e0b0f3750df83de5253db3bd8dc5cb27252083c7bde85045", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x5c8, 0x0, 0x3c8, 0x2f8, 0x2f8, 0x2f8, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x6, 0x0, {[{{@ipv6={@local, @private2, [], [], 'dvmrp1\x00', 'bridge_slave_1\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@ipv6={@loopback, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x11, 0x0, 0x0, 0x59}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @private2, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@private}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xf0, 0x130, 0x0, {}, [@common=@dst={{0x48}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x628)
read$FUSE(r6, &(0x7f00000077c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r6, 0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)

12.82142659s ago: executing program 4 (id=2427):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x1000005, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x18610a0, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYRESHEX=r1, @ANYBLOB="664de8226f9425d6c727d17159f1d46578c74ff84bb28e4e21a8f2bb81ade699db2ca0c3a5c2e37149655c1ee633e36c7cf5ed2cb4d36f5a6d1b4f995faacb21098e51ab163e5aa6ccd663b20ccbc66c6b793f0741d89742a41ce70acd32e2196d8c3a3989eadab53fe896004b2f0aa96d76f3e67a4551a3734f0e4ebb4a3257588c65b1c32d549d51a76b474402d92057637743e8f3de3c821956873d24f32309788188b69626c9e372ddb56bf4e48e0389eb5ebc607aa943a86d02bcb65e3b63297fd9"], 0xc0}}, 0x60011)

11.83693257s ago: executing program 4 (id=2431):
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="341000003b0007010000000000000000017c0000040000001400018008001600000000000600060088480000080002"], 0x1034}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0d05640, &(0x7f00000003c0)={0x2, @sdr={0x32315659, 0x93}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001980)={0x9, {"a2e3ad084fc752f91b2909094bf70e0dd038e7ff7fc6e5539b3272078b089b34373b6d1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31300d316d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df0784c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d618e462071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af44863c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000510b00", 0x1000}}, 0x1006)
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder-control\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
close(0xffffffffffffffff)

11.107197242s ago: executing program 2 (id=2434):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback}], 0x2c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x73)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000)=0x8, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000580)={0x3f}, 0xe)
recvmmsg(r1, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000005c0)=""/197, 0xc5}], 0x1, &(0x7f0000000540)=""/57, 0x39}}], 0x1, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x80}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x400008a, 0x0)

11.063748725s ago: executing program 2 (id=2435):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x4)
sched_setaffinity(0x0, 0x5f, &(0x7f0000000040)=0x9)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001400)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="24b29f020400000005008000ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xa, 0x0, 0x0, 0x10, 0x9}, 0x90)
ioctl$TUNSETOFFLOAD(r1, 0x40047451, 0x2000000a)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000400007910480000000000c30000008c0000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc6, &(0x7f0000000400)=""/198, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff7}]})
getcwd(&(0x7f00000002c0)=""/236, 0xec)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
getegid()
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000140)={{{@in=@private, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in=@multicast1}}, &(0x7f0000000500)=0xe8)
statx(r3, &(0x7f0000000280)='./file0\x00', 0x4000, 0x1, &(0x7f0000000600))
mount$fuse(0x0, &(0x7f0000000000)='./file0/file0/file0/file0/file0\x00', &(0x7f0000002100), 0x1216803, &(0x7f0000000980)=ANY=[@ANYBLOB="66643d4485ef25ddd0dc26eb2cdc6a11b7e83f9a836b0eceef74114404dda7b7a3baff7a9c9aff53baa16e0a4b2e430e83f110ee03fb4abdfef4be8fda3989ecebc675e5a1275aabc7cf936ffc016eba7d5221ed473e949d174d45fa71574eac233fcad0f7f96bf8a5e25c0d60958e7d2f52774aa363f766c915a8527c0b698161e85325284be4250b023b2f1ac3f419e6b47e63b392ab86dc35f4b2f444f7989d91e6099dcfec5a1d15d2e1301c", @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',blksize=0x0000000000001400,default_permissions,default_permissions,max_read=0x0000000000000004,\x00'])
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020)
readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7)
lstat(&(0x7f0000000940)='./file0\x00', 0x0)
syz_fuse_handle_req(r4, &(0x7f0000004280)="28344447875361b503f38fcfc6bb6bce4608d1ddb4bc2404599b40b25d178c5a72b7e68671106a69547aa83dba890be8ec467183f43a0821edd7bd777cad8c26c5eab5cf7cf8a6cab3940481bcd27ad19d84019f5b2ced26e27ea0d6c855cec0dff58aa64834ac7c502c9da728e008270d8125810da301423b219d83fbd1cefa89b8fabc374203657bba118e8bc0e80d2d9db9ab1245bedc86008df930340213f97d23ca6c7701dc4aa9e79715559d105cf049151287c3a38171fa007bdc8120d9b8efe28882a2033505be60465b1b9cb811922a04742e1a3f100555fad0af68cc3a3b7f8989978fbc4607f59333239d284c4f214914bfbcadabdbeb2e67d2c8ecf09948aa12b8c2a44ef205410540d853fbbd9fb241c4ef70b9f1bc170728e17951a7d5b7002a11df722dd4e88b0568ebd5e5afbc475b084c7e84825b5b8927aed2405dfabcf80c0c2a806b8753aa480dd84d4c89f84f9b540df1a47506c3ecc87804418bbafbcf82017afe105ffec551d63fd8ff6e0635179027d61f0ff4a0b87f797837e149c0e2eef1fa9cf2636c19df8e04f23ccf8ba86cd0d7ee4795c109ca5f9ee347a29e4506f333f82f29ce568de09d12a5262dc78b5db514d28c4dc27b61ea3274f1ce7d1329643a90837cdd077244d26835ec91d5b5365ef33afe156cf9915e21678dc54bd41aad3baf38769f2fa1e34ffce4f2eb3f629a5483e1001fb7e8d25287aba700bebb47f1e25ea50db77704bcf016df672fab49e16a5bf9998006fa13557772092127068fc6ebaca1419a183396c68777c216e6a528cf95b06bf7950ba25e98a4751e6809b9e7a3ad5cb39bc47b2f6dfff35942c1fcd27c5220d59febad538fe4ddb760e1d509f59a56b9feb0bf556ac2b4d7159cba717d385db1e86ad85ab0bfcde15f2bf7e1e629026db2400236989f656ea828182956ceae0bfc9907831faded8daa691833460a6abbcad06d851de5ddbb88c6ef08c4e03328d2bf217659643286961dfa99cee8fd6e8d33b72df01b962436098b0d35d8c4a987d5ceb1a7a26441f74600679bce180cd61dfeee8e5245054fb04fa9b59a699b19e52b468dda8254b73865dfd24934c96f95f5091ca1003a97c912bb1794ef3ff9a6bf251c9dc77607657d236c8bc3857b292d9488775e1cf8b6f89225e721cb24afc3520c8f6d564a0a43511be5d1b50c54c8500a748fa3863bd1a6d83df506c653861f7e5f04355f839a4fcd39f1d31663da1e0c80a1f4bf89c24e5b9c700eb929c19ec797979d621b04a64663e719f9447225d93442283ce952a6b42687fc29ab4c0f61180bedc152712602a41a37044c345c91115263936d55e1ac4b4cf676c69fef8797e3ed1b878c40df03b93397d8f53807813b52958bbdb21848613550d6f4991ce21533179a75a4ecc4dcb6e65760761d787a53888d080a32fb6cfb5379bb43f482853d34787ea53695377c413f12f2d1eb8f97274485285b3334663d6164731c45053bcb1a46efc38ad9c1a82e9250fbd1d4256941649290661d22a6e2b6f2e05c920c57a8ee6e325589041a2093b63e4cf108abceec4371d2cda40794ff6f50c82fd795689a77b38fb4fac2b66a6586ad0b4e16cade94e94e40ece66bdb4c272da8a88485746ff09c37884250f049168aae7d438beb9956b25b7c259ba30bc94f53ab31f6d0f65310da23c1a5dbb90e55724eafbe24ed782279ba22b19fc4406ec8b34468764a7b02044ba6351b0ab23b6ef989d6f80a783cb5a29d6f33a6f8d4629b7d8d6ca3dc1bb51475530d8c398150be5c2fc3cb739ad0d94feddb80240b0524bca1c04e149cb636ccc0fed829d13e0e042381438569be093c63b66c57047225b422de541058a2c29af58f558fb36a3c4456287cc78734609676df3af26013cc6c6aa9ff61a972f33fa4d045452561e1bca651a4089cf0a2ea46662190c1a1a94011adbe8da59c3d39fd9d1c115103c7a0a823b10ba2cfada082dc86034e2313b394ee4b1facd3bb15130063c48549a15e7c189a5711685b3705a2fcd984e1f98886dc077e286767d1edebad8059f3d9e6039ca8334917a07648c45919138ad1d1490df2276af5901efccfac45e263873c07b7d2e7ec11be7568d4e3a249d9d1158e7c3f6d6056aee710950cda3bfd9f84cf3320ca6418dfbfc1636ea5446f1210cd56c56f8ed2d42584496c91776e999212826c9961932cfc6cb085700cbe5995906461473f9d55e2329bbeed925607b172d4f69c718df2998e8eab37a5e781d6b9fb1440a33e1ab7f7edfdb26db49b5a7474dbfacda4c66cfbe8c5c7cb6396593b4b8839401832e2fc39380d1f58c8eec63909f1c10cd99e9e71ba62168ccee1e697e73ce46377dc33d2d858d8748d5518277eb13dce7a9dcc06e0c05692a1494ceb4aefe016827ccbbbe149cb8c8dc874ca4dda4ccd6ffcd15d3c76af308841807a5038e743da57e1ae4b072561a19cafdef6416756dbfbf949f7daed8ae70db177a86e1f74530e65b2ea6e51c71c5c0027d3f1c8dd7b4a8a1b5f5c2ee62f9655c58731a487d9849b7b71c417921ed035bacfe8e948f486c5498adb5a2ab302095dfe6f9dac3962187662c1de0648308e9adc9dfce13ac515d89492502dd3951d16b11252850246a61ac72d876343b199856fae117d8e0793781108b792713c1ac38978b10471876ad3119605d967b9db7ed1f2f84a55959969903d7f450deacc1a49619384a6ce2df3006ecd52d0240a625e6e7045faeebc6dc5386ba4e0f7fe17882723300e1f6e114b0522374e489bf0f4e6e08301c9e2ec4ca2ea74cd9e753257f37689076c99ee6e8d7976d131653286f20795e45c3367b19a2a3815358afafea314226ceffc5c0d7c248fe863254bcebad67aab58b1628c6f4f4a4fa33807a6fc5830af6936379bb84f07cd3333fdf8d04945fe2149f494844fe96468de28e239dd7966f155728e6c3ee266bbb9db45ea805c21a236fb19ab9ab01bd6adcd083df4abc84a5b22b3cf90efb1a2c83ee0162a3145c4a915bf0c9c9a7310085ff5fd81e5a21251000a8977502483bf875cea0bde01dd37f0441e555f6ff71d3cc5118f4e2c87315756239386f67fbfc3b6bbef861d345dd92ba5554f298a1f1ea302ac8afdf2dbb91f33ec07fe556cda1256ccea9d090733d91669b8918a94232a34ff1265fe021bf96cfab26294d77e2319ff4f28a5dd545085194758b7c84c6e6a567f72172f0bc08a0eb88d2d5c08ac3b728ec038f5dc1c630fc5d9344e703aaed159f6771492ab57fcdd12c36e86e2f2cac72c80c672ae4be8d7484dad8336e014239cdfcf95fbb9e6f0851346d4694a90b9755f3b4c4c7cf625ef1732624a645ed36a865421696a72b70c1cfe81bfd11a6ff65366ba7ee1b6c08606684f6f859d03b6e03f1bd9d79fbb6aa9cbd748de46766b685cdcdb64b32b522ee1bdf6fa97454019549ab123249d8ffe92fadac2f3c914415fc5eaa650671b149571d50840f2ccc44f2506b3089801c20f8ecdb5803a92906aedc2d7c55d441919f552c35a3e7108dd19cadef0d0726d086515227f54a7fe67935979b1089d2fae21e0b79ea61e5599dec31ed8ea6c621a27bbdfaf516d2f84f5442b2eefaf8c44e530d06c80ae2f4a41e23e9b5d0d742542561a31d223d964613595cbca7b88f6c679587cd134c66e34ff27c2b909ae8034763e76f880d047812f26f2fb250f0e44787e6dfca871bc48c9700bdf891462001d21df0a2c1ce8e090b9b5c25b4524a47d1801c9d92c8a0272cde883f3b9046020b8cb9c2500d5d4a028c0032348d1ad112558ad67c1daea49194619e60c0926a87757b8e776156d464cd33f733ccb9a38ce6dbb146f6313957a96020ae4527687ff3a86b676da0f32a34d7ca90922058c4e9a224de49075763928eae103a076e05ea15b1ba8f821371f3e5fc790a9ce77a471abdbd956beb6ecffa8875df265dccf3dbbda7c2fc483186d01748b81be2a6869ac4349e8a42831332d451b66573bfdba0989b56223584bf72de7a1974f77552d97d025f55ecd30472e5e530719df79a8a476121bbfb9196e1b71d1fbee9eccbde90fb0dc070b3dde80298218ba80ea0d2d359e4ed8acd836e413d8849dafee7ad68141af93388c96c885c9cb069747e02e4aa09f384e5ba531d1a13c3b4135dc677cf595d08d861946176a1d3af8a1decd0da30e27663f3f3531196f538a064ac13f3c977ed7b804e05c71bd8a6c533e640f7b29e1f44c3b1c097234c1fc2503f166f691b3e6d15eb72574e16ae3d3c4068ba9c06bd92a657b18c2c1977177a3e1757043aa445cbccd5e5a8b83906a6e85ed3b9f406407531bbc1dcec76d1dc20a7f2aa135778cb16fc3841a4e73aaa3fc3dae37ab7ced8f77465e11b91a963b2b1266cf2c02481b699af007ad72f6aad59638b94ed77f38e55d0c74e8d17d1fc7fa0ff0dede9103db7e8cf9b6ce4e1d2b1894a520333a2d8e0c6d68498aec6bbb5c7fdf301748364459381bdbb8e1c19dafe5a2e428035612507b8f455e141814f4b9d59f601015aee051d5b379b82d5d37c377c5f780823f5626ae95b8659e873fc9ecd797721ec94a94198c74691177de271c27388d7b5f2580163ba26d1c1790997d9caeddcf2ed60dd3557ac7c229f13bca32dca7d58100f722f2903c802cc86694098520434c8822e9690fc8308a588add89f7179b300a29f4c352fe2683f4504f34bbfb095e000f9456c7a8a379815939d3d8c5085a78e689a79d0ecdf0e0cd23aee5a4d8707ae7d5f117bcf156d40b87064c40a8e3f944be7e52e3a286aeecf66f3bd727c042507250b80f39fa4329d473f74c937866ff4b231e37fb61750138cd52666772aa73c5a34645f6f471bfa2377b0e761ee6f1889231e57892c3a54370147032b56558956fbe06b98f260f798eb8cf2c877fdb40747f37a13d0d13cb8303d600abc26ee12f80c692d3258da298b0ce5732a1cf31c97bef3f92b98dbb54b4ce550028f186ae83829b67b730d2ccf7530fa0d01248158a572f3e1f870c58b8f6edeceb1d311a946e0a8ecfd68dfb49c5567565f776736f5a8a6fc6ef08b542fbf7f8a2c8b46016906235fe1d324480f61812d034d0917cca99096f130d20a5367d2ece59516d7a6215599aa139fdd84a20f0333b7f4669ba9e66c717b5cc62090e063d84c84fe9c0688fc24d2c5b768ff2e4de1117e06d7a19b924e55f4c00a9bb56fd814ebfcec234380fadacb5bbe1ddaed1bc2ddf398170085b40eca5809678110eee9efa89dcbb0eca7cf41aef4c5690c2d94066edddcdb39e17ee5720bcaaaa1479920ec29d63b9d1b234ffbd30640d192ab76b1beb81ef5204bdbae1e612b06bbcabeaaa3c8def785c71e4580be0a67cb836e5c29c9790208dcf33dd0d01eff2a5c5c2cdb8b46602964c04d83b3544129ab3ea7f32f64957bbad256d688ea1097f84ebdd80d16896e3174143bd5a1d78b90457ce33a8f3cf7cbae1215025ee20a48a4b583ef48b453945eac87ab87d25f14ce1aafb8eddbf2fabbf1d1c96a8131ca58e0e9945f6f0a5a0ade4fe3a193032481a4d0f445de01182e8567fedf2f37267de8810f39b135eb838110803343d8729ebce9cb31506335b915993525896a6ae449c2bd84413e24638e5287a7255cd6df0de2b6269fbc0eb2ff1160d98e0342af97626d711dd738be5a3b33511aa5f9cb146befed9ba0a80866525a30f80decdfeb111dff2aef53c39c85704f9a2f34fdcd023ce5095bbcc86558bc046fe1127f5ec7c2bbea09a1c8802099481ca321a45fa6ef5c27ace1a50dad9e6f7b2f3c933b012061bd7fa545df3c59b30703b48ffdb1d138af55238cc0f98bd830eff6787da6a9a6023a249b13430f1f50169b914a2887c13135292fde1b667a39b570be050b4895eb34c2af5857491fba0899014e898080be5f95be3a8dbf6dce2e4935eabaf44437b125503de6f92be27c404e4a9221a62ae217f5e6f8e36d28d8ff5a44de4f54db6403033dc7a84869415ec17ff3a919f5cc9afa942f42fb7f61e1c56b147ba25b7271b62bfe4fbebaaf814987390e0fcf63dbf8b8e5e0a3292f81f6b737af60e8666bf3b6843d474cbadbe077f211a3b329a9abdd0416813e740eed9b88b3298cd8ad6bbd3ab1c82203f7815d2ba2fcad58ef13c45acb4a8fa5d40dce35d27c674aecdd7803fe6ff216a5fe51f3201592095b43644067606ed1b25f33c680d8be7673691d7f03e3a3c45e42a2471fabbedf2d526be3620e39bc72b86cc57ee7faa60566a3816fa7a3e4e428a1346fee11a6171985e14159a7b25756d95ba019feffd3a9ea003f96f96e63c619153a213bf35f37754045db262b10f5d229dad609cf30c47d8270c5bc3da709f9fdcc1b47d62ff4e50722398a239a4fbb044308244fd7693a87c0d5fe93f386965f6a49b36390f72e2acd7ee5e12d69ca9672bf35baf75d093929248babce4ed07268ffd41e1f819cfbb9c6a1a79f25a3257662e1e79d380e64ab3bee05431cc041bf52d58b9bac8d2e044fcb74a39ee3caacb0d3e607494f07bbe5e07970e879be136e2d0f53533fd234f67deef6910f7ff24b04f5dce7d8d49ff18fa3cf8f6160bb9a347b3ed8b1d98373d4c643ad1a6502f9a55097bd73052b8eb16b50c25f5c119694dc4b031431f0ead6d0882f39c1961d5db6fbf645df94486d5c325508ba945f6f227c94a365e87086efe6e16cc2cb3c5b508e628a845f95f1b1cc6b2e59fb1c1b32ef1edfd40cba7b2cfbbc153293b7500a75885c2e16ec321334e8c93b950157c9fe01f6f9e58ef447c9de319aa391fad8c3deee1746bffb262f680bfc4cad915da0de45fca6520d7af6031d1fd74463d7215d493544131800791f194c4f7c2f8cd2215741502aadcfdaae313bf40ac54741b79adcdcbeef4cbe3ac7f1ca7c14afdeb03f3fbae51562703810192efbc4990319e77d1981a159cf6e832113a564aea1a9fbef65ce659e916b18248a3862d1e6ec037391b577dc4790d8bd61b05294746c084e4fbb3485792ef831d888d171a9b31702a1f3017cdeda1259e72826b8fa5036ad30031a1fbb761b899352c5e28b9a13b7598c34e53299287c6e8a1b88b2fa55fc829952647a39209d41e5b2109992a04f7ba0af5f559ce07510a56d6723fb699d87be9e996a1e44795593f12b63e8022680eefd580de2f37bbbef954a10391f23f27ceb1c2c0181e6d2467cc2121e60c6b2528fb484eff0e93b1f1a93dc16547b6ece36a24024136c5463cbf6e60ca918275ebe9156610dab85a76e664e6fe2685bc2a01cb688c14aa100270c0cd7f958644680d3a140ba7918f319e41a90059133cb39407f72840983f58cf1e6a00ea71b53d3a8bb61acc7776fc3fe7e641a07c35d2a2b6b3b5b856e459659ddc373b4242034b56de2dd1baff59834d4e9954bf91fd1f80dee4a0494ec1df3a0d334c6aecfb6e9af2cd6c713c7cdf4bb4d63a72b3e4278824cfe3b7613daa33635ff818b43f4b336c9954223d6b1fd13add4912a5271277e8f6e86927e6c596d69db0dd5e51ad0ee62c8d8c8c4b67dc0175dfa9717ced4496ab5ceb8174023bcaacd7ec9e42ea7774a5b7cf2ed795bd0f1f26d712d8f7b609a1294908b29901c28446b67a0d17b9b196fb86dbc2db9f8ecf69ea71b96887f980ba13d708032453c77291846f8df74c2750de8325dc7ea52d49faa71b176d6ce6081cd7cca4b3163c549a44bcba25f98bec375b3725f233df16ec1b913ae56ec9da0c24ca705b60940e6c6a2a9d856332d260182f5651a0cf33e993992a4ed7dfbfc17648e9b4ebc56aeddaa69a166910f5daa099abf9d9cb2aa95045e4844b741610f8699a4e0bec0f55c930a9a096afa6febc8a85f0f4e743f3cbfc97dd23f0b6ddb05486bb02ab076943bdf5ff190d945aec92766a994171b10f004d646f9fc5c2b8ea74207d3cea776cbfd016d71e72448c3aff31e129740082c5898e0a7d79d52a4fe12fe71317e0e107ce518411f3339fdf24d9b85b5cc29f63a4b89df92b55c6ee791a20b03877d9473a47b6303b780c2ca907b54606995f35314d0f6a9475455047fe64b1986f23a264656d7b79ba0d810a65195df3407eafe1bd67305033731ba685bdc5618bd704a7a1f5488234830b2f57598719ca966cf6061177dde26289ef24d035567751a0d43e597f704ff2158a92b444d9a7a06eae913fa9a9353370b716fac33cdfe78bd09a9f18eb8c0d3851818fac6845286ce75d564f068a57222861282f2a86f71652750bf5aab63633a2d454576b9866633dd4e4b957e21ccbcc839ee6ac5dac7e9a4032dc11023f983528f6b7ae9d5c9448f4e6bad6d382376d6290d9412840cdf8f6275fa0b64149211c0c3126bc08f47fb6476c7b1a1a6575fb766939ba144d718be42b85b7a02dca7a8fff5aa9f4c68cd1f2131bbdec0e6773b38d32a5dc4aada6f2c739c34ddb0e571e8b89aa481b586d0796c4816ca682cce95f136d4e9568935363b62cf64fbb345526b0d345408ca021af5c593d872f831fcc189d392463422d625660083f0794511930fd93690e4024629b481c96c9a0cf09de1d635b93a71d2ce1056d5863ebf610af587121713f64792510577d93b2159d18d26fc6f14b9028af1fb9ae73c8305b19be1f21652a54cbb621ff1fe78d99be44453e0179a7e4da94f87bc8c5a54ec890fca29103e6b449ec096bdae64114060d78ce0635dea48cb9935e0727624ad4cd0d25d7aa1ce7dd3c500bc70423c7139a6979fef398c4dcc767ac90d00f3de81a48ba62b2e12aaaee3ea1154d48b67977c768c4dd63f06457a8f7eb40499d288eb46a66d8b8246b9d63132e0af66a356c6ab2166ddd7ffac96461917f3b274522b3d0f34d068c7fb87d1a706adbe58d9e891b808843d15d286885e68ee5c9256678d36b7173acc2d89bb1503e6c45e989549ff7cf7bbb9e1ca9c926fce2fec24a5ccd4518fbd86e5f552013de20b1579c875c18c36688e6aea81b87d5ed392f68af3f65cc03c26d0b12a8a9d243fe86d26b5ff360bfaac51aa93689b29cd17266e4b4ed93b8518e0fc76933dfbf698ba77788732ca2ffa0d6f941bd5b75ed7c4b35e4b6638b2eab1710b586685092745ac424784cb51191947283ad9c587b32ab01ccb7d2d8521bbfe43278136ef6e945c7c755a2e5be3cac2dd6d73d44ff6517d35bb0b9c31ec638dadf654ed122df51cf81625cff17c422dead344b162791f2745e32ccb54afa15e3cad68cf6a461003700427e3231123759aae4eaf9db3f369250a7517a56ec1a1477ed5a4272fccb43c38112633ae5862577bfa75cf8ce94d170f765d711801f884f4cf2e542112f98f135d96c5e8f9a56a5db483446612be1c8e9b9e416e440eb304a0af4b952cda2d3a2a8fa6619cd1452b03d235d2e8366d56d348521450e3640ff2a82a6b090c9404795b0e433937d20cc1ed5d018e31899f9b2911c24b02e77d56f7113054fbbfcd501f3b4decad1be294e99abab337ae689a3a181c7b393926b3a3517bf78ea02465fb7b2e6133aacf81e623686e6e859ca3c572eaa451808bd18524b0ddde6da908f5e50d75996e107c798a6f0ec76a62c7f44dd53142da6b258122ac1fa6b7352cb90911161c1749ae6c9debfaabb99b324a9dc2050d86ef82ca17352079f572e0a42dfae941200b836f76a01b135a99b3936cfd849995481b51291643946e7ddd4e4d1dbe58119cf871a2b64c5008c3f3b66eb160cb4c60fb72ec1e5eb4662502c8a423e4dc6d2be30d41a20caa00e441554bd3eb57f65901c830de683235ea4e8f0233eeed75c3ce12844f00c5d0f58426d1f4488b491feeccf2c6ca040315c603a78cbcdccb54cc2a8a07cb58e21c9d9c460bff0727a916d4d207e17926e46494d679b70e91d45080ca87da42cd795feb045c2ae7c6e8bb887eddefe6e5b866d3bf705a487d5633305cf9643c29c3d1bbd0967e80f1d4a575a0d00b511eff3e290d571c698da420bd345d5c3c723452a1dac50f5943a8808dcb2248671113c98e2e5894d27b0ab3d2c068b26624f11f12908178874784f8959d6bcd03298069b51fbf1b7f7cd9f98dda383d89879b4931edee7beaf57a6c52c7b2b9cc6430a716d78226fb699b109936ef8773ceeb4ca82765c53c5b32c01a3d0e5638d2220a8503a43632c3e0cec1451a1b8f31ac37bf97043c63e244f2124397489fe93e9c4a1fcb99a2e90d9333331584e6829ea41761eb9b7fd17c0417cfb6d1f8931c9c33fdd2ed44223b8b5ca7ca4e4ecffa2cb6a9375d2b1e947c7aebc3947e4746c46e3e3d93fce498c6088a0d0f797680d18895fa8331b5c45d5470b1f523f979e31d09bd439a7386ce40205407b9b9a929563578805590415782393bdc0c60d82fcdc04c08ba28c58ea3f62990cdf3b4d93c78d2ba255e5c8fe8839e47100f2de70410062ae6a7b3fe72f4ac333775f174a78a40f1e5da925b2c29e9eef4bea4445243040a8334a3d6fa3eb25e7357968b44e8dc9fbddafc5537ce67597cf6af9f6aa310b6f547dea246ca4811b0d295c57772983dcb8aef41f7e788be89fd1efa84dd456c4e00dac694d88fe75153dcf4fb0b7086e613e4807f4181c9fb1b9557483b56c7f89bc47955b9dc50e2dcd471d817d93ad39d3403bc3b1ffc74290e892eea8824d2eedcb6f0c9fc996573db6d965276c8dd0cd355c8df5411028f4c84890542c74e9681fed75c3c0ae7308716291908c47b438a5b904811dd2e9e2e4dffdffc872229e0c2121a037e9975b0c32429fb33dfa2e45e0d71e61076766a8898bcc31b277b918cdce1f7ca60e3e0e9c79a9e872cbb4d299f53000d4226b41a71fea6ba8f9a0b4f9f798626612911562f17526d4e2bb531a22c87197f872124a99d7dbf1ab89ecf25a070dd7e7e15c22ffc1b980e7a30744fa2874b4b413c5ad5269e07baa5746d1c20251236254640e863493061c87d3d8e57824c4b920af3cc8d326bf071247db76ed90588d6584d8ebe0093133b6bdea65400053314d769758c4e1bfec46bf548d6569f3e2060ce103326fc0717d0fefa98129c82a400258d61fc29b1eaa00698de644aa3a13363f664a0b2a8baaaa9ce8e3e249df3dccb040c064cf6a6cee7035a96609d28cae4f7372d1795b6966bbde5ae81c5d04a2ef161cde8286878fcd80a815f970757e32e933004d0fbd8e5fd8ed71bc3ead6fde374ee38faa3898d59f35ac9c6fb401a5ffa8efc4ac0e18d78cb4582873948df267b101c9613ba6927dbbd451d24606d9d8c57931d67387752b3e790ecac5519d22626f23fb278b378fbe5bec13cb5d3e5262883d24d009097061f29d0ea699893ec7ddc7505af677c30b5f5a3e21d4fdca92cf046fcd66c3c1eb8460c2865b2e09f74f5eaf1eda298fe75c0d7d8da5eec0dca19a6de0653ecd194e09c4d2ae59b65af650ce1de75c78a8f63e06f990b30fdf8d23d966b2f582aa85f5638f87b9f5d3c995e6d33f053aaef21017265b4d2ed36e9ea2aaa8b1223570a99aba1e9df8f5bfff6727d9735ba8f1405914de071683aaaf", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x78}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect(0x0, 0x10e, &(0x7f0000000380)=ANY=[@ANYBLOB="120100006a249f08ec1888323a3f010203010902fc0001870000000904e600030e01000006240600011005240008000d240f01000000000000a0010606241a0000000c241b000000000000ff01000424020c90", @ANYRES16], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x6, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f0000000000)={0x14, 0x1, 0x0, "3271bdf0f2f20d55806b26b1d72197edb1439b1c4200"})

9.544149678s ago: executing program 4 (id=2436):
r0 = socket(0x28, 0x4, 0x1)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e21, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5}}, 0x9, 0x72f, 0xfffd, 0x2, 0x6cf}, &(0x7f0000000340)=0x98)
setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_io_uring_setup(0x1e51, &(0x7f0000000340)={0x0, 0x0, 0x2}, &(0x7f00000003c0), &(0x7f0000000400))
io_uring_enter(r3, 0xe05, 0xb0b9, 0x3, &(0x7f0000000500), 0x8)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, 0x0, 0x0)

7.490382057s ago: executing program 2 (id=2443):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000800)={'filter\x00', 0x7, 0x4, 0x418, 0x110, 0x0, 0x0, 0x330, 0x330, 0x330, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @multicast1}}}, {{@arp={@local, @broadcast, 0x0, 0xff, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'pim6reg1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@local, @mac=@dev, @rand_addr, @broadcast}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @broadcast, @multicast2}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x468)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r4, 0x1)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000880)={@flat=@handle={0x73682a85, 0x0, 0x1}, @ptr={0x70742a85, 0x0, &(0x7f0000000900)=""/206, 0x14}, @fda={0x66646185, 0x5, 0x1}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90324fc60100005000b000900053582c137153e37000c0480fc0b1000f80b", 0x33fe0}], 0x1}, 0x0)
capset(&(0x7f0000000380)={0x19980330}, &(0x7f0000000100))
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d86e6c1d0000147ea60864160af36504b68675f8001d000a00a0e69ee517d34460bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9367b4fa51f60a64c9f4080003680601000008000300ff000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x27, 0x4, 0x0, 0x0, 0x9c, 0x4, 0x0, 0x1, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x5, 0x2, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x34, 0xc0, 0x3, 0x0, [{@multicast1, 0x4}, {@dev, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}, {@private=0xfffffffd}]}, @timestamp_prespec={0x44, 0x24, 0x1, 0x3, 0x0, [{@multicast2}, {@private=0xa010101}, {@rand_addr, 0x7}, {@broadcast}]}, @noop, @cipso={0x86, 0x6}, @lsrr={0x83, 0xb, 0x0, [@private, @rand_addr]}]}}}}})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r8, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
setxattr$trusted_overlay_upper(0x0, &(0x7f00000000c0), 0x0, 0x1015, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r9, @ANYBLOB="05"], 0x0)
r10 = dup(r7)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r11, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)

5.592942055s ago: executing program 2 (id=2447):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="b70200000d000000bfa300000000000005000000000000007a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065060400010000050404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000496cf27fb6d2c643db7e2d5fb4b0936cdf827fb43a431ca711fcd0cdfa146ed3d09a6175037958e27106e225b7937f02008b5e5a076d83923dd29c034055b67d5b310efcfa89147a7fb0a93d035f2f206d2ef831ab7ea0c34f17e3ad6eecbb622003b538dfd8e012e79578e51bc53099e90f4580d7be3e8c254a5cba117cbdb9cd38bdb2ca8e050000003a14817ac61e4dd11183a13477bf7e060e3670ef0e6a9f65f1328d6704902cbe7bc04b82d2789cb132b8667c214733a18c8b6619f28d996d60a17e3c184b751c51160100000000000080148b9a31ee8dc8b544f3c4a532e60a0ac346dfebd31a08060000000200000000000000334d83239dd20100008000000000d858e8327ef01fb6c86acac12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e957bc73ddc4eabba08a406f99f7b1e1ad828267d4eadd3964663e085354133f7130856f756436303767d2e24f29e5dad9796edb697a6ea0183babc190ae2ebf8aad34732181feb28cb0bae7c34dc5e7c805210600000000000000c3dec04b25df45d4f71ab158c36657b7218baa07a99bd50499ccc421ace5e845885efb5b9964e4beba3da8223fe5308e4e65ee93e107000000f8ddebf70132a4d01776839b8eccf707882042e716df9b57b290c661d4e85031086197bcc5cb0e221a0c34323c129102b6ff0100002e88a1940b3c02ed9c92d6f64b1282dc51bb0015982730711c599e1c72ffa11ed8be1a6830d7507005154c46bd3ca96318c570f0721fc7aa2a5836ba99fe1f86468694f22cdf550ef091a78098534f0d973059594119d06d5ea9a8d0857382ec6e2a071474cfc12346e47ad97f4ead7cf70a9d1cdac944779dc08a705414888700a30e2366c6a06b3367a389ca39059787790017b0689a173db9c24db65c1e00015c1d093dab18fd0699fe3304000000323e9c707fe81436b024c2574980397bc49d70c060d57bc88fbe3bbaa058b040362ab926150763fb099408885afc2bf9a46a076b7babfcddeff8c35030669ea69f5e4be1b8e0d6697e97186f9ae97d5670dba6623279f73db9dec75070cd9ab0fda6b069ef6d2857ca3e4e6068f1bf710d133d541da86e0477e4a6cc999dc21c3ef408e6b178e7c9f274d7fafc8d757d33dfa35aa2b2ff7f9a7d365e63845f3e1092f8dde8af3904ea0f4b82649b83ed4fa0f873339c4cadecc13219ba7518aa4f7db34ead13484742067ab743c1d82a5687f2ed690000010000000000000000000000000000000000000099d4fa0000000000003f0ecdc7c82e72919c91d2039afe17e95edef8ba72205beff7771bcb293747b88486cacee403000000a2919a4b09e168e4e4d5ff2ed893f2e314679fa69fc7e0cf761f91b18725704a01c56009a9f748e5aaf30a10bd8c409b1870c1f75e26b45264e3d3f8e0048e55ae289c2f884d0766cddc76eb7f601110ff39053c262279f4ef00fbdb8c328615a9ec84f27a9f3938ae736138b8c1ec220c1540bf3d162dc1c27fa30f0dc60b9f257db5d1c7ed2efce676a93110904d5e055af44664b53c764d61443f73552195c7ccfbf9f03c44432eaa3b7501d4239354da8de21eada75d3a3afb2c76ff0700007976694b6a0f0e946766f57544ff52cef0dd811bec4e3c0a30f2d7d19d26d201721b8eded3bc475958dd498ee2b2d6146e33fc0de1dc2e0516ac565ddb1d4ae89e671282a2d3066ac968c7d7d7db195f255b1b4a85eb9ee0a3b68c9e209756623adf685dd715d68ed1274b4d5502f512493af8f98c615cac3666c58f785c3f758be352a71871d5c081197d37980e4f4e26b5476fb20407ff7098b7174bef66fa03a99b5c0c20b378065fac4ef9ac2d0d804b9400000060e5d3f1749f6aecf69ba83a71caa9bdddc679f1b826f74b6563a4be1fd82b73c8c2bc65f63982"], 0x0}, 0x90)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r4, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}})
r5 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)={0x108200, 0x10, 0x34}, 0x18)
r6 = add_key$fscrypt_provisioning(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x1}, &(0x7f0000000440)={0x1, 0x0, @c}, 0x29, 0xfffffffffffffffe)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r5, 0xc0506617, &(0x7f0000000480)={@id={0x2, 0x0, @c}, 0x10, r6, '\x00', @d})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x8, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000630153000000000095"], &(0x7f0000000100)='GPL\x00'}, 0x90)
io_uring_enter(r1, 0x5b43, 0x0, 0x0, 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=<r7=>r0], 0x24}}, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYRES8, @ANYRES8=0x0, @ANYRES8=0x0, @ANYRES16, @ANYRES16, @ANYRES64, @ANYRESDEC=0x0, @ANYRESHEX=r0, @ANYRES32=r7, @ANYRES8=r0], 0x0)

3.988721805s ago: executing program 0 (id=2454):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f0000000440)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x73}], 0x1)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
io_setup(0x5, &(0x7f0000000740)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000a40)=[&(0x7f0000000840)={0x0, 0x0, 0x0, 0x5, 0x0, r4, 0x0}])
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r6, 0x405c5503, &(0x7f0000000180)={{}, 'syz0\x00'})
ioctl$UI_DEV_CREATE(r6, 0x5501)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x76, &(0x7f0000000040)={r1}, &(0x7f0000000080)=0x18)

3.414093827s ago: executing program 0 (id=2455):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x40, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}]}]}]}]}, 0x40}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
ioctl$FICLONE(r3, 0x40049409, r3)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)=@in={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000180)=[{&(0x7f00000000c0)="f43339fa2f1ec2f9c1e70f77e5aba7da4a09f96e483a07bb87d3ea61e2e9804fabaab97c36689220ec35e4521d75d09904c58dcc063ea68c2537cefa714760edb0c08754f6aebfce76f96b808ead3e59ecd5a7c01ada95cd9e557ca2d91d3f72105566874fa07eb3bd3d94eddd3d", 0x6e}, {&(0x7f0000000340)="919934e9239b8ea47248d04cc47c5b17c714f1392c121766fe5663a67baeed40bb7a16971cacce45f0d8655f67b1a7b2035a797822c7c45248277342194c42ef0d7529bd70285980770ded06cfaf9aaefa7e60bdb63c366398d2055d5e47fd753249baed5ad440a612c1b2d10f8939076bfb4d88e9ee5843e803b91c008c932ce2e6bfe420230c3dacd8b4bf347e08c31089c337682879832de7f4b6a2e1", 0x9e}], 0x2, &(0x7f0000000200)=[@init={0x18, 0x84, 0x0, {0x6, 0x1, 0xc, 0x3}}], 0x18, 0x800}, 0x20000000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
inotify_rm_watch(0xffffffffffffffff, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
r5 = fanotify_init(0x200, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0xa0240, 0x0)
fanotify_mark(r5, 0x1, 0x40001002, r6, 0x0)
fanotify_mark(r5, 0x2, 0x4800103e, r6, 0x0)
connect$can_j1939(r4, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x65)

2.500088305s ago: executing program 2 (id=2456):
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/dev\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r2, &(0x7f0000000100)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r3 = socket$inet(0x2, 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000040)=<r4=>0x0)
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000000280)={0x0, @nl=@proc={0x10, 0x0, 0x25dfdbff, 0x8000}, @sco, @nfc={0x27, r4, 0xffffffffffffffff, 0x6}, 0x8, 0x0, 0x0, 0x0, 0x2400, &(0x7f0000000080)='bond_slave_1\x00', 0x3, 0x5, 0x14cd})
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x57)
setsockopt$inet_mreqsrc(r1, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001602020000052417000005240000000d240f0100000000000000000009058103400000000009058202ee010000000905030240"], 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
syz_clone(0x21104000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = socket$inet6_sctp(0xa, 0x3, 0x84)
setsockopt$inet_sctp6_SCTP_MAXSEG(r6, 0x3a, 0xd, 0x0, 0x0)
r7 = syz_usb_connect(0x0, 0x24, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000810087406d040e0a759400000001090212000100000000090400200003"], 0x0)
syz_usb_control_io$cdc_ecm(r7, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r7, 0x0, 0x0)
syz_usb_control_io$printer(r7, &(0x7f0000000140)={0x14, &(0x7f0000000300)={0x0, 0x23, 0x8d, {0x8d, 0xa, "9cdb4c7b2b25e5015ba2a0971cc0d20668005550866dc354516cdc644843c3331f13402e9abaf20a2239c037a2998310c142c708c57075a95d89f11ab73636126db4a049ea9d820bed87d1f82168ecdb99c3380e099562574f5d652d70959b905b50804e3d691cb54ac10903c93ea26ac25543677d08512b66d6c66a108908d4cdfc5b80148509ee74547e"}}, &(0x7f00000000c0)=ANY=[@ANYBLOB="10030400000004034904"]}, &(0x7f0000000640)={0x34, &(0x7f0000000480)={0x40, 0x15, 0x3f, "a147277ab023f3f00a194008b956b82cddf4287b232ce849ae81f336e71834484480d08c169eab9ef78806959a910529f30066c5201718e94b5c1ac7922788"}, &(0x7f0000000400)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000540)={0x20, 0x0, 0x5c, {0x5a, "2c7dce5e6e8374f111438091557793d0866388b0239d664bbb9bcd5d9abc4d7cf2e0efc70d5d2f783183673e796132f11e701d5808be6e27ecfff337edb496bc7c1a3e36935a0bd630872a2bd0d556ee9fd69cb884310ba555de"}}, &(0x7f00000005c0)={0x20, 0x1, 0x1, 0x2}, &(0x7f0000000600)={0x20, 0x0, 0x1, 0x40}})
ioctl$sock_inet_SIOCSIFPFLAGS(r5, 0x8934, &(0x7f0000000000)={'pimreg\x00', 0x2})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
lseek(r0, 0xc8, 0x0)

1.410181668s ago: executing program 0 (id=2457):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x3fe, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x8, 0x7, 0x3234564e, 0x0, 0x0, [{}, {}, {0x3, 0x8}, {0x9}, {}, {0xfdfdffff}, {0xffffffff, 0x4}], 0x0, 0xfd, 0x4, 0x1, 0x5}})

1.330135866s ago: executing program 0 (id=2458):
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$char_usb(r0, &(0x7f00000002c0)=""/184, 0xb8)

1.231173593s ago: executing program 0 (id=2459):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_S_CROP(r0, 0x4014563c, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_ifreq(r1, 0x8990, &(0x7f0000000100)={'bond0\x00', @ifru_names='caif0\x00'})
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f00000000c0)={0x2, 0x0, 0x0, {0x0, 0x0, 0xffffffff, 0xfffffff9}})

1.013068771s ago: executing program 0 (id=2460):
r0 = syz_usb_connect$cdc_ecm(0x0, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48, 0x1, 0x1, 0x57, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@acm={0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x7d7}}], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x8}}}}}]}}]}}, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e"], 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000000), 0x4)
ioctl$EVIOCGMASK(0xffffffffffffffff, 0x40045b17, 0x0)

0s ago: executing program 2 (id=2461):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)

kernel console output (not intermixed with test programs):

  ? getname_flags+0xb7/0x540
[  607.015809][T14000]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  607.021189][T14000]  getname_flags+0xb7/0x540
[  607.025711][T14000]  do_mq_open+0x199/0x7d0
[  607.030060][T14000]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  607.036070][T14000]  ? __pfx_do_mq_open+0x10/0x10
[  607.040945][T14000]  ? __fget_files+0x3f6/0x470
[  607.045641][T14000]  __x64_sys_mq_open+0x164/0x1b0
[  607.050678][T14000]  ? __pfx___x64_sys_mq_open+0x10/0x10
[  607.056139][T14000]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  607.062122][T14000]  ? do_syscall_64+0x100/0x230
[  607.066883][T14000]  ? do_syscall_64+0xb6/0x230
[  607.071572][T14000]  do_syscall_64+0xf3/0x230
[  607.076179][T14000]  ? clear_bhb_loop+0x35/0x90
[  607.080860][T14000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.086753][T14000] RIP: 0033:0x7f1ead97cef9
[  607.091157][T14000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  607.110759][T14000] RSP: 002b:00007f1eae728038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[  607.119181][T14000] RAX: ffffffffffffffda RBX: 00007f1eadb35f80 RCX: 00007f1ead97cef9
[  607.127172][T14000] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 00000000200001c0
[  607.135160][T14000] RBP: 00007f1eae728090 R08: 0000000000000000 R09: 0000000000000000
[  607.143126][T14000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  607.151088][T14000] R13: 0000000000000000 R14: 00007f1eadb35f80 R15: 00007f1eadc5fa28
[  607.159072][T14000]  </TASK>
[  607.201687][ T5285] usb 5-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  607.237673][ T5285] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  607.255721][ T5285] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.256170][ T5287] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  607.306711][ T5287] usb 3-1: device descriptor read/8, error -71
[  607.308943][ T5285] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  607.421661][ T5285] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -2
[  607.586105][ T5287] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  607.642519][T14011] fuse: Unknown parameter '0x0000000000000009'
[  607.646665][ T5287] usb 3-1: device descriptor read/8, error -71
[  607.686145][ T5284] usb 5-1: USB disconnect, device number 47
[  607.769932][ T5287] usb usb3-port1: unable to enumerate USB device
[  607.961758][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.100251][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.271018][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.411243][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.610048][T14022] netlink: 4096 bytes leftover after parsing attributes in process `syz.1.2102'.
[  608.621942][T14022] openvswitch: netlink: Missing key (keys=400040, expected=200000)
[  608.803006][ T5235] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  608.827950][ T5235] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  608.828190][   T11] bridge_slave_1: left allmulticast mode
[  608.855814][ T5235] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  608.870098][ T5235] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  608.878036][ T5235] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  608.885520][ T5235] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  608.904065][   T11] bridge_slave_1: left promiscuous mode
[  608.904104][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  608.917924][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  608.925332][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  608.933489][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  608.941550][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  608.949040][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  608.996869][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  609.100859][   T11] bridge_slave_0: left allmulticast mode
[  609.109693][   T11] bridge_slave_0: left promiscuous mode
[  609.133873][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.459995][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  610.474366][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  610.488790][   T11] bond0 (unregistering): Released all slaves
[  610.696531][T14055] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  610.725053][   T29] audit: type=1326 audit(1725510632.425:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14053 comm="syz.0.2113" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1ead97cef9 code=0x0
[  611.008576][   T54] Bluetooth: hci1: command tx timeout
[  611.125981][ T5285] usb 1-1: new high-speed USB device number 61 using dummy_hcd
[  611.146205][   T29] audit: type=1326 audit(1725510632.855:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14072 comm="syz.2.2117" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0ab057cef9 code=0x0
[  611.337886][ T5285] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  611.375922][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  611.413256][ T5285] usb 1-1: config 0 descriptor??
[  611.430067][   T11] hsr_slave_0: left promiscuous mode
[  611.443654][   T11] hsr_slave_1: left promiscuous mode
[  611.452759][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  611.461068][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  611.485222][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  611.495934][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  611.616459][   T11] veth1_macvtap: left promiscuous mode
[  611.636415][   T11] veth0_macvtap: left promiscuous mode
[  611.652396][   T11] veth1_vlan: left promiscuous mode
[  611.662463][   T11] veth0_vlan: left promiscuous mode
[  612.466183][   T46] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[  612.567771][T14102] Invalid logical block size (32)
[  612.673915][   T46] usb 2-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  612.698297][   T46] usb 2-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  612.711622][   T46] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  612.722381][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  612.749306][   T46] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  612.832597][ T9312] udevd[9312]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  612.849235][   T46] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -2
[  613.088459][   T54] Bluetooth: hci1: command tx timeout
[  613.121463][T14108] fuse: Unknown parameter '0x0000000000000009'
[  613.153420][   T11] team0 (unregistering): Port device team_slave_1 removed
[  613.252158][ T5290] usb 2-1: USB disconnect, device number 56
[  613.293987][   T11] team0 (unregistering): Port device team_slave_0 removed
[  613.696434][ T5285] usb 1-1: Cannot set autoneg
[  613.701475][ T5285] MOSCHIP usb-ethernet driver 1-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  613.718722][ T5285] usb 1-1: USB disconnect, device number 61
[  614.095599][T14119] netlink: 191416 bytes leftover after parsing attributes in process `syz.0.2127'.
[  614.105175][T14119] netlink: zone id is out of range
[  614.140640][T14119] netlink: zone id is out of range
[  614.147543][T14119] netlink: zone id is out of range
[  614.159688][T14119] netlink: zone id is out of range
[  614.173655][T14119] netlink: zone id is out of range
[  614.200635][T14119] netlink: zone id is out of range
[  614.208543][T14119] netlink: zone id is out of range
[  614.222252][T14119] netlink: zone id is out of range
[  614.234660][T14119] netlink: zone id is out of range
[  614.244711][T14119] netlink: zone id is out of range
[  614.335282][T14026] chnl_net:caif_netlink_parms(): no params data found
[  614.835467][T14026] bridge0: port 1(bridge_slave_0) entered blocking state
[  614.878873][T14026] bridge0: port 1(bridge_slave_0) entered disabled state
[  614.927793][T14026] bridge_slave_0: entered allmulticast mode
[  614.947925][T14026] bridge_slave_0: entered promiscuous mode
[  615.091552][T14026] bridge0: port 2(bridge_slave_1) entered blocking state
[  615.114733][T14026] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.140053][T14026] bridge_slave_1: entered allmulticast mode
[  615.166349][   T54] Bluetooth: hci1: command tx timeout
[  615.175777][T14026] bridge_slave_1: entered promiscuous mode
[  615.454802][T14026] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  615.540231][T14026] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  615.883434][T14026] team0: Port device team_slave_0 added
[  615.939400][T14026] team0: Port device team_slave_1 added
[  616.091535][T14026] batman_adv: batadv0: Adding interface: batadv_slave_0
[  616.130346][T14026] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  616.170561][T14026] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  616.189507][T14026] batman_adv: batadv0: Adding interface: batadv_slave_1
[  616.197017][T14026] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  616.252977][T14026] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  616.546217][T14026] hsr_slave_0: entered promiscuous mode
[  616.563593][T14167] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.2136'.
[  616.577222][T14026] hsr_slave_1: entered promiscuous mode
[  616.583439][T14026] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  616.602898][T14026] Cannot create hsr debugfs directory
[  617.121329][T14177] ip6t_srh: unknown srh match flags  4000
[  617.246705][   T54] Bluetooth: hci1: command tx timeout
[  617.656221][ T5287] usb 1-1: new high-speed USB device number 62 using dummy_hcd
[  617.936234][ T5287] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  617.994520][ T5287] usb 1-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  618.067010][T14200] ip_vti0: Master is either lo or non-ether device
[  618.072432][ T5287] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  618.100980][ T5287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  618.142252][ T5287] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  618.243226][T14205] warning: `syz.2.2144' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  618.295613][ T5287] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -2
[  618.343035][ T9312] udevd[9312]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  618.449552][T14026] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  618.486724][T14026] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  618.503292][T14213] fuse: Unknown parameter '0x0000000000000009'
[  618.550755][T14026] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  618.601957][ T5285] usb 1-1: USB disconnect, device number 62
[  618.607898][T14026] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  618.942606][T14026] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.022142][T14026] 8021q: adding VLAN 0 to HW filter on device team0
[  619.059178][T14221] FAULT_INJECTION: forcing a failure.
[  619.059178][T14221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  619.087758][T14221] CPU: 1 UID: 0 PID: 14221 Comm: syz.1.2149 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  619.098565][T14221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  619.108618][T14221] Call Trace:
[  619.111888][T14221]  <TASK>
[  619.114813][T14221]  dump_stack_lvl+0x241/0x360
[  619.119507][T14221]  ? __pfx_dump_stack_lvl+0x10/0x10
[  619.124705][T14221]  ? __pfx__printk+0x10/0x10
[  619.130256][T14221]  ? snprintf+0xda/0x120
[  619.134519][T14221]  should_fail_ex+0x3b0/0x4e0
[  619.139215][T14221]  _copy_to_user+0x2f/0xb0
[  619.143649][T14221]  simple_read_from_buffer+0xca/0x150
[  619.149023][T14221]  proc_fail_nth_read+0x1ec/0x260
[  619.154048][T14221]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  619.159594][T14221]  ? rw_verify_area+0x520/0x6b0
[  619.164439][T14221]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  619.169987][T14221]  vfs_read+0x204/0xbc0
[  619.174174][T14221]  ? __pfx_lock_release+0x10/0x10
[  619.179226][T14221]  ? __pfx_vfs_read+0x10/0x10
[  619.183913][T14221]  ? __fget_files+0x29/0x470
[  619.188508][T14221]  ? __fget_files+0x3f6/0x470
[  619.193196][T14221]  ksys_read+0x1a0/0x2c0
[  619.197477][T14221]  ? __pfx_ksys_read+0x10/0x10
[  619.202238][T14221]  ? do_syscall_64+0x100/0x230
[  619.207018][T14221]  ? do_syscall_64+0xb6/0x230
[  619.211692][T14221]  do_syscall_64+0xf3/0x230
[  619.216206][T14221]  ? clear_bhb_loop+0x35/0x90
[  619.220888][T14221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.226797][T14221] RIP: 0033:0x7fa4db37b93c
[  619.231209][T14221] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  619.250837][T14221] RSP: 002b:00007fa4dc10f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  619.259251][T14221] RAX: ffffffffffffffda RBX: 00007fa4db535f80 RCX: 00007fa4db37b93c
[  619.267228][T14221] RDX: 000000000000000f RSI: 00007fa4dc10f0a0 RDI: 0000000000000005
[  619.275194][T14221] RBP: 00007fa4dc10f090 R08: 0000000000000000 R09: 0000000000000000
[  619.283161][T14221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  619.291218][T14221] R13: 0000000000000000 R14: 00007fa4db535f80 R15: 00007fa4db65fa28
[  619.299203][T14221]  </TASK>
[  619.331282][ T2942] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.338497][ T2942] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.367510][ T2942] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.374718][ T2942] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.503739][T14224] netlink: 'syz.4.2151': attribute type 4 has an invalid length.
[  619.574418][T14230] netlink: 'syz.4.2151': attribute type 17 has an invalid length.
[  619.723962][T14026] 8021q: adding VLAN 0 to HW filter on device batadv0
[  619.859087][T14026] veth0_vlan: entered promiscuous mode
[  619.963261][T14026] veth1_vlan: entered promiscuous mode
[  620.094758][T14026] veth0_macvtap: entered promiscuous mode
[  620.126245][T14026] veth1_macvtap: entered promiscuous mode
[  620.187310][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.223797][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.245321][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.273977][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.301603][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.315869][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.338407][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.359419][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.381075][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.414705][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.449967][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.480951][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.502601][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  620.533239][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.558338][T14026] batman_adv: batadv0: Interface activated: batadv_slave_0
[  620.780181][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  620.822065][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.864143][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  620.900336][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  620.947326][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  620.988040][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.049834][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  621.086823][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.118858][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  621.173015][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.206344][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  621.244531][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.277443][T14026] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  621.345369][T14026] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.377559][T14026] batman_adv: batadv0: Interface activated: batadv_slave_1
[  621.445127][T14026] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  621.479692][T14026] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  621.504703][T14026] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  621.537634][T14026] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  621.866768][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  621.930847][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.062589][ T2519] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  622.114696][ T2519] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.706223][ T5290] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  622.978390][ T5290] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  622.997005][   T29] audit: type=1326 audit(1725510644.715:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14265 comm="syz.1.2161" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa4db37cef9 code=0x0
[  623.065646][ T5290] usb 5-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  623.105018][ T5290] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  623.150719][ T5290] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.262160][ T5290] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  623.353314][ T5290] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -2
[  623.432806][ T9312] udevd[9312]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  623.627840][T14339] fuse: Unknown parameter '0x0000000000000009'
[  623.761336][ T5286] usb 5-1: USB disconnect, device number 48
[  623.946819][ T5287] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  624.209962][ T5287] usb 3-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  624.261413][ T5287] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  624.323848][ T5287] usb 3-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  624.359075][ T5287] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.412092][ T5287] usb 3-1: config 0 descriptor??
[  624.452830][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  624.461047][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  625.646649][ T5284] usb 1-1: new high-speed USB device number 63 using dummy_hcd
[  625.848165][ T5284] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  625.907505][ T5284] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  625.935985][ T5284] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  625.966742][ T5284] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  625.987312][ T5284] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  626.019850][ T5284] usb 1-1: config 0 descriptor??
[  626.054798][T14387] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  626.160120][ T5287] usb 3-1: string descriptor 0 read error: -71
[  626.200667][ T5287] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  626.236399][ T5287] usb 3-1: USB disconnect, device number 53
[  626.336956][T14398] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2189'.
[  626.503297][ T5235] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  626.513663][ T5235] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  626.516254][ T5290] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  626.525624][ T5284] plantronics 0003:047F:FFFF.000E: unknown main item tag 0xd
[  626.539429][ T5284] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[  626.547499][ T5235] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  626.558416][ T5235] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  626.567622][ T5235] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  626.578846][ T5235] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  626.603785][ T5284] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  626.764781][T14411] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  626.785944][ T5290] usb 5-1: Using ep0 maxpacket: 32
[  626.802165][T14411] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  626.823496][ T5290] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  626.843453][ T5290] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  626.862296][ T5290] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  626.879138][ T5290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  626.891013][ T5290] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  626.902616][ T5290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  626.912805][ T5290] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  626.924150][ T5290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  626.938051][ T5290] usb 5-1: New USB device found, idVendor=0572, idProduct=cafe, bcdDevice=55.01
[  626.947532][ T5290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  626.956759][ T5290] usb 5-1: Product: syz
[  626.961203][ T5290] usb 5-1: Manufacturer: syz
[  626.965954][ T5290] usb 5-1: SerialNumber: syz
[  626.989708][ T5290] usb 5-1: config 0 descriptor??
[  627.000613][T14396] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  627.037826][ T5284] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  627.049552][T14406] chnl_net:caif_netlink_parms(): no params data found
[  627.153763][T14420] netlink: 'syz.2.2194': attribute type 9 has an invalid length.
[  627.162904][T14420] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.2194'.
[  627.213547][T14396] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  627.242038][T14396] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  627.586201][T14406] bridge0: port 1(bridge_slave_0) entered blocking state
[  627.606916][T14406] bridge0: port 1(bridge_slave_0) entered disabled state
[  627.626004][ T5284] usb 4-1: device descriptor read/64, error -71
[  627.641612][T14406] bridge_slave_0: entered allmulticast mode
[  627.670256][T14406] bridge_slave_0: entered promiscuous mode
[  627.710738][T14406] bridge0: port 2(bridge_slave_1) entered blocking state
[  627.740340][T14406] bridge0: port 2(bridge_slave_1) entered disabled state
[  627.765678][T14406] bridge_slave_1: entered allmulticast mode
[  627.785383][T14406] bridge_slave_1: entered promiscuous mode
[  627.896056][ T5284] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  627.979078][T14406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  627.996590][T14406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  628.050182][T14406] team0: Port device team_slave_0 added
[  628.070803][T14406] team0: Port device team_slave_1 added
[  628.128055][ T5284] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  628.176747][T14406] batman_adv: batadv0: Adding interface: batadv_slave_0
[  628.215375][ T5284] usb 4-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  628.222383][T14406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.241981][ T5284] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  628.281174][ T5284] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  628.368472][ T5284] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  628.405360][T14406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  628.420764][ T5287] usb 1-1: USB disconnect, device number 63
[  628.448504][T14406] batman_adv: batadv0: Adding interface: batadv_slave_1
[  628.495381][T14406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.563667][T14406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  628.601367][ T5284] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -2
[  628.617126][   T54] Bluetooth: hci3: command tx timeout
[  628.830536][T14425] fuse: Unknown parameter 'fd0x0000000000000009'
[  628.940499][ T5287] usb 4-1: USB disconnect, device number 60
[  628.969980][T14406] hsr_slave_0: entered promiscuous mode
[  629.039459][T14406] hsr_slave_1: entered promiscuous mode
[  629.073914][T14406] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  629.111402][T14406] Cannot create hsr debugfs directory
[  629.307742][ T5290] cxacru 5-1:0.0: submit of read urb for cm 0x90 failed (-8)
[  629.365314][ T5290] cxacru 5-1:0.0: usbatm_usb_probe: invalid endpoint 02!
[  629.432840][T14437] sctp: [Deprecated]: syz.4.2200 (pid 14437) Use of int in maxseg socket option.
[  629.432840][T14437] Use struct sctp_assoc_value instead
[  629.442397][ T5290] cxacru 5-1:0.0: probe with driver cxacru failed with error -22
[  629.490516][ T5290] usb 5-1: USB disconnect, device number 49
[  629.730187][T14406] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  629.746364][ T5286] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[  629.899308][T14406] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  629.946888][ T5286] usb 1-1: Using ep0 maxpacket: 16
[  629.966213][ T5286] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  629.978079][T14444] ip6t_srh: unknown srh match flags  4000
[  630.015053][ T5286] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  630.055615][T14406] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.086539][ T5286] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  630.095624][ T5286] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  630.143425][ T5286] usb 1-1: Product: syz
[  630.157156][ T5286] usb 1-1: Manufacturer: syz
[  630.173827][ T5286] usb 1-1: SerialNumber: syz
[  630.238157][T14406] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.326354][   T29] audit: type=1326 audit(1725510652.035:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14445 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11457cef9 code=0x7fc00000
[  630.392291][   T29] audit: type=1326 audit(1725510652.065:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14445 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fb11457cef9 code=0x7fc00000
[  630.429503][ T5286] usb 1-1: 0:2 : does not exist
[  630.506270][ T5286] usb 1-1: USB disconnect, device number 64
[  630.557859][ T9312] udevd[9312]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  630.614400][T14406] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  630.661470][T14406] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  630.691781][   T54] Bluetooth: hci3: command 0x041b tx timeout
[  630.703308][T14406] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  630.731373][T14406] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  630.950129][T14406] 8021q: adding VLAN 0 to HW filter on device bond0
[  630.986012][ T5287] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  630.998404][T14406] 8021q: adding VLAN 0 to HW filter on device team0
[  631.018272][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.025441][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  631.054984][   T29] audit: type=1326 audit(1725510652.765:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14445 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11457cef9 code=0x7fc00000
[  631.106221][ T2519] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.113404][ T2519] bridge0: port 2(bridge_slave_1) entered forwarding state
[  631.198078][ T5287] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  631.224376][ T5287] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  631.263700][ T5287] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  631.288986][ T5287] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  631.331021][T14406] 8021q: adding VLAN 0 to HW filter on device batadv0
[  631.340874][T14457] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  631.365109][ T5287] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  631.391363][T14467] ip6t_srh: unknown srh match flags  4000
[  631.455685][T14469] random: crng reseeded on system resumption
[  631.628681][T14406] veth0_vlan: entered promiscuous mode
[  631.730588][T14406] veth1_vlan: entered promiscuous mode
[  631.845396][T14406] veth0_macvtap: entered promiscuous mode
[  631.903589][T14406] veth1_macvtap: entered promiscuous mode
[  631.983918][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.039763][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.057225][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.107546][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.135376][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.165476][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.221708][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.256138][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.272246][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.290083][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.305470][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.326715][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.341664][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.361945][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.382181][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.394206][T14483] loop2: detected capacity change from 0 to 7
[  632.404684][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.417102][T14483] Dev loop2: unable to read RDB block 7
[  632.422714][T14483]  loop2: unable to read partition table
[  632.434204][T14406] batman_adv: batadv0: Interface activated: batadv_slave_0
[  632.441710][T14483] loop2: partition table beyond EOD, truncated
[  632.456714][T14483] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  632.495448][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.543640][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.585985][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.613157][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.613200][T14472] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  632.651624][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.672143][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.693111][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.712695][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.724499][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.748166][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.765893][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.779396][ T5235] Bluetooth: hci3: command 0x041b tx timeout
[  632.789491][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.799714][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.810343][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.828782][T14406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  632.839485][T14406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.853428][T14472] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  632.909691][T14406] batman_adv: batadv0: Interface activated: batadv_slave_1
[  632.981546][T14406] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  633.005237][T14406] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  633.024982][T14406] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  633.038154][T14406] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  633.230834][T14492] FAULT_INJECTION: forcing a failure.
[  633.230834][T14492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  633.248655][T14492] CPU: 1 UID: 0 PID: 14492 Comm: syz.3.2221 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  633.259478][T14492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  633.269556][T14492] Call Trace:
[  633.272841][T14492]  <TASK>
[  633.275782][T14492]  dump_stack_lvl+0x241/0x360
[  633.280470][T14492]  ? __pfx_dump_stack_lvl+0x10/0x10
[  633.285670][T14492]  ? __pfx__printk+0x10/0x10
[  633.290279][T14492]  ? __pfx_lock_release+0x10/0x10
[  633.295322][T14492]  should_fail_ex+0x3b0/0x4e0
[  633.300014][T14492]  _copy_from_user+0x2f/0xe0
[  633.304609][T14492]  core_sys_select+0x508/0x910
[  633.309385][T14492]  ? __pfx_core_sys_select+0x10/0x10
[  633.314675][T14492]  ? ksys_write+0x23e/0x2c0
[  633.319211][T14492]  ? __pfx_set_user_sigmask+0x10/0x10
[  633.324618][T14492]  ? __fget_files+0x3f6/0x470
[  633.329306][T14492]  __se_sys_pselect6+0x319/0x3f0
[  633.334269][T14492]  ? __pfx___se_sys_pselect6+0x10/0x10
[  633.339759][T14492]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  633.346133][T14492]  ? do_syscall_64+0x100/0x230
[  633.350926][T14492]  ? __x64_sys_pselect6+0x21/0xf0
[  633.355986][T14492]  do_syscall_64+0xf3/0x230
[  633.360527][T14492]  ? clear_bhb_loop+0x35/0x90
[  633.365220][T14492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  633.371129][T14492] RIP: 0033:0x7f99ce57cef9
[  633.375564][T14492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  633.395177][T14492] RSP: 002b:00007f99cf29b038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  633.403599][T14492] RAX: ffffffffffffffda RBX: 00007f99ce736058 RCX: 00007f99ce57cef9
[  633.411585][T14492] RDX: 0000000020000180 RSI: 0000000020000080 RDI: 0000000000000040
[  633.419557][T14492] RBP: 00007f99cf29b090 R08: 0000000000000000 R09: 0000000000000000
[  633.427534][T14492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  633.435510][T14492] R13: 0000000000000000 R14: 00007f99ce736058 R15: 00007f99ce85fa28
[  633.443499][T14492]  </TASK>
[  633.477817][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.541147][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  633.606522][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.624671][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.847121][ T5235] Bluetooth: hci3: command 0x041b tx timeout
[  635.435756][T14530] netlink: 'syz.3.2231': attribute type 4 has an invalid length.
[  635.902688][   T46] usb 3-1: USB disconnect, device number 54
[  636.412948][T14544] FAULT_INJECTION: forcing a failure.
[  636.412948][T14544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  636.433480][T14544] CPU: 1 UID: 0 PID: 14544 Comm: syz.2.2235 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  636.444280][T14544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  636.454361][T14544] Call Trace:
[  636.457668][T14544]  <TASK>
[  636.460631][T14544]  dump_stack_lvl+0x241/0x360
[  636.465349][T14544]  ? __pfx_dump_stack_lvl+0x10/0x10
[  636.470622][T14544]  ? __pfx__printk+0x10/0x10
[  636.475246][T14544]  ? __pfx_lock_release+0x10/0x10
[  636.480317][T14544]  should_fail_ex+0x3b0/0x4e0
[  636.485041][T14544]  _copy_from_user+0x2f/0xe0
[  636.489674][T14544]  vcs_write+0x4f8/0x12d0
[  636.494047][T14544]  ? __pfx_lock_acquire+0x10/0x10
[  636.499116][T14544]  ? get_pid_task+0x23/0x1f0
[  636.503751][T14544]  ? __pfx_vcs_write+0x10/0x10
[  636.508539][T14544]  ? bpf_lsm_file_permission+0x9/0x10
[  636.513936][T14544]  ? iov_iter_iovec_advance+0x1fc/0x2c0
[  636.519488][T14544]  vfs_writev+0x5af/0xbb0
[  636.523836][T14544]  ? __pfx_vcs_write+0x10/0x10
[  636.528635][T14544]  ? __pfx_vfs_writev+0x10/0x10
[  636.533502][T14544]  ? vfs_write+0x7c4/0xc90
[  636.537921][T14544]  ? __fget_files+0x29/0x470
[  636.542520][T14544]  do_writev+0x1b1/0x350
[  636.546766][T14544]  ? __pfx_do_writev+0x10/0x10
[  636.551529][T14544]  ? do_syscall_64+0x100/0x230
[  636.556293][T14544]  ? do_syscall_64+0xb6/0x230
[  636.560970][T14544]  do_syscall_64+0xf3/0x230
[  636.565476][T14544]  ? clear_bhb_loop+0x35/0x90
[  636.570156][T14544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  636.576050][T14544] RIP: 0033:0x7f0ab057cef9
[  636.580563][T14544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  636.600163][T14544] RSP: 002b:00007f0ab132a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  636.608576][T14544] RAX: ffffffffffffffda RBX: 00007f0ab0735f80 RCX: 00007f0ab057cef9
[  636.616540][T14544] RDX: 0000000000000004 RSI: 0000000020000c40 RDI: 0000000000000003
[  636.624503][T14544] RBP: 00007f0ab132a090 R08: 0000000000000000 R09: 0000000000000000
[  636.632488][T14544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  636.640459][T14544] R13: 0000000000000000 R14: 00007f0ab0735f80 R15: 00007f0ab085fa28
[  636.648438][T14544]  </TASK>
[  636.926335][ T5235] Bluetooth: hci3: command 0x041b tx timeout
[  637.084292][T14560] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  637.090861][T14560] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  637.124758][T14560] vhci_hcd vhci_hcd.0: Device attached
[  637.396069][ T5285] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  637.457415][ T5286] usb 16-1: SetAddress Request (2) to port 0
[  637.463981][ T5286] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  637.496909][T14562] vhci_hcd: connection closed
[  637.502904][   T52] vhci_hcd: stop threads
[  637.537764][   T52] vhci_hcd: release socket
[  637.564522][   T52] vhci_hcd: disconnect device
[  637.603772][ T5285] usb 3-1: unable to read config index 0 descriptor/start: -61
[  637.624221][ T5285] usb 3-1: can't read configurations, error -61
[  637.806474][ T5285] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[  637.856802][T14578] random: crng reseeded on system resumption
[  637.970359][T14581] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.2242'.
[  637.988939][T14581] net_ratelimit: 3 callbacks suppressed
[  637.988954][T14581] openvswitch: netlink: Missing key (keys=400040, expected=200000)
[  638.018600][ T5285] usb 3-1: unable to read config index 0 descriptor/start: -61
[  638.026621][ T5285] usb 3-1: can't read configurations, error -61
[  638.040013][ T5285] usb usb3-port1: attempt power cycle
[  638.523469][ T5285] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  638.581346][ T5285] usb 3-1: unable to read config index 0 descriptor/start: -61
[  638.605964][ T5285] usb 3-1: can't read configurations, error -61
[  638.766475][ T5285] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  638.819997][ T5285] usb 3-1: unable to read config index 0 descriptor/start: -61
[  638.856161][ T5285] usb 3-1: can't read configurations, error -61
[  638.879016][ T5285] usb usb3-port1: unable to enumerate USB device
[  639.465971][ T5285] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[  639.690933][ T5285] usb 1-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  639.738039][ T5285] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  639.789551][ T5285] usb 1-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  639.823680][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.877621][ T5285] usb 1-1: config 0 descriptor??
[  639.886193][ T5284] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  640.108112][ T5284] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  640.129970][ T5302] usb 2-1: new full-speed USB device number 57 using dummy_hcd
[  640.163117][ T5284] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  640.191948][ T5284] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  640.223290][ T5284] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.253629][ T5284] usb 4-1: config 0 descriptor??
[  640.338239][ T5302] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  640.357451][ T5302] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  640.403288][ T5302] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  640.419624][ T5302] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.445444][ T5302] usb 2-1: Product: syz
[  640.459568][ T5302] usb 2-1: Manufacturer: syz
[  640.473428][ T5302] usb 2-1: SerialNumber: syz
[  640.515723][T14607] raw-gadget.3 gadget.1: fail, usb_ep_enable returned -22
[  640.705102][ T5284] keytouch 0003:0926:3333.000F: fixing up Keytouch IEC report descriptor
[  640.776203][ T5302] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[  640.789346][ T5284] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.000F/input/input30
[  640.856389][ T5302] usb 2-1: USB disconnect, device number 57
[  640.904765][T14605] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  640.951052][T14605] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  640.975536][T14605] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2249'.
[  641.089465][ T5284] keytouch 0003:0926:3333.000F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0
[  641.157455][ T5284] usb 4-1: USB disconnect, device number 61
[  641.736809][T14621] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2253'.
[  641.778547][T14621] unsupported nlmsg_type 40
[  642.093083][ T5285] usb 1-1: string descriptor 0 read error: -71
[  642.128889][ T5285] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  642.152569][T14632] netlink: 212 bytes leftover after parsing attributes in process `syz.3.2257'.
[  642.165422][ T5285] usb 1-1: USB disconnect, device number 65
[  642.396353][ T5302] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  642.489530][T14643] netlink: 191416 bytes leftover after parsing attributes in process `syz.3.2261'.
[  642.500142][T14643] netlink: zone id is out of range
[  642.523314][T14643] netlink: zone id is out of range
[  642.539071][T14643] netlink: zone id is out of range
[  642.609415][ T5302] usb 5-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  642.616480][ T5286] usb 16-1: device descriptor read/8, error -110
[  642.630342][ T5302] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  642.646643][ T5302] usb 5-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  642.658091][ T5302] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  642.679316][ T5302] usb 5-1: config 0 descriptor??
[  643.064127][ T5286] usb usb16-port1: attempt power cycle
[  643.117439][T14634] delete_channel: no stack
[  643.235428][T14649] random: crng reseeded on system resumption
[  643.767327][ T5286] usb usb16-port1: unable to enumerate USB device
[  643.790668][T14661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2266'.
[  644.986338][  T942] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  645.009348][T14679] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  645.064657][ T5302] usb 5-1: string descriptor 0 read error: -71
[  645.087520][ T5302] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  645.131926][ T5302] usb 5-1: USB disconnect, device number 50
[  645.228162][  T942] usb 4-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  645.255596][  T942] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  645.281640][  T942] usb 4-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  645.351892][  T942] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  645.392905][  T942] usb 4-1: config 0 descriptor??
[  645.849251][T14677] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  646.532421][   T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.596185][  T945] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[  646.746980][   T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.806377][  T945] usb 2-1: Using ep0 maxpacket: 16
[  646.823589][  T945] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.868910][  T945] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  646.925968][  T945] usb 2-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  646.961033][  T945] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.982316][   T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.994321][  T945] usb 2-1: config 0 descriptor??
[  647.070714][T14702] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2282'.
[  647.304376][T14690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  647.369346][T14690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  647.396527][   T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.662129][  T942] usb 4-1: string descriptor 0 read error: -71
[  647.687573][  T942] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  647.702153][T14708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  647.809349][  T942] usb 4-1: USB disconnect, device number 62
[  647.939387][T14708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  648.069645][   T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  648.082475][   T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  648.092526][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  648.104120][   T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  648.112866][   T54] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  648.120741][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  648.356017][  T942] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  648.557106][  T942] usb 4-1: Using ep0 maxpacket: 8
[  648.579274][  T942] usb 4-1: unable to read config index 0 descriptor/start: -61
[  648.606647][  T942] usb 4-1: can't read configurations, error -61
[  648.777299][  T942] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[  648.990735][  T942] usb 4-1: Using ep0 maxpacket: 8
[  649.019356][  T942] usb 4-1: unable to read config index 0 descriptor/start: -61
[  649.049743][  T942] usb 4-1: can't read configurations, error -61
[  649.076980][  T942] usb usb4-port1: attempt power cycle
[  649.408363][  T945] usbhid 2-1:0.0: can't add hid device: -71
[  649.419737][  T945] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  649.464225][  T945] usb 2-1: USB disconnect, device number 58
[  649.502232][  T942] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[  649.567448][  T942] usb 4-1: Using ep0 maxpacket: 8
[  649.578730][  T942] usb 4-1: unable to read config index 0 descriptor/start: -61
[  649.591841][  T942] usb 4-1: can't read configurations, error -61
[  649.758115][  T942] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[  649.810980][  T942] usb 4-1: Using ep0 maxpacket: 8
[  649.834852][  T942] usb 4-1: unable to read config index 0 descriptor/start: -61
[  649.847545][  T942] usb 4-1: can't read configurations, error -61
[  649.853832][   T35] bond0 (unregistering): Released all slaves
[  649.860497][  T942] usb usb4-port1: unable to enumerate USB device
[  649.940642][T14713] syzkaller0: entered promiscuous mode
[  649.954741][T14713] syzkaller0: entered allmulticast mode
[  650.206093][   T54] Bluetooth: hci2: command tx timeout
[  651.064846][T14749] program syz.3.2290 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  652.296201][   T54] Bluetooth: hci2: command tx timeout
[  652.570150][   T35] Êü: left promiscuous mode
[  653.416207][   T25] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[  653.641644][   T25] usb 2-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  653.699021][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  653.776957][   T25] usb 2-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  653.826433][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.863253][   T35] hsr_slave_0: left promiscuous mode
[  653.869885][   T25] usb 2-1: config 0 descriptor??
[  653.887215][   T35] hsr_slave_1: left promiscuous mode
[  653.942460][T14780] FAULT_INJECTION: forcing a failure.
[  653.942460][T14780] name failslab, interval 1, probability 0, space 0, times 0
[  654.005571][T14780] CPU: 1 UID: 0 PID: 14780 Comm: syz.3.2297 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  654.016364][T14780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  654.026418][T14780] Call Trace:
[  654.029694][T14780]  <TASK>
[  654.032622][T14780]  dump_stack_lvl+0x241/0x360
[  654.037304][T14780]  ? __pfx_dump_stack_lvl+0x10/0x10
[  654.042539][T14780]  ? __pfx__printk+0x10/0x10
[  654.047147][T14780]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  654.053159][T14780]  ? __pfx___might_resched+0x10/0x10
[  654.058500][T14780]  should_fail_ex+0x3b0/0x4e0
[  654.063237][T14780]  should_failslab+0xac/0x100
[  654.067994][T14780]  ? __alloc_skb+0x1c3/0x440
[  654.072617][T14780]  kmem_cache_alloc_node_noprof+0x71/0x320
[  654.078449][T14780]  ? aa_label_sk_perm+0x4f0/0x6d0
[  654.083505][T14780]  __alloc_skb+0x1c3/0x440
[  654.087959][T14780]  ? __pfx___alloc_skb+0x10/0x10
[  654.092940][T14780]  pfkey_sendmsg+0x1da/0x1050
[  654.097671][T14780]  ? __pfx___might_resched+0x10/0x10
[  654.102993][T14780]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  654.108204][T14780]  ? aa_sk_perm+0x96d/0xab0
[  654.112717][T14780]  ? __pfx_aa_sk_perm+0x10/0x10
[  654.117600][T14780]  ? __might_fault+0xaa/0x120
[  654.122288][T14780]  ? __pfx_lock_release+0x10/0x10
[  654.127329][T14780]  ? __import_iovec+0x536/0x820
[  654.132186][T14780]  ? aa_sock_msg_perm+0x91/0x160
[  654.137133][T14780]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  654.142454][T14780]  ? security_socket_sendmsg+0x87/0xb0
[  654.147937][T14780]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  654.153058][T14780]  __sock_sendmsg+0x221/0x270
[  654.157776][T14780]  ____sys_sendmsg+0x525/0x7d0
[  654.162564][T14780]  ? __pfx_____sys_sendmsg+0x10/0x10
[  654.167883][T14780]  __sys_sendmmsg+0x3b2/0x740
[  654.172577][T14780]  ? __pfx___sys_sendmmsg+0x10/0x10
[  654.177820][T14780]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  654.183725][T14780]  ? ksys_write+0x23e/0x2c0
[  654.188237][T14780]  ? __pfx_lock_release+0x10/0x10
[  654.193273][T14780]  ? vfs_write+0x7c4/0xc90
[  654.197703][T14780]  ? __mutex_unlock_slowpath+0x21d/0x750
[  654.203342][T14780]  ? __pfx_vfs_write+0x10/0x10
[  654.208129][T14780]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  654.214121][T14780]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  654.220465][T14780]  ? do_syscall_64+0x100/0x230
[  654.225240][T14780]  __x64_sys_sendmmsg+0xa0/0xb0
[  654.230105][T14780]  do_syscall_64+0xf3/0x230
[  654.234611][T14780]  ? clear_bhb_loop+0x35/0x90
[  654.239303][T14780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.245209][T14780] RIP: 0033:0x7f99ce57cef9
[  654.249633][T14780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  654.269332][T14780] RSP: 002b:00007f99cf2bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  654.277754][T14780] RAX: ffffffffffffffda RBX: 00007f99ce735f80 RCX: 00007f99ce57cef9
[  654.285731][T14780] RDX: 000000000400008a RSI: 0000000020000180 RDI: 0000000000000004
[  654.293706][T14780] RBP: 00007f99cf2bc090 R08: 0000000000000000 R09: 0000000000000000
[  654.301695][T14780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.309692][T14780] R13: 0000000000000000 R14: 00007f99ce735f80 R15: 00007f99ce85fa28
[  654.317677][T14780]  </TASK>
[  654.366714][   T54] Bluetooth: hci2: command tx timeout
[  654.366997][   T35] veth1_macvtap: left promiscuous mode
[  654.377885][   T35] veth0_macvtap: left promiscuous mode
[  654.383579][   T35] veth1_vlan: left promiscuous mode
[  654.394119][   T35] veth0_vlan: left promiscuous mode
[  655.970647][   T25] usb 2-1: string descriptor 0 read error: -71
[  655.987348][   T25] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  656.023632][   T25] usb 2-1: USB disconnect, device number 59
[  656.455428][   T54] Bluetooth: hci2: command tx timeout
[  656.758261][   T35] team0 (unregistering): Port device wg2 removed
[  656.958725][T14815] FAULT_INJECTION: forcing a failure.
[  656.958725][T14815] name failslab, interval 1, probability 0, space 0, times 0
[  656.973931][T14815] CPU: 0 UID: 0 PID: 14815 Comm: syz.3.2305 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  656.984742][T14815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  656.994826][T14815] Call Trace:
[  656.998129][T14815]  <TASK>
[  657.001091][T14815]  dump_stack_lvl+0x241/0x360
[  657.005806][T14815]  ? __pfx_dump_stack_lvl+0x10/0x10
[  657.011044][T14815]  ? __pfx__printk+0x10/0x10
[  657.015684][T14815]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  657.021178][T14815]  ? __pfx___might_resched+0x10/0x10
[  657.026503][T14815]  should_fail_ex+0x3b0/0x4e0
[  657.031230][T14815]  should_failslab+0xac/0x100
[  657.035970][T14815]  ? snd_pcm_oss_change_params_locked+0x17b/0x3d60
[  657.042529][T14815]  __kmalloc_cache_noprof+0x6c/0x2c0
[  657.047874][T14815]  snd_pcm_oss_change_params_locked+0x17b/0x3d60
[  657.054240][T14815]  ? __pfx___might_resched+0x10/0x10
[  657.059573][T14815]  ? __pfx___mutex_trylock_common+0x10/0x10
[  657.065509][T14815]  ? rcu_is_watching+0x15/0xb0
[  657.070316][T14815]  ? trace_contention_end+0x3c/0x120
[  657.075637][T14815]  ? __mutex_lock+0x2ef/0xd70
[  657.080353][T14815]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  657.087141][T14815]  ? __pfx___mutex_lock+0x10/0x10
[  657.092211][T14815]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  657.098268][T14815]  snd_pcm_oss_get_active_substream+0x1cc/0x280
[  657.104557][T14815]  snd_pcm_oss_set_channels+0x23b/0x5c0
[  657.110145][T14815]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[  657.116254][T14815]  ? __might_fault+0xaa/0x120
[  657.120975][T14815]  ? __might_fault+0xc6/0x120
[  657.125694][T14815]  snd_pcm_oss_ioctl+0xca0/0xff0
[  657.130671][T14815]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  657.136158][T14815]  ? __fget_files+0x29/0x470
[  657.140780][T14815]  ? __fget_files+0x3f6/0x470
[  657.145483][T14815]  ? __fget_files+0x29/0x470
[  657.150115][T14815]  ? bpf_lsm_file_ioctl+0x9/0x10
[  657.155086][T14815]  ? security_file_ioctl+0x87/0xb0
[  657.160324][T14815]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  657.165814][T14815]  __se_sys_ioctl+0xfc/0x170
[  657.170536][T14815]  do_syscall_64+0xf3/0x230
[  657.175080][T14815]  ? clear_bhb_loop+0x35/0x90
[  657.179800][T14815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.185728][T14815] RIP: 0033:0x7f99ce57cef9
[  657.190167][T14815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  657.209820][T14815] RSP: 002b:00007f99cf2bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  657.218279][T14815] RAX: ffffffffffffffda RBX: 00007f99ce735f80 RCX: 00007f99ce57cef9
[  657.226279][T14815] RDX: 0000000020000000 RSI: 00000000c0045006 RDI: 0000000000000003
[  657.234275][T14815] RBP: 00007f99cf2bc090 R08: 0000000000000000 R09: 0000000000000000
[  657.242267][T14815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  657.250261][T14815] R13: 0000000000000000 R14: 00007f99ce735f80 R15: 00007f99ce85fa28
[  657.258294][T14815]  </TASK>
[  657.746562][T14720] chnl_net:caif_netlink_parms(): no params data found
[  657.994619][T14817] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  658.032596][T14817] batman_adv: batadv0: Adding interface: ip6gretap1
[  658.064289][T14817] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  658.108370][T14817] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  658.226108][ T5290] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  658.466738][T14720] bridge0: port 1(bridge_slave_0) entered blocking state
[  658.469147][ T5290] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  658.479407][T14720] bridge0: port 1(bridge_slave_0) entered disabled state
[  658.542705][T14720] bridge_slave_0: entered allmulticast mode
[  658.545890][ T5290] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  658.592704][T14720] bridge_slave_0: entered promiscuous mode
[  658.630251][T14720] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.656101][ T5290] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  658.661230][T14720] bridge0: port 2(bridge_slave_1) entered disabled state
[  658.692117][ T5290] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  658.738025][T14720] bridge_slave_1: entered allmulticast mode
[  658.748083][ T5290] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  658.778714][T14720] bridge_slave_1: entered promiscuous mode
[  658.781979][ T5290] usb 3-1: config 0 descriptor??
[  659.024610][T14720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  659.159595][T14720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  659.261377][ T5290] usbhid 3-1:0.0: can't add hid device: -71
[  659.274625][ T5290] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  659.333313][ T5290] usb 3-1: USB disconnect, device number 59
[  659.397939][T14720] team0: Port device team_slave_0 added
[  659.427643][T14720] team0: Port device team_slave_1 added
[  659.577303][   T25] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[  659.593071][T14720] batman_adv: batadv0: Adding interface: batadv_slave_0
[  659.622425][T14720] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  659.741349][T14720] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  659.790801][T14720] batman_adv: batadv0: Adding interface: batadv_slave_1
[  659.817689][   T25] usb 4-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  659.836000][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  659.863723][   T25] usb 4-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  659.880982][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  659.899585][T14720] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  659.927227][   T25] usb 4-1: config 0 descriptor??
[  660.007633][T14720] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  660.184076][T14875] netlink: 191416 bytes leftover after parsing attributes in process `syz.4.2318'.
[  660.227157][T14875] netlink: zone id is out of range
[  660.232680][T14875] netlink: zone id is out of range
[  660.238867][T14875] netlink: zone id is out of range
[  660.244714][T14875] netlink: zone id is out of range
[  660.256025][T14875] netlink: zone id is out of range
[  660.275609][T14875] netlink: zone id is out of range
[  660.281643][T14875] netlink: zone id is out of range
[  660.291040][T14875] netlink: zone id is out of range
[  660.299035][T14875] netlink: zone id is out of range
[  660.309060][T14875] netlink: zone id is out of range
[  660.369802][T14720] hsr_slave_0: entered promiscuous mode
[  660.447485][T14720] hsr_slave_1: entered promiscuous mode
[  660.487155][T14720] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  660.516220][T14720] Cannot create hsr debugfs directory
[  662.288128][   T25] usb 4-1: string descriptor 0 read error: -71
[  662.333045][   T25] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  662.448419][   T25] usb 4-1: USB disconnect, device number 67
[  662.756006][ T5290] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  662.773914][T14907] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2326'.
[  662.996508][ T5290] usb 5-1: Using ep0 maxpacket: 8
[  663.039414][ T5290] usb 5-1: config 0 has an invalid descriptor of length 102, skipping remainder of the config
[  663.114586][ T5290] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  663.137248][ T5290] usb 5-1: New USB device found, idVendor=8d89, idProduct=8139, bcdDevice=ef.13
[  663.148086][ T5290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.159165][ T5290] usb 5-1: Product: syz
[  663.164024][ T5290] usb 5-1: Manufacturer: syz
[  663.171155][ T5290] usb 5-1: SerialNumber: syz
[  663.230295][ T5290] usb 5-1: config 0 descriptor??
[  663.538179][T14720] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  663.591597][T14720] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  663.642404][T14720] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  663.761477][T14720] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  664.118597][T14720] 8021q: adding VLAN 0 to HW filter on device bond0
[  664.171516][T14720] 8021q: adding VLAN 0 to HW filter on device team0
[  664.218875][T14931] netlink: 191416 bytes leftover after parsing attributes in process `syz.1.2331'.
[  664.240938][ T2519] bridge0: port 1(bridge_slave_0) entered blocking state
[  664.248182][ T2519] bridge0: port 1(bridge_slave_0) entered forwarding state
[  664.333151][T12036] bridge0: port 2(bridge_slave_1) entered blocking state
[  664.340358][T12036] bridge0: port 2(bridge_slave_1) entered forwarding state
[  664.531504][T14934] fuse: Bad value for 'user_id'
[  664.540862][T14934] fuse: Bad value for 'user_id'
[  664.694844][T14720] 8021q: adding VLAN 0 to HW filter on device batadv0
[  664.887669][T14720] veth0_vlan: entered promiscuous mode
[  664.969746][T14720] veth1_vlan: entered promiscuous mode
[  665.125793][T14933] ALSA: mixer_oss: invalid OSS volume 'ÿÿÿÿ'
[  665.138125][T14720] veth0_macvtap: entered promiscuous mode
[  665.232929][T14720] veth1_macvtap: entered promiscuous mode
[  665.378447][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.390309][  T945] usb 5-1: USB disconnect, device number 51
[  665.464498][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.486381][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.519456][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.561034][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.589095][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.611051][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.645943][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.681670][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.721370][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.743473][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.755069][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.767724][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.796400][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.825977][   T25] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[  665.869524][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.882089][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.903013][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  665.923406][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.954061][T14720] batman_adv: batadv0: Interface activated: batadv_slave_0
[  666.005099][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.015903][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.033002][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.049561][   T25] usb 2-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  666.067728][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  666.081002][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.083315][   T25] usb 2-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  666.104424][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.113851][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.118243][   T25] usb 2-1: config 0 descriptor??
[  666.153190][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.164310][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.174956][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.186721][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.197507][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.207892][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.218677][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.229791][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.240533][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.250665][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.262441][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.274129][T14720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.284805][T14720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.314081][T14720] batman_adv: batadv0: Interface activated: batadv_slave_1
[  666.420742][T14720] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  666.475939][T14720] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  666.517033][T14720] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  666.525784][T14720] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  666.700224][   T77] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.989248][   T77] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.303889][   T77] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.412368][T14970] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2342'.
[  667.608061][   T77] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.762348][ T5235] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  667.775549][ T5235] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  667.784586][ T5235] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  667.794033][ T5235] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  667.807495][ T5235] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  667.817131][ T5235] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  667.921656][ T2887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  667.996207][ T5284] usb 4-1: new high-speed USB device number 68 using dummy_hcd
[  668.040361][ T2887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  668.238796][ T5284] usb 4-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  668.305697][ T5284] usb 4-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  668.338636][   T25] usb 2-1: string descriptor 0 read error: -71
[  668.356090][ T5284] usb 4-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  668.371781][   T25] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  668.412877][ T5284] usb 4-1: Manufacturer: syz
[  668.430703][ T5284] usb 4-1: SerialNumber: syz
[  668.455442][   T25] usb 2-1: USB disconnect, device number 60
[  668.701268][ T2887] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  668.767716][ T2887] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  668.950634][   T77] bridge_slave_1: left allmulticast mode
[  668.973518][   T77] bridge_slave_1: left promiscuous mode
[  668.997069][   T77] bridge0: port 2(bridge_slave_1) entered disabled state
[  669.054716][   T77] bridge_slave_0: left allmulticast mode
[  669.060900][   T77] bridge_slave_0: left promiscuous mode
[  669.067946][   T77] bridge0: port 1(bridge_slave_0) entered disabled state
[  669.896699][   T54] Bluetooth: hci4: command tx timeout
[  669.917448][   T46] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[  670.139249][ T5284] usb 4-1: USB disconnect, device number 68
[  670.145279][   T46] usb 2-1: Using ep0 maxpacket: 8
[  670.176725][   T46] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0069, bcdDevice=6e.55
[  670.195887][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  670.233731][   T46] usb 2-1: Product: syz
[  670.242418][   T46] usb 2-1: Manufacturer: syz
[  670.265912][   T46] usb 2-1: SerialNumber: syz
[  670.292742][   T46] usb 2-1: config 0 descriptor??
[  670.383387][T15030] FAULT_INJECTION: forcing a failure.
[  670.383387][T15030] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  670.405079][   T77] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  670.416226][T15030] CPU: 0 UID: 0 PID: 15030 Comm: syz.3.2351 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  670.427027][T15030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  670.437113][T15030] Call Trace:
[  670.440411][T15030]  <TASK>
[  670.443367][T15030]  dump_stack_lvl+0x241/0x360
[  670.448078][T15030]  ? __pfx_dump_stack_lvl+0x10/0x10
[  670.453300][T15030]  ? __pfx__printk+0x10/0x10
[  670.457928][T15030]  ? __pfx_lock_release+0x10/0x10
[  670.462993][T15030]  should_fail_ex+0x3b0/0x4e0
[  670.467715][T15030]  _copy_from_user+0x2f/0xe0
[  670.472335][T15030]  vcs_write+0x4f8/0x12d0
[  670.476720][T15030]  ? __pfx_vcs_write+0x10/0x10
[  670.481509][T15030]  ? bpf_lsm_file_permission+0x9/0x10
[  670.486930][T15030]  ? iov_iter_iovec_advance+0x1fc/0x2c0
[  670.492494][T15030]  vfs_writev+0x5af/0xbb0
[  670.496859][T15030]  ? __pfx_vcs_write+0x10/0x10
[  670.501719][T15030]  ? __pfx_vfs_writev+0x10/0x10
[  670.506582][T15030]  ? vfs_write+0x7c4/0xc90
[  670.511018][T15030]  ? __fget_files+0x29/0x470
[  670.515807][T15030]  do_writev+0x1b1/0x350
[  670.520088][T15030]  ? __pfx_do_writev+0x10/0x10
[  670.524875][T15030]  ? do_syscall_64+0x100/0x230
[  670.529695][T15030]  ? do_syscall_64+0xb6/0x230
[  670.534386][T15030]  do_syscall_64+0xf3/0x230
[  670.538923][T15030]  ? clear_bhb_loop+0x35/0x90
[  670.543633][T15030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.549548][T15030] RIP: 0033:0x7f99ce57cef9
[  670.553973][T15030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.573593][T15030] RSP: 002b:00007f99cf2bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  670.582023][T15030] RAX: ffffffffffffffda RBX: 00007f99ce735f80 RCX: 00007f99ce57cef9
[  670.590000][T15030] RDX: 0000000000000004 RSI: 0000000020000c40 RDI: 0000000000000003
[  670.597985][T15030] RBP: 00007f99cf2bc090 R08: 0000000000000000 R09: 0000000000000000
[  670.605961][T15030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.613941][T15030] R13: 0000000000000000 R14: 00007f99ce735f80 R15: 00007f99ce85fa28
[  670.621935][T15030]  </TASK>
[  670.650564][   T77] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  670.680295][   T77] bond0 (unregistering): Released all slaves
[  670.896678][   T46] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  670.921030][   T46] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  670.983758][   T46] usb 2-1: USB disconnect, device number 61
[  671.094596][T15042] FAULT_INJECTION: forcing a failure.
[  671.094596][T15042] name failslab, interval 1, probability 0, space 0, times 0
[  671.145061][T15042] CPU: 0 UID: 0 PID: 15042 Comm: syz.0.2353 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  671.155882][T15042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  671.165965][T15042] Call Trace:
[  671.169263][T15042]  <TASK>
[  671.172214][T15042]  dump_stack_lvl+0x241/0x360
[  671.176903][T15042]  ? __pfx_dump_stack_lvl+0x10/0x10
[  671.182109][T15042]  ? __pfx__printk+0x10/0x10
[  671.186706][T15042]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  671.192174][T15042]  ? __pfx___might_resched+0x10/0x10
[  671.197469][T15042]  should_fail_ex+0x3b0/0x4e0
[  671.202168][T15042]  should_failslab+0xac/0x100
[  671.206876][T15042]  ? snd_pcm_oss_change_params_locked+0x1b6/0x3d60
[  671.213401][T15042]  __kmalloc_cache_noprof+0x6c/0x2c0
[  671.218703][T15042]  snd_pcm_oss_change_params_locked+0x1b6/0x3d60
[  671.225042][T15042]  ? __pfx___might_resched+0x10/0x10
[  671.230342][T15042]  ? __pfx___mutex_trylock_common+0x10/0x10
[  671.236247][T15042]  ? rcu_is_watching+0x15/0xb0
[  671.241043][T15042]  ? trace_contention_end+0x3c/0x120
[  671.246345][T15042]  ? __mutex_lock+0x2ef/0xd70
[  671.251041][T15042]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  671.257812][T15042]  ? __pfx___mutex_lock+0x10/0x10
[  671.263107][T15042]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  671.269110][T15042]  snd_pcm_oss_get_active_substream+0x1cc/0x280
[  671.275372][T15042]  snd_pcm_oss_set_channels+0x23b/0x5c0
[  671.280951][T15042]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[  671.287030][T15042]  ? __might_fault+0xaa/0x120
[  671.291719][T15042]  ? __might_fault+0xc6/0x120
[  671.296407][T15042]  snd_pcm_oss_ioctl+0xca0/0xff0
[  671.301348][T15042]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  671.306810][T15042]  ? __fget_files+0x29/0x470
[  671.311408][T15042]  ? __fget_files+0x3f6/0x470
[  671.316090][T15042]  ? __fget_files+0x29/0x470
[  671.320728][T15042]  ? bpf_lsm_file_ioctl+0x9/0x10
[  671.325680][T15042]  ? security_file_ioctl+0x87/0xb0
[  671.330841][T15042]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  671.336309][T15042]  __se_sys_ioctl+0xfc/0x170
[  671.340905][T15042]  do_syscall_64+0xf3/0x230
[  671.345418][T15042]  ? clear_bhb_loop+0x35/0x90
[  671.350113][T15042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.356029][T15042] RIP: 0033:0x7fe5e0d7cef9
[  671.360462][T15042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  671.380072][T15042] RSP: 002b:00007fe5e1aa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  671.388494][T15042] RAX: ffffffffffffffda RBX: 00007fe5e0f35f80 RCX: 00007fe5e0d7cef9
[  671.396466][T15042] RDX: 0000000020000000 RSI: 00000000c0045006 RDI: 0000000000000003
[  671.404450][T15042] RBP: 00007fe5e1aa5090 R08: 0000000000000000 R09: 0000000000000000
[  671.412427][T15042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  671.420415][T15042] R13: 0000000000000000 R14: 00007fe5e0f35f80 R15: 00007fe5e105fa28
[  671.428532][T15042]  </TASK>
[  671.605012][T15052] netlink: 'syz.2.2354': attribute type 12 has an invalid length.
[  671.616254][T15052] netlink: 'syz.2.2354': attribute type 1 has an invalid length.
[  671.856584][   T46] usb 4-1: new high-speed USB device number 69 using dummy_hcd
[  671.966710][   T54] Bluetooth: hci4: command tx timeout
[  671.990277][T15060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  672.090578][   T46] usb 4-1: config 0 has an invalid descriptor of length 58, skipping remainder of the config
[  672.090635][   T46] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  672.090681][   T46] usb 4-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  672.090708][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  672.104351][   T46] usb 4-1: config 0 descriptor??
[  672.146092][   T77] hsr_slave_0: left promiscuous mode
[  672.153872][   T77] hsr_slave_1: left promiscuous mode
[  672.158361][   T77] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  672.158424][   T77] batman_adv: batadv0: Removing interface: batadv_slave_0
[  672.160112][   T77] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  672.160149][   T77] batman_adv: batadv0: Removing interface: batadv_slave_1
[  672.237437][   T77] veth1_macvtap: left promiscuous mode
[  672.361943][T15072] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.2358'.
[  672.378855][T15072] net_ratelimit: 12 callbacks suppressed
[  672.378869][T15072] openvswitch: netlink: Missing key (keys=400040, expected=200000)
[  672.412102][   T77] veth0_macvtap: left promiscuous mode
[  672.427306][   T77] veth1_vlan: left promiscuous mode
[  672.445043][   T77] veth0_vlan: left promiscuous mode
[  674.056570][   T54] Bluetooth: hci4: command tx timeout
[  674.072984][   T46] usb 4-1: string descriptor 0 read error: -71
[  674.083578][   T46] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  674.130192][   T46] usb 4-1: USB disconnect, device number 69
[  674.523921][ T5284] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[  674.564796][   T77] team0 (unregistering): Port device team_slave_1 removed
[  674.659323][   T77] team0 (unregistering): Port device team_slave_0 removed
[  674.718837][ T5284] usb 3-1: Using ep0 maxpacket: 32
[  674.753929][ T5284] usb 3-1: New USB device found, idVendor=042c, idProduct=7505, bcdDevice=32.a8
[  674.773820][ T5284] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  674.803614][ T5284] usb 3-1: config 0 descriptor??
[  675.041538][   T25] usb 3-1: USB disconnect, device number 60
[  675.538023][T14987] chnl_net:caif_netlink_parms(): no params data found
[  675.833490][T15134] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2364'.
[  676.126103][ T5302] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[  676.126218][   T54] Bluetooth: hci4: command tx timeout
[  676.186165][T14987] bridge0: port 1(bridge_slave_0) entered blocking state
[  676.193440][T14987] bridge0: port 1(bridge_slave_0) entered disabled state
[  676.225937][T14987] bridge_slave_0: entered allmulticast mode
[  676.242658][T14987] bridge_slave_0: entered promiscuous mode
[  676.265717][T14987] bridge0: port 2(bridge_slave_1) entered blocking state
[  676.276152][T14987] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.287179][T14987] bridge_slave_1: entered allmulticast mode
[  676.319188][T14987] bridge_slave_1: entered promiscuous mode
[  676.371264][ T5302] usb 1-1: Using ep0 maxpacket: 32
[  676.432610][ T5302] usb 1-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91
[  676.472833][ T5302] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.538093][ T5302] usb 1-1: config 0 descriptor??
[  676.571908][ T5302] gspca_main: sunplus-2.14.0 probing 0458:7006
[  676.610131][T15162] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2370'.
[  676.663270][T14987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  676.794824][T14987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  676.851006][  T945] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[  677.096126][T14987] team0: Port device team_slave_0 added
[  677.126387][ T5302] gspca_sunplus: reg_w_riv err -110
[  677.128492][T14987] team0: Port device team_slave_1 added
[  677.156171][ T5302] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[  677.214073][T15176] netlink: 'syz.2.2375': attribute type 1 has an invalid length.
[  677.246449][T15176] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.2375'.
[  677.524805][T14987] batman_adv: batadv0: Adding interface: batadv_slave_0
[  677.544756][T14987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  677.582079][T14987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  677.632080][T14987] batman_adv: batadv0: Adding interface: batadv_slave_1
[  677.639414][T14987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  677.679142][T14987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  677.967941][T14987] hsr_slave_0: entered promiscuous mode
[  678.000195][T14987] hsr_slave_1: entered promiscuous mode
[  678.034458][T14987] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  678.058232][T14987] Cannot create hsr debugfs directory
[  678.679847][T15206] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2382'.
[  678.705528][ T5302] usb 1-1: USB disconnect, device number 66
[  679.326183][ T5302] usb 2-1: new full-speed USB device number 62 using dummy_hcd
[  679.547231][ T5302] usb 2-1: config 0 has an invalid interface number: 255 but max is 0
[  679.569104][ T5302] usb 2-1: config 0 has no interface number 0
[  679.597019][ T5302] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  679.630593][ T5302] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  679.671898][ T5302] usb 2-1: config 0 interface 255 has no altsetting 0
[  679.691317][ T5302] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  679.733173][ T5302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  679.746472][T15232] binder: 15227:15232 ioctl c0306201 0 returned -14
[  679.800957][ T5302] usb 2-1: config 0 descriptor??
[  679.828518][ T5302] ums-realtek 2-1:0.255: USB Mass Storage device detected
[  680.565064][ T5302] usb 2-1: USB disconnect, device number 62
[  680.869690][T14987] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  680.899051][T14987] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  680.924963][T14987] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  680.994594][T14987] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  681.275459][   T29] audit: type=1800 audit(1725510702.985:210): pid=15271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2393" name="/" dev="fuse" ino=1 res=0 errno=0
[  681.624029][T15275] netlink: 'syz.0.2396': attribute type 10 has an invalid length.
[  681.709167][T15275] 8021q: adding VLAN 0 to HW filter on device batadv0
[  681.741612][T15275] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  681.848781][T14987] 8021q: adding VLAN 0 to HW filter on device bond0
[  681.910134][T14987] 8021q: adding VLAN 0 to HW filter on device team0
[  681.962804][ T2887] bridge0: port 1(bridge_slave_0) entered blocking state
[  681.970148][ T2887] bridge0: port 1(bridge_slave_0) entered forwarding state
[  682.001285][T15287] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2398'.
[  682.013793][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  682.020988][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  682.040104][T15287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2398'.
[  682.074115][T15285] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2398'.
[  682.349203][T14987] 8021q: adding VLAN 0 to HW filter on device batadv0
[  682.513372][T15294] netlink: 'syz.0.2400': attribute type 11 has an invalid length.
[  682.558764][T15294] netlink: 'syz.0.2400': attribute type 11 has an invalid length.
[  682.617211][   T25] usb 3-1: new full-speed USB device number 62 using dummy_hcd
[  682.633660][T15296] pimreg: entered allmulticast mode
[  682.749923][T14987] veth0_vlan: entered promiscuous mode
[  682.796670][T15305] FAULT_INJECTION: forcing a failure.
[  682.796670][T15305] name failslab, interval 1, probability 0, space 0, times 0
[  682.807214][T14987] veth1_vlan: entered promiscuous mode
[  682.825914][T15305] CPU: 0 UID: 0 PID: 15305 Comm: syz.3.2402 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  682.836728][T15305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  682.846815][T15305] Call Trace:
[  682.850130][T15305]  <TASK>
[  682.853094][T15305]  dump_stack_lvl+0x241/0x360
[  682.857901][T15305]  ? __pfx_dump_stack_lvl+0x10/0x10
[  682.863158][T15305]  ? __pfx__printk+0x10/0x10
[  682.867785][T15305]  ? __kmalloc_noprof+0xb0/0x400
[  682.872768][T15305]  ? __pfx___might_resched+0x10/0x10
[  682.878076][T15305]  should_fail_ex+0x3b0/0x4e0
[  682.882779][T15305]  ? snd_pcm_hw_refine+0x965/0x1b40
[  682.887996][T15305]  should_failslab+0xac/0x100
[  682.892703][T15305]  ? snd_pcm_hw_refine+0x965/0x1b40
[  682.897924][T15305]  __kmalloc_noprof+0xd8/0x400
[  682.902726][T15305]  snd_pcm_hw_refine+0x965/0x1b40
[  682.907770][T15305]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[  682.913332][T15305]  ? snd_pcm_oss_change_params_locked+0x1b6/0x3d60
[  682.919858][T15305]  ? snd_pcm_oss_get_active_substream+0x1cc/0x280
[  682.926305][T15305]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  682.931811][T15305]  ? __asan_memset+0x23/0x50
[  682.936428][T15305]  ? snd_pcm_oss_change_params_locked+0x689/0x3d60
[  682.942965][T15305]  snd_pcm_oss_change_params_locked+0x7a8/0x3d60
[  682.949371][T15305]  ? __pfx___might_resched+0x10/0x10
[  682.954699][T15305]  ? __pfx___mutex_trylock_common+0x10/0x10
[  682.960614][T15305]  ? trace_contention_end+0x3c/0x120
[  682.965930][T15305]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  682.972714][T15305]  ? __pfx___mutex_lock+0x10/0x10
[  682.977762][T15305]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  682.983775][T15305]  snd_pcm_oss_get_active_substream+0x1cc/0x280
[  682.990042][T15305]  snd_pcm_oss_set_channels+0x23b/0x5c0
[  682.995611][T15305]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[  683.001698][T15305]  ? __might_fault+0xaa/0x120
[  683.006392][T15305]  ? __might_fault+0xc6/0x120
[  683.011197][T15305]  snd_pcm_oss_ioctl+0xca0/0xff0
[  683.016200][T15305]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  683.021682][T15305]  ? __fget_files+0x29/0x470
[  683.026324][T15305]  ? __fget_files+0x3f6/0x470
[  683.031011][T15305]  ? __fget_files+0x29/0x470
[  683.035624][T15305]  ? bpf_lsm_file_ioctl+0x9/0x10
[  683.040579][T15305]  ? security_file_ioctl+0x87/0xb0
[  683.045710][T15305]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  683.051192][T15305]  __se_sys_ioctl+0xfc/0x170
[  683.055807][T15305]  do_syscall_64+0xf3/0x230
[  683.060337][T15305]  ? clear_bhb_loop+0x35/0x90
[  683.065032][T15305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.070942][T15305] RIP: 0033:0x7f99ce57cef9
[  683.075386][T15305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  683.095016][T15305] RSP: 002b:00007f99cf2bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  683.103556][T15305] RAX: ffffffffffffffda RBX: 00007f99ce735f80 RCX: 00007f99ce57cef9
[  683.111544][T15305] RDX: 0000000020000000 RSI: 00000000c0045006 RDI: 0000000000000003
[  683.119543][T15305] RBP: 00007f99cf2bc090 R08: 0000000000000000 R09: 0000000000000000
[  683.127536][T15305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  683.135523][T15305] R13: 0000000000000000 R14: 00007f99ce735f80 R15: 00007f99ce85fa28
[  683.143524][T15305]  </TASK>
[  683.146571][    C0] vkms_vblank_simulate: vblank timer overrun
[  683.197474][T15292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  683.287386][T15292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  683.365958][T15292] team_slave_0: entered promiscuous mode
[  683.372227][T15292] team_slave_1: entered promiscuous mode
[  683.504955][T15292] team_slave_0: left promiscuous mode
[  683.510546][T15292] team_slave_1: left promiscuous mode
[  683.648956][T14987] veth0_macvtap: entered promiscuous mode
[  683.683819][T14987] veth1_macvtap: entered promiscuous mode
[  683.712862][   T25] usb 3-1: no configurations
[  683.723060][   T25] usb 3-1: can't read configurations, error -22
[  683.792510][T15314] vlan2: entered promiscuous mode
[  683.797863][T15314] vlan2: entered allmulticast mode
[  683.996842][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.027877][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.040282][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.054120][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.077679][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.091490][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.118574][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.132576][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.144745][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.165276][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.175513][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.188383][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.198553][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.210469][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.220738][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.231455][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.241597][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  684.253527][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.266464][T14987] batman_adv: batadv0: Interface activated: batadv_slave_0
[  684.295029][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.322128][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.360516][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.380549][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.396413][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.418466][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.443059][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.483181][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.503632][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.521120][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.556228][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.578440][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.589014][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.606691][T15333] FAULT_INJECTION: forcing a failure.
[  684.606691][T15333] name failslab, interval 1, probability 0, space 0, times 0
[  684.619505][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.629948][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.634394][T15333] CPU: 1 UID: 0 PID: 15333 Comm: syz.0.2410 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  684.642382][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.651111][T15333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  684.651129][T15333] Call Trace:
[  684.651140][T15333]  <TASK>
[  684.651156][T15333]  dump_stack_lvl+0x241/0x360
[  684.663325][T14987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  684.671004][T15333]  ? __pfx_dump_stack_lvl+0x10/0x10
[  684.671039][T15333]  ? __pfx__printk+0x10/0x10
[  684.674310][T14987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  684.677240][T15333]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  684.677272][T15333]  ? __pfx___might_resched+0x10/0x10
[  684.677306][T15333]  should_fail_ex+0x3b0/0x4e0
[  684.677354][T15333]  should_failslab+0xac/0x100
[  684.677385][T15333]  ? __alloc_skb+0x1c3/0x440
[  684.677410][T15333]  kmem_cache_alloc_node_noprof+0x71/0x320
[  684.677456][T15333]  __alloc_skb+0x1c3/0x440
[  684.677487][T15333]  ? __pfx___alloc_skb+0x10/0x10
[  684.677515][T15333]  ? netlink_autobind+0xd6/0x2f0
[  684.677538][T15333]  ? netlink_autobind+0x2b0/0x2f0
[  684.677567][T15333]  netlink_sendmsg+0x638/0xcb0
[  684.677601][T15333]  ? __pfx_netlink_sendmsg+0x10/0x10
[  684.677628][T15333]  ? __import_iovec+0x536/0x820
[  684.777372][T15333]  ? aa_sock_msg_perm+0x91/0x160
[  684.782341][T15333]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  684.787661][T15333]  ? security_socket_sendmsg+0x87/0xb0
[  684.793141][T15333]  ? __pfx_netlink_sendmsg+0x10/0x10
[  684.798435][T15333]  __sock_sendmsg+0x221/0x270
[  684.803131][T15333]  ____sys_sendmsg+0x525/0x7d0
[  684.807922][T15333]  ? __pfx_____sys_sendmsg+0x10/0x10
[  684.813267][T15333]  __sys_sendmsg+0x2b0/0x3a0
[  684.817878][T15333]  ? __pfx___sys_sendmsg+0x10/0x10
[  684.823002][T15333]  ? vfs_write+0x7c4/0xc90
[  684.827489][T15333]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  684.833846][T15333]  ? do_syscall_64+0x100/0x230
[  684.838627][T15333]  ? do_syscall_64+0xb6/0x230
[  684.843396][T15333]  do_syscall_64+0xf3/0x230
[  684.847992][T15333]  ? clear_bhb_loop+0x35/0x90
[  684.852683][T15333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.858588][T15333] RIP: 0033:0x7fe5e0d7cef9
[  684.863013][T15333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  684.882646][T15333] RSP: 002b:00007fe5e1aa5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  684.891070][T15333] RAX: ffffffffffffffda RBX: 00007fe5e0f35f80 RCX: 00007fe5e0d7cef9
[  684.899049][T15333] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  684.907017][T15333] RBP: 00007fe5e1aa5090 R08: 0000000000000000 R09: 0000000000000000
[  684.915007][T15333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  684.922981][T15333] R13: 0000000000000000 R14: 00007fe5e0f35f80 R15: 00007fe5e105fa28
[  684.930977][T15333]  </TASK>
[  684.944772][T14987] batman_adv: batadv0: Interface activated: batadv_slave_1
[  684.961669][T14987] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  684.981780][T14987] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  684.996223][T14987] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  685.005761][T14987] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  685.127692][T15338] program syz.0.2412 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  685.316131][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.539417][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.787560][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.892062][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  685.899116][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  686.028342][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.039964][ T5235] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  686.056541][ T5235] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  686.064565][ T5235] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  686.078460][ T5235] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  686.089778][T12036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  686.104789][ T5235] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  686.113562][T12036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  686.113653][ T5235] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  686.225936][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  686.284068][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  686.314392][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  686.324541][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  686.334899][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  686.343881][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  686.352688][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  686.360259][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  686.463659][   T29] audit: type=1326 audit(1725510708.175:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  686.566878][   T12] bridge_slave_1: left allmulticast mode
[  686.583844][   T12] bridge_slave_1: left promiscuous mode
[  686.611926][   T29] audit: type=1326 audit(1725510708.175:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  686.637444][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  686.676860][   T12] bridge_slave_0: left allmulticast mode
[  686.682612][   T12] bridge_slave_0: left promiscuous mode
[  686.696215][   T29] audit: type=1326 audit(1725510708.175:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  686.696347][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  686.949942][T15370] fuse: Bad value for 'rootmode'
[  686.975074][T15370] xt_TPROXY: Can be used only with -p tcp or -p udp
[  687.008368][   T29] audit: type=1326 audit(1725510708.715:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  687.049016][   T29] audit: type=1326 audit(1725510708.715:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  687.089967][   T29] audit: type=1326 audit(1725510708.795:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  687.154425][   T29] audit: type=1326 audit(1725510708.795:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  687.190162][   T29] audit: type=1326 audit(1725510708.795:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15357 comm="syz.2.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab057cef9 code=0x7ffc0000
[  687.836661][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  687.924313][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  687.947346][   T12] bond0 (unregistering): Released all slaves
[  687.957002][T15386] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  687.972707][T15361] netlink: 'syz.0.2422': attribute type 4 has an invalid length.
[  687.981678][T15386] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  688.077819][T15367] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2422'.
[  688.098975][T15369] netlink: 'syz.0.2422': attribute type 17 has an invalid length.
[  688.216258][   T54] Bluetooth: hci1: command tx timeout
[  688.237734][ T5286] usb 3-1: new high-speed USB device number 64 using dummy_hcd
[  688.470909][ T5286] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  688.482120][ T5286] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  688.497585][ T5286] usb 3-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=22.40
[  688.506943][ T5286] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  688.518373][ T5286] usb 3-1: Product: syz
[  688.526290][   T54] Bluetooth: hci3: command tx timeout
[  688.534812][ T5286] usb 3-1: Manufacturer: syz
[  688.545059][ T5286] usb 3-1: SerialNumber: syz
[  688.554180][ T5286] usb 3-1: config 0 descriptor??
[  688.750570][   T12] hsr_slave_0: left promiscuous mode
[  688.762096][ T5286] usb 3-1: USB disconnect, device number 64
[  688.772398][   T12] hsr_slave_1: left promiscuous mode
[  688.805300][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  688.816038][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  688.845716][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  688.853826][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  688.913392][   T12] veth1_macvtap: left promiscuous mode
[  688.922538][   T12] veth0_macvtap: left promiscuous mode
[  688.935326][   T12] veth1_vlan: left promiscuous mode
[  689.655391][   T12] team0 (unregistering): Port device team_slave_1 removed
[  689.731042][   T12] team0 (unregistering): Port device team_slave_0 removed
[  690.126589][ T5286] usb 3-1: new high-speed USB device number 65 using dummy_hcd
[  690.286608][   T54] Bluetooth: hci1: command tx timeout
[  690.306331][ T5286] usb 3-1: Using ep0 maxpacket: 8
[  690.337823][ T5286] usb 3-1: config 135 has an invalid interface number: 230 but max is 0
[  690.347068][ T5286] usb 3-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  690.378651][ T5286] usb 3-1: config 135 has no interface number 0
[  690.384984][ T5286] usb 3-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  690.447548][ T5286] usb 3-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  690.467546][ T5286] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  690.475578][ T5286] usb 3-1: Product: syz
[  690.490547][ T5286] usb 3-1: Manufacturer: syz
[  690.499734][ T5286] usb 3-1: SerialNumber: syz
[  690.524877][ T5286] usb 3-1: Found UVC 0.00 device syz (18ec:3288)
[  690.532073][ T5286] usb 3-1: No valid video chain found.
[  690.615983][   T54] Bluetooth: hci3: command tx timeout
[  690.910757][T15413] tap0: tun_chr_ioctl cmd 1074025677
[  690.926388][T15413] tap0: linktype set to 778
[  691.428146][T15353] chnl_net:caif_netlink_parms(): no params data found
[  691.758656][T15359] chnl_net:caif_netlink_parms(): no params data found
[  692.114713][T15353] bridge0: port 1(bridge_slave_0) entered blocking state
[  692.144352][T15353] bridge0: port 1(bridge_slave_0) entered disabled state
[  692.189591][T15353] bridge_slave_0: entered allmulticast mode
[  692.201359][ T5235] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  692.216235][ T5235] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  692.235654][ T5235] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  692.236487][T15353] bridge_slave_0: entered promiscuous mode
[  692.254075][ T5235] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  692.263105][ T5235] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  692.272852][ T5235] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  692.337435][T15353] bridge0: port 2(bridge_slave_1) entered blocking state
[  692.344734][T15353] bridge0: port 2(bridge_slave_1) entered disabled state
[  692.353533][T15353] bridge_slave_1: entered allmulticast mode
[  692.362728][T15353] bridge_slave_1: entered promiscuous mode
[  692.368665][   T54] Bluetooth: hci1: command tx timeout
[  692.547906][T15353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  692.577367][T15359] bridge0: port 1(bridge_slave_0) entered blocking state
[  692.598100][T15359] bridge0: port 1(bridge_slave_0) entered disabled state
[  692.630243][ T5285] usb 3-1: USB disconnect, device number 65
[  692.636250][T15359] bridge_slave_0: entered allmulticast mode
[  692.637941][T15359] bridge_slave_0: entered promiscuous mode
[  692.683371][T15359] bridge0: port 2(bridge_slave_1) entered blocking state
[  692.691666][   T54] Bluetooth: hci3: command tx timeout
[  692.711158][T15359] bridge0: port 2(bridge_slave_1) entered disabled state
[  692.719971][T15359] bridge_slave_1: entered allmulticast mode
[  692.728114][T15359] bridge_slave_1: entered promiscuous mode
[  692.777887][T15353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  692.847191][T15463] netlink: 'syz.0.2441': attribute type 10 has an invalid length.
[  692.967988][ T2519] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.040845][T15353] team0: Port device team_slave_0 added
[  693.139633][T15359] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  693.141978][T15468] binder_alloc: 15467: binder_alloc_buf, no vma
[  693.160274][T15468] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2443'.
[  693.194947][T15359] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  693.284252][ T2519] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.304934][T15353] team0: Port device team_slave_1 added
[  693.454046][ T2519] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.579820][T15359] team0: Port device team_slave_0 added
[  693.587959][ T5285] usb 3-1: new high-speed USB device number 66 using dummy_hcd
[  693.603242][T15359] team0: Port device team_slave_1 added
[  693.652713][ T2519] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.713641][T15353] batman_adv: batadv0: Adding interface: batadv_slave_0
[  693.725283][T15353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  693.784444][T15353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  693.798608][ T5285] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  693.833044][ T5285] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  693.860634][ T5285] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  693.882703][ T5285] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  693.891407][ T5285] usb 3-1: SerialNumber: syz
[  693.938120][T15353] batman_adv: batadv0: Adding interface: batadv_slave_1
[  693.945099][T15353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  694.015929][T15353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  694.067144][T15359] batman_adv: batadv0: Adding interface: batadv_slave_0
[  694.114726][T15359] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  694.144311][T15480] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.2444'.
[  694.171888][T15480] openvswitch: netlink: Missing key (keys=400040, expected=200000)
[  694.187016][T15359] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  694.258325][T15359] batman_adv: batadv0: Adding interface: batadv_slave_1
[  694.270885][ T5285] usb 3-1: 0:2 : does not exist
[  694.285672][T15359] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  694.312393][ T5285] usb 3-1: unit 5: unexpected type 0x0d
[  694.331839][ T5285] usb 3-1: USB disconnect, device number 66
[  694.350646][T15359] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  694.366362][   T54] Bluetooth: hci4: command tx timeout
[  694.393373][ T9312] udevd[9312]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  694.446456][   T54] Bluetooth: hci1: command tx timeout
[  694.563302][T15359] hsr_slave_0: entered promiscuous mode
[  694.587403][T15359] hsr_slave_1: entered promiscuous mode
[  694.597136][T15359] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  694.604816][T15359] Cannot create hsr debugfs directory
[  694.637075][T15353] hsr_slave_0: entered promiscuous mode
[  694.643687][T15353] hsr_slave_1: entered promiscuous mode
[  694.650458][T15353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  694.658758][T15353] Cannot create hsr debugfs directory
[  694.767264][   T54] Bluetooth: hci3: command tx timeout
[  694.997758][T15496] program syz.0.2446 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  695.066466][ T2519] bridge_slave_1: left allmulticast mode
[  695.072669][ T2519] bridge_slave_1: left promiscuous mode
[  695.090851][ T2519] bridge0: port 2(bridge_slave_1) entered disabled state
[  695.109047][ T2519] bridge_slave_0: left allmulticast mode
[  695.114717][ T2519] bridge_slave_0: left promiscuous mode
[  695.121912][ T2519] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.131588][T15503] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  695.346667][ T5287] usb 3-1: new high-speed USB device number 67 using dummy_hcd
[  695.514092][ T5287] usb 3-1: device descriptor read/64, error -71
[  695.746845][ T2519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  695.766590][ T2519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  695.790284][ T2519] bond0 (unregistering): Released all slaves
[  695.796818][ T5287] usb 3-1: new high-speed USB device number 68 using dummy_hcd
[  695.966278][ T5287] usb 3-1: device descriptor read/64, error -71
[  696.010728][T15516] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.2452'.
[  696.026095][T15516] openvswitch: netlink: Missing key (keys=400040, expected=200000)
[  696.088619][ T5287] usb usb3-port1: attempt power cycle
[  696.088697][T15455] chnl_net:caif_netlink_parms(): no params data found
[  696.446664][   T54] Bluetooth: hci4: command tx timeout
[  696.526370][ T5287] usb 3-1: new high-speed USB device number 69 using dummy_hcd
[  696.587967][ T5287] usb 3-1: device descriptor read/8, error -71
[  696.753720][T15536] netlink: 'syz.0.2454': attribute type 4 has an invalid length.
[  696.855943][ T5287] usb 3-1: new high-speed USB device number 70 using dummy_hcd
[  696.896627][ T5287] usb 3-1: device descriptor read/8, error -71
[  696.928401][T15536] netlink: 'syz.0.2454': attribute type 4 has an invalid length.
[  696.948071][T15533] input: syz0 as /devices/virtual/input/input32
[  697.026345][ T5287] usb usb3-port1: unable to enumerate USB device
[  697.165274][ T2519] hsr_slave_0: left promiscuous mode
[  697.179299][ T2519] hsr_slave_1: left promiscuous mode
[  697.190143][ T2519] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  697.199374][ T2519] batman_adv: batadv0: Removing interface: batadv_slave_0
[  697.208848][ T2519] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  697.218394][ T2519] batman_adv: batadv0: Removing interface: batadv_slave_1
[  697.242910][ T2519] veth1_macvtap: left promiscuous mode
[  697.249055][ T2519] veth0_macvtap: left promiscuous mode
[  697.254835][ T2519] veth1_vlan: left promiscuous mode
[  697.260338][ T2519] veth0_vlan: left promiscuous mode
[  698.232491][ T2519] team0 (unregistering): Port device team_slave_1 removed
[  698.292322][ T2519] team0 (unregistering): Port device team_slave_0 removed
[  698.536407][   T54] Bluetooth: hci4: command tx timeout
[  698.849970][ T5285] usb 3-1: new full-speed USB device number 71 using dummy_hcd
[  699.026557][T15547] netlink: 'syz.2.2456': attribute type 4 has an invalid length.
[  699.055562][T15548] netlink: 'syz.2.2456': attribute type 4 has an invalid length.
[  699.087219][ T5285] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  699.117021][ T5285] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 494, setting to 64
[  699.136113][T15455] bridge0: port 1(bridge_slave_0) entered blocking state
[  699.143389][ T5285] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  699.158945][T15455] bridge0: port 1(bridge_slave_0) entered disabled state
[  699.167677][T15455] bridge_slave_0: entered allmulticast mode
[  699.175699][T15455] bridge_slave_0: entered promiscuous mode
[  699.182809][ T5285] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  699.192396][ T5285] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  699.217337][T15455] bridge0: port 2(bridge_slave_1) entered blocking state
[  699.224484][T15455] bridge0: port 2(bridge_slave_1) entered disabled state
[  699.231920][ T5285] usb 3-1: SerialNumber: syz
[  699.242643][T15553] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  699.261415][T15455] bridge_slave_1: entered allmulticast mode
[  699.275518][T15455] bridge_slave_1: entered promiscuous mode
[  699.440283][T15559] bond0: (slave caif0): Error: Device type is different from other slaves
[  699.544171][T15455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  699.588490][T15455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  699.636655][T15547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  699.679764][T15547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  699.815785][T15455] team0: Port device team_slave_0 added
[  699.843477][T15455] team0: Port device team_slave_1 added
[  699.916101][ T5290] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[  699.928244][ T5285] cdc_acm 3-1:1.0: ttyACM0: USB ACM device
[  699.942537][ T5285] usb 3-1: USB disconnect, device number 71
[  699.943854][T15359] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  699.996619][T15353] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  700.066041][T15353] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  700.079173][T15455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  700.087070][T15455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  700.113797][T15455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  700.127933][ T5290] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  700.128296][T15455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  700.148481][T15455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  700.158639][ T5290] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  700.174699][T15455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  700.195921][ T5290] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  700.204045][ T5290] usb 1-1: Product: syz
[  700.208378][ T5290] usb 1-1: Manufacturer: syz
[  700.213078][ T5290] usb 1-1: SerialNumber: syz
[  700.234798][T15563] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  700.247558][T15359] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  700.265197][T15353] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  700.350998][T15359] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  700.376848][T15353] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  700.436227][T15455] hsr_slave_0: entered promiscuous mode
[  700.443694][T15455] hsr_slave_1: entered promiscuous mode
[  700.456889][T15455] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  700.469960][T15455] Cannot create hsr debugfs directory
[  700.480256][ T5290] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[  700.524140][ T5290] usb 1-1: USB disconnect, device number 67
[  700.609330][   T30] INFO: task syz.4.1830:12925 blocked for more than 143 seconds.
[  700.617154][   T54] Bluetooth: hci4: command tx timeout
[  700.626660][   T30]       Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  700.635044][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  700.664592][   T30] task:syz.4.1830      state:D stack:24560 pid:12925 tgid:12925 ppid:11721  flags:0x00004006
[  700.686570][   T30] Call Trace:
[  700.700170][   T30]  <TASK>
[  700.703153][   T30]  __schedule+0x1800/0x4a60
[  700.725054][   T30]  ? __pfx___schedule+0x10/0x10
[  700.775947][   T30]  ? __pfx_lock_release+0x10/0x10
[  700.781060][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  700.812539][   T30]  ? schedule+0x90/0x320
[  700.827055][   T30]  schedule+0x14b/0x320
[  700.831273][   T30]  schedule_preempt_disabled+0x13/0x30
[  700.854504][   T30]  __mutex_lock+0x6a4/0xd70
[  700.864314][   T30]  ? __mutex_lock+0x527/0xd70
[  700.876091][   T30]  ? hugetlb_wp+0x104d/0x3a90
[  700.880829][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  700.895991][   T30]  ? __pfx_up_write+0x10/0x10
[  700.900718][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  700.915896][   T30]  ? vma_interval_tree_iter_next+0x193/0x340
[  700.932545][   T30]  hugetlb_wp+0x104d/0x3a90
[  700.946986][   T30]  ? __pfx_hugetlb_wp+0x10/0x10
[  700.951880][   T30]  ? __pfx___might_resched+0x10/0x10
[  700.957330][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  700.962495][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  700.975978][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  700.981423][   T30]  ? __filemap_get_folio+0x769/0xc10
[  700.995986][   T30]  hugetlb_fault+0x27b2/0x3770
[  701.000841][   T30]  ? __pfx_hugetlb_fault+0x10/0x10
[  701.006231][   T30]  ? reacquire_held_locks+0x3eb/0x690
[  701.011656][   T30]  ? __pfx_reacquire_held_locks+0x10/0x10
[  701.017931][   T30]  handle_mm_fault+0x1901/0x1bc0
[  701.022930][   T30]  ? mtree_range_walk+0x6fd/0x8e0
[  701.028290][   T30]  ? __pfx_lock_release+0x10/0x10
[  701.033375][   T30]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  701.038915][   T30]  ? __pfx_handle_mm_fault+0x10/0x10
[  701.044394][   T30]  ? lock_vma_under_rcu+0x592/0x6e0
[  701.050876][   T30]  ? lock_vma_under_rcu+0x18a/0x6e0
[  701.062029][   T30]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  701.069955][   T30]  ? exc_page_fault+0x113/0x8c0
[  701.074867][   T30]  exc_page_fault+0x459/0x8c0
[  701.086331][   T30]  asm_exc_page_fault+0x26/0x30
[  701.091249][   T30] RIP: 0033:0x7feccf14497c
[  701.095702][   T30] RSP: 002b:00007feccf45fb88 EFLAGS: 00010246
[  701.105946][ T5290] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[  701.123269][   T30] RAX: 0000000020000d00 RBX: 0000000000000004 RCX: 8000000000000010
[  701.131574][   T30] RDX: 0000000000000010 RSI: 00007feccec005d5 RDI: 0000000020000d00
[  701.145952][   T30] RBP: 00007feccf337a80 R08: 00007feccf000000 R09: 0000000000000001
[  701.153974][   T30] R10: 0000000000000001 R11: 0000000000000009 R12: 0000000000083c30
[  701.180212][   T30] R13: 00007feccf45fc90 R14: 0000000000000032 R15: fffffffffffffffe
[  701.188617][   T30]  </TASK>
[  701.199090][T15359] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.211979][   T30] INFO: task syz.4.1830:12926 blocked for more than 143 seconds.
[  701.225393][   T30]       Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  701.245487][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  701.274659][   T30] task:syz.4.1830      state:D stack:24496 pid:12926 tgid:12925 ppid:11721  flags:0x00004006
[  701.306868][   T30] Call Trace:
[  701.310219][   T30]  <TASK>
[  701.313190][   T30]  __schedule+0x1800/0x4a60
[  701.355952][   T30]  ? __pfx___schedule+0x10/0x10
[  701.360891][   T30]  ? __pfx_lock_release+0x10/0x10
[  701.386027][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  701.392102][   T30]  ? schedule+0x90/0x320
[  701.422515][   T30]  schedule+0x14b/0x320
[  701.445998][   T30]  io_schedule+0x8d/0x110
[  701.456043][   T30]  folio_wait_bit_common+0x882/0x12b0
[  701.461520][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  701.487695][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  701.493301][   T30]  ? _raw_spin_unlock+0x28/0x50
[  701.525980][   T30]  ? __vma_reservation_common+0x498/0x7d0
[  701.531865][   T30]  __filemap_get_folio+0xb7/0xc10
[  701.546017][   T30]  hugetlb_fault+0x1b72/0x3770
[  701.550955][   T30]  ? __pfx_hugetlb_fault+0x10/0x10
[  701.566356][   T30]  ? mt_find+0x226/0x850
[  701.570654][   T30]  ? __pfx_lock_release+0x10/0x10
[  701.575734][   T30]  handle_mm_fault+0x1901/0x1bc0
[  701.594994][   T30]  ? mt_find+0x62d/0x850
[  701.604139][   T30]  ? mt_find+0x226/0x850
[  701.609108][   T30]  ? __pfx_mt_find+0x10/0x10
[  701.613743][   T30]  ? __pfx_handle_mm_fault+0x10/0x10
[  701.633777][   T30]  ? find_vma+0xf9/0x170
[  701.638556][   T30]  ? __pfx_find_vma+0x10/0x10
[  701.643289][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  701.662370][   T30]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  701.668307][   T30]  exc_page_fault+0x2b9/0x8c0
[  701.673025][   T30]  asm_exc_page_fault+0x26/0x30
[  701.678570][   T30] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  701.684421][   T30] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  701.704544][   T30] RSP: 0018:ffffc90009e7fad0 EFLAGS: 00050246
[  701.712285][   T30] RAX: ffffffff84b28d01 RBX: 0000000020010640 RCX: 0000000000000040
[  701.720664][   T30] RDX: 0000000000000000 RSI: ffffc90009e7fb60 RDI: 0000000020010600
[  701.730089][   T30] RBP: ffffc90009e7fc10 R08: ffffc90009e7fb9f R09: 1ffff920013cff73
[  701.739297][   T30] R10: dffffc0000000000 R11: fffff520013cff74 R12: 0000000000000040
[  701.747634][   T30] R13: 000000000000ffc0 R14: 0000000020010600 R15: ffffc90009e7fb60
[  701.755637][   T30]  ? _copy_to_user+0x11/0xb0
[  701.761037][   T30]  _copy_to_user+0x86/0xb0
[  701.765520][   T30]  rng_dev_read+0x3be/0x6d0
[  701.770660][   T30]  ? __pfx_rng_dev_read+0x10/0x10
[  701.775742][   T30]  ? security_file_permission+0x7f/0xa0
[  701.781931][   T30]  ? rw_verify_area+0x52a/0x6b0
[  701.787121][   T30]  vfs_readv+0x6c2/0xa90
[  701.791468][   T30]  ? __pfx_rng_dev_read+0x10/0x10
[  701.797185][   T30]  ? __pfx_vfs_readv+0x10/0x10
[  701.802029][   T30]  ? __fget_files+0x29/0x470
[  701.807435][   T30]  __x64_sys_preadv+0x1c7/0x2d0
[  701.812339][   T30]  ? __pfx___x64_sys_preadv+0x10/0x10
[  701.819704][   T30]  ? do_syscall_64+0x100/0x230
[  701.824510][   T30]  ? do_syscall_64+0xb6/0x230
[  701.829783][   T30]  do_syscall_64+0xf3/0x230
[  701.834334][   T30]  ? clear_bhb_loop+0x35/0x90
[  701.840671][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.847540][   T30] RIP: 0033:0x7feccf17cef9
[  701.852003][   T30] RSP: 002b:00007feccff03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  701.861262][   T30] RAX: ffffffffffffffda RBX: 00007feccf335f80 RCX: 00007feccf17cef9
[  701.869688][   T30] RDX: 0000000000000002 RSI: 0000000020000580 RDI: 0000000000000005
[  701.878092][   T30] RBP: 00007feccf1ef01e R08: 0000000000000000 R09: 0000000000000000
[  701.888074][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  701.896593][   T30] R13: 0000000000000000 R14: 00007feccf335f80 R15: 00007feccf45fa28
[  701.904647][   T30]  </TASK>
[  701.908274][   T30] INFO: task syz.4.1830:12927 blocked for more than 144 seconds.
[  701.916282][   T30]       Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  701.923951][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  701.933980][   T30] task:syz.4.1830      state:D stack:23680 pid:12927 tgid:12925 ppid:11721  flags:0x00004006
[  701.944333][   T30] Call Trace:
[  701.948928][   T30]  <TASK>
[  701.951902][   T30]  __schedule+0x1800/0x4a60
[  701.956727][   T30]  ? __pfx___schedule+0x10/0x10
[  701.961761][   T30]  ? __pfx_lock_release+0x10/0x10
[  701.976351][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  701.981883][   T30]  ? schedule+0x90/0x320
[  701.986251][   T30]  schedule+0x14b/0x320
[  701.990463][   T30]  schedule_preempt_disabled+0x13/0x30
[  701.996122][   T30]  __mutex_lock+0x6a4/0xd70
[  702.000667][   T30]  ? finish_task_switch+0x1e5/0x870
[  702.006166][   T30]  ? __mutex_lock+0x527/0xd70
[  702.010889][   T30]  ? hugetlb_fault+0x56f/0x3770
[  702.015781][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  702.021049][   T30]  ? __schedule+0x1808/0x4a60
[  702.025781][   T30]  hugetlb_fault+0x56f/0x3770
[  702.030561][   T30]  ? __pfx_validate_chain+0x10/0x10
[  702.037020][   T30]  ? __pfx_hugetlb_fault+0x10/0x10
[  702.042206][   T30]  ? mt_find+0x226/0x850
[  702.046942][   T30]  ? __pfx_lock_release+0x10/0x10
[  702.052032][   T30]  handle_mm_fault+0x1901/0x1bc0
[  702.058108][   T30]  ? mt_find+0x62d/0x850
[  702.062400][   T30]  ? mt_find+0x226/0x850
[  702.066910][   T30]  ? __pfx_mt_find+0x10/0x10
[  702.071547][   T30]  ? __pfx_handle_mm_fault+0x10/0x10
[  702.077043][   T30]  ? find_vma+0xf9/0x170
[  702.081332][   T30]  ? __pfx_find_vma+0x10/0x10
[  702.086134][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  702.092161][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  702.098686][   T30]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  702.104030][   T30]  exc_page_fault+0x2b9/0x8c0
[  702.108849][   T30]  asm_exc_page_fault+0x26/0x30
[  702.113741][   T30] RIP: 0010:__put_user_8+0x11/0x20
[  702.119108][   T30] Code: 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  702.139014][   T30] RSP: 0018:ffffc90009557778 EFLAGS: 00050202
[  702.145120][   T30] RAX: 0000000000800000 RBX: 0000000000000000 RCX: 0000000020000020
[  702.154333][   T30] RDX: 0000000000000000 RSI: ffffffff8c0ae6e0 RDI: ffffffff8c608d40
[  702.162549][   T30] RBP: ffffc90009557ec8 R08: ffffffff90186f2f R09: 1ffffffff2030de5
[  702.171831][   T30] R10: dffffc0000000000 R11: fffffbfff2030de6 R12: 1ffff920012aaf7d
[  702.180063][   T30] R13: 1ffff920012aaf08 R14: 0000000020800000 R15: 0000000000800000
[  702.188183][   T30]  userfaultfd_ioctl+0x28e7/0x70a0
[  702.193362][   T30]  ? stack_trace_save+0x118/0x1d0
[  702.198585][   T30]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  702.204094][   T30]  ? stack_depot_save_flags+0x29/0x830
[  702.209757][   T30]  ? kasan_save_track+0x51/0x80
[  702.214651][   T30]  ? kasan_save_track+0x3f/0x80
[  702.219655][   T30]  ? kasan_save_free_info+0x40/0x50
[  702.224900][   T30]  ? poison_slab_object+0xe0/0x150
[  702.230210][   T30]  ? __kasan_slab_free+0x37/0x60
[  702.235188][   T30]  ? kfree+0x149/0x360
[  702.239460][   T30]  ? tomoyo_path_number_perm+0x68d/0x880
[  702.245138][   T30]  ? security_file_ioctl+0x75/0xb0
[  702.250370][   T30]  ? __se_sys_ioctl+0x47/0x170
[  702.255199][   T30]  ? do_syscall_64+0xf3/0x230
[  702.261636][   T30]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.267934][   T30]  ? do_vfs_ioctl+0xf0e/0x2e50
[  702.272895][   T30]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  702.279166][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  702.285549][   T30]  ? tomoyo_path_number_perm+0x208/0x880
[  702.291474][   T30]  ? __pfx_lock_release+0x10/0x10
[  702.296792][   T30]  ? kfree+0x149/0x360
[  702.300905][   T30]  ? tomoyo_path_number_perm+0x208/0x880
[  702.306663][   T30]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  702.312721][   T30]  ? __fget_files+0x29/0x470
[  702.317513][   T30]  ? __fget_files+0x3f6/0x470
[  702.322236][   T30]  ? __fget_files+0x29/0x470
[  702.326907][   T30]  ? bpf_lsm_file_ioctl+0x9/0x10
[  702.331894][   T30]  ? security_file_ioctl+0x87/0xb0
[  702.337165][   T30]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  702.342664][   T30]  __se_sys_ioctl+0xfc/0x170
[  702.347386][   T30]  do_syscall_64+0xf3/0x230
[  702.351911][   T30]  ? clear_bhb_loop+0x35/0x90
[  702.356804][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.362747][   T30] RIP: 0033:0x7feccf17cef9
[  702.368633][   T30] RSP: 002b:00007feccfee2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.377443][   T30] RAX: ffffffffffffffda RBX: 00007feccf336058 RCX: 00007feccf17cef9
[  702.385568][   T30] RDX: 0000000020000000 RSI: 00000000c028aa03 RDI: 0000000000000009
[  702.394760][   T30] RBP: 00007feccf1ef01e R08: 0000000000000000 R09: 0000000000000000
[  702.402956][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  702.411069][   T30] R13: 0000000000000000 R14: 00007feccf336058 R15: 00007feccf45fa28
[  702.419240][   T30]  </TASK>
[  702.422885][   T30] 
[  702.422885][   T30] Showing all locks held in the system:
[  702.466561][   T30] 1 lock held by khungtaskd/30:
[  702.471465][   T30]  #0: ffffffff8e938320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  702.516213][   T30] 6 locks held by kworker/u8:2/35:
[  702.521365][   T30]  #0: ffff88801bae5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  702.550799][   T30]  #1: ffffc90000ab7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  702.575993][   T30]  #2: ffffffff8fc7f190 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  702.585533][   T30]  #3: ffffffff8fc8bd48 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0
[  702.595579][   T30]  #4: ffff888032809428 (&wg->device_update_lock){+.+.}-{3:3}, at: wg_netns_pre_exit+0xba/0x1e0
[  702.608912][   T30]  #5: ffffffff8e93d6f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  702.620005][   T30] 2 locks held by kworker/u8:6/2519:
[  702.625316][   T30]  #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  702.638384][   T30]  #1: ffff8880b8828948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x3a7/0x770
[  702.650216][   T30] 2 locks held by dhcpcd/4901:
[  702.655016][   T30]  #0: ffff888029d82678 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  702.665634][   T30]  #1: ffffffff8fc8bd48 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  702.674582][   T30] 2 locks held by getty/4998:
[  702.685272][   T30]  #0: ffff888030aeb0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  702.695205][   T30]  #1: ffffc9000312b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00
[  702.705707][   T30] 5 locks held by kworker/0:7/5290:
[  702.711054][   T30]  #0: ffff888020ec4d48 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  702.724710][   T30]  #1: ffffc900042efd00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  702.736819][   T30]  #2: ffff8880291d5190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1fe/0x5150
[  702.745790][   T30]  #3: ffff888029200518 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x25b9/0x5150
[  702.765638][   T30]  #4: ffff888028c81968 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x25f7/0x5150
[  702.776161][   T30] 2 locks held by syz.4.1830/12925:
[  702.781533][   T30]  #0: ffff888035472a90 (&vma->vm_lock->lock){++++}-{3:3}, at: lock_vma_under_rcu+0x2f9/0x6e0
[  702.791974][   T30]  #1: ffff888020aec338 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: hugetlb_wp+0x104d/0x3a90
[  702.802780][   T30] 3 locks held by syz.4.1830/12926:
[  702.808080][   T30]  #0: ffff88807ede6a18 (&mm->mmap_lock){++++}-{3:3}, at: mmap_read_lock_killable+0x1d/0x70
[  702.818395][   T30]  #1: ffff888020aec338 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: hugetlb_fault+0x56f/0x3770
[  702.831454][   T30]  #2: ffff8880278710e8 (&resv_map->rw_sema){++++}-{3:3}, at: hugetlb_fault+0x675/0x3770
[  702.841516][   T30] 2 locks held by syz.4.1830/12927:
[  702.847126][   T30]  #0: ffff88807ede6a18 (&mm->mmap_lock){++++}-{3:3}, at: lock_mm_and_find_vma+0x32/0x2f0
[  702.857330][   T30]  #1: ffff888020aec338 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: hugetlb_fault+0x56f/0x3770
[  702.868235][   T30] 7 locks held by syz-executor/15359:
[  702.873624][   T30]  #0: ffff888035586420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90
[  702.882947][   T30]  #1: ffff888079d80c88 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500
[  702.892874][   T30]  #2: ffff888027fcd0f8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500
[  702.903143][   T30]  #3: ffffffff8f526348 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  702.913563][   T30]  #4: ffff8880296440e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  702.924389][   T30]  #5: ffff888029646250 (&devlink->lock_key#32){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  702.935416][   T30]  #6: ffffffff8fc8bd48 (rtnl_mutex){+.+.}-{3:3}, at: unregister_netdevice_notifier_net+0x89/0x3a0
[  702.948751][   T30] 4 locks held by syz.0.2460/15562:
[  702.953992][   T30]  #0: ffff888060f38d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510
[  702.964075][   T30]  #1: ffff888060f38078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x572/0x11a0
[  702.973948][   T30]  #2: ffffffff8fdf7828 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240
[  702.984127][   T30]  #3: ffffffff8e93d6f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  702.995355][   T30] 
[  702.998015][   T30] =============================================
[  702.998015][   T30] 
[  703.028796][   T30] NMI backtrace for cpu 1
[  703.033190][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  703.043713][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  703.053792][   T30] Call Trace:
[  703.057091][   T30]  <TASK>
[  703.060045][   T30]  dump_stack_lvl+0x241/0x360
[  703.064761][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  703.069989][   T30]  ? __pfx__printk+0x10/0x10
[  703.074607][   T30]  ? vprintk_emit+0x667/0x7c0
[  703.079317][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[  703.084432][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  703.089421][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  703.094911][   T30]  ? _printk+0xd5/0x120
[  703.099106][   T30]  ? __pfx__printk+0x10/0x10
[  703.103714][   T30]  ? __wake_up_klogd+0xcc/0x110
[  703.108591][   T30]  ? __pfx__printk+0x10/0x10
[  703.113206][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  703.118260][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  703.124274][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  703.130289][   T30]  watchdog+0xff4/0x1040
[  703.134603][   T30]  ? watchdog+0x1ea/0x1040
[  703.139083][   T30]  ? __pfx_watchdog+0x10/0x10
[  703.143788][   T30]  kthread+0x2f0/0x390
[  703.147874][   T30]  ? __pfx_watchdog+0x10/0x10
[  703.152576][   T30]  ? __pfx_kthread+0x10/0x10
[  703.157194][   T30]  ret_from_fork+0x4b/0x80
[  703.161636][   T30]  ? __pfx_kthread+0x10/0x10
[  703.166248][   T30]  ret_from_fork_asm+0x1a/0x30
[  703.171060][   T30]  </TASK>
[  703.175197][   T30] Sending NMI from CPU 1 to CPUs 0:
[  703.180524][    C0] NMI backtrace for cpu 0
[  703.180538][    C0] CPU: 0 UID: 0 PID: 15353 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  703.180563][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  703.180574][    C0] RIP: 0010:preempt_count_add+0x8b/0x190
[  703.180601][    C0] Code: 18 00 75 11 65 8b 05 0c d7 a0 7e 0f b6 c0 3d f5 00 00 00 73 5e 65 8b 05 fb d6 a0 7e 25 ff ff ff 7f 39 d8 75 44 4c 8b 74 24 18 <4c> 89 f7 e8 ad 1c 0e 00 85 c0 74 0a 45 31 f6 31 ff e8 9f 1c 0e 00
[  703.180618][    C0] RSP: 0018:ffffc90003f673e0 EFLAGS: 00000246
[  703.180635][    C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff9a33b903
[  703.180648][    C0] RDX: ffff8880402b0000 RSI: 0000000000000001 RDI: 0000000000000001
[  703.180661][    C0] RBP: ffffc90003f67540 R08: ffffffff814127f1 R09: 0000000000000000
[  703.180675][    C0] R10: ffffc90003f67540 R11: fffff520007eceb4 R12: ffffc90003f675d8
[  703.180690][    C0] R13: dffffc0000000000 R14: ffffffff81412811 R15: dffffc0000000000
[  703.180709][    C0] FS:  0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000
[  703.180725][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  703.180739][    C0] CR2: 00007ffc03bb5ec8 CR3: 000000006e1d2000 CR4: 00000000003506f0
[  703.180756][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  703.180768][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  703.180780][    C0] Call Trace:
[  703.180788][    C0]  <NMI>
[  703.180795][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  703.180820][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  703.180848][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  703.180872][    C0]  ? nmi_handle+0x2a/0x5a0
[  703.180899][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  703.180922][    C0]  ? nmi_handle+0x14f/0x5a0
[  703.180939][    C0]  ? nmi_handle+0x2a/0x5a0
[  703.180958][    C0]  ? preempt_count_add+0x8b/0x190
[  703.180980][    C0]  ? default_do_nmi+0x63/0x160
[  703.181004][    C0]  ? exc_nmi+0x123/0x1f0
[  703.181028][    C0]  ? end_repeat_nmi+0xf/0x53
[  703.181051][    C0]  ? unwind_next_frame+0xc1/0x2a00
[  703.181081][    C0]  ? unwind_next_frame+0xa1/0x2a00
[  703.181110][    C0]  ? preempt_count_add+0x8b/0x190
[  703.181132][    C0]  ? preempt_count_add+0x8b/0x190
[  703.181156][    C0]  ? preempt_count_add+0x8b/0x190
[  703.181178][    C0]  </NMI>
[  703.181185][    C0]  <TASK>
[  703.181192][    C0]  ? __unwind_start+0x2bc/0x7c0
[  703.181217][    C0]  unwind_next_frame+0xc1/0x2a00
[  703.181245][    C0]  ? __pfx_validate_chain+0x10/0x10
[  703.181263][    C0]  ? __lock_acquire+0x137a/0x2040
[  703.181290][    C0]  ? get_stack_info_noinstr+0x1a/0x130
[  703.181327][    C0]  ? get_stack_info+0x102/0x180
[  703.181353][    C0]  __unwind_start+0x641/0x7c0
[  703.181382][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  703.181406][    C0]  arch_stack_walk+0x103/0x1b0
[  703.181427][    C0]  ? __unwind_start+0x2bc/0x7c0
[  703.181457][    C0]  stack_trace_save+0x118/0x1d0
[  703.181481][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  703.181510][    C0]  save_stack+0xfb/0x1f0
[  703.181534][    C0]  ? __pfx_save_stack+0x10/0x10
[  703.181564][    C0]  ? page_ext_get+0x20/0x2a0
[  703.181590][    C0]  __reset_page_owner+0x76/0x430
[  703.181618][    C0]  free_unref_page+0xd22/0xea0
[  703.181647][    C0]  vfree+0x186/0x2e0
[  703.181675][    C0]  kcov_close+0x2b/0x50
[  703.181703][    C0]  ? __pfx_kcov_close+0x10/0x10
[  703.181726][    C0]  __fput+0x24a/0x8a0
[  703.181759][    C0]  task_work_run+0x24f/0x310
[  703.181781][    C0]  ? __pfx_task_work_run+0x10/0x10
[  703.181801][    C0]  ? do_exit+0xa2a/0x27f0
[  703.181816][    C0]  ? kmem_cache_free+0x145/0x350
[  703.181838][    C0]  do_exit+0xa2f/0x27f0
[  703.181859][    C0]  ? __pfx_do_exit+0x10/0x10
[  703.181876][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  703.181900][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  703.181926][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  703.181949][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  703.181979][    C0]  do_group_exit+0x207/0x2c0
[  703.181996][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  703.182021][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  703.182040][    C0]  get_signal+0x16a1/0x1740
[  703.182068][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  703.182090][    C0]  ? __pfx_get_signal+0x10/0x10
[  703.182116][    C0]  arch_do_signal_or_restart+0x96/0x860
[  703.182142][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  703.182164][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  703.182196][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  703.182216][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  703.182236][    C0]  do_syscall_64+0x100/0x230
[  703.182255][    C0]  ? clear_bhb_loop+0x35/0x90
[  703.182280][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.182302][    C0] RIP: 0033:0x7f8537b7ed8c
[  703.182316][    C0] Code: Unable to access opcode bytes at 0x7f8537b7ed62.
[  703.182325][    C0] RSP: 002b:00007f8537e5f630 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  703.182343][    C0] RAX: 0000000000000020 RBX: 00007f8538864620 RCX: 00007f8537b7ed8c
[  703.182356][    C0] RDX: 0000000000000020 RSI: 00007f8538864670 RDI: 0000000000000003
[  703.182368][    C0] RBP: 0000000000000000 R08: 00007f8537e5f684 R09: 000000000000000c
[  703.182379][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  703.182390][    C0] R13: 0000000000000000 R14: 00007f8538864670 R15: 0000000000000000
[  703.182411][    C0]  </TASK>
[  703.186014][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  703.186033][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  703.186062][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  703.186077][   T30] Call Trace:
[  703.186099][   T30]  <TASK>
[  703.186110][   T30]  dump_stack_lvl+0x241/0x360
[  703.186142][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  703.186169][   T30]  ? __pfx__printk+0x10/0x10
[  703.186190][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  703.186231][   T30]  ? vscnprintf+0x5d/0x90
[  703.186273][   T30]  panic+0x349/0x860
[  703.186297][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  703.186327][   T30]  ? __pfx_panic+0x10/0x10
[  703.186346][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  703.186372][   T30]  ? __irq_work_queue_local+0x137/0x410
[  703.186404][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  703.186428][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  703.186463][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  703.186494][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  703.186526][   T30]  watchdog+0x1033/0x1040
[  703.186558][   T30]  ? watchdog+0x1ea/0x1040
[  703.186595][   T30]  ? __pfx_watchdog+0x10/0x10
[  703.186625][   T30]  kthread+0x2f0/0x390
[  703.186645][   T30]  ? __pfx_watchdog+0x10/0x10
[  703.186675][   T30]  ? __pfx_kthread+0x10/0x10
[  703.186697][   T30]  ret_from_fork+0x4b/0x80
[  703.186726][   T30]  ? __pfx_kthread+0x10/0x10
[  703.186747][   T30]  ret_from_fork_asm+0x1a/0x30
[  703.186792][   T30]  </TASK>
[  703.190453][   T30] Kernel Offset: disabled
[  703.855469][   T30] Rebooting in 86400 seconds..