last executing test programs:

10.911917627s ago: executing program 2 (id=3580):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ustat(0x801, &(0x7f0000000300))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r4, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f0000000180)={0x6, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @loopback}}}, 0x108)
setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f00000009c0)={0x6, {{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0xffff, @empty}}}, 0x108)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x0, 0xa, 0x148, 0x190, 0x10, 0x3e8, 0x2a8, 0x2a8, 0x3e8, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'syz_tun\x00', 'rose0\x00'}, 0x0, 0x120, 0x190, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'dummy0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58}, {'pim6reg0\x00', {0x0, 0x0, 0x10001, 0x0, 0x8, 0x6, 0xa359e000}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @multicast2, 0x0, 0x0, 'pimreg1\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x360)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xffff, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_int(r0, 0x11a, 0x3, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

10.543361003s ago: executing program 1 (id=3583):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x4, 0x800)
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = memfd_create(&(0x7f0000000280)='%\x00', 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x200000f, 0x4002012, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r2 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@ipv4_delrule={0x24, 0x21, 0x501, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x5}, [@FRA_FLOW={0x8}]}, 0x24}}, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330")
ptrace$getregset(0x4204, r3, 0x2, &(0x7f0000000740)={0x0, 0x600})
r4 = getuid()
setresuid(0x0, r4, 0x0)
read$FUSE(r0, &(0x7f0000002a40)={0x2020}, 0x2020)
getuid()
read$FUSE(r0, 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000940)={0x6, 0x10001, {0xffffffffffffffff}, {0xee01}, 0x3, 0x9})
getresgid(&(0x7f0000000980), &(0x7f0000006b80), &(0x7f0000006bc0))

9.462784957s ago: executing program 1 (id=3586):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x3, 0x40000}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffcb2, &(0x7f0000000800)=0x9)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x4000000000080002, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00'})
open(0x0, 0x400141042, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
r6 = syz_open_dev$rtc(&(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_WKALM_RD(r6, 0x80287010, &(0x7f00000001c0))

8.493844771s ago: executing program 3 (id=3589):
creat(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
mknodat(r3, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c)
chmod(&(0x7f0000000080)='./file1\x00', 0x0)
unlink(&(0x7f0000000040)='./file0/file0\x00')
unlink(&(0x7f0000000180)='./file1\x00')
r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f0000000100)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000300)='.\x00', 0x10000, 0x0)
renameat2(r6, &(0x7f00000004c0)='./bus\x00', r4, &(0x7f0000000500)='./file0\x00', 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

8.351424977s ago: executing program 4 (id=3590):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ustat(0x801, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r5, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_group_source_req(r5, 0x0, 0x2e, &(0x7f0000000180)={0x6, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @loopback}}}, 0x108)
setsockopt$inet_group_source_req(r5, 0x0, 0x2e, &(0x7f00000009c0)={0x6, {{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0xffff, @empty}}}, 0x108)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x0, 0xa, 0x148, 0x190, 0x10, 0x3e8, 0x2a8, 0x2a8, 0x3e8, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'syz_tun\x00', 'rose0\x00'}, 0x0, 0x120, 0x190, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'dummy0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58}, {'pim6reg0\x00', {0x0, 0x0, 0x10001, 0x0, 0x8, 0x6, 0xa359e000}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @multicast2, 0x0, 0x0, 'pimreg1\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x360)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000091c2f20c81403006c050102030109021b"], 0x0)
preadv(r1, 0x0, 0x0, 0xffff, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_int(r0, 0x11a, 0x3, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

8.027227591s ago: executing program 0 (id=3592):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
r0 = socket(0x2b, 0x1, 0x1)
sendmmsg$sock(r0, &(0x7f0000001280)=[{{&(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}}], 0x1, 0x20000001)
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x8)
connect$netlink(r0, &(0x7f0000000000)=@unspec, 0xc)
r1 = socket$packet(0x11, 0x1, 0x300)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r3 = dup(r2)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000580)={0x0, 0x0, 0x800, 0x0, 0xfffffffc}, &(0x7f00006d5000), &(0x7f0000216000))
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x28}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = dup(0xffffffffffffffff)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000015c0)=[{0x0}], 0x1, 0x0, 0x0)
r7 = openat$sequencer(0xffffff9c, &(0x7f0000000480), 0x0, 0x0)
ioctl$SNDCTL_SEQ_NRMIDIS(r7, 0xc0046d00, &(0x7f0000001500))
r8 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r6, 0x0, 0x25, 0x9, @void}, 0x10)
bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r8}, 0x8)
ioctl$VIDIOC_SUBDEV_S_FMT(r6, 0xc0585605, &(0x7f0000000540)={0x1, 0x0, {0x7fffffff, 0x6, 0x8de22d93ebb8e84c, 0x1, 0xc, 0x1}})
bind$inet(r5, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10)
sendmmsg$inet(r5, &(0x7f0000003240)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001380)="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", 0x11a}, {&(0x7f0000000100)="518cf9568a61ae87f9de3c2b054e3642447422ed8ab8e2d292b9e8f1", 0x1c}, {&(0x7f0000000380)="5132ac5e8205378f905fac4b0f7b0ad4ff080df00b5a6655e32124d51a45ebebdf4a86101587d502357bfc43f44098742b83caede42f6e007330dc8ab67371c65d39bc126b8f9bf17dce0ba9d14f263efa7056bb8a0291a4842e42342519a9e795b7d8aee13edfa09bd3f9ae3bdc4c2dccc274c0cf4fe85fa17f46ff8c017571490f296ef2ea1cf31486bd4167bb33cb9a5e1f96de2ee8af5074695ddf5d1ec4d17c9508cdd9e77ec5bc62a820e263a31521f0b9031c9e1e1491f0c99b44960df2aaee22480355aa20d280d1ed54ae539055ca1e20a57f81db185fa207", 0xdd}, {&(0x7f0000000280)="661da68e4cccac69431df174bbce91246fce262b3de6a53334d329a142ae0f304e4fbde8fab4d68bedcd182b41227278c65f7de3723a93dbbaeb901b447fb35a9f3f4b671a3e3929c119f9deec5e46cdbe5cac679cad88c9aa61bc7ffd219a18b36ef0bf5ca45da80aa46274c5cda17a4b8588c492dcdd43dee797fe7debf7c1143177d4f4b02255ca5a46", 0x8b}], 0x4}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)="72126509caec095807090dba7a3967d9884ce638db1b533a4b22559bf9166ba1568930c85350c8e4c4bc40d2f21c8042ef5f78d0c8450382c66ea27d01387272ddb6350a1b9df7af8dc636bd2a4e14c5ead6ff46562bbb74e63c835b9827f0b5be88de7ea0b09ad394495e7a2e45da891ae90f972844a04ac9427903a3102cc8ec0030873c527172f369fc7d7ebe01950d7c3c1a1df3b5c2c7940b81f27ed3e5bbb9db01d84e36e67763cde8eb69ed38a8401e2c6daa808897bf60b8b795aac9afe46e918edb28ea6fe06a6afcfad209e55826dc2000a46b358665fdfee08e82c24a22ef3e7c3a54", 0xe8}], 0x1}}, {{0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000003040)="9b94bd4f7c3a6ece62bebec3ebc3f6245c2cf71ebb80b25d12176c9248f03c509f9c9efa61aac34738d5eb54550e4ee1a5e35c2b82abfcd8c84c175b38e97da83e872522954d2a5ec48d8fa0f5363f20ca098ee73815ead5dccd3b1bd88c69cc612a19197857d16407c95aad3267a5e215e5286ad9499090ad01695dda8a723c7a9527739b30e773846d51649d2a12c74347e388d2f2e1b18131aafb21f42775673001247846a3cedff1d0c0f8c890fdd89f8043a1e1c23624799d60d25f9e4e2f24baae9a3eb60e5bda0c03d1fabb1733cc68d868432a874c5b93efb3eec7aa1db3482fe3d7f644b4afad6e623cf239b49191afda5cd7e9628ac5cfec755cc9e966c07869c4830e0bafab970c7eca46a4f3af4d753d9dedcc0612ff49a2fd599c84df464ff3c58630d07c2611eb", 0x12e}, {&(0x7f0000000740)="b8d472bcf9", 0x5}, {&(0x7f0000000bc0)="ebb4431e47a08e69be39d99a05e164370fea19918eda462585b3e7d878eab91929a2929e0c3d931b038606966c61ca9cb8691a4b8ff9eb5f4236355b275ae5db5cdd3dd74f0b442723d7c839f08eabfcdcdf92b8b8ccfdda4f3410e0bb79", 0x5e}, {&(0x7f0000000900)="79a5ab1a0f9d91cfde8f26d84e989a7f13232cff8a084fdb400fe2092c2396051c32b0689f415a6b36647bd3072f2c326f78eaffb66d50b1f9b44eab40bd546e7ff8b43dd2e179857398e9c78c53b9e98941e7e870bee89f6dc90febbee5456bbb93000cfd62257b62804b4eb4ed0e9b8c6f3702ab333ef840acd1aa9fa01a967eb19b17fe01945f32bc9f890b23f5b45204f3cf83fee26c98eabfe0", 0x9c}, {&(0x7f0000000dc0)}], 0x5}}], 0x4, 0x2000c044)
setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f00000000c0)='wg0\x00', 0x4)
sendto$inet(r5, &(0x7f00000004c0)='\x00', 0xfc2c, 0x5, 0x0, 0x0)

7.546549512s ago: executing program 0 (id=3593):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$SIOCAX25DELUID(r0, 0x89e2, &(0x7f0000000000)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_IRQP_SET(r0, 0x4008700c, 0x176d)

7.358550456s ago: executing program 1 (id=3594):
syz_open_dev$media(&(0x7f0000000640), 0x0, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
socket$rds(0x15, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x3, 0x10004, 0x5}, 0x48)
close(0x3)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
sched_setscheduler(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0xfffffffffffffffc, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$getownex(r2, 0x10, &(0x7f0000002080)={0x0, <r3=>0x0})
ptrace$ARCH_MAP_VDSO_64(0x1e, r3, 0x4, 0x2003)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3d0, 0x0, 0x0, 0x1d8, 0x2e8, 0x2e8, 0x2e8, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="eaa334dd81ea"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bond0\x00', 'bridge0\x00'}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x1d8}}, {{@arp={@private, @local, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'batadv0\x00', 'veth0_vlan\x00'}, 0xc0, 0xf0, 0x0, {0x0, 0x1e03}}, @unspec=@CONNMARK={0x30}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x420)
r5 = openat$dir(0xffffffffffffff9c, 0x0, 0x20242, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000002040), 0x0, 0x0)
ioctl$BLKGETSIZE64(r6, 0x80081272, &(0x7f0000002080))
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x7fff})
setrlimit(0x4, &(0x7f00000024c0)={0x0, 0x8})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
mmap(&(0x7f000059f000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x0)

7.179422439s ago: executing program 0 (id=3595):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x5, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x10000}, 0x48)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="580000000002010200000000000000000a00000004000180040003803c0002802c00018014000300fc02000000000000000000000000000f15000400200100000000000000000000000000000c0002800500014001000000"], 0x58}}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), 0x0)
socket$unix(0x1, 0x2, 0x0)
openat$dsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r1, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmctl$SHM_LOCK(0x0, 0xb)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000000)={0x0, &(0x7f0000000040)}, 0x10)
r4 = dup(r2)
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000007b0000000c009930a33e029700000000"], 0x20}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'macvlan0\x00'})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x90}}, 0x0)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x88000)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r7, 0x40345410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r7, 0x80e85411, 0xfffffffffffffffe)
r8 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r8, 0xc0045520, &(0x7f0000000040))

5.196685623s ago: executing program 2 (id=3596):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000bc00000018010000696c6c250000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$key(0xf, 0x3, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$key(r4, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="020300030a0000000000000000000200030006000000000002000000e00000020000000000000000020001000000000000000502feffff4b0300050000000000020800"/80], 0x50}}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
gettid()
r5 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x3c0, 0x0, 0x0, 0x5, 0x0, 0x0, {}, {}, {0x0, 0x7}, {0x0, 0x7}, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000002c0)="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", 0x10c}, {&(0x7f0000000f00)="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", 0x10e}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)="1ee88f78de7d57006d8ffa3f1d92c228a43f6c86558705d98691e6344fa3745cc92c1f80fc01a77c28bb77872fc4f9be9660bb62708d0f52f4958fb4cc5144775062cc7225eacd", 0x47}, {&(0x7f0000001bc0)="5c89eeb1aa86c6f680f09cc1c1d4bc5fc6a067d295afd3aa97af3d777b81db48f9ceb270e506af840503c6fbf20760e4cd8df9c220cd0728585229123d5c61507d00561b8f1a15e64fa2779be424fdeff46058eaee7acfc80b2ae9840e9ac1e33ac8378c98695a08bdb8f2a756b1704c036e3b0ff2d1e9d397a82e24debd371e6855b7dc2dea47d57a9dfbf4fb2ccb3f975c3851c6b5399ab80c4ba95604f70a69674cfe820d82fb06b243625a8a9e4ee52e7c2ec4d63241fb00efd1a485a36dfb4a7dd573c6584c4afc55b3ff0a93509fe41aa0e8892c95ccad3e0435071aff78177e946cf231de4f389b695c5f49772b8abb6b88226fd4c2b0c57d47b98f2aa1b2ec38c4a97f3783023f04cdb380dd6a00d2fc63c932a9876863728e1fcb245109713c16375ffc68b041b86f737c41233cf2a05e51699db6a0e3c4b82b9ca613bea89cefd2ace608e361379b1aeefb75d0aa2db26dcddc9365a8c02f49af78aa6b41599fa501f9b96824bed5cff2028bb06f3852e69b3e58b659606b7ff7e282473701c95f1da7e742b76392f90a89c65577415c62e2b495027153030cf761b44eb1ce8816f14b71f4ecb066111dea78d77fa4b58bc3b27250a516cd5f90b3df608a06eca61970a028193f5ef07ab0cc90936633e4894831d5294011e1dd1f157fe36b0897bc2d8269989a85a326038ef0f6fcec6d5fc1d88f552e", 0x1fc}], 0x2}}], 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
r6 = socket$caif_stream(0x25, 0x1, 0x5)
sendmsg(r6, &(0x7f0000000d80)={&(0x7f0000000780)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x3, 0x0, 0x2, 0x3, {0xa, 0x4e23, 0x2040, @loopback, 0x53}}}, 0x80, 0x0}, 0x40)

5.06853093s ago: executing program 4 (id=3597):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x81)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)

4.358176221s ago: executing program 1 (id=3598):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_fuse_handle_req(r0, &(0x7f0000002240)="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", 0x2000, &(0x7f0000007080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4.17556241s ago: executing program 2 (id=3599):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f00000007c0)={0x0, 0x7ff}, 0x8)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$sock_buf(r2, 0x1, 0x1c, 0x0, &(0x7f0000000100))
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x1c, 0x0, 0x308, 0x70bd25, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x7}, 0x1, 0x0, 0x0, 0x48840}, 0x2404c000)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000100))
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
syz_open_procfs(r5, &(0x7f0000000040)='fd/4\x00')
sched_setscheduler(r5, 0x6, &(0x7f0000000040)=0x1)
ioctl$PPPIOCSACTIVE(r3, 0x40107446, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x4000000000000, 0x40, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))

4.147316361s ago: executing program 1 (id=3600):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = syz_open_dev$evdev(&(0x7f00000002c0), 0x40, 0x0)
ioctl$EVIOCSFF(r1, 0x40044581, 0x0)

4.057967829s ago: executing program 0 (id=3601):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xd)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
gettid()
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32=r0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba6b6e00"/120], 0xc0}}, 0x0)
process_vm_writev(0x0, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000036d000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f00002ab000/0x3000)=nil)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_open_dev$evdev(&(0x7f00000002c0), 0x8000000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_ethernet(0x7e, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[<r3=>0x0], &(0x7f0000003240)=[<r4=>0x0], 0x0, 0x0, 0x1, 0x1})
getuid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280))
setuid(0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x2)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
r5 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
fchdir(r5)
r6 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r6, &(0x7f0000000080)={'#! ', '', [{0x20, '\xebX\xce\xd0\xaaw\xf5\x80\xa3\b\xa1\xa3\xa2\xca.\t'}]}, 0x15)
close(r6)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc0585609, 0x0)
ioctl$VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000300)={0x4, @raw_data="d8bbe9ff9a1116e5f43055e18d4e1594f6fdfa085109d2b961c6c5f9034afda3bdd3b22d088b6f53fe82d790ca9296363e6c516c28514be5b051f54a49896d6cceeff7c78d7b23f6fe8e4430d8573e849dbc35527e429e6137fcbe0569d7c5042669b1020330e0dec218492638eb1bbafb35ef268cc4d5c98388ee98d182de6d1347956a78c974fffb9bde7bf2d6afcdfd2fe9e2a290677e257cb9f0cfbc2cd4b0f52e9a7ffce61287bcc2c863d6e6e53a43ba4ec09e05319c1378a3ccf1148d3bcdfaee164f6111"})
setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r4, r3], 0x2, 0x0, 0x0, <r7=>0xffffffffffffffff})
bind$vsock_stream(r7, &(0x7f0000000100)={0x28, 0x0, 0x2710, @host}, 0x10)

3.971408337s ago: executing program 1 (id=3602):
r0 = socket$kcm(0x2b, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000488c)
setsockopt$sock_attach_bpf(r0, 0x1, 0xd, &(0x7f0000000080), 0x24)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x6, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001, 0x0, 0x0, 0x0, 0xa90d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffd]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f00000002c0)={0x0, 0x0, 0x55, &(0x7f0000000100)={0x5, 0xf, 0x55, 0x1, [@generic={0x50, 0x10, 0xa, "bd90a407ec548d4354dfac9fe4c0a1cc3a7937f85435a6575322b9c9a68a98f7852721c1fd6483079893b4ec4b0a325e1a30e14cc962be15f174dfc231dd56536b96fe6d6e595c2291ddf47702"}]}})
prlimit64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
getdents64(r5, &(0x7f00000000c0)=""/44, 0x2c)
r6 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r7=>0x0)
syz_io_uring_setup(0x360b, &(0x7f0000001040), &(0x7f0000000340)=<r8=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r8, r7, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r6, 0xb15, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)

3.82032219s ago: executing program 3 (id=3603):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001805000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000b90600008500000004000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=@ipv4_delrule={0x28, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x4}]}, 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = dup(r5)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x10002, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_writepages\x00'}, 0x10)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="01000000000000000f0200000031"])
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000, 0x8}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="00000000000058b595ae17000a179e5ebf55090b0000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000000000000000000100000000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r9}, 0x10)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r10, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r10, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r10, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r12, &(0x7f0000000140)={0x11, 0x0, <r13=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r13, 0x9801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}]}}}]}, 0x38}}, 0x0)
sendto$packet(r1, &(0x7f0000000000)='1', 0x26, 0x0, &(0x7f0000000200)={0x11, 0x0, r13, 0x1, 0x0, 0x6, @local}, 0x14)

3.354822144s ago: executing program 4 (id=3604):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
socket(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @loopback}}}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r2 = openat$rdma_cm(0xffffff9c, &(0x7f0000000f00), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000fc0)={0x16, 0x40, 0xfa00, {{0xa, 0x4e21, 0x0, @private0}, {0xa, 0x0, 0x0, @local}}}, 0x48)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x18100})

3.255440199s ago: executing program 0 (id=3605):
socket$inet6(0xa, 0x40000080806, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x0, 0x300)
socket$inet6(0xa, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_procfs(0x0, &(0x7f0000001080)='net/vlan/config\x00')
flistxattr(r2, &(0x7f0000000080)=""/4096, 0x1000)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x6}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10805)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000001a80)=""/102373, 0x18fe5}], 0x1, 0x0, 0x3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800cd0c3ec43d9c96b200007b00b77018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x90)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f00000010c0)={0x2, r3})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6(0xa, 0x5, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000000010ac057d02000000000001090224000100000000090400000103000000092100582b4f84558433db81030000000000"], 0x0)

3.102295998s ago: executing program 2 (id=3606):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
move_pages(0x0, 0x4, &(0x7f0000000000)=[&(0x7f00005f4000/0xc000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000be8000/0x2000)=nil, &(0x7f000031a000/0x2000)=nil], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

3.074382698s ago: executing program 3 (id=3607):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000440)={{{@in=@private=0xa010102, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e23, 0x3, 0x4e20, 0xffff, 0x2, 0x20, 0x80, 0x3b, 0x0, 0xffffffffffffffff}, {0x401, 0x7fffffffffffffff, 0x2, 0x1d20, 0x6, 0x0, 0x2, 0x8}, {0x6, 0xffffffff, 0x1, 0x2}, 0x20, 0x6e6bbe, 0x2, 0x0, 0x3, 0x2}, {{@in=@dev={0xac, 0x14, 0x14, 0x25}, 0x4d2, 0x3c}, 0x0, @in=@remote, 0x3503, 0x2, 0x2, 0x6, 0x3, 0xfffffff7, 0x8}}, 0xe8)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc)

2.9462336s ago: executing program 3 (id=3608):
syz_open_dev$media(&(0x7f0000000640), 0x0, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
socket$rds(0x15, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x3, 0x10004, 0x5}, 0x48)
close(0x3)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
sched_setscheduler(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0xfffffffffffffffc, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$getownex(r2, 0x10, &(0x7f0000002080)={0x0, <r3=>0x0})
ptrace$ARCH_MAP_VDSO_64(0x1e, r3, 0x4, 0x2003)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3d0, 0x0, 0x0, 0x1d8, 0x2e8, 0x2e8, 0x2e8, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="eaa334dd81ea"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bond0\x00', 'bridge0\x00'}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x1d8}}, {{@arp={@private, @local, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'batadv0\x00', 'veth0_vlan\x00'}, 0xc0, 0xf0, 0x0, {0x0, 0x1e03}}, @unspec=@CONNMARK={0x30}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x420)
r5 = openat$dir(0xffffffffffffff9c, 0x0, 0x20242, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000002040), 0x0, 0x0)
ioctl$BLKGETSIZE64(r6, 0x80081272, &(0x7f0000002080))
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x7fff})
setrlimit(0x4, &(0x7f00000024c0)={0x0, 0x8})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
mmap(&(0x7f000059f000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x0)

2.832760304s ago: executing program 2 (id=3609):
r0 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r0, @ANYBLOB="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"], 0x21c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_PROG_QUERY(0x8, &(0x7f0000000480)={@map, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r5)
sendmsg$netlink(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000003800)={0x10}, 0x10}], 0x1, &(0x7f0000000340)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r5}}}], 0x20}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000240)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]})
chdir(&(0x7f0000000140)='./bus\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r8 = dup(r7)
r9 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r9, 0xee72)
sendfile(r8, r9, 0x0, 0x8000fffffffe)
write$binfmt_script(r6, &(0x7f0000000280), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r6, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0xc0189436, &(0x7f0000000140))
setsockopt$inet_sctp_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f0000000180)={0x0, 0xcf5a, 0x9, 0x7}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)

2.483419243s ago: executing program 4 (id=3610):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_fuse_handle_req(r0, &(0x7f0000002240)="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", 0x2000, &(0x7f0000007080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.753103218s ago: executing program 3 (id=3611):
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x3, &(0x7f0000000140)={0x5, 0x7}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
mmap(&(0x7f000086b000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x46, &(0x7f0000000280)=0x5, 0x4)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(0xffffffffffffffff, &(0x7f00000010c0), 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
fchmodat(r0, &(0x7f0000000040)='./file0\x00', 0x2)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4, 0xfffffffc, @local, 0x4}, 0x1c)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0xffd8)

1.512011695s ago: executing program 4 (id=3612):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = syz_open_dev$evdev(&(0x7f00000002c0), 0x40, 0x0)
ioctl$EVIOCSFF(r1, 0x40044581, 0x0)

493.403339ms ago: executing program 2 (id=3613):
creat(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
mknodat(r3, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c)
chmod(&(0x7f0000000080)='./file1\x00', 0x0)
unlink(&(0x7f0000000040)='./file0/file0\x00')
unlink(&(0x7f0000000180)='./file1\x00')
r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f0000000100)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000300)='.\x00', 0x10000, 0x0)
renameat2(r6, &(0x7f00000004c0)='./bus\x00', r4, &(0x7f0000000500)='./file0\x00', 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

331.549404ms ago: executing program 4 (id=3614):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x81)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)

124.308905ms ago: executing program 3 (id=3615):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="120100009e173610ef171e7206de0102030109021200010000000009040000000206"], 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000180)={0x0, <r1=>0x0})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095", @ANYRESOCT=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x90)
write$cgroup_subtree(r2, 0x0, 0xfdef)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000340)={0x14, &(0x7f0000000500)={0x20, 0x14, 0x94, {0x94, 0x22, "3f9379f91fd917d2189539b153539a54cbdadca89d56f7bbea04967edfc6d9e10ed0725120731bb4b49d781d8a9bc7b3c379729fb7a2cdd1f04e3e6a81f01280188a9e754c6936500f262bf67e3188614c80ea48720e8a0c9471276c47629efbe9a021e9c28d8326ced3af3ff75f90c80032142fcf04736113756c24000ffbd84866d0faad1918ff80e6588b18c53e03e31d"}}, &(0x7f00000005c0)=ANY=[@ANYBLOB="0003530000005303fde1a4a14d2a83ecbb9875058ffe3cf0205bad82218c7e1fcc8ef5e7d1ba18ff34f539bd12f5869438431d86cd734af55ff33385417e368c14d424a2a47e1d0f239bb0f93b0f00"/89]}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c8000c00080002"], 0x11)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r7 = getpgid(r3)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(r7, 0x1, &(0x7f0000000080)=0x5)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
r9 = syz_open_dev$vbi(&(0x7f0000000040), 0x1, 0x2)
ioctl$VIDIOC_DQBUF(r9, 0xc0585611, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x5, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "454ba1b3"}, 0x0, 0x1, {0x0}})

0s ago: executing program 0 (id=3616):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvtap0\x00'})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000180)={'wg2\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000880)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000020000000800010008d8"], 0x20}}, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
prlimit64(r3, 0x2, &(0x7f0000000100)={0x0, 0x7f}, &(0x7f0000000140))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r5}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(0xffffffffffffffff, r6, 0x80000)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x25, &(0x7f0000000000)={0x1})
r10 = openat$cgroup_ro(r8, &(0x7f0000000140)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r10, 0x26, &(0x7f0000000000))
fcntl$lock(r9, 0x26, &(0x7f00000006c0)={0x1, 0x0, 0x0, 0xfffffffffffffffd, r3})
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r11, 0x26, &(0x7f0000000080))
openat$binderfs(0xffffffffffffff9c, &(0x7f00000001c0)='./binderfs2/custom1\x00', 0x2, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

leftover after parsing attributes in process `syz.2.2994'.
[ 1073.014814][T16414] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1073.593727][T16417] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2997'.
[ 1073.660854][T16421] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2998'.
[ 1073.831120][T16423] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2999'.
[ 1073.892835][T11838] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[ 1073.983517][    T8] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1074.105502][T11838] usb 2-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1074.115155][T11838] usb 2-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1074.132721][T11838] usb 2-1: Manufacturer: syz
[ 1074.145048][T11838] usb 2-1: config 0 descriptor??
[ 1074.195767][    T8] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1074.216256][    T8] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1074.244931][    T8] usb 3-1: Manufacturer: syz
[ 1074.261860][    T8] usb 3-1: config 0 descriptor??
[ 1075.313437][T11838] gs_usb 2-1:0.0: Couldn't send data format (err=-110)
[ 1075.328152][    T8] gs_usb 3-1:0.0: Couldn't send data format (err=-110)
[ 1075.398979][T11838] gs_usb 2-1:0.0: probe with driver gs_usb failed with error -110
[ 1075.635276][    T8] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -110
[ 1075.913995][T16431] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2998'.
[ 1076.144753][   T29] audit: type=1800 audit(1724186856.278:39): pid=16433 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.3001" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1077.469845][ T5264] usb 3-1: USB disconnect, device number 54
[ 1080.112065][    T8] usb 2-1: USB disconnect, device number 60
[ 1080.194324][T16456] FAULT_INJECTION: forcing a failure.
[ 1080.194324][T16456] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1080.395075][T16456] CPU: 0 UID: 0 PID: 16456 Comm: syz.3.3004 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1080.405880][T16456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1080.415965][T16456] Call Trace:
[ 1080.419349][T16456]  <TASK>
[ 1080.422376][T16456]  dump_stack_lvl+0x241/0x360
[ 1080.427087][T16456]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1080.432307][T16456]  ? __pfx__printk+0x10/0x10
[ 1080.436943][T16456]  should_fail_ex+0x3b0/0x4e0
[ 1080.441639][T16456]  prepare_alloc_pages+0x1da/0x5d0
[ 1080.446791][T16456]  __alloc_pages_noprof+0x166/0x6c0
[ 1080.452003][T16456]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1080.457737][T16456]  ? __pfx_validate_chain+0x10/0x10
[ 1080.462934][T16456]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1080.468400][T16456]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1080.474385][T16456]  vma_alloc_folio_noprof+0x12e/0x230
[ 1080.479759][T16456]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1080.485664][T16456]  folio_prealloc+0x31/0x170
[ 1080.490253][T16456]  handle_pte_fault+0x255e/0x6fc0
[ 1080.495289][T16456]  ? __pfx_lock_acquire+0x10/0x10
[ 1080.500317][T16456]  ? __pfx_handle_pte_fault+0x10/0x10
[ 1080.505701][T16456]  ? follow_page_pte+0x29a/0x1ee0
[ 1080.510723][T16456]  ? follow_page_pte+0x83f/0x1ee0
[ 1080.515747][T16456]  ? __pfx_lock_release+0x10/0x10
[ 1080.520775][T16456]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1080.525986][T16456]  handle_mm_fault+0xf70/0x1880
[ 1080.530864][T16456]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1080.536168][T16456]  ? __pfx_find_vma+0x10/0x10
[ 1080.540843][T16456]  ? vma_is_secretmem+0xd/0x50
[ 1080.545605][T16456]  ? check_vma_flags+0x3f4/0x5a0
[ 1080.550544][T16456]  __get_user_pages+0x6ec/0x16a0
[ 1080.555497][T16456]  ? __pfx___get_user_pages+0x10/0x10
[ 1080.560869][T16456]  ? lock_is_held_type+0x13b/0x190
[ 1080.565992][T16456]  __gup_longterm_locked+0xed7/0x17d0
[ 1080.571377][T16456]  ? down_read+0x82b/0xa40
[ 1080.575894][T16456]  ? is_valid_gup_args+0x124/0x200
[ 1080.581055][T16456]  pin_user_pages_remote+0x132/0x1f0
[ 1080.586355][T16456]  ? __pfx___up_read+0x10/0x10
[ 1080.591139][T16456]  ? __pfx_pin_user_pages_remote+0x10/0x10
[ 1080.596964][T16456]  ? mm_access+0x207/0x240
[ 1080.601408][T16456]  process_vm_rw+0x716/0xcf0
[ 1080.606035][T16456]  ? __pfx_process_vm_rw+0x10/0x10
[ 1080.611176][T16456]  ? vfs_write+0x7c4/0xc90
[ 1080.615796][T16456]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1080.622171][T16456]  __x64_sys_process_vm_writev+0xe0/0x100
[ 1080.627913][T16456]  do_syscall_64+0xf3/0x230
[ 1080.632428][T16456]  ? clear_bhb_loop+0x35/0x90
[ 1080.637118][T16456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.643019][T16456] RIP: 0033:0x7f3d1bf79e79
[ 1080.647436][T16456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1080.667037][T16456] RSP: 002b:00007f3d1ccb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1080.675452][T16456] RAX: ffffffffffffffda RBX: 00007f3d1c116058 RCX: 00007f3d1bf79e79
[ 1080.683436][T16456] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 000000000000065a
[ 1080.691405][T16456] RBP: 00007f3d1ccb9090 R08: 000000000000023a R09: 0000000000000000
[ 1080.699391][T16456] R10: 0000000020121000 R11: 0000000000000246 R12: 0000000000000002
[ 1080.707359][T16456] R13: 0000000000000000 R14: 00007f3d1c116058 R15: 00007ffee7936c08
[ 1080.715345][T16456]  </TASK>
[ 1082.599305][T16483] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[ 1082.608330][T16483] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[ 1082.646004][    T8] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[ 1083.594585][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1083.612761][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1083.643161][    T8] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[ 1083.652391][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1083.663405][    T8] usb 4-1: config 0 descriptor??
[ 1083.709207][   T29] audit: type=1800 audit(1724186863.845:40): pid=16491 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3015" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1083.762783][ T5267] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1083.876799][T16475] netlink: 292 bytes leftover after parsing attributes in process `syz.3.3012'.
[ 1083.977609][ T5267] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1083.998904][ T5267] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1084.035741][ T5267] usb 3-1: Product: syz
[ 1084.050290][ T5267] usb 3-1: Manufacturer: syz
[ 1084.070665][ T5267] usb 3-1: SerialNumber: syz
[ 1084.105398][ T5267] usb 3-1: config 0 descriptor??
[ 1084.545174][ T5267] usb 3-1: Firmware version (0.0) predates our first public release.
[ 1084.601095][ T5267] usb 3-1: Please update to version 0.2 or newer
[ 1084.763789][ T5267] usb 3-1: USB disconnect, device number 55
[ 1085.613517][T16500] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3017'.
[ 1085.784406][T16505] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1085.922547][    T8] usbhid 4-1:0.0: can't add hid device: -71
[ 1085.958327][    T8] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1085.989305][    T8] usb 4-1: USB disconnect, device number 75
[ 1086.012842][ T5267] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1087.334185][ T5267] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1087.402913][ T5267] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1087.435086][ T5267] usb 3-1: Manufacturer: syz
[ 1087.460885][ T5267] usb 3-1: config 0 descriptor??
[ 1087.629966][   T29] audit: type=1800 audit(1724186867.765:41): pid=16525 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3026" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1088.049533][T11838] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[ 1088.282863][T11838] usb 2-1: Using ep0 maxpacket: 16
[ 1088.300886][T11071] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1088.327936][T11838] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1088.342558][T11838] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1088.355220][T11838] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1088.379382][T11838] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1088.401261][T11838] usb 2-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[ 1088.422853][T11838] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1088.455949][T11838] usb 2-1: config 0 descriptor??
[ 1088.506934][T11071] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1088.516272][T11071] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1088.530625][ T5267] gs_usb 3-1:0.0: Couldn't send data format (err=-110)
[ 1088.542669][T11071] usb 1-1: Product: syz
[ 1088.550803][ T5267] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -110
[ 1088.563538][T11071] usb 1-1: Manufacturer: syz
[ 1088.568160][T11071] usb 1-1: SerialNumber: syz
[ 1088.583214][T11071] usb 1-1: config 0 descriptor??
[ 1088.962908][ T5267] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[ 1089.025613][T11071] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1089.034283][T11071] usb 1-1: Please update to version 0.2 or newer
[ 1089.082502][T11838] usbhid 2-1:0.0: can't add hid device: -71
[ 1089.095283][T11838] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1089.116597][T11838] usb 2-1: USB disconnect, device number 61
[ 1089.120831][T11071] usb 1-1: USB disconnect, device number 54
[ 1089.163350][ T5267] usb 5-1: Using ep0 maxpacket: 32
[ 1089.176634][ T5267] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[ 1089.208980][ T5267] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[ 1089.225330][ T5267] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1089.236812][ T5267] usb 5-1: Product: syz
[ 1089.241108][ T5267] usb 5-1: Manufacturer: syz
[ 1089.249415][ T5267] usb 5-1: SerialNumber: syz
[ 1089.260170][ T5267] usb 5-1: config 0 descriptor??
[ 1089.283219][T16538] raw-gadget.3 gadget.4: fail, usb_ep_enable returned -22
[ 1089.307431][ T5267] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1089.349909][    T8] usb 3-1: USB disconnect, device number 56
[ 1089.689550][    T8] usb 5-1: USB disconnect, device number 55
[ 1091.563836][ T5213] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[ 1091.877184][T16558] ALSA: seq fatal error: cannot create timer (-19)
[ 1092.082741][ T5213] usb 1-1: Using ep0 maxpacket: 32
[ 1092.213092][ T5213] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1092.243604][ T5213] usb 1-1: config 0 has no interfaces?
[ 1093.113680][ T5213] usb 1-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1093.131188][ T5213] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1093.161948][ T5213] usb 1-1: config 0 descriptor??
[ 1093.168371][ T5213] usb 1-1: can't set config #0, error -71
[ 1093.184104][ T5213] usb 1-1: USB disconnect, device number 55
[ 1093.307059][T16577] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3040'.
[ 1094.139093][T11838] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[ 1094.648440][T11838] usb 4-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1094.731385][T11838] usb 4-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1094.757899][T11838] usb 4-1: Manufacturer: syz
[ 1094.785975][T11838] usb 4-1: config 0 descriptor??
[ 1095.282491][T16601] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3040'.
[ 1095.897943][T11838] gs_usb 4-1:0.0: Couldn't send data format (err=-110)
[ 1095.912688][T11838] gs_usb 4-1:0.0: probe with driver gs_usb failed with error -110
[ 1096.107504][T16612] FAULT_INJECTION: forcing a failure.
[ 1096.107504][T16612] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1096.129649][T16612] CPU: 1 UID: 0 PID: 16612 Comm: syz.4.3049 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1096.140444][T16612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1096.150508][T16612] Call Trace:
[ 1096.153792][T16612]  <TASK>
[ 1096.156739][T16612]  dump_stack_lvl+0x241/0x360
[ 1096.161453][T16612]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1096.166676][T16612]  ? __pfx__printk+0x10/0x10
[ 1096.171289][T16612]  ? __pfx_lock_release+0x10/0x10
[ 1096.176340][T16612]  ? __lock_acquire+0x137a/0x2040
[ 1096.181363][T16612]  should_fail_ex+0x3b0/0x4e0
[ 1096.186037][T16612]  _copy_from_user+0x2f/0xe0
[ 1096.190625][T16612]  io_submit_one+0xc1/0x18b0
[ 1096.195226][T16612]  ? __pfx_io_submit_one+0x10/0x10
[ 1096.200322][T16612]  ? __might_fault+0xaa/0x120
[ 1096.204987][T16612]  ? __pfx_lock_release+0x10/0x10
[ 1096.210007][T16612]  ? __might_fault+0xaa/0x120
[ 1096.214674][T16612]  ? __might_fault+0xc6/0x120
[ 1096.219345][T16612]  __se_sys_io_submit+0x179/0x2f0
[ 1096.224368][T16612]  ? __pfx___se_sys_io_submit+0x10/0x10
[ 1096.229902][T16612]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1096.235874][T16612]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1096.242190][T16612]  ? do_syscall_64+0x100/0x230
[ 1096.246958][T16612]  ? do_syscall_64+0xb6/0x230
[ 1096.251659][T16612]  do_syscall_64+0xf3/0x230
[ 1096.256161][T16612]  ? clear_bhb_loop+0x35/0x90
[ 1096.260833][T16612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1096.266723][T16612] RIP: 0033:0x7fe9ddb79e79
[ 1096.271150][T16612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1096.290858][T16612] RSP: 002b:00007fe9de9f8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[ 1096.299266][T16612] RAX: ffffffffffffffda RBX: 00007fe9ddd15f80 RCX: 00007fe9ddb79e79
[ 1096.307226][T16612] RDX: 00000000200000c0 RSI: 00000000000000ca RDI: 00007fe9de9d7000
[ 1096.315185][T16612] RBP: 00007fe9de9f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1096.323143][T16612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1096.331115][T16612] R13: 0000000000000000 R14: 00007fe9ddd15f80 R15: 00007ffe925a8f28
[ 1096.339115][T16612]  </TASK>
[ 1097.758128][T16621] ALSA: seq fatal error: cannot create timer (-19)
[ 1098.052465][    T8] usb 4-1: USB disconnect, device number 76
[ 1098.236051][T16631] sp0: Synchronizing with TNC
[ 1098.285829][   T29] audit: type=1800 audit(1724186878.415:42): pid=16633 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3052" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1099.189991][T16631] netlink: 'syz.0.3053': attribute type 1 has an invalid length.
[ 1102.744252][   T29] audit: type=1800 audit(1724186882.875:43): pid=16683 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.3067" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1103.400063][   T29] audit: type=1326 audit(1724186883.535:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.501703][   T29] audit: type=1326 audit(1724186883.535:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.560711][   T29] audit: type=1326 audit(1724186883.535:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.626932][   T29] audit: type=1326 audit(1724186883.535:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.657761][   T29] audit: type=1326 audit(1724186883.535:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.686915][   T29] audit: type=1326 audit(1724186883.535:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.748860][   T29] audit: type=1326 audit(1724186883.565:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.777161][   T29] audit: type=1326 audit(1724186883.565:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1103.863474][   T29] audit: type=1326 audit(1724186883.565:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1104.387330][   T29] audit: type=1326 audit(1724186883.565:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16686 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33c4179e79 code=0x7ffc0000
[ 1107.223246][ T5264] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[ 1109.113694][ T5264] usb 2-1: Using ep0 maxpacket: 32
[ 1109.123032][ T5264] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1109.139675][ T5264] usb 2-1: config 0 has no interfaces?
[ 1109.158181][ T5264] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1109.180792][ T5264] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1109.222362][ T5264] usb 2-1: Product: syz
[ 1109.243080][ T5264] usb 2-1: Manufacturer: syz
[ 1109.259398][ T5264] usb 2-1: SerialNumber: syz
[ 1109.275339][T16741] IPVS: length: 184 != 24
[ 1109.291912][ T5264] usb 2-1: config 0 descriptor??
[ 1111.399893][    T8] usb 2-1: USB disconnect, device number 62
[ 1112.166719][T16755] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.3086'.
[ 1112.200341][T16755] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.3086'.
[ 1112.212724][T16755] netlink: 69 bytes leftover after parsing attributes in process `syz.0.3086'.
[ 1114.868700][T12704] Bluetooth: hci0: command 0x040f tx timeout
[ 1115.646213][T16784] ALSA: seq fatal error: cannot create timer (-19)
[ 1115.649085][T16789] ubi: mtd0 is already attached to ubi0
[ 1115.890109][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.896530][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.280674][T16786] netlink: 'syz.2.3092': attribute type 1 has an invalid length.
[ 1116.323169][T16786] netlink: 'syz.2.3092': attribute type 2 has an invalid length.
[ 1116.753432][T11838] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[ 1117.058914][T11838] usb 1-1: Using ep0 maxpacket: 8
[ 1117.072536][T11838] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[ 1117.072692][T11838] usb 1-1: config 179 has no interface number 0
[ 1117.073000][T11838] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1117.073091][T11838] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1117.073182][T11838] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1117.073419][T11838] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1117.073609][T11838] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1117.073695][T11838] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1117.133818][T16788] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1118.092884][ T5267] usb 1-1: USB disconnect, device number 56
[ 1118.092890][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1118.093066][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1120.109617][ T5264] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[ 1120.272853][ T5264] usb 2-1: device descriptor read/64, error -71
[ 1120.706165][ T5264] usb 2-1: new high-speed USB device number 64 using dummy_hcd
[ 1120.992775][ T5264] usb 2-1: device descriptor read/64, error -71
[ 1121.117401][ T5264] usb usb2-port1: attempt power cycle
[ 1121.562859][ T5264] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1121.786109][ T5264] usb 2-1: device descriptor read/8, error -71
[ 1121.909638][T16868] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3113'.
[ 1122.306495][ T5264] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1123.732810][    T8] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[ 1123.864167][ T5264] usb 2-1: device descriptor read/8, error -71
[ 1124.185561][ T5264] usb usb2-port1: unable to enumerate USB device
[ 1124.241865][    T8] usb 1-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1124.805807][    T8] usb 1-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1125.008972][T16885] input: syz1 as /devices/virtual/input/input41
[ 1125.049198][    T8] usb 1-1: Manufacturer: syz
[ 1125.078474][    T8] usb 1-1: config 0 descriptor??
[ 1125.177917][    T8] usb 1-1: can't set config #0, error -71
[ 1125.207481][    T8] usb 1-1: USB disconnect, device number 57
[ 1125.574276][T16906] netlink: 5300 bytes leftover after parsing attributes in process `syz.3.3125'.
[ 1125.583760][T16906] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1129.617210][T16937] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3134'.
[ 1129.870601][T16943] netlink: 5300 bytes leftover after parsing attributes in process `syz.2.3137'.
[ 1129.870814][T16943] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1130.614997][ T5213] usb 1-1: new high-speed USB device number 58 using dummy_hcd
[ 1130.802682][ T5213] usb 1-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1130.820363][ T5213] usb 1-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1130.864205][ T5213] usb 1-1: Manufacturer: syz
[ 1130.993562][ T5213] usb 1-1: config 0 descriptor??
[ 1132.992941][ T5213] gs_usb 1-1:0.0: Couldn't send data format (err=-110)
[ 1133.002494][ T5213] gs_usb 1-1:0.0: probe with driver gs_usb failed with error -110
[ 1134.496188][ T5300] usb 1-1: USB disconnect, device number 58
[ 1134.616477][   T29] kauditd_printk_skb: 45 callbacks suppressed
[ 1134.616494][   T29] audit: type=1800 audit(1724186914.755:99): pid=16968 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3144" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1135.976788][T17011] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3155'.
[ 1137.202772][T11838] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1137.423814][T11838] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1137.433356][T12704] Bluetooth: hci0: unexpected event for opcode 0x0000
[ 1137.448331][T11838] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1137.612789][T11838] usb 3-1: Manufacturer: syz
[ 1137.648456][T11838] usb 3-1: config 0 descriptor??
[ 1138.102468][T17012] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3155'.
[ 1139.007010][T11838] gs_usb 3-1:0.0: Couldn't send data format (err=-110)
[ 1139.016510][T11838] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -110
[ 1139.897464][T11838] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[ 1141.064868][T11838] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1141.135220][T11838] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1141.178942][T11838] usb 4-1: Product: syz
[ 1141.194179][T11838] usb 4-1: Manufacturer: syz
[ 1141.198808][T11838] usb 4-1: SerialNumber: syz
[ 1141.243089][    T8] usb 3-1: USB disconnect, device number 57
[ 1141.245368][T11838] r8152-cfgselector 4-1: Unknown version 0x0000
[ 1141.291395][T11838] r8152-cfgselector 4-1: config 0 descriptor??
[ 1141.494959][T12704] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1141.505166][T12704] Bluetooth: hci0: Injecting HCI hardware error event
[ 1141.514290][ T5229] Bluetooth: hci0: hardware error 0x00
[ 1141.575909][   T29] audit: type=1326 audit(1724186921.715:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17079 comm="syz.4.3171" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe9ddb79e79 code=0x0
[ 1142.236110][T11838] r8152-cfgselector 4-1: USB disconnect, device number 77
[ 1142.455920][T17107] netlink: 5300 bytes leftover after parsing attributes in process `syz.3.3177'.
[ 1142.465467][T17107] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1143.575271][ T5229] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1143.804478][T17124] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3182'.
[ 1144.007639][T17130] ubi: mtd0 is already attached to ubi0
[ 1144.844595][T17126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3183'.
[ 1144.932756][ T5264] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1145.130124][ T5264] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1146.406571][ T5264] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1148.509692][ T5264] usb 3-1: Manufacturer: syz
[ 1148.534060][ T5264] usb 3-1: config 0 descriptor??
[ 1148.603414][ T5264] usb 3-1: can't set config #0, error -71
[ 1148.631620][ T5264] usb 3-1: USB disconnect, device number 58
[ 1148.806686][T17158] FAULT_INJECTION: forcing a failure.
[ 1148.806686][T17158] name failslab, interval 1, probability 0, space 0, times 0
[ 1148.894977][T17161] netlink: 5300 bytes leftover after parsing attributes in process `syz.2.3191'.
[ 1148.904440][T17161] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1149.545780][T17158] CPU: 0 UID: 0 PID: 17158 Comm: syz.1.3193 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1149.556573][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1149.566623][T17158] Call Trace:
[ 1149.569903][T17158]  <TASK>
[ 1149.572854][T17158]  dump_stack_lvl+0x241/0x360
[ 1149.577533][T17158]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1149.582739][T17158]  ? __pfx__printk+0x10/0x10
[ 1149.587347][T17158]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1149.592892][T17158]  ? __pfx___might_resched+0x10/0x10
[ 1149.598176][T17158]  should_fail_ex+0x3b0/0x4e0
[ 1149.602863][T17158]  ? __anon_vma_prepare+0xc4/0x4a0
[ 1149.607994][T17158]  should_failslab+0xac/0x100
[ 1149.612681][T17158]  ? __anon_vma_prepare+0xc4/0x4a0
[ 1149.617798][T17158]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1149.623184][T17158]  __anon_vma_prepare+0xc4/0x4a0
[ 1149.628135][T17158]  ? __filemap_get_folio+0x984/0xc10
[ 1149.633428][T17158]  vmf_anon_prepare+0xe6/0x1b0
[ 1149.638215][T17158]  hugetlb_fault+0xcb6/0x3770
[ 1149.642916][T17158]  ? __pfx_hugetlb_fault+0x10/0x10
[ 1149.648056][T17158]  ? mt_find+0x226/0x850
[ 1149.652293][T17158]  ? __pfx_lock_release+0x10/0x10
[ 1149.657322][T17158]  handle_mm_fault+0x16a5/0x1880
[ 1149.662265][T17158]  ? mt_find+0x62d/0x850
[ 1149.666509][T17158]  ? hugetlb_vma_unlock_read+0x7e/0x140
[ 1149.672061][T17158]  ? follow_page_mask+0x2c2/0x2f90
[ 1149.677180][T17158]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1149.682469][T17158]  ? __pfx_follow_page_mask+0x10/0x10
[ 1149.687838][T17158]  ? find_vma+0xf9/0x170
[ 1149.692081][T17158]  ? __pfx_find_vma+0x10/0x10
[ 1149.696762][T17158]  ? vma_needs_dirty_tracking+0xa9/0x1f0
[ 1149.702394][T17158]  ? check_vma_flags+0x531/0x5a0
[ 1149.707337][T17158]  __get_user_pages+0x6ec/0x16a0
[ 1149.712286][T17158]  ? __gup_longterm_locked+0x2d3/0x17d0
[ 1149.717836][T17158]  ? __pfx___get_user_pages+0x10/0x10
[ 1149.723220][T17158]  __gup_longterm_locked+0x3ba/0x17d0
[ 1149.728596][T17158]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1149.734583][T17158]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1149.740918][T17158]  gup_fast_fallback+0x2742/0x2b50
[ 1149.746059][T17158]  ? __pfx_gup_fast_fallback+0x10/0x10
[ 1149.751540][T17158]  ? mark_lock+0x9a/0x350
[ 1149.755886][T17158]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1149.761874][T17158]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1149.768216][T17158]  ? is_valid_gup_args+0x124/0x200
[ 1149.773416][T17158]  pin_user_pages_fast+0xcc/0x160
[ 1149.778444][T17158]  ? __pfx_pin_user_pages_fast+0x10/0x10
[ 1149.784082][T17158]  pfn_reader_user_pin+0x432/0x850
[ 1149.789198][T17158]  iopt_pages_fill_xarray+0x7f2/0x1760
[ 1149.794668][T17158]  ? __pfx_iopt_pages_fill_xarray+0x10/0x10
[ 1149.800580][T17158]  ? __kasan_kmalloc+0x98/0xb0
[ 1149.805343][T17158]  ? iopt_area_add_access+0x20c/0x430
[ 1149.810710][T17158]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[ 1149.816267][T17158]  iopt_area_add_access+0x22a/0x430
[ 1149.821482][T17158]  iommufd_access_pin_pages+0x786/0xd40
[ 1149.827048][T17158]  ? __pfx_iommufd_access_pin_pages+0x10/0x10
[ 1149.833116][T17158]  ? __kmalloc_node_noprof+0x247/0x440
[ 1149.838584][T17158]  ? __kvmalloc_node_noprof+0x72/0x190
[ 1149.844055][T17158]  iommufd_test+0x2cfe/0x3e40
[ 1149.848737][T17158]  ? __pfx_iommufd_test+0x10/0x10
[ 1149.853765][T17158]  ? __pfx___might_resched+0x10/0x10
[ 1149.859048][T17158]  ? __might_fault+0xaa/0x120
[ 1149.863723][T17158]  ? __pfx_lock_release+0x10/0x10
[ 1149.868756][T17158]  ? __might_fault+0xc6/0x120
[ 1149.873445][T17158]  iommufd_fops_ioctl+0x4d9/0x5a0
[ 1149.878474][T17158]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1149.884040][T17158]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1149.888978][T17158]  ? security_file_ioctl+0x87/0xb0
[ 1149.894088][T17158]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1149.899640][T17158]  __se_sys_ioctl+0xfc/0x170
[ 1149.904235][T17158]  do_syscall_64+0xf3/0x230
[ 1149.908736][T17158]  ? clear_bhb_loop+0x35/0x90
[ 1149.913420][T17158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1149.919309][T17158] RIP: 0033:0x7f1ea7b79e79
[ 1149.923721][T17158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1149.943324][T17158] RSP: 002b:00007f1ea8a29038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1149.951739][T17158] RAX: ffffffffffffffda RBX: 00007f1ea7d15f80 RCX: 00007f1ea7b79e79
[ 1149.959717][T17158] RDX: 0000000020000080 RSI: 0000000000003ba0 RDI: 0000000000000009
[ 1149.967690][T17158] RBP: 00007f1ea8a29090 R08: 0000000000000000 R09: 0000000000000000
[ 1149.975654][T17158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1149.983618][T17158] R13: 0000000000000000 R14: 00007f1ea7d15f80 R15: 00007ffd9a442c18
[ 1149.991605][T17158]  </TASK>
[ 1150.153967][T17166] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3196'.
[ 1150.687571][   T29] audit: type=1800 audit(1724186930.825:101): pid=17184 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.3197" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1150.889352][T17189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3198'.
[ 1151.079844][T17193] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3199'.
[ 1151.987820][T17207] fuse: Unknown parameter 'root0000000000004­éG0000'
[ 1152.190996][T17201] mmap: syz.0.3202 (17201): VmData 25841664 exceed data ulimit 8. Update limits or use boot option ignore_rlimit_data.
[ 1152.656840][T17216] netlink: 5300 bytes leftover after parsing attributes in process `syz.3.3205'.
[ 1152.667497][T17216] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1153.782153][T17227] ubi: mtd0 is already attached to ubi0
[ 1154.361811][T17225] ALSA: seq fatal error: cannot create timer (-19)
[ 1154.448783][   T29] audit: type=1800 audit(1724186934.585:102): pid=17231 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3209" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1154.739389][T17239] program syz.1.3211 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1154.836567][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3212'.
[ 1154.980249][   T29] audit: type=1800 audit(1724186935.115:103): pid=17247 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.3215" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1155.837334][T17262] netlink: 5300 bytes leftover after parsing attributes in process `syz.0.3218'.
[ 1155.846708][T17262] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1156.682880][ T5267] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[ 1156.882754][ T5267] usb 4-1: Using ep0 maxpacket: 16
[ 1156.882861][T11838] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1156.895852][ T5267] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[ 1156.895885][ T5267] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1156.895908][ T5267] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[ 1156.895931][ T5267] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[ 1156.895954][ T5267] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 255
[ 1156.898526][ T5267] usb 4-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[ 1157.047829][ T5267] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1157.056675][ T5267] usb 4-1: Product: syz
[ 1157.060925][ T5267] usb 4-1: Manufacturer: syz
[ 1157.068462][ T5267] usb 4-1: SerialNumber: syz
[ 1157.088315][ T5267] usb 4-1: config 0 descriptor??
[ 1157.098840][T17257] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1157.120885][ T5267] mcba_usb 4-1:0.0 can0: failed tx_urb -90
[ 1157.129068][ T5267] mcba_usb 4-1:0.0 can0: Failed to send cmd (169)
[ 1157.139137][ T5267] mcba_usb 4-1:0.0 can0: failed tx_urb -90
[ 1157.147787][ T5267] mcba_usb 4-1:0.0 can0: Failed to send cmd (169)
[ 1157.155662][ T5267] mcba_usb 4-1:0.0: Microchip CAN BUS Analyzer connected
[ 1157.178537][T11838] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1157.196682][T11071] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[ 1157.221068][T11838] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1157.230818][T11838] usb 3-1: Product: syz
[ 1157.397694][T11838] usb 3-1: Manufacturer: syz
[ 1157.402982][T11838] usb 3-1: SerialNumber: syz
[ 1157.415414][T11838] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1157.425218][T11838] r8152-cfgselector 3-1: config 0 descriptor??
[ 1158.181610][T11071] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1158.206338][T11071] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1158.239052][T11071] usb 1-1: Product: syz
[ 1158.260951][T11071] usb 1-1: Manufacturer: syz
[ 1158.273364][T11071] usb 1-1: SerialNumber: syz
[ 1158.297770][    T8] usb 4-1: USB disconnect, device number 78
[ 1158.305636][    T8] mcba_usb 4-1:0.0 can0: device disconnected
[ 1158.313181][T17186] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[ 1158.321246][T11071] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1158.331546][T11071] r8152-cfgselector 1-1: config 0 descriptor??
[ 1158.532939][T17186] usb 2-1: Using ep0 maxpacket: 16
[ 1158.540177][T17186] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1158.559980][T17186] usb 2-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[ 1158.569601][T17186] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1158.603468][T17186] usb 2-1: config 0 descriptor??
[ 1158.638280][T17186] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1158.791399][T17296] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3226'.
[ 1159.243816][T11071] r8152-cfgselector 3-1: USB disconnect, device number 59
[ 1159.625932][T17186] usb 2-1: USB disconnect, device number 67
[ 1159.667281][T13403] r8152-cfgselector 1-1: USB disconnect, device number 59
[ 1159.960109][T17319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3229'.
[ 1160.868106][T17327] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[ 1160.877283][T17327] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[ 1163.268192][T17360] netlink: 5300 bytes leftover after parsing attributes in process `syz.3.3239'.
[ 1163.277624][T17360] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1167.313934][T17375] netlink: 'syz.0.3243': attribute type 4 has an invalid length.
[ 1167.342057][T17375] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.3243'.
[ 1167.719785][T17381] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3245'.
[ 1167.795944][T17390] 9pnet_fd: Insufficient options for proto=fd
[ 1168.175971][T17393] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1168.193609][ T5266] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[ 1168.586347][ T5266] usb 3-1: Using ep0 maxpacket: 32
[ 1169.330950][T17405] ubi: mtd0 is already attached to ubi0
[ 1169.406186][ T5266] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1169.447453][T17404] ALSA: seq fatal error: cannot create timer (-19)
[ 1169.458609][ T5266] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1169.467981][ T5266] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1169.495003][ T5266] usb 3-1: Product: syz
[ 1169.499202][ T5266] usb 3-1: Manufacturer: syz
[ 1169.513664][ T5266] usb 3-1: SerialNumber: syz
[ 1169.555489][ T5266] usb 3-1: config 0 descriptor??
[ 1169.593902][ T5266] usb 3-1: bad CDC descriptors
[ 1169.608653][ T5266] usb 3-1: unsupported MDLM descriptors
[ 1169.802075][ T5266] usb 3-1: USB disconnect, device number 60
[ 1169.832530][T17417] netlink: 5300 bytes leftover after parsing attributes in process `syz.3.3255'.
[ 1169.866245][T17417] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[ 1170.577461][T17186] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[ 1170.824152][T17429] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1170.934963][T17186] usb 2-1: config 0 has no interfaces?
[ 1170.942147][T17186] usb 2-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[ 1170.963869][T17186] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1170.972040][T17433] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3261'.
[ 1170.994606][T17186] usb 2-1: config 0 descriptor??
[ 1171.296311][T17439] ubi: mtd0 is already attached to ubi0
[ 1171.967353][T17437] ALSA: seq fatal error: cannot create timer (-19)
[ 1173.174637][T17448] tap0: tun_chr_ioctl cmd 1074025677
[ 1173.204899][T17448] tap0: linktype set to 1
[ 1178.153641][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1178.159959][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.478458][ T5266] usb 2-1: USB disconnect, device number 68
[ 1178.680818][T17465] FAULT_INJECTION: forcing a failure.
[ 1178.680818][T17465] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.704298][T17465] CPU: 0 UID: 0 PID: 17465 Comm: syz.1.3267 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1178.715078][T17465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1178.725132][T17465] Call Trace:
[ 1178.728417][T17465]  <TASK>
[ 1178.731364][T17465]  dump_stack_lvl+0x241/0x360
[ 1178.736049][T17465]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1178.741251][T17465]  ? __pfx__printk+0x10/0x10
[ 1178.745872][T17465]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1178.751431][T17465]  ? __pfx___might_resched+0x10/0x10
[ 1178.756803][T17465]  ? find_mergeable_anon_vma+0x673/0x870
[ 1178.762439][T17465]  should_fail_ex+0x3b0/0x4e0
[ 1178.767123][T17465]  ? __anon_vma_prepare+0x117/0x4a0
[ 1178.772334][T17465]  should_failslab+0xac/0x100
[ 1178.777014][T17465]  ? __anon_vma_prepare+0x117/0x4a0
[ 1178.782204][T17465]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1178.787596][T17465]  __anon_vma_prepare+0x117/0x4a0
[ 1178.792630][T17465]  handle_pte_fault+0x587e/0x6fc0
[ 1178.797698][T17465]  ? __pfx_handle_pte_fault+0x10/0x10
[ 1178.803065][T17465]  ? __pfx_lock_acquire+0x10/0x10
[ 1178.808087][T17465]  ? __pmd_alloc+0x507/0x630
[ 1178.812676][T17465]  ? __pfx_lock_release+0x10/0x10
[ 1178.817704][T17465]  ? do_raw_spin_lock+0x14f/0x370
[ 1178.822742][T17465]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1178.827961][T17465]  ? _raw_spin_unlock+0x28/0x50
[ 1178.832809][T17465]  ? __pmd_alloc+0x507/0x630
[ 1178.837389][T17465]  ? __pfx___pmd_alloc+0x10/0x10
[ 1178.842320][T17465]  handle_mm_fault+0xf70/0x1880
[ 1178.847175][T17465]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1178.852458][T17465]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1178.858783][T17465]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1178.864057][T17465]  exc_page_fault+0x2b9/0x8c0
[ 1178.868732][T17465]  asm_exc_page_fault+0x26/0x30
[ 1178.873584][T17465] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 1178.879379][T17465] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 1178.898970][T17465] RSP: 0018:ffffc900041c7d50 EFLAGS: 00050216
[ 1178.905043][T17465] RAX: 0000000000000001 RBX: 00000000200002e0 RCX: 0000000000000020
[ 1178.913022][T17465] RDX: 0000000000000000 RSI: ffffc900041c7e60 RDI: 00000000200002c0
[ 1178.920981][T17465] RBP: ffffc900041c7f00 R08: ffffc900041c7e7f R09: 1ffff92000838fcf
[ 1178.928961][T17465] R10: dffffc0000000000 R11: fffff52000838fd0 R12: 0000000000000020
[ 1178.936919][T17465] R13: dffffc0000000000 R14: 00000000200002c0 R15: ffffc900041c7e60
[ 1178.944890][T17465]  _copy_to_user+0x86/0xb0
[ 1178.949317][T17465]  __se_sys_msgctl+0x263/0x360
[ 1178.954074][T17465]  ? __pfx___se_sys_msgctl+0x10/0x10
[ 1178.959356][T17465]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1178.965351][T17465]  ? do_syscall_64+0x100/0x230
[ 1178.970108][T17465]  ? do_syscall_64+0xb6/0x230
[ 1178.974778][T17465]  do_syscall_64+0xf3/0x230
[ 1178.979270][T17465]  ? clear_bhb_loop+0x35/0x90
[ 1178.983938][T17465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1178.989821][T17465] RIP: 0033:0x7f1ea7b79e79
[ 1178.994228][T17465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1179.013914][T17465] RSP: 002b:00007f1ea8a29038 EFLAGS: 00000246 ORIG_RAX: 0000000000000047
[ 1179.022314][T17465] RAX: ffffffffffffffda RBX: 00007f1ea7d15f80 RCX: 00007f1ea7b79e79
[ 1179.030273][T17465] RDX: 00000000200002c0 RSI: 000000000000000c RDI: 0000000000000000
[ 1179.038229][T17465] RBP: 00007f1ea8a29090 R08: 0000000000000000 R09: 0000000000000000
[ 1179.046187][T17465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1179.054142][T17465] R13: 0000000000000000 R14: 00007f1ea7d15f80 R15: 00007ffd9a442c18
[ 1179.062115][T17465]  </TASK>
[ 1179.602844][T17197] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[ 1179.926584][T17197] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1179.937042][T17197] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1179.957759][T17197] usb 2-1: Product: syz
[ 1179.962000][T17197] usb 2-1: Manufacturer: syz
[ 1179.970191][T17197] usb 2-1: SerialNumber: syz
[ 1180.142852][T17197] r8152-cfgselector 2-1: Unknown version 0x0000
[ 1180.153698][T17197] r8152-cfgselector 2-1: config 0 descriptor??
[ 1180.310937][T17481] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3273'.
[ 1180.759218][T17496] FAULT_INJECTION: forcing a failure.
[ 1180.759218][T17496] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1180.795348][T17485] 9pnet: Could not find request transport: fA
[ 1180.852981][T17496] CPU: 0 UID: 0 PID: 17496 Comm: syz.3.3277 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1180.863766][T17496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1180.873811][T17496] Call Trace:
[ 1180.877085][T17496]  <TASK>
[ 1180.880008][T17496]  dump_stack_lvl+0x241/0x360
[ 1180.884707][T17496]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1180.889897][T17496]  ? __pfx__printk+0x10/0x10
[ 1180.894484][T17496]  ? __pfx_lock_release+0x10/0x10
[ 1180.899509][T17496]  should_fail_ex+0x3b0/0x4e0
[ 1180.904196][T17496]  _copy_from_user+0x2f/0xe0
[ 1180.908783][T17496]  i2cdev_ioctl+0x230/0x9e0
[ 1180.913300][T17496]  ? __pfx_i2cdev_ioctl+0x10/0x10
[ 1180.918325][T17496]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1180.923256][T17496]  ? security_file_ioctl+0x87/0xb0
[ 1180.928364][T17496]  ? __pfx_i2cdev_ioctl+0x10/0x10
[ 1180.933384][T17496]  __se_sys_ioctl+0xfc/0x170
[ 1180.937973][T17496]  do_syscall_64+0xf3/0x230
[ 1180.942464][T17496]  ? clear_bhb_loop+0x35/0x90
[ 1180.947132][T17496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1180.953038][T17496] RIP: 0033:0x7f3d1bf79e79
[ 1180.957471][T17496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1180.977082][T17496] RSP: 002b:00007f3d1ccda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1180.985489][T17496] RAX: ffffffffffffffda RBX: 00007f3d1c115f80 RCX: 00007f3d1bf79e79
[ 1180.993465][T17496] RDX: 0000000020000280 RSI: 0000000000000707 RDI: 0000000000000003
[ 1181.001428][T17496] RBP: 00007f3d1ccda090 R08: 0000000000000000 R09: 0000000000000000
[ 1181.009394][T17496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1181.017353][T17496] R13: 0000000000000000 R14: 00007f3d1c115f80 R15: 00007ffee7936c08
[ 1181.025326][T17496]  </TASK>
[ 1181.189842][ T5264] r8152-cfgselector 2-1: USB disconnect, device number 69
[ 1181.706892][T17507] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1181.717073][T17507] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1182.260471][T17513] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1182.295530][T17513] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1182.433268][T17513] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1182.441962][T17513] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1183.723727][T13910] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1183.746581][T13910] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1183.774022][T17540] FAULT_INJECTION: forcing a failure.
[ 1183.774022][T17540] name failslab, interval 1, probability 0, space 0, times 0
[ 1183.839897][T17540] CPU: 1 UID: 0 PID: 17540 Comm: syz.4.3287 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1183.850700][T17540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1183.860769][T17540] Call Trace:
[ 1183.864060][T17540]  <TASK>
[ 1183.867002][T17540]  dump_stack_lvl+0x241/0x360
[ 1183.871709][T17540]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1183.876934][T17540]  ? __pfx__printk+0x10/0x10
[ 1183.881562][T17540]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1183.887575][T17540]  ? __pfx___might_resched+0x10/0x10
[ 1183.892890][T17540]  should_fail_ex+0x3b0/0x4e0
[ 1183.897594][T17540]  should_failslab+0xac/0x100
[ 1183.902291][T17540]  ? __alloc_skb+0x1c3/0x440
[ 1183.906900][T17540]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1183.912739][T17540]  __alloc_skb+0x1c3/0x440
[ 1183.917183][T17540]  ? __pfx___alloc_skb+0x10/0x10
[ 1183.922146][T17540]  ? netlink_autobind+0xd6/0x2f0
[ 1183.927120][T17540]  ? netlink_autobind+0x2b0/0x2f0
[ 1183.932173][T17540]  netlink_sendmsg+0x638/0xcb0
[ 1183.936976][T17540]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1183.942279][T17540]  ? __import_iovec+0x536/0x820
[ 1183.947159][T17540]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1183.952467][T17540]  ? security_socket_sendmsg+0x87/0xb0
[ 1183.957956][T17540]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1183.963259][T17540]  __sock_sendmsg+0x221/0x270
[ 1183.967974][T17540]  ____sys_sendmsg+0x525/0x7d0
[ 1183.972769][T17540]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1183.978091][T17540]  __sys_sendmsg+0x2b0/0x3a0
[ 1183.982705][T17540]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1183.987842][T17540]  ? vfs_write+0x7c4/0xc90
[ 1183.992315][T17540]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1183.998685][T17540]  ? do_syscall_64+0x100/0x230
[ 1184.003467][T17540]  ? do_syscall_64+0xb6/0x230
[ 1184.008164][T17540]  do_syscall_64+0xf3/0x230
[ 1184.012683][T17540]  ? clear_bhb_loop+0x35/0x90
[ 1184.017385][T17540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1184.023312][T17540] RIP: 0033:0x7fe9ddb79e79
[ 1184.027748][T17540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1184.047372][T17540] RSP: 002b:00007fe9de9f8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1184.055798][T17540] RAX: ffffffffffffffda RBX: 00007fe9ddd15f80 RCX: 00007fe9ddb79e79
[ 1184.063766][T17540] RDX: 0000000000000010 RSI: 0000000020000380 RDI: 0000000000000005
[ 1184.071734][T17540] RBP: 00007fe9de9f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1184.079700][T17540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1184.087658][T17540] R13: 0000000000000000 R14: 00007fe9ddd15f80 R15: 00007ffe925a8f28
[ 1184.095631][T17540]  </TASK>
[ 1184.205511][T13910] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1184.264997][T13910] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1184.414878][T17552] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1184.450482][T17552] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1184.489227][T13910] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1184.522901][T17507] Bluetooth: hci5: command tx timeout
[ 1184.638595][T13910] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1184.761668][T17554] FAULT_INJECTION: forcing a failure.
[ 1184.761668][T17554] name failslab, interval 1, probability 0, space 0, times 0
[ 1184.784355][T17554] CPU: 0 UID: 0 PID: 17554 Comm: syz.0.3292 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1184.795144][T17554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1184.805212][T17554] Call Trace:
[ 1184.808520][T17554]  <TASK>
[ 1184.811471][T17554]  dump_stack_lvl+0x241/0x360
[ 1184.816179][T17554]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1184.821384][T17554]  ? __pfx__printk+0x10/0x10
[ 1184.826010][T17554]  ? __kmalloc_node_track_caller_noprof+0xb2/0x440
[ 1184.832519][T17554]  ? __pfx___might_resched+0x10/0x10
[ 1184.837816][T17554]  should_fail_ex+0x3b0/0x4e0
[ 1184.842500][T17554]  should_failslab+0xac/0x100
[ 1184.847183][T17554]  __kmalloc_node_track_caller_noprof+0xda/0x440
[ 1184.853513][T17554]  ? kobject_set_name_vargs+0x61/0x120
[ 1184.858976][T17554]  kstrdup+0x3a/0x80
[ 1184.862872][T17554]  kobject_set_name_vargs+0x61/0x120
[ 1184.868153][T17554]  dev_set_name+0xd5/0x120
[ 1184.872576][T17554]  ? __pfx_dev_set_name+0x10/0x10
[ 1184.877617][T17554]  ? device_initialize+0x266/0x460
[ 1184.882725][T17554]  netdev_register_kobject+0xb7/0x320
[ 1184.888105][T17554]  register_netdevice+0x12c5/0x1b00
[ 1184.893315][T17554]  ? __pfx_register_netdevice+0x10/0x10
[ 1184.898865][T17554]  ? ip6_tnl_encap_setup+0x333/0x720
[ 1184.904146][T17554]  ? ip6_tnl_encap_setup+0xd1/0x720
[ 1184.909345][T17554]  ip6gre_newlink_common+0x44a/0x670
[ 1184.914635][T17554]  ? __pfx_ip6gre_newlink_common+0x10/0x10
[ 1184.920453][T17554]  ip6gre_newlink+0x1e1/0x300
[ 1184.925152][T17554]  ? __pfx_ip6gre_newlink+0x10/0x10
[ 1184.930351][T17554]  rtnl_newlink+0x1591/0x20a0
[ 1184.935047][T17554]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1184.940072][T17554]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1184.945279][T17554]  ? __mutex_lock+0x9a5/0xd70
[ 1184.949952][T17554]  ? __mutex_lock+0x527/0xd70
[ 1184.954659][T17554]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1184.959694][T17554]  rtnetlink_rcv_msg+0x73f/0xcf0
[ 1184.964639][T17554]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[ 1184.969767][T17554]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1184.975251][T17554]  ? ref_tracker_free+0x643/0x7e0
[ 1184.980291][T17554]  netlink_rcv_skb+0x1e3/0x430
[ 1184.985087][T17554]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1184.990565][T17554]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1184.995881][T17554]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1185.001089][T17554]  netlink_unicast+0x7f6/0x990
[ 1185.005880][T17554]  ? __pfx_netlink_unicast+0x10/0x10
[ 1185.011178][T17554]  ? __virt_addr_valid+0x183/0x530
[ 1185.016303][T17554]  ? __check_object_size+0x49c/0x900
[ 1185.021600][T17554]  ? bpf_lsm_netlink_send+0x9/0x10
[ 1185.026727][T17554]  netlink_sendmsg+0x8e4/0xcb0
[ 1185.031510][T17554]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1185.036804][T17554]  ? __import_iovec+0x536/0x820
[ 1185.041672][T17554]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1185.046967][T17554]  ? security_socket_sendmsg+0x87/0xb0
[ 1185.052442][T17554]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1185.057741][T17554]  __sock_sendmsg+0x221/0x270
[ 1185.062440][T17554]  ____sys_sendmsg+0x525/0x7d0
[ 1185.067230][T17554]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1185.072546][T17554]  __sys_sendmsg+0x2b0/0x3a0
[ 1185.077154][T17554]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1185.082281][T17554]  ? vfs_write+0x7c4/0xc90
[ 1185.086743][T17554]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1185.093085][T17554]  ? do_syscall_64+0x100/0x230
[ 1185.097861][T17554]  ? do_syscall_64+0xb6/0x230
[ 1185.102548][T17554]  do_syscall_64+0xf3/0x230
[ 1185.107064][T17554]  ? clear_bhb_loop+0x35/0x90
[ 1185.111754][T17554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1185.117655][T17554] RIP: 0033:0x7f33c4179e79
[ 1185.122079][T17554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1185.141700][T17554] RSP: 002b:00007f33c4f18038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1185.150130][T17554] RAX: ffffffffffffffda RBX: 00007f33c4315f80 RCX: 00007f33c4179e79
[ 1185.158125][T17554] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[ 1185.166116][T17554] RBP: 00007f33c4f18090 R08: 0000000000000000 R09: 0000000000000000
[ 1185.174102][T17554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1185.182078][T17554] R13: 0000000000000000 R14: 00007f33c4315f80 R15: 00007ffeb21d87f8
[ 1185.190071][T17554]  </TASK>
[ 1185.235204][T13910] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1185.251095][T13910] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1185.480475][T17506] chnl_net:caif_netlink_parms(): no params data found
[ 1185.711104][T13910] bridge_slave_1: left allmulticast mode
[ 1185.717241][T13910] bridge_slave_1: left promiscuous mode
[ 1185.730804][T13910] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1185.761900][T13910] bridge_slave_0: left allmulticast mode
[ 1185.788183][T13910] bridge_slave_0: left promiscuous mode
[ 1185.816282][T13910] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1186.602789][T17513] Bluetooth: hci5: command tx timeout
[ 1187.180822][T13910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1187.207198][T13910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1187.224302][T13910] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1187.266807][T13910] bond0 (unregistering): Released all slaves
[ 1187.437553][T13910] tipc: Disabling bearer <udp:syz2>
[ 1187.447727][   T29] audit: type=1800 audit(1724186967.583:104): pid=17588 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.3300" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0
[ 1187.481626][T13910] tipc: Left network mode
[ 1187.609490][T17506] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1187.780435][T17506] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1187.867211][T17506] bridge_slave_0: entered allmulticast mode
[ 1187.941132][T17506] bridge_slave_0: entered promiscuous mode
[ 1187.997353][T17595] binder: 17594:17595 ioctl c018620c 0 returned -14
[ 1188.063158][T17506] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1188.070308][T17506] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1188.140866][T17506] bridge_slave_1: entered allmulticast mode
[ 1188.149292][T17506] bridge_slave_1: entered promiscuous mode
[ 1188.252748][   T29] audit: type=1326 audit(1724186968.373:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17594 comm="syz.4.3303" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe9ddb79e79 code=0x0
[ 1188.322032][T17506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1188.507062][T17506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1188.623802][T17612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3305'.
[ 1188.679437][T17611] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3306'.
[ 1188.692929][T17513] Bluetooth: hci5: command 0x040f tx timeout
[ 1188.907519][T17618] ALSA: seq fatal error: cannot create timer (-19)
[ 1189.055956][T17618] ubi: mtd0 is already attached to ubi0
[ 1189.642035][T17506] team0: Port device team_slave_0 added
[ 1189.692599][T17506] team0: Port device team_slave_1 added
[ 1190.184696][T17635] overlay: ./file0 is not a directory
[ 1190.741182][T17506] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1190.758198][T17506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.807619][T17513] Bluetooth: hci5: command 0x040f tx timeout
[ 1190.833186][T17506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1190.854887][T17506] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1190.892825][T17506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.967339][T17506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1191.015825][T13910] hsr_slave_0: left promiscuous mode
[ 1191.037635][T13910] hsr_slave_1: left promiscuous mode
[ 1191.052053][T13910] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1191.086227][T13910] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1191.144251][T13910] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1191.151693][T13910] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1191.273275][T13910] veth1_macvtap: left promiscuous mode
[ 1191.309757][T13910] veth0_macvtap: left promiscuous mode
[ 1191.318535][T13910] veth1_vlan: left promiscuous mode
[ 1191.324225][T13910] veth0_vlan: left promiscuous mode
[ 1191.533674][T13910] infiniband syz2: set down
[ 1192.238158][T17654] 9pnet_fd: Insufficient options for proto=fd
[ 1192.325300][T17654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3315'.
[ 1192.844733][T17507] Bluetooth: hci5: command 0x040f tx timeout
[ 1194.932788][T17507] Bluetooth: hci5: command 0x040f tx timeout
[ 1195.803970][T13910] team0 (unregistering): Port device team_slave_1 removed
[ 1195.815064][   T58] smc: removing ib device syz2
[ 1195.881241][T13910] team0 (unregistering): Port device team_slave_0 removed
[ 1196.180746][T17670] overlayfs: conflicting options: verity=on,redirect_dir=follow
[ 1196.510276][T17664] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3317'.
[ 1197.924994][T17690] overlayfs: missing 'lowerdir'
[ 1198.201119][T17506] hsr_slave_0: entered promiscuous mode
[ 1198.408245][T17506] hsr_slave_1: entered promiscuous mode
[ 1198.470154][T17506] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1198.515095][T17506] Cannot create hsr debugfs directory
[ 1200.109830][T17706] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3330'.
[ 1200.245292][T17506] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1200.265669][T17506] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1200.289944][T17506] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1200.301771][T17506] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1203.399767][T17506] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1203.419691][T17506] 8021q: adding VLAN 0 to HW filter on device team0
[ 1203.554951][T13910] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1203.562114][T13910] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1203.740218][T13910] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1203.747392][T13910] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1204.243129][T11071] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1204.313476][T17506] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1204.406066][T17751] overlayfs: missing 'lowerdir'
[ 1204.467129][T17506] veth0_vlan: entered promiscuous mode
[ 1204.483815][T17506] veth1_vlan: entered promiscuous mode
[ 1204.495422][T11071] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1204.526714][T11071] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1204.556897][T11071] usb 2-1: New USB device found, idVendor=056a, idProduct=0315, bcdDevice= 0.00
[ 1204.569304][T11071] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1204.587933][T17506] veth0_macvtap: entered promiscuous mode
[ 1204.662125][T11071] usb 2-1: config 0 descriptor??
[ 1204.669613][T17506] veth1_macvtap: entered promiscuous mode
[ 1204.724924][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1204.750185][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1204.761881][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1204.775635][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1204.791186][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1204.817421][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.025484][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1205.079715][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.134584][T17506] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1205.159708][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1205.184110][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.214542][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1205.238442][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.262648][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1205.292745][T17759] netlink: 88 bytes leftover after parsing attributes in process `syz.4.3342'.
[ 1205.303724][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.332688][T17506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1205.364754][T17506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1205.388669][T17506] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1205.445399][T17506] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1205.481561][T17506] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1205.505551][T17506] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1205.552729][T17506] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1205.578941][T11071] usb 2-1: USB disconnect, device number 70
[ 1205.842744][ T5613] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1205.877023][ T5613] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1205.933372][T17770] program syz.4.3343 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1205.952888][ T5613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1205.961127][ T5613] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1205.968307][T17770] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3343'.
[ 1206.918935][T17785] overlayfs: failed to resolve './file1': -2
[ 1206.949766][T17787] overlayfs: failed to resolve './file1': -2
[ 1207.607832][   T29] audit: type=1800 audit(1724186987.739:106): pid=17798 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3354" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1207.707344][T13910] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.917183][T13910] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1208.031777][T13910] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1208.266905][T13910] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1208.651867][T17809] overlayfs: missing 'lowerdir'
[ 1209.221730][T13910] bridge_slave_1: left allmulticast mode
[ 1209.242415][T13910] bridge_slave_1: left promiscuous mode
[ 1209.267480][T13910] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.309595][T13910] bridge_slave_0: left allmulticast mode
[ 1209.326510][T13910] bridge_slave_0: left promiscuous mode
[ 1209.338336][T13910] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.349205][ T5229] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1209.362173][ T5229] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1209.371716][ T5229] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1209.380805][ T5229] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1209.392217][ T5229] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1209.401468][ T5229] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1210.347586][T17831] ALSA: seq fatal error: cannot create timer (-19)
[ 1210.365520][T17831] ubi: mtd0 is already attached to ubi0
[ 1211.488934][T17507] Bluetooth: hci2: command tx timeout
[ 1211.533500][T13910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1211.856319][T17844] x_tables: ip_tables: ah match: only valid for protocol 51
[ 1213.088005][T13910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1213.090532][   T29] audit: type=1800 audit(1724186993.219:107): pid=17855 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3367" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1213.154709][T13910] bond0 (unregistering): Released all slaves
[ 1213.206502][T17849] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1213.214617][T17850] netlink: 'syz.2.3365': attribute type 6 has an invalid length.
[ 1213.222381][T17850] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3365'.
[ 1213.436207][T13910] tipc: Disabling bearer <udp:syz2>
[ 1213.452235][T13910] tipc: Left network mode
[ 1213.603077][T17507] Bluetooth: hci2: command 0x041b tx timeout
[ 1214.489884][T13910] hsr_slave_0: left promiscuous mode
[ 1214.511657][T13910] hsr_slave_1: left promiscuous mode
[ 1214.529499][T13910] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1214.537206][T13910] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1214.551453][T13910] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1214.573260][T13910] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1214.601228][T17886] FAULT_INJECTION: forcing a failure.
[ 1214.601228][T17886] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1214.619730][T17886] CPU: 0 UID: 0 PID: 17886 Comm: syz.3.3374 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1214.630534][T17886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1214.630928][T13910] veth1_macvtap: left promiscuous mode
[ 1214.640585][T17886] Call Trace:
[ 1214.640597][T17886]  <TASK>
[ 1214.640607][T17886]  dump_stack_lvl+0x241/0x360
[ 1214.640639][T17886]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1214.640664][T17886]  ? __pfx__printk+0x10/0x10
[ 1214.666761][T17886]  ? __pfx_lock_release+0x10/0x10
[ 1214.671830][T17886]  should_fail_ex+0x3b0/0x4e0
[ 1214.675394][T13910] veth0_macvtap: left promiscuous mode
[ 1214.676527][T17886]  _copy_from_user+0x2f/0xe0
[ 1214.682254][T13910] veth1_vlan: left promiscuous mode
[ 1214.686557][T17886]  copy_msghdr_from_user+0xae/0x680
[ 1214.686599][T17886]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1214.699978][T13910] veth0_vlan: left promiscuous mode
[ 1214.702875][T17886]  __sys_recvmsg+0x252/0x3e0
[ 1214.702917][T17886]  ? __pfx___sys_recvmsg+0x10/0x10
[ 1214.717860][T17886]  ? arch_do_signal_or_restart+0x316/0x860
[ 1214.723708][T17886]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1214.730075][T17886]  ? do_syscall_64+0x100/0x230
[ 1214.734874][T17886]  ? do_syscall_64+0xb6/0x230
[ 1214.739582][T17886]  do_syscall_64+0xf3/0x230
[ 1214.744111][T17886]  ? clear_bhb_loop+0x35/0x90
[ 1214.748821][T17886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.754751][T17886] RIP: 0033:0x7f3d1bf79e79
[ 1214.759193][T17886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1214.778822][T17886] RSP: 002b:00007f3d1ccda038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 1214.787264][T17886] RAX: ffffffffffffffda RBX: 00007f3d1c115f80 RCX: 00007f3d1bf79e79
[ 1214.790018][T17884] overlayfs: missing 'workdir'
[ 1214.795236][T17886] RDX: 0000000000002000 RSI: 0000000020000740 RDI: 0000000000000003
[ 1214.795256][T17886] RBP: 00007f3d1ccda090 R08: 0000000000000000 R09: 0000000000000000
[ 1214.795271][T17886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1214.795285][T17886] R13: 0000000000000000 R14: 00007f3d1c115f80 R15: 00007ffee7936c08
[ 1214.795316][T17886]  </TASK>
[ 1214.811664][T11071] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[ 1215.214284][T11071] usb 5-1: Using ep0 maxpacket: 8
[ 1215.224829][T11071] usb 5-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1215.244061][T11071] usb 5-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[ 1215.271858][T11071] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1215.624490][T17896] netlink: 'syz.1.3376': attribute type 4 has an invalid length.
[ 1215.632556][T17896] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.3376'.
[ 1215.651879][T17507] Bluetooth: hci2: command 0x041b tx timeout
[ 1216.136384][T13910] team0 (unregistering): Port device team_slave_1 removed
[ 1216.242396][T13910] team0 (unregistering): Port device team_slave_0 removed
[ 1216.675971][   T29] audit: type=1800 audit(1724186996.809:108): pid=17899 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.3377" name="SYSV00000000" dev="hugetlbfs" ino=6 res=0 errno=0
[ 1216.757298][T11071] usb 5-1: string descriptor 0 read error: -71
[ 1216.793910][T11071] hub 5-1:32.0: USB hub found
[ 1216.808730][T11071] hub 5-1:32.0: config failed, can't read hub descriptor (err -22)
[ 1216.964569][T11071] usb 5-1: USB disconnect, device number 56
[ 1217.749983][T17507] Bluetooth: hci2: command 0x041b tx timeout
[ 1218.226231][T17919] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3382'.
[ 1218.472108][T17934] overlayfs: missing 'workdir'
[ 1218.738781][T17824] chnl_net:caif_netlink_parms(): no params data found
[ 1218.966097][   T29] audit: type=1800 audit(1724186999.099:109): pid=17941 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3387" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1219.019640][T17824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1219.029176][T17824] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1219.040682][T17824] bridge_slave_0: entered allmulticast mode
[ 1219.049261][T17824] bridge_slave_0: entered promiscuous mode
[ 1219.071320][T17824] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1219.087746][T17824] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.104422][T17824] bridge_slave_1: entered allmulticast mode
[ 1219.137501][T17824] bridge_slave_1: entered promiscuous mode
[ 1219.278812][T17824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1219.307132][T17824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1219.430596][T17824] team0: Port device team_slave_0 added
[ 1219.443280][T17824] team0: Port device team_slave_1 added
[ 1219.503815][ T5300] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[ 1219.513847][T17824] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1219.533277][T17824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1219.559172][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1219.573954][T17824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1219.588211][T17824] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1219.592763][  T939] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[ 1219.595889][T17824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1219.628646][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1219.642501][T17824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1219.724501][T17824] hsr_slave_0: entered promiscuous mode
[ 1219.741761][T17824] hsr_slave_1: entered promiscuous mode
[ 1219.754906][T17824] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1219.762724][ T5300] usb 5-1: Using ep0 maxpacket: 32
[ 1219.771517][T17824] Cannot create hsr debugfs directory
[ 1219.778999][ T5300] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 255
[ 1219.802780][T17507] Bluetooth: hci2: command 0x041b tx timeout
[ 1219.807718][ T5300] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[ 1219.823820][  T939] usb 4-1: Using ep0 maxpacket: 8
[ 1219.835678][ T5300] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1219.840832][  T939] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[ 1219.849747][ T5300] usb 5-1: Product: syz
[ 1219.872731][  T939] usb 4-1: config 179 has no interface number 0
[ 1219.879043][  T939] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1219.900321][ T5300] usb 5-1: Manufacturer: syz
[ 1219.905084][  T939] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1219.905118][  T939] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1219.905189][  T939] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1219.905240][  T939] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1219.905264][  T939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1219.908836][T17944] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1219.927176][ T5300] usb 5-1: SerialNumber: syz
[ 1220.038827][ T5300] usb 5-1: config 0 descriptor??
[ 1220.049545][T17946] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1220.064494][ T5300] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1220.401107][ T5300] usb 5-1: USB disconnect, device number 57
[ 1220.646899][ T5264] usb 4-1: USB disconnect, device number 79
[ 1220.646900][    C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1220.646946][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1221.454690][T17824] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1221.467721][T17963] netlink: 'syz.4.3394': attribute type 1 has an invalid length.
[ 1221.480353][T17963] netlink: 112860 bytes leftover after parsing attributes in process `syz.4.3394'.
[ 1221.481704][T17824] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1221.490985][T17963] netlink: 'syz.4.3394': attribute type 1 has an invalid length.
[ 1221.523032][T17824] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1221.539285][T17824] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1221.751946][T17824] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1221.761229][T17972] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3396'.
[ 1221.865715][T17824] 8021q: adding VLAN 0 to HW filter on device team0
[ 1221.893684][T17507] Bluetooth: hci2: command 0x041b tx timeout
[ 1221.902801][T15579] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1221.910250][T15579] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1221.934626][T15579] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1221.941884][T15579] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1222.628181][T17982] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1223.366420][   T29] audit: type=1800 audit(1724187003.489:110): pid=17991 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3398" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1223.416357][T17824] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1223.470094][T17998] overlayfs: missing 'workdir'
[ 1223.743219][T17824] veth0_vlan: entered promiscuous mode
[ 1223.770039][T17824] veth1_vlan: entered promiscuous mode
[ 1223.837792][T17824] veth0_macvtap: entered promiscuous mode
[ 1223.904179][T17824] veth1_macvtap: entered promiscuous mode
[ 1223.972521][   T29] audit: type=1107 audit(1724187004.099:111): pid=18005 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[ 1223.995138][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1224.279612][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.294541][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1224.344027][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.362895][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1224.408973][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.440623][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1224.451352][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.490264][T17824] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1224.623958][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1224.703994][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.746055][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1224.818957][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.851903][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1224.869689][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.881614][T17824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1224.918772][T17824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1224.948746][T17824] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1224.997843][T17824] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.019211][T17824] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.028341][T17824] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.051916][T17824] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.355975][T13910] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1225.401023][T13910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1225.490561][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1225.514286][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1230.209093][T18040] input: syz1 as /devices/virtual/input/input44
[ 1230.243787][   T29] audit: type=1800 audit(1724187010.379:112): pid=18044 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3413" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1230.420602][T18053] FAULT_INJECTION: forcing a failure.
[ 1230.420602][T18053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1230.460757][T18053] CPU: 0 UID: 0 PID: 18053 Comm: syz.2.3417 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1230.471682][T18053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1230.481768][T18053] Call Trace:
[ 1230.483590][T18057] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3418'.
[ 1230.485055][T18053]  <TASK>
[ 1230.496966][T18053]  dump_stack_lvl+0x241/0x360
[ 1230.501678][T18053]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1230.506903][T18053]  ? __pfx__printk+0x10/0x10
[ 1230.511537][T18053]  ? snprintf+0xda/0x120
[ 1230.515827][T18053]  should_fail_ex+0x3b0/0x4e0
[ 1230.520537][T18053]  _copy_to_user+0x2f/0xb0
[ 1230.524999][T18053]  simple_read_from_buffer+0xca/0x150
[ 1230.530429][T18053]  proc_fail_nth_read+0x1ec/0x260
[ 1230.535496][T18053]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1230.541092][T18053]  ? rw_verify_area+0x520/0x6b0
[ 1230.545988][T18053]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1230.551576][T18053]  vfs_read+0x204/0xbc0
[ 1230.555761][T18053]  ? __pfx_lock_release+0x10/0x10
[ 1230.560828][T18053]  ? __pfx_vfs_read+0x10/0x10
[ 1230.565564][T18053]  ? drm_ioctl+0x824/0xad0
[ 1230.570006][T18053]  ? __fget_files+0x29/0x470
[ 1230.574620][T18053]  ? __fget_files+0x3f6/0x470
[ 1230.579332][T18053]  ksys_read+0x1a0/0x2c0
[ 1230.583599][T18053]  ? __pfx_ksys_read+0x10/0x10
[ 1230.588389][T18053]  ? do_syscall_64+0x100/0x230
[ 1230.593182][T18053]  ? do_syscall_64+0xb6/0x230
[ 1230.597883][T18053]  do_syscall_64+0xf3/0x230
[ 1230.602409][T18053]  ? clear_bhb_loop+0x35/0x90
[ 1230.607116][T18053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1230.613031][T18053] RIP: 0033:0x7f6a6b5788bc
[ 1230.617461][T18053] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1230.637082][T18053] RSP: 002b:00007f6a6c3fc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1230.645515][T18053] RAX: ffffffffffffffda RBX: 00007f6a6b715f80 RCX: 00007f6a6b5788bc
[ 1230.653502][T18053] RDX: 000000000000000f RSI: 00007f6a6c3fc0a0 RDI: 0000000000000007
[ 1230.661496][T18053] RBP: 00007f6a6c3fc090 R08: 0000000000000000 R09: 0000000000000000
[ 1230.669503][T18053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1230.677488][T18053] R13: 0000000000000000 R14: 00007f6a6b715f80 R15: 00007ffeb6de8068
[ 1230.685503][T18053]  </TASK>
[ 1230.700642][T18067] netlink: 92 bytes leftover after parsing attributes in process `syz.3.3419'.
[ 1234.005282][   T29] audit: type=1800 audit(1724187014.139:113): pid=18101 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3429" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1234.145033][T18113] FAULT_INJECTION: forcing a failure.
[ 1234.145033][T18113] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1234.164175][T18113] CPU: 1 UID: 0 PID: 18113 Comm: syz.1.3434 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1234.174958][T18113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1234.185020][T18113] Call Trace:
[ 1234.188308][T18113]  <TASK>
[ 1234.191232][T18113]  dump_stack_lvl+0x241/0x360
[ 1234.195940][T18113]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1234.201159][T18113]  ? __pfx__printk+0x10/0x10
[ 1234.205771][T18113]  ? __pfx_lock_release+0x10/0x10
[ 1234.210820][T18113]  ? __lock_acquire+0x137a/0x2040
[ 1234.215876][T18113]  should_fail_ex+0x3b0/0x4e0
[ 1234.220589][T18113]  _copy_from_user+0x2f/0xe0
[ 1234.225211][T18113]  kstrtouint_from_user+0xc6/0x190
[ 1234.230347][T18113]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1234.236079][T18113]  ? __pfx_lock_acquire+0x10/0x10
[ 1234.241119][T18113]  proc_fail_nth_write+0xaa/0x2d0
[ 1234.246154][T18113]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1234.252052][T18113]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1234.257702][T18113]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1234.263340][T18113]  vfs_write+0x2a2/0xc90
[ 1234.267587][T18113]  ? __pfx_vfs_write+0x10/0x10
[ 1234.272346][T18113]  ? __fget_files+0x29/0x470
[ 1234.276935][T18113]  ? __fget_files+0x3f6/0x470
[ 1234.281624][T18113]  ksys_write+0x1a0/0x2c0
[ 1234.285957][T18113]  ? __pfx_ksys_write+0x10/0x10
[ 1234.290799][T18113]  ? do_syscall_64+0x100/0x230
[ 1234.295563][T18113]  ? do_syscall_64+0xb6/0x230
[ 1234.300240][T18113]  do_syscall_64+0xf3/0x230
[ 1234.304736][T18113]  ? clear_bhb_loop+0x35/0x90
[ 1234.309413][T18113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1234.315324][T18113] RIP: 0033:0x7f1ea7b7895f
[ 1234.319732][T18113] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[ 1234.339337][T18113] RSP: 002b:00007f1ea8a29030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1234.347771][T18113] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ea7b7895f
[ 1234.355747][T18113] RDX: 0000000000000001 RSI: 00007f1ea8a290a0 RDI: 0000000000000005
[ 1234.363713][T18113] RBP: 00007f1ea8a29090 R08: 0000000000000000 R09: 0000000000000000
[ 1234.371684][T18113] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 1234.379654][T18113] R13: 0000000000000000 R14: 00007f1ea7d15f80 R15: 00007ffd9a442c18
[ 1234.387650][T18113]  </TASK>
[ 1234.390792][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.398449][T18112] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3432'.
[ 1235.373260][T11071] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[ 1235.604513][T11071] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1235.625259][T11071] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1235.638209][T11071] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[ 1235.651756][T11071] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1235.667936][T11071] usb 2-1: config 0 descriptor??
[ 1236.397483][   T29] audit: type=1800 audit(1724187016.519:114): pid=18147 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.3.3445" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0
[ 1236.498228][T18151] x_tables: duplicate underflow at hook 3
[ 1236.513425][T11071] hid-led 0003:27B8:01ED.000E: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.1-1/input0
[ 1236.605626][T11071] hid-led 0003:27B8:01ED.000E: ThingM blink(1) initialized
[ 1236.808351][T17181] usb 2-1: USB disconnect, device number 71
[ 1237.624156][T18181] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1238.466271][   T29] audit: type=1800 audit(1724187018.599:115): pid=18192 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3459" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1238.486891][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1238.597197][T18197] FAULT_INJECTION: forcing a failure.
[ 1238.597197][T18197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1238.597228][T18197] CPU: 0 UID: 0 PID: 18197 Comm: syz.2.3461 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1238.597251][T18197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1238.597264][T18197] Call Trace:
[ 1238.597274][T18197]  <TASK>
[ 1238.597284][T18197]  dump_stack_lvl+0x241/0x360
[ 1238.597313][T18197]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1238.597335][T18197]  ? __pfx__printk+0x10/0x10
[ 1238.597370][T18197]  ? __pfx_lock_release+0x10/0x10
[ 1238.597407][T18197]  should_fail_ex+0x3b0/0x4e0
[ 1238.661808][T18197]  _copy_from_user+0x2f/0xe0
[ 1238.661854][T18197]  copy_from_sockptr_offset+0x6b/0xb0
[ 1238.661886][T18197]  do_ipt_set_ctl+0xbdd/0x1250
[ 1238.661917][T18197]  ? __pfx___might_resched+0x10/0x10
[ 1238.661950][T18197]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[ 1238.661975][T18197]  ? __pfx_lock_release+0x10/0x10
[ 1238.662026][T18197]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1238.697802][T18197]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1238.697834][T18197]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1238.697868][T18197]  ? module_put+0x13a/0x2d0
[ 1238.697894][T18197]  nf_setsockopt+0x295/0x2c0
[ 1238.718283][T18197]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1238.718312][T18197]  do_sock_setsockopt+0x3af/0x720
[ 1238.718347][T18197]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1238.718373][T18197]  ? __fget_files+0x29/0x470
[ 1238.739348][T18197]  ? __fget_files+0x3f6/0x470
[ 1238.739387][T18197]  __sys_setsockopt+0x1ae/0x250
[ 1238.739418][T18197]  __x64_sys_setsockopt+0xb5/0xd0
[ 1238.739449][T18197]  do_syscall_64+0xf3/0x230
[ 1238.739471][T18197]  ? clear_bhb_loop+0x35/0x90
[ 1238.739498][T18197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1238.739520][T18197] RIP: 0033:0x7f6a6b579e79
[ 1238.739538][T18197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1238.739556][T18197] RSP: 002b:00007f6a6c3fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1238.739579][T18197] RAX: ffffffffffffffda RBX: 00007f6a6b715f80 RCX: 00007f6a6b579e79
[ 1238.739595][T18197] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[ 1238.739609][T18197] RBP: 00007f6a6c3fc090 R08: 0000000000000310 R09: 0000000000000000
[ 1238.739623][T18197] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[ 1238.739637][T18197] R13: 0000000000000000 R14: 00007f6a6b715f80 R15: 00007ffeb6de8068
[ 1238.739668][T18197]  </TASK>
[ 1238.766598][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.766653][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.870029][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1239.733178][T17507] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1239.740294][ T5229] Bluetooth: hci4: command 0x1003 tx timeout
[ 1241.815474][T18238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3472'.
[ 1242.122789][  T939] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[ 1242.149020][T18244] 9pnet_fd: Insufficient options for proto=fd
[ 1242.354597][  T939] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1242.408470][  T939] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[ 1242.476973][  T939] usb 4-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18
[ 1242.497626][  T939] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1242.519308][  T939] usb 4-1: Product: syz
[ 1242.525209][  T939] usb 4-1: Manufacturer: syz
[ 1242.530912][  T939] usb 4-1: SerialNumber: syz
[ 1243.376554][  T939] usb 4-1: config 0 descriptor??
[ 1243.487383][T18253] netlink: 200 bytes leftover after parsing attributes in process `syz.1.3478'.
[ 1245.108765][  T939] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1245.167700][T17442] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[ 1245.237549][  T939] usb 4-1: USB disconnect, device number 80
[ 1245.341176][T17507] Bluetooth: hci5: unexpected event for opcode 0x0485
[ 1245.384468][T18277] udevd[18277]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1245.462857][T17442] usb 2-1: Using ep0 maxpacket: 16
[ 1245.474795][T17442] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[ 1245.500120][T17442] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 1245.510228][T17442] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1245.584112][T17442] usb 2-1: config 0 descriptor??
[ 1245.638421][T17442] usb 2-1: can't set config #0, error -71
[ 1245.669429][T17442] usb 2-1: USB disconnect, device number 72
[ 1246.158727][T18305] x_tables: duplicate underflow at hook 3
[ 1249.304246][T18324] syzkaller1: entered promiscuous mode
[ 1249.370567][T18324] syzkaller1: entered allmulticast mode
[ 1250.004881][  T939] usb 5-1: new low-speed USB device number 58 using dummy_hcd
[ 1250.232697][  T939] usb 5-1: device descriptor read/64, error -71
[ 1251.353272][T18339] FAULT_INJECTION: forcing a failure.
[ 1251.353272][T18339] name failslab, interval 1, probability 0, space 0, times 0
[ 1251.353383][T18339] CPU: 1 UID: 0 PID: 18339 Comm: syz.0.3497 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1251.353410][T18339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1251.353424][T18339] Call Trace:
[ 1251.353435][T18339]  <TASK>
[ 1251.353446][T18339]  dump_stack_lvl+0x241/0x360
[ 1251.353478][T18339]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1251.353503][T18339]  ? __pfx__printk+0x10/0x10
[ 1251.353541][T18339]  ? __flush_work+0xe6/0xd00
[ 1251.353571][T18339]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1251.353601][T18339]  ? __pfx_lock_release+0x10/0x10
[ 1251.353637][T18339]  should_fail_ex+0x3b0/0x4e0
[ 1251.353667][T18339]  ? bit_cursor+0x1016/0x2670
[ 1251.353698][T18339]  should_failslab+0xac/0x100
[ 1251.353727][T18339]  ? bit_cursor+0x1016/0x2670
[ 1251.353756][T18339]  __kmalloc_noprof+0xd8/0x400
[ 1251.353794][T18339]  bit_cursor+0x1016/0x2670
[ 1251.353850][T18339]  ? __pfx_bit_cursor+0x10/0x10
[ 1251.353897][T18339]  ? __pfx_bit_cursor+0x10/0x10
[ 1251.353939][T18339]  hide_cursor+0xdb/0x4a0
[ 1251.353971][T18339]  ? __pfx_hide_cursor+0x10/0x10
[ 1251.354020][T18339]  do_con_write+0x1e7/0x4c30
[ 1251.354057][T18339]  ? mark_lock+0x9a/0x350
[ 1251.354095][T18339]  ? __lock_acquire+0x137a/0x2040
[ 1251.354165][T18339]  ? __mutex_trylock_common+0x183/0x2e0
[ 1251.354189][T18339]  ? __pfx_do_con_write+0x10/0x10
[ 1251.354217][T18339]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1251.354247][T18339]  ? rcu_is_watching+0x15/0xb0
[ 1251.354279][T18339]  ? trace_contention_end+0x3c/0x120
[ 1251.354303][T18339]  ? __mutex_lock+0x2ef/0xd70
[ 1251.354323][T18339]  ? __pfx_bit_putcs+0x10/0x10
[ 1251.354357][T18339]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1251.354381][T18339]  ? __pfx_console_unlock+0x10/0x10
[ 1251.354413][T18339]  ? n_tty_write+0xdf8/0x1230
[ 1251.354440][T18339]  ? __pfx___mutex_lock+0x10/0x10
[ 1251.354468][T18339]  con_write+0x26/0x40
[ 1251.354490][T18339]  do_output_char+0x64c/0x970
[ 1251.354522][T18339]  n_tty_write+0xe0e/0x1230
[ 1251.354569][T18339]  ? __pfx_n_tty_write+0x10/0x10
[ 1251.354595][T18339]  ? __pfx_woken_wake_function+0x10/0x10
[ 1251.354633][T18339]  ? __virt_addr_valid+0x183/0x530
[ 1251.354654][T18339]  ? __virt_addr_valid+0x183/0x530
[ 1251.354672][T18339]  ? __virt_addr_valid+0x45f/0x530
[ 1251.354694][T18339]  ? __phys_addr_symbol+0x2f/0x70
[ 1251.354713][T18339]  ? __check_object_size+0x49c/0x900
[ 1251.354744][T18339]  ? __pfx_n_tty_write+0x10/0x10
[ 1251.354766][T18339]  file_tty_write+0x54f/0x9c0
[ 1251.354804][T18339]  vfs_write+0xa72/0xc90
[ 1251.354828][T18339]  ? __pfx_tty_write+0x10/0x10
[ 1251.354858][T18339]  ? __pfx_vfs_write+0x10/0x10
[ 1251.354919][T18339]  ksys_write+0x1a0/0x2c0
[ 1251.354949][T18339]  ? __pfx_ksys_write+0x10/0x10
[ 1251.354971][T18339]  ? do_syscall_64+0x100/0x230
[ 1251.355010][T18339]  ? do_syscall_64+0xb6/0x230
[ 1251.355037][T18339]  do_syscall_64+0xf3/0x230
[ 1251.355061][T18339]  ? clear_bhb_loop+0x35/0x90
[ 1251.355100][T18339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1251.355123][T18339] RIP: 0033:0x7fe15c779e79
[ 1251.355143][T18339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1251.355178][T18339] RSP: 002b:00007fe15d5e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1251.355203][T18339] RAX: ffffffffffffffda RBX: 00007fe15c915f80 RCX: 00007fe15c779e79
[ 1251.355220][T18339] RDX: 0000000000001006 RSI: 0000000020001040 RDI: 0000000000000004
[ 1251.355234][T18339] RBP: 00007fe15d5e7090 R08: 0000000000000000 R09: 0000000000000000
[ 1251.355254][T18339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1251.355268][T18339] R13: 0000000000000000 R14: 00007fe15c915f80 R15: 00007fffe7e050c8
[ 1251.355313][T18339]  </TASK>
[ 1251.482910][  T939] usb 5-1: new low-speed USB device number 59 using dummy_hcd
[ 1251.643337][  T939] usb 5-1: device descriptor read/64, error -71
[ 1251.946851][  T939] usb usb5-port1: attempt power cycle
[ 1252.029719][T18354] netlink: 'syz.1.3504': attribute type 1 has an invalid length.
[ 1252.248949][T17181] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[ 1252.389627][T18354] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.3504'.
[ 1252.453018][T17181] usb 4-1: device descriptor read/64, error -71
[ 1252.507669][  T939] usb 5-1: new low-speed USB device number 60 using dummy_hcd
[ 1252.642685][T17442] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[ 1252.818189][  T939] usb 5-1: device not accepting address 60, error -71
[ 1253.045045][T17181] usb 4-1: new high-speed USB device number 82 using dummy_hcd
[ 1253.084516][T17442] usb 2-1: Using ep0 maxpacket: 16
[ 1253.102452][T17442] usb 2-1: config 183 has too many interfaces: 145, using maximum allowed: 32
[ 1253.212986][T17181] usb 4-1: device descriptor read/64, error -71
[ 1253.398642][T17442] usb 2-1: config 183 has an invalid interface association descriptor of length 5, skipping
[ 1253.436456][T17442] usb 2-1: config 183 has an invalid descriptor of length 0, skipping remainder of the config
[ 1253.539060][T17181] usb usb4-port1: attempt power cycle
[ 1253.548003][T17442] usb 2-1: config 183 has 0 interfaces, different from the descriptor's value: 145
[ 1253.583333][T17442] usb 2-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= f.88
[ 1253.782765][T17442] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1253.812684][T17442] usb 2-1: Product: syz
[ 1253.826876][T17442] usb 2-1: Manufacturer: syz
[ 1253.848617][T17442] usb 2-1: SerialNumber: syz
[ 1254.003474][   T29] audit: type=1800 audit(1724187034.139:116): pid=18375 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3511" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1254.023206][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1254.052703][T17181] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[ 1254.096969][T17442] usb 2-1: USB disconnect, device number 73
[ 1254.113410][T17181] usb 4-1: device descriptor read/8, error -71
[ 1254.252711][  T939] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1254.285417][  T939] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1254.294744][  T939] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1254.307543][  T939] usb 5-1: config 0 descriptor??
[ 1254.322823][  T939] cp210x 5-1:0.0: cp210x converter detected
[ 1254.382688][T17181] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[ 1254.413341][T17181] usb 4-1: device descriptor read/8, error -71
[ 1254.432753][T11838] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1254.536474][T17181] usb usb4-port1: unable to enumerate USB device
[ 1254.612840][T11838] usb 3-1: Using ep0 maxpacket: 8
[ 1254.632540][T11838] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1254.671999][T11838] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1254.728847][  T939] cp210x 5-1:0.0: failed to get vendor val 0x0010 size 3: -32
[ 1254.740288][T11838] usb 3-1: New USB device found, idVendor=0458, idProduct=0153, bcdDevice= 0.00
[ 1254.749482][  T939] cp210x 5-1:0.0: GPIO initialisation failed: -524
[ 1254.759946][  T939] usb 5-1: cp210x converter now attached to ttyUSB0
[ 1254.826080][T11838] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1254.854295][T11838] usb 3-1: config 0 descriptor??
[ 1255.046230][T18372] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1255.255126][T18372] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1255.893111][T11071] usb 5-1: USB disconnect, device number 61
[ 1255.905672][T11071] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1255.953769][T11071] cp210x 5-1:0.0: device disconnected
[ 1256.265260][ T5229] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1256.275659][ T5229] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1256.284807][ T5229] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1256.342479][ T5229] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1256.363926][ T5229] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1256.380576][ T5229] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1256.421073][T18409] FAULT_INJECTION: forcing a failure.
[ 1256.421073][T18409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1256.462746][T18409] CPU: 1 UID: 0 PID: 18409 Comm: syz.4.3521 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1256.473635][T18409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1256.483677][T18409] Call Trace:
[ 1256.486942][T18409]  <TASK>
[ 1256.489862][T18409]  dump_stack_lvl+0x241/0x360
[ 1256.494531][T18409]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1256.499718][T18409]  ? __pfx__printk+0x10/0x10
[ 1256.504314][T18409]  ? __pfx_lock_release+0x10/0x10
[ 1256.509337][T18409]  should_fail_ex+0x3b0/0x4e0
[ 1256.514006][T18409]  _copy_from_iter+0x1f6/0x1960
[ 1256.518848][T18409]  ? __virt_addr_valid+0x183/0x530
[ 1256.523957][T18409]  ? __pfx_lock_release+0x10/0x10
[ 1256.529018][T18409]  ? __pfx__copy_from_iter+0x10/0x10
[ 1256.534320][T18409]  ? __virt_addr_valid+0x183/0x530
[ 1256.539424][T18409]  ? __virt_addr_valid+0x183/0x530
[ 1256.544520][T18409]  ? __virt_addr_valid+0x45f/0x530
[ 1256.549628][T18409]  ? __check_object_size+0x49c/0x900
[ 1256.554906][T18409]  hci_sock_sendmsg+0x4f1/0x11c0
[ 1256.559837][T18409]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1256.565199][T18409]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1256.570476][T18409]  ? security_socket_sendmsg+0x87/0xb0
[ 1256.575933][T18409]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1256.581293][T18409]  __sock_sendmsg+0x221/0x270
[ 1256.585976][T18409]  sock_write_iter+0x2dd/0x400
[ 1256.590737][T18409]  ? __pfx_sock_write_iter+0x10/0x10
[ 1256.596039][T18409]  ? bpf_lsm_file_permission+0x9/0x10
[ 1256.601410][T18409]  ? security_file_permission+0x7f/0xa0
[ 1256.606959][T18409]  vfs_write+0xa72/0xc90
[ 1256.611196][T18409]  ? __pfx_sock_write_iter+0x10/0x10
[ 1256.616481][T18409]  ? __pfx_vfs_write+0x10/0x10
[ 1256.621250][T18409]  ksys_write+0x1a0/0x2c0
[ 1256.625592][T18409]  ? __pfx_ksys_write+0x10/0x10
[ 1256.630430][T18409]  ? do_syscall_64+0x100/0x230
[ 1256.635186][T18409]  ? do_syscall_64+0xb6/0x230
[ 1256.639853][T18409]  do_syscall_64+0xf3/0x230
[ 1256.644348][T18409]  ? clear_bhb_loop+0x35/0x90
[ 1256.649021][T18409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.654904][T18409] RIP: 0033:0x7fe9ddb79e79
[ 1256.659305][T18409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1256.678913][T18409] RSP: 002b:00007fe9de9f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1256.687318][T18409] RAX: ffffffffffffffda RBX: 00007fe9ddd15f80 RCX: 00007fe9ddb79e79
[ 1256.695291][T18409] RDX: 000000000000000d RSI: 0000000020000200 RDI: 0000000000000004
[ 1256.703246][T18409] RBP: 00007fe9de9f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1256.711209][T18409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1256.719170][T18409] R13: 0000000000000000 R14: 00007fe9ddd15f80 R15: 00007ffe925a8f28
[ 1256.727139][T18409]  </TASK>
[ 1256.892754][T11838] usb 3-1: string descriptor 0 read error: -71
[ 1256.929525][T11838] usb 3-1: USB disconnect, device number 61
[ 1256.986442][   T29] audit: type=1800 audit(1724187037.119:117): pid=18411 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3522" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0
[ 1257.006187][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1257.099690][ T5613] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1257.321743][T18420] netlink: 5300 bytes leftover after parsing attributes in process `syz.4.3524'.
[ 1257.331752][T18420] openvswitch: netlink: Message has 8 unknown bytes.
[ 1257.961060][ T5613] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1258.332381][ T5613] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1258.531978][T17507] Bluetooth: hci1: command tx timeout
[ 1259.227484][ T5613] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.558355][T18406] chnl_net:caif_netlink_parms(): no params data found
[ 1259.602416][ T5613] bridge_slave_1: left allmulticast mode
[ 1259.617593][ T5613] bridge_slave_1: left promiscuous mode
[ 1259.633120][ T5613] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1259.645773][ T5613] bridge_slave_0: left allmulticast mode
[ 1259.651444][ T5613] bridge_slave_0: left promiscuous mode
[ 1259.669819][ T5613] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1259.731780][T18447] FAULT_INJECTION: forcing a failure.
[ 1259.731780][T18447] name failslab, interval 1, probability 0, space 0, times 0
[ 1260.046402][T18447] CPU: 1 UID: 0 PID: 18447 Comm: syz.0.3528 Not tainted 6.11.0-rc4-syzkaller-00008-g6e4436539ae1 #0
[ 1260.057208][T18447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1260.067272][T18447] Call Trace:
[ 1260.070560][T18447]  <TASK>
[ 1260.073502][T18447]  dump_stack_lvl+0x241/0x360
[ 1260.078205][T18447]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1260.083424][T18447]  ? __pfx__printk+0x10/0x10
[ 1260.088040][T18447]  ? fs_reclaim_acquire+0x93/0x140
[ 1260.093172][T18447]  ? __pfx___might_resched+0x10/0x10
[ 1260.098480][T18447]  should_fail_ex+0x3b0/0x4e0
[ 1260.103180][T18447]  should_failslab+0xac/0x100
[ 1260.107920][T18447]  __kmalloc_node_track_caller_noprof+0xda/0x440
[ 1260.114278][T18447]  ? smk_import_entry+0x18d/0x610
[ 1260.119327][T18447]  kstrndup+0x41/0xb0
[ 1260.123326][T18447]  smk_import_entry+0x18d/0x610
[ 1260.128198][T18447]  smk_fill_rule+0x4d/0x630
[ 1260.132724][T18447]  smk_parse_long_rule+0x617/0x7e0
[ 1260.137866][T18447]  ? __pfx_smk_parse_long_rule+0x10/0x10
[ 1260.143547][T18447]  smk_write_rules_list+0x2f9/0x450
[ 1260.148774][T18447]  ? __pfx_smk_write_rules_list+0x10/0x10
[ 1260.154518][T18447]  ? smack_privileged_cred+0xb9/0x380
[ 1260.159912][T18447]  ? __pfx_smk_write_change_rule+0x10/0x10
[ 1260.165743][T18447]  vfs_write+0x2a2/0xc90
[ 1260.170005][T18447]  ? __pfx_vfs_write+0x10/0x10
[ 1260.174785][T18447]  ? __fget_files+0x29/0x470
[ 1260.179390][T18447]  ? __fget_files+0x3f6/0x470
[ 1260.184099][T18447]  ksys_write+0x1a0/0x2c0
[ 1260.188454][T18447]  ? __pfx_ksys_write+0x10/0x10
[ 1260.193344][T18447]  ? do_syscall_64+0x100/0x230
[ 1260.198142][T18447]  ? do_syscall_64+0xb6/0x230
[ 1260.202858][T18447]  do_syscall_64+0xf3/0x230
[ 1260.207381][T18447]  ? clear_bhb_loop+0x35/0x90
[ 1260.212086][T18447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.218003][T18447] RIP: 0033:0x7fe15c779e79
[ 1260.222445][T18447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1260.242070][T18447] RSP: 002b:00007fe15d5e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1260.250512][T18447] RAX: ffffffffffffffda RBX: 00007fe15c915f80 RCX: 00007fe15c779e79
[ 1260.258498][T18447] RDX: 0000000000000022 RSI: 0000000020001180 RDI: 0000000000000003
[ 1260.266477][T18447] RBP: 00007fe15d5e7090 R08: 0000000000000000 R09: 0000000000000000
[ 1260.274457][T18447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1260.282433][T18447] R13: 0000000000000000 R14: 00007fe15c915f80 R15: 00007fffe7e050c8
[ 1260.290432][T18447]  </TASK>
[ 1260.632654][T17507] Bluetooth: hci1: command tx timeout
[ 1260.769344][ T5266] kernel write not supported for file /media0 (pid: 5266 comm: kworker/0:4)
[ 1260.922668][T18461] netlink: 5300 bytes leftover after parsing attributes in process `syz.2.3534'.
[ 1260.932715][T18461] openvswitch: netlink: Message has 8 unknown bytes.
[ 1261.333440][T18462] cannot load conntrack support for proto=3
[ 1262.327595][ T5613] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1262.336918][ T5613] bond_slave_0: left promiscuous mode
[ 1262.358200][ T5613] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1262.373428][ T5613] bond_slave_1: left promiscuous mode
[ 1262.387179][ T5613] bond0 (unregistering): (slave vlan2): Releasing backup interface
[ 1262.402472][ T5613] nlmon0: left promiscuous mode
[ 1262.410912][ T5613] bond0 (unregistering): Released all slaves
[ 1262.647318][ T5613] tipc: Disabling bearer <udp:syz2>
[ 1262.679906][ T5613] tipc: Left network mode
[ 1262.684337][T17507] Bluetooth: hci1: command tx timeout
[ 1262.703049][T18406] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1262.728287][T18406] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1262.741904][T18406] bridge_slave_0: entered allmulticast mode
[ 1262.750517][T18406] bridge_slave_0: entered promiscuous mode
[ 1262.768634][T18406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1262.788227][T18406] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1262.796615][T18406] bridge_slave_1: entered allmulticast mode
[ 1262.804229][T18406] bridge_slave_1: entered promiscuous mode
[ 1262.914206][   T29] audit: type=1326 audit(1724187043.049:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1262.956480][   T29] audit: type=1326 audit(1724187043.049:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.006695][T18406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1263.032410][T18406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1263.071835][   T29] audit: type=1326 audit(1724187043.049:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.170459][   T29] audit: type=1326 audit(1724187043.049:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.401620][ T5613] hsr_slave_0: left promiscuous mode
[ 1263.416330][   T29] audit: type=1326 audit(1724187043.049:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.444088][ T5613] hsr_slave_1: left promiscuous mode
[ 1263.458295][   T29] audit: type=1326 audit(1724187043.049:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.486640][ T5613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1263.486638][   T29] audit: type=1326 audit(1724187043.049:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18481 comm="syz.0.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe15c779e79 code=0x7ffc0000
[ 1263.580518][ T5613] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1263.621068][ T5613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1263.634395][ T5613] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1263.726396][ T5613] veth1_macvtap: left promiscuous mode
[ 1263.744621][ T5613] veth0_macvtap: left promiscuous mode
[ 1263.764151][ T5613] veth1_vlan: left promiscuous mode
[ 1263.818086][ T5613] veth0_vlan: left promiscuous mode
[ 1264.386179][T11838] kernel write not supported for file /media0 (pid: 11838 comm: kworker/1:0)
[ 1264.479490][T18499] cannot load conntrack support for proto=3
[ 1264.558266][T18503] netlink: 5300 bytes leftover after parsing attributes in process `syz.4.3547'.
[ 1264.567629][T18503] openvswitch: netlink: Message has 8 unknown bytes.
[ 1264.866590][T17507] Bluetooth: hci1: command tx timeout
[ 1265.764502][  T939] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1266.322702][  T939] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1266.336509][  T939] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.345482][  T939] usb 3-1: Product: syz
[ 1266.349671][  T939] usb 3-1: Manufacturer: syz
[ 1266.407662][  T939] usb 3-1: SerialNumber: syz
[ 1266.444314][  T939] usb 3-1: config 0 descriptor??
[ 1266.602794][T18518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3551'.
[ 1266.876484][  T939] usb 3-1: Firmware: major: 15, minor: 97, hardware type: UNKNOWN (121)
[ 1267.010406][ T5613] team0 (unregistering): Port device team_slave_1 removed
[ 1267.069855][ T5613] team0 (unregistering): Port device team_slave_0 removed
[ 1267.080676][  T939] usb 3-1: Read permanent extended address 00:00:00:00:00:00:00:04 from device
[ 1267.094970][  T939] usb 3-1: atusb_probe: initialization failed, error = -524
[ 1267.105399][  T939] atusb 3-1:0.0: probe with driver atusb failed with error -524
[ 1267.297430][T18511] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1267.311213][T18511] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1267.327599][  T939] usb 3-1: USB disconnect, device number 62
[ 1267.658509][T18406] team0: Port device team_slave_0 added
[ 1267.696349][T18406] team0: Port device team_slave_1 added
[ 1267.806874][T18406] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1267.826565][T18406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1267.902705][T18406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1267.931774][T18406] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1267.965509][T18406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1268.023269][T18406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1268.124729][T18406] hsr_slave_0: entered promiscuous mode
[ 1268.142003][T18406] hsr_slave_1: entered promiscuous mode
[ 1268.978495][T18406] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1269.026403][T18406] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1269.042972][T18406] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1269.075676][T18406] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1269.283426][T18406] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1269.325099][T18406] 8021q: adding VLAN 0 to HW filter on device team0
[ 1269.348366][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.355652][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1269.405790][T18544] netlink: 5300 bytes leftover after parsing attributes in process `syz.1.3557'.
[ 1269.415254][T18544] openvswitch: netlink: Message has 8 unknown bytes.
[ 1270.000090][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1270.007308][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1270.195865][ T5265] kernel write not supported for file /media0 (pid: 5265 comm: kworker/1:6)
[ 1270.245996][T18546] cannot load conntrack support for proto=3
[ 1270.371174][T18551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3560'.
[ 1271.613245][T18563] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3563'.
[ 1271.806313][T18406] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1272.022210][T18571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3566'.
[ 1272.147185][T18406] veth0_vlan: entered promiscuous mode
[ 1272.180971][T18406] veth1_vlan: entered promiscuous mode
[ 1272.241390][T18406] veth0_macvtap: entered promiscuous mode
[ 1272.270819][T18406] veth1_macvtap: entered promiscuous mode
[ 1272.369357][T18575] netlink: 5300 bytes leftover after parsing attributes in process `syz.2.3567'.
[ 1272.378665][T18575] openvswitch: netlink: Message has 8 unknown bytes.
[ 1273.207596][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1273.228194][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.240393][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1273.260847][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.264651][  T939] kernel write not supported for file /media0 (pid: 939 comm: kworker/0:2)
[ 1273.286037][T18579] cannot load conntrack support for proto=3
[ 1273.323125][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1273.344717][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.355082][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1273.368055][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.390675][T18406] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1273.430774][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.512777][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.556962][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.590912][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.619654][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.642421][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.668788][T18406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.691245][T18406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1274.574363][T18406] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1274.620490][T18406] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1274.682697][T18406] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1274.727559][T18406] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1274.746442][T18406] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1276.395882][T18601] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3575'.
[ 1276.951799][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1276.978342][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1277.093918][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1277.139411][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1277.804334][T18615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3578'.
[ 1277.841169][T18615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3578'.
[ 1277.867491][T17442] kernel write not supported for file /media0 (pid: 17442 comm: kworker/1:11)
[ 1281.802762][T17507] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1281.811794][T17507] Bluetooth: hci1: Injecting HCI hardware error event
[ 1282.433184][T17507] Bluetooth: hci1: hardware error 0x00
[ 1282.927069][T18624] netlink: 'syz.3.3582': attribute type 4 has an invalid length.
[ 1282.941056][T18624] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.3582'.
[ 1284.684070][T17507] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1284.998739][T18645] batadv0: entered promiscuous mode
[ 1285.612779][ T5265] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 1285.872746][ T5265] usb 5-1: Using ep0 maxpacket: 32
[ 1285.944708][ T5265] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1285.965246][ T5265] usb 5-1: config 0 has no interfaces?
[ 1285.984193][ T5265] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1286.012655][ T5265] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1286.032498][ T5265] usb 5-1: Product: syz
[ 1286.057128][ T5265] usb 5-1: Manufacturer: syz
[ 1286.057149][ T5265] usb 5-1: SerialNumber: syz
[ 1286.059889][ T5265] usb 5-1: config 0 descriptor??
[ 1286.337193][T13403] kernel write not supported for file /media0 (pid: 13403 comm: kworker/0:6)
[ 1286.368796][T18673] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3595'.
[ 1287.404143][T18674] cannot load conntrack support for proto=3
[ 1288.232892][ T5265] usb 1-1: new high-speed USB device number 60 using dummy_hcd
[ 1288.407843][T17442] usb 5-1: USB disconnect, device number 62
[ 1288.628414][ T5265] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[ 1288.740775][ T5265] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1288.822212][ T5265] usb 1-1: Product: syz
[ 1288.867059][ T5265] usb 1-1: Manufacturer: syz
[ 1288.918249][ T5265] usb 1-1: SerialNumber: syz
[ 1289.053493][ T5265] usb 1-1: config 0 descriptor??
[ 1289.409411][ T5265] usb 1-1: USB disconnect, device number 60
[ 1290.393493][T11838] usb 2-1: new high-speed USB device number 74 using dummy_hcd
[ 1290.600809][ T5265] kernel write not supported for file /media0 (pid: 5265 comm: kworker/1:6)
[ 1290.691463][T18716] cannot load conntrack support for proto=3
[ 1290.772902][T11838] usb 2-1: Using ep0 maxpacket: 32
[ 1290.805861][T11838] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1290.860164][T11838] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1290.889662][T11838] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1290.899541][T11838] usb 2-1: Product: syz
[ 1290.904046][T11838] usb 2-1: Manufacturer: syz
[ 1290.908661][T11838] usb 2-1: SerialNumber: syz
[ 1290.920022][T11838] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[ 1291.033452][ T5265] usb 1-1: new high-speed USB device number 61 using dummy_hcd
[ 1292.963859][ T5265] usb 1-1: Using ep0 maxpacket: 16
[ 1293.001457][ T5265] usb 1-1: config 0 has an invalid descriptor of length 51, skipping remainder of the config
[ 1293.025287][ T5265] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1293.118952][ T5265] usb 1-1: New USB device found, idVendor=05ac, idProduct=027d, bcdDevice= 0.00
[ 1293.169148][ T5265] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1293.228245][ T5265] usb 1-1: config 0 descriptor??
[ 1293.301480][ T5265] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1293.471060][T11071] usb 1-1: USB disconnect, device number 61
[ 1293.557150][T18743] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3616'.
[ 1300.403225][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.409720][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1312.386217][ T5229] Bluetooth: hci5: command 0x040f tx timeout
[ 1336.384448][T17513] Bluetooth: hci2: command 0x041b tx timeout
[ 1368.393579][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1368.400041][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1432.404913][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1457.392965][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1466.412519][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1466.419514][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P18736/1:b..l
[ 1466.428265][    C1] rcu: 	(detected by 1, t=10503 jiffies, g=107361, q=252 ncpus=2)
[ 1466.436098][    C1] task:syz.2.3613      state:R  running task     stack:22968 pid:18736 tgid:18733 ppid:17506  flags:0x00004006
[ 1466.449256][    C1] Call Trace:
[ 1466.452560][    C1]  <TASK>
[ 1466.455514][    C1]  __schedule+0x17ae/0x4a10
[ 1466.460099][    C1]  ? __pfx___schedule+0x10/0x10
[ 1466.464996][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1466.471027][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[ 1466.476361][    C1]  preempt_schedule_irq+0xfb/0x1c0
[ 1466.481517][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1466.487292][    C1]  irqentry_exit+0x5e/0x90
[ 1466.491734][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1466.497755][    C1] RIP: 0010:lock_acquire+0x264/0x550
[ 1466.503081][    C1] Code: 2b 00 74 08 4c 89 f7 e8 fa d6 87 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[ 1466.522717][    C1] RSP: 0000:ffffc9000e3cf340 EFLAGS: 00000206
[ 1466.528810][    C1] RAX: 0000000000000001 RBX: 1ffff92001c79e74 RCX: 988aee897bfc4000
[ 1466.536804][    C1] RDX: dffffc0000000000 RSI: ffffffff8beae6e0 RDI: ffffffff8c3f9980
[ 1466.544797][    C1] RBP: ffffc9000e3cf488 R08: ffffffff934f4847 R09: 1ffffffff269e908
[ 1466.552793][    C1] R10: dffffc0000000000 R11: fffffbfff269e909 R12: 1ffff92001c79e70
[ 1466.560807][    C1] R13: dffffc0000000000 R14: ffffc9000e3cf3a0 R15: 0000000000000246
[ 1466.568831][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1466.573915][    C1]  ? count_memcg_event_mm+0x94/0x420
[ 1466.579231][    C1]  count_memcg_event_mm+0xb1/0x420
[ 1466.584371][    C1]  ? count_memcg_event_mm+0x94/0x420
[ 1466.589684][    C1]  ? __pfx_count_memcg_event_mm+0x10/0x10
[ 1466.595430][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1466.600500][    C1]  handle_mm_fault+0x149a/0x1880
[ 1466.605502][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1466.610849][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1466.617222][    C1]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1466.622536][    C1]  exc_page_fault+0x2b9/0x8c0
[ 1466.627255][    C1]  asm_exc_page_fault+0x26/0x30
[ 1466.632142][    C1] RIP: 0010:__put_user_nocheck_4+0x7/0x20
[ 1466.637910][    C1] Code: d9 0f 01 cb 89 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00
[ 1466.657543][    C1] RSP: 0000:ffffc9000e3cf8f8 EFLAGS: 00050202
[ 1466.663640][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020108030
[ 1466.671636][    C1] RDX: ffff88802a1bda00 RSI: 0000000000000002 RDI: 00000000ffffffff
[ 1466.679640][    C1] RBP: ffffc9000e3cfa70 R08: ffffffff8971c733 R09: 1ffff92001c79ed0
[ 1466.687640][    C1] R10: dffffc0000000000 R11: fffff52001c79ed1 R12: dffffc0000000000
[ 1466.695635][    C1] R13: 0000000000000002 R14: 0000000000000000 R15: 0000000020108000
[ 1466.703639][    C1]  ? ____sys_recvmsg+0x2a3/0x470
[ 1466.708625][    C1]  ____sys_recvmsg+0x2b9/0x470
[ 1466.713429][    C1]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 1466.718764][    C1]  ? __might_fault+0xaa/0x120
[ 1466.723508][    C1]  do_recvmmsg+0x474/0xae0
[ 1466.727971][    C1]  ? count_memcg_event_mm+0x94/0x420
[ 1466.733288][    C1]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1466.738252][    C1]  ? mark_lock+0x9a/0x350
[ 1466.742762][    C1]  ? reacquire_held_locks+0x3eb/0x690
[ 1466.748156][    C1]  ? vma_end_read+0x18/0x170
[ 1466.752806][    C1]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 1466.758602][    C1]  __x64_sys_recvmmsg+0x199/0x250
[ 1466.763692][    C1]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1466.769286][    C1]  ? exc_page_fault+0x590/0x8c0
[ 1466.774178][    C1]  ? do_syscall_64+0xb6/0x230
[ 1466.778883][    C1]  do_syscall_64+0xf3/0x230
[ 1466.783415][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1466.788124][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1466.794060][    C1] RIP: 0033:0x7f6a6b579e79
[ 1466.798496][    C1] RSP: 002b:00007f6a6c3db038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1466.806944][    C1] RAX: ffffffffffffffda RBX: 00007f6a6b716058 RCX: 00007f6a6b579e79
[ 1466.814939][    C1] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1466.822938][    C1] RBP: 00007f6a6b5e7916 R08: 0000000000000000 R09: 0000000000000000
[ 1466.830931][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1466.838930][    C1] R13: 0000000000000001 R14: 00007f6a6b716058 R15: 00007ffeb6de8068
[ 1466.846953][    C1]  </TASK>