last executing test programs:

1m15.711944715s ago: executing program 1 (id=1113):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001000000018000180140002007665746830000000000000000f00000005000d"], 0x34}, 0x1, 0x0, 0x1000000}, 0x0)

1m15.632628269s ago: executing program 1 (id=1114):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
ioctl$RNDADDENTROPY(r1, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])

1m15.582382178s ago: executing program 1 (id=1115):
r0 = syz_open_dev$radio(0x0, 0xffffffffffffffff, 0x2)
unshare(0x6a040000)
ioctl$VIDIOC_ENUM_FREQ_BANDS(0xffffffffffffffff, 0xc0405665, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x8, 0x0) (fail_nth: 2)
ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f00000000c0)={0x1d74ee556075c10f, 0x0, [0x900000, 0x4, 0x5, 0xffff, 0xfff, 0xc, 0x2, 0x2d8b]})
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)

1m15.306510282s ago: executing program 1 (id=1117):
r0 = socket$nl_route(0x10, 0x3, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x28480, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth0_to_bridge\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r2}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

1m15.30466396s ago: executing program 1 (id=1118):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=' '], 0x40}}], 0x1, 0x40000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
r1 = syz_create_resource$binfmt(&(0x7f0000000400)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$binfmt(0xffffffffffffff9c, r1, 0x41, 0x1ff)
r2 = syz_open_dev$video4linux(&(0x7f0000000040), 0x20000000003, 0x88000)
ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc040564a, &(0x7f0000000340)={0x0, 0x1, 0x100f, 0xffffffffffffffff, 0x0, 0x0})
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r3, {0xee01, 0xffffffffffffffff}}, '.\x00'})
io_uring_enter(r4, 0x4d57, 0x4b21, 0x92, &(0x7f0000000180)={[0xffff4022, 0x5]}, 0x8)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000000209000200737997310000000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a3c000000090a010400000000000000000a0000040900020073797a310000000008000a40fffffffc0900010073797a310000080005400000000b140000001100010000000000000000000100000ad6a431514afd01a510d21b03a9e30c06f9605948565516044ab8077cdbfc4afc160000"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x4000000)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$afs(&(0x7f0000001180)=ANY=[@ANYBLOB='%syz1:syz1.'], &(0x7f0000000280)='./file0\x00', &(0x7f0000000300), 0x10, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280), 0x17)
r7 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x80)
ioctl$I2C_PEC(r7, 0x708, 0x2)
ioctl$I2C_SMBUS(r7, 0x720, &(0x7f0000000100)={0x0, 0x4, 0x5, &(0x7f0000000080)={0x1f, "14a6c63d876ff44271f19ca6e4482707dab7299602aed83463604d70b41d4008e3"}})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r6}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r6, @ANYBLOB="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"], &(0x7f0000000d40)='syzkaller\x00'}, 0x90)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)}], 0x1}}], 0x1, 0x4000840)
r8 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r8, 0xc0145b0e, &(0x7f0000000040))
ioctl$FS_IOC_GETVERSION(r8, 0xc0145b0e, &(0x7f0000000000))
sendmsg$NFT_MSG_GETSET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="140000000a0a010200000000000000000a0043aa"], 0x14}, 0x1, 0x0, 0x0, 0x24048014}, 0x4000)

1m14.020927475s ago: executing program 1 (id=1123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000040000000700000006"], 0x48)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r1, 0x5606, 0x4) (async)
ioctl$VT_ACTIVATE(r1, 0x5606, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r1}, 0x8) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r1}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x13, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYRESHEX=r1, @ANYRESDEC=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0x25) (async)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0x25)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), 0xffffffffffffffff)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x14d802, 0x0)
ioctl$FS_IOC_RESVSP(r5, 0x402c5839, &(0x7f00000004c0)={0x20, 0x0, 0x0, 0x2000000400})
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000f0b2338a51299d2a527a990afaebcad63ee24ec984e949a1cdfa9ffafa4d915fafa798a9c8f48c7b5590c3396942f7860e842b7f04e9a996b2ed3cc699370c7c9996060000000000000007ab2c2a4509d384d8977fd774c1d92248d8218e5142ba994aa1c27e01e7a2f7af42bb7ac7fe58bc9b6fe598b6cdf1b88492f792ac629a78a5bddee3d7e2b282af018af99148b2578b2ba71eb3066a68d5ab84bc15a719980cbbf2e63106fcfb26657cc4b22ff12dd6a7d83b37c6c8a2190f2c41b6390fdbfd1f3ed1e8518e1d4f7192086b726c780508d7f4", @ANYRES16=r4, @ANYBLOB="0100000000000000000019000000"], 0x14}}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)

55.040027988s ago: executing program 32 (id=1123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000040000000700000006"], 0x48)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r1, 0x5606, 0x4) (async)
ioctl$VT_ACTIVATE(r1, 0x5606, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r1}, 0x8) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r1}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x13, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYRESHEX=r1, @ANYRESDEC=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0x25) (async)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0x25)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), 0xffffffffffffffff)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x14d802, 0x0)
ioctl$FS_IOC_RESVSP(r5, 0x402c5839, &(0x7f00000004c0)={0x20, 0x0, 0x0, 0x2000000400})
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000f0b2338a51299d2a527a990afaebcad63ee24ec984e949a1cdfa9ffafa4d915fafa798a9c8f48c7b5590c3396942f7860e842b7f04e9a996b2ed3cc699370c7c9996060000000000000007ab2c2a4509d384d8977fd774c1d92248d8218e5142ba994aa1c27e01e7a2f7af42bb7ac7fe58bc9b6fe598b6cdf1b88492f792ac629a78a5bddee3d7e2b282af018af99148b2578b2ba71eb3066a68d5ab84bc15a719980cbbf2e63106fcfb26657cc4b22ff12dd6a7d83b37c6c8a2190f2c41b6390fdbfd1f3ed1e8518e1d4f7192086b726c780508d7f4", @ANYRES16=r4, @ANYBLOB="0100000000000000000019000000"], 0x14}}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)

25.791386199s ago: executing program 0 (id=1402):
syz_open_dev$evdev(0x0, 0x3, 0xa0400)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
socket$unix(0x1, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f000000bbc0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001180)="dd", 0x1}], 0x1, 0x0, 0x0, 0x20000041}}], 0x1, 0xc004)
recvmmsg(r2, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x700, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
shutdown(0xffffffffffffffff, 0x0)
msgrcv(0x0, 0x0, 0xffffffffffffff20, 0x0, 0xa1e3a9fe3eb9c551)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000006180)={0x2020}, 0x2020)

23.195142504s ago: executing program 0 (id=1415):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0900000004000000dd0000000a00000000000000", @ANYRES32, @ANYBLOB="000000000000001c00dfffffff0000000981bb6673a552f071733fe8b7cb00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x48, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb600000000000000008d0000007500000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1f, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r4}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x7, 0x4, 0x100, 0x4, 0x24}, 0x50)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x1002, 0x0)
r8 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r9=>0x0})
connect$can_bcm(r8, &(0x7f00000000c0)={0x1d, r9}, 0x10)
sendmsg$can_bcm(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x1, 0x40, 0x0, {}, {}, {0x2, 0x1, 0x1, 0x1}, 0x1, @can={{0x4, 0x0, 0x1, 0x1}, 0x6, 0x2, 0x0, 0x0, "0a20fde243ba535f"}}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
r10 = getgid()
r11 = socket$nl_crypto(0x10, 0x3, 0x15)
r12 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r12, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000000}, 0x4008000)
statx(0xffffffffffffffff, &(0x7f0000000b00)='./file0\x00', 0x1000, 0x10, &(0x7f0000000c00))
getresgid(&(0x7f0000000b40), &(0x7f0000000b80), &(0x7f0000000d00))
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000fc0)={0x11, 0xf, &(0x7f0000000d40)=@raw=[@alu={0x7, 0x0, 0xb, 0x2, 0x2, 0x1, 0x4}, @ldst={0x0, 0x1, 0x0, 0x3, 0x6, 0xfffffffffffffff0, 0xfffffffffffffff0}, @generic={0x8, 0x3, 0xf, 0x7, 0xc}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @cb_func={0x18, 0xa, 0x4, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x9, 0xb, 0x4, 0x30, 0xfffffffffffffff0}], &(0x7f0000000dc0)='GPL\x00', 0x2, 0x9d, &(0x7f0000000e00)=""/157, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000ec0)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000f00)={0x0, 0x0, 0x40004, 0xffff}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000f40)=[0x1, r0, r0, r6, r6, r6], &(0x7f0000000f80)=[{0x4, 0x1, 0x2, 0xa}, {0x5, 0x5, 0x5, 0xb}, {0x5, 0x5, 0xe, 0xd}, {0x3, 0x1, 0x8, 0xb}], 0x10, 0x60}, 0x94)
ioctl$sock_SIOCGPGRP(r8, 0x8904, &(0x7f0000001080)=<r14=>0x0)
r15 = getpid()
sched_setaffinity(r15, 0x8, &(0x7f0000000240)=0x2)
getresuid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=<r16=>0x0)
r17 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r17, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r17, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, <r18=>0x0}, 0x2020)
syz_fuse_handle_req(r17, &(0x7f0000004180)="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", 0x2041, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xffffffffffffffff, {0xffffffffffffffff, 0x0, 0x101, 0x3, 0x140, 0x4, {0x3f, 0xd08, 0x0, 0x100, 0x0, 0x0, 0x9, 0x0, 0x122, 0x6000, 0x10000, 0x0, r18, 0x902, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000012c0)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000200)=[{&(0x7f00000004c0)="6491a9204a9f5f003a1cb79fd792931605a93a51d1c51a8fbdb4d9d21fee39207803e88636ee046a7d3db5590f8358cb479e89bc702b234d909166ab3872ec442747b0c71475379a059d5103522205b6c7b941a2d067cd396b9401ac10032c9aaf5008e9af7a200f5d28d20b547d69cf76819f43ee2bda7da753957ddeb1f08af84ca9821cebe9fa8b16ea215caea83c2d440ded0ba575294634a4077d8d0ecbffca9cf1cbbc05e18fa5cad280996670f3b7eb515ad63406be06f2e931c589d6d9209aa7802188b900f7115e6df3138b87b922", 0xd3}, {&(0x7f0000000180)="85a5b5e113466339984549f78c66e711d5a9da3aac38fe4fe86949cd00a9115afeb42ead72a97f2b329ec534edc777ecd290caf62b1b8729498760af0d41b941f53423", 0x43}], 0x2, 0x0, 0x0, 0x5}}, {{&(0x7f0000000680)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000780)=[{&(0x7f0000000700)="da0f85bfaf510f2649a1afeb6b6013b8023d3cc00b37096ecad0ac5f33fbee4bfa39be2c8fda052e100e23fe2f6c1afa20014a552d9e5415a0c623eb811a9a1a579263f4af3314d30f9e286c8b8d1fe61dfadf620fcdbeaa1fc0dc8d600144f55ae7568e3293842c5501148dbff9f40b5ae3ecc1", 0x74}], 0x1, &(0x7f00000013c0)=[@cred={{0x18, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x18, 0x1, 0x2, {0x0, 0x0, r10}}}, @rights={{0x30, 0x1, 0x1, [r6, r4, r11, r12, r2, r8, r5, r2, r4]}}, @rights={{0x24, 0x1, 0x1, [r8, r7, r3, 0xffffffffffffffff, r8, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r1, r3]}}, @rights={{0x2c, 0x1, 0x1, [r2, 0xffffffffffffffff, r6, r1, r3, r7, r0, r13]}}, @rights={{0xc}}, @cred={{0x18, 0x1, 0x2, {r14, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [r6, r7]}}, @cred={{0x18, 0x1, 0x2, {r15, r16, r18}}}], 0x114, 0x10}}], 0x2, 0x20004800)
sendmsg$can_bcm(r8, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0100"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)

22.99172978s ago: executing program 0 (id=1418):
socket$nl_route(0x10, 0x3, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto(r1, &(0x7f0000000500)="e0584c7be27fb957ee1f0873e0c961135efb286b0ac86ad2d0da3b7bcd1f26bcce99ad06edf0fef5e0ab45b9341f866fbca0f93a5721396137e2e09b4a0c1179413ed8a54edb312816fcafb41ad363fe0687b284d54edc1ee2fc7e46e5d38636e092f1", 0x63, 0x400c804, 0x0, 0x0)
r3 = socket(0xa, 0x5, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = dup(r4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r4, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r6 = dup(r4)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000000)='bond_slave_1\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000a40)={0x0, @in6={{0xa, 0x4e24, 0x5, @loopback, 0x1}}, 0x4, 0x1, 0xf06, 0x0, 0xac, 0x7d, 0x5}, 0x9c)
clock_gettime(0x0, 0x0)
futimesat(r5, 0x0, &(0x7f00000002c0))
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, 0x0, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)=@newtaction={0x14, 0x30, 0x1, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x2000c800}, 0x2400c800)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x3}}, 0x1000000, 0x31, 0xffff1896, 0x3, 0x6, 0x8, 0x1b}, 0x9c)
close_range(r3, 0xffffffffffffffff, 0x0)

22.15857738s ago: executing program 3 (id=1421):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffffff, 0xc080661a, &(0x7f0000000340)={@desc={0x1, 0x0, @desc3}})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x26, &(0x7f0000000480)=ANY=[@ANYBLOB="8e29fd79289bbbbbbbbbbbbb88a8240008ff3d00000c0100008007030000f4c56a518e8196f86115f8354d9f33efa69f6833efa725671184850e4001e7b906370a16b04e804fed52dd57512370574618c245f57ac6074e7e2b6e0e429b970e6046d6804783b1274e0249d44afa29ff9120f6399eec52b258f6f528f69e5d0756ed74da000000000000000000000100"], 0x0)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c40)=ANY=[@ANYBLOB="8c9c5400", @ANYRES16=0x0, @ANYBLOB="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"/1158], 0x48c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000000)=@ethtool_ringparam={0xa, 0x0, 0x300, 0x0, 0x10, 0x1, 0x2, 0xfffffffd, 0x4}})
creat(&(0x7f0000000440)='./file0\x00', 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)

22.059274442s ago: executing program 0 (id=1422):
syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x400001, 0x0, 0x3, 0x0)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x36b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xffffffff, 0x0, 0xb49, 0x9, 0xd, 0x0, 0x3}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0x40045010, &(0x7f0000000080)=0xd8eb)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r2, 0x0, 0x20044000)
r4 = socket$inet6(0xa, 0x1, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb030005000000000002"], 0x50}}, 0x4)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000005c0)={{{@in6=@ipv4={'\x00', '\xff\xff', @private=0xa010101}, @in=@private=0xa010102, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0xfffffffffffffffe}, 0x0, 0x10, 0x1, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x42}, 0x0, 0x0, 0x0, 0x4}}, 0xe4)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB="0008002764a98a", @ANYRES16=0x0, @ANYBLOB="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"], 0x108}, 0x1, 0x0, 0x0, 0x48000}, 0x8000)
r6 = syz_open_dev$dri(0x0, 0x7, 0x220042)
r7 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r7, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[<r9=>0x0], &(0x7f0000000340), 0x0, 0x1, 0x0, 0x0, r8})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r6, 0xc01064ab, &(0x7f0000000440)={0xa, r9})
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
fsopen(&(0x7f00000000c0)='hugetlbfs\x00', 0x1)

21.569773599s ago: executing program 3 (id=1428):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r3)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x400, 0x1a1)
fcntl$setlease(r4, 0x400, 0x1)
r5 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f00000000c0)=0xe9)

20.818846145s ago: executing program 0 (id=1432):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r1, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)

19.932336747s ago: executing program 0 (id=1433):
socket$xdp(0x2c, 0x3, 0x0)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYRES64], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in6=@private2, 0x0, 0xfffd, 0x4e21, 0x0, 0x2, 0x0, 0x60, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x5, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x4d5, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x1, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

15.538940356s ago: executing program 3 (id=1445):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
io_setup(0x25, &(0x7f00000002c0)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])
ppoll(&(0x7f0000000040)=[{r0, 0x6790}], 0x1, 0x0, 0x0, 0x0)
shutdown(r0, 0x0)

15.028034507s ago: executing program 3 (id=1448):
openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x121000, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0xe, 0x9})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f00000000c0))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x54}}, 0x0)
unshare(0x8000000)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r8, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r8, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
semget$private(0x0, 0x4000, 0x0)

13.245605413s ago: executing program 3 (id=1453):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r3)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x400, 0x1a1)
fcntl$setlease(r4, 0x400, 0x1)
r5 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f00000000c0)=0xe9)

9.071609693s ago: executing program 4 (id=1457):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x3c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7fff}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4841}, 0x4080000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30102040}, 0xc, &(0x7f0000000140)={&(0x7f0000000940)={0x408, r2, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x1, 0x23}}}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x12ed}, @NL80211_ATTR_FRAME={0x3d6, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1}, {0x1}, @broadcast, @device_a, @from_mac=@device_b, {0x1}, @value=@ver_80211n={0x0, 0x3, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1}}, 0x6, @random=0x2, 0x1204, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x5, [{}, {0xc, 0x1}, {0x3}, {0x15, 0x1}, {0x6b}]}, @val={0x3, 0x1, 0x4}, @void, @val={0x6, 0x2, 0x8a}, @void, @void, @val={0x2a, 0x1, {0x0, 0x1, 0x1}}, @void, @val={0x2d, 0x1a, {0x8000, 0x2, 0x1, 0x0, {0x0, 0x1ff9, 0x0, 0x24f, 0x0, 0x1}, 0x1, 0x5, 0x4}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0xf8, 0x48}}, @void, [{0xdd, 0x8b, "62a2411498984b27955f1241e89ad51fcc347d5f30de37f04d849ab1b6f3787161d2f10eef5616d6914651676e4d78f8e11f5db9f40d1d57e6d77034fdcb8007b2a7256918c7f9d06b6434190dbc5d1dd9c54b736512df1699db4c447ebdf42deea38707378e1a2db96f008967e7c2224115e2b62a2da46fe291c94468c41ad4882f466f565f898b6921a4"}, {0xdd, 0x94, "32d8a70b817e8481176f0b05a3e8b9d234aff31058128aa77a35898b2416d2e4e12fd7faa66423d6f1e01cdfe0320d5db0ad3fef374ff7288a7b668c18eff71b7f2a63ea4e887621c7a39ffdc662dfd8833a453adb4a4c72ec4545cf8ee6528f2523efb4337f578f2d5a6238a0019e884fb52d15dcd60b9dc9ac9d9b64697abc6f5be74b464a31db40cea0ab711fac14412b1d1b"}, {0xdd, 0xbe, "e5703df9a9a37e7f4ff775926c558fbeb1cdfdc3f435e7fbe8da321515a66b677ca1b05f51f9fd346f12bc994752c62cab008d5c060c5b77445ff51530f5679cff1ad931f356528e6952270a9c4d13ea12236080894000663404398dbf834e94b1dae240f6b68f253f020003fe0a276037c9ca0662bdf137f1164c11af345cd6ec08866a3e1893e71bb8c382d8c9d2322a4073230cdf7db4238b5e74b8c958e2cf9a37061fa561be543aef743cb215fd49c8328eb80058d0d0c3bcca5abc"}, {0xdd, 0x2d, "d8edc1b6db634b3ea49c063168a5dbac491e11942b253ab9c94997cc974f8e6f418a39bf5ba600806cd10fdd4f"}, {0xdd, 0x7c, "0aa374497122fa73c10bf70826f582e77cddcf6d8bc94476e4e2e751360d03b36a864d0dc3ef8b0e7e7223499c5e315eeb05b994ab6022d6643de01840515953c0325a6eddc4eb2317755edb5beb5e77d395ec6f48f5f64d632b2a92902545d4f0685ecca50d4506dbb3fafcaa3d6901e9b4a7d2f0ae4edf2de558eb"}, {0xdd, 0x8f, "b109c1b9b02bb45aa547b4a8296723ee5907352f3b7bcaae950ef0125c22996eb602a262b7839751dc48a66709df01614c57f9e3239546657646cc74576ef386873e7cc9d0640e26d929c21fbbac087586d53253328a5ffb02a96bc84bd9407ee57ee4f2659e94357fed97ad5e44f24d56e1d3aa35abfe0a1be8a0443e30ba257f4f5d691af26804b02dabc1472d46"}, {0xdd, 0x41, "712f8d38693e7a9d24f546909c16498a1bda96d06ba2c7b0291dc39c8380eff8af56dcf3157eb0326e2757c9f3ed5eb84d3e5a954ae8718c9153bcee4bee22005e"}]}}]}, 0x408}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048010)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r5, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

8.960110697s ago: executing program 4 (id=1458):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r4, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x100000, 0x244c, 0xffffffffffffffff, 0x101, 0x0, 0xfffffffc})
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f00000000c0)=0xb0000)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b37, &(0x7f0000000000)={'wlan1\x00'})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x38, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000480)={{{@in=@dev, @in=@initdev}}, {{@in6=@remote}, 0x0, @in=@remote}}, &(0x7f0000000280)=0xe4)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000580))

6.412005007s ago: executing program 4 (id=1459):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0xeeef0000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
close(r1)

6.361381234s ago: executing program 2 (id=1460):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000780)={0x1c, r0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x10)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r0, 0x200, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x345}]}, 0x28}}, 0x4000)

6.35518053s ago: executing program 2 (id=1461):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbff, {}, [{0x90, 0x1, [@m_ct={0x44, 0x18, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mq_open(0x0, 0x40, 0x0, &(0x7f0000000040)={0xa00000000000, 0x2, 0x3, 0x10001})
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@verity_off}]})
r3 = openat2$dir(0xffffff9c, &(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000140)={0x40, 0x110, 0x10}, 0x18)
open$dir(&(0x7f0000000000)='./file1\x00', 0x802, 0x84)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000280)={0x8000000000000001, 0x3, 0x5, 0xfffffffb})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$inet6(0x10, 0x3, 0x0)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20200402}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRES16=r7, @ANYBLOB="00082abd7000fcdbdf250e000000080005000700000008000600eb3700003c00038014000600fe8000000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
read(r6, &(0x7f0000000340)=""/254, 0xfe)

6.020476646s ago: executing program 4 (id=1462):
keyctl$join(0x1, &(0x7f0000000000)={'syz', 0x0})
syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x7a, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x60, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0xffe4, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x8c, 0x30, 0xb, 0x2000000, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x10001)

4.968914481s ago: executing program 33 (id=1433):
socket$xdp(0x2c, 0x3, 0x0)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYRES64], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in6=@private2, 0x0, 0xfffd, 0x4e21, 0x0, 0x2, 0x0, 0x60, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x5, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x4d5, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x1, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

4.811604483s ago: executing program 2 (id=1464):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r4, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x100000, 0x244c, 0xffffffffffffffff, 0x101, 0x0, 0xfffffffc})
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r4, 0x7a4, &(0x7f0000000000)={{@host}, 0x200000000000, 0x0, 0x0, 0xfffffffc})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b37, &(0x7f0000000000)={'wlan1\x00'})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x38, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000580))

1.922649984s ago: executing program 4 (id=1465):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='contention_begin\x00', r0}, 0x18)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/consoles\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/73, 0x49, 0x9) (fail_nth: 2)

1.748745455s ago: executing program 2 (id=1466):
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x6c0e, 0x0, 0x0, 0x0)
syz_emit_vhci(0x0, 0x7)

1.659792384s ago: executing program 2 (id=1467):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195f51584b3ad"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r1, 0x400c4807, &(0x7f0000000040)={0x3, 0x100, 0x7})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x7, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000160001000000180095000000000000000500feff"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket(0x10, 0x3, 0x0)
r3 = openat$cachefiles(0xffffff9c, &(0x7f0000000040), 0x4000, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00'})
sendmsg$nl_route_sched(r2, 0x0, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200082}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x14, r4, 0x800, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x2001c000}, 0x4000804)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000440)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/183, 0xb7, 0x1, &(0x7f0000000340)=""/232, 0xe8}, &(0x7f0000000480)=0x40)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000019080)=0x30)
ioctl$DRM_IOCTL_UNLOCK(r3, 0x4008642b, &(0x7f0000000180)={0x0, 0x12})

1.6592011s ago: executing program 4 (id=1468):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d80)=@newtaction={0x190, 0x30, 0x1, 0x0, 0x0, {}, [{0x17c, 0x1, [@m_simple={0x130, 0x1, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0xfffffd55, 0x2, {0x4, 0x100, 0x8, 0xfff, 0x4}}, @TCA_DEF_DATA={0x8, 0x3, 'GrL\xe6\xbaa<\xec7\x7f\x01\x00\x00\x00\x00\x00\x00\x00[\xc7\xbb\xe5<\xd2N\xd1\x98\xe9\xb3Wg\xce\xd1J\xae\xfa\xa2(\x00\x00\x00\x00\x00\x00\xed\xa2F~\x15k\xae\xc4\xdc<\xd35\x01\xbbQ\xcd\x14\xc7\x81\xa6\xd7\xd9\xa8B\xb8\xe8\x95\x92U\xa6\xdfB\x06\xbf!7]mS\xa0X\x01\xb6\x84#\x06\xee:\x06[\xff]A;t\x9f\xa0vJ\x18k\xb4\xe7\x8a>Y\xb8\xee\nB\xa1I\xe2\x06\x0f\xf8\x14\x8c\\\x8aN\"'}, @TCA_DEF_PARMS={0x18, 0x2, {0x401, 0xfffffffc, 0x6, 0xfffffffd, 0x1}}]}, {0xfb, 0x6, "22a2e8b303885c72a0d01014c976bee7cc82c87b2329c55ebb21f0b1bafc324a6fcc7cea4dec263b8c85c47999f30a303d5aeea16ef9159fa4ff3183b6c98b786d5f95edc74ae93ee0f46c111efe267e1715ce90c95d01b3edaa44ab927d53177fd37a04a327e4258c7c67b9dfc3a2638f6b2accbe287c92b4df5ec33d338cdbd6f63a01e1437e211da4633e84cb66030a9f781be3f5244a1b0233980c3d89cce9d87f515d1115b966106b510adb85b662921e3071ae7c921c25042b35c3759b5ead73fa26"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5, 0x0, 0x400}, 0xfffc}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={r0, r1, 0x0, 0x0, 0x0}, 0x30)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f00000002c0)={@ipv4={""/10, ""/2, @initdev}, <r3=>0x0}, &(0x7f0000000340)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv0\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_GET(r2, &(0x7f0000000740)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000700)={&(0x7f0000000a40)={0x164, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {}, [{{0x8, 0x1, r3}, {0x80, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0xffffffffffffff90}, {0x2}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r5}, {0xc0, 0x2, 0x0, 0x1, [{0x4c, 0x1, @enabled}, {0x38, 0x1, @user_linkup_enabled={{}, {0x0, 0x6, r4}}}, {0x38, 0x1, @queue_id}]}}]}, 0x164}, 0x1, 0x0, 0x0, 0x40}, 0x480d0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000002100000828bd7000fddbdf25020080cd800000051200014008000100ac1414bb45e79c20fe57f965430019be850358e76082079cc3666cd3427daa4cf6ae13cf8e39eb68e0773bd5dd"], 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x4000885)
r10 = dup(r9)
write$UHID_INPUT(r10, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000540)=0x7b1)
ioctl$SNDCTL_TMR_START(0xffffffffffffffff, 0x5402)

1.612223144s ago: executing program 5 (id=1463):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000002000000000000800000000850000000f00000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f5c4e59f8500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc}, 0x50) (fail_nth: 2)

1.48072805s ago: executing program 5 (id=1469):
r0 = socket(0x200000000000011, 0x2, 0x0)
getsockopt$sock_timeval(r0, 0x1, 0x12, 0x0, &(0x7f0000000a80))

1.317511182s ago: executing program 5 (id=1470):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x2515, 0x0, 0x1000, 0x1000, &(0x7f0000fef000/0x1000)=nil})
close(r1)

1.109899126s ago: executing program 5 (id=1471):
socket$nl_netfilter(0x10, 0x3, 0xc)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x7fffffff, 0x9, 0x31363553, 0x0, 0xa, [{0x4, 0x5}, {0x6, 0x7f36}, {0x8, 0x2070}, {0x3, 0xf}, {0xa, 0xff}, {0x6, 0x589}, {0x8, 0x1}, {0x10041, 0x8}], 0xf5, 0x8, 0x2, 0x2, 0x7}})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f00000002c0)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000003c0)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016fef8a9cedaf6bec340dee49474360d34cb800", 0x0, 0x48)
r5 = dup(r0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x72, 0x5, r5, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(0xffffffffffffffff, 0x47f5, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x0, 0xcf}, 0x28)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRES16=r5], 0x0, 0x26, 0x0, 0x0, 0x4000}, 0x28)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x25, &(0x7f0000000080)=0x200, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)

1.06141275s ago: executing program 3 (id=1472):
syz_open_dev$evdev(&(0x7f0000000140), 0x3, 0xa0400)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
socket$unix(0x1, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f000000bbc0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001180)="dd", 0x1}], 0x1, 0x0, 0x0, 0x20000041}}], 0x1, 0xc004)
recvmmsg(r2, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x700, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
shutdown(0xffffffffffffffff, 0x0)
msgrcv(0x0, 0x0, 0xffffffffffffff20, 0x0, 0xa1e3a9fe3eb9c551)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000006180)={0x2020}, 0x2020)

1.054106392s ago: executing program 2 (id=1473):
socket$xdp(0x2c, 0x3, 0x0)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in6=@private2, 0x0, 0xfffd, 0x4e21, 0x0, 0x2, 0x0, 0x60, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x5, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x4d5, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x1, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

0s ago: executing program 5 (id=1474):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x10, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x15)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
pipe2(&(0x7f0000000040), 0x0)
memfd_create(&(0x7f00000000c0)='\xe9`\x10\x98[\x82?O3#\xfa\x02\xdc\x96\xa1\xbc\x80\x00+\xb6O', 0x0)
sendfile(r3, r3, 0x0, 0x40008)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r5)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) (fail_nth: 2)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

kernel console output (not intermixed with test programs):

o /dev/usb/adutux0
[  207.331355][ T8674] IPVS: using max 45 ests per chain, 108000 per kthread
[  207.539836][ T8640] usb 8-1: Couldn't submit interrupt_out_urb -90
[  207.552269][ T6039] usb 8-1: USB disconnect, device number 8
[  209.793799][   T63] usb 38-1: device descriptor read/8, error -110
[  210.000310][ T6039] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  210.201485][   T63] usb usb38-port1: attempt power cycle
[  210.205886][ T6039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  210.216902][ T6039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  210.225672][ T6039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  210.235702][ T6039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  210.271465][ T6039] usb 6-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  210.278480][ T6039] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.284285][ T6039] usb 6-1: Product: syz
[  210.286244][ T6039] usb 6-1: Manufacturer: syz
[  210.289013][ T6039] usb 6-1: SerialNumber: syz
[  210.317806][ T6039] usb 6-1: config 0 descriptor??
[  210.743457][ T6039] adutux 6-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  210.808517][   T63] usb usb38-port1: unable to enumerate USB device
[  210.981222][ T8735] usb 6-1: Couldn't submit interrupt_out_urb -90
[  211.082119][  T842] usb 6-1: USB disconnect, device number 7
[  211.755880][ T8758] netlink: 12 bytes leftover after parsing attributes in process `syz.3.757'.
[  212.031822][ T8763] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  213.617836][   T13] wlan0: Trigger new scan to find an IBSS to join
[  214.530187][   T13] wlan0: Selected IBSS BSSID 50:50:50:50:50:50 based on configured SSID
[  216.514856][ T8837] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  216.646155][ T8843] netlink: 12 bytes leftover after parsing attributes in process `syz.1.779'.
[  216.975570][ T8850] input: syz0 as /devices/virtual/input/input41
[  217.426000][   T57] IPVS: starting estimator thread 0...
[  217.529793][ T8868] IPVS: using max 42 ests per chain, 100800 per kthread
[  222.408192][ T8951] siw: device registration error -23
[  222.547648][ T8952] siw: device registration error -23
[  224.482206][ T8959] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  226.872528][ T8993] netlink: 'syz.1.818': attribute type 10 has an invalid length.
[  226.881094][ T8993] team0: Port device dummy0 added
[  226.890284][ T8993] netlink: 8 bytes leftover after parsing attributes in process `syz.1.818'.
[  227.029884][ T8996] afs: Unknown parameter 'dy6àΣüöÄaz'
[  227.112799][ T8999] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  227.516263][ T9005] siw: device registration error -23
[  229.390299][ T9023] overlayfs: failed to clone upperpath
[  231.559792][ T9044] infiniband syz1: set active
[  231.561597][ T9044] infiniband syz1: added syz_tun
[  231.622348][ T9044] RDS/IB: syz1: added
[  231.624166][ T9044] smc: adding ib device syz1 with port count 1
[  231.626638][ T9044] smc:    ib device syz1 port 1 has no pnetid
[  232.438027][ T9059] netlink: 12 bytes leftover after parsing attributes in process `syz.3.834'.
[  232.444617][ T9059] pim6reg: entered allmulticast mode
[  232.925660][ T9069] afs: Unknown parameter 'dy6àΣüöÄaz'
[  233.020918][ T9070] overlayfs: failed to clone upperpath
[  233.231947][ T9057] pim6reg: left allmulticast mode
[  234.501608][ T9093] netlink: 16 bytes leftover after parsing attributes in process `syz.3.843'.
[  234.657504][ T9097] sp0: Synchronizing with TNC
[  234.664987][ T9097] netlink: 8 bytes leftover after parsing attributes in process `syz.3.844'.
[  234.669529][   T63] kernel read not supported for file /newroot/227/file0 (pid: 63 comm: kworker/2:2)
[  234.908558][ T9099] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  234.912168][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.914893][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.917858][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.920821][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.923719][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.926728][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.929486][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.932226][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.934993][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.937733][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.940892][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.944475][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.948083][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.951678][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.954439][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.957256][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.960127][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.962945][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.965920][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.968595][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.971620][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.974468][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.977158][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.979913][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.982648][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.985739][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.988564][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.991787][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.994765][ T9099] overlayfs: maximum fs stacking depth exceeded
[  234.997431][ T9099] overlayfs: maximum fs stacking depth exceeded
[  235.000216][ T9099] overlayfs: maximum fs stacking depth exceeded
[  235.002925][ T9099] overlayfs: maximum fs stacking depth exceeded
[  235.423312][ T9114] overlayfs: failed to resolve './file1': -2
[  235.731275][   T40] kauditd_printk_skb: 112 callbacks suppressed
[  235.731291][   T40] audit: type=1804 audit(1767153386.036:268): pid=9117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.850" name="bus" dev="ramfs" ino=23447 res=1 errno=0
[  235.760043][   T40] audit: type=1804 audit(1767153386.046:269): pid=9117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.850" name="bus" dev="ramfs" ino=23447 res=1 errno=0
[  237.146528][ T9133] netlink: 'syz.3.853': attribute type 39 has an invalid length.
[  237.244050][ T9140] sp0: Synchronizing with TNC
[  237.360916][ T9140] sp0: Found TNC
[  237.862717][ T9155] overlayfs: failed to resolve './file1': -2
[  239.162698][ T9170] netlink: 'syz.2.863': attribute type 1 has an invalid length.
[  239.202035][ T9172] rdma_rxe: rxe_newlink: failed to add syz_tun
[  239.392714][ T9175] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(133)
[  239.394998][ T9175] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  239.397747][ T9175] vhci_hcd vhci_hcd.0: Device attached
[  239.599855][ T6031] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  239.659717][ T6031] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  240.420098][ T9187] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  240.428174][ T9187] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  240.542307][ T9187] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  240.546594][ T9187] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  240.583765][ T9187] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  240.585870][ T9187] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  240.593357][ T9187] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  240.609096][ T9187] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  240.747003][ T9178] vhci_hcd: connection reset by peer
[  240.757047][   T46] vhci_hcd vhci_hcd.1: stop threads
[  240.759274][   T46] vhci_hcd vhci_hcd.1: release socket
[  240.762138][   T46] vhci_hcd vhci_hcd.1: disconnect device
[  241.859719][ T5940] Bluetooth: hci0: command 0x0406 tx timeout
[  241.980541][ T9215] tmpfs: Bad value for 'mpol'
[  242.580253][ T5940] Bluetooth: hci1: command 0x0406 tx timeout
[  242.669717][ T5940] Bluetooth: hci3: command 0x0406 tx timeout
[  242.669740][ T5952] Bluetooth: hci2: command 0x0406 tx timeout
[  243.244294][ T9234] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  243.504721][ T9239] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  243.540865][ T9239] overlayfs: overlapping lowerdir path
[  243.773499][ T9243] netlink: 48 bytes leftover after parsing attributes in process `syz.2.882'.
[  243.939737][ T5952] Bluetooth: hci0: command 0x0406 tx timeout
[  244.659769][ T5952] Bluetooth: hci1: command 0x0406 tx timeout
[  244.739788][ T5940] Bluetooth: hci3: command 0x0406 tx timeout
[  244.742489][ T5952] Bluetooth: hci2: command 0x0406 tx timeout
[  244.819968][ T6031] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  245.019027][ T9265] sp0: Synchronizing with TNC
[  245.100180][ T9265] sp0: Found TNC
[  247.301124][ T9304] fuse: Bad value for 'fd'
[  248.042370][ T9310] openvswitch: netlink: IP tunnel dst address not specified
[  248.045838][ T9311] openvswitch: netlink: IP tunnel dst address not specified
[  248.502142][ T9324] IPv6: NLM_F_REPLACE set, but no existing node found!
[  248.688905][ T9326] netlink: 48 bytes leftover after parsing attributes in process `syz.1.902'.
[  248.870103][ T6031] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  249.034151][ T6031] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  249.038423][ T6031] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.048564][ T6031] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  249.059815][ T6031] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  249.063185][ T6031] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.078501][ T6031] usb 5-1: config 0 descriptor??
[  249.100121][ T6031] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  249.796048][ T9346] netlink: 'syz.2.911': attribute type 1 has an invalid length.
[  249.811575][ T9346] bond3: entered promiscuous mode
[  249.813294][ T9346] bond3: entered allmulticast mode
[  249.815417][ T9346] 8021q: adding VLAN 0 to HW filter on device bond3
[  249.826069][ T9346] erspan2: entered allmulticast mode
[  249.831996][ T9346] bond3: (slave erspan2): making interface the new active one
[  249.834721][ T9346] erspan2: entered promiscuous mode
[  249.837947][ T9346] bond3: (slave erspan2): Enslaving as an active interface with an up link
[  250.348542][ T9339] binder: 9338:9339 ioctl 400c620e 80000280 returned -22
[  250.550830][ T9361] FAULT_INJECTION: forcing a failure.
[  250.550830][ T9361] name failslab, interval 1, probability 0, space 0, times 0
[  250.557133][ T9361] CPU: 2 UID: 0 PID: 9361 Comm: syz.3.913 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  250.557163][ T9361] Tainted: [L]=SOFTLOCKUP
[  250.557169][ T9361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.557182][ T9361] Call Trace:
[  250.557188][ T9361]  <TASK>
[  250.557195][ T9361]  dump_stack_lvl+0x16c/0x1f0
[  250.557326][ T9361]  should_fail_ex+0x512/0x640
[  250.557371][ T9361]  ? fs_reclaim_acquire+0xae/0x150
[  250.557402][ T9361]  should_failslab+0xc2/0x120
[  250.557431][ T9361]  __kmalloc_noprof+0xeb/0x910
[  250.557451][ T9361]  ? tomoyo_encode2+0x100/0x3e0
[  250.557479][ T9361]  ? tomoyo_encode2+0x100/0x3e0
[  250.557503][ T9361]  tomoyo_encode2+0x100/0x3e0
[  250.557530][ T9361]  tomoyo_encode+0x29/0x50
[  250.557554][ T9361]  tomoyo_realpath_from_path+0x18f/0x6e0
[  250.557588][ T9361]  tomoyo_path_number_perm+0x245/0x580
[  250.557610][ T9361]  ? tomoyo_path_number_perm+0x237/0x580
[  250.557633][ T9361]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  250.557679][ T9361]  ? find_held_lock+0x2b/0x80
[  250.557704][ T9361]  ? hook_file_ioctl_common+0x144/0x410
[  250.557731][ T9361]  ? __fget_files+0x20e/0x3c0
[  250.557764][ T9361]  security_file_ioctl_compat+0x9b/0x240
[  250.557789][ T9361]  __ia32_compat_sys_ioctl+0xc3/0x370
[  250.557817][ T9361]  __do_fast_syscall_32+0xe8/0x680
[  250.557849][ T9361]  do_fast_syscall_32+0x32/0x80
[  250.557876][ T9361]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.557899][ T9361] RIP: 0023:0xf701d579
[  250.557913][ T9361] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.557931][ T9361] RSP: 002b:00000000f53ec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  250.557947][ T9361] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c1007c01
[  250.557960][ T9361] RDX: 00000000800008c0 RSI: 0000000000000000 RDI: 0000000000000000
[  250.557970][ T9361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.557980][ T9361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  250.557992][ T9361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.558016][ T9361]  </TASK>
[  250.558033][ T9361] ERROR: Out of memory at tomoyo_realpath_from_path.
[  250.799752][ T6055] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  250.971959][ T6055] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  250.976993][ T6055] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  250.981803][ T6055] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  250.985939][ T6055] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.995315][ T6055] usb 6-1: config 0 descriptor??
[  251.002796][ T6055] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  251.006024][ T6055] dvb-usb: bulk message failed: -22 (3/0)
[  251.024301][ T6055] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  251.027654][ T6055] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  251.032367][ T6055] usb 6-1: media controller created
[  251.038169][ T6055] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  251.053835][ T6055] dvb-usb: bulk message failed: -22 (6/0)
[  251.056646][ T6055] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  251.070778][ T6055] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input45
[  251.081908][ T6055] dvb-usb: schedule remote query interval to 150 msecs.
[  251.086107][ T6055] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  251.200983][ T9363] dibusb: i2c wr: len=61 is too big!
[  251.200983][ T9363] 
[  251.241078][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  251.249731][ T6055] dvb-usb: error while querying for an remote control event.
[  251.410821][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  251.412908][ T6055] dvb-usb: error while querying for an remote control event.
[  251.569866][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  251.578070][ T6055] dvb-usb: error while querying for an remote control event.
[  251.643480][ T6031] usb 5-1: USB disconnect, device number 4
[  251.740135][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  251.745801][ T6055] dvb-usb: error while querying for an remote control event.
[  251.911199][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  251.913851][ T6055] dvb-usb: error while querying for an remote control event.
[  252.069818][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  252.072001][ T6055] dvb-usb: error while querying for an remote control event.
[  252.229690][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  252.234501][ T6055] dvb-usb: error while querying for an remote control event.
[  252.389670][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  252.391682][ T6055] dvb-usb: error while querying for an remote control event.
[  252.519728][ T6055] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  252.549730][   T34] dvb-usb: bulk message failed: -22 (1/0)
[  252.554259][   T34] dvb-usb: error while querying for an remote control event.
[  252.669673][ T6055] usb 5-1: Using ep0 maxpacket: 32
[  252.675759][ T6055] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  252.680925][ T6055] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  252.684320][ T6055] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  252.687515][ T6055] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.692912][ T6055] usb 5-1: config 0 descriptor??
[  252.709707][   T34] dvb-usb: bulk message failed: -22 (1/0)
[  252.711802][   T34] dvb-usb: error while querying for an remote control event.
[  252.869630][   T34] dvb-usb: bulk message failed: -22 (1/0)
[  252.871797][   T34] dvb-usb: error while querying for an remote control event.
[  253.029708][   T34] dvb-usb: bulk message failed: -22 (1/0)
[  253.031937][   T34] dvb-usb: error while querying for an remote control event.
[  253.113949][ T6055] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  253.189678][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  253.191680][ T6055] dvb-usb: error while querying for an remote control event.
[  253.300946][ T9384] binder: 9383:9384 ioctl c00c620f 80000080 returned -22
[  253.306968][  T842] usb 5-1: USB disconnect, device number 5
[  253.349673][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  253.352107][ T6055] dvb-usb: error while querying for an remote control event.
[  253.371764][ T9394] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  253.374854][ T9394] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  253.377261][ T9394] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  253.379481][ T9394] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  253.397437][ T9403] tipc: Can't bind to reserved service type 2
[  253.400300][ T9403] netlink: 4 bytes leftover after parsing attributes in process `syz.2.925'.
[  253.510883][ T6055] dvb-usb: bulk message failed: -22 (1/0)
[  253.513434][ T6055] dvb-usb: error while querying for an remote control event.
[  253.631887][ T6039] usb 6-1: USB disconnect, device number 8
[  253.670307][ T6039] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  253.908484][ T9412] fuse: Bad value for 'fd'
[  255.236682][ T9430] sp0: Synchronizing with TNC
[  255.245012][ T9430] sp0: Found TNC
[  255.379784][ T5940] Bluetooth: hci2: command 0x0406 tx timeout
[  255.379856][ T5952] Bluetooth: hci1: command 0x0406 tx timeout
[  255.389782][ T5952] Bluetooth: hci3: command 0x0406 tx timeout
[  255.389794][ T5940] Bluetooth: hci0: command 0x0406 tx timeout
[  255.494025][ T9436] tmpfs: Bad value for 'mpol'
[  256.061538][ T9441] binder: 9440:9441 ioctl 400c620e 80000280 returned -22
[  256.161197][ T9450] program syz.3.937 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  256.483007][ T9462] tmpfs: Unknown parameter 'nr_i ùdes'
[  256.883278][ T9467] netlink: 'syz.2.942': attribute type 2 has an invalid length.
[  256.895961][ T9467] : entered promiscuous mode
[  257.580846][ T9480] overlayfs: failed to clone lowerpath
[  257.657390][ T9476] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  257.703526][ T9485] program syz.0.948 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.839539][ T9490] netlink: 'syz.0.950': attribute type 3 has an invalid length.
[  257.884748][ T5940] Bluetooth: hci0: unexpected event for opcode 0x041c
[  257.935954][ T5940] Bluetooth: hci0: unexpected event for opcode 0x202a
[  258.998736][ T9514] program syz.3.957 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  260.344264][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  260.346880][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  260.547009][ T9534] FAULT_INJECTION: forcing a failure.
[  260.547009][ T9534] name failslab, interval 1, probability 0, space 0, times 0
[  260.552333][ T9534] CPU: 2 UID: 0 PID: 9534 Comm: syz.3.960 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  260.552364][ T9534] Tainted: [L]=SOFTLOCKUP
[  260.552370][ T9534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.552381][ T9534] Call Trace:
[  260.552387][ T9534]  <TASK>
[  260.552396][ T9534]  dump_stack_lvl+0x16c/0x1f0
[  260.552555][ T9534]  should_fail_ex+0x512/0x640
[  260.552598][ T9534]  ? fs_reclaim_acquire+0xae/0x150
[  260.552623][ T9534]  should_failslab+0xc2/0x120
[  260.552641][ T9534]  __kmalloc_noprof+0xeb/0x910
[  260.552653][ T9534]  ? tomoyo_encode2+0x100/0x3e0
[  260.552671][ T9534]  ? tomoyo_encode2+0x100/0x3e0
[  260.552685][ T9534]  tomoyo_encode2+0x100/0x3e0
[  260.552701][ T9534]  tomoyo_encode+0x29/0x50
[  260.552714][ T9534]  tomoyo_realpath_from_path+0x18f/0x6e0
[  260.552731][ T9534]  ? tomoyo_profile+0x47/0x60
[  260.552748][ T9534]  tomoyo_path_number_perm+0x245/0x580
[  260.552760][ T9534]  ? tomoyo_path_number_perm+0x237/0x580
[  260.552774][ T9534]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  260.552801][ T9534]  ? find_held_lock+0x2b/0x80
[  260.552816][ T9534]  ? hook_file_ioctl_common+0x144/0x410
[  260.552832][ T9534]  ? __fget_files+0x20e/0x3c0
[  260.552850][ T9534]  security_file_ioctl_compat+0x9b/0x240
[  260.552865][ T9534]  __ia32_compat_sys_ioctl+0xc3/0x370
[  260.552881][ T9534]  __do_fast_syscall_32+0xe8/0x680
[  260.552900][ T9534]  do_fast_syscall_32+0x32/0x80
[  260.552917][ T9534]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  260.552931][ T9534] RIP: 0023:0xf701d579
[  260.552940][ T9534] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  260.552964][ T9534] RSP: 002b:00000000f53cb55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  260.552975][ T9534] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000894b
[  260.552982][ T9534] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  260.552988][ T9534] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  260.552995][ T9534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  260.553001][ T9534] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  260.553015][ T9534]  </TASK>
[  260.553630][ T9534] ERROR: Out of memory at tomoyo_realpath_from_path.
[  260.845820][ T9536] netlink: 3 bytes leftover after parsing attributes in process `syz.1.961'.
[  260.858649][ T9536] batadv1: entered allmulticast mode
[  261.699801][  T842] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  261.820506][ T9549] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  261.824341][ T9549] overlayfs: missing 'lowerdir'
[  261.897661][  T842] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  261.903322][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  261.907675][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  261.912897][  T842] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  261.918058][  T842] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  261.925339][  T842] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.929915][ T9549] program syz.1.964 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.010171][  T842] usb 8-1: config 0 descriptor??
[  262.091536][   T63] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  262.446890][  T842] plantronics 0003:047F:FFFF.0005: ignoring exceeding usage max
[  262.587138][  T842] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  262.707422][ T9577] autofs: Unknown parameter '0x0000000000000000'
[  263.906433][  T842] usb 8-1: reset high-speed USB device number 9 using dummy_hcd
[  264.049717][  T842] usb 8-1: device descriptor read/64, error -32
[  264.180132][ T9609] netlink: 'syz.2.975': attribute type 1 has an invalid length.
[  264.319958][  T842] usb 8-1: reset high-speed USB device number 9 using dummy_hcd
[  264.459853][  T842] usb 8-1: device descriptor read/64, error -32
[  264.699768][  T842] usb 8-1: reset high-speed USB device number 9 using dummy_hcd
[  264.720092][  T842] usb 8-1: device descriptor read/8, error -32
[  264.929770][   T63] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  265.079685][   T63] usb 6-1: Using ep0 maxpacket: 8
[  265.083398][   T63] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  265.087385][   T63] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  265.091842][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  265.096023][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  265.100754][   T63] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  265.105762][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  265.109695][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.359325][ T9632] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  265.361656][ T9632] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  265.369254][ T9632] vhci_hcd vhci_hcd.0: Device attached
[  265.415612][   T63] usb 6-1: usb_control_msg returned -32
[  265.418003][   T63] usbtmc 6-1:16.0: can't read capabilities
[  265.623016][    T9] usb 8-1: USB disconnect, device number 9
[  265.659814][ T6055] usb 38-1: SetAddress Request (15) to port 0
[  265.662642][ T6055] usb 38-1: new SuperSpeed USB device number 15 using vhci_hcd
[  266.074229][ T9633] vhci_hcd: connection reset by peer
[  266.082331][ T1180] vhci_hcd vhci_hcd.0: stop threads
[  266.084645][ T1180] vhci_hcd vhci_hcd.0: release socket
[  266.087800][ T1180] vhci_hcd vhci_hcd.0: disconnect device
[  266.546768][ T9645] tmpfs: Unknown parameter 'òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿtmpfs'
[  266.703523][ T9648] 9p: Bad value for 'rfdno'
[  267.694371][   T63] usb 6-1: USB disconnect, device number 9
[  267.753429][ T9668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.991'.
[  268.174782][ T9676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.993'.
[  270.207737][ T9705] vlan2: entered promiscuous mode
[  270.210857][ T9705] vlan2: entered allmulticast mode
[  270.212699][ T9705] hsr_slave_1: entered allmulticast mode
[  270.222153][ T9705] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1000'.
[  270.741831][ T6055] usb 38-1: device descriptor read/8, error -110
[  271.124422][ T9721] new mount options do not match the existing superblock, will be ignored
[  271.128700][ T9721] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1003'.
[  271.161149][ T6055] usb usb38-port1: attempt power cycle
[  271.752245][ T6055] usb usb38-port1: unable to enumerate USB device
[  273.272590][ T9756] smc: ib device syz1 ibport 1 applied user defined pnetid SYZ0
[  273.275616][ T9756] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0
[  273.561496][   T63] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  273.709666][   T63] usb 8-1: Using ep0 maxpacket: 32
[  273.713599][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  273.717750][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  273.721368][   T63] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  273.725729][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  273.731217][   T63] usb 8-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  273.735022][   T63] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.738571][   T63] usb 8-1: Product: syz
[  273.747983][   T63] usb 8-1: Manufacturer: syz
[  273.750262][   T63] usb 8-1: SerialNumber: syz
[  273.779359][   T63] usb 8-1: config 0 descriptor??
[  273.790352][   T63] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input48
[  273.827057][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  273.909457][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  273.921089][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  273.936227][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  273.987238][ T9764] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  273.994824][ T9758] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  274.006525][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  274.011474][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  274.018304][ T5336] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  274.080126][ T9766] netlink: 'syz.2.1016': attribute type 1 has an invalid length.
[  274.101227][ T6055] usb 8-1: USB disconnect, device number 10
[  274.839752][   T63] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  275.469798][   T63] usb 5-1: device descriptor read/64, error -71
[  275.706778][ T9792] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1025'.
[  275.719897][   T63] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  275.850807][   T63] usb 5-1: device descriptor read/64, error -71
[  275.959805][   T63] usb usb5-port1: attempt power cycle
[  276.319764][   T63] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  276.340387][   T63] usb 5-1: device descriptor read/8, error -71
[  276.582514][   T63] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  276.600609][   T63] usb 5-1: device descriptor read/8, error -71
[  276.710086][   T63] usb usb5-port1: unable to enumerate USB device
[  276.767424][ T9811] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1031'.
[  276.840995][ T9812] overlayfs: failed to clone upperpath
[  277.979499][   T29] libceph: connect (1)[c::]:6789 error -97
[  277.981661][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  278.031576][ T9845] Bluetooth: MGMT ver 1.23
[  278.228399][ T9852] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  278.252583][   T40] audit: type=1326 audit(1767153428.556:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.258765][   T40] audit: type=1326 audit(1767153428.556:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.266974][   T40] audit: type=1326 audit(1767153428.556:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.275560][   T40] audit: type=1326 audit(1767153428.556:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.279942][   T29] libceph: connect (1)[c::]:6789 error -97
[  278.282962][   T40] audit: type=1326 audit(1767153428.556:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.286308][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  278.293114][   T40] audit: type=1326 audit(1767153428.556:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.301925][   T40] audit: type=1326 audit(1767153428.556:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.310411][   T40] audit: type=1326 audit(1767153428.556:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.310564][   T40] audit: type=1326 audit(1767153428.556:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.310638][   T40] audit: type=1326 audit(1767153428.556:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9846 comm="syz.2.1043" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  278.651632][ T9823] ceph: No mds server is up or the cluster is laggy
[  280.698031][ T5940] block nbd1: Receive control failed (result -32)
[  280.698283][ T9869] block nbd1: shutting down sockets
[  281.501994][ T9901] sp0: Synchronizing with TNC
[  281.518245][ T9901] sp0: Found TNC
[  281.594166][ T9900] overlay: ./file0 is not a directory
[  281.608272][ T9900] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  282.459743][ T9913] overlayfs: failed to clone lowerpath
[  282.462582][ T9913] overlay: Unknown parameter '/'
[  283.241361][ T9926] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1065'.
[  283.272907][ T9926] bridge_slave_0 (unregistering): left allmulticast mode
[  283.275408][ T9926] bridge_slave_0 (unregistering): left promiscuous mode
[  283.277870][ T9926] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.491459][ T9952] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1074'.
[  284.540835][ T9957] 8021q: VLANs not supported on ipvlan1
[  284.985854][ T9974] lo speed is unknown, defaulting to 1000
[  285.873071][ T9999] 9p: Bad value for 'rfdno'
[  285.983735][T10003] netlink: 'syz.0.1088': attribute type 10 has an invalid length.
[  285.995682][T10003] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  286.643839][T10023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1095'.
[  286.898876][T10024] block device autoloading is deprecated and will be removed.
[  287.623295][T10040] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1099'.
[  287.627384][T10040] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1099'.
[  287.631524][T10040] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1099'.
[  288.388453][T10065] syzkaller1: entered promiscuous mode
[  288.395726][T10065] syzkaller1: entered allmulticast mode
[  288.845995][T10085] lo speed is unknown, defaulting to 1000
[  289.270260][T10096] lo speed is unknown, defaulting to 1000
[  289.304544][T10097] FAULT_INJECTION: forcing a failure.
[  289.304544][T10097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.310754][T10097] CPU: 2 UID: 0 PID: 10097 Comm: syz.1.1115 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  289.310783][T10097] Tainted: [L]=SOFTLOCKUP
[  289.310789][T10097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.310799][T10097] Call Trace:
[  289.310806][T10097]  <TASK>
[  289.310813][T10097]  dump_stack_lvl+0x16c/0x1f0
[  289.310843][T10097]  should_fail_ex+0x512/0x640
[  289.310866][T10097]  strncpy_from_user+0x3b/0x2e0
[  289.310884][T10097]  getname_flags.part.0+0x8f/0x550
[  289.310902][T10097]  ? hash+0x1d2/0x900
[  289.310926][T10097]  getname_flags+0x93/0xf0
[  289.310958][T10097]  do_sys_openat2+0xb9/0x290
[  289.310976][T10097]  ? __pfx_do_sys_openat2+0x10/0x10
[  289.310998][T10097]  ? bpf_trace_run2+0x2ab/0x5c0
[  289.311026][T10097]  __ia32_compat_sys_openat+0x16d/0x210
[  289.311047][T10097]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  289.311067][T10097]  ? syscall_trace_enter+0x1cb/0x220
[  289.311089][T10097]  ? rcu_is_watching+0x12/0xc0
[  289.311113][T10097]  __do_fast_syscall_32+0xe8/0x680
[  289.311140][T10097]  do_fast_syscall_32+0x32/0x80
[  289.311164][T10097]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.311182][T10097] RIP: 0023:0xf7f27579
[  289.311195][T10097] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.311210][T10097] RSP: 002b:00000000f53f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  289.311226][T10097] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800001c0
[  289.311236][T10097] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  289.311245][T10097] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.311254][T10097] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.311263][T10097] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.311285][T10097]  </TASK>
[  289.393586][    C2] hpet_rtc_timer_reinit: 33 callbacks suppressed
[  289.393601][    C2] hpet: Lost 3 RTC interrupts
[  289.539125][T10102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1117'.
[  289.588297][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1118'.
[  289.602547][T10107] kAFS: unable to lookup cell 'syz1'
[  289.899702][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  290.049691][    T9] usb 6-1: Using ep0 maxpacket: 8
[  290.051516][    T9] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  290.051533][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  290.051546][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  290.051558][    T9] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  290.051578][    T9] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  290.051590][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.363194][    T9] usb 6-1: usb_control_msg returned -71
[  290.365786][    T9] usbtmc 6-1:16.0: can't read capabilities
[  290.374111][    T9] usb 6-1: USB disconnect, device number 10
[  291.647060][T10139] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1126'.
[  292.197286][T10145] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1128'.
[  292.363281][T10159] FAULT_INJECTION: forcing a failure.
[  292.363281][T10159] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.370987][T10159] CPU: 3 UID: 0 PID: 10159 Comm: syz.3.1131 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  292.371017][T10159] Tainted: [L]=SOFTLOCKUP
[  292.371023][T10159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.371034][T10159] Call Trace:
[  292.371041][T10159]  <TASK>
[  292.371047][T10159]  dump_stack_lvl+0x16c/0x1f0
[  292.371079][T10159]  should_fail_ex+0x512/0x640
[  292.371103][T10159]  _copy_to_iter+0x463/0x1710
[  292.371129][T10159]  ? __pfx__copy_to_iter+0x10/0x10
[  292.371149][T10159]  ? find_held_lock+0x2b/0x80
[  292.371173][T10159]  ? neigh_seq_stop+0x8c/0x120
[  292.371196][T10159]  ? __local_bh_enable_ip+0xa4/0x120
[  292.371225][T10159]  seq_read_iter+0xd02/0x12d0
[  292.371261][T10159]  seq_read+0x3a3/0x570
[  292.371285][T10159]  ? __pfx_seq_read+0x10/0x10
[  292.371313][T10159]  ? lock_acquire+0x179/0x330
[  292.371338][T10159]  ? __pfx_seq_read+0x10/0x10
[  292.371361][T10159]  proc_reg_read+0x240/0x330
[  292.371384][T10159]  ? __pfx_proc_reg_read+0x10/0x10
[  292.371405][T10159]  vfs_read+0x1e4/0xcf0
[  292.371433][T10159]  ? __pfx___mutex_lock+0x10/0x10
[  292.371484][T10159]  ? __pfx_vfs_read+0x10/0x10
[  292.371505][T10159]  ? find_held_lock+0x2b/0x80
[  292.371535][T10159]  ? __fget_files+0x20e/0x3c0
[  292.371558][T10159]  ? bpf_trace_run2+0x1c0/0x5c0
[  292.371592][T10159]  ksys_read+0x12a/0x250
[  292.371616][T10159]  ? __pfx_ksys_read+0x10/0x10
[  292.371639][T10159]  ? syscall_trace_enter+0x1cb/0x220
[  292.371663][T10159]  ? rcu_is_watching+0x12/0xc0
[  292.371690][T10159]  __do_fast_syscall_32+0xe8/0x680
[  292.371721][T10159]  do_fast_syscall_32+0x32/0x80
[  292.371749][T10159]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  292.371771][T10159] RIP: 0023:0xf701d579
[  292.371785][T10159] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  292.371802][T10159] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  292.371821][T10159] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000b40
[  292.371832][T10159] RDX: 0000000000002040 RSI: 0000000000000000 RDI: 0000000000000000
[  292.371842][T10159] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  292.371852][T10159] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  292.371864][T10159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  292.371890][T10159]  </TASK>
[  292.737058][T10173] CUSE: info not properly terminated
[  292.773457][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1136'.
[  292.782656][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1136'.
[  293.464946][T10179] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1138'.
[  293.471238][T10179] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.496360][T10179] bridge_slave_0 (unregistering): left allmulticast mode
[  293.498901][T10179] bridge_slave_0 (unregistering): left promiscuous mode
[  293.501464][T10179] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.390596][T10233] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1157'.
[  297.244315][T10267] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1164'.
[  297.417505][T10273] FAULT_INJECTION: forcing a failure.
[  297.417505][T10273] name failslab, interval 1, probability 0, space 0, times 0
[  297.424674][T10273] CPU: 2 UID: 0 PID: 10273 Comm: syz.0.1165 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.424694][T10273] Tainted: [L]=SOFTLOCKUP
[  297.424698][T10273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.424705][T10273] Call Trace:
[  297.424710][T10273]  <TASK>
[  297.424714][T10273]  dump_stack_lvl+0x16c/0x1f0
[  297.424735][T10273]  should_fail_ex+0x512/0x640
[  297.424748][T10273]  ? fs_reclaim_acquire+0xae/0x150
[  297.424767][T10273]  should_failslab+0xc2/0x120
[  297.424784][T10273]  __kmalloc_noprof+0xeb/0x910
[  297.424797][T10273]  ? tomoyo_encode2+0x100/0x3e0
[  297.424814][T10273]  ? tomoyo_encode2+0x100/0x3e0
[  297.424828][T10273]  tomoyo_encode2+0x100/0x3e0
[  297.424844][T10273]  tomoyo_encode+0x29/0x50
[  297.424858][T10273]  tomoyo_realpath_from_path+0x18f/0x6e0
[  297.424875][T10273]  ? tomoyo_profile+0x47/0x60
[  297.424893][T10273]  tomoyo_path_number_perm+0x245/0x580
[  297.424905][T10273]  ? tomoyo_path_number_perm+0x237/0x580
[  297.424919][T10273]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  297.424946][T10273]  ? find_held_lock+0x2b/0x80
[  297.424960][T10273]  ? hook_file_ioctl_common+0x144/0x410
[  297.424977][T10273]  ? __fget_files+0x20e/0x3c0
[  297.424996][T10273]  security_file_ioctl_compat+0x9b/0x240
[  297.425010][T10273]  __ia32_compat_sys_ioctl+0xc3/0x370
[  297.425026][T10273]  __do_fast_syscall_32+0xe8/0x680
[  297.425045][T10273]  do_fast_syscall_32+0x32/0x80
[  297.425062][T10273]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.425076][T10273] RIP: 0023:0xf702d579
[  297.425085][T10273] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  297.425099][T10273] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  297.425116][T10273] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008b05
[  297.425133][T10273] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  297.425142][T10273] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.425150][T10273] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  297.425159][T10273] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.425180][T10273]  </TASK>
[  297.425196][T10273] ERROR: Out of memory at tomoyo_realpath_from_path.
[  299.111473][ T5940] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  299.217620][T10298] 9p: Bad value for 'rfdno'
[  299.230881][T10299] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  299.234006][T10298] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1174'.
[  299.237593][T10299] overlayfs: missing 'lowerdir'
[  299.269278][T10299] program syz.3.1172 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  299.288701][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1176'.
[  299.350701][   T57] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  299.440276][ T6039] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  299.515836][   T57] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  299.527383][   T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.655864][   T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  299.665687][   T57] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  299.676507][   T57] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  299.680910][   T57] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  299.684863][   T57] usb 5-1: Manufacturer: syz
[  299.695069][   T57] usb 5-1: config 0 descriptor??
[  300.404799][   T57] appleir 0003:05AC:8243.0006: unknown main item tag 0x0
[  300.411532][   T57] appleir 0003:05AC:8243.0006: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  301.749851][    T9] usb 5-1: reset high-speed USB device number 10 using dummy_hcd
[  302.520712][ T6032] usb 5-1: USB disconnect, device number 10
[  309.753435][T10354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1183'.
[  309.843840][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  309.852034][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  309.999782][ T5952] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  310.007203][ T5952] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  310.029740][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  310.079530][T10361] lo speed is unknown, defaulting to 1000
[  310.357598][T10361] chnl_net:caif_netlink_parms(): no params data found
[  310.451356][T10361] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.453943][T10361] bridge0: port 1(bridge_slave_0) entered disabled state
[  310.456824][T10361] bridge_slave_0: entered allmulticast mode
[  310.460517][T10361] bridge_slave_0: entered promiscuous mode
[  310.465645][T10361] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.468346][T10361] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.472140][T10361] bridge_slave_1: entered allmulticast mode
[  310.476153][T10361] bridge_slave_1: entered promiscuous mode
[  310.521549][T10361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  310.526796][T10361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  310.568251][T10361] team0: Port device team_slave_0 added
[  310.601090][T10361] team0: Port device team_slave_1 added
[  310.628819][T10361] batman_adv: batadv0: Adding interface: batadv_slave_0
[  310.631974][T10361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  310.640870][T10361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  310.645482][T10361] batman_adv: batadv0: Adding interface: batadv_slave_1
[  310.647884][T10361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  310.662822][T10361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  310.687150][T10361] hsr_slave_0: entered promiscuous mode
[  310.690021][T10361] hsr_slave_1: entered promiscuous mode
[  310.692735][T10361] debugfs: 'hsr0' already exists in 'hsr'
[  310.694821][T10361] Cannot create hsr debugfs directory
[  310.790860][T10361] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  310.795726][T10361] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  310.800772][T10361] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  310.806368][T10361] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  310.824275][T10361] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.826830][T10361] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.829415][T10361] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.831888][T10361] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.862335][T10361] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.872991][T10361] 8021q: adding VLAN 0 to HW filter on device team0
[  310.930454][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[  310.933853][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.960877][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.963342][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.966419][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.969074][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.122745][T10361] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.195986][T10392] sp0: Synchronizing with TNC
[  311.219241][T10392] sp0: Found TNC
[  311.319292][T10361] veth0_vlan: entered promiscuous mode
[  311.328197][T10361] veth1_vlan: entered promiscuous mode
[  311.344286][T10361] veth0_macvtap: entered promiscuous mode
[  311.348963][T10361] veth1_macvtap: entered promiscuous mode
[  311.358777][T10361] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.370093][T10361] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.382308][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.386664][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.401226][T10405] FAULT_INJECTION: forcing a failure.
[  311.401226][T10405] name failslab, interval 1, probability 0, space 0, times 0
[  311.402349][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.406407][T10405] CPU: 2 UID: 0 PID: 10405 Comm: syz.3.1194 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  311.406435][T10405] Tainted: [L]=SOFTLOCKUP
[  311.406440][T10405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  311.406452][T10405] Call Trace:
[  311.406459][T10405]  <TASK>
[  311.406465][T10405]  dump_stack_lvl+0x16c/0x1f0
[  311.406497][T10405]  should_fail_ex+0x512/0x640
[  311.406517][T10405]  ? fs_reclaim_acquire+0xae/0x150
[  311.406546][T10405]  should_failslab+0xc2/0x120
[  311.406573][T10405]  __kmalloc_noprof+0xeb/0x910
[  311.406592][T10405]  ? tomoyo_encode2+0x100/0x3e0
[  311.406619][T10405]  ? tomoyo_encode2+0x100/0x3e0
[  311.406641][T10405]  tomoyo_encode2+0x100/0x3e0
[  311.406666][T10405]  tomoyo_encode+0x29/0x50
[  311.406686][T10405]  tomoyo_realpath_from_path+0x18f/0x6e0
[  311.406717][T10405]  tomoyo_path_number_perm+0x245/0x580
[  311.406739][T10405]  ? tomoyo_path_number_perm+0x237/0x580
[  311.406766][T10405]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  311.406811][T10405]  ? find_held_lock+0x2b/0x80
[  311.406834][T10405]  ? hook_file_ioctl_common+0x144/0x410
[  311.406861][T10405]  ? __fget_files+0x20e/0x3c0
[  311.406891][T10405]  security_file_ioctl_compat+0x9b/0x240
[  311.406915][T10405]  __ia32_compat_sys_ioctl+0xc3/0x370
[  311.406939][T10405]  __do_fast_syscall_32+0xe8/0x680
[  311.406969][T10405]  do_fast_syscall_32+0x32/0x80
[  311.406996][T10405]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  311.407017][T10405] RIP: 0023:0xf701d579
[  311.407031][T10405] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  311.407049][T10405] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  311.407066][T10405] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045700
[  311.407076][T10405] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  311.407088][T10405] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  311.407097][T10405] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  311.407106][T10405] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  311.407131][T10405]  </TASK>
[  311.407148][T10405] ERROR: Out of memory at tomoyo_realpath_from_path.
[  311.524710][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.597011][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.608083][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.655260][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.659045][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.099716][ T5940] Bluetooth: hci3: command tx timeout
[  312.239074][T10430] FAULT_INJECTION: forcing a failure.
[  312.239074][T10430] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.244541][T10430] CPU: 2 UID: 0 PID: 10430 Comm: syz.4.1203 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  312.244571][T10430] Tainted: [L]=SOFTLOCKUP
[  312.244575][T10430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.244593][T10430] Call Trace:
[  312.244597][T10430]  <TASK>
[  312.244602][T10430]  dump_stack_lvl+0x16c/0x1f0
[  312.244623][T10430]  should_fail_ex+0x512/0x640
[  312.244639][T10430]  _copy_to_user+0x32/0xd0
[  312.244652][T10430]  simple_read_from_buffer+0xcb/0x170
[  312.244669][T10430]  proc_fail_nth_read+0x197/0x240
[  312.244688][T10430]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.244707][T10430]  ? rw_verify_area+0xcf/0x6c0
[  312.244721][T10430]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.244738][T10430]  vfs_read+0x1e4/0xcf0
[  312.244755][T10430]  ? __pfx___mutex_lock+0x10/0x10
[  312.244773][T10430]  ? __pfx_vfs_read+0x10/0x10
[  312.244787][T10430]  ? find_held_lock+0x2b/0x80
[  312.244805][T10430]  ? __fget_files+0x20e/0x3c0
[  312.244822][T10430]  ? bpf_trace_run2+0x1c0/0x5c0
[  312.244842][T10430]  ksys_read+0x12a/0x250
[  312.244857][T10430]  ? __pfx_ksys_read+0x10/0x10
[  312.244871][T10430]  ? syscall_trace_enter+0x1cb/0x220
[  312.244886][T10430]  ? rcu_is_watching+0x12/0xc0
[  312.244904][T10430]  __do_fast_syscall_32+0xe8/0x680
[  312.244931][T10430]  do_fast_syscall_32+0x32/0x80
[  312.244955][T10430]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  312.244977][T10430] RIP: 0023:0xf706d579
[  312.244991][T10430] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  312.245009][T10430] RSP: 002b:00000000f545d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  312.245025][T10430] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f545d620
[  312.245034][T10430] RDX: 000000000000000f RSI: 00000000f7406ff4 RDI: 0000000000000000
[  312.245040][T10430] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  312.245046][T10430] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  312.245052][T10430] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  312.245072][T10430]  </TASK>
[  312.326811][    C2] hpet: Lost 4 RTC interrupts
[  312.388975][T10434] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1204'.
[  313.187526][T10441] Cannot find add_set index 32771 as target
[  313.195289][T10441] Cannot find add_set index 32771 as target
[  313.276476][T10444] FAULT_INJECTION: forcing a failure.
[  313.276476][T10444] name failslab, interval 1, probability 0, space 0, times 0
[  313.282511][T10444] CPU: 3 UID: 0 PID: 10444 Comm: syz.3.1207 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  313.282541][T10444] Tainted: [L]=SOFTLOCKUP
[  313.282547][T10444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.282558][T10444] Call Trace:
[  313.282565][T10444]  <TASK>
[  313.282572][T10444]  dump_stack_lvl+0x16c/0x1f0
[  313.282604][T10444]  should_fail_ex+0x512/0x640
[  313.282623][T10444]  ? __kmalloc_noprof+0xca/0x910
[  313.282646][T10444]  should_failslab+0xc2/0x120
[  313.282673][T10444]  __kmalloc_noprof+0xeb/0x910
[  313.282693][T10444]  ? bpf_test_init.isra.0+0x88/0x130
[  313.282719][T10444]  ? bpf_test_init.isra.0+0x88/0x130
[  313.282739][T10444]  bpf_test_init.isra.0+0x88/0x130
[  313.282771][T10444]  bpf_prog_test_run_skb+0x489/0x31a0
[  313.282802][T10444]  ? find_held_lock+0x2b/0x80
[  313.282834][T10444]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  313.282862][T10444]  ? fput+0x70/0xf0
[  313.282881][T10444]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  313.282906][T10444]  __sys_bpf+0x1035/0x4980
[  313.282928][T10444]  ? __pfx___sys_bpf+0x10/0x10
[  313.282946][T10444]  ? __lock_acquire+0x436/0x2890
[  313.282966][T10444]  ? find_held_lock+0x2b/0x80
[  313.282988][T10444]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  313.283016][T10444]  ? hash+0x1d2/0x900
[  313.283041][T10444]  ? find_held_lock+0x2b/0x80
[  313.283076][T10444]  ? __might_fault+0xe3/0x190
[  313.283096][T10444]  ? __might_fault+0x13b/0x190
[  313.283117][T10444]  ? find_held_lock+0x2b/0x80
[  313.283140][T10444]  ? syscall_trace_enter+0x1cb/0x220
[  313.283167][T10444]  __ia32_sys_bpf+0x76/0xe0
[  313.283185][T10444]  __do_fast_syscall_32+0xe8/0x680
[  313.283216][T10444]  do_fast_syscall_32+0x32/0x80
[  313.283244][T10444]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.283266][T10444] RIP: 0023:0xf701d579
[  313.283280][T10444] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.283297][T10444] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  313.283314][T10444] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240
[  313.283326][T10444] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  313.283336][T10444] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.283345][T10444] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.283355][T10444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.283379][T10444]  </TASK>
[  313.743448][T10462] capability: warning: `syz.2.1213' uses 32-bit capabilities (legacy support in use)
[  313.754083][T10463] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  313.782921][T10463] CIFS mount error: No usable UNC path provided in device string!
[  313.782921][T10463] 
[  313.787709][T10463] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  313.863011][ T5940] Bluetooth: hci1: unexpected event for opcode 0x2024
[  313.911851][T10463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1211'.
[  313.938997][T10463] macvlan2: entered promiscuous mode
[  313.942536][T10463] team0: Device macvlan2 is already an upper device of the team interface
[  314.180009][ T5940] Bluetooth: hci3: command tx timeout
[  314.235978][T10476] fuse: Bad value for 'fd'
[  315.526410][T10518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1223'.
[  315.554478][T10518] bond1: Invalid ad_actor_system MAC address.
[  315.556711][T10518] bond1: option ad_actor_system: invalid value (68719607821)
[  315.561019][T10518] bond1 (unregistering): Released all slaves
[  315.628809][T10526] FAULT_INJECTION: forcing a failure.
[  315.628809][T10526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.635162][T10526] CPU: 1 UID: 0 PID: 10526 Comm: syz.3.1224 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  315.635181][T10526] Tainted: [L]=SOFTLOCKUP
[  315.635185][T10526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.635192][T10526] Call Trace:
[  315.635196][T10526]  <TASK>
[  315.635200][T10526]  dump_stack_lvl+0x16c/0x1f0
[  315.635220][T10526]  should_fail_ex+0x512/0x640
[  315.635235][T10526]  _copy_from_user+0x2e/0xd0
[  315.635248][T10526]  kstrtouint_from_user+0xd6/0x1d0
[  315.635263][T10526]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  315.635278][T10526]  ? __lock_acquire+0x436/0x2890
[  315.635295][T10526]  proc_fail_nth_write+0x83/0x220
[  315.635306][T10526]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  315.635321][T10526]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  315.635330][T10526]  vfs_write+0x2a0/0x11d0
[  315.635347][T10526]  ? __pfx___mutex_lock+0x10/0x10
[  315.635365][T10526]  ? __pfx_vfs_write+0x10/0x10
[  315.635379][T10526]  ? find_held_lock+0x2b/0x80
[  315.635397][T10526]  ? __fget_files+0x20e/0x3c0
[  315.635412][T10526]  ? bpf_trace_run2+0x1c0/0x5c0
[  315.635432][T10526]  ksys_write+0x12a/0x250
[  315.635447][T10526]  ? __pfx_ksys_write+0x10/0x10
[  315.635461][T10526]  ? syscall_trace_enter+0x1cb/0x220
[  315.635477][T10526]  ? rcu_is_watching+0x12/0xc0
[  315.635494][T10526]  __do_fast_syscall_32+0xe8/0x680
[  315.635513][T10526]  do_fast_syscall_32+0x32/0x80
[  315.635530][T10526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  315.635544][T10526] RIP: 0023:0xf701d579
[  315.635553][T10526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  315.635563][T10526] RSP: 002b:00000000f53ec590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  315.635574][T10526] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f53ec620
[  315.635581][T10526] RDX: 0000000000000001 RSI: 00000000f73b6ff4 RDI: 0000000000000000
[  315.635587][T10526] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  315.635594][T10526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  315.635600][T10526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  315.635614][T10526]  </TASK>
[  316.080792][T10535] mkiss: ax0: crc mode is auto.
[  316.270031][ T5940] Bluetooth: hci3: command tx timeout
[  316.402073][T10549] Invalid ELF header magic: != ELF
[  316.712747][T10548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1231'.
[  316.716172][T10548] netlink: 'syz.2.1231': attribute type 5 has an invalid length.
[  316.718858][T10548] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1231'.
[  316.731667][T10548] geneve2: entered promiscuous mode
[  316.733445][T10548] geneve2: entered allmulticast mode
[  316.747747][   T92] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  316.751521][   T92] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  316.754422][   T92] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  316.758401][   T92] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  316.772583][T10553] bridge0: entered allmulticast mode
[  316.782587][T10553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1232'.
[  316.796618][T10553] bridge_slave_1: left allmulticast mode
[  316.799122][T10553] bridge_slave_1: left promiscuous mode
[  316.806868][T10553] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.835822][ T5940] Bluetooth: hci2: unexpected event for opcode 0x1004
[  316.901363][T10553] bridge0 (unregistering): left allmulticast mode
[  317.191371][T10561] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1234'.
[  317.200200][T10563] FAULT_INJECTION: forcing a failure.
[  317.200200][T10563] name failslab, interval 1, probability 0, space 0, times 0
[  317.205262][T10563] CPU: 0 UID: 0 PID: 10563 Comm: syz.4.1235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  317.205282][T10563] Tainted: [L]=SOFTLOCKUP
[  317.205286][T10563] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.205293][T10563] Call Trace:
[  317.205298][T10563]  <TASK>
[  317.205303][T10563]  dump_stack_lvl+0x16c/0x1f0
[  317.205325][T10563]  should_fail_ex+0x512/0x640
[  317.205338][T10563]  ? __kmalloc_noprof+0xca/0x910
[  317.205352][T10563]  should_failslab+0xc2/0x120
[  317.205370][T10563]  __kmalloc_noprof+0xeb/0x910
[  317.205381][T10563]  ? __lock_acquire+0x436/0x2890
[  317.205392][T10563]  ? bpf_test_init.isra.0+0x88/0x130
[  317.205408][T10563]  ? bpf_test_init.isra.0+0x88/0x130
[  317.205421][T10563]  bpf_test_init.isra.0+0x88/0x130
[  317.205436][T10563]  bpf_prog_test_run_skb+0x489/0x31a0
[  317.205462][T10563]  ? find_held_lock+0x2b/0x80
[  317.205492][T10563]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  317.205516][T10563]  ? fput+0x70/0xf0
[  317.205537][T10563]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  317.205563][T10563]  __sys_bpf+0x1035/0x4980
[  317.205581][T10563]  ? __pfx___sys_bpf+0x10/0x10
[  317.205592][T10563]  ? __lock_acquire+0x436/0x2890
[  317.205604][T10563]  ? find_held_lock+0x2b/0x80
[  317.205617][T10563]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  317.205636][T10563]  ? hash+0x1d2/0x900
[  317.205652][T10563]  ? find_held_lock+0x2b/0x80
[  317.205672][T10563]  ? __might_fault+0xe3/0x190
[  317.205766][T10563]  ? __might_fault+0x13b/0x190
[  317.205780][T10563]  ? find_held_lock+0x2b/0x80
[  317.205794][T10563]  ? syscall_trace_enter+0x1cb/0x220
[  317.205811][T10563]  __ia32_sys_bpf+0x76/0xe0
[  317.205822][T10563]  __do_fast_syscall_32+0xe8/0x680
[  317.205842][T10563]  do_fast_syscall_32+0x32/0x80
[  317.205860][T10563]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.205874][T10563] RIP: 0023:0xf706d579
[  317.205884][T10563] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  317.205895][T10563] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  317.205912][T10563] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240
[  317.205923][T10563] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  317.205933][T10563] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.205941][T10563] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  317.205951][T10563] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.205996][T10563]  </TASK>
[  317.317803][T10570] raw_sendmsg: syz.2.1237 forgot to set AF_INET. Fix it!
[  317.332846][T10573] FAULT_INJECTION: forcing a failure.
[  317.332846][T10573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.338988][T10573] CPU: 2 UID: 0 PID: 10573 Comm: syz.0.1238 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  317.339010][T10573] Tainted: [L]=SOFTLOCKUP
[  317.339014][T10573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.339021][T10573] Call Trace:
[  317.339025][T10573]  <TASK>
[  317.339029][T10573]  dump_stack_lvl+0x16c/0x1f0
[  317.339051][T10573]  should_fail_ex+0x512/0x640
[  317.339067][T10573]  _copy_from_iter+0x2a4/0x16c0
[  317.339085][T10573]  ? __pfx__copy_from_iter+0x10/0x10
[  317.339098][T10573]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  317.339122][T10573]  copy_page_from_iter+0xde/0x180
[  317.339137][T10573]  tun_build_skb.constprop.0+0x2e8/0x1560
[  317.339156][T10573]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  317.339171][T10573]  ? __lock_acquire+0x436/0x2890
[  317.339183][T10573]  ? __lock_acquire+0x436/0x2890
[  317.339199][T10573]  ? find_held_lock+0x2b/0x80
[  317.339215][T10573]  tun_get_user+0x149c/0x3cc0
[  317.339234][T10573]  ? __pfx_tun_get_user+0x10/0x10
[  317.339247][T10573]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  317.339265][T10573]  ? find_held_lock+0x2b/0x80
[  317.339280][T10573]  ? tun_get+0x191/0x370
[  317.339293][T10573]  tun_chr_write_iter+0xdc/0x210
[  317.339306][T10573]  vfs_write+0x7d3/0x11d0
[  317.339322][T10573]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  317.339336][T10573]  ? __pfx_vfs_write+0x10/0x10
[  317.339350][T10573]  ? find_held_lock+0x2b/0x80
[  317.339372][T10573]  ksys_write+0x12a/0x250
[  317.339387][T10573]  ? __pfx_ksys_write+0x10/0x10
[  317.339401][T10573]  ? syscall_trace_enter+0x1cb/0x220
[  317.339416][T10573]  ? rcu_is_watching+0x12/0xc0
[  317.339433][T10573]  __do_fast_syscall_32+0xe8/0x680
[  317.339452][T10573]  do_fast_syscall_32+0x32/0x80
[  317.339469][T10573]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.339483][T10573] RIP: 0023:0xf702d579
[  317.339492][T10573] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  317.339503][T10573] RSP: 002b:00000000f541d520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  317.339516][T10573] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000240
[  317.339522][T10573] RDX: 00000000000000ae RSI: 00000000f73c6ff4 RDI: 0000000000000000
[  317.339529][T10573] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.339536][T10573] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  317.339542][T10573] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.339567][T10573]  </TASK>
[  317.433864][    C2] hpet: Lost 5 RTC interrupts
[  318.238582][T10591] lo speed is unknown, defaulting to 1000
[  318.389809][ T5940] Bluetooth: hci3: command tx timeout
[  318.528055][T10597] FAULT_INJECTION: forcing a failure.
[  318.528055][T10597] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.533702][T10597] CPU: 1 UID: 0 PID: 10597 Comm: syz.4.1245 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  318.533730][T10597] Tainted: [L]=SOFTLOCKUP
[  318.533737][T10597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.533746][T10597] Call Trace:
[  318.533752][T10597]  <TASK>
[  318.533759][T10597]  dump_stack_lvl+0x16c/0x1f0
[  318.533789][T10597]  should_fail_ex+0x512/0x640
[  318.533810][T10597]  _copy_to_user+0x32/0xd0
[  318.533831][T10597]  simple_read_from_buffer+0xcb/0x170
[  318.533865][T10597]  proc_fail_nth_read+0x197/0x240
[  318.533893][T10597]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  318.533925][T10597]  ? rw_verify_area+0xcf/0x6c0
[  318.533947][T10597]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  318.533973][T10597]  vfs_read+0x1e4/0xcf0
[  318.533997][T10597]  ? __pfx___mutex_lock+0x10/0x10
[  318.534024][T10597]  ? __pfx_vfs_read+0x10/0x10
[  318.534044][T10597]  ? find_held_lock+0x2b/0x80
[  318.534072][T10597]  ? __fget_files+0x20e/0x3c0
[  318.534093][T10597]  ? bpf_trace_run2+0x1c0/0x5c0
[  318.534124][T10597]  ksys_read+0x12a/0x250
[  318.534146][T10597]  ? __pfx_ksys_read+0x10/0x10
[  318.534166][T10597]  ? syscall_trace_enter+0x1cb/0x220
[  318.534189][T10597]  ? rcu_is_watching+0x12/0xc0
[  318.534213][T10597]  __do_fast_syscall_32+0xe8/0x680
[  318.534240][T10597]  do_fast_syscall_32+0x32/0x80
[  318.534264][T10597]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  318.534284][T10597] RIP: 0023:0xf706d579
[  318.534297][T10597] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  318.534313][T10597] RSP: 002b:00000000f545d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  318.534329][T10597] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f545d620
[  318.534340][T10597] RDX: 000000000000000f RSI: 00000000f7406ff4 RDI: 0000000000000000
[  318.534349][T10597] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  318.534359][T10597] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  318.534368][T10597] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  318.534390][T10597]  </TASK>
[  319.239976][T10626] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1253'.
[  319.489746][T10643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1258'.
[  319.667364][T10652] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1254'.
[  320.091048][T10652] netlink: 'syz.4.1254': attribute type 4 has an invalid length.
[  320.175962][T10652] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1254'.
[  320.902718][ T5940] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  320.906638][ T5940] Bluetooth: hci2: Injecting HCI hardware error event
[  320.912671][ T5940] Bluetooth: hci2: hardware error 0x00
[  321.512025][T10680] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  321.514255][T10680] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  321.517219][T10680] vhci_hcd vhci_hcd.0: Device attached
[  321.783789][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  321.786825][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  321.795680][ T6055] usb 46-1: SetAddress Request (2) to port 0
[  321.798491][ T6055] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  321.949108][T10683] vhci_hcd: connection reset by peer
[  321.953346][   T92] vhci_hcd vhci_hcd.4: stop threads
[  321.955234][   T92] vhci_hcd vhci_hcd.4: release socket
[  321.965754][   T92] vhci_hcd vhci_hcd.4: disconnect device
[  322.979818][ T5940] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  323.407320][T10710] FAULT_INJECTION: forcing a failure.
[  323.407320][T10710] name failslab, interval 1, probability 0, space 0, times 0
[  323.412717][T10710] CPU: 1 UID: 0 PID: 10710 Comm: syz.4.1272 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  323.412735][T10710] Tainted: [L]=SOFTLOCKUP
[  323.412739][T10710] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.412746][T10710] Call Trace:
[  323.412750][T10710]  <TASK>
[  323.412754][T10710]  dump_stack_lvl+0x16c/0x1f0
[  323.412775][T10710]  should_fail_ex+0x512/0x640
[  323.412788][T10710]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  323.412804][T10710]  should_failslab+0xc2/0x120
[  323.412822][T10710]  kmem_cache_alloc_node_noprof+0x86/0x800
[  323.412835][T10710]  ? __alloc_skb+0x156/0x410
[  323.412850][T10710]  ? __alloc_skb+0x156/0x410
[  323.412863][T10710]  __alloc_skb+0x156/0x410
[  323.412874][T10710]  ? __alloc_skb+0x35d/0x410
[  323.412885][T10710]  ? __pfx___alloc_skb+0x10/0x10
[  323.412897][T10710]  ? netlink_autobind.isra.0+0x158/0x370
[  323.412917][T10710]  netlink_alloc_large_skb+0x69/0x140
[  323.412933][T10710]  netlink_sendmsg+0x698/0xdd0
[  323.412951][T10710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.412968][T10710]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  323.412989][T10710]  ____sys_sendmsg+0xa5d/0xc30
[  323.413007][T10710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  323.413023][T10710]  ? get_compat_msghdr+0x11a/0x170
[  323.413043][T10710]  ___sys_sendmsg+0x134/0x1d0
[  323.413058][T10710]  ? __pfx____sys_sendmsg+0x10/0x10
[  323.413078][T10710]  ? find_held_lock+0x2b/0x80
[  323.413100][T10710]  __sys_sendmsg+0x16d/0x220
[  323.413114][T10710]  ? __pfx___sys_sendmsg+0x10/0x10
[  323.413128][T10710]  ? __pfx_bpf_trace_run2+0x10/0x10
[  323.413148][T10710]  ? syscall_trace_enter+0x1cb/0x220
[  323.413163][T10710]  ? rcu_is_watching+0x12/0xc0
[  323.413179][T10710]  __do_fast_syscall_32+0xe8/0x680
[  323.413198][T10710]  do_fast_syscall_32+0x32/0x80
[  323.413215][T10710]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  323.413229][T10710] RIP: 0023:0xf706d579
[  323.413237][T10710] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  323.413248][T10710] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  323.413259][T10710] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  323.413266][T10710] RDX: 0000000000004800 RSI: 0000000000000000 RDI: 0000000000000000
[  323.413272][T10710] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  323.413278][T10710] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  323.413284][T10710] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  323.413298][T10710]  </TASK>
[  323.564387][T10716] overlayfs: failed to clone upperpath
[  324.714901][T10765] FAULT_INJECTION: forcing a failure.
[  324.714901][T10765] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.720428][T10765] CPU: 3 UID: 0 PID: 10765 Comm: syz.0.1289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  324.720474][T10765] Tainted: [L]=SOFTLOCKUP
[  324.720480][T10765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.720491][T10765] Call Trace:
[  324.720498][T10765]  <TASK>
[  324.720504][T10765]  dump_stack_lvl+0x16c/0x1f0
[  324.720534][T10765]  should_fail_ex+0x512/0x640
[  324.720557][T10765]  strncpy_from_user+0x3b/0x2e0
[  324.720577][T10765]  getname_flags.part.0+0x8f/0x550
[  324.720597][T10765]  ? syscall_trace_enter+0x1cb/0x220
[  324.720623][T10765]  getname_flags+0x93/0xf0
[  324.720647][T10765]  __ia32_sys_mknod+0x72/0xb0
[  324.720674][T10765]  __do_fast_syscall_32+0xe8/0x680
[  324.720705][T10765]  do_fast_syscall_32+0x32/0x80
[  324.720740][T10765]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.720820][T10765] RIP: 0023:0xf702d579
[  324.720835][T10765] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.720851][T10765] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 000000000000000e
[  324.720867][T10765] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000008001420
[  324.720878][T10765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  324.720888][T10765] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  324.720897][T10765] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  324.720906][T10765] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.720928][T10765]  </TASK>
[  324.903483][T10779] FAULT_INJECTION: forcing a failure.
[  324.903483][T10779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.909110][T10779] CPU: 2 UID: 0 PID: 10779 Comm: syz.3.1293 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  324.909137][T10779] Tainted: [L]=SOFTLOCKUP
[  324.909144][T10779] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.909155][T10779] Call Trace:
[  324.909162][T10779]  <TASK>
[  324.909168][T10779]  dump_stack_lvl+0x16c/0x1f0
[  324.909200][T10779]  should_fail_ex+0x512/0x640
[  324.909223][T10779]  _copy_to_user+0x32/0xd0
[  324.909246][T10779]  simple_read_from_buffer+0xcb/0x170
[  324.909273][T10779]  proc_fail_nth_read+0x197/0x240
[  324.909304][T10779]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.909332][T10779]  ? rw_verify_area+0xcf/0x6c0
[  324.909356][T10779]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.909385][T10779]  vfs_read+0x1e4/0xcf0
[  324.909411][T10779]  ? __pfx___mutex_lock+0x10/0x10
[  324.909441][T10779]  ? __pfx_vfs_read+0x10/0x10
[  324.909474][T10779]  ? find_held_lock+0x2b/0x80
[  324.909505][T10779]  ? __fget_files+0x20e/0x3c0
[  324.909527][T10779]  ? bpf_trace_run2+0x1c0/0x5c0
[  324.909575][T10779]  ksys_read+0x12a/0x250
[  324.909606][T10779]  ? __pfx_ksys_read+0x10/0x10
[  324.909648][T10779]  ? syscall_trace_enter+0x1cb/0x220
[  324.909672][T10779]  ? rcu_is_watching+0x12/0xc0
[  324.909701][T10779]  __do_fast_syscall_32+0xe8/0x680
[  324.909729][T10779]  do_fast_syscall_32+0x32/0x80
[  324.909757][T10779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.909779][T10779] RIP: 0023:0xf701d579
[  324.909793][T10779] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.909810][T10779] RSP: 002b:00000000f540d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  324.909828][T10779] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f540d620
[  324.909839][T10779] RDX: 000000000000000f RSI: 00000000f73b6ff4 RDI: 0000000000000000
[  324.909849][T10779] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  324.909860][T10779] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  324.909870][T10779] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.909894][T10779]  </TASK>
[  324.996267][    C2] hpet: Lost 5 RTC interrupts
[  325.949759][ T6057] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  326.101738][ T6057] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  326.105422][ T6057] usb 9-1: config 0 has no interface number 0
[  326.108212][ T6057] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  326.114306][ T6057] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  326.119050][ T6057] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  326.123133][ T6057] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.128176][ T6057] usb 9-1: config 0 descriptor??
[  326.131635][T10804] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  326.138209][ T6057] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  326.284231][T10806] fuse: Unknown parameter 'user_i00000000000000000000'
[  326.360538][    T9] usb 9-1: USB disconnect, device number 2
[  326.360685][    C3] iowarrior 9-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  326.910567][ T6055] usb 46-1: device descriptor read/8, error -110
[  327.101896][T10842] syzkaller0: entered promiscuous mode
[  327.103708][T10842] syzkaller0: entered allmulticast mode
[  327.107427][T10840] FAULT_INJECTION: forcing a failure.
[  327.107427][T10840] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.111584][T10840] CPU: 2 UID: 0 PID: 10840 Comm: syz.4.1312 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  327.111603][T10840] Tainted: [L]=SOFTLOCKUP
[  327.111607][T10840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.111614][T10840] Call Trace:
[  327.111618][T10840]  <TASK>
[  327.111622][T10840]  dump_stack_lvl+0x16c/0x1f0
[  327.111642][T10840]  should_fail_ex+0x512/0x640
[  327.111657][T10840]  _copy_to_iter+0x29f/0x1710
[  327.111670][T10840]  ? do_raw_spin_lock+0x12c/0x2b0
[  327.111684][T10840]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  327.111696][T10840]  ? __pfx__copy_to_iter+0x10/0x10
[  327.111708][T10840]  ? find_held_lock+0x2b/0x80
[  327.111723][T10840]  ? __asan_memset+0x23/0x50
[  327.111737][T10840]  ? virtio_net_hdr_from_skb+0x329/0x710
[  327.111756][T10840]  tun_do_read+0x9b0/0x1d00
[  327.111771][T10840]  ? __pfx_tun_do_read+0x10/0x10
[  327.111781][T10840]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  327.111799][T10840]  ? __pfx_default_wake_function+0x10/0x10
[  327.111815][T10840]  ? tun_get+0x191/0x370
[  327.111829][T10840]  tun_chr_read_iter+0x101/0x290
[  327.111841][T10840]  do_iter_readv_writev+0x743/0x9e0
[  327.111858][T10840]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  327.111872][T10840]  ? common_file_perm+0x1b1/0x500
[  327.111887][T10840]  ? bpf_lsm_file_permission+0x9/0x10
[  327.111905][T10840]  ? security_file_permission+0x71/0x210
[  327.111920][T10840]  ? rw_verify_area+0xcf/0x6c0
[  327.111934][T10840]  vfs_readv+0x4cb/0x8b0
[  327.111957][T10840]  ? __pfx_vfs_readv+0x10/0x10
[  327.111978][T10840]  ? find_held_lock+0x2b/0x80
[  327.112012][T10840]  ? __fget_files+0x20e/0x3c0
[  327.112044][T10840]  ? do_readv+0x132/0x340
[  327.112065][T10840]  do_readv+0x132/0x340
[  327.112084][T10840]  ? __pfx_do_readv+0x10/0x10
[  327.112100][T10840]  ? syscall_trace_enter+0x1cb/0x220
[  327.112124][T10840]  ? rcu_is_watching+0x12/0xc0
[  327.112152][T10840]  __do_fast_syscall_32+0xe8/0x680
[  327.112182][T10840]  do_fast_syscall_32+0x32/0x80
[  327.112210][T10840]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  327.112232][T10840] RIP: 0023:0xf706d579
[  327.112246][T10840] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  327.112263][T10840] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000091
[  327.112281][T10840] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001840
[  327.112292][T10840] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  327.112303][T10840] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  327.112313][T10840] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  327.112349][T10840] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  327.112374][T10840]  </TASK>
[  327.214501][    C2] hpet: Lost 5 RTC interrupts
[  327.311304][ T6055] usb usb46-port1: attempt power cycle
[  327.554405][   T40] audit: type=1326 audit(1767153477.856:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.0.1317" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x0
[  327.671547][T10852] veth0_to_batadv: entered allmulticast mode
[  327.880638][ T6055] usb usb46-port1: unable to enumerate USB device
[  328.690202][   T57] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  328.869699][   T57] usb 9-1: Using ep0 maxpacket: 32
[  328.900122][   T57] usb 9-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  328.905296][   T57] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  328.913434][   T57] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  328.925806][   T57] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  328.935602][   T57] usb 9-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  328.939283][   T57] usb 9-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  328.949972][   T57] usb 9-1: Product: syz
[  328.951369][   T57] usb 9-1: Manufacturer: syz
[  328.952956][   T57] usb 9-1: SerialNumber: syz
[  328.961684][T10883] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  328.966242][   T57] input: appletouch as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/input/input49
[  328.979461][    C0] appletouch 9-1:1.0: atp_complete: usb_submit_urb failed with result -1
[  329.171516][T10883] FAULT_INJECTION: forcing a failure.
[  329.171516][T10883] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.178084][T10883] CPU: 2 UID: 0 PID: 10883 Comm: syz.4.1324 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  329.178112][T10883] Tainted: [L]=SOFTLOCKUP
[  329.178118][T10883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  329.178128][T10883] Call Trace:
[  329.178134][T10883]  <TASK>
[  329.178141][T10883]  dump_stack_lvl+0x16c/0x1f0
[  329.178186][T10883]  should_fail_ex+0x512/0x640
[  329.178211][T10883]  strncpy_from_user+0x3b/0x2e0
[  329.178231][T10883]  getname_flags.part.0+0x8f/0x550
[  329.178250][T10883]  ? hash+0x1d2/0x900
[  329.178273][T10883]  getname_flags+0x93/0xf0
[  329.178295][T10883]  do_sys_openat2+0xb9/0x290
[  329.178313][T10883]  ? __pfx_do_sys_openat2+0x10/0x10
[  329.178334][T10883]  ? bpf_trace_run2+0x2ab/0x5c0
[  329.178364][T10883]  __ia32_compat_sys_openat+0x16d/0x210
[  329.178384][T10883]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  329.178406][T10883]  ? syscall_trace_enter+0x1cb/0x220
[  329.178430][T10883]  ? rcu_is_watching+0x12/0xc0
[  329.178456][T10883]  __do_fast_syscall_32+0xe8/0x680
[  329.178484][T10883]  do_fast_syscall_32+0x32/0x80
[  329.178510][T10883]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  329.178531][T10883] RIP: 0023:0xf706d579
[  329.178545][T10883] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  329.178560][T10883] RSP: 002b:00000000f545d100 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  329.178577][T10883] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f545d150
[  329.178588][T10883] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7406ff4
[  329.178598][T10883] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  329.178607][T10883] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  329.178618][T10883] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  329.178640][T10883]  </TASK>
[  329.248851][    C2] hpet: Lost 3 RTC interrupts
[  329.260966][    C2] appletouch 9-1:1.0: atp_complete: usb_submit_urb failed with result -19
[  329.264043][ T6039] usb 9-1: USB disconnect, device number 3
[  329.292988][ T6039] appletouch 9-1:1.0: input: appletouch disconnected
[  329.639135][ T5940] Bluetooth: hci1: unexpected event for opcode 0x0c05
[  330.091333][T10939] lo speed is unknown, defaulting to 1000
[  330.274601][T10949] lo speed is unknown, defaulting to 1000
[  330.431079][T10954] FAULT_INJECTION: forcing a failure.
[  330.431079][T10954] name failslab, interval 1, probability 0, space 0, times 0
[  330.436993][T10954] CPU: 3 UID: 0 PID: 10954 Comm: syz.3.1341 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  330.437022][T10954] Tainted: [L]=SOFTLOCKUP
[  330.437029][T10954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.437040][T10954] Call Trace:
[  330.437046][T10954]  <TASK>
[  330.437053][T10954]  dump_stack_lvl+0x16c/0x1f0
[  330.437084][T10954]  should_fail_ex+0x512/0x640
[  330.437103][T10954]  ? fs_reclaim_acquire+0xae/0x150
[  330.437134][T10954]  should_failslab+0xc2/0x120
[  330.437162][T10954]  __kmalloc_noprof+0xeb/0x910
[  330.437182][T10954]  ? tomoyo_encode2+0x100/0x3e0
[  330.437213][T10954]  ? tomoyo_encode2+0x100/0x3e0
[  330.437234][T10954]  tomoyo_encode2+0x100/0x3e0
[  330.437262][T10954]  tomoyo_encode+0x29/0x50
[  330.437285][T10954]  tomoyo_realpath_from_path+0x18f/0x6e0
[  330.437318][T10954]  tomoyo_path_number_perm+0x245/0x580
[  330.437340][T10954]  ? tomoyo_path_number_perm+0x237/0x580
[  330.437364][T10954]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  330.437411][T10954]  ? find_held_lock+0x2b/0x80
[  330.437447][T10954]  ? hook_file_ioctl_common+0x144/0x410
[  330.437477][T10954]  ? __fget_files+0x20e/0x3c0
[  330.437508][T10954]  security_file_ioctl_compat+0x9b/0x240
[  330.437534][T10954]  __ia32_compat_sys_ioctl+0xc3/0x370
[  330.437580][T10954]  __do_fast_syscall_32+0xe8/0x680
[  330.437613][T10954]  do_fast_syscall_32+0x32/0x80
[  330.437642][T10954]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  330.437672][T10954] RIP: 0023:0xf701d579
[  330.437687][T10954] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  330.437705][T10954] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  330.437724][T10954] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0045516
[  330.437735][T10954] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000
[  330.437746][T10954] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  330.437757][T10954] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  330.437767][T10954] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  330.437791][T10954]  </TASK>
[  330.437843][T10954] ERROR: Out of memory at tomoyo_realpath_from_path.
[  330.779671][ T6039] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  330.815146][T10964] sctp: [Deprecated]: syz.3.1345 (pid 10964) Use of struct sctp_assoc_value in delayed_ack socket option.
[  330.815146][T10964] Use struct sctp_sack_info instead
[  330.843178][T10964] IPVS: set_ctl: invalid protocol: 47 10.1.1.2:20002
[  330.949817][ T6039] usb 9-1: Using ep0 maxpacket: 32
[  330.960385][ T6039] usb 9-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  330.964161][ T6039] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  330.991528][ T6039] usb 9-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  330.995498][ T6039] usb 9-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  330.999129][ T6039] usb 9-1: Product: syz
[  331.010598][ T6039] usb 9-1: Manufacturer: syz
[  331.012408][ T6039] usb 9-1: SerialNumber: syz
[  331.022265][ T6039] appletouch 9-1:1.0: Could not find int-in endpoint
[  331.025863][ T6039] appletouch 9-1:1.0: probe with driver appletouch failed with error -5
[  331.030435][ T6039] usbhid 9-1:1.0: couldn't find an input interrupt endpoint
[  331.039990][T10977] FAULT_INJECTION: forcing a failure.
[  331.039990][T10977] name failslab, interval 1, probability 0, space 0, times 0
[  331.045586][T10977] CPU: 3 UID: 0 PID: 10977 Comm: syz.0.1350 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  331.045613][T10977] Tainted: [L]=SOFTLOCKUP
[  331.045621][T10977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  331.045631][T10977] Call Trace:
[  331.045638][T10977]  <TASK>
[  331.045645][T10977]  dump_stack_lvl+0x16c/0x1f0
[  331.045675][T10977]  should_fail_ex+0x512/0x640
[  331.045696][T10977]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  331.045721][T10977]  should_failslab+0xc2/0x120
[  331.045748][T10977]  kmem_cache_alloc_node_noprof+0x86/0x800
[  331.045769][T10977]  ? __alloc_skb+0x156/0x410
[  331.045794][T10977]  ? __alloc_skb+0x156/0x410
[  331.045810][T10977]  __alloc_skb+0x156/0x410
[  331.045827][T10977]  ? __alloc_skb+0x35d/0x410
[  331.045844][T10977]  ? __pfx___alloc_skb+0x10/0x10
[  331.045864][T10977]  ? unwind_get_return_address+0x59/0xa0
[  331.045886][T10977]  ? __pfx___might_resched+0x10/0x10
[  331.045915][T10977]  netlink_alloc_large_skb+0x69/0x140
[  331.045942][T10977]  netlink_sendmsg+0x698/0xdd0
[  331.045970][T10977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  331.045998][T10977]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  331.046030][T10977]  ____sys_sendmsg+0xa5d/0xc30
[  331.046059][T10977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  331.046083][T10977]  ? get_compat_msghdr+0x11a/0x170
[  331.046115][T10977]  ___sys_sendmsg+0x134/0x1d0
[  331.046139][T10977]  ? __pfx____sys_sendmsg+0x10/0x10
[  331.046171][T10977]  ? find_held_lock+0x2b/0x80
[  331.046208][T10977]  __sys_sendmsg+0x16d/0x220
[  331.046230][T10977]  ? __pfx___sys_sendmsg+0x10/0x10
[  331.046251][T10977]  ? __pfx_bpf_trace_run2+0x10/0x10
[  331.046283][T10977]  ? syscall_trace_enter+0x1cb/0x220
[  331.046307][T10977]  ? rcu_is_watching+0x12/0xc0
[  331.046332][T10977]  __do_fast_syscall_32+0xe8/0x680
[  331.046360][T10977]  do_fast_syscall_32+0x32/0x80
[  331.046387][T10977]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  331.046409][T10977] RIP: 0023:0xf702d579
[  331.046422][T10977] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  331.046455][T10977] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  331.046474][T10977] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800003c0
[  331.046485][T10977] RDX: 0000000000000044 RSI: 0000000000000000 RDI: 0000000000000000
[  331.046496][T10977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  331.046505][T10977] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  331.046514][T10977] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  331.046538][T10977]  </TASK>
[  331.227561][ T6039] usb 9-1: USB disconnect, device number 4
[  331.416753][T10988] FAULT_INJECTION: forcing a failure.
[  331.416753][T10988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.423083][T10988] CPU: 2 UID: 0 PID: 10988 Comm: syz.0.1354 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  331.423113][T10988] Tainted: [L]=SOFTLOCKUP
[  331.423119][T10988] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  331.423130][T10988] Call Trace:
[  331.423136][T10988]  <TASK>
[  331.423143][T10988]  dump_stack_lvl+0x16c/0x1f0
[  331.423175][T10988]  should_fail_ex+0x512/0x640
[  331.423199][T10988]  _copy_from_user+0x2e/0xd0
[  331.423219][T10988]  mtdchar_write+0x30b/0x610
[  331.423243][T10988]  ? __pfx_mtdchar_write+0x10/0x10
[  331.423268][T10988]  ? common_file_perm+0x1b1/0x500
[  331.423292][T10988]  ? bpf_lsm_file_permission+0x9/0x10
[  331.423314][T10988]  ? security_file_permission+0x71/0x210
[  331.423336][T10988]  ? rw_verify_area+0xcf/0x6c0
[  331.423361][T10988]  ? __pfx_mtdchar_write+0x10/0x10
[  331.423379][T10988]  vfs_write+0x2a0/0x11d0
[  331.423409][T10988]  ? __pfx_vfs_write+0x10/0x10
[  331.423432][T10988]  ? find_held_lock+0x2b/0x80
[  331.423458][T10988]  ? __fget_files+0x204/0x3c0
[  331.423489][T10988]  ? __fget_files+0x20e/0x3c0
[  331.423512][T10988]  ? bpf_trace_run2+0x1c0/0x5c0
[  331.423551][T10988]  ksys_write+0x12a/0x250
[  331.423576][T10988]  ? __pfx_ksys_write+0x10/0x10
[  331.423600][T10988]  ? syscall_trace_enter+0x1cb/0x220
[  331.423625][T10988]  ? rcu_is_watching+0x12/0xc0
[  331.423653][T10988]  __do_fast_syscall_32+0xe8/0x680
[  331.423684][T10988]  do_fast_syscall_32+0x32/0x80
[  331.423712][T10988]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  331.423734][T10988] RIP: 0023:0xf702d579
[  331.423764][T10988] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  331.423783][T10988] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  331.423800][T10988] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800007c0
[  331.423812][T10988] RDX: 0000000000000118 RSI: 0000000000000000 RDI: 0000000000000000
[  331.423824][T10988] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  331.423834][T10988] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  331.423845][T10988] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  331.423870][T10988]  </TASK>
[  331.503763][    C2] hpet: Lost 3 RTC interrupts
[  331.761085][T10995] fuse: Unknown parameter '0xffffffffffffffff0x0000000000000007'
[  332.110392][ T6039] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  332.249659][ T6039] usb 5-1: device descriptor read/64, error -71
[  332.509372][T11007] kvm: kvm [11004]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000024)
[  332.513508][ T6039] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  332.689970][ T6039] usb 5-1: device descriptor read/64, error -71
[  332.810065][ T6039] usb usb5-port1: attempt power cycle
[  333.159790][ T6039] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  333.180361][ T6039] usb 5-1: device descriptor read/8, error -71
[  333.423417][T11018] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1364'.
[  333.430647][    C2] vcan0: j1939_xtp_rx_dat: no tx connection found
[  333.433985][    C2] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  333.440331][ T6039] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  333.460542][ T6039] usb 5-1: device descriptor read/8, error -71
[  333.569889][ T6039] usb usb5-port1: unable to enumerate USB device
[  334.101101][T11046] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1373'.
[  334.747941][T11058] FAULT_INJECTION: forcing a failure.
[  334.747941][T11058] name failslab, interval 1, probability 0, space 0, times 0
[  334.752731][T11058] CPU: 3 UID: 0 PID: 11058 Comm: syz.3.1377 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  334.752760][T11058] Tainted: [L]=SOFTLOCKUP
[  334.752766][T11058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  334.752777][T11058] Call Trace:
[  334.752782][T11058]  <TASK>
[  334.752790][T11058]  dump_stack_lvl+0x16c/0x1f0
[  334.752820][T11058]  should_fail_ex+0x512/0x640
[  334.752840][T11058]  ? fs_reclaim_acquire+0xae/0x150
[  334.752869][T11058]  should_failslab+0xc2/0x120
[  334.752895][T11058]  __kmalloc_noprof+0xeb/0x910
[  334.752916][T11058]  ? tomoyo_encode2+0x100/0x3e0
[  334.752945][T11058]  ? tomoyo_encode2+0x100/0x3e0
[  334.752967][T11058]  tomoyo_encode2+0x100/0x3e0
[  334.752993][T11058]  tomoyo_encode+0x29/0x50
[  334.753015][T11058]  tomoyo_realpath_from_path+0x18f/0x6e0
[  334.753047][T11058]  tomoyo_path_number_perm+0x245/0x580
[  334.753065][T11058]  ? tomoyo_path_number_perm+0x237/0x580
[  334.753088][T11058]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  334.753135][T11058]  ? find_held_lock+0x2b/0x80
[  334.753156][T11058]  ? hook_file_ioctl_common+0x144/0x410
[  334.753183][T11058]  ? __fget_files+0x20e/0x3c0
[  334.753213][T11058]  security_file_ioctl_compat+0x9b/0x240
[  334.753237][T11058]  __ia32_compat_sys_ioctl+0xc3/0x370
[  334.753262][T11058]  __do_fast_syscall_32+0xe8/0x680
[  334.753292][T11058]  do_fast_syscall_32+0x32/0x80
[  334.753320][T11058]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  334.753342][T11058] RIP: 0023:0xf701d579
[  334.753357][T11058] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  334.753374][T11058] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  334.753392][T11058] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000040047459
[  334.753404][T11058] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  334.753414][T11058] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  334.753424][T11058] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  334.753434][T11058] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  334.753480][T11058]  </TASK>
[  334.753562][T11058] ERROR: Out of memory at tomoyo_realpath_from_path.
[  334.783708][T11061] lo speed is unknown, defaulting to 1000
[  334.868313][T11065] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1380'.
[  335.014554][T11070] comedi comedi0: comedi_config --init_data is deprecated
[  335.122980][T11071] netlink: 'syz.3.1379': attribute type 13 has an invalid length.
[  335.845783][T11092] FAULT_INJECTION: forcing a failure.
[  335.845783][T11092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.851007][T11092] CPU: 2 UID: 0 PID: 11092 Comm: syz.3.1387 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  335.851025][T11092] Tainted: [L]=SOFTLOCKUP
[  335.851028][T11092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.851036][T11092] Call Trace:
[  335.851040][T11092]  <TASK>
[  335.851044][T11092]  dump_stack_lvl+0x16c/0x1f0
[  335.851064][T11092]  should_fail_ex+0x512/0x640
[  335.851079][T11092]  _copy_from_user+0x2e/0xd0
[  335.851092][T11092]  move_addr_to_kernel+0x65/0x170
[  335.851104][T11092]  __get_compat_msghdr+0x3f1/0x4d0
[  335.851120][T11092]  get_compat_msghdr+0xd2/0x170
[  335.851133][T11092]  ? __pfx_get_compat_msghdr+0x10/0x10
[  335.851151][T11092]  ___sys_sendmsg+0x1ae/0x1d0
[  335.851166][T11092]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.851186][T11092]  ? find_held_lock+0x2b/0x80
[  335.851210][T11092]  __sys_sendmsg+0x16d/0x220
[  335.851223][T11092]  ? __pfx___sys_sendmsg+0x10/0x10
[  335.851237][T11092]  ? __pfx_bpf_trace_run2+0x10/0x10
[  335.851256][T11092]  ? syscall_trace_enter+0x1cb/0x220
[  335.851272][T11092]  ? rcu_is_watching+0x12/0xc0
[  335.851290][T11092]  __do_fast_syscall_32+0xe8/0x680
[  335.851308][T11092]  do_fast_syscall_32+0x32/0x80
[  335.851325][T11092]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.851340][T11092] RIP: 0023:0xf701d579
[  335.851349][T11092] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  335.851359][T11092] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  335.851370][T11092] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800000c0
[  335.851377][T11092] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  335.851383][T11092] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  335.851389][T11092] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  335.851395][T11092] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.851409][T11092]  </TASK>
[  335.925943][    C2] hpet: Lost 3 RTC interrupts
[  336.817408][T11110] ubi31: attaching mtd0
[  336.840889][T11110] ubi31: scanning is finished
[  336.843036][T11110] ubi31: empty MTD device detected
[  336.961706][T11110] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  336.964322][T11110] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  336.966688][T11110] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  336.969369][T11110] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  336.972480][T11110] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  336.975526][T11110] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  336.978762][T11110] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3143325067
[  336.982453][T11110] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  336.986181][T11113] ubi31: background thread "ubi_bgt31d" started, PID 11113
[  337.191888][T11115] netlink: 'syz.2.1391': attribute type 10 has an invalid length.
[  337.224639][T11115] 8021q: adding VLAN 0 to HW filter on device team0
[  337.228930][T11115] bond0: (slave team0): Enslaving as an active interface with an up link
[  338.970633][T11143] lo speed is unknown, defaulting to 1000
[  342.015156][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  342.018149][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  342.142576][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  342.145647][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  342.314082][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  342.317982][T11212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1416'.
[  343.448091][T11242] sp0: Synchronizing with TNC
[  343.450801][T11243] sp0: Found TNC
[  343.557752][   T34] libceph: connect (1)[c::]:6789 error -101
[  343.560698][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  343.565740][T11246] ceph: No mds server is up or the cluster is laggy
[  346.409366][T11276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1436'.
[  346.416474][T11276] tipc: Bearer <udp:syz1>: already 2 bearers with priority 10
[  346.420070][T11276] tipc: Bearer <udp:syz1>: trying with adjusted priority
[  346.423263][T11276] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  346.490279][T11278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1437'.
[  346.496855][T11278] tipc: Bearer <udp:syz1>: already 2 bearers with priority 10
[  346.500388][T11278] tipc: Bearer <udp:syz1>: trying with adjusted priority
[  346.503709][T11278] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  349.261790][T11298] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1443'.
[  349.267368][T11298] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1443'.
[  349.340665][T11303] FAULT_INJECTION: forcing a failure.
[  349.340665][T11303] name failslab, interval 1, probability 0, space 0, times 0
[  349.346492][T11303] CPU: 3 UID: 0 PID: 11303 Comm: syz.4.1446 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  349.346522][T11303] Tainted: [L]=SOFTLOCKUP
[  349.346528][T11303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  349.346539][T11303] Call Trace:
[  349.346546][T11303]  <TASK>
[  349.346554][T11303]  dump_stack_lvl+0x16c/0x1f0
[  349.346586][T11303]  should_fail_ex+0x512/0x640
[  349.346607][T11303]  ? kmem_cache_alloc_noprof+0x62/0x770
[  349.346632][T11303]  should_failslab+0xc2/0x120
[  349.346659][T11303]  kmem_cache_alloc_noprof+0x83/0x770
[  349.346680][T11303]  ? io_submit_one+0x122/0x1e70
[  349.346703][T11303]  ? io_submit_one+0x122/0x1e70
[  349.346719][T11303]  io_submit_one+0x122/0x1e70
[  349.346739][T11303]  ? __lock_acquire+0x436/0x2890
[  349.346757][T11303]  ? lockdep_hardirqs_on+0x7c/0x110
[  349.346785][T11303]  ? __pfx_io_submit_one+0x10/0x10
[  349.346812][T11303]  ? __might_fault+0xe3/0x190
[  349.346833][T11303]  ? __might_fault+0x13b/0x190
[  349.346859][T11303]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  349.346878][T11303]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  349.346901][T11303]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  349.346921][T11303]  ? __might_fault+0x13b/0x190
[  349.346943][T11303]  ? syscall_trace_enter+0x1cb/0x220
[  349.346974][T11303]  __do_fast_syscall_32+0xe8/0x680
[  349.347006][T11303]  do_fast_syscall_32+0x32/0x80
[  349.347035][T11303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  349.347057][T11303] RIP: 0023:0xf706d579
[  349.347074][T11303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  349.347091][T11303] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  349.347109][T11303] RAX: ffffffffffffffda RBX: 00000000f7f6f000 RCX: 00000000000000f3
[  349.347120][T11303] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  349.347131][T11303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  349.347140][T11303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  349.347151][T11303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  349.347175][T11303]  </TASK>
[  351.151646][T11326] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1451'.
[  351.155505][T11326] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1451'.
[  351.752249][T11333] sp0: Synchronizing with TNC
[  351.756849][T11333] sp0: Found TNC
[  352.206935][   T40] audit: type=1326 audit(1767153502.506:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.217060][   T40] audit: type=1326 audit(1767153502.516:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.239808][   T40] audit: type=1326 audit(1767153502.516:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.249314][   T40] audit: type=1326 audit(1767153502.516:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.259803][   T40] audit: type=1326 audit(1767153502.516:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.271863][   T40] audit: type=1326 audit(1767153502.576:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.281856][   T40] audit: type=1326 audit(1767153502.576:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.519827][   T34] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  352.670918][   T34] usb 9-1: config 4 has an invalid interface number: 28 but max is 0
[  352.673467][   T34] usb 9-1: config 4 has no interface number 0
[  352.677134][   T34] usb 9-1: New USB device found, idVendor=05ac, idProduct=0245, bcdDevice= a.3a
[  352.680391][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.683069][   T34] usb 9-1: Product: syz
[  352.684507][   T34] usb 9-1: Manufacturer: syz
[  352.686111][   T34] usb 9-1: SerialNumber: syz
[  352.696109][   T34] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:4.28/input/input51
[  352.893814][   T40] audit: type=1326 audit(1767153503.196:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf706d579 code=0x7ffc0000
[  352.951957][ T5336] bcm5974 9-1:4.28: could not read from device
[  353.061696][T11338] bcm5974 9-1:4.28: could not read from device
[  353.072916][   T34] usb 9-1: USB disconnect, device number 5
[  353.311312][   T40] audit: type=1326 audit(1767153503.616:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  353.321616][   T40] audit: type=1326 audit(1767153503.616:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11337 comm="syz.4.1454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d579 code=0x7ffc0000
[  353.523875][T11308] udevd[11308]: Error opening device "/dev/input/event4": No such device
[  353.527840][T11308] udevd[11308]: Unable to EVIOCGABS device "/dev/input/event4"
[  353.539269][T11308] udevd[11308]: Unable to EVIOCGABS device "/dev/input/event4"
[  353.544419][T11308] udevd[11308]: Unable to EVIOCGABS device "/dev/input/event4"
[  353.548541][T11308] udevd[11308]: Unable to EVIOCGABS device "/dev/input/event4"
[  360.007008][ T5952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  360.025928][ T5952] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  360.289375][ T5952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  360.295387][ T5952] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  360.299532][ T5952] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  360.336277][T11376] lo speed is unknown, defaulting to 1000
[  360.545824][T11376] chnl_net:caif_netlink_parms(): no params data found
[  360.628819][T11376] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.632762][T11376] bridge0: port 1(bridge_slave_0) entered disabled state
[  360.635832][T11376] bridge_slave_0: entered allmulticast mode
[  360.640077][T11376] bridge_slave_0: entered promiscuous mode
[  360.644490][T11376] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.647593][T11376] bridge0: port 2(bridge_slave_1) entered disabled state
[  360.654269][T11376] bridge_slave_1: entered allmulticast mode
[  360.659308][T11376] bridge_slave_1: entered promiscuous mode
[  360.684304][T11376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  360.691864][T11376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  360.721164][T11376] team0: Port device team_slave_0 added
[  360.727629][T11376] team0: Port device team_slave_1 added
[  360.754416][T11376] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.757686][T11376] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  360.769049][T11376] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.775939][T11376] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.779156][T11376] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  360.790672][T11376] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.834272][T11376] hsr_slave_0: entered promiscuous mode
[  360.837767][T11376] hsr_slave_1: entered promiscuous mode
[  360.840982][T11376] debugfs: 'hsr0' already exists in 'hsr'
[  360.843649][T11376] Cannot create hsr debugfs directory
[  361.016713][T11376] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  361.030658][T11376] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  361.039163][T11376] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  361.075980][T11376] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  361.121643][T11376] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.124910][T11376] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.128361][T11376] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.131863][T11376] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.187995][T11376] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.289250][ T1203] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.234401][ T1203] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.287580][T11376] 8021q: adding VLAN 0 to HW filter on device team0
[  362.295267][ T1203] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.298455][ T1203] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.308918][ T1203] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.312209][ T1203] bridge0: port 2(bridge_slave_1) entered forwarding state
[  362.339799][ T5940] Bluetooth: hci4: command tx timeout
[  362.484476][T11376] 8021q: adding VLAN 0 to HW filter on device batadv0
[  362.733922][T11376] veth0_vlan: entered promiscuous mode
[  362.752513][T11376] veth1_vlan: entered promiscuous mode
[  362.776314][T11376] veth0_macvtap: entered promiscuous mode
[  362.784354][T11376] veth1_macvtap: entered promiscuous mode
[  362.813746][T11376] batman_adv: batadv0: Interface activated: batadv_slave_0
[  362.818476][T11376] batman_adv: batadv0: Interface activated: batadv_slave_1
[  362.825813][ T6130] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.829425][ T6130] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.866563][ T6130] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.891349][ T6130] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.965342][T11406] FAULT_INJECTION: forcing a failure.
[  362.965342][T11406] name failslab, interval 1, probability 0, space 0, times 0
[  362.969569][T11406] CPU: 2 UID: 0 PID: 11406 Comm: syz.4.1465 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.969588][T11406] Tainted: [L]=SOFTLOCKUP
[  362.969592][T11406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.969599][T11406] Call Trace:
[  362.969604][T11406]  <TASK>
[  362.969608][T11406]  dump_stack_lvl+0x16c/0x1f0
[  362.969630][T11406]  should_fail_ex+0x512/0x640
[  362.969643][T11406]  ? __kvmalloc_node_noprof+0x129/0xa40
[  362.969661][T11406]  should_failslab+0xc2/0x120
[  362.969678][T11406]  __kvmalloc_node_noprof+0x14a/0xa40
[  362.969692][T11406]  ? __pfx___mutex_lock+0x10/0x10
[  362.969710][T11406]  ? traverse.part.0.constprop.0+0x397/0x650
[  362.969730][T11406]  ? traverse.part.0.constprop.0+0x397/0x650
[  362.969745][T11406]  traverse.part.0.constprop.0+0x397/0x650
[  362.969764][T11406]  seq_read_iter+0x93c/0x12d0
[  362.969785][T11406]  proc_reg_read_iter+0x220/0x310
[  362.969800][T11406]  vfs_read+0x8bf/0xcf0
[  362.969818][T11406]  ? __pfx_vfs_read+0x10/0x10
[  362.969832][T11406]  ? find_held_lock+0x2b/0x80
[  362.969856][T11406]  ksys_pread64+0x161/0x1a0
[  362.969873][T11406]  ? __pfx_ksys_pread64+0x10/0x10
[  362.969887][T11406]  ? syscall_trace_enter+0x1cb/0x220
[  362.969903][T11406]  ? rcu_is_watching+0x12/0xc0
[  362.969920][T11406]  __do_fast_syscall_32+0xe8/0x680
[  362.969939][T11406]  do_fast_syscall_32+0x32/0x80
[  362.969956][T11406]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.969970][T11406] RIP: 0023:0xf706d579
[  362.969979][T11406] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  362.969990][T11406] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000b4
[  362.970001][T11406] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000000
[  362.970008][T11406] RDX: 0000000000000049 RSI: 0000000000000009 RDI: 0000000000000000
[  362.970014][T11406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.970020][T11406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  362.970026][T11406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.970040][T11406]  </TASK>
[  363.040542][    C2] hpet: Lost 4 RTC interrupts
[  363.065293][ T6130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.070103][ T6130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.082164][ T1258] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.086308][ T1258] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.675542][ T1258] smc: removing ib device syz1
[  363.700223][ T6031] syz1: Port: 1 Link DOWN
[  363.769976][   T40] audit: type=1326 audit(1767153514.066:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.794954][   T40] audit: type=1326 audit(1767153514.066:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.820229][   T40] audit: type=1326 audit(1767153514.066:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.844943][   T40] audit: type=1326 audit(1767153514.066:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.879665][   T40] audit: type=1326 audit(1767153514.066:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.932514][   T40] audit: type=1326 audit(1767153514.066:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.944840][   T40] audit: type=1326 audit(1767153514.066:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  363.981761][   T40] audit: type=1326 audit(1767153514.066:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  364.414972][   T40] audit: type=1326 audit(1767153514.066:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11422 comm="syz.5.1471" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  364.435566][ T5940] Bluetooth: hci4: command tx timeout
[  364.607801][T11432] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  364.610313][T11432] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  364.616769][T11432] vhci_hcd vhci_hcd.0: Device attached
[  364.706666][T11435] random: crng reseeded on system resumption
[  364.889860][ T6039] usb 46-1: SetAddress Request (6) to port 0
[  364.889916][ T6039] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[  365.044296][T11433] vhci_hcd: connection reset by peer
[  365.060318][  T161] vhci_hcd vhci_hcd.4: stop threads
[  365.060335][  T161] vhci_hcd vhci_hcd.4: release socket
[  365.060389][  T161] vhci_hcd vhci_hcd.4: disconnect device
[  365.132373][T11439] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1474'.
[  365.299307][ T1258] ------------[ cut here ]------------
[  365.299331][ T1258] GID entry ref leak for dev syz1 index 2 ref=1
[  365.299339][ T1258] WARNING: drivers/infiniband/core/cache.c:806 at gid_table_release_one+0x1ad/0x450, CPU#2: kworker/u32:11/1258
[  365.299366][ T1258] Modules linked in:
[  365.299399][ T1258] CPU: 2 UID: 0 PID: 1258 Comm: kworker/u32:11 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  365.299415][ T1258] Tainted: [L]=SOFTLOCKUP
[  365.299420][ T1258] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.299428][ T1258] Workqueue: ib-unreg-wq ib_unregister_work
[  365.299442][ T1258] RIP: 0010:gid_table_release_one+0x1b6/0x450
[  365.299458][ T1258] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 2a 69 4f f9 48 8d 3d d3 89 26 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 10 69 4f f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[  365.299470][ T1258] RSP: 0018:ffffc90006fefac8 EFLAGS: 00010293
[  365.299479][ T1258] RAX: 0000000000000000 RBX: ffff8880708a9a00 RCX: 0000000000000001
[  365.299487][ T1258] RDX: 0000000000000002 RSI: ffff88806baa3f60 RDI: ffffffff90958ba0
[  365.299494][ T1258] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed10053096c0
[  365.299501][ T1258] R10: ffff88802984b603 R11: ffff888028b68b30 R12: ffffed100e11535b
[  365.299508][ T1258] R13: ffff888026c20000 R14: 0000000000000002 R15: dffffc0000000000
[  365.299516][ T1258] FS:  0000000000000000(0000) GS:ffff8880978fc000(0000) knlGS:0000000000000000
[  365.299546][ T1258] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  365.299854][ T1258] CR2: 00007ffe4e899898 CR3: 00000000244b1000 CR4: 0000000000352ef0
[  365.299864][ T1258] Call Trace:
[  365.299868][ T1258]  <TASK>
[  365.299878][ T1258]  ib_device_release+0xef/0x1e0
[  365.299890][ T1258]  ? __pfx_ib_device_release+0x10/0x10
[  365.299901][ T1258]  device_release+0xa4/0x240
[  365.299919][ T1258]  kobject_put+0x1ef/0x6f0
[  365.299940][ T1258]  put_device+0x1f/0x30
[  365.299956][ T1258]  process_one_work+0x9ba/0x1b20
[  365.299974][ T1258]  ? __pfx_process_one_work+0x10/0x10
[  365.299991][ T1258]  ? assign_work+0x1a0/0x250
[  365.300003][ T1258]  worker_thread+0x6c8/0xf10
[  365.300019][ T1258]  ? __kthread_parkme+0x19e/0x250
[  365.300037][ T1258]  ? __pfx_worker_thread+0x10/0x10
[  365.300049][ T1258]  kthread+0x3c5/0x780
[  365.300061][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300073][ T1258]  ? rcu_is_watching+0x12/0xc0
[  365.300089][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300101][ T1258]  ret_from_fork+0x983/0xb10
[  365.300113][ T1258]  ? __pfx_ret_from_fork+0x10/0x10
[  365.300126][ T1258]  ? __switch_to+0x7af/0x10d0
[  365.300141][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300153][ T1258]  ret_from_fork_asm+0x1a/0x30
[  365.300177][ T1258]  </TASK>
[  365.300184][ T1258] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  365.300192][ T1258] CPU: 2 UID: 0 PID: 1258 Comm: kworker/u32:11 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  365.300207][ T1258] Tainted: [L]=SOFTLOCKUP
[  365.300211][ T1258] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.300219][ T1258] Workqueue: ib-unreg-wq ib_unregister_work
[  365.300231][ T1258] Call Trace:
[  365.300235][ T1258]  <TASK>
[  365.300239][ T1258]  dump_stack_lvl+0x3d/0x1f0
[  365.300256][ T1258]  vpanic+0x640/0x6f0
[  365.300268][ T1258]  ? gid_table_release_one+0x1ad/0x450
[  365.300282][ T1258]  panic+0xca/0xd0
[  365.300292][ T1258]  ? __pfx_panic+0x10/0x10
[  365.300307][ T1258]  ? check_panic_on_warn+0x1f/0xb0
[  365.300319][ T1258]  check_panic_on_warn+0xab/0xb0
[  365.300332][ T1258]  __warn+0x108/0x3c0
[  365.300344][ T1258]  __report_bug+0x2a0/0x520
[  365.300358][ T1258]  ? gid_table_release_one+0x1ad/0x450
[  365.300373][ T1258]  ? __pfx___report_bug+0x10/0x10
[  365.300395][ T1258]  report_bug_entry+0xe1/0x290
[  365.300409][ T1258]  ? gid_table_release_one+0x1b6/0x450
[  365.300424][ T1258]  handle_bug+0x18a/0x260
[  365.300435][ T1258]  exc_invalid_op+0x17/0x50
[  365.300446][ T1258]  asm_exc_invalid_op+0x1a/0x20
[  365.300457][ T1258] RIP: 0010:gid_table_release_one+0x1b6/0x450
[  365.300472][ T1258] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 2a 69 4f f9 48 8d 3d d3 89 26 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 10 69 4f f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[  365.300483][ T1258] RSP: 0018:ffffc90006fefac8 EFLAGS: 00010293
[  365.300491][ T1258] RAX: 0000000000000000 RBX: ffff8880708a9a00 RCX: 0000000000000001
[  365.300498][ T1258] RDX: 0000000000000002 RSI: ffff88806baa3f60 RDI: ffffffff90958ba0
[  365.300505][ T1258] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed10053096c0
[  365.300512][ T1258] R10: ffff88802984b603 R11: ffff888028b68b30 R12: ffffed100e11535b
[  365.300519][ T1258] R13: ffff888026c20000 R14: 0000000000000002 R15: dffffc0000000000
[  365.300537][ T1258]  ? gid_table_release_one+0x1a6/0x450
[  365.300556][ T1258]  ib_device_release+0xef/0x1e0
[  365.300567][ T1258]  ? __pfx_ib_device_release+0x10/0x10
[  365.300578][ T1258]  device_release+0xa4/0x240
[  365.300594][ T1258]  kobject_put+0x1ef/0x6f0
[  365.300613][ T1258]  put_device+0x1f/0x30
[  365.300628][ T1258]  process_one_work+0x9ba/0x1b20
[  365.300645][ T1258]  ? __pfx_process_one_work+0x10/0x10
[  365.300661][ T1258]  ? assign_work+0x1a0/0x250
[  365.300673][ T1258]  worker_thread+0x6c8/0xf10
[  365.300689][ T1258]  ? __kthread_parkme+0x19e/0x250
[  365.300705][ T1258]  ? __pfx_worker_thread+0x10/0x10
[  365.300717][ T1258]  kthread+0x3c5/0x780
[  365.300728][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300740][ T1258]  ? rcu_is_watching+0x12/0xc0
[  365.300755][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300766][ T1258]  ret_from_fork+0x983/0xb10
[  365.300777][ T1258]  ? __pfx_ret_from_fork+0x10/0x10
[  365.300790][ T1258]  ? __switch_to+0x7af/0x10d0
[  365.300803][ T1258]  ? __pfx_kthread+0x10/0x10
[  365.300815][ T1258]  ret_from_fork_asm+0x1a/0x30
[  365.300837][ T1258]  </TASK>
[  365.301612][ T1258] Kernel Offset: disabled