last executing test programs:

5m48.472590786s ago: executing program 3 (id=2478):
sendmsg$RDMA_NLDEV_CMD_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}, @printk]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x5]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m47.926530388s ago: executing program 3 (id=2484):
r0 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000002c0)={0x2, @pix={0x1, 0xff, 0x59555956, 0x7, 0xfffffffe, 0xd7, 0x7, 0x0, 0x0, 0x2, 0x1}})
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1201f010000800000000014ff83bd214e55914d40542c99064bbd27b2aa77459cff33a3a98350f1af9d51ed5bef3d63520d62a9c5b9", 0x40}, 0x48, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x80)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, 0x0, 0x72661fa541cfba4c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socketpair(0x27, 0x5, 0x4, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r4, &(0x7f0000001040)=""/4096, 0x1000)
keyctl$KEYCTL_WATCH_KEY(0x20, r1, r2, 0x9f)
keyctl$revoke(0x3, r1)
pipe2(&(0x7f0000000040), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x29c80, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c5b6a6ebd7b279824e9aa6e83626f75705f69643d536079e86fc6e8bc9ca9edbb141469b90c3482c6b93809ec5a1483a022bef5882758821d71c2f0d9f1d992356d25b5fa4bd2d83c733018805c9b0ba731249e623f89dfd2e2abaa48785eaa6a663d1c39bc207fb7f721469170387129a67f16e07e01ef5970e70e89fb972207f04f22290a72328cba8b88412a39731f26dc0de22fa3ca1f26589c7e4f75a1774dfddf0940ba0a2e25603f509d9e71b46c9d5362e6311476c71cf64e5e1bb52fd0dbf3e3c8c0a64a486ecbbfb8bd", @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f00000077c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000004200)={0x50, 0x0, r6, {0x7, 0x1f, 0x0, 0x207601a}}, 0x50)
syz_fuse_handle_req(r5, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x8}}})
syz_fuse_handle_req(r5, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000d40)={0x150, 0x0, 0x0, [{{0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}, {0x0, 0x0, 0x8, 0x0, 'g\xd2\x99up_id'}}, {{0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}, {0x0, 0x0, 0x8, 0x0, 'group_id'}}]}, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x7f}}}})

5m43.441569762s ago: executing program 3 (id=2489):
r0 = getpid()
setreuid(0xee00, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0], 0x1}, 0x58)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000060000000800000005"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r4, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
vmsplice(r7, &(0x7f0000000140), 0x253, 0x0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0x41}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r9}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r10, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r8}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000600)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r11}, 0x10)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095", @ANYBLOB="fd07cf0f4bcfb475eeb98b73fc79732bc420a40f474184f2af0aff1b501b2afa9ccf5e70c888c02833c05ef21ecfaba08dccbad716127e1af85b92d8429efce50d794bdc06b553ab796f5f6981479ff07b0d4efdf6310c7889b166cb0471e64df42fd2b88212127e7664f361deef2afb7753d0f1a3fe26fe0c67f875b10fa99d99773884e770122cc69b8a0a65af110598352f87dc86bf0f2e727dd0df5b3492929ee78c2296ae69ac0d9fd157d34265a21a5873ce729ef0", @ANYRESOCT=r6, @ANYRES32=r11, @ANYRESOCT=r3], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r12}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r12}, 0x10)
rename(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

5m40.634945642s ago: executing program 3 (id=2499):
pipe(&(0x7f0000000080))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x7}]}}, 0x0, 0x2a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = syz_open_dev$vim2m(&(0x7f0000002580), 0x3, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000002800)={0x6, 0x1, 0x0, "833461025a7802000000169916ea42230659496b79b29963084f401a544b75d0"})
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x2c, r3, 0x1, 0x0, 0x0, {0x2, 0x2, 0x2}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x40030000000000}, 0x0)
r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800c0001006d6163766c616e00140002800800010008000000060002"], 0x54}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a03000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000180003801400010076657468305f746f5f6873720000000008000240000000005c000000160a0101000b000000000000010000000900020073797a30400000000900010073797a3000000000300003"], 0xfc}, 0x1, 0x0, 0x0, 0x804}, 0x40000)
ioctl$IOCTL_START_ACCEL_DEV(r4, 0x40096102, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc)

5m39.858404076s ago: executing program 3 (id=2501):
set_mempolicy(0x4, 0x0, 0x2)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r0=>0x0)
setreuid(r0, r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x80200, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r1, 0x40047452, 0x20004002)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$sock_int(r2, 0x1, 0x46, &(0x7f0000000000)=0xc00000, 0x4)
sync_file_range(r2, 0x7, 0x4, 0x3)

5m39.722393518s ago: executing program 3 (id=2502):
syz_open_dev$dri(&(0x7f0000000740), 0x1ff, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x9237, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.sectors\x00', 0x275a, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x400100, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000180))
mknodat$loop(0xffffffffffffffff, 0x0, 0xc000, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240))
chdir(&(0x7f0000000140)='./bus\x00')
creat(&(0x7f0000000200)='./bus\x00', 0x0)
setxattr$security_ima(0x0, &(0x7f0000000000), &(0x7f00000003c0)=ANY=[@ANYBLOB="041ce52212e5cc8c0860c6c1f17febbf6760162c49a96f977bc379b46c78efcea572a0115ed648af16de695f6c88aa1ba1f32de9616b570dba992bf60298ff07c98481285febc6474486c63124d9f7d3b0e4647254d2ba16104141366acbf4693614a5a05cefc1010194a1edbb6ba0389e65c14a5984dd7972954196a022de705567e4dd9dbdaa47d3e63f4524a9244cb5e0fda8fc1272688c154073fa55cbe1b767ece28c86623ef0f139e0d3f04b4ee70c944b56cca6751ea0299edbe54866b476"], 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})

5m24.345731306s ago: executing program 32 (id=2502):
syz_open_dev$dri(&(0x7f0000000740), 0x1ff, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x9237, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.sectors\x00', 0x275a, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x400100, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000180))
mknodat$loop(0xffffffffffffffff, 0x0, 0xc000, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240))
chdir(&(0x7f0000000140)='./bus\x00')
creat(&(0x7f0000000200)='./bus\x00', 0x0)
setxattr$security_ima(0x0, &(0x7f0000000000), &(0x7f00000003c0)=ANY=[@ANYBLOB="041ce52212e5cc8c0860c6c1f17febbf6760162c49a96f977bc379b46c78efcea572a0115ed648af16de695f6c88aa1ba1f32de9616b570dba992bf60298ff07c98481285febc6474486c63124d9f7d3b0e4647254d2ba16104141366acbf4693614a5a05cefc1010194a1edbb6ba0389e65c14a5984dd7972954196a022de705567e4dd9dbdaa47d3e63f4524a9244cb5e0fda8fc1272688c154073fa55cbe1b767ece28c86623ef0f139e0d3f04b4ee70c944b56cca6751ea0299edbe54866b476"], 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})

2m58.924958055s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m27.493442117s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m57.043836868s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m35.075133228s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec56147d66527da307bf731fef97861750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a4fc92c88c5b8dcd36e7487afa447c2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b31592479ecf2392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b87f7c40a1702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f600e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10f9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80729fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m11.425545289s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

20.12507982s ago: executing program 0 (id=3251):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002180)=ANY=[@ANYRESHEX=0x0, @ANYRESDEC, @ANYRESDEC=r2, @ANYRES8=r2, @ANYBLOB, @ANYRES32=r2, @ANYRESHEX=0x0, @ANYRES8=r0, @ANYRES64], 0x0, 0x20000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r3, 0x0, 0x0)
accept4$unix(r2, &(0x7f00000020c0)=@abs, &(0x7f0000002140)=0x19, 0x80000)
connect$llc(r3, &(0x7f0000000240)={0x1a, 0x302, 0x0, 0x6, 0x0, 0x0, @broadcast}, 0x10)
bind$llc(0xffffffffffffffff, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
clock_gettime(0xfffffffffffffffd, 0x0)
r4 = getpid()
syz_pidfd_open(r4, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x4004)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x50}}, 0x0)

18.432781679s ago: executing program 0 (id=3255):
r0 = accept4$x25(0xffffffffffffffff, &(0x7f0000000040)={0x9, @remote}, &(0x7f0000000080)=0x12, 0x0)
ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000000000000150001c0"])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffe00)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000540)='io_uring_req_failed\x00'}, 0x18)
r6 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x7e05, 0x400, 0x0, 0xfffbfffc}, &(0x7f0000000500)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
socket$nl_route(0x10, 0x3, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x18)
r10 = syz_open_dev$I2C(&(0x7f0000000180), 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
ioctl$I2C_RDWR(r10, 0x707, &(0x7f00000000c0)={&(0x7f0000000080), 0x23})
io_uring_enter(r6, 0x567, 0x0, 0x0, 0x0, 0x0)
r11 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
keyctl$setperm(0x5, r11, 0x20008)
keyctl$read(0xb, r11, 0x0, 0x0)

17.781978811s ago: executing program 0 (id=3256):
r0 = getpid()
setreuid(0xee00, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0], 0x1}, 0x58)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000060000000800000005"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r4, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
vmsplice(r7, &(0x7f0000000140), 0x253, 0x0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r8}, 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000600)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095", @ANYBLOB="fd07cf0f4bcfb475eeb98b73fc79732bc420a40f474184f2af0aff1b501b2afa9ccf5e70c888c02833c05ef21ecfaba08dccbad716127e1af85b92d8429efce50d794bdc06b553ab796f5f6981479ff07b0d4efdf6310c7889b166cb0471e64df42fd2b88212127e7664f361deef2afb7753d0f1a3fe26fe0c67f875b10fa99d99773884e770122cc69b8a0a65af110598352f87dc86bf0f2e727dd0df5b3492929ee78c2296ae69ac0d9fd157d34265a21a5873ce729ef0", @ANYRESOCT=r6, @ANYRES32=r10, @ANYRESOCT=r3], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r11}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r11}, 0x10)
rename(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

17.17042401s ago: executing program 5 (id=2753):
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000e40)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1000, 0x3a, '\\x00\x00\x00', 0x3a, ':dev/bus/usbF30#/00#\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x43)
write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, 0x0, 0x0)
pipe(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r5, 0x0, 0xb)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0xbc}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setpipe(r4, 0x407, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x80, 0x0}, 0x8000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
writev(r7, &(0x7f0000001f00)=[{&(0x7f0000000e00)="1c", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES64], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

16.114405277s ago: executing program 0 (id=3257):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000004)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r4, 0x104, 0x2, 0x0, &(0x7f00000000c0))
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text32={0x20, &(0x7f00000002c0)="0f3066baa000ec660f08b91c0300000f320fc779000f01c9260f01c2640f0057aa0f3566b8a9000f00d8", 0x2a}], 0x1, 0x74, 0x0, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
ppoll(&(0x7f0000000000)=[{r6, 0x200}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x258, 0x2a0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}, @common=@inet=@hashlimit3={{0x158}, {'veth0_vlan\x00', {0x3, 0x0, 0x48, 0x0, 0x15ab, 0x1000, 0x6, 0x5}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8923, &(0x7f0000000040)={'bond0\x00', 0x1001})

14.159765656s ago: executing program 1 (id=3260):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={&(0x7f0000000300)="d97d558b8ba9e84ffba0e98de77a68864c0787ed520a217ccfb85fe46df9d1f9acc6aa3979705bcd885cbb2309209a9c2cc828c01c0139274a660b3fe7ba1c6c1fffcda18cdd", &(0x7f0000000a40)="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"}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCFLSH(r1, 0x80045438, 0x300000000000000)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x12, 0x4, @tid=r0}, &(0x7f00000004c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0x0, 0x0)
gettid()
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0700000004000000040000000a0000000000080046644913345c1a08ebf81d1832746e68469a019ea7c0763789a336d09ce164b92d535def78fe52958a3d380a2655ab9e4c49957ff2ae1f5b760ee79508f1b8eb6fb3ad69a8a6fb261573d6cd09e3a7047abdb3990f84c4df8c793b0635433396c46b6eb3a03e06a010b7bd19d524b90af6f83e94f9aa4c0dc3498a2614aca85e773c170c00000000000000d09044ae34a3130b0dc43234", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB="1806000600800000000000edc1333d186a7b7368ded25aac56be640854991d4babb2e54baf130000000000000000000000000000000173edcb10059d537f464d51daf9c236df4130963bfd38bdd87d05ff87f1ebde4b11db4731fb3cce4fcbc088f5048249303034b45fc390145da7ad7222e107650510559d713adb8239785078be844a6ec9fd31ef031c5e631f7a067c77d6e591810cab4aca01aa78a02aa7673b73d57a909c5c590c509791290bbd1f649e9be5ebc5b60db7cb9d4135368d805d69b5dbcb3d320498e758e52005d985d542694dda6c7f0facf33d137d43e3e69e67c286f4", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000"], &(0x7f0000000380)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7, 0x2}, 0xe)
openat$6lowpan_control(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r5 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r6, &(0x7f0000000100), 0x8)
write$6lowpan_control(r5, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, 0x0, &(0x7f00000000c0)=r3}, 0x20)

12.822350913s ago: executing program 1 (id=3262):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x18)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

12.474409938s ago: executing program 1 (id=3264):
ppoll(0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$vim2m(&(0x7f0000000040), 0xffffffff, 0x2)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VIDIOC_G_SLICED_VBI_CAP(0xffffffffffffffff, 0xc0745645, &(0x7f0000000040)={0x9, [0x0, 0xfff, 0x6, 0x6, 0x15, 0xfff, 0x0, 0xe, 0x9, 0x1, 0xf29f, 0x6, 0x594, 0xfffd, 0x2, 0x8, 0x8, 0x4, 0x0, 0x7e, 0x8, 0xa, 0x54c, 0x1, 0x2, 0x1b8, 0x7ff, 0x3, 0x7, 0x0, 0x1, 0x1, 0x401, 0x6, 0x8, 0x3, 0x8000, 0x7, 0xf9f8, 0x7, 0x25, 0x1ff, 0x4, 0x8, 0xa, 0xad1, 0xb], 0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x6, 0x4, 0x40, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), 0x0, 0xfff, r2, 0x0, 0xa0028000}, 0x38)
r3 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
fcntl$setstatus(r3, 0x4, 0x2c00)
r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}], {0x14, 0x10}}, 0x84}}, 0x0)

12.18250707s ago: executing program 2 (id=3265):
ppoll(0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$vim2m(&(0x7f0000000040), 0xffffffff, 0x2)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VIDIOC_G_SLICED_VBI_CAP(0xffffffffffffffff, 0xc0745645, &(0x7f0000000040)={0x9, [0x0, 0xfff, 0x6, 0x6, 0x15, 0xfff, 0x0, 0xe, 0x9, 0x1, 0xf29f, 0x6, 0x594, 0xfffd, 0x2, 0x8, 0x8, 0x4, 0x0, 0x7e, 0x8, 0xa, 0x54c, 0x1, 0x2, 0x1b8, 0x7ff, 0x3, 0x7, 0x0, 0x1, 0x1, 0x401, 0x6, 0x8, 0x3, 0x8000, 0x7, 0xf9f8, 0x7, 0x25, 0x1ff, 0x4, 0x8, 0xa, 0xad1, 0xb], 0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x6, 0x4, 0x40, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), 0x0, 0xfff, r2, 0x0, 0xa0028000}, 0x38)
r3 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
fcntl$setstatus(r3, 0x4, 0x2c00)
r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
mount(&(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', &(0x7f0000000240)='erofs\x00', 0x2000000, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8}, @NFTA_META_KEY={0x8}]}}}]}], {0x14, 0x10}}, 0xa0}}, 0x0)

11.33895311s ago: executing program 4 (id=3266):
r0 = accept4$x25(0xffffffffffffffff, &(0x7f0000000040)={0x9, @remote}, &(0x7f0000000080)=0x12, 0x0)
ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000000000000150001c0"])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffe00)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000540)='io_uring_req_failed\x00'}, 0x18)
r7 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x7e05, 0x400, 0x0, 0xfffbfffc}, &(0x7f0000000500)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
r11 = syz_open_dev$I2C(&(0x7f0000000180), 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
ioctl$I2C_RDWR(r11, 0x707, 0x0)
io_uring_enter(r7, 0x567, 0x0, 0x0, 0x0, 0x0)
r12 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
keyctl$setperm(0x5, r12, 0x20008)
keyctl$read(0xb, r12, 0x0, 0x0)

11.227147271s ago: executing program 2 (id=3267):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000005580)={0x2020}, 0x2020)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x40)
mount$nfs(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
close(0xffffffffffffffff)
sendto$inet(r2, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7", 0x3d, 0x0, 0x0, 0x0)
r4 = dup2(r1, r1)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000100)={@remote, @private1, @ipv4={'\x00', '\xff\xff', @empty}, 0xd929, 0x40, 0xfffd, 0x100, 0x9, 0x40000000, r6})
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000300)=ANY=[@ANYRES8=0x0, @ANYBLOB="4a490e61a1854add4048df00587873a8569243c2ba96cce12b1831d7a28b54650a02a219eb2dc153c4e8e051", @ANYRES32=r1, @ANYBLOB="f763ea7fbbfdfd92f4cc69b7a5e84b85a5f2a97ec1c9dbdb3ce80fb30500000000000000ffffffff520aefc1df26c2ae0dd184"], 0x8)

10.303191062s ago: executing program 4 (id=3268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8, 0x2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000480), 0xa8000, 0x0)
ioctl$vim2m_VIDIOC_QBUF(r2, 0xc058560f, &(0x7f00000004c0)=@userptr={0x4f, 0x1, 0x4, 0xe000, 0xfff, {0x77359400}, {0x1, 0xc, 0x1, 0x3, 0x8, 0x1, "b0259c28"}, 0x3, 0x2, {&(0x7f0000000400)}, 0xffffffff, 0x0, r3})
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000580)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x47}, @loopback, 0x0, 0x0, 0x80, 0x0, 0x0, 0x10200})
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000040)={@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x10200})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fstat(0xffffffffffffffff, &(0x7f00000006c0))
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x275a, 0x0)
quotactl_fd$Q_GETINFO(r8, 0xffffffff80000501, 0xffffffffffffffff, 0x0)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x44, r9, 0x101, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bond\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x180}, 0x4)

9.517039003s ago: executing program 2 (id=3269):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x305000, 0x800, 0x200, 0x1}, 0x20)
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000, 0x3})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095de6af87ca0f984edfc36d989e7cd45e4a736cb5d35a9cdfea57b182ef268cfd68ae5f2287d61c831b4a6ab4e9ad075c513ecb1a29dea398e2bf6a239c65f3f140e7a821d964688716c5fb82384142704", @ANYRES16=r0], &(0x7f0000000380)='syzkaller\x00', 0xc, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
pwritev(r4, &(0x7f0000000600)=[{&(0x7f0000000240)="02000000", 0x1b}, {&(0x7f0000000280)="f697079a161cfb7702311e629acda76933ddd0c24174eb4d4d28f9", 0x4}, {&(0x7f0000000340)="527302587e0a4e47ad", 0x9}], 0x3, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000540), 0x248000, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102400, 0x19000)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/181, 0xb5)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000300)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="7d2a602c10b7ad5d077d000027c199bd85d065e4e72dcd916047563c368c73b4c394cef4b9", @ANYRES32=0x0, @ANYBLOB, @ANYRES64=0x0], 0x20)

8.75391068s ago: executing program 4 (id=3270):
syz_open_dev$dri(&(0x7f0000000740), 0x1ff, 0x0)
syz_open_dev$dri(0x0, 0x9237, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.sectors\x00', 0x275a, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x400100, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
r1 = open(0x0, 0x0, 0x185)
mknodat$loop(r1, 0x0, 0xc000, 0x0)
close(0xffffffffffffffff)
read$FUSE(r1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240))
setxattr$security_ima(0x0, &(0x7f0000000000), &(0x7f00000003c0)=ANY=[@ANYBLOB="041ce52212e5cc8c0860c6c1f17febbf6760162c49a96f977bc379b46c78efcea572a0115ed648af16de695f6c88aa1ba1f32de9616b570dba992bf60298ff07c98481285febc6474486c63124d9f7d3b0e4647254d2ba16104141366acbf4693614a5a05cefc1010194a1edbb6ba0389e65c14a5984dd7972954196a022de705567e4dd9dbdaa47d3e63f4524a9244cb5e0fda8fc1272688c154073fa55cbe1b767ece28c86623ef0f139e0d3f04b4ee70c944b56cca6751ea0299edbe54866b476"], 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

7.711879134s ago: executing program 0 (id=3271):
r0 = syz_open_dev$evdev(0x0, 0x3, 0x1eb102)
syz_usb_disconnect(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r1, 0x10c, 0x6, &(0x7f0000000180), &(0x7f00000002c0)=0x4)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(0x0, 0x1f, 0x0)
syz_open_dev$dri(0x0, 0x1f, 0x0)
r5 = io_uring_setup(0x6958, &(0x7f0000000bc0)={0x0, 0x5090, 0x204c, 0x2, 0xfff})
setresuid(0xffffffffffffffff, 0xffffffffffffffff, 0xee01)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
r6 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x85, 0x10, 0x5, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x7, 0x1, 0x2, 0x2, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x8, 0x80, 0x2}}, [{{0x9, 0x5, 0x82, 0x2, 0x260, 0xf, 0xff, 0xc1}}]}}}]}}]}}, &(0x7f00000004c0)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x310, 0x0, 0x4, 0x8, 0x20}, 0x76, &(0x7f0000000180)={0x5, 0xf, 0x76, 0x6, [@ssp_cap={0x20, 0x10, 0xa, 0x9, 0x5, 0x7ffffff, 0xf00, 0xfff1, [0xf0, 0xff0f, 0xc0c0, 0x30, 0x18]}, @generic={0x23, 0x10, 0x1, "fad94833b3c3bf357b478f03d47852dc04b16f97169b0329185316a7756d7174"}, @ssp_cap={0x10, 0x10, 0xa, 0x9, 0x1, 0x6, 0xff00, 0x1, [0x3f30]}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x7, 0x1, 0x1}, @ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x10001, 0x0, 0xde4, [0xff3f00, 0x3f30]}, @ptm_cap={0x3}]}, 0x4, [{0x5b, &(0x7f0000000240)=@string={0x5b, 0x3, "11ea072595301d80882e27d9a017ae05197371c0c9c893be562ce9b6a0895f8c763c15c475bb8811a5fd51737092dd11e7ee0b7fef325253aaa89bf792e78d41f6451585d379c9ef17b36e013222c6b0e91cf138a70f6cd771"}}, {0x5e, &(0x7f0000000340)=@string={0x5e, 0x3, "8a92f202c7bc9cef66d728bf47531052e0fbd0a319ac7cdc1067babadcf2e86b489e296618df2e229f77134b86ce0ba4e3fc660a1d52d8493ca778bf1fbb5ec7910d4f668939b550bdffeec5f7ae3dd8eda40e719343ce76be959b49"}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x140a}}, {0xe2, &(0x7f00000003c0)=@string={0xe2, 0x3, "7097a3ba31da6b938193440d0c7d12d90366ecd2accbf1fa78f51fb347e742b161b272b680f6b75a3e6bdf2c9e1387d01a5a640998dfb4b094d4845d9695071354ad8148af9b1ba3d13d6e00c74ef1f09dfa5568890db8987b5a1fdee97a56524dbb386828ebc2d5b47ec69e81ff2bb7d21ced2d037895245065311f531ea98b01c32af17a9a9e4cbb8cff8b51d2c09bfdcd272576d8dd8eb1fe5ffb592661192c26644c9cc893da220263fd9eed23b42fe553789726ad66754437aee6ec4709f3563feed5e954164fe1a68d899515304ba09cc7d88ffbcc53a185cf6bc29be1"}}]})
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
syz_usb_control_io(r6, &(0x7f00000006c0)={0x2c, &(0x7f0000000540)={0x40, 0x1, 0x35, {0x35, 0x9, "fee6b749997043e49ee8b9c7f79136f310e3d83d94d02d4820929a058633a7e3492e823bf601b682d2a15249779bdd27e4edff"}}, &(0x7f0000000580)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000000600)={0x0, 0xf, 0x3a, {0x5, 0xf, 0x3a, 0x5, [@ptm_cap={0x3}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x14, 0x8b, 0xa, 0x9, 0x4, 0x2}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "4cdb6a18d2f94538c6e6ae7fbbcb0a9f"}, @ssp_cap={0x10, 0x10, 0xa, 0x0, 0x1, 0xd, 0xf, 0x6, [0xff0030]}]}}, &(0x7f0000000640)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x1, 0xb, 0x9, "89152939", "dc893c23"}}, &(0x7f0000000680)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x9, 0x10, 0x7, 0x99, 0xd, 0x200, 0x8}}}, &(0x7f0000000b00)={0x84, &(0x7f0000000700)={0x60, 0xd, 0x21, "07f9f0aeedd5c0a9dc6e57ae3872c92826aaba2ed0fd8edfd9fd1d8ceff32b92b4"}, &(0x7f0000000740)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000000780)={0x0, 0x8, 0x1, 0xb}, &(0x7f00000007c0)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f0000000800)={0x20, 0x0, 0x4, {0x120, 0x10}}, &(0x7f0000000840)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000880)={0x40, 0x9, 0x1, 0xd1}, &(0x7f00000008c0)={0x40, 0xb, 0x2, "15ca"}, &(0x7f0000000900)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000940)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000000980)={0x40, 0x17, 0x6, @random="9ceb4bdf7612"}, &(0x7f00000009c0)={0x40, 0x19, 0x2, 'N!'}, &(0x7f0000000a00)={0x40, 0x1a, 0x2, 0x14ef}, &(0x7f0000000a40)={0x40, 0x1c, 0x1, 0xf}, &(0x7f0000000a80)={0x40, 0x1e, 0x1, 0x2}, &(0x7f0000000ac0)={0x40, 0x21, 0x1, 0x9}})
close_range(r5, 0xffffffffffffffff, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
ioctl$EVIOCRMFF(r0, 0x40085503, 0x0)

7.709471103s ago: executing program 4 (id=3272):
syz_open_dev$dri(&(0x7f0000000740), 0x1ff, 0x0)
syz_open_dev$dri(0x0, 0x9237, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.sectors\x00', 0x275a, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x400100, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
r1 = open(0x0, 0x0, 0x185)
mknodat$loop(r1, 0x0, 0xc000, 0x0)
close(0xffffffffffffffff)
read$FUSE(r1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240))
setxattr$security_ima(0x0, &(0x7f0000000000), &(0x7f00000003c0)=ANY=[@ANYBLOB="041ce52212e5cc8c0860c6c1f17febbf6760162c49a96f977bc379b46c78efcea572a0115ed648af16de695f6c88aa1ba1f32de9616b570dba992bf60298ff07c98481285febc6474486c63124d9f7d3b0e4647254d2ba16104141366acbf4693614a5a05cefc1010194a1edbb6ba0389e65c14a5984dd7972954196a022de705567e4dd9dbdaa47d3e63f4524a9244cb5e0fda8fc1272688c154073fa55cbe1b767ece28c86623ef0f139e0d3f04b4ee70c944b56cca6751ea0299edbe54866b476"], 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

7.63369663s ago: executing program 1 (id=3273):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={&(0x7f0000000300)="d97d558b8ba9e84ffba0e98de77a68864c0787ed520a217ccfb85fe46df9d1f9acc6aa3979705bcd885cbb2309209a9c2cc828c01c0139274a660b3fe7ba1c6c1fffcda18cdd", &(0x7f0000000a40)="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"}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCFLSH(r1, 0x80045438, 0x300000000000000)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x12, 0x4, @tid=r0}, &(0x7f00000004c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
gettid()
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB="1806000600800000000000edc1333d186a7b7368ded25aac56be640854991d4babb2e54baf130000000000000000000000000000000173edcb10059d537f464d51daf9c236df4130963bfd38bdd87d05ff87f1ebde4b11db4731fb3cce4fcbc088f5048249303034b45fc390145da7ad7222e107650510559d713adb8239785078be844a6ec9fd31ef031c5e631f7a067c77d6e591810cab4aca01aa78a02aa7673b73d57a909c5c590c509791290bbd1f649e9be5ebc5b60db7cb9d4135368d805d69b5dbcb3d320498e758e52005d985d542694dda6c7f0facf33d137d43e3e69e67c286f4", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000"], &(0x7f0000000380)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7, 0x2}, 0xe)
openat$6lowpan_control(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r5 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r6, &(0x7f0000000100), 0x8)
write$6lowpan_control(r5, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, 0x0, &(0x7f00000000c0)=r3}, 0x20)

5.403994497s ago: executing program 1 (id=3274):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, &(0x7f0000000000))
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000c40)=@mangle={'mangle\x00', 0x8, 0x6, 0x620, 0x0, 0x240, 0x338, 0xd0, 0xd0, 0x550, 0x550, 0x550, 0x550, 0x550, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@ipv6={@dev, @loopback, [], [], 'pimreg0\x00', 'nicvf0\x00'}, 0x0, 0x148, 0x170, 0x0, {0x5002}, [@common=@unspec=@physdev={{0x68}, {'erspan0\x00', {}, 'netpci0\x00', {}, 0x14, 0x15}}, @common=@unspec=@connbytes={{0x38}}]}, @common=@unspec=@CLASSIFY={0x28}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@ipv6header={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@MARK={0x28}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @inet=@TOS={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x680)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x343e42, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
userfaultfd(0x801)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0xfffffffd, 0x0, 0x0, 0x81, 0x8})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r5, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)

3.863000614s ago: executing program 1 (id=3275):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000005580)={0x2020}, 0x2020)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, 0x0)
setregid(0xffffffffffffffff, r4)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x40)
mount$nfs(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
close(r5)
sendto$inet(r2, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r6 = dup2(r1, r1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCDELRT(r6, 0x890c, &(0x7f0000000100)={@remote, @private1, @ipv4={'\x00', '\xff\xff', @empty}, 0xd929, 0x40, 0xfffd, 0x100, 0x9, 0x40000000, r7})
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000300)=ANY=[@ANYRES8=0x0, @ANYBLOB="4a490e61a1854add4048df00587873a8569243c2ba96cce12b1831d7a28b54650a02a219eb2dc153c4e8e051", @ANYRES32=r1, @ANYBLOB="f763ea7fbbfdfd92f4cc69b7a5e84b85a5f2a97ec1c9dbdb3ce80fb30500000000000000ffffffff520aefc1df26c2ae0dd184"], 0x8)

3.831421316s ago: executing program 0 (id=3276):
socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_open_dev$video4linux(&(0x7f0000000000), 0x820009, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000300), 0x0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
recvfrom$phonet(r5, 0x0, 0x0, 0x40010102, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000140)={0x2, 0x1, 0x4})
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f0000000040)=0x1)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r1, &(0x7f0000008c80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x18}}], 0x2, 0x840)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)

2.848821957s ago: executing program 2 (id=3277):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000005580)={0x2020}, 0x2020)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, 0x0)
setregid(0xffffffffffffffff, r4)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x40)
mount$nfs(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
close(r5)
sendto$inet(r2, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7", 0x3d, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000100)={@remote, @private1, @ipv4={'\x00', '\xff\xff', @empty}, 0xd929, 0x40, 0xfffd, 0x100, 0x9, 0x40000000, r6})
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000300)=ANY=[@ANYRES8=0x0, @ANYBLOB="4a490e61a1854add4048df00587873a8569243c2ba96cce12b1831d7a28b54650a02a219eb2dc153c4e8e051", @ANYRES32=r1, @ANYBLOB="f763ea7fbbfdfd92f4cc69b7a5e84b85a5f2a97ec1c9dbdb3ce80fb30500000000000000ffffffff520aefc1df26c2ae0dd184"], 0x8)

2.231360762s ago: executing program 4 (id=3278):
r0 = accept4$x25(0xffffffffffffffff, &(0x7f0000000040)={0x9, @remote}, &(0x7f0000000080)=0x12, 0x0)
ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000000000000150001c0"])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffe00)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000540)='io_uring_req_failed\x00'}, 0x18)
r7 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x7e05, 0x400, 0x0, 0xfffbfffc}, &(0x7f0000000500)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
r11 = syz_open_dev$I2C(&(0x7f0000000180), 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
ioctl$I2C_RDWR(r11, 0x707, 0x0)
io_uring_enter(r7, 0x567, 0x0, 0x0, 0x0, 0x0)
r12 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
keyctl$setperm(0x5, r12, 0x20008)
keyctl$read(0xb, r12, 0x0, 0x0)

1.604729157s ago: executing program 2 (id=3279):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r6, 0x100, 0x0)
getdents64(r6, 0x0, 0x44)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
io_uring_setup(0x1d56, 0x0)
write$P9_RSTATu(r7, &(0x7f0000000580)=ANY=[@ANYBLOB="0e0200000200000005cd000005000000000000000000000000000000000000000000000000000000000000000000000000001b00046e6f6465767b65766f6f7e0539c60005000037d93a8b92000000280070673effeb09b5351f5bde05400000000018789ba916638814e57081b494e10000000000000000020008005500f8f669fb716dcf315ecaf385409ac65b9408678c2c3b9e1d52c36cde7ba4a400b4", @ANYRES32=0xee01], 0x20e)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x12, r0, 0x0)
ioperm(0x0, 0x7, 0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)

1.372008596s ago: executing program 4 (id=3280):
iopl(0x3)
r0 = socket$caif_stream(0x25, 0x1, 0x2)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'dummy0\x00', &(0x7f0000000040)=@ethtool_ts_info})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x5, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x80}, [@map_val={0x18, 0xb, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x8001}]}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x2}, 0x1c)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r3, 0x29, 0x50, &(0x7f0000000040)={'ipvs\x00'}, &(0x7f0000000100)=0x1e)
r4 = getpgrp(0xffffffffffffffff)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0x174)
write$binfmt_elf32(r5, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x3, 0x0, 0x3, 0x0, 0x2, 0x3e, 0x4, 0x301, 0x38, 0x0, 0xf, 0x0, 0x20, 0x1, 0x4}, [{0x3, 0x8, 0xf3, 0x81, 0x4, 0x4, 0xc, 0x400}]}, 0x58)
close(r5)
read$msr(r5, &(0x7f00000001c0)=""/81, 0x51)
syz_open_procfs(r4, &(0x7f0000000180)='totmaps\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
clock_settime(0x0, &(0x7f0000000140)={0x77359400})
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)

0s ago: executing program 2 (id=3281):
pipe(&(0x7f0000000080))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x7}]}}, 0x0, 0x2a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$vim2m(&(0x7f0000002580), 0x3, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000002800)={0x6, 0x1, 0x0, "833461025a7802000000169916ea42230659496b79b29963084f401a544b75d0"})
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x2c, r5, 0x1, 0x0, 0x0, {0x2, 0x2, 0x2}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x40030000000000}, 0x0)
r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a03000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000180003801400010076657468305f746f5f6873720000000008000240000000005c000000160a0101000b000000000000010000000900020073797a30400000000900010073797a3000000000300003"], 0xfc}, 0x1, 0x0, 0x0, 0x804}, 0x40000)
ioctl$IOCTL_START_ACCEL_DEV(r6, 0x40096102, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc)

kernel console output (not intermixed with test programs):

an_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1122.044369][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1122.067597][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1122.094442][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1122.155685][   T12] veth1_macvtap: left promiscuous mode
[ 1122.180794][   T12] veth0_macvtap: left promiscuous mode
[ 1122.187301][   T12] veth1_vlan: left promiscuous mode
[ 1122.218222][   T12] veth0_vlan: left promiscuous mode
[ 1122.615427][T14047] Bluetooth: hci3: command tx timeout
[ 1123.210216][T12700] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 1123.486578][T15014] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1123.497249][T12700] usb 5-1: Using ep0 maxpacket: 32
[ 1123.556863][ T5870] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 1123.713466][T12700] usb 5-1: config 0 has an invalid interface number: 126 but max is 0
[ 1123.721875][T12700] usb 5-1: config 0 has no interface number 0
[ 1123.729784][T12700] usb 5-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1123.740302][T12700] usb 5-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[ 1123.752324][T12700] usb 5-1: config 0 interface 126 has no altsetting 0
[ 1123.762525][T12700] usb 5-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[ 1123.771864][T12700] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1123.807855][T12700] usb 5-1: Product: syz
[ 1123.823082][T12700] usb 5-1: Manufacturer: syz
[ 1123.829246][T15369] fuse: Unknown parameter ''
[ 1123.834054][T12700] usb 5-1: SerialNumber: syz
[ 1123.855331][T12700] usb 5-1: config 0 descriptor??
[ 1123.866788][T15014] usb 3-1: Using ep0 maxpacket: 8
[ 1123.871567][T15359] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1123.871959][ T5870] usb 2-1: Using ep0 maxpacket: 16
[ 1123.879356][T15359] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1123.908067][T15014] usb 3-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1123.925094][ T5870] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1123.958962][ T5870] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1123.971791][T15014] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1123.995555][T15014] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1124.013331][ T5870] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0001, bcdDevice= 0.40
[ 1124.035464][T15014] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1124.050406][ T5870] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1124.072987][T15014] usb 3-1: Product: ᐊ
[ 1124.084073][ T5870] usb 2-1: Product: syz
[ 1124.097228][T15014] usb 3-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1124.119979][ T5870] usb 2-1: Manufacturer: syz
[ 1124.139825][ T5870] usb 2-1: SerialNumber: syz
[ 1124.163877][T15014] usb 3-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1124.195725][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.686928][T14047] Bluetooth: hci3: command 0x0419 tx timeout
[ 1124.806816][T15364] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1124.839001][T12700] ir_usb 5-1:0.126: IR Dongle converter detected
[ 1125.289782][T12700] usb 5-1: IRDA class descriptor not found, device not bound
[ 1125.456788][T15014] usb 3-1: USB disconnect, device number 63
[ 1126.180487][T15248] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[ 1126.255828][T15379] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1126.336638][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1126.402373][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1126.423637][T15248] usb 1-1: Using ep0 maxpacket: 8
[ 1126.458325][T15248] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1126.496450][T15248] usb 1-1: config 7 has an invalid interface number: 63 but max is 0
[ 1126.513754][T15248] usb 1-1: config 7 has no interface number 0
[ 1126.528953][T15248] usb 1-1: config 7 interface 63 has no altsetting 0
[ 1126.561610][T15248] usb 1-1: New USB device found, idVendor=12d1, idProduct=752f, bcdDevice=8f.f4
[ 1126.570860][T15248] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1126.580020][T15248] usb 1-1: Product: syz
[ 1126.584278][T15248] usb 1-1: Manufacturer: syz
[ 1126.590181][T15248] usb 1-1: SerialNumber: syz
[ 1126.752005][T14047] Bluetooth: hci3: command 0x0419 tx timeout
[ 1126.823974][T15248] option 1-1:7.63: GSM modem (1-port) converter detected
[ 1126.835294][T15248] usb 1-1: USB disconnect, device number 66
[ 1126.842623][T15248] option 1-1:7.63: device disconnected
[ 1127.096947][ T5870] usb 2-1: 0:76 : does not exist
[ 1127.102018][ T5870] usb 2-1: 0:10 : does not exist
[ 1127.133973][ T5870] usb 2-1: USB disconnect, device number 57
[ 1127.168947][T15374] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1127.178375][T15374] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1127.404104][T15374] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1127.516744][T15300] team0: Port device team_slave_0 added
[ 1127.887713][T15300] team0: Port device team_slave_1 added
[ 1128.626384][T15300] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1128.633603][T15300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1128.659667][T15300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1128.701882][T15300] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1128.709230][T15300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1128.735418][T15300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1128.874880][T14045] Bluetooth: hci3: command 0x0419 tx timeout
[ 1128.924094][T12700] usb 5-1: USB disconnect, device number 65
[ 1129.449355][T15300] hsr_slave_0: entered promiscuous mode
[ 1129.563528][T15300] hsr_slave_1: entered promiscuous mode
[ 1129.605718][T15300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1129.959154][T15404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2858'.
[ 1130.086770][T15300] Cannot create hsr debugfs directory
[ 1130.302800][   T29] audit: type=1326 audit(1736502104.247:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15397 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1130.324460][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1130.397448][T12700] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[ 1130.404772][   T29] audit: type=1326 audit(1736502104.247:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15397 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1130.426693][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1130.434447][T15410] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2860'.
[ 1130.453310][   T29] audit: type=1326 audit(1736502104.247:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15397 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1130.474946][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1130.481799][   T29] audit: type=1326 audit(1736502104.247:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15397 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1130.514554][   T29] audit: type=1326 audit(1736502104.247:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15397 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1130.646437][T15415] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1131.078385][T12700] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1131.143724][T12700] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 1131.151731][T12700] usb 5-1: can't read configurations, error -61
[ 1131.306959][T12700] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[ 1132.528814][T12700] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1132.538011][T12700] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 1132.545634][T12700] usb 5-1: can't read configurations, error -61
[ 1132.552551][T12700] usb usb5-port1: attempt power cycle
[ 1132.615517][T15300] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1132.801604][T15300] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1132.854301][T15300] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1132.919406][T12700] usb usb5-port1: Cannot enable. Maybe the USB cable is bad?
[ 1133.581130][T15300] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1133.707236][T12700] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[ 1133.732257][T12700] usb 5-1: Using ep0 maxpacket: 8
[ 1133.740581][T12700] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1133.754250][T12700] usb 5-1: config 7 has an invalid interface number: 63 but max is 0
[ 1133.765687][T12700] usb 5-1: config 7 has no interface number 0
[ 1133.786006][T12700] usb 5-1: config 7 interface 63 has no altsetting 0
[ 1133.892926][T12700] usb 5-1: New USB device found, idVendor=12d1, idProduct=752f, bcdDevice=8f.f4
[ 1133.962427][T12700] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1134.026198][T12700] usb 5-1: Product: syz
[ 1134.056196][T12700] usb 5-1: Manufacturer: syz
[ 1134.108120][T12700] usb 5-1: SerialNumber: syz
[ 1134.142021][T15300] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1134.158428][T15300] 8021q: adding VLAN 0 to HW filter on device team0
[ 1134.171936][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.179137][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1134.340307][T15441] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2869'.
[ 1134.388144][T12700] option 5-1:7.63: GSM modem (1-port) converter detected
[ 1134.419933][T12700] usb 5-1: USB disconnect, device number 69
[ 1134.439642][T12700] option 5-1:7.63: device disconnected
[ 1134.631658][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.638885][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1134.754982][   T29] audit: type=1326 audit(1736502108.687:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.2.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x7ffc0000
[ 1134.777250][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.784043][   T29] audit: type=1326 audit(1736502108.687:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.2.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x7ffc0000
[ 1134.808993][   T29] audit: type=1326 audit(1736502108.687:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.2.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f7b05b85d29 code=0x7ffc0000
[ 1134.833214][   T29] audit: type=1326 audit(1736502108.697:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.2.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x7ffc0000
[ 1134.855714][   T29] audit: type=1326 audit(1736502108.697:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.2.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x7ffc0000
[ 1134.877438][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1135.038071][T15300] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1135.048907][T15300] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1135.143446][T15444] overlayfs: missing 'lowerdir'
[ 1135.246603][T15452] dns_resolver: Unsupported server list version (0)
[ 1135.480239][T15300] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1135.528165][T12700] usb 3-1: new high-speed USB device number 64 using dummy_hcd
[ 1135.535928][   T25] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[ 1135.730930][T12700] usb 3-1: Using ep0 maxpacket: 32
[ 1135.746551][   T25] usb 5-1: Using ep0 maxpacket: 32
[ 1135.758947][T12700] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1135.775873][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1135.786952][T12700] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1135.799370][   T25] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1135.813256][   T25] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1135.830088][   T25] usb 5-1: Product: syz
[ 1135.835239][T12700] usb 3-1: config 0 descriptor??
[ 1135.845295][   T25] usb 5-1: Manufacturer: syz
[ 1135.852888][   T25] usb 5-1: SerialNumber: syz
[ 1135.862672][T12700] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1135.906975][   T25] usb 5-1: config 0 descriptor??
[ 1135.918525][T15452] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1136.057404][T15457] ptrace attach of "./syz-executor exec"[5819] was attempted by "./syz-executor exec"[15457]
[ 1136.073043][T15300] veth0_vlan: entered promiscuous mode
[ 1136.093285][T15300] veth1_vlan: entered promiscuous mode
[ 1136.179105][T15014] usb 5-1: USB disconnect, device number 70
[ 1136.248158][T15300] veth0_macvtap: entered promiscuous mode
[ 1136.286018][T15300] veth1_macvtap: entered promiscuous mode
[ 1136.333458][T15300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1136.359068][T15300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1136.370075][T15300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1136.384975][T15300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1136.618008][T15300] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1136.697319][T12700] gspca_sunplus: reg_w_riv err -110
[ 1136.703428][T12700] sunplus 3-1:0.0: probe with driver sunplus failed with error -110
[ 1136.988811][T15300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1136.999808][T15300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1137.011012][T15300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1137.022039][T15300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1137.032335][T15300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1137.110344][T15300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1137.124607][T15300] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1137.150648][T15300] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.159636][T15300] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.175557][T15300] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.184571][T15300] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.284142][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1137.295729][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1137.351622][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1137.372084][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1137.528066][T15480] openvswitch: netlink: Message has 1275 unknown bytes.
[ 1137.535920][T15480] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1139.201262][ T5902] usb 3-1: USB disconnect, device number 64
[ 1140.368055][T15498] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1143.145224][   T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.426516][T14047] Bluetooth: hci4: command 0x0405 tx timeout
[ 1144.053052][   T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1144.491398][   T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1144.657091][T15532] overlayfs: missing 'lowerdir'
[ 1145.632833][T14047] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1145.649881][T14047] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1145.658630][T14047] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1145.668329][T14047] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1145.676015][T14047] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1145.683393][T14047] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1145.901765][   T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1145.933037][T15547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2893'.
[ 1146.008123][T15248] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 1146.119918][ T5870] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 1146.166769][T15248] usb 1-1: Using ep0 maxpacket: 32
[ 1146.179413][T15248] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1146.187835][T15248] usb 1-1: config 0 has no interface number 0
[ 1146.196765][T15248] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1146.217060][T15536] chnl_net:caif_netlink_parms(): no params data found
[ 1146.226738][T15248] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1146.240461][T15248] usb 1-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1146.262603][T15248] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1146.270648][   T35] bridge_slave_1: left allmulticast mode
[ 1146.270676][   T35] bridge_slave_1: left promiscuous mode
[ 1146.270834][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1146.302642][T15248] usb 1-1: config 0 descriptor??
[ 1146.321700][   T35] bridge_slave_0: left allmulticast mode
[ 1146.323302][ T5870] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1146.336855][   T35] bridge_slave_0: left promiscuous mode
[ 1146.338910][ T5870] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1146.350891][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1146.353960][ T5870] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1146.374181][ T5870] usb 2-1: New USB device found, idVendor=056a, idProduct=00f0, bcdDevice= 0.00
[ 1146.383802][ T5870] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1146.397082][ T5870] usb 2-1: config 0 descriptor??
[ 1146.853612][ T5870] wacom 0003:056A:00F0.0010: hidraw0: USB HID v0.04 Device [HID 056a:00f0] on usb-dummy_hcd.1-1/input0
[ 1146.967970][   T29] audit: type=1326 audit(1736502120.927:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15538 comm="syz.0.2890" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x0
[ 1146.989176][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1147.078981][T15559] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2890'.
[ 1147.127241][T15543] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1147.140534][T15543] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1147.696942][T15014] usb 2-1: USB disconnect, device number 58
[ 1147.717243][T14045] Bluetooth: hci3: command tx timeout
[ 1147.830834][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1147.843274][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1147.854938][   T35] bond0 (unregistering): Released all slaves
[ 1148.870543][T15248] usbhid 1-1:0.1: can't add hid device: -71
[ 1148.876842][T15248] usbhid 1-1:0.1: probe with driver usbhid failed with error -71
[ 1148.890595][T15248] usb 1-1: USB disconnect, device number 67
[ 1148.938205][T15566] sctp: [Deprecated]: syz.1.2897 (pid 15566) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1148.938205][T15566] Use struct sctp_sack_info instead
[ 1148.984528][T15536] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1149.119476][T15536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1149.127433][T15536] bridge_slave_0: entered allmulticast mode
[ 1149.135099][T15536] bridge_slave_0: entered promiscuous mode
[ 1149.144036][T15536] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1149.152707][T15536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1149.160490][T15536] bridge_slave_1: entered allmulticast mode
[ 1149.169055][T15536] bridge_slave_1: entered promiscuous mode
[ 1149.792238][T14045] Bluetooth: hci3: command tx timeout
[ 1150.232699][T15580] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1151.152616][T15536] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1151.165722][   T29] audit: type=1326 audit(1736502125.117:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15585 comm="syz.2.2900" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x0
[ 1151.206746][T12700] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 1151.250440][T15536] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1151.305288][   T35] hsr_slave_0: left promiscuous mode
[ 1151.323991][   T35] hsr_slave_1: left promiscuous mode
[ 1151.339585][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1151.356817][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1151.369944][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1151.378634][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1151.386985][T12700] usb 1-1: Using ep0 maxpacket: 8
[ 1151.406409][T12700] usb 1-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1151.416356][   T35] veth1_macvtap: left promiscuous mode
[ 1151.425355][T12700] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1151.438263][T12700] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1151.447521][   T35] veth0_macvtap: left promiscuous mode
[ 1151.447674][   T35] veth1_vlan: left promiscuous mode
[ 1151.447770][   T35] veth0_vlan: left promiscuous mode
[ 1151.453410][T12700] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1151.472613][T12700] usb 1-1: Product: ᐊ
[ 1151.477074][T12700] usb 1-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1151.493341][T12700] usb 1-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1151.554733][T15581] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1151.949730][T14045] Bluetooth: hci3: command tx timeout
[ 1153.292785][T12700] usb 1-1: USB disconnect, device number 68
[ 1153.783986][ T5902] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[ 1153.946947][ T5902] usb 2-1: Using ep0 maxpacket: 32
[ 1153.960641][ T5902] usb 2-1: config 254 has an invalid interface number: 205 but max is 0
[ 1153.975875][ T5902] usb 2-1: config 254 has no interface number 0
[ 1153.985095][ T5902] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=52.c6
[ 1153.995532][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1154.005911][ T5902] usb 2-1: Product: syz
[ 1154.008258][   T35] team0 (unregistering): Port device team_slave_1 removed
[ 1154.017872][ T5902] usb 2-1: Manufacturer: syz
[ 1154.017898][ T5902] usb 2-1: SerialNumber: syz
[ 1154.037505][T14047] Bluetooth: hci3: command tx timeout
[ 1154.122533][ T5902] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1154.133836][ T5902] usb 2-1: setting power ON
[ 1154.147316][ T5902] dvb-usb: bulk message failed: -22 (2/0)
[ 1154.238580][ T5902] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1154.260977][ T5902] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1154.272613][ T5902] usb 2-1: media controller created
[ 1154.298308][ T5902] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1154.342012][ T5902] usb 2-1: digital interface selection failed (-22)
[ 1154.349339][ T5902] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1154.362050][ T5902] usb 2-1: setting power OFF
[ 1154.367359][ T5902] dvb-usb: bulk message failed: -22 (2/0)
[ 1154.374174][ T5902] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1154.409216][   T35] team0 (unregistering): Port device team_slave_0 removed
[ 1154.819573][ T5902] (NULL device *): no alternate interface
[ 1155.310553][ T5902] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1155.673110][T15619] overlayfs: missing 'lowerdir'
[ 1156.109336][T14047] Bluetooth: hci3: command 0x0405 tx timeout
[ 1156.303594][T15536] team0: Port device team_slave_0 added
[ 1156.332959][T15536] team0: Port device team_slave_1 added
[ 1156.728303][ T5902] usb 2-1: USB disconnect, device number 59
[ 1157.067511][T15536] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.074573][T15536] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1157.100930][T15536] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1157.125919][T15536] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.132998][T15536] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1157.159108][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1157.167600][T15536] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1157.307254][T15536] hsr_slave_0: entered promiscuous mode
[ 1157.341341][T15536] hsr_slave_1: entered promiscuous mode
[ 1157.396783][T15536] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1157.416778][T15536] Cannot create hsr debugfs directory
[ 1158.187096][T14047] Bluetooth: hci3: command 0x0405 tx timeout
[ 1160.804835][ T5902] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[ 1161.516750][ T5902] usb 2-1: Using ep0 maxpacket: 8
[ 1161.524505][ T5902] usb 2-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1161.538015][ T5902] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1161.655350][ T5902] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1161.665049][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1161.690315][ T5902] usb 2-1: Product: ᐊ
[ 1161.729560][ T5902] usb 2-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1161.860095][ T5902] usb 2-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1161.891930][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1161.981581][ T5902] usb 2-1: can't set config #1, error -71
[ 1162.002927][ T5902] usb 2-1: USB disconnect, device number 60
[ 1163.339378][T15669] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2928'.
[ 1163.390529][T15536] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1163.669232][T15536] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1163.678730][T15536] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1163.706479][T15536] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1164.722624][T15536] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1164.742606][T15536] 8021q: adding VLAN 0 to HW filter on device team0
[ 1164.763477][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1164.770651][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1164.835313][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1164.842545][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1164.862064][T15687] FAULT_INJECTION: forcing a failure.
[ 1164.862064][T15687] name failslab, interval 1, probability 0, space 0, times 0
[ 1164.863312][T15686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2933'.
[ 1164.875793][T15687] CPU: 1 UID: 0 PID: 15687 Comm: syz.1.2932 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1164.895148][T15687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1164.905219][T15687] Call Trace:
[ 1164.908512][T15687]  <TASK>
[ 1164.911458][T15687]  dump_stack_lvl+0x241/0x360
[ 1164.916163][T15687]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1164.921393][T15687]  ? __pfx__printk+0x10/0x10
[ 1164.926028][T15687]  ? fs_reclaim_acquire+0x93/0x130
[ 1164.931161][T15687]  ? __pfx___might_resched+0x10/0x10
[ 1164.936471][T15687]  should_fail_ex+0x3b0/0x4e0
[ 1164.941166][T15687]  should_failslab+0xac/0x100
[ 1164.945959][T15687]  __kmalloc_noprof+0xdd/0x4c0
[ 1164.950737][T15687]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1164.956479][T15687]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1164.962058][T15687]  tomoyo_path_perm+0x2b7/0x740
[ 1164.966944][T15687]  ? tomoyo_path_perm+0x287/0x740
[ 1164.971977][T15687]  ? __pfx_tomoyo_path_perm+0x10/0x10
[ 1164.977392][T15687]  ? lookup_one_qstr_excl+0x12f/0x260
[ 1164.982801][T15687]  tomoyo_path_symlink+0xde/0x120
[ 1164.987939][T15687]  ? __pfx_hook_path_symlink+0x10/0x10
[ 1164.993428][T15687]  ? __pfx_tomoyo_path_symlink+0x10/0x10
[ 1164.999081][T15687]  ? __pfx_filename_create+0x10/0x10
[ 1165.004391][T15687]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1165.010488][T15687]  security_path_symlink+0x16f/0x370
[ 1165.015799][T15687]  do_symlinkat+0x136/0x3a0
[ 1165.020337][T15687]  ? __pfx_do_symlinkat+0x10/0x10
[ 1165.025388][T15687]  ? do_symlinkat+0x11/0x3a0
[ 1165.030018][T15687]  __x64_sys_symlinkat+0x95/0xb0
[ 1165.034977][T15687]  do_syscall_64+0xf3/0x230
[ 1165.039499][T15687]  ? clear_bhb_loop+0x35/0x90
[ 1165.044275][T15687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1165.050184][T15687] RIP: 0033:0x7fd38b985d29
[ 1165.054612][T15687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.074240][T15687] RSP: 002b:00007fd38c7a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[ 1165.082669][T15687] RAX: ffffffffffffffda RBX: 00007fd38bb76080 RCX: 00007fd38b985d29
[ 1165.090669][T15687] RDX: 00000000200000c0 RSI: 0000000000000008 RDI: 0000000020000140
[ 1165.098651][T15687] RBP: 00007fd38c7a7090 R08: 0000000000000000 R09: 0000000000000000
[ 1165.106638][T15687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1165.114811][T15687] R13: 0000000000000000 R14: 00007fd38bb76080 R15: 00007ffcf07cfda8
[ 1165.122830][T15687]  </TASK>
[ 1165.147524][T15687] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1165.425597][T15686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2933'.
[ 1165.466858][T14045] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1167.897737][T15708] overlayfs: missing 'lowerdir'
[ 1167.989236][T15248] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[ 1168.089890][T15536] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1168.147090][T15248] usb 5-1: Using ep0 maxpacket: 8
[ 1168.679136][T15248] usb 5-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1168.763610][T15248] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1168.786015][T15248] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1168.815834][T15248] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1168.931145][T15248] usb 5-1: Product: ᐊ
[ 1168.935384][T15248] usb 5-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1168.951017][T15248] usb 5-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1168.982744][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1169.027046][T15248] usb 5-1: can't set config #1, error -71
[ 1169.088114][T15248] usb 5-1: USB disconnect, device number 71
[ 1169.936012][T15734] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2944'.
[ 1170.031983][T15536] veth0_vlan: entered promiscuous mode
[ 1170.107756][T15536] veth1_vlan: entered promiscuous mode
[ 1170.212260][T15536] veth0_macvtap: entered promiscuous mode
[ 1170.228327][T15536] veth1_macvtap: entered promiscuous mode
[ 1170.254476][T15536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1170.275251][T15536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1170.290942][T15536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1170.306330][T15536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1170.330012][T15536] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1170.352663][T15536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1170.372117][T15536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1170.389544][T15536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1170.405921][T15536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1170.416857][T15536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1170.599029][T15536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1170.622068][T15536] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1170.668537][T15536] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1170.692360][T15536] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1170.695844][T15722] kexec: Could not allocate control_code_buffer
[ 1170.708059][T15536] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1170.718903][T15536] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1171.242805][T13416] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1171.259759][ T5932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1171.321290][T13416] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1171.323964][ T5932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1171.883894][T15766] IPVS: Unknown mcast interface: veth0_to_bond
[ 1172.445359][T15765] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1172.484777][T15770] futex_wake_op: syz.4.2951 tries to shift op by 144; fix this program
[ 1172.847610][   T25] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[ 1172.896443][T15777] overlayfs: missing 'lowerdir'
[ 1172.999677][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1173.016604][ T7749] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.039813][   T25] usb 5-1: too many endpoints for config 0 interface 0 altsetting 77: 231, using maximum allowed: 30
[ 1173.064999][   T25] usb 5-1: config 0 interface 0 altsetting 77 has an endpoint descriptor with address 0xF7, changing to 0x87
[ 1173.095139][   T25] usb 5-1: config 0 interface 0 altsetting 77 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1173.125127][   T25] usb 5-1: config 0 interface 0 altsetting 77 endpoint 0x87 has invalid maxpacket 59391, setting to 1024
[ 1173.162367][   T25] usb 5-1: config 0 interface 0 altsetting 77 has an endpoint descriptor with address 0x56, changing to 0x6
[ 1173.174224][   T25] usb 5-1: config 0 interface 0 altsetting 77 endpoint 0x6 has an invalid bInterval 0, changing to 7
[ 1173.186596][   T25] usb 5-1: config 0 interface 0 altsetting 77 endpoint 0x6 has invalid wMaxPacketSize 0
[ 1173.198136][ T7749] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.230148][   T25] usb 5-1: config 0 interface 0 altsetting 77 has 2 endpoint descriptors, different from the interface descriptor's value: 231
[ 1173.264330][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1173.285826][   T25] usb 5-1: New USB device found, idVendor=2294, idProduct=425a, bcdDevice=d1.41
[ 1173.333942][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1173.354483][ T7749] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.361529][   T25] usb 5-1: Product: syz
[ 1173.374997][   T25] usb 5-1: Manufacturer: syz
[ 1173.380425][   T25] usb 5-1: SerialNumber: syz
[ 1173.388068][   T25] usb 5-1: config 0 descriptor??
[ 1173.393713][T15770] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1173.406314][   T25] usb 5-1: ucan: probing device on interface #0
[ 1173.412706][   T25] usb 5-1: ucan: invalid endpoint configuration
[ 1173.423913][   T25] usb 5-1: ucan: probe failed; try to update the device firmware
[ 1173.442713][ T7749] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.605031][ T7749] bridge_slave_1: left allmulticast mode
[ 1173.610901][ T7749] bridge_slave_1: left promiscuous mode
[ 1173.616832][ T7749] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1173.627312][ T7749] bridge_slave_0: left allmulticast mode
[ 1173.633118][ T7749] bridge_slave_0: left promiscuous mode
[ 1173.640972][ T7749] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1173.660733][   T25] usb 5-1: USB disconnect, device number 72
[ 1174.227354][T15014] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[ 1174.383946][T15787] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2957'.
[ 1174.393415][T15014] usb 2-1: Using ep0 maxpacket: 8
[ 1174.770427][T15014] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1174.779641][T15014] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1174.788514][T15785] overlayfs: overlapping lowerdir path
[ 1174.804488][T15014] usb 2-1: Product: syz
[ 1174.813779][T15014] usb 2-1: Manufacturer: syz
[ 1174.854312][T15014] usb 2-1: SerialNumber: syz
[ 1174.868322][T15789] x_tables: duplicate underflow at hook 2
[ 1174.892245][T15014] usb 2-1: config 0 descriptor??
[ 1174.922597][T15014] gspca_main: se401-2.14.0 probing 047d:5003
[ 1175.001344][T14045] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1175.012319][T14045] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1175.046952][T14045] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1175.064328][T14045] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1175.104909][T14045] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1175.114722][T14045] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1176.272323][T15014] gspca_se401: Bayer format not supported!
[ 1176.302978][T15014] usb 2-1: USB disconnect, device number 61
[ 1177.241470][T14045] Bluetooth: hci3: command tx timeout
[ 1177.596060][ T7749] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1177.617089][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.965950][ T7749] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1178.067564][T15817] overlayfs: missing 'lowerdir'
[ 1178.161596][ T7749] bond0 (unregistering): Released all slaves
[ 1178.520405][T15825] FAULT_INJECTION: forcing a failure.
[ 1178.520405][T15825] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.533913][T15825] CPU: 1 UID: 0 PID: 15825 Comm: syz.1.2967 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1178.544705][T15825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1178.554773][T15825] Call Trace:
[ 1178.558063][T15825]  <TASK>
[ 1178.561015][T15825]  dump_stack_lvl+0x241/0x360
[ 1178.565745][T15825]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1178.570990][T15825]  ? __pfx__printk+0x10/0x10
[ 1178.575615][T15825]  ? ___ratelimit+0xc5/0x690
[ 1178.580225][T15825]  should_fail_ex+0x3b0/0x4e0
[ 1178.584933][T15825]  should_failslab+0xac/0x100
[ 1178.589635][T15825]  __kmalloc_cache_noprof+0x70/0x390
[ 1178.594933][T15825]  ? cgroup_bpf_attach+0xbb8/0x1240
[ 1178.600152][T15825]  cgroup_bpf_attach+0xbb8/0x1240
[ 1178.605196][T15825]  ? __pfx_cgroup_bpf_attach+0x10/0x10
[ 1178.610674][T15825]  cgroup_bpf_prog_attach+0x179/0x2d0
[ 1178.616060][T15825]  bpf_prog_attach+0x51c/0x6a0
[ 1178.620839][T15825]  __sys_bpf+0x325/0x810
[ 1178.625097][T15825]  ? __pfx___sys_bpf+0x10/0x10
[ 1178.629884][T15825]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1178.635879][T15825]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1178.642227][T15825]  ? do_syscall_64+0x100/0x230
[ 1178.647028][T15825]  __x64_sys_bpf+0x7c/0x90
[ 1178.651468][T15825]  do_syscall_64+0xf3/0x230
[ 1178.656001][T15825]  ? clear_bhb_loop+0x35/0x90
[ 1178.660690][T15825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1178.666602][T15825] RIP: 0033:0x7fd38b985d29
[ 1178.671048][T15825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1178.690670][T15825] RSP: 002b:00007fd38c7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1178.699099][T15825] RAX: ffffffffffffffda RBX: 00007fd38bb76080 RCX: 00007fd38b985d29
[ 1178.707089][T15825] RDX: 0000000000000020 RSI: 00000000200002c0 RDI: 0000000000000008
[ 1178.715072][T15825] RBP: 00007fd38c7a7090 R08: 0000000000000000 R09: 0000000000000000
[ 1178.723061][T15825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1178.731041][T15825] R13: 0000000000000000 R14: 00007fd38bb76080 R15: 00007ffcf07cfda8
[ 1178.739038][T15825]  </TASK>
[ 1179.389648][T14045] Bluetooth: hci3: command tx timeout
[ 1179.400636][T15831] FAULT_INJECTION: forcing a failure.
[ 1179.400636][T15831] name failslab, interval 1, probability 0, space 0, times 0
[ 1179.415872][T15831] CPU: 0 UID: 0 PID: 15831 Comm: syz.1.2969 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1179.426691][T15831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1179.436761][T15831] Call Trace:
[ 1179.440063][T15831]  <TASK>
[ 1179.442998][T15831]  dump_stack_lvl+0x241/0x360
[ 1179.447706][T15831]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1179.452934][T15831]  ? __pfx__printk+0x10/0x10
[ 1179.457537][T15831]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1179.463006][T15831]  ? __pfx___might_resched+0x10/0x10
[ 1179.468327][T15831]  should_fail_ex+0x3b0/0x4e0
[ 1179.473042][T15831]  should_failslab+0xac/0x100
[ 1179.477749][T15831]  __kmalloc_cache_noprof+0x70/0x390
[ 1179.483067][T15831]  ? keyctl_watch_key+0x188/0x480
[ 1179.488136][T15831]  keyctl_watch_key+0x188/0x480
[ 1179.493018][T15831]  __se_sys_keyctl+0x106/0x910
[ 1179.497790][T15831]  ? __mutex_unlock_slowpath+0x21e/0x790
[ 1179.503447][T15831]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1179.508742][T15831]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1179.514736][T15831]  ? __fget_files+0x2a/0x410
[ 1179.519358][T15831]  ? __fget_files+0x2a/0x410
[ 1179.523975][T15831]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1179.529965][T15831]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1179.536304][T15831]  ? do_syscall_64+0x100/0x230
[ 1179.541095][T15831]  ? __x64_sys_keyctl+0x20/0xc0
[ 1179.545965][T15831]  do_syscall_64+0xf3/0x230
[ 1179.550484][T15831]  ? clear_bhb_loop+0x35/0x90
[ 1179.555167][T15831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1179.561088][T15831] RIP: 0033:0x7fd38b985d29
[ 1179.565507][T15831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1179.585221][T15831] RSP: 002b:00007fd38c786038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1179.593687][T15831] RAX: ffffffffffffffda RBX: 00007fd38bb76160 RCX: 00007fd38b985d29
[ 1179.601708][T15831] RDX: 0000000000000003 RSI: 000000000cf90791 RDI: 0000000000000020
[ 1179.609716][T15831] RBP: 00007fd38c786090 R08: 0000000000000000 R09: 0000000000000000
[ 1179.617726][T15831] R10: 000000000000009f R11: 0000000000000246 R12: 0000000000000001
[ 1179.625729][T15831] R13: 0000000000000000 R14: 00007fd38bb76160 R15: 00007ffcf07cfda8
[ 1179.633755][T15831]  </TASK>
[ 1179.636906][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1180.284260][T15834] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2970'.
[ 1180.910379][ T5902] usb 1-1: new high-speed USB device number 69 using dummy_hcd
[ 1181.126855][ T5902] usb 1-1: Using ep0 maxpacket: 8
[ 1181.209309][T15248] usb 5-1: new high-speed USB device number 73 using dummy_hcd
[ 1181.363913][ T5902] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1181.421419][ T5902] usb 1-1: config 7 has an invalid interface number: 63 but max is 0
[ 1181.431433][T15248] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1181.442871][ T7749] hsr_slave_0: left promiscuous mode
[ 1181.448555][ T5902] usb 1-1: config 7 has no interface number 0
[ 1181.456344][T15248] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1181.467058][T14047] Bluetooth: hci3: command tx timeout
[ 1181.476731][ T5902] usb 1-1: config 7 interface 63 has no altsetting 0
[ 1181.483681][ T7749] hsr_slave_1: left promiscuous mode
[ 1181.487500][T15248] usb 5-1: New USB device found, idVendor=0c12, idProduct=0030, bcdDevice= 0.00
[ 1181.498850][T15248] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1181.502590][ T7749] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1181.510613][T15248] usb 5-1: config 0 descriptor??
[ 1181.521353][ T5902] usb 1-1: New USB device found, idVendor=12d1, idProduct=752f, bcdDevice=8f.f4
[ 1181.530749][ T5902] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1181.538064][ T7749] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1181.538970][ T5902] usb 1-1: Product: syz
[ 1181.553054][ T5902] usb 1-1: Manufacturer: syz
[ 1181.557851][ T5902] usb 1-1: SerialNumber: syz
[ 1181.606016][ T7749] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1181.616467][ T7749] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1181.875723][ T7749] veth1_macvtap: left promiscuous mode
[ 1181.879353][ T5902] option 1-1:7.63: GSM modem (1-port) converter detected
[ 1181.883305][ T7749] veth0_macvtap: left promiscuous mode
[ 1181.901152][T15854] overlayfs: missing 'lowerdir'
[ 1181.904476][ T7749] veth1_vlan: left promiscuous mode
[ 1181.911993][ T7749] veth0_vlan: left promiscuous mode
[ 1181.916296][ T5902] usb 1-1: USB disconnect, device number 69
[ 1181.967170][ T5902] option 1-1:7.63: device disconnected
[ 1182.099683][T15839] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1182.145083][T15839] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1182.235623][T15248] usbhid 5-1:0.0: can't add hid device: -71
[ 1182.241789][T15248] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1182.262869][T15248] usb 5-1: USB disconnect, device number 73
[ 1182.598860][T15859] overlayfs: missing 'lowerdir'
[ 1183.598127][T14047] Bluetooth: hci3: command tx timeout
[ 1185.163765][T15878] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2982'.
[ 1185.245442][T15882] overlayfs: missing 'lowerdir'
[ 1185.413017][ T7749] team0 (unregistering): Port device team_slave_1 removed
[ 1185.461465][ T7749] team0 (unregistering): Port device team_slave_0 removed
[ 1185.867285][T14045] Bluetooth: hci3: command 0x0405 tx timeout
[ 1187.916046][T15846] netlink: 272 bytes leftover after parsing attributes in process `syz.2.2974'.
[ 1187.925772][T15846] netlink: 272 bytes leftover after parsing attributes in process `syz.2.2974'.
[ 1187.961664][T14045] Bluetooth: hci3: command 0x0405 tx timeout
[ 1188.113713][T15902] netlink: 'syz.1.2989': attribute type 4 has an invalid length.
[ 1188.146875][T15902] netlink: 'syz.1.2989': attribute type 11 has an invalid length.
[ 1188.187665][T15902] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2989'.
[ 1188.242715][T15793] chnl_net:caif_netlink_parms(): no params data found
[ 1190.720029][   T55] Bluetooth: hci3: command 0x0405 tx timeout
[ 1190.907168][T15793] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1190.914353][T15793] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1190.921778][T15793] bridge_slave_0: entered allmulticast mode
[ 1190.929222][T15793] bridge_slave_0: entered promiscuous mode
[ 1190.937680][T15793] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1190.944822][T15793] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1190.952140][T15793] bridge_slave_1: entered allmulticast mode
[ 1190.959239][T15793] bridge_slave_1: entered promiscuous mode
[ 1191.085384][T15793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1191.151204][T15793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1191.696424][T15935] netlink: 'syz.4.2990': attribute type 2 has an invalid length.
[ 1191.769116][T15937] QAT: failed to copy from user cfg_data.
[ 1191.874734][T15793] team0: Port device team_slave_0 added
[ 1191.956491][T15793] team0: Port device team_slave_1 added
[ 1192.074297][T15940] overlayfs: missing 'lowerdir'
[ 1192.239943][T15793] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1192.702800][T15793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.766287][T15947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2999'.
[ 1192.977013][T15793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1194.140828][T15793] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1194.233967][T15793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1194.602447][T15959] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3001'.
[ 1195.031687][T15793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1195.301304][T15793] hsr_slave_0: entered promiscuous mode
[ 1195.308129][T15793] hsr_slave_1: entered promiscuous mode
[ 1195.374781][T15793] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1195.398761][T15793] Cannot create hsr debugfs directory
[ 1195.683799][T15964] erofs (device loop1): cannot find valid erofs superblock
[ 1196.142754][T15966] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3004'.
[ 1197.292085][T15793] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1197.351493][T15793] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1197.368718][T15793] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1197.578961][T15793] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1197.801182][T15989] overlayfs: missing 'lowerdir'
[ 1198.298323][T15997] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3013'.
[ 1199.086091][T15793] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1199.207344][T15793] 8021q: adding VLAN 0 to HW filter on device team0
[ 1199.219317][T15248] usb 5-1: new high-speed USB device number 74 using dummy_hcd
[ 1199.244541][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1199.251775][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1199.271684][T16009] FAULT_INJECTION: forcing a failure.
[ 1199.271684][T16009] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1199.285744][T16009] CPU: 1 UID: 0 PID: 16009 Comm: syz.1.3017 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1199.296537][T16009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1199.306626][T16009] Call Trace:
[ 1199.309937][T16009]  <TASK>
[ 1199.312885][T16009]  dump_stack_lvl+0x241/0x360
[ 1199.317596][T16009]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1199.322827][T16009]  ? __pfx__printk+0x10/0x10
[ 1199.327441][T16009]  ? __kernel_text_address+0xd/0x40
[ 1199.332658][T16009]  ? unwind_get_return_address+0x4d/0x90
[ 1199.338305][T16009]  should_fail_ex+0x3b0/0x4e0
[ 1199.343002][T16009]  prepare_alloc_pages+0x1da/0x5b0
[ 1199.348137][T16009]  __alloc_pages_noprof+0x16f/0x710
[ 1199.353356][T16009]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1199.359126][T16009]  ? kasan_save_track+0x51/0x80
[ 1199.364003][T16009]  ? __se_sys_kexec_load+0x12b/0x160
[ 1199.369303][T16009]  ? do_syscall_64+0xf3/0x230
[ 1199.373998][T16009]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1199.380088][T16009]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1199.385571][T16009]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1199.391574][T16009]  ? alloc_pages_noprof+0xef/0x170
[ 1199.396713][T16009]  kimage_alloc_pages+0xc8/0x340
[ 1199.401668][T16009]  kimage_alloc_control_pages+0x172/0xbf0
[ 1199.407410][T16009]  ? __kasan_kmalloc+0x98/0xb0
[ 1199.412192][T16009]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 1199.418455][T16009]  do_kexec_load+0x415/0x820
[ 1199.423073][T16009]  ? __pfx_do_kexec_load+0x10/0x10
[ 1199.428208][T16009]  ? _copy_from_user+0x99/0xc0
[ 1199.433002][T16009]  __se_sys_kexec_load+0x12b/0x160
[ 1199.438132][T16009]  do_syscall_64+0xf3/0x230
[ 1199.442656][T16009]  ? clear_bhb_loop+0x35/0x90
[ 1199.447345][T16009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1199.453276][T16009] RIP: 0033:0x7fd38b985d29
[ 1199.457715][T16009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1199.477334][T16009] RSP: 002b:00007fd38c7c8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 1199.485759][T16009] RAX: ffffffffffffffda RBX: 00007fd38bb75fa0 RCX: 00007fd38b985d29
[ 1199.493919][T16009] RDX: 0000000020000340 RSI: 0000000000000010 RDI: 0000000000000000
[ 1199.501899][T16009] RBP: 00007fd38c7c8090 R08: 0000000000000000 R09: 0000000000000000
[ 1199.509885][T16009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1199.517868][T16009] R13: 0000000000000001 R14: 00007fd38bb75fa0 R15: 00007ffcf07cfda8
[ 1199.525875][T16009]  </TASK>
[ 1199.533873][T16009] kexec: Could not allocate control_code_buffer
[ 1199.573696][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1199.581014][ T5932] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1199.631550][   T29] audit: type=1326 audit(1736502173.587:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1199.653202][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1199.660917][T15248] usb 5-1: Using ep0 maxpacket: 32
[ 1199.678292][T15248] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1199.686435][T15248] usb 5-1: config 0 has no interface number 0
[ 1199.705035][T15793] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1199.716143][T15248] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1199.727376][T15793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1199.738226][T15248] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1199.738724][   T29] audit: type=1326 audit(1736502173.587:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1199.749446][T15248] usb 5-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1199.770197][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1199.793221][T15248] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1199.796322][   T29] audit: type=1326 audit(1736502173.657:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1199.834236][T15248] usb 5-1: config 0 descriptor??
[ 1199.838024][   T29] audit: type=1326 audit(1736502173.657:1347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1199.920151][   T29] audit: type=1326 audit(1736502173.657:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1199.943208][   T29] audit: type=1326 audit(1736502173.797:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fd38b987bbc code=0x7ffc0000
[ 1199.978059][   T29] audit: type=1326 audit(1736502173.797:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fd38b987af4 code=0x7ffc0000
[ 1200.006584][   T29] audit: type=1326 audit(1736502173.797:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1200.029599][   T29] audit: type=1326 audit(1736502173.797:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1200.057018][   T29] audit: type=1326 audit(1736502173.827:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16015 comm="syz.1.3018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd38b985d29 code=0x7ffc0000
[ 1200.161557][T15793] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1200.603054][T16039] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3014'.
[ 1201.594769][T16050] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3026'.
[ 1201.617439][T15793] veth0_vlan: entered promiscuous mode
[ 1201.646920][T15014] usb 1-1: new high-speed USB device number 70 using dummy_hcd
[ 1202.391234][T15793] veth1_vlan: entered promiscuous mode
[ 1202.452326][T15793] veth0_macvtap: entered promiscuous mode
[ 1202.485445][T15014] usb 1-1: Using ep0 maxpacket: 8
[ 1202.494976][T15248] usbhid 5-1:0.1: can't add hid device: -71
[ 1202.503428][T15248] usbhid 5-1:0.1: probe with driver usbhid failed with error -71
[ 1202.513460][T15793] veth1_macvtap: entered promiscuous mode
[ 1202.530599][T15793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1202.541421][T15793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.552128][T15793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1202.562719][T15793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.574004][T15793] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1202.585663][T15793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1202.596520][T15793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.606966][T15793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1202.617685][T15793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.627588][T15793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1202.638119][T15793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.649395][T15793] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1202.662426][T15793] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.673456][T15793] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.682513][T15793] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.691408][T15793] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.712367][T15248] usb 5-1: USB disconnect, device number 74
[ 1202.733540][T15014] usb 1-1: config 7 has an invalid interface number: 63 but max is 0
[ 1202.741805][T15014] usb 1-1: config 7 has no interface number 0
[ 1202.748024][T15014] usb 1-1: config 7 interface 63 has no altsetting 0
[ 1202.793433][T15014] usb 1-1: New USB device found, idVendor=12d1, idProduct=752f, bcdDevice=8f.f4
[ 1202.826704][T15014] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1202.831660][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1202.843598][T15014] usb 1-1: Product: syz
[ 1202.855497][T15014] usb 1-1: Manufacturer: syz
[ 1202.870033][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1202.876785][T15014] usb 1-1: SerialNumber: syz
[ 1202.954260][ T6397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1202.983118][ T6397] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.024138][T16064] Invalid logical block size (34)
[ 1203.113597][T15014] option 1-1:7.63: GSM modem (1-port) converter detected
[ 1203.135680][T15014] usb 1-1: USB disconnect, device number 70
[ 1203.152175][T15014] option 1-1:7.63: device disconnected
[ 1203.577570][ T6397] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1203.881925][ T6397] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.012491][ T6397] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.096390][ T6397] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.210621][ T6397] bridge_slave_1: left allmulticast mode
[ 1204.216322][ T6397] bridge_slave_1: left promiscuous mode
[ 1204.223761][ T6397] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1204.233144][ T6397] bridge_slave_0: left allmulticast mode
[ 1204.239699][ T6397] bridge_slave_0: left promiscuous mode
[ 1204.245397][ T6397] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1205.326865][T12700] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[ 1205.435251][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1205.464478][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1205.497149][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1205.516867][T12700] usb 5-1: device descriptor read/64, error -71
[ 1205.591458][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1205.672973][   T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1205.737316][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1205.756734][T12700] usb 5-1: new high-speed USB device number 76 using dummy_hcd
[ 1205.917083][T12700] usb 5-1: device descriptor read/64, error -71
[ 1206.023611][T12700] usb usb5-port1: attempt power cycle
[ 1206.117168][ T5870] usb 3-1: new high-speed USB device number 65 using dummy_hcd
[ 1206.181458][T16095] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3039'.
[ 1206.203237][ T6397] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1206.215578][ T6397] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1206.226374][ T6397] bond0 (unregistering): Released all slaves
[ 1206.266771][ T5870] usb 3-1: Using ep0 maxpacket: 32
[ 1206.274915][ T5870] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1206.393165][T12700] usb 5-1: new high-speed USB device number 77 using dummy_hcd
[ 1206.396549][ T5870] usb 3-1: config 0 has no interface number 0
[ 1206.438610][T12700] usb 5-1: device descriptor read/8, error -71
[ 1206.487225][ T5870] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1206.523708][ T5870] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1206.708591][ T5870] usb 3-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1206.734436][ T5870] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1206.767757][ T5870] usb 3-1: config 0 descriptor??
[ 1206.767833][T12700] usb 5-1: new high-speed USB device number 78 using dummy_hcd
[ 1207.403238][T12700] usb 5-1: device descriptor read/8, error -71
[ 1207.542911][T12700] usb usb5-port1: unable to enumerate USB device
[ 1207.807780][ T6397] hsr_slave_0: left promiscuous mode
[ 1207.824999][   T29] kauditd_printk_skb: 58 callbacks suppressed
[ 1207.825018][   T29] audit: type=1326 audit(1736502181.777:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16092 comm="syz.2.3038" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b05b85d29 code=0x0
[ 1207.852833][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1207.893368][ T6397] hsr_slave_1: left promiscuous mode
[ 1207.905877][ T6397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1207.924071][ T6397] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1207.932967][T16109] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3038'.
[ 1207.947393][   T55] Bluetooth: hci3: command tx timeout
[ 1207.959418][ T6397] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1207.975119][ T6397] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1207.992336][T16110] overlayfs: missing 'lowerdir'
[ 1208.092522][ T6397] veth1_macvtap: left promiscuous mode
[ 1208.141885][ T6397] veth0_macvtap: left promiscuous mode
[ 1208.220885][ T6397] veth1_vlan: left promiscuous mode
[ 1208.254416][ T6397] veth0_vlan: left promiscuous mode
[ 1208.791101][T16122] netlink: 'syz.4.3044': attribute type 2 has an invalid length.
[ 1208.827665][T16122] QAT: failed to copy from user cfg_data.
[ 1209.039530][ T5870] usbhid 3-1:0.1: can't add hid device: -71
[ 1209.045851][ T5870] usbhid 3-1:0.1: probe with driver usbhid failed with error -71
[ 1209.071153][ T5870] usb 3-1: USB disconnect, device number 65
[ 1209.349665][ T6397] team0 (unregistering): Port device team_slave_1 removed
[ 1209.441034][T16125] overlayfs: missing 'lowerdir'
[ 1209.906536][ T6397] team0 (unregistering): Port device team_slave_0 removed
[ 1210.027000][   T55] Bluetooth: hci3: command tx timeout
[ 1210.655296][T16133] netlink: 'syz.4.3046': attribute type 2 has an invalid length.
[ 1210.700688][T16133] QAT: failed to copy from user cfg_data.
[ 1211.253456][T16090] chnl_net:caif_netlink_parms(): no params data found
[ 1211.345346][T16139] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3049'.
[ 1211.396926][T16142] netlink: 292 bytes leftover after parsing attributes in process `syz.1.3050'.
[ 1211.524330][T16147] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3049'.
[ 1211.592512][T16147] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3049'.
[ 1211.629480][T16139] cifs: Unknown parameter '�[���b����IT�&��:���"����1:���ӭ'�4,�Zz-#F�<��]%gC��
[ 1211.629480][T16139] S�Ș�ȞZ�6��'
[ 1211.754479][T16147] team0: entered promiscuous mode
[ 1211.788425][T16147] team_slave_0: entered promiscuous mode
[ 1211.821905][T16147] team_slave_1: entered promiscuous mode
[ 1211.856529][T16147] team0: left promiscuous mode
[ 1211.884486][T16147] team_slave_0: left promiscuous mode
[ 1211.907250][T16147] team_slave_1: left promiscuous mode
[ 1211.975426][T16146] IPVS: Unknown mcast interface: veth0_to_bond
[ 1212.064301][T16161] overlayfs: missing 'lowerdir'
[ 1212.107008][   T55] Bluetooth: hci3: command tx timeout
[ 1213.254429][T16090] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1213.265698][T16090] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1213.273019][T16090] bridge_slave_0: entered allmulticast mode
[ 1213.297844][T16090] bridge_slave_0: entered promiscuous mode
[ 1213.333998][T16090] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1213.348063][T16090] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1213.365542][T16090] bridge_slave_1: entered allmulticast mode
[ 1213.373025][T16090] bridge_slave_1: entered promiscuous mode
[ 1213.428381][T16090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1213.444958][T16090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1213.614062][T16090] team0: Port device team_slave_0 added
[ 1213.660041][T16090] team0: Port device team_slave_1 added
[ 1213.737119][T16090] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1213.754456][T16090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1213.835516][T16090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1213.881755][T16090] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1213.905543][T16090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1213.965550][T16090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1214.043022][T16090] hsr_slave_0: entered promiscuous mode
[ 1214.051153][T16090] hsr_slave_1: entered promiscuous mode
[ 1214.065901][T16189] sctp: [Deprecated]: syz.4.3064 (pid 16189) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1214.065901][T16189] Use struct sctp_sack_info instead
[ 1214.149840][T16090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1214.170190][T16090] Cannot create hsr debugfs directory
[ 1214.210625][   T55] Bluetooth: hci3: command tx timeout
[ 1214.655758][T16195] netlink: 'syz.2.3056': attribute type 2 has an invalid length.
[ 1214.688449][T16195] QAT: failed to copy from user cfg_data.
[ 1214.774635][T16202] overlayfs: missing 'lowerdir'
[ 1214.836882][T15248] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[ 1214.991818][T15248] usb 2-1: Using ep0 maxpacket: 16
[ 1215.001911][T15248] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1215.019552][T15248] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1215.052936][T15248] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1215.066071][T15248] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1215.083478][T15248] usb 2-1: Product: syz
[ 1215.087992][T15248] usb 2-1: Manufacturer: syz
[ 1215.093415][T15248] usb 2-1: SerialNumber: syz
[ 1215.105292][T15248] usb 2-1: config 0 descriptor??
[ 1215.114287][T15248] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1215.161713][T15248] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[ 1215.461773][T16090] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1215.493655][T16090] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1215.537718][T16090] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1216.050260][T16090] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1216.107872][T15248] em28xx 2-1:0.0: unknown em28xx chip ID (214)
[ 1216.397554][T15248] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[ 1216.566373][T15248] em28xx 2-1:0.0: AC97 chip type couldn't be determined
[ 1216.642762][T15248] em28xx 2-1:0.0: No AC97 audio processor
[ 1216.737681][T15248] usb 2-1: USB disconnect, device number 62
[ 1216.744455][T15248] em28xx 2-1:0.0: Disconnecting em28xx
[ 1216.780874][T15248] em28xx 2-1:0.0: Freeing device
[ 1216.990066][T16226] overlayfs: overlapping lowerdir path
[ 1217.378471][T16090] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1217.426308][T16090] 8021q: adding VLAN 0 to HW filter on device team0
[ 1217.469708][ T7251] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1217.476884][ T7251] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1217.553742][ T3560] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1217.560953][ T3560] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1218.367552][T16239] overlayfs: overlapping lowerdir path
[ 1218.452587][T16090] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1218.463517][T16090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1219.711268][T16090] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1219.912225][T16259] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3084'.
[ 1221.030460][T16269] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1221.201694][T16090] veth0_vlan: entered promiscuous mode
[ 1221.244298][T16090] veth1_vlan: entered promiscuous mode
[ 1221.425279][T16090] veth0_macvtap: entered promiscuous mode
[ 1221.481343][T16090] veth1_macvtap: entered promiscuous mode
[ 1221.548857][T16090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1221.576708][T16090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1221.587034][T16090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1221.597588][T16090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1221.608717][T16090] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1221.621936][T16090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1221.632557][T16090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1221.642792][T16090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1221.653886][T16090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1221.663882][T16090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1221.674512][T16090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1221.686553][T16090] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1221.695075][T12700] usb 5-1: new high-speed USB device number 79 using dummy_hcd
[ 1221.760461][T16090] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1221.770156][T16090] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1221.806784][T16090] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1221.827044][T16090] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1221.858574][T12700] usb 5-1: Using ep0 maxpacket: 32
[ 1221.865788][T12700] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1221.874356][T12700] usb 5-1: config 0 has no interface number 0
[ 1221.891002][T12700] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1222.090285][T12700] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1222.100518][T12700] usb 5-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1222.110228][T12700] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1222.508072][T12700] usb 5-1: config 0 descriptor??
[ 1223.439169][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1223.477993][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1223.572111][   T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1223.598385][   T29] audit: type=1326 audit(1736502197.547:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16273 comm="syz.4.3087" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2f7d85d29 code=0x0
[ 1223.746935][   T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1223.838632][T16288] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3087'.
[ 1225.225880][T16302] overlayfs: missing 'lowerdir'
[ 1225.470187][T12700] usbhid 5-1:0.1: can't add hid device: -71
[ 1225.476451][T12700] usbhid 5-1:0.1: probe with driver usbhid failed with error -71
[ 1225.499045][T12700] usb 5-1: USB disconnect, device number 79
[ 1225.842580][   T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1226.076119][   T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1226.162161][   T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1226.248458][   T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1226.342654][   T35] bridge_slave_1: left allmulticast mode
[ 1226.348857][   T35] bridge_slave_1: left promiscuous mode
[ 1226.354612][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1226.364994][   T35] bridge_slave_0: left allmulticast mode
[ 1226.371119][   T35] bridge_slave_0: left promiscuous mode
[ 1226.377333][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1227.285090][T14047] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1227.332365][T14047] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1227.352666][T14047] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1227.372556][ T5872] usb 1-1: new high-speed USB device number 71 using dummy_hcd
[ 1227.463612][T14047] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1227.463997][T16323] overlayfs: overlapping lowerdir path
[ 1227.471652][T14047] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1227.489712][T14047] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1227.946718][ T5872] usb 1-1: Using ep0 maxpacket: 8
[ 1227.958908][ T5872] usb 1-1: config 7 has an invalid interface number: 63 but max is 0
[ 1227.967396][ T5872] usb 1-1: config 7 has no interface number 0
[ 1227.975808][ T5872] usb 1-1: config 7 interface 63 has no altsetting 0
[ 1228.004935][ T5872] usb 1-1: New USB device found, idVendor=12d1, idProduct=752f, bcdDevice=8f.f4
[ 1228.017468][ T5872] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1228.076897][ T5872] usb 1-1: Product: syz
[ 1228.103074][ T5872] usb 1-1: Manufacturer: syz
[ 1228.117618][ T5872] usb 1-1: SerialNumber: syz
[ 1228.170804][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1228.487319][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1228.556842][   T35] bond0 (unregistering): Released all slaves
[ 1228.572781][ T5872] option 1-1:7.63: GSM modem (1-port) converter detected
[ 1228.597509][ T5872] usb 1-1: USB disconnect, device number 71
[ 1228.604530][ T5872] option 1-1:7.63: device disconnected
[ 1228.798920][T16330] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3101'.
[ 1229.223672][ T5872] usb 3-1: new high-speed USB device number 66 using dummy_hcd
[ 1229.520408][ T5872] usb 3-1: Using ep0 maxpacket: 16
[ 1229.650976][ T5872] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1229.664875][ T5872] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1229.695999][ T5872] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0001, bcdDevice= 0.40
[ 1229.717422][   T55] Bluetooth: hci3: command tx timeout
[ 1229.729366][   T35] hsr_slave_0: left promiscuous mode
[ 1229.738235][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1229.746576][   T35] hsr_slave_1: left promiscuous mode
[ 1229.752824][ T5872] usb 3-1: Product: syz
[ 1229.757222][ T5872] usb 3-1: Manufacturer: syz
[ 1229.761976][ T5872] usb 3-1: SerialNumber: syz
[ 1229.766910][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1229.775706][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1229.798952][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1229.851921][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1230.206505][T16347] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3105'.
[ 1230.212327][T16348] overlayfs: missing 'lowerdir'
[ 1230.356414][ T5872] usb 3-1: 0:76 : does not exist
[ 1230.362442][ T5872] usb 3-1: 0:10 : does not exist
[ 1230.415404][   T35] veth1_macvtap: left promiscuous mode
[ 1230.416152][ T5872] usb 3-1: USB disconnect, device number 66
[ 1230.422484][   T35] veth0_macvtap: left promiscuous mode
[ 1230.432969][   T35] veth1_vlan: left promiscuous mode
[ 1230.440005][   T35] veth0_vlan: left promiscuous mode
[ 1230.743482][   T29] audit: type=1107 audit(1736502204.697:1414): pid=16354 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='P'
[ 1231.026908][ T5872] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[ 1231.047887][T16361] overlayfs: missing 'lowerdir'
[ 1231.276683][ T5872] usb 2-1: Using ep0 maxpacket: 32
[ 1231.317005][ T5872] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1231.336661][ T5872] usb 2-1: config 0 has no interface number 0
[ 1231.401055][ T5872] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1231.412254][ T5872] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1231.422603][ T5872] usb 2-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1231.431981][ T5872] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1231.612203][ T5872] usb 2-1: config 0 descriptor??
[ 1231.788179][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1231.938267][T16367] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1232.199427][   T35] team0 (unregistering): Port device team_slave_1 removed
[ 1233.248248][   T29] audit: type=1326 audit(1736502207.207:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16357 comm="syz.1.3109" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd38b985d29 code=0x0
[ 1233.269393][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1233.283096][   T35] team0 (unregistering): Port device team_slave_0 removed
[ 1233.421789][T16374] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1233.854459][T16370] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3109'.
[ 1233.867475][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1234.562944][T16321] chnl_net:caif_netlink_parms(): no params data found
[ 1234.987511][T16378] erofs (device loop4): cannot find valid erofs superblock
[ 1235.441713][ T5872] usbhid 2-1:0.1: can't add hid device: -71
[ 1235.494890][ T5872] usbhid 2-1:0.1: probe with driver usbhid failed with error -71
[ 1235.547492][ T5872] usb 2-1: USB disconnect, device number 63
[ 1235.767114][T12700] usb 3-1: new high-speed USB device number 67 using dummy_hcd
[ 1235.958760][T12700] usb 3-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1235.959300][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1236.239371][T16321] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1236.272105][T16321] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1236.288325][T12700] usb 3-1: config 0 interface 0 altsetting 253 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1236.309330][T16321] bridge_slave_0: entered allmulticast mode
[ 1236.337591][T12700] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1236.347447][T12700] usb 3-1: New USB device found, idVendor=056a, idProduct=0035, bcdDevice= 0.00
[ 1236.356558][T12700] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1236.358036][T16321] bridge_slave_0: entered promiscuous mode
[ 1236.379553][T12700] usb 3-1: config 0 descriptor??
[ 1236.453032][T16321] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1236.481096][T16321] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1236.488730][T16321] bridge_slave_1: entered allmulticast mode
[ 1236.498073][T16321] bridge_slave_1: entered promiscuous mode
[ 1236.605303][T16321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1236.646954][T16321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1237.257082][T16321] team0: Port device team_slave_0 added
[ 1237.271015][T16321] team0: Port device team_slave_1 added
[ 1237.297442][T12700] wacom 0003:056A:0035.0011: hidraw0: USB HID v0.00 Device [HID 056a:0035] on usb-dummy_hcd.2-1/input0
[ 1237.351557][T16321] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1237.396760][T16321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1237.422669][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1237.643695][T16400] fuse: Bad value for 'rootmode'
[ 1238.448792][T16321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1238.464689][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1238.473917][T16321] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1238.482455][T16321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1238.508586][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1238.659948][T15014] usb 3-1: USB disconnect, device number 67
[ 1238.676845][T16321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1238.722764][T16321] hsr_slave_0: entered promiscuous mode
[ 1238.731300][T16321] hsr_slave_1: entered promiscuous mode
[ 1238.744152][T16321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1238.752709][T16321] Cannot create hsr debugfs directory
[ 1238.993649][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.576816][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1240.668956][T16421] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1241.117286][T16321] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1241.222487][T16321] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1241.234034][T16321] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1241.257124][T16321] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1241.413613][T16321] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1241.436169][T16321] 8021q: adding VLAN 0 to HW filter on device team0
[ 1241.469565][T16321] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1241.480082][T16321] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1241.501877][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1241.509056][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1241.552438][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1241.559716][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1241.637467][T16431] erofs (device loop4): cannot find valid erofs superblock
[ 1242.543054][T16321] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1242.629465][T16445] gre0 speed is unknown, defaulting to 1000
[ 1242.683270][T16445] gre0 speed is unknown, defaulting to 1000
[ 1242.739714][T16445] gre0 speed is unknown, defaulting to 1000
[ 1243.761870][T16321] veth0_vlan: entered promiscuous mode
[ 1243.808305][T16445] infiniband syz2: set active
[ 1243.813698][T16445] infiniband syz2: added gre0
[ 1243.902700][T14749] gre0 speed is unknown, defaulting to 1000
[ 1244.254499][T16321] veth1_vlan: entered promiscuous mode
[ 1244.325226][T16321] veth0_macvtap: entered promiscuous mode
[ 1244.334994][T16321] veth1_macvtap: entered promiscuous mode
[ 1244.352852][T16321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.363944][T16321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.375554][T16321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.384140][T16445] RDS/IB: syz2: added
[ 1244.387184][T16321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.405757][T16321] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1244.410399][T16445] smc: adding ib device syz2 with port count 1
[ 1244.418144][T16321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.434813][T16445] smc:    ib device syz2 port 1 has pnetid SYZ0 (user defined)
[ 1244.445972][T16321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.463527][T16321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.474208][T16321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.506828][T16321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.526173][T16321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.546727][T15014] usb 1-1: new high-speed USB device number 72 using dummy_hcd
[ 1244.571837][T16321] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1244.612304][T16321] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.623105][ T5872] gre0 speed is unknown, defaulting to 1000
[ 1244.643895][T16321] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.728580][T16321] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.741800][T16321] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.751894][T15014] usb 1-1: Using ep0 maxpacket: 32
[ 1244.878000][T15014] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1245.081990][T15014] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1245.082553][T16445] gre0 speed is unknown, defaulting to 1000
[ 1245.098141][T15014] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1245.116976][T15014] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1245.296177][T15014] hub 1-1:4.0: USB hub found
[ 1245.515632][ T7251] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1245.534740][T15014] hub 1-1:4.0: 2 ports detected
[ 1245.539798][T15014] usb 1-1: selecting invalid altsetting 1
[ 1245.546006][ T7251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1245.559855][T16088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1245.582207][T15014] hub 1-1:4.0: Using single TT (err -22)
[ 1245.597208][T16088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1245.655125][T16445] gre0 speed is unknown, defaulting to 1000
[ 1245.753738][T16475] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1245.785079][T15014] hub 1-1:4.0: hub_hub_status failed (err = -71)
[ 1245.796526][T15014] hub 1-1:4.0: config failed, can't get hub status (err -71)
[ 1245.837712][T15014] usb 1-1: USB disconnect, device number 72
[ 1245.944215][T16445] gre0 speed is unknown, defaulting to 1000
[ 1246.481946][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1246.699331][T16445] gre0 speed is unknown, defaulting to 1000
[ 1247.378703][T16496] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3143'.
[ 1247.412874][T16496] syz.4.3143: attempt to access beyond end of device
[ 1247.412874][T16496] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1247.467631][T16445] gre0 speed is unknown, defaulting to 1000
[ 1247.744230][T16506] IPVS: Unknown mcast interface: veth0_to_bond
[ 1249.982486][   T83] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.094624][   T83] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.157656][   T83] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.219093][   T83] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.312242][   T83] bridge_slave_1: left allmulticast mode
[ 1250.318539][   T83] bridge_slave_1: left promiscuous mode
[ 1250.324310][   T83] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1250.333490][   T83] bridge_slave_0: left allmulticast mode
[ 1250.339454][   T83] bridge_slave_0: left promiscuous mode
[ 1250.345168][   T83] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1250.666737][   T55] Bluetooth: hci4: command 0x0405 tx timeout
[ 1252.888408][   T55] Bluetooth: hci4: command 0x0405 tx timeout
[ 1252.909757][   T83] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1252.926031][   T83] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1253.410507][   T83] bond0 (unregistering): Released all slaves
[ 1253.653887][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1253.664655][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1253.718028][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1253.825334][T16553] FAULT_INJECTION: forcing a failure.
[ 1253.825334][T16553] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1253.877557][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1253.939056][   T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1253.977665][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1254.009841][T16553] CPU: 1 UID: 0 PID: 16553 Comm: syz.1.3160 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1254.020687][T16553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1254.030871][T16553] Call Trace:
[ 1254.034164][T16553]  <TASK>
[ 1254.037106][T16553]  dump_stack_lvl+0x241/0x360
[ 1254.041816][T16553]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1254.047135][T16553]  ? __pfx__printk+0x10/0x10
[ 1254.051745][T16553]  ? __pfx_lock_release+0x10/0x10
[ 1254.056787][T16553]  should_fail_ex+0x3b0/0x4e0
[ 1254.061483][T16553]  _copy_from_user+0x2f/0xc0
[ 1254.066103][T16553]  proc_setgroups_write+0x14c/0x440
[ 1254.071340][T16553]  ? __pfx_proc_setgroups_write+0x10/0x10
[ 1254.077084][T16553]  vfs_writev+0x5a9/0xba0
[ 1254.081432][T16553]  ? __pfx_proc_setgroups_write+0x10/0x10
[ 1254.087186][T16553]  ? __pfx_vfs_writev+0x10/0x10
[ 1254.092057][T16553]  ? __fget_files+0x2a/0x410
[ 1254.096671][T16553]  ? __fget_files+0x395/0x410
[ 1254.101438][T16553]  ? __fget_files+0x2a/0x410
[ 1254.106078][T16553]  do_writev+0x1b6/0x360
[ 1254.110362][T16553]  ? __pfx_do_writev+0x10/0x10
[ 1254.115158][T16553]  ? do_syscall_64+0x100/0x230
[ 1254.119969][T16553]  ? do_syscall_64+0xb6/0x230
[ 1254.124667][T16553]  do_syscall_64+0xf3/0x230
[ 1254.129192][T16553]  ? clear_bhb_loop+0x35/0x90
[ 1254.133883][T16553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1254.139904][T16553] RIP: 0033:0x7fd38b985d29
[ 1254.144444][T16553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1254.164083][T16553] RSP: 002b:00007fd38c7c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1254.172520][T16553] RAX: ffffffffffffffda RBX: 00007fd38bb75fa0 RCX: 00007fd38b985d29
[ 1254.180544][T16553] RDX: 0000000000000001 RSI: 00000000200006c0 RDI: 0000000000000003
[ 1254.188541][T16553] RBP: 00007fd38c7c8090 R08: 0000000000000000 R09: 0000000000000000
[ 1254.196542][T16553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1254.204652][T16553] R13: 0000000000000000 R14: 00007fd38bb75fa0 R15: 00007ffcf07cfda8
[ 1254.212656][T16553]  </TASK>
[ 1255.339681][T16546] gre0 speed is unknown, defaulting to 1000
[ 1256.287533][T14047] Bluetooth: hci1: unexpected event for opcode 0x203c
[ 1256.540648][T14749] usb 1-1: new high-speed USB device number 73 using dummy_hcd
[ 1256.741852][T14047] Bluetooth: hci3: command tx timeout
[ 1256.931020][T14749] usb 1-1: Using ep0 maxpacket: 32
[ 1256.959195][T14749] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1256.976886][T14749] usb 1-1: config 0 has no interface number 0
[ 1256.983267][T14749] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1256.994805][T14749] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1257.038858][T14749] usb 1-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1257.051210][T14749] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1257.137737][T14749] usb 1-1: config 0 descriptor??
[ 1258.310129][T16546] chnl_net:caif_netlink_parms(): no params data found
[ 1258.679239][   T29] audit: type=1326 audit(1736502232.637:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16576 comm="syz.0.3167" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x0
[ 1258.702399][T16577] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3167'.
[ 1258.827062][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1258.895869][T16601] netlink: 'syz.2.3174': attribute type 39 has an invalid length.
[ 1258.904133][   T83] hsr_slave_0: left promiscuous mode
[ 1258.910675][   T83] hsr_slave_1: left promiscuous mode
[ 1258.923160][   T83] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1258.939051][   T83] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1258.956065][   T83] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1258.966755][   T83] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1259.049053][   T83] veth1_macvtap: left promiscuous mode
[ 1259.054695][   T83] veth0_macvtap: left promiscuous mode
[ 1259.063693][   T83] veth1_vlan: left promiscuous mode
[ 1259.074827][   T83] veth0_vlan: left promiscuous mode
[ 1260.151445][T14749] usbhid 1-1:0.1: can't add hid device: -71
[ 1260.158789][T14749] usbhid 1-1:0.1: probe with driver usbhid failed with error -71
[ 1260.216730][T14749] usb 1-1: USB disconnect, device number 73
[ 1260.955179][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1262.019179][T16624] fuse: Bad value for 'fd'
[ 1262.987394][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1263.722273][T16647] overlay: Unknown parameter '/'
[ 1263.773305][T16647] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1264.465749][   T83] team0 (unregistering): Port device team_slave_1 removed
[ 1264.643876][T15014] usb 1-1: new high-speed USB device number 74 using dummy_hcd
[ 1264.916281][   T83] team0 (unregistering): Port device team_slave_0 removed
[ 1265.553221][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1265.626852][T15014] usb 1-1: Using ep0 maxpacket: 32
[ 1265.639773][T15014] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1265.686716][T15014] usb 1-1: config 0 has no interface number 0
[ 1265.698288][T14749] usb 5-1: new high-speed USB device number 80 using dummy_hcd
[ 1265.703155][T15014] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1265.764697][T15014] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1265.785694][T15014] usb 1-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1265.831123][T15014] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1265.887921][T14749] usb 5-1: Using ep0 maxpacket: 8
[ 1265.889284][T15014] usb 1-1: config 0 descriptor??
[ 1265.913579][T14749] usb 5-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1265.930401][T14749] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1265.956068][T14749] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1265.988402][T14749] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1265.996757][T14749] usb 5-1: Product: ᐊ
[ 1266.056471][T14749] usb 5-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1266.085882][T14749] usb 5-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1266.159880][T16660] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1267.122784][   T29] audit: type=1326 audit(1736502241.027:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16652 comm="syz.0.3190" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x0
[ 1267.148158][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1267.293902][T16668] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3190'.
[ 1267.631182][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1267.777488][T14749] usb 5-1: USB disconnect, device number 80
[ 1268.446825][T15014] usbhid 1-1:0.1: can't add hid device: -71
[ 1268.452945][T15014] usbhid 1-1:0.1: probe with driver usbhid failed with error -71
[ 1268.564977][T15014] usb 1-1: USB disconnect, device number 74
[ 1269.717410][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1271.582273][T16546] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1271.667378][T16546] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1271.676366][T16546] bridge_slave_0: entered allmulticast mode
[ 1271.687452][T16706] erofs (device loop4): cannot find valid erofs superblock
[ 1271.688860][T16546] bridge_slave_0: entered promiscuous mode
[ 1271.909187][T16546] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1271.916969][T16546] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1271.927795][T16546] bridge_slave_1: entered allmulticast mode
[ 1271.944958][T16546] bridge_slave_1: entered promiscuous mode
[ 1277.768361][   T25] usb 1-1: new high-speed USB device number 75 using dummy_hcd
[ 1278.394235][T16546] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1278.414768][T16723] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3208'.
[ 1278.443368][T16546] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1278.769034][T14749] usb 3-1: new high-speed USB device number 68 using dummy_hcd
[ 1278.927071][T14749] usb 3-1: Using ep0 maxpacket: 8
[ 1278.937596][T14749] usb 3-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1278.951912][T14749] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1278.973563][T14749] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1279.157042][T14749] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1279.165247][T14749] usb 3-1: Product: ᐊ
[ 1279.169603][T14749] usb 3-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1279.185275][T14749] usb 3-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1279.242456][T16546] team0: Port device team_slave_0 added
[ 1279.252303][T16546] team0: Port device team_slave_1 added
[ 1279.293504][T16728] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1279.311738][T15248] usb 5-1: new high-speed USB device number 81 using dummy_hcd
[ 1279.342870][T14749] usb 3-1: can't set config #1, error -71
[ 1279.353026][T14749] usb 3-1: USB disconnect, device number 68
[ 1279.573779][T16546] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1279.587761][T16546] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.616917][T15248] usb 5-1: Using ep0 maxpacket: 32
[ 1279.618897][T16546] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1279.631797][T15248] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1279.658846][T15248] usb 5-1: config 0 has no interface number 0
[ 1279.665277][T15248] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1279.703478][T15248] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1280.349326][T15248] usb 5-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1280.362215][T15248] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1280.388201][T15248] usb 5-1: config 0 descriptor??
[ 1280.458001][T16546] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1280.465021][T16546] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1280.491534][T16546] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1281.563273][T16745] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3215'.
[ 1281.657936][T16743] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1281.729193][T16745] overlayfs: overlapping lowerdir path
[ 1282.640630][T15248] usbhid 5-1:0.1: can't add hid device: -71
[ 1282.648618][T15248] usbhid 5-1:0.1: probe with driver usbhid failed with error -71
[ 1282.710088][T15248] usb 5-1: USB disconnect, device number 81
[ 1282.774422][T16546] hsr_slave_0: entered promiscuous mode
[ 1283.055685][T16748] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3216'.
[ 1283.077530][T16546] hsr_slave_1: entered promiscuous mode
[ 1283.104120][T16546] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1283.107640][T16748] overlayfs: overlapping lowerdir path
[ 1283.112592][T16546] Cannot create hsr debugfs directory
[ 1284.166815][   T25] usb 3-1: new high-speed USB device number 69 using dummy_hcd
[ 1284.366933][   T25] usb 3-1: Using ep0 maxpacket: 8
[ 1284.388501][   T25] usb 3-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1284.655027][   T25] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1284.714742][   T25] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1284.724329][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1284.732635][   T25] usb 3-1: Product: ᐊ
[ 1284.737166][   T25] usb 3-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1284.752998][   T25] usb 3-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1285.084775][T16764] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1285.715234][T16770] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3221'.
[ 1285.738820][T16770] overlayfs: overlapping lowerdir path
[ 1287.793962][   T25] usb 3-1: USB disconnect, device number 69
[ 1291.215409][T16546] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1291.317438][T16546] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1291.379363][T16546] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1292.372405][T16546] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1293.270865][T16546] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1293.376070][T16546] 8021q: adding VLAN 0 to HW filter on device team0
[ 1293.850195][T16546] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1293.861656][T16546] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1293.875342][T13416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1293.882555][T13416] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1293.923160][T13416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1293.930316][T13416] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1293.956735][T15014] usb 2-1: new high-speed USB device number 64 using dummy_hcd
[ 1294.398362][T15014] usb 2-1: Using ep0 maxpacket: 8
[ 1294.441177][T15014] usb 2-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1294.465879][T15014] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1294.482544][T15014] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1294.483600][T16546] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1294.671494][T15014] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1294.679839][T15014] usb 2-1: Product: ᐊ
[ 1294.684661][T15014] usb 2-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1294.700452][T15014] usb 2-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1294.732743][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1294.746896][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1294.834296][T16823] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1295.867023][T15014] usb 2-1: USB disconnect, device number 64
[ 1297.912522][T16546] veth0_vlan: entered promiscuous mode
[ 1297.924787][T16546] veth1_vlan: entered promiscuous mode
[ 1297.952802][T16546] veth0_macvtap: entered promiscuous mode
[ 1297.962270][T16546] veth1_macvtap: entered promiscuous mode
[ 1297.978080][T16546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1297.988784][T16546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1297.998694][T16546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1298.009588][T16546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1298.020745][T16546] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1298.030616][T16546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1298.041737][T16546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1298.052244][T16546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1298.062731][T16546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1298.072882][T16546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1298.083422][T16546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1298.095254][T16546] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1298.105650][T16546] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.114552][T16546] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.123340][T16546] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.132358][T16546] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1299.318463][ T7749] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1299.326344][ T7749] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1300.263644][ T7749] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1300.294378][ T7749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1300.604244][T16890] FAULT_INJECTION: forcing a failure.
[ 1300.604244][T16890] name failslab, interval 1, probability 0, space 0, times 0
[ 1300.617312][T16890] CPU: 0 UID: 0 PID: 16890 Comm: syz.4.3252 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1300.628120][T16890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1300.638179][T16890] Call Trace:
[ 1300.641459][T16890]  <TASK>
[ 1300.644392][T16890]  dump_stack_lvl+0x241/0x360
[ 1300.649089][T16890]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1300.654295][T16890]  ? __pfx__printk+0x10/0x10
[ 1300.658892][T16890]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1300.664352][T16890]  ? __pfx___might_resched+0x10/0x10
[ 1300.669649][T16890]  ? lockdep_init_map_type+0xa1/0x910
[ 1300.675027][T16890]  should_fail_ex+0x3b0/0x4e0
[ 1300.679740][T16890]  should_failslab+0xac/0x100
[ 1300.684433][T16890]  __kmalloc_cache_noprof+0x70/0x390
[ 1300.689721][T16890]  ? keyctl_watch_key+0x232/0x480
[ 1300.694757][T16890]  keyctl_watch_key+0x232/0x480
[ 1300.699620][T16890]  __se_sys_keyctl+0x106/0x910
[ 1300.704399][T16890]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1300.709711][T16890]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1300.715699][T16890]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1300.722082][T16890]  ? irqentry_exit+0x63/0x90
[ 1300.726755][T16890]  ? lockdep_hardirqs_on+0x99/0x150
[ 1300.732005][T16890]  ? __x64_sys_keyctl+0x20/0xc0
[ 1300.736874][T16890]  do_syscall_64+0xf3/0x230
[ 1300.741413][T16890]  ? clear_bhb_loop+0x35/0x90
[ 1300.746107][T16890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.752024][T16890] RIP: 0033:0x7fb2f7d85d29
[ 1300.756484][T16890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1300.776117][T16890] RSP: 002b:00007fb2f8b8c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1300.784548][T16890] RAX: ffffffffffffffda RBX: 00007fb2f7f76080 RCX: 00007fb2f7d85d29
[ 1300.792530][T16890] RDX: 0000000000000003 RSI: 0000000011db9f82 RDI: 0000000000000020
[ 1300.800506][T16890] RBP: 00007fb2f8b8c090 R08: 0000000000000000 R09: 0000000000000000
[ 1300.808511][T16890] R10: 000000000000009f R11: 0000000000000246 R12: 0000000000000001
[ 1300.816492][T16890] R13: 0000000000000000 R14: 00007fb2f7f76080 R15: 00007fff33cb9fc8
[ 1300.824483][T16890]  </TASK>
[ 1300.827591][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1301.000088][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1301.023331][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1302.764967][   T29] audit: type=1326 audit(1736502276.697:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1302.824370][T16906] netlink: 'syz.1.3253': attribute type 2 has an invalid length.
[ 1302.836489][   T29] audit: type=1326 audit(1736502276.697:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1302.891752][   T29] audit: type=1326 audit(1736502276.707:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1302.913470][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1302.950813][   T29] audit: type=1326 audit(1736502276.707:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1302.979305][   T29] audit: type=1326 audit(1736502276.707:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.001333][   T29] audit: type=1326 audit(1736502276.747:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.065373][   T29] audit: type=1326 audit(1736502276.747:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.160740][   T29] audit: type=1326 audit(1736502276.747:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.182442][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1303.215436][   T29] audit: type=1326 audit(1736502276.747:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.268985][   T29] audit: type=1326 audit(1736502276.747:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16903 comm="syz.0.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa198b85d29 code=0x7ffc0000
[ 1303.357072][T14749] usb 5-1: new high-speed USB device number 82 using dummy_hcd
[ 1303.484234][ T7749] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1303.527267][T14749] usb 5-1: Using ep0 maxpacket: 8
[ 1303.700726][T14749] usb 5-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1303.740219][T14749] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1303.765391][ T7749] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1303.800478][T14749] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1303.820004][T14749] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1303.831060][T14749] usb 5-1: Product: ᐊ
[ 1303.835371][T14749] usb 5-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1303.880714][T14749] usb 5-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1303.957070][ T7749] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1304.006263][T16908] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1304.130046][ T7749] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1304.451257][ T7749] bridge_slave_1: left allmulticast mode
[ 1304.471391][ T7749] bridge_slave_1: left promiscuous mode
[ 1304.497119][ T7749] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1304.536016][ T7749] bridge_slave_0: left allmulticast mode
[ 1304.558725][T16913] xt_hashlimit: size too large, truncated to 1048576
[ 1304.586955][ T7749] bridge_slave_0: left promiscuous mode
[ 1304.608410][ T7749] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1305.024655][T14047] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1305.034967][T14047] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1305.050336][T14047] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1305.069406][T14047] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1305.078876][T14047] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1305.088281][T14047] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1305.593851][T14749] usb 5-1: USB disconnect, device number 82
[ 1307.125044][T16930] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3261'.
[ 1307.286023][T16930] overlayfs: overlapping lowerdir path
[ 1307.365726][T14045] Bluetooth: hci3: command tx timeout
[ 1307.899665][ T7749] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1307.935164][ T7749] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1307.972724][ T7749] bond0 (unregistering): Released all slaves
[ 1308.004161][T16911] 
: renamed from bond0 (while UP)
[ 1308.041806][T16917] gre0 speed is unknown, defaulting to 1000
[ 1309.557080][T14045] Bluetooth: hci3: command 0x041b tx timeout
[ 1311.627089][T14045] Bluetooth: hci3: command 0x041b tx timeout
[ 1312.033900][T16959] overlayfs: missing 'lowerdir'
[ 1312.517231][ T7749] hsr_slave_0: left promiscuous mode
[ 1312.551786][ T7749] hsr_slave_1: left promiscuous mode
[ 1312.561614][ T7749] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1312.579446][ T7749] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1312.598339][ T7749] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1312.605934][ T7749] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1312.666969][ T7749] veth1_macvtap: left promiscuous mode
[ 1312.706686][ T7749] veth0_macvtap: left promiscuous mode
[ 1312.733585][ T7749] veth1_vlan: left promiscuous mode
[ 1312.746738][ T7749] veth0_vlan: left promiscuous mode
[ 1313.717097][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1314.806413][   T47] usb 1-1: new high-speed USB device number 76 using dummy_hcd
[ 1314.905579][T16974] overlayfs: missing 'lowerdir'
[ 1314.996838][   T47] usb 1-1: Using ep0 maxpacket: 8
[ 1315.006505][   T47] usb 1-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1315.081021][   T47] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1316.196871][T14047] Bluetooth: hci3: command 0x041b tx timeout
[ 1316.357809][   T47] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1316.367144][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1316.375253][   T47] usb 1-1: Product: ᐊ
[ 1316.379840][   T47] usb 1-1: Manufacturer: 銊˲볇흦뼨升刐ﯠꏐ같朐몺毨鹈昩∮瞟䬓캆ꐋﳣ੦初䧘Ꜽ뽸묟읞එ晏㦉債ﾽ엮껷ꓭ焎䎓盎閾䦛
[ 1316.418388][   T47] usb 1-1: SerialNumber: 靰몣鍫鎁ൄ紌昃틬쮬﫱댟녂뉡뙲媷款ⳟ᎞킇娚।내풔嶄閖ጇ굔䢁鮯ꌛ㷑n仇瞧桕ඉ颸婻竩剖뭍核헂纴黆ﾁ뜫᳒ⷭ砃⒕敐ἱṓ让쌁驺䲞費诿퉑鯀췽┧軝ﺱﭟ♙ᥡ☬䱤좜Ȣﵣ됣硓⚗暭䑵긷े図ᙔ趦閉〕ꁋ잜还쳻ꅓ쾅쉫
[ 1316.559552][   T47] usb 1-1: can't set config #1, error -71
[ 1316.571977][   T47] usb 1-1: USB disconnect, device number 76
[ 1318.326796][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1319.766516][   T29] kauditd_printk_skb: 9 callbacks suppressed
[ 1319.766538][   T29] audit: type=1326 audit(1736502293.717:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17000 comm="syz.4.3280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f7d85d29 code=0x7ffc0000
[ 1320.026848][   T29] audit: type=1326 audit(1736502293.767:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17000 comm="syz.4.3280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f7d85d29 code=0x7ffc0000
[ 1320.048523][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1320.055236][   T29] audit: type=1326 audit(1736502293.807:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17000 comm="syz.4.3280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fb2f7d85d29 code=0x7ffc0000
[ 1320.099540][   T29] audit: type=1326 audit(2000000000.000:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17000 comm="syz.4.3280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f7d85d29 code=0x7ffc0000
[ 1320.128338][   T29] audit: type=1326 audit(2000000000.230:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17000 comm="syz.4.3280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f7d85d29 code=0x7ffc0000
[ 1320.346754][   T55] Bluetooth: hci3: command 0x041b tx timeout
[ 1425.096550][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1425.103564][    C0] rcu: 	1-...!: (1 GPs behind) idle=35e4/1/0x4000000000000000 softirq=66548/66554 fqs=1260
[ 1425.115128][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=79653, q=238 ncpus=2)
[ 1425.122893][    C0] Sending NMI from CPU 0 to CPUs 1:
[ 1425.122939][    C1] NMI backtrace for cpu 1
[ 1425.122954][    C1] CPU: 1 UID: 0 PID: 17004 Comm: syz.4.3280 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1425.122976][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1425.122988][    C1] RIP: 0010:mark_lock+0xa2/0x360
[ 1425.123017][    C1] Code: 00 8b 1b 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 80 18 27 94 be 08 00 00 00 e8 a6 27 88 00 48 0f a3 1d 3e f1 ab 12 <73> 10 48 69 c3 c8 00 00 00 48 8d 98 40 97 be 93 eb 68 48 c7 c0 c0
[ 1425.123034][    C1] RSP: 0018:ffffc90000a188a8 EFLAGS: 00000057
[ 1425.123051][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff817b273a
[ 1425.123064][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff94271880
[ 1425.123077][    C1] RBP: 0000000000000008 R08: ffffffff94271887 R09: 1ffffffff284e310
[ 1425.123091][    C1] R10: dffffc0000000000 R11: fffffbfff284e311 R12: ffff88802f808ac4
[ 1425.123105][    C1] R13: dffffc0000000000 R14: 0000000000000100 R15: ffff88802f808b58
[ 1425.123119][    C1] FS:  00007fb2f8b8c6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1425.123136][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1425.123150][    C1] CR2: 0000001b2fb15ff8 CR3: 0000000027e4c000 CR4: 00000000003526f0
[ 1425.123172][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1425.123184][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1425.123196][    C1] Call Trace:
[ 1425.123204][    C1]  <NMI>
[ 1425.123214][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1425.123238][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1425.123259][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1425.123289][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1425.123316][    C1]  ? nmi_handle+0x14f/0x5a0
[ 1425.123337][    C1]  ? nmi_handle+0x2a/0x5a0
[ 1425.123357][    C1]  ? mark_lock+0xa2/0x360
[ 1425.123378][    C1]  ? default_do_nmi+0x63/0x160
[ 1425.123400][    C1]  ? exc_nmi+0x123/0x1f0
[ 1425.123420][    C1]  ? end_repeat_nmi+0xf/0x53
[ 1425.123440][    C1]  ? mark_lock+0x9a/0x360
[ 1425.123463][    C1]  ? mark_lock+0xa2/0x360
[ 1425.123484][    C1]  ? mark_lock+0xa2/0x360
[ 1425.123506][    C1]  ? mark_lock+0xa2/0x360
[ 1425.123527][    C1]  </NMI>
[ 1425.123533][    C1]  <IRQ>
[ 1425.123542][    C1]  __lock_acquire+0xc3e/0x2100
[ 1425.123569][    C1]  lock_acquire+0x1ed/0x550
[ 1425.123588][    C1]  ? debug_object_activate+0x17f/0x580
[ 1425.123620][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1425.123639][    C1]  ? __lock_acquire+0x1397/0x2100
[ 1425.123667][    C1]  _raw_spin_lock_irqsave+0xd5/0x120
[ 1425.123691][    C1]  ? debug_object_activate+0x17f/0x580
[ 1425.123718][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 1425.123746][    C1]  debug_object_activate+0x17f/0x580
[ 1425.123775][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1425.123803][    C1]  ? __pfx_debug_object_activate+0x10/0x10
[ 1425.123829][    C1]  ? advance_sched+0xa02/0xca0
[ 1425.123854][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1425.123898][    C1]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[ 1425.123924][    C1]  enqueue_hrtimer+0x30/0x3c0
[ 1425.123951][    C1]  __hrtimer_run_queues+0x6cb/0xd30
[ 1425.123983][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1425.124007][    C1]  ? sched_clock+0x4a/0x70
[ 1425.124033][    C1]  ? read_tsc+0x9/0x20
[ 1425.124056][    C1]  ? ktime_get_update_offsets_now+0x393/0x3b0
[ 1425.124080][    C1]  hrtimer_interrupt+0x403/0xa40
[ 1425.124114][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 1425.124137][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1425.124168][    C1]  </IRQ>
[ 1425.124174][    C1]  <TASK>
[ 1425.124182][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1425.124212][    C1] RIP: 0010:__sanitizer_cov_trace_switch+0xe/0x120
[ 1425.124233][    C1] Code: 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 57 41 56 41 54 53 4c 8b 16 <48> 8b 46 08 48 83 c0 f8 48 c1 c0 3d 48 83 f8 02 7f 1f 48 85 c0 74
[ 1425.124248][    C1] RSP: 0018:ffffc900042cf268 EFLAGS: 00000246
[ 1425.124264][    C1] RAX: ffffffff8af6b1fc RBX: 000000000000000a RCX: 0000000000080000
[ 1425.124277][    C1] RDX: ffffc9000db74000 RSI: ffffffff8feaeda0 RDI: 000000000000000a
[ 1425.124290][    C1] RBP: ffffc900042cf4b8 R08: ffffffff8b04c03d R09: 1ffffffff284e310
[ 1425.124305][    C1] R10: 0000000000000002 R11: fffffbfff284e311 R12: ffff88807f260c20
[ 1425.124318][    C1] R13: 0000000000000000 R14: ffff88807f260c20 R15: dffffc0000000000
[ 1425.124335][    C1]  ? sctp_v6_get_dst+0xecd/0x1e20
[ 1425.124353][    C1]  ? sctp_get_af_specific+0xc/0x80
[ 1425.124386][    C1]  sctp_get_af_specific+0x1a/0x80
[ 1425.124414][    C1]  sctp_scope+0x34/0xa0
[ 1425.124431][    C1]  sctp_v6_get_dst+0xeda/0x1e20
[ 1425.124454][    C1]  ? sctp_v6_get_dst+0x565/0x1e20
[ 1425.124474][    C1]  ? __pfx_sctp_v6_get_dst+0x10/0x10
[ 1425.124492][    C1]  ? sctp_v6_get_dst+0x14ca/0x1e20
[ 1425.124514][    C1]  ? __pfx_sctp_v6_get_dst+0x10/0x10
[ 1425.124540][    C1]  sctp_transport_route+0x12c/0x2e0
[ 1425.124570][    C1]  sctp_packet_config+0x460/0xdb0
[ 1425.124597][    C1]  sctp_packet_singleton+0x14d/0x320
[ 1425.124624][    C1]  ? __pfx_sctp_packet_singleton+0x10/0x10
[ 1425.124654][    C1]  ? sctp_outq_select_transport+0x474/0x580
[ 1425.124680][    C1]  ? sctp_transport_burst_limited+0x18c/0x270
[ 1425.124709][    C1]  sctp_outq_flush+0x6d5/0x3e20
[ 1425.124733][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1425.124766][    C1]  ? __pfx_sctp_outq_flush+0x10/0x10
[ 1425.124792][    C1]  ? sctp_outq_tail+0x67a/0x930
[ 1425.124816][    C1]  ? sctp_outq_uncork+0x4f/0xb0
[ 1425.124841][    C1]  sctp_do_sm+0x59cc/0x60c0
[ 1425.124871][    C1]  ? sctp_hash_transport+0x20d/0x1b90
[ 1425.124899][    C1]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1425.124940][    C1]  ? sctp_connect_new_asoc+0x3fe/0x6c0
[ 1425.124963][    C1]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1425.124988][    C1]  sctp_primitive_ASSOCIATE+0x95/0xc0
[ 1425.125012][    C1]  __sctp_connect+0x9cd/0xe30
[ 1425.125037][    C1]  ? __local_bh_enable_ip+0x168/0x200
[ 1425.125063][    C1]  ? __pfx___sctp_connect+0x10/0x10
[ 1425.125083][    C1]  ? sctp_inet_connect+0xa7/0x1f0
[ 1425.125101][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1425.125127][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1425.125157][    C1]  sctp_inet_connect+0x149/0x1f0
[ 1425.125181][    C1]  __sys_connect+0x288/0x2d0
[ 1425.125202][    C1]  ? __pfx___sys_connect+0x10/0x10
[ 1425.125226][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1425.125246][    C1]  ? do_syscall_64+0x100/0x230
[ 1425.125276][    C1]  __x64_sys_connect+0x7a/0x90
[ 1425.125295][    C1]  do_syscall_64+0xf3/0x230
[ 1425.125322][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1425.125341][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1425.125374][    C1] RIP: 0033:0x7fb2f7d85d29
[ 1425.125392][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1425.125407][    C1] RSP: 002b:00007fb2f8b8c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1425.125425][    C1] RAX: ffffffffffffffda RBX: 00007fb2f7f76080 RCX: 00007fb2f7d85d29
[ 1425.125439][    C1] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000006
[ 1425.125450][    C1] RBP: 00007fb2f7e01b08 R08: 0000000000000000 R09: 0000000000000000
[ 1425.125462][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1425.125474][    C1] R13: 0000000000000000 R14: 00007fb2f7f76080 R15: 00007fff33cb9fc8
[ 1425.125494][    C1]  </TASK>
[ 1425.125932][    C0] rcu: rcu_preempt kthread starved for 7981 jiffies! g79653 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1425.845591][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1425.855581][    C0] rcu: RCU grace-period kthread stack dump:
[ 1425.861484][    C0] task:rcu_preempt     state:R  running task     stack:25712 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1425.873277][    C0] Call Trace:
[ 1425.876577][    C0]  <TASK>
[ 1425.879538][    C0]  __schedule+0x17fb/0x4be0
[ 1425.884111][    C0]  ? __pfx___schedule+0x10/0x10
[ 1425.889000][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1425.894063][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1425.900445][    C0]  ? schedule+0x90/0x320
[ 1425.904723][    C0]  schedule+0x14b/0x320
[ 1425.908914][    C0]  schedule_timeout+0x15a/0x290
[ 1425.913790][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 1425.919190][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 1425.924521][    C0]  ? prepare_to_swait_event+0x330/0x350
[ 1425.930104][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1425.934980][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[ 1425.940225][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1425.946407][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1425.951720][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1425.957647][    C0]  ? finish_swait+0xd4/0x1e0
[ 1425.962314][    C0]  rcu_gp_kthread+0xa7/0x3b0
[ 1425.966953][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1425.972190][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1425.978134][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1425.983198][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1425.988426][    C0]  kthread+0x2f0/0x390
[ 1425.992526][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1425.997757][    C0]  ? __pfx_kthread+0x10/0x10
[ 1426.002378][    C0]  ret_from_fork+0x4b/0x80
[ 1426.006821][    C0]  ? __pfx_kthread+0x10/0x10
[ 1426.011449][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1426.016273][    C0]  </TASK>
[ 1426.019312][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 1426.025657][    C0] CPU: 0 UID: 0 PID: 5932 Comm: kworker/u8:8 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 1426.036534][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1426.046612][    C0] Workqueue: writeback wb_workfn (flush-8:0)
[ 1426.052637][    C0] RIP: 0010:smp_call_function_many_cond+0x19f3/0x2c60
[ 1426.059433][    C0] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 56 e9 0b 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 01 e5 0b 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 e5 e4
[ 1426.079067][    C0] RSP: 0018:ffffc900051c5fc0 EFLAGS: 00000293
[ 1426.085174][    C0] RAX: ffffffff81938eeb RBX: 1ffff110170e88b9 RCX: ffff888025750000
[ 1426.093176][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1426.101342][    C0] RBP: ffffc900051c61c0 R08: ffffffff81938eba R09: 1ffff92000a38be8
[ 1426.109368][    C0] R10: dffffc0000000000 R11: ffffffff814d61f0 R12: dffffc0000000000
[ 1426.117363][    C0] R13: ffff8880b87445c8 R14: ffff8880b863f940 R15: 0000000000000001
[ 1426.125361][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1426.134314][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1426.140919][    C0] CR2: 00007f30449c0ff8 CR3: 0000000035528000 CR4: 00000000003526f0
[ 1426.148916][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1426.156920][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1426.164917][    C0] Call Trace:
[ 1426.168215][    C0]  <IRQ>
[ 1426.171089][    C0]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[ 1426.177455][    C0]  ? print_other_cpu_stall+0x1481/0x15c0
[ 1426.183131][    C0]  ? __pfx_print_other_cpu_stall+0x10/0x10
[ 1426.188969][    C0]  ? seqcount_lockdep_reader_access+0x1c6/0x220
[ 1426.195251][    C0]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1426.201890][    C0]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[ 1426.208167][    C0]  ? rcu_sched_clock_irq+0xa26/0x10e0
[ 1426.213582][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 1426.219252][    C0]  ? acct_account_cputime+0x207/0x210
[ 1426.224665][    C0]  ? update_process_times+0x242/0x2f0
[ 1426.230080][    C0]  ? tick_nohz_handler+0x37c/0x500
[ 1426.235245][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1426.240741][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[ 1426.246166][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1426.251915][    C0]  ? sched_clock+0x4a/0x70
[ 1426.256368][    C0]  ? read_tsc+0x9/0x20
[ 1426.260471][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[ 1426.266568][    C0]  ? hrtimer_interrupt+0x403/0xa40
[ 1426.271760][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[ 1426.277945][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1426.283781][    C0]  </IRQ>
[ 1426.286741][    C0]  <TASK>
[ 1426.289696][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1426.295894][    C0]  ? __pfx_tlb_is_not_lazy+0x10/0x10
[ 1426.301208][    C0]  ? smp_call_function_many_cond+0x19da/0x2c60
[ 1426.307392][    C0]  ? smp_call_function_many_cond+0x1a0b/0x2c60
[ 1426.313581][    C0]  ? smp_call_function_many_cond+0x19f3/0x2c60
[ 1426.319768][    C0]  ? mark_lock+0x9a/0x360
[ 1426.324137][    C0]  ? __pfx_tlb_is_not_lazy+0x10/0x10
[ 1426.329457][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1426.334700][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 1426.341073][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1426.345947][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1426.351178][    C0]  ? __pfx_tlb_is_not_lazy+0x10/0x10
[ 1426.356493][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[ 1426.361640][    C0]  flush_tlb_mm_range+0x329/0x5c0
[ 1426.366701][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 1426.372273][    C0]  ? page_ext_get+0x1d6/0x2a0
[ 1426.376997][    C0]  ptep_clear_flush+0x11a/0x170
[ 1426.381883][    C0]  page_vma_mkclean_one+0x58a/0x9a0
[ 1426.387232][    C0]  ? __pfx_page_vma_mkclean_one+0x10/0x10
[ 1426.393025][    C0]  page_mkclean_one+0x272/0x350
[ 1426.397926][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1426.403433][    C0]  ? __pfx_down_read_trylock+0x10/0x10
[ 1426.408931][    C0]  ? __lock_acquire+0x1397/0x2100
[ 1426.413988][    C0]  ? vma_interval_tree_iter_next+0x31b/0x340
[ 1426.420012][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1426.425436][    C0]  rmap_walk_file+0x502/0x780
[ 1426.430164][    C0]  folio_mkclean+0x252/0x370
[ 1426.434806][    C0]  ? __pfx_folio_mkclean+0x10/0x10
[ 1426.439966][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1426.445395][    C0]  ? __pfx_invalid_mkclean_vma+0x10/0x10
[ 1426.451092][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[ 1426.456718][    C0]  ? folio_mapping+0x17f/0x250
[ 1426.461528][    C0]  folio_clear_dirty_for_io+0x219/0x950
[ 1426.467124][    C0]  ? __pfx_folio_clear_dirty_for_io+0x10/0x10
[ 1426.473237][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[ 1426.478833][    C0]  mpage_submit_folio+0x84/0x340
[ 1426.483816][    C0]  mpage_process_page_bufs+0x6d1/0x9d0
[ 1426.489330][    C0]  ? folio_wait_writeback+0xd1/0x100
[ 1426.494647][    C0]  mpage_prepare_extent_to_map+0xecb/0x1860
[ 1426.500570][    C0]  ? kasan_save_track+0x3f/0x80
[ 1426.505452][    C0]  ? __kasan_slab_alloc+0x66/0x80
[ 1426.510610][    C0]  ? kmem_cache_alloc_noprof+0x1d9/0x380
[ 1426.516307][    C0]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[ 1426.522690][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1426.527574][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[ 1426.532993][    C0]  ext4_do_writepages+0xc2a/0x3df0
[ 1426.538149][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 1426.543394][    C0]  ? validate_chain+0x11e/0x5920
[ 1426.548386][    C0]  ? __pfx_ext4_do_writepages+0x10/0x10
[ 1426.553967][    C0]  ? validate_chain+0x11e/0x5920
[ 1426.558959][    C0]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1426.564466][    C0]  ext4_writepages+0x213/0x3c0
[ 1426.569263][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[ 1426.574586][    C0]  ? reacquire_held_locks+0x3eb/0x690
[ 1426.579995][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[ 1426.585307][    C0]  do_writepages+0x35f/0x880
[ 1426.589934][    C0]  ? __pfx_do_writepages+0x10/0x10
[ 1426.595168][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1426.600220][    C0]  ? writeback_sb_inodes+0x595/0x1360
[ 1426.605626][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1426.610670][    C0]  ? do_raw_spin_lock+0x14f/0x370
[ 1426.615756][    C0]  __writeback_single_inode+0x14f/0x10d0
[ 1426.621425][    C0]  ? wbc_attach_and_unlock_inode+0x561/0x580
[ 1426.627440][    C0]  writeback_sb_inodes+0x820/0x1360
[ 1426.632665][    C0]  ? mark_lock+0x9a/0x360
[ 1426.637057][    C0]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1426.642765][    C0]  ? __pfx_move_expired_inodes+0x10/0x10
[ 1426.648430][    C0]  ? do_raw_spin_lock+0x14f/0x370
[ 1426.653497][    C0]  __writeback_inodes_wb+0x11b/0x260
[ 1426.658818][    C0]  wb_writeback+0x427/0xb80
[ 1426.663359][    C0]  ? queue_io+0x371/0x5a0
[ 1426.667729][    C0]  ? __pfx_wb_writeback+0x10/0x10
[ 1426.672821][    C0]  wb_workfn+0xb94/0x1080
[ 1426.677198][    C0]  ? __pfx_wb_workfn+0x10/0x10
[ 1426.682000][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1426.688008][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1426.694383][    C0]  ? process_scheduled_works+0x976/0x1840
[ 1426.700140][    C0]  process_scheduled_works+0xa66/0x1840
[ 1426.705745][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1426.711763][    C0]  ? assign_work+0x364/0x3d0
[ 1426.716395][    C0]  worker_thread+0x870/0xd30
[ 1426.721025][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1426.726081][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1426.731211][    C0]  kthread+0x2f0/0x390
[ 1426.735306][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1426.740432][    C0]  ? __pfx_kthread+0x10/0x10
[ 1426.745061][    C0]  ret_from_fork+0x4b/0x80
[ 1426.749506][    C0]  ? __pfx_kthread+0x10/0x10
[ 1426.754124][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1426.758938][    C0]  </TASK>
[ 1426.762431][    C0] vkms_vblank_simulate: vblank timer overrun