last executing test programs:

3m31.38225761s ago: executing program 3 (id=197):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[0x0, <r2=>0x0], &(0x7f0000000400), 0x0, 0x2, 0x0, 0x0, r1})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000500)={0xb, r2, r1})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/cgroup', 0x0, 0x0)
getdents(r4, &(0x7f00000001c0)=""/240, 0xf0)
getdents64(r4, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000000940)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x6, &(0x7f0000000180)=0x80000001, 0x4)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2e, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffff9d4799345cc2390c675d60c20000030800450000200066000000119078000000000000000000014e20000c907801000000"], 0x0)
r5 = socket(0x10, 0x3, 0x0)
semtimedop(0x0, &(0x7f0000000100)=[{0x1, 0x7fff, 0x1000}, {0x1, 0x0, 0x800}], 0x2, 0x0)
setsockopt$inet_udp_int(r3, 0x11, 0x1, &(0x7f0000000100)=0x10000, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={<r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), r7)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = dup(r10)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000840)={0x1ff, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r12, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000080)="c4417d290ddada01ca48b8a9884315c2c245040f23c00f21f835000002000f23f8c4a2e0f3db0f07d2c74424001e09000000442402e4000000654c0fc72ef3410fc777d365420fc7700066b8502466ef", 0x6e}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r11, r11, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x70, 0x0, 0x0)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010026bd7000fddbdf25040000001400018008000500030000000600010002000000979af225b71b72ecf32b3d3371d2e5e6476305198eba9359c1371bee0070ef7224bcfbb34a02f74269994b8bfcd84734b4506906fa5a17b4eb5f6976140259e19b65337c41"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
sendmsg$IPVS_CMD_DEL_SERVICE(r5, &(0x7f0000000680)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000640)={&(0x7f0000000740)=ANY=[@ANYBLOB="b0000000", @ANYRES16=r8, @ANYBLOB="000425bd7000fedbdf250300000014000180080008000400000700000000000000001c0003800800010000000000080003000100000008000500ac1e000120000380080003000a00000014000200766c616e31000000000000000000000008000600e80f0000080005000300000004018000000001800600040009e9c1518ebf1d7bb04a816e4e2100001c0001800600020008000000070006006468000008000800c4000000080004000000000008000600fd220000"], 0xb0}, 0x1, 0x0, 0x0, 0x8000}, 0x800c001)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'gretap0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x1, {0x60, 0x0, 0x0, r13, {}, {0xf34eaf4269cd1f7b, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x48080)

3m30.361965995s ago: executing program 3 (id=214):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000200)={0xffffffffffffffff}, 0x4)
writev(r0, &(0x7f00000036c0)=[{&(0x7f0000000940)="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", 0xf6f}, {0x0}, {&(0x7f0000003600)}], 0x3)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', 0x0, 0x8000, &(0x7f00000024c0)=ANY=[@ANYBLOB])
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000040)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, &(0x7f00000008c0)}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004d00)='./file1\x00', 0x250942, 0x1cd)
openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, 0xee00, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r3, 0xc004ae02, &(0x7f0000000000)={0x400000000000030d})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r6, 0x89f0, &(0x7f0000000000))
setsockopt$sock_int(r6, 0x1, 0x12, &(0x7f00000002c0)=0x2, 0x4)
ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000000040))
recvfrom$rxrpc(r1, &(0x7f00000000c0)=""/109, 0x6d, 0x10041, &(0x7f0000000140)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e22, @multicast1}}, 0x24)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
socket$netlink(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

3m29.669099088s ago: executing program 3 (id=219):
getdents(0xffffffffffffff9c, &(0x7f0000000000)=""/2, 0x2)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000040)=<r0=>0x0, &(0x7f0000000080)=0x4) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
getdents64(r1, &(0x7f0000000100)=""/68, 0x44) (async)
r2 = accept$phonet_pipe(r1, &(0x7f0000000180), &(0x7f00000001c0)=0x10) (async)
ioctl$XFS_IOC_FD_TO_HANDLE(r1, 0xc038586a, &(0x7f0000000300)={<r3=>r1, &(0x7f0000000200)='\x00', 0x202, &(0x7f0000000240)={@_ha_fsid={[0x5, 0x37]}, {0x6, 0x6a, 0x1, 0x1}}, 0x80000001, &(0x7f0000000280)={@_ha_fsid}, &(0x7f00000002c0)})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000340)="2e45aa67f1dd98ea598c3df720d3986e29b82d64057d09ee194422", 0x1b)
write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000380)={0xac, 0x29, 0x1, {0x3, [{{0x8, 0x1, 0x4}, 0x9, 0x8, 0x7, './file0'}, {{0x1, 0x1, 0x6}, 0x4, 0xe, 0x7, './file0'}, {{0x20, 0x3, 0x1}, 0x40000, 0xde, 0x7, './file0'}, {{0x63, 0x4, 0x8}, 0x8, 0x87, 0xd, './file0/file0'}, {{0x80, 0x0, 0x7}, 0x0, 0x5, 0x7, './file0'}]}}, 0xac) (async)
ioctl$EXT4_IOC_SETFSUUID(r3, 0x4008662c, &(0x7f0000000440)={0x10, 0x0, "a65071be3e0d085f760f626b34ddc4ae"})
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000480)="708bed03ed9c1dbdd6ef47918c050138", 0x10) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001600)={r3, 0x20, &(0x7f00000015c0)={&(0x7f00000004c0)=""/209, 0xd1, 0x0, &(0x7f00000005c0)=""/4096, 0x1000}}, 0x10) (async)
close_range(r2, r1, 0x0) (async)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000001640), 0x3) (async)
quotactl_fd$Q_QUOTAON(r2, 0xffffffff80000200, 0xee01, &(0x7f0000001680)='./file0\x00')
ioctl$SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000001780)={'syztnl0\x00', &(0x7f0000001700)={'ip6tnl0\x00', <r4=>r0, 0x4, 0x2, 0x5, 0x10, 0x0, @mcast1, @private1, 0x20, 0x80, 0x40}})
sendmsg$nl_route_sched(r1, &(0x7f0000001880)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001840)={&(0x7f00000017c0)=@delqdisc={0x80, 0x25, 0x100, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xfff2}, {0xfff2, 0xffff}, {0xc, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}, @qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x2, 0xde, 0x0, 0x3, 0x92cb}, 0x2, 0x0, 0x0, 0xc, 0x6, 0x10, 0x7, 0xd, 0x4, 0x400, {0x8, 0x2, 0x2, 0x80000001, 0x1, 0x2}}}}]}, 0x80}, 0x1, 0x0, 0x0, 0x800}, 0x4008841) (async)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
syz_open_dev$sndpcmp(&(0x7f00000018c0), 0x8, 0x103003)
ioctl$SIOCX25SENDCALLACCPT(r1, 0x89e9)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000001900), 0x301040, 0x0)
ioctl$IOCTL_START_ACCEL_DEV(r5, 0x40096102, &(0x7f0000001c00)={{&(0x7f0000001b80)={'KERNEL\x00', {&(0x7f0000001ac0)=@adf_dec={@format={'Dc', '3', 'BankNumber\x00'}, {0x1}, {&(0x7f0000001a00)=@adf_str={@bank={'Bank', '3', 'InterruptCoalescingTimerNs\x00'}, {"6cf300ebad2d01b2472921104d1ad78f1959c732ee4a5e6ca34640752c05f73d3d54fbee62af8da32bf85b8bdda0f2b80da8c23240db9554af8839ab26b04123"}, {&(0x7f0000001940)=@adf_str={@normal='NumberCyInstances\x00', {"ada6b8f68f4bcb36ca7aa00f6ae0fd8a32fcbfea67bd8b71ed53e35d73c34da98b0e5822215cdf8b6bb7762dbc4c5c64017b6d245c44f18a06768557c52bb906"}}}}}}}}}, 0x7f}) (async)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001c80), r1)
sendmsg$TIPC_CMD_GET_LINKS(r3, &(0x7f0000001d40)={&(0x7f0000001c40), 0xc, &(0x7f0000001d00)={&(0x7f0000001cc0)={0x24, r6, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x2}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x24008815}, 0x84804)
ioctl$TIOCCBRK(r1, 0x5428) (async)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r7, 0x65, 0x4, &(0x7f0000001d80)=0x1, 0x4) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000001dc0), &(0x7f0000001e00)=0xc)
landlock_create_ruleset(&(0x7f0000001e40)={0x800, 0x0, 0x3}, 0x18, 0x2)

3m29.585554398s ago: executing program 3 (id=222):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x30, 0x40, 0x107, 0xfffffefe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x2, 0x0, 0x0, @uid}]}, @nested={0x4, 0x2}]}, 0x30}}, 0x8010)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4}, 0x10}, 0x94)

3m29.531915289s ago: executing program 3 (id=223):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r1)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000003c0)={0x30, r2, 0x1, 0x70bd23, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004801}, 0x40800)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x1, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x1021, 0x800b}, [@IFLA_GROUP={0x8}, @IFLA_MTU={0x8, 0x4, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)

3m29.165886839s ago: executing program 3 (id=230):
socket$rds(0x15, 0x5, 0x0) (async, rerun: 64)
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f00000002c0), 0x2000, 0x0) (rerun: 64)
ioctl$FBIOGET_CON2FBMAP(r0, 0x460f, &(0x7f0000000340)={0x2a, 0x2})
r1 = syz_clone(0xc5000100, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = getpgid(r1)
r3 = syz_pidfd_open(r2, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={'\x00', 0x9, 0xfd, 0x4, 0x8, 0x1, <r4=>r2})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)={0x20, 0x24, 0x107, 0x70bd2e, 0x25dfdbfb, {0x2, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x2}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010) (async, rerun: 32)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r4, 0x0, 0x5001) (async, rerun: 32)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000002080)={0x1f, 0x5, @any, 0x0, 0x1}, 0xe)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000400), &(0x7f0000000480)=0x4) (async)
pidfd_send_signal(r3, 0x11, 0x0, 0x4) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000340)=[@textreal={0x8, 0x0}], 0x1, 0x20, 0x0, 0x0) (async)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x3, 0x3, 0x801, 0x0, 0x0, {0x7, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x40004) (async)
ioctl$KVM_SET_IRQCHIP(r7, 0x4048aec9, &(0x7f0000000740)={0x1, 0x0, @ioapic={0x4, 0x80000001, 0x6, 0x6fc9, 0x0, [{0x0, 0x9, 0x2, '\x00', 0x9}, {0x40, 0x5, 0x70}, {0xff, 0x2, 0x6, '\x00', 0x3}, {0x9, 0x4, 0x10, '\x00', 0xe}, {0xb, 0x8, 0x7f, '\x00', 0x5}, {0x3, 0x2, 0xaf, '\x00', 0x5}, {0x17, 0x3, 0x6, '\x00', 0x8}, {0x5, 0xa7, 0xda}, {0x4, 0xd1, 0x9, '\x00', 0xd}, {0x9, 0xb, 0x8}, {0x8, 0xff, 0xfb, '\x00', 0x8}, {0x8, 0x8, 0x5, '\x00', 0x8}, {0x5, 0x44, 0x5, '\x00', 0x3}, {0x2, 0xbe, 0x1, '\x00', 0x2}, {0x9, 0x1, 0x7, '\x00', 0x3}, {0xf7, 0x9, 0xa, '\x00', 0x8}, {0x2, 0xe, 0x6, '\x00', 0x17}, {0x6, 0x7f, 0x4, '\x00', 0xb}, {0x7, 0x79, 0x4}, {0x6, 0x6, 0xc3, '\x00', 0x4}, {0x4, 0x4, 0x17, '\x00', 0x5}, {0x80, 0x80, 0x4, '\x00', 0x4}, {0x18, 0xb, 0x1, '\x00', 0x6}, {0xb, 0x10, 0xb, '\x00', 0x9}]}}) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x4, [@enum={0x7}, @typedef={0x7, 0x0, 0x0, 0x8, 0x1}, @restrict={0x5}, @decl_tag={0xe, 0x0, 0x0, 0x11, 0x4, 0x7}]}, {0x0, [0x2e, 0x2e]}}, &(0x7f00000004c0)=""/163, 0x50, 0xa3, 0x0, 0xbd, 0x10000}, 0x28) (async, rerun: 32)
r9 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x38, 0x10, 0x49920d862a92153b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x15001}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x14000084}, 0x20004080)

3m29.118531671s ago: executing program 32 (id=230):
socket$rds(0x15, 0x5, 0x0) (async, rerun: 64)
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f00000002c0), 0x2000, 0x0) (rerun: 64)
ioctl$FBIOGET_CON2FBMAP(r0, 0x460f, &(0x7f0000000340)={0x2a, 0x2})
r1 = syz_clone(0xc5000100, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = getpgid(r1)
r3 = syz_pidfd_open(r2, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={'\x00', 0x9, 0xfd, 0x4, 0x8, 0x1, <r4=>r2})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)={0x20, 0x24, 0x107, 0x70bd2e, 0x25dfdbfb, {0x2, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x2}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010) (async, rerun: 32)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r4, 0x0, 0x5001) (async, rerun: 32)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000002080)={0x1f, 0x5, @any, 0x0, 0x1}, 0xe)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000400), &(0x7f0000000480)=0x4) (async)
pidfd_send_signal(r3, 0x11, 0x0, 0x4) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000340)=[@textreal={0x8, 0x0}], 0x1, 0x20, 0x0, 0x0) (async)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x3, 0x3, 0x801, 0x0, 0x0, {0x7, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x40004) (async)
ioctl$KVM_SET_IRQCHIP(r7, 0x4048aec9, &(0x7f0000000740)={0x1, 0x0, @ioapic={0x4, 0x80000001, 0x6, 0x6fc9, 0x0, [{0x0, 0x9, 0x2, '\x00', 0x9}, {0x40, 0x5, 0x70}, {0xff, 0x2, 0x6, '\x00', 0x3}, {0x9, 0x4, 0x10, '\x00', 0xe}, {0xb, 0x8, 0x7f, '\x00', 0x5}, {0x3, 0x2, 0xaf, '\x00', 0x5}, {0x17, 0x3, 0x6, '\x00', 0x8}, {0x5, 0xa7, 0xda}, {0x4, 0xd1, 0x9, '\x00', 0xd}, {0x9, 0xb, 0x8}, {0x8, 0xff, 0xfb, '\x00', 0x8}, {0x8, 0x8, 0x5, '\x00', 0x8}, {0x5, 0x44, 0x5, '\x00', 0x3}, {0x2, 0xbe, 0x1, '\x00', 0x2}, {0x9, 0x1, 0x7, '\x00', 0x3}, {0xf7, 0x9, 0xa, '\x00', 0x8}, {0x2, 0xe, 0x6, '\x00', 0x17}, {0x6, 0x7f, 0x4, '\x00', 0xb}, {0x7, 0x79, 0x4}, {0x6, 0x6, 0xc3, '\x00', 0x4}, {0x4, 0x4, 0x17, '\x00', 0x5}, {0x80, 0x80, 0x4, '\x00', 0x4}, {0x18, 0xb, 0x1, '\x00', 0x6}, {0xb, 0x10, 0xb, '\x00', 0x9}]}}) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x4, [@enum={0x7}, @typedef={0x7, 0x0, 0x0, 0x8, 0x1}, @restrict={0x5}, @decl_tag={0xe, 0x0, 0x0, 0x11, 0x4, 0x7}]}, {0x0, [0x2e, 0x2e]}}, &(0x7f00000004c0)=""/163, 0x50, 0xa3, 0x0, 0xbd, 0x10000}, 0x28) (async, rerun: 32)
r9 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x38, 0x10, 0x49920d862a92153b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x15001}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x14000084}, 0x20004080)

3.634569685s ago: executing program 1 (id=2582):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps_rollup\x00')
read$FUSE(r0, &(0x7f00000040c0)={0x2020}, 0x2020)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)={0x38, r3, 0x903, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x6000, 0x54}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080}, 0x10)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)={0x4c, r5, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x1a, 0x2b}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x56}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_LE_HOST_SUPPORTED={{0x1}}}}, 0x7)

3.575070402s ago: executing program 1 (id=2584):
syz_usb_connect(0x5, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
r1 = memfd_secret(0x80000)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r1, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x20, 0x0, 0x300, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xe, 0x76}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)=""/95)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
madvise(&(0x7f000014d000/0x1000)=nil, 0x1000, 0xc)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$CDROM_LAST_WRITTEN(r5, 0x5395, &(0x7f0000000140))
r6 = accept4$packet(r4, &(0x7f0000000180), &(0x7f00000001c0)=0x14, 0x80000)
r7 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'bridge_slave_0\x00', <r8=>0x0})
landlock_create_ruleset(&(0x7f0000000040), 0x10, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r8, @ANYBLOB="000000000000000010010c8013000c800ca3488008000000000000000800038064001c8005"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
connect$packet(r6, &(0x7f0000000200)={0x11, 0xf5, r8, 0x1, 0x6, 0x6, @broadcast}, 0x14)
connect$unix(r7, &(0x7f0000000880)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
syz_usb_connect$printer(0x1, 0x2d, &(0x7f0000000240)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x8, 0x4b8, 0x202, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x2, 0x30, 0x4, "", [{{0x9, 0x4, 0x0, 0xb, 0x2, 0x7, 0x1, 0x2, 0x5, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x7, 0x3, 0x5}}}}}]}}]}}, &(0x7f0000000800)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x200, 0x7, 0x97, 0x10, 0x8, 0xf}, 0x42, &(0x7f00000002c0)={0x5, 0xf, 0x42, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0xf8, 0x6, 0x2}, @wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x8, 0x8, 0x8, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xb, 0x8f, 0x8, 0xa}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x8, 0x8, 0xd1, 0x7}, @ssp_cap={0x14, 0x10, 0xa, 0x7f, 0x2, 0x1845, 0x1e, 0xffff, [0x0, 0x30]}]}, 0x7, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x801}}, {0x96, &(0x7f0000000400)=@string={0x96, 0x3, "d90d7e9839e6c572b08afd5c53787136b5638413c3c1ac8fa52fc6ec06b4ad6647eed052a9a71e70c9125186f38373b0fca1740c4853fb02fe9307f833c31e3e44972405ab0e1eb152dd9abb227f44b82e61d342ab094f91b910388a0edfc76f74d73308b77ffa67026d88d280ac9fa83cf64e09d43b6d91b57088f2712c45ae58a44da3609fb140decf5218946d0485edd954ac"}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x3001}}, {0x43, &(0x7f0000000500)=ANY=[@ANYBLOB="4303ef69fcb55d78daf15895d7310fd2419d1245fb4e91d2e816ae8d4b32c50d61a1f1e2dfbf3ac23a060d700c00b5e49144deaef55b3933606ae4eb18fd84c1ba0842"]}, {0xf9, &(0x7f0000000580)=@string={0xf9, 0x3, "59515c182af52309db699852f4e611870910aefe92fbcac2a384a307904e6267577ae0bad55eb61f64cd0e42fd2f310d565df3e2776eba0e56b7c6cc1e09a049b1ef230441c3a13d75a48984f4b8f0736d10085d930072906cd24673ecd04526528db7e2e27af8cbd4714b69cec50455cc0618e06d04dc29809b86ac5dc6776b03564a79dd3ea27fd3cfa09dad0930feffcad0b7d29b44e2aebbaccec251dc6b185281fb3b2abf072c55330e0f9a5933d63e267a8d9025dd353120df8e7a7c1f30550dd7b4065959abdb2e1108c8f302cd5acce0c652efa55dc11c1beff5136d6f16b665a2a559ce676a1c3cd444d6353d1e263baa401a"}}, {0x6c, &(0x7f0000000680)=@string={0x6c, 0x3, "2dbf1571e982465df09d562d40a645878eae67ca7786487b710b94589ddf095b56c99c82f6baadb260c1dfeddc22ca3ae532e8bc548509ae73d3ccf160de3197474dd6512b1dd64a1327949212f001e21dd262fcd33ebfb7dd2cbc31cbc74510ad349924e3624b776de1"}}, {0xd4, &(0x7f0000000700)=@string={0xd4, 0x3, "1e97c448cccdf34eb94daeae2d10354a58e767feea1a3fb7a2dec958549ab751ea317189381793fb793fca45572c3a178f6e00b2d81c6f93e209588ec8565fb84d42cf9930661b511403335e83266a99cb33144668518890041549b3a422ed6082b3d125856fc20e1d0f3e1439211b500544117f72fd355c396998d29b4405fe1369f8c94fda00cc27ee9517851416c2c08977a475e67efcf68dc3d487488949087cdaafd0c7b6ccd6e89942e5233010413dec2741bccf1b20ad81ddd6f6b02404a9e79c8598a447f9e426cf418ecd04aafa"}}]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)

3.466255904s ago: executing program 2 (id=2585):
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, &(0x7f0000001300)="92", 0x2)

3.345864021s ago: executing program 4 (id=2590):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000045109acf3d4b488fb17086225191195f62a0fc00000000000000000000000c50f9b4d5785c6bbd6a025b1ff6d4f92d53af0f988a4730c0bcf0776286d9d1f6673c875153777bc9c3016625e48342db8cc94444267919fbbe3824cff488737df2258762e76860af6c80925485d8cca5eb11a1687035230d207f51130b2f8579fa9ef8961da3804f0297fa8ad3a3362c60f26ed2bbf9e59310d75a9892c997642ea2286844f2a449dc9e3ac422fea18cd5008ddd4a470c619256c71e127a4b060bb13ca945ef27517f8a7b65576b789b7b8ec589302e135a516743cbc2effdd0b2557a18dc"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x80)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100))
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000005c0)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r4 = dup3(r3, r2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@flat=@binder={0x73622a85, 0x300, 0x1}, @flat=@weak_binder={0x77622a85, 0x1101, 0x3, 0x30}, @flat=@weak_binder={0x77622a85, 0xb, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002200)={0x34, r1, 0x2799f5eec7981083, 0x70bd28, 0x259fdbfc, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4c810}, 0x20000004)

3.275384197s ago: executing program 4 (id=2591):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(0x0, 0x3, 0x88c02)
syz_usb_disconnect(r1)
close_range(r0, 0xffffffffffffffff, 0x0)

2.165324888s ago: executing program 2 (id=2595):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x121a03, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x81)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x3)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x5c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="12000000010000000400000008"], 0x50)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0xcf50, 0x0, 0x1, 0x9dff, 0x11})
write$binfmt_aout(r3, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0xfffffff9, 0x0, 0xd, "0062007d82000000000000002240f7ffffff00"})
r4 = syz_open_pts(r3, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0x17)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002f00000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r6, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
syz_emit_ethernet(0x7e, &(0x7f0000000540)=ANY=[], 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x7e)

1.974508507s ago: executing program 1 (id=2598):
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000000, 0x31, r0, 0x0)
r1 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, 0x0, 0x0)
ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x8, 0x1000, 0x2, 0x4}})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
syz_emit_ethernet(0x7e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000000ffffffffffff86dd60000002677be57a592b7a73663b51128100481100fe8000000000000000000000000000bbff02000000000000000000000000000100004e22001e90780300000003000000259babe62dad16c7931e975a9798ba40a1caab050706c0ae9f4664466b345e5d548714c390c4e28e2ad04d"], 0x0)

1.886589857s ago: executing program 0 (id=2600):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x894)
r1 = syz_open_dev$usbfs(&(0x7f00000005c0), 0xc, 0x9c1002)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3", 0x8}], 0x1, 0x0, 0x0, 0x840}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)
pipe2$watch_queue(0x0, 0x80)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
read(r5, &(0x7f0000000280)=""/96, 0x60)
close_range(r4, 0xffffffffffffffff, 0x0)
close(0x3)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r6)
sendmsg$NL80211_CMD_NEW_INTERFACE(r6, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="33fafdfffffffcdbdf250700000008000300", @ANYRES32, @ANYBLOB="0c0099000000000067000000140004006361696630000000000000000000000008000500060000000c001780040005"], 0x50}, 0x1, 0x0, 0x0, 0xc804}, 0xc2010)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000a84500000000000000000000000049293f0592809b07912de2d7d6095ae43f55564136b62eef276265220740288816c47e8925444cb6ba5e073a0ebec33bb4dc7d23e6eefa00562d1a5033e06db74d9f6ca4d995a362b5f4bd7a028518729a134b71926225d588d28230578d52af89fbcb9223cae9b8b73b84ecc495905ffc02fc1cb7de1fc3f0c3d9bb8ebd53f198dc7c31e7c8a4268cd2e88d71139777a1e8fa608b0c0ea4b854723f65d6e54e87a9c1ca6f10d8bd1ccbf5280e5a5cff9105a5ea0109ab000a6aed0b", @ANYRES32=0x0, @ANYBLOB="0131010000000000300012800e00010069703665727370616e0000001c000280140005000000000000000000000000000000000104001200"], 0x50}}, 0x0)

1.885152493s ago: executing program 1 (id=2601):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@random="d318316f8822", @broadcast, @void, {@can={0xc, {{0x0, 0x1, 0x1, 0x1}, 0x5, 0x2, 0x0, 0x0, "8e4a91515848ecea"}}}}, &(0x7f0000000040)={0x0, 0x2, [0x54d, 0xe5e, 0x22f, 0x3ad]})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000400)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x2, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x8, 0x7, 0x3}]}}]}, 0x3c}}, 0x2000400c)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040e04074020"], 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)

1.884829127s ago: executing program 4 (id=2602):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x10000, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50}, 0x50)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$FIBMAP(r1, 0x401870c8, &(0x7f0000000040))

1.826100957s ago: executing program 1 (id=2603):
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, &(0x7f0000001300)="92", 0x2)

1.725709816s ago: executing program 0 (id=2604):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r2=>0x0})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f0000000080), 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000c00)=0xc, 0x6, 0x2)
get_mempolicy(0x0, 0x0, 0x3, &(0x7f0000002000/0x2000)=nil, 0x2)
sendto$inet6(r3, &(0x7f00000000c0)='\x00', 0x20000, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote, r2}, 0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000100)={0x2c, r5, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9b4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xa5}]]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@newtfilter={0x24, 0x11, 0x1, 0x70bd27, 0x2000, {0x0, 0x0, 0x74, r2, {0xfffd, 0xfff0}, {0xffe0, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x200088c0)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x8)

1.191773832s ago: executing program 2 (id=2605):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200408cd}, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000080)=0xa43, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x3a)
sendmmsg$inet6(r1, &(0x7f0000000340)=[{{&(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x4008}], 0x6}}], 0x1, 0x0)

1.191483341s ago: executing program 2 (id=2606):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi0\x00', 0x2180, 0x0)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/netfilter\x00')
getdents64(r1, &(0x7f0000000240)=""/44, 0x7a)
r2 = syz_io_uring_setup(0x19d1, &(0x7f0000000280)={0x0, 0x0, 0x400, 0x0, 0xd5}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r3, r4, r5, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0xa, &(0x7f0000000100), 0x1, 0x64})
io_uring_enter(r2, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x0, 0x0, 0x0, 0x7})

1.086172467s ago: executing program 2 (id=2607):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x4361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x4c, 0x2, [@TCA_PIE_LIMIT={0x8, 0x2, 0x1}, @TCA_PIE_TARGET={0x8, 0x1, 0x8}, @TCA_PIE_TARGET={0x8, 0x1, 0x81}, @TCA_PIE_LIMIT={0x8, 0x2, 0x9c}, @TCA_PIE_TUPDATE={0x8, 0x3, 0xa}, @TCA_PIE_TARGET={0x8, 0x1, 0x1}, @TCA_PIE_BETA={0x8, 0x5, 0x14}, @TCA_PIE_BETA={0x8, 0x5, 0x1a}, @TCA_PIE_TUPDATE={0x8, 0x3, 0x5}]}}]}, 0x78}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f0000000240)="800000800000210ee7decd7a00034000", 0x10, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14)

966.061572ms ago: executing program 4 (id=2608):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000100)=0xfffffffd, 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x3, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xb)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000040)=0x1, 0x4)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'})
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='ncpfs\x00', 0x8010, &(0x7f0000000240)='\'\x00')
r6 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0)
ioctl$CDROMEJECT(r6, 0x2202)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfc, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000300)=0x8df, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000002100)={&(0x7f0000000080)=@ipv6_getaddr={0x2c, 0x16, 0x400, 0x70bd2c, 0x25dfdbfe, {0xa, 0x27, 0x0, 0xc8, r7}, [@IFA_LOCAL={0x14, 0x2, @private2}]}, 0x2c}}, 0x24008000)
futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
r8 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r8, 0x541b, &(0x7f0000000340))
ioctl$PTP_EXTTS_REQUEST(0xffffffffffffffff, 0x40103d02, &(0x7f00000000c0)={0x8000, 0x5})
futex(&(0x7f000000cffc)=0xfffffff2, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000300)=@o_path={0x0, r9}, 0x18)
ioctl$SIOCAX25DELUID(r1, 0x89e2, &(0x7f0000000000)={0x3, @bcast})

965.735528ms ago: executing program 2 (id=2609):
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
syz_io_uring_setup(0x88f, &(0x7f00000010c0)={0x0, 0xde63, 0x1, 0x2, 0xbfdffffc}, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
socket$kcm(0x2, 0x200000000000001, 0x106)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7})
openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x100, 0x3, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}}}, 0x24}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='-', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) (fail_nth: 2)

776.292691ms ago: executing program 0 (id=2610):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x54}, 0x1, 0x0, 0x0, 0x4040040}, 0x24044010)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
poll(&(0x7f0000000140)=[{r1, 0x4100}], 0x1, 0x1)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x14, 0x0, &(0x7f00000002c0)=[@increfs_done={0x40106308, 0x1}], 0x0, 0x0, 0x0})
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x0, 0x409dba32, &(0x7f0000000080)})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = openat$ndctl0(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r4, 0xc008640a, &(0x7f0000000140))
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0x6)

696.260953ms ago: executing program 0 (id=2611):
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$cgroup_subtree(r0, 0x0, 0x9)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000000107030d00000000000000000200000614000780080002400000000208000140000000030900010073797a300000000008000540000000020c00024000000000000000021e313957f08050a7d49432f40771e11f7fdfad15f6be4e8c1b0bce67971e041c5b77da3a38ed577b408e6ac62dd50d61a6c5692f3bf5287d9d1962f12a3844418f155d5e8cac6b4cc133c22f32f0b6ad1d4f679acd5f78e430427077ae2e8d0226dd80f422f861d0e863bfeb8749dae30161f182ceb7c2e7b5900dceee9c4f46d3c7dd94fc75447979c947dcc450812b62"], 0x48}, 0x1, 0x0, 0x0, 0xa053}, 0x20800)

695.936759ms ago: executing program 0 (id=2612):
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r1, 0x5000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x3, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0xb, 0x2}, {0x2}, {0x0, 0x2}]}, @const={0x2, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x30]}}, 0x0, 0x4b, 0x0, 0x1, 0x10001}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@metacopy_on}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
setsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @remote, @empty}, 0xc)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f00000001c0))
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f0000000180)=0x6f)
r5 = dup2(r4, r4)
read$FUSE(r5, &(0x7f00000063c0)={0x2020}, 0x2020)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000580)=0x10)
write$dsp(r3, &(0x7f0000000380)="8f02b1145e6308d98e553f07835f9de2b8389279a5becfcec34a3d806185be01242abe00d48cc72f5609a070748b29eb2f75f44e93bda8a5efda9fdb8d81de5cbbff7e635ebc47f0b24291f53d43b66ae3dd06c0069e175964893c027fac58c40a24024b0b942528acd3204bbe5753d7ba65845d9eafd7ea834778c2c99b33f9", 0x80)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

616.108807ms ago: executing program 1 (id=2613):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000003b40)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, r4, &(0x7f000001f000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000000)="b842068ec80f79c666b9800000c00f326635008000000f30658b9299ebf000bfaa80260fc731baf80c66efbafc0c66b8f5ee91dd66efbaf80c66b8c076cd8066efbafc0c66b80000000066ef0f22666466f30f09", 0x54}], 0x1, 0x41, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x6)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r2, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0xdd86, r7}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000080)='O', 0x1}], 0x1}}], 0x1, 0x20040010)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {0xfff2}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}]}, 0x3c}}, 0xc014)

126.096759ms ago: executing program 0 (id=2614):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
syz_usb_connect(0x5, 0x5a8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000940)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x201, 0x7, 0x6, 0x0, 0x0, 0x6}, 0x48, &(0x7f00000002c0)=ANY=[@ANYBLOB="050f48000320100a036501000000f0000000000000c000000030000000c03f0000c03f000020100a006500000000000500cf0000003000ff133f115b3b0d0000c00000ff7f7f00c0be000003100b5256e74afbfd5f851d293d6c83a2371ebbf96420cc87bcb31a5e36d076a0c5bba38b0552d63d559f6c227b3e9571d521bc72f0f58a655fc332c2e1438cb21604779e1c584c29f285c2c9d1902d705b05a2c5749c446461c647c84d6ea00c5edc9291474f45"], 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x42a}}, {0x4, &(0x7f0000000800)=@lang_id={0x4, 0x3, 0x411}}, {0x92, &(0x7f0000000140)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x812}}]})
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)=0x800)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x5bc, 0x8, 0x94, 0xa49}]})
close_range(r1, r0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x0, {0xb}}, 0x14}}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$XFS_IOC_SWAPEXT(r0, 0xc0c0586d, &(0x7f0000000380)={0x0, r1, r0, 0xf5, 0x4, '\x00', {0x7, 0x0, 0xffc0, 0x6, 0x2, 0x3, 0x5, 0x9, {0xffffffff}, {0x8e, 0x2}, {0x10001, 0x7}, 0x5, 0x3, 0x2, 0x5, 0x9, 0x1, 0xd3, 0x5, 0x8001, 0x6, '\x00', 0x4000000, 0x3e7, 0x4f0, 0x5}})
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) (async)
syz_usb_connect(0x5, 0x5a8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000940)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x201, 0x7, 0x6, 0x0, 0x0, 0x6}, 0x48, &(0x7f00000002c0)=ANY=[@ANYBLOB="050f48000320100a036501000000f0000000000000c000000030000000c03f0000c03f000020100a006500000000000500cf0000003000ff133f115b3b0d0000c00000ff7f7f00c0be000003100b5256e74afbfd5f851d293d6c83a2371ebbf96420cc87bcb31a5e36d076a0c5bba38b0552d63d559f6c227b3e9571d521bc72f0f58a655fc332c2e1438cb21604779e1c584c29f285c2c9d1902d705b05a2c5749c446461c647c84d6ea00c5edc9291474f45"], 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x42a}}, {0x4, &(0x7f0000000800)=@lang_id={0x4, 0x3, 0x411}}, {0x92, &(0x7f0000000140)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x812}}]}) (async)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)=0x800) (async)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) (async)
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x5bc, 0x8, 0x94, 0xa49}]}) (async)
close_range(r1, r0, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) (async)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
ioctl$XFS_IOC_SWAPEXT(r0, 0xc0c0586d, &(0x7f0000000380)={0x0, r1, r0, 0xf5, 0x4, '\x00', {0x7, 0x0, 0xffc0, 0x6, 0x2, 0x3, 0x5, 0x9, {0xffffffff}, {0x8e, 0x2}, {0x10001, 0x7}, 0x5, 0x3, 0x2, 0x5, 0x9, 0x1, 0xd3, 0x5, 0x8001, 0x6, '\x00', 0x4000000, 0x3e7, 0x4f0, 0x5}}) (async)

76.235383ms ago: executing program 4 (id=2615):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014a3dcd55c030000000000008500000005000000bf09000000000000c6090100000003e70600000006000000180100002020702500000000002020207b9af8ff00000000ae9116000000000037010000f8ffffffb702000008000000b70300000000000114000000060000005c93000000000000b5030000b68f3f208500000076000000b70000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 4 (id=2616):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x10000, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000, 0x0, 0x6000, 0x0, r2, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$FIBMAP(r3, 0x401870c8, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

  267.936057][T12539]  ? tomoyo_path_number_perm+0x22e/0x580
[  267.936082][T12539]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  267.936127][T12539]  ? find_held_lock+0x2b/0x80
[  267.936142][T12539]  ? __fget_files+0x215/0x3d0
[  267.936159][T12539]  ? hook_file_ioctl_common+0x149/0x410
[  267.936178][T12539]  ? __fget_files+0x215/0x3d0
[  267.936199][T12539]  ? __fget_files+0x21f/0x3d0
[  267.936220][T12539]  security_file_ioctl+0xd3/0x230
[  267.936238][T12539]  __x64_sys_ioctl+0xb7/0x210
[  267.936257][T12539]  do_syscall_64+0x10b/0xf80
[  267.936273][T12539]  ? clear_bhb_loop+0x40/0x90
[  267.936293][T12539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.936310][T12539] RIP: 0033:0x7f9756f9c819
[  267.936326][T12539] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  267.936343][T12539] RSP: 002b:00007f9757f08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  267.936362][T12539] RAX: ffffffffffffffda RBX: 00007f9757215fa0 RCX: 00007f9756f9c819
[  267.936372][T12539] RDX: 00002000000003c0 RSI: 0000000000005412 RDI: 0000000000000003
[  267.936382][T12539] RBP: 00007f9757f08090 R08: 0000000000000000 R09: 0000000000000000
[  267.936392][T12539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.936402][T12539] R13: 00007f9757216038 R14: 00007f9757215fa0 R15: 00007ffcb6419a38
[  267.936425][T12539]  </TASK>
[  267.936433][T12539] ERROR: Out of memory at tomoyo_realpath_from_path.
[  268.421060][T12556] tipc: Started in network mode
[  268.424141][T12556] tipc: Node identity da4eebe8dd78, cluster identity 4711
[  268.429216][T12556] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  268.479753][T12555] tipc: Disabling bearer <eth:syzkaller0>
[  268.690730][T12562] fuse: Bad value for 'fd'
[  268.974807][T12567] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2109'.
[  269.451333][T12586] netlink: 152868 bytes leftover after parsing attributes in process `syz.4.2116'.
[  269.457334][T12586] netlink: Conntrack attr has 4 unknown bytes
[  269.931349][T12597] netlink: 'syz.4.2120': attribute type 4 has an invalid length.
[  269.931345][ T5963] Bluetooth: hci3: unexpected event for opcode 0x2012
[  270.324956][T12607] FAULT_INJECTION: forcing a failure.
[  270.324956][T12607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  270.335374][T12607] CPU: 3 UID: 0 PID: 12607 Comm: syz.2.2123 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  270.335405][T12607] Tainted: [L]=SOFTLOCKUP
[  270.335411][T12607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  270.335422][T12607] Call Trace:
[  270.335428][T12607]  <TASK>
[  270.335436][T12607]  dump_stack_lvl+0x100/0x190
[  270.335464][T12607]  should_fail_ex.cold+0x5/0xa
[  270.335511][T12607]  _copy_to_iter+0x1f3/0x1720
[  270.335540][T12607]  ? __pfx__copy_to_iter+0x10/0x10
[  270.335560][T12607]  ? __pfx_default_wake_function+0x10/0x10
[  270.335685][T12607]  tty_read+0x242/0x550
[  270.335800][T12607]  ? __pfx_tty_read+0x10/0x10
[  270.335826][T12607]  ? get_pid_task+0x106/0x250
[  270.335934][T12607]  ? avc_policy_seqno+0x9/0x20
[  270.335960][T12607]  ? bpf_lsm_file_permission+0x9/0x10
[  270.336058][T12607]  ? security_file_permission+0x76/0x210
[  270.336078][T12607]  ? rw_verify_area+0xce/0x6d0
[  270.336102][T12607]  ? __pfx_tty_read+0x10/0x10
[  270.336127][T12607]  vfs_read+0x825/0xb30
[  270.336146][T12607]  ? __pfx_vfs_read+0x10/0x10
[  270.336159][T12607]  ? find_held_lock+0x2b/0x80
[  270.336187][T12607]  ksys_read+0x12a/0x250
[  270.336203][T12607]  ? __pfx_ksys_read+0x10/0x10
[  270.336221][T12607]  ? rcu_is_watching+0x12/0xc0
[  270.336249][T12607]  do_syscall_64+0x10b/0xf80
[  270.336265][T12607]  ? clear_bhb_loop+0x40/0x90
[  270.336286][T12607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.336301][T12607] RIP: 0033:0x7f89a1d9c819
[  270.336318][T12607] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  270.336333][T12607] RSP: 002b:00007f89a2ba6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  270.336350][T12607] RAX: ffffffffffffffda RBX: 00007f89a2016090 RCX: 00007f89a1d9c819
[  270.336360][T12607] RDX: 000000000000004e RSI: 0000200000001e80 RDI: 0000000000000004
[  270.336370][T12607] RBP: 00007f89a2ba6090 R08: 0000000000000000 R09: 0000000000000000
[  270.336379][T12607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.336389][T12607] R13: 00007f89a2016128 R14: 00007f89a2016090 R15: 00007fff878829e8
[  270.336413][T12607]  </TASK>
[  270.603527][T12626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2132'.
[  271.218376][T12651] fuse: fd is not a fuse device
[  271.281774][   T40] audit: type=1400 audit(1776709726.579:1051): avc:  denied  { read } for  pid=12647 comm="syz.2.2141" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  271.292160][   T40] audit: type=1400 audit(1776709726.579:1052): avc:  denied  { open } for  pid=12647 comm="syz.2.2141" path="/504/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  271.302507][   T40] audit: type=1400 audit(1776709726.579:1053): avc:  denied  { ioctl } for  pid=12647 comm="syz.2.2141" path="/504/file0/file0" dev="fuse" ino=0 ioctlcmd=0x70c8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  271.858846][T12701] syzkaller0: entered promiscuous mode
[  271.862578][T12701] syzkaller0: entered allmulticast mode
[  271.870435][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.876111][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.879082][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.881948][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.885333][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.888753][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.891650][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.894710][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.897798][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.900814][T12701] tc action pedit offset must be on 32 bit boundaries
[  271.904033][T12701] 0: reclassify loop, rule prio 0, protocol 800
[  272.325916][T12719] FAULT_INJECTION: forcing a failure.
[  272.325916][T12719] name failslab, interval 1, probability 0, space 0, times 0
[  272.344756][T12719] CPU: 0 UID: 0 PID: 12719 Comm: syz.0.2168 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.344792][T12719] Tainted: [L]=SOFTLOCKUP
[  272.344799][T12719] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  272.344811][T12719] Call Trace:
[  272.344819][T12719]  <TASK>
[  272.344827][T12719]  dump_stack_lvl+0x100/0x190
[  272.344857][T12719]  should_fail_ex.cold+0x5/0xa
[  272.344913][T12719]  should_failslab+0xc2/0x120
[  272.344934][T12719]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  272.344961][T12719]  ? __alloc_skb+0x140/0x710
[  272.345236][T12719]  ? __alloc_skb+0x5b7/0x710
[  272.345257][T12719]  __alloc_skb+0x140/0x710
[  272.345273][T12719]  ? __alloc_skb+0x5b7/0x710
[  272.345289][T12719]  ? __pfx___alloc_skb+0x10/0x10
[  272.345313][T12719]  netlink_alloc_large_skb+0x69/0x150
[  272.345584][T12719]  netlink_sendmsg+0x680/0xda0
[  272.345612][T12719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.345635][T12719]  ? __might_fault+0x90/0x140
[  272.345746][T12719]  ____sys_sendmsg+0x9e1/0xb70
[  272.345770][T12719]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.345796][T12719]  ? __pfx_____sys_sendmsg+0x10/0x10
[  272.345832][T12719]  ___sys_sendmsg+0x190/0x1e0
[  272.345859][T12719]  ? __pfx____sys_sendmsg+0x10/0x10
[  272.345914][T12719]  __sys_sendmsg+0x170/0x220
[  272.345936][T12719]  ? __pfx___sys_sendmsg+0x10/0x10
[  272.345967][T12719]  ? rcu_is_watching+0x12/0xc0
[  272.345999][T12719]  do_syscall_64+0x10b/0xf80
[  272.346018][T12719]  ? clear_bhb_loop+0x40/0x90
[  272.346042][T12719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.346060][T12719] RIP: 0033:0x7f9756f9c819
[  272.346079][T12719] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  272.346103][T12719] RSP: 002b:00007f9757f08028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  272.346123][T12719] RAX: ffffffffffffffda RBX: 00007f9757215fa0 RCX: 00007f9756f9c819
[  272.346134][T12719] RDX: 00000000200088c0 RSI: 00002000000002c0 RDI: 0000000000000003
[  272.346146][T12719] RBP: 00007f9757f08090 R08: 0000000000000000 R09: 0000000000000000
[  272.346156][T12719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.346166][T12719] R13: 00007f9757216038 R14: 00007f9757215fa0 R15: 00007ffcb6419a38
[  272.346191][T12719]  </TASK>
[  272.499249][T12728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2172'.
[  272.639389][   T40] audit: type=1400 audit(1776709727.939:1054): avc:  denied  { execute } for  pid=12733 comm="syz.0.2175" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  272.880780][T12741] FAULT_INJECTION: forcing a failure.
[  272.880780][T12741] name failslab, interval 1, probability 0, space 0, times 0
[  272.888956][T12741] CPU: 0 UID: 0 PID: 12741 Comm: syz.0.2177 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.888991][T12741] Tainted: [L]=SOFTLOCKUP
[  272.888999][T12741] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  272.889012][T12741] Call Trace:
[  272.889021][T12741]  <TASK>
[  272.889029][T12741]  dump_stack_lvl+0x100/0x190
[  272.889063][T12741]  should_fail_ex.cold+0x5/0xa
[  272.889093][T12741]  ? tomoyo_encode2+0xfb/0x3c0
[  272.889115][T12741]  should_failslab+0xc2/0x120
[  272.889137][T12741]  __kmalloc_noprof+0xe0/0x850
[  272.889166][T12741]  ? d_absolute_path+0x136/0x1b0
[  272.889194][T12741]  tomoyo_encode2+0xfb/0x3c0
[  272.889221][T12741]  tomoyo_encode+0x29/0x50
[  272.889243][T12741]  tomoyo_realpath_from_path+0x18c/0x690
[  272.889272][T12741]  tomoyo_path_number_perm+0x23c/0x580
[  272.889304][T12741]  ? tomoyo_path_number_perm+0x22e/0x580
[  272.889336][T12741]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  272.889394][T12741]  ? find_held_lock+0x2b/0x80
[  272.889416][T12741]  ? __fget_files+0x215/0x3d0
[  272.889440][T12741]  ? hook_file_ioctl_common+0x149/0x410
[  272.889465][T12741]  ? __fget_files+0x215/0x3d0
[  272.889494][T12741]  ? __fget_files+0x21f/0x3d0
[  272.889523][T12741]  security_file_ioctl+0xd3/0x230
[  272.889546][T12741]  __x64_sys_ioctl+0xb7/0x210
[  272.889570][T12741]  do_syscall_64+0x10b/0xf80
[  272.889590][T12741]  ? clear_bhb_loop+0x40/0x90
[  272.889617][T12741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.889655][T12741] RIP: 0033:0x7f9756f9c819
[  272.889675][T12741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  272.889694][T12741] RSP: 002b:00007f9757f08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  272.889715][T12741] RAX: ffffffffffffffda RBX: 00007f9757215fa0 RCX: 00007f9756f9c819
[  272.889728][T12741] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[  272.889741][T12741] RBP: 00007f9757f08090 R08: 0000000000000000 R09: 0000000000000000
[  272.889752][T12741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.889764][T12741] R13: 00007f9757216038 R14: 00007f9757215fa0 R15: 00007ffcb6419a38
[  272.889797][T12741]  </TASK>
[  272.889947][T12741] ERROR: Out of memory at tomoyo_realpath_from_path.
[  272.999850][T12741] input: syz1 as /devices/virtual/input/input45
[  273.131233][T12747] fuse: Unknown parameter 'group_i00000000000000000000'
[  273.332470][    T9] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  273.482293][    T9] usb 5-1: Using ep0 maxpacket: 8
[  273.489818][    T9] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  273.494902][    T9] usb 5-1: config 0 has no interface number 0
[  273.498016][    T9] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  273.503264][    T9] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  273.508151][    T9] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  273.516601][    T9] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  273.533527][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.541453][    T9] usb 5-1: config 0 descriptor??
[  273.553952][    T9] ldusb 5-1:0.55: Interrupt in endpoint not found
[  273.762952][   T24] usb 5-1: USB disconnect, device number 20
[  274.055286][T12789] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2194'.
[  274.069354][T12784] syzkaller0: entered promiscuous mode
[  274.071674][T12784] syzkaller0: entered allmulticast mode
[  274.199803][T12795] FAULT_INJECTION: forcing a failure.
[  274.199803][T12795] name failslab, interval 1, probability 0, space 0, times 0
[  274.206179][T12795] CPU: 1 UID: 0 PID: 12795 Comm: syz.2.2198 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  274.206209][T12795] Tainted: [L]=SOFTLOCKUP
[  274.206214][T12795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  274.206223][T12795] Call Trace:
[  274.206229][T12795]  <TASK>
[  274.206235][T12795]  dump_stack_lvl+0x100/0x190
[  274.206261][T12795]  should_fail_ex.cold+0x5/0xa
[  274.206283][T12795]  ? tomoyo_encode2+0xfb/0x3c0
[  274.206299][T12795]  should_failslab+0xc2/0x120
[  274.206315][T12795]  __kmalloc_noprof+0xe0/0x850
[  274.206340][T12795]  tomoyo_encode2+0xfb/0x3c0
[  274.206359][T12795]  tomoyo_encode+0x29/0x50
[  274.206373][T12795]  tomoyo_realpath_from_path+0x18c/0x690
[  274.206394][T12795]  tomoyo_path_number_perm+0x23c/0x580
[  274.206416][T12795]  ? tomoyo_path_number_perm+0x22e/0x580
[  274.206438][T12795]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  274.206480][T12795]  ? find_held_lock+0x2b/0x80
[  274.206494][T12795]  ? __fget_files+0x215/0x3d0
[  274.206512][T12795]  ? hook_file_ioctl_common+0x149/0x410
[  274.206529][T12795]  ? __fget_files+0x215/0x3d0
[  274.206549][T12795]  ? __fget_files+0x21f/0x3d0
[  274.206569][T12795]  security_file_ioctl+0xd3/0x230
[  274.206585][T12795]  __x64_sys_ioctl+0xb7/0x210
[  274.206601][T12795]  do_syscall_64+0x10b/0xf80
[  274.206618][T12795]  ? clear_bhb_loop+0x40/0x90
[  274.206636][T12795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.206651][T12795] RIP: 0033:0x7f89a1d9c819
[  274.206666][T12795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  274.206681][T12795] RSP: 002b:00007f89a2bc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.206698][T12795] RAX: ffffffffffffffda RBX: 00007f89a2015fa0 RCX: 00007f89a1d9c819
[  274.206707][T12795] RDX: 0000200000000180 RSI: 0000000040086200 RDI: 0000000000000004
[  274.206716][T12795] RBP: 00007f89a2bc7090 R08: 0000000000000000 R09: 0000000000000000
[  274.206725][T12795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.206733][T12795] R13: 00007f89a2016038 R14: 00007f89a2015fa0 R15: 00007fff878829e8
[  274.206753][T12795]  </TASK>
[  274.206772][T12795] ERROR: Out of memory at tomoyo_realpath_from_path.
[  274.407666][T12802] fuse: Unknown parameter 'group_i00000000000000000000'
[  274.842348][   T24] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  275.012633][   T24] usb 6-1: Using ep0 maxpacket: 8
[  275.018365][   T24] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  275.023587][   T24] usb 6-1: config 0 has no interface number 0
[  275.029246][   T24] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  275.035184][   T24] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  275.043080][   T24] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  275.048626][   T24] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  275.052356][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.056944][   T24] usb 6-1: config 0 descriptor??
[  275.063910][   T24] ldusb 6-1:0.55: Interrupt in endpoint not found
[  275.271584][   T24] usb 6-1: USB disconnect, device number 30
[  275.284500][T12829] FAULT_INJECTION: forcing a failure.
[  275.284500][T12829] name failslab, interval 1, probability 0, space 0, times 0
[  275.291016][T12829] CPU: 0 UID: 0 PID: 12829 Comm: syz.2.2210 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  275.291035][T12829] Tainted: [L]=SOFTLOCKUP
[  275.291039][T12829] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  275.291046][T12829] Call Trace:
[  275.291051][T12829]  <TASK>
[  275.291055][T12829]  dump_stack_lvl+0x100/0x190
[  275.291075][T12829]  should_fail_ex.cold+0x5/0xa
[  275.291091][T12829]  ? tomoyo_encode2+0xfb/0x3c0
[  275.291103][T12829]  should_failslab+0xc2/0x120
[  275.291115][T12829]  __kmalloc_noprof+0xe0/0x850
[  275.291131][T12829]  ? d_absolute_path+0x136/0x1b0
[  275.291144][T12829]  tomoyo_encode2+0xfb/0x3c0
[  275.291157][T12829]  tomoyo_encode+0x29/0x50
[  275.291168][T12829]  tomoyo_realpath_from_path+0x18c/0x690
[  275.291183][T12829]  tomoyo_path_number_perm+0x23c/0x580
[  275.291201][T12829]  ? tomoyo_path_number_perm+0x22e/0x580
[  275.291218][T12829]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  275.291248][T12829]  ? find_held_lock+0x2b/0x80
[  275.291259][T12829]  ? __fget_files+0x215/0x3d0
[  275.291271][T12829]  ? hook_file_ioctl_common+0x149/0x410
[  275.291285][T12829]  ? __fget_files+0x215/0x3d0
[  275.291300][T12829]  ? __fget_files+0x21f/0x3d0
[  275.291314][T12829]  security_file_ioctl+0xd3/0x230
[  275.291326][T12829]  __x64_sys_ioctl+0xb7/0x210
[  275.291338][T12829]  do_syscall_64+0x10b/0xf80
[  275.291350][T12829]  ? clear_bhb_loop+0x40/0x90
[  275.291363][T12829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.291378][T12829] RIP: 0033:0x7f89a1d9c819
[  275.291392][T12829] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  275.291406][T12829] RSP: 002b:00007f89a2bc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  275.291422][T12829] RAX: ffffffffffffffda RBX: 00007f89a2015fa0 RCX: 00007f89a1d9c819
[  275.291432][T12829] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  275.291440][T12829] RBP: 00007f89a2bc7090 R08: 0000000000000000 R09: 0000000000000000
[  275.291449][T12829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.291459][T12829] R13: 00007f89a2016038 R14: 00007f89a2015fa0 R15: 00007fff878829e8
[  275.291510][T12829]  </TASK>
[  275.291526][T12829] ERROR: Out of memory at tomoyo_realpath_from_path.
[  275.484510][T12841] FAULT_INJECTION: forcing a failure.
[  275.484510][T12841] name failslab, interval 1, probability 0, space 0, times 0
[  275.490665][T12841] CPU: 2 UID: 0 PID: 12841 Comm: syz.2.2212 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  275.490695][T12841] Tainted: [L]=SOFTLOCKUP
[  275.490702][T12841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  275.490712][T12841] Call Trace:
[  275.490721][T12841]  <TASK>
[  275.490728][T12841]  dump_stack_lvl+0x100/0x190
[  275.490757][T12841]  should_fail_ex.cold+0x5/0xa
[  275.490785][T12841]  should_failslab+0xc2/0x120
[  275.490812][T12841]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  275.490840][T12841]  ? __alloc_skb+0x140/0x710
[  275.490859][T12841]  ? __alloc_skb+0x5b7/0x710
[  275.490880][T12841]  __alloc_skb+0x140/0x710
[  275.490897][T12841]  ? __alloc_skb+0x5b7/0x710
[  275.490914][T12841]  ? __pfx___alloc_skb+0x10/0x10
[  275.490939][T12841]  netlink_alloc_large_skb+0x69/0x150
[  275.490968][T12841]  netlink_sendmsg+0x680/0xda0
[  275.490998][T12841]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.491021][T12841]  ? __might_fault+0x90/0x140
[  275.491056][T12841]  ____sys_sendmsg+0x9e1/0xb70
[  275.491079][T12841]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.491106][T12841]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.491141][T12841]  ___sys_sendmsg+0x190/0x1e0
[  275.491169][T12841]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.491222][T12841]  __sys_sendmsg+0x170/0x220
[  275.491244][T12841]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.491275][T12841]  ? rcu_is_watching+0x12/0xc0
[  275.491305][T12841]  do_syscall_64+0x10b/0xf80
[  275.491324][T12841]  ? clear_bhb_loop+0x40/0x90
[  275.491349][T12841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.491368][T12841] RIP: 0033:0x7f89a1d9c819
[  275.491386][T12841] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  275.491403][T12841] RSP: 002b:00007f89a2ba6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.491422][T12841] RAX: ffffffffffffffda RBX: 00007f89a2016090 RCX: 00007f89a1d9c819
[  275.491435][T12841] RDX: 0000000000004890 RSI: 00002000000003c0 RDI: 0000000000000005
[  275.491447][T12841] RBP: 00007f89a2ba6090 R08: 0000000000000000 R09: 0000000000000000
[  275.491456][T12841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.491490][T12841] R13: 00007f89a2016128 R14: 00007f89a2016090 R15: 00007fff878829e8
[  275.491515][T12841]  </TASK>
[  276.045832][T12860] netlink: 'syz.1.2220': attribute type 1 has an invalid length.
[  276.756927][T12824] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2209'.
[  277.092156][T11624] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  277.119717][ T5963] Bluetooth: hci3: unexpected event for opcode 0x2040
[  277.242326][T11624] usb 5-1: Using ep0 maxpacket: 8
[  277.249226][T11624] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  277.262450][T11624] usb 5-1: config 0 has no interface number 0
[  277.264868][T11624] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  277.269100][T11624] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  277.282163][T11624] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  277.288962][T12894] overlayfs: failed to resolve './cgroup': -2
[  277.292385][T11624] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  277.302094][T11624] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  277.312347][T11624] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  277.322135][T11624] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.332699][T11624] usb 5-1: config 0 descriptor??
[  277.352425][T11624] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  277.353196][T12896] fuse: fd is not a fuse device
[  277.422243][    T9] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  277.432868][ T7163] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  277.493021][T12902] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2238'.
[  277.545606][T12869] ldusb 5-1:0.55: Couldn't submit interrupt_in_urb -90
[  277.554819][   T29] usb 5-1: USB disconnect, device number 21
[  277.563849][   T29] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  277.577915][    T9] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  277.587367][    T9] usb 7-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  277.590999][    T9] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  277.595960][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.602992][ T7163] usb 6-1: Using ep0 maxpacket: 8
[  277.608222][ T7163] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  277.615119][ T7163] usb 6-1: config 0 has no interface number 0
[  277.622409][ T7163] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  277.628512][ T7163] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  277.634414][ T7163] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.646733][ T7163] usb 6-1: config 0 descriptor??
[  277.653377][ T7163] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  277.807933][    T9] usb 7-1: USB disconnect, device number 23
[  277.854942][ T6032] usb 6-1: USB disconnect, device number 31
[  278.143443][T12910] program syz.0.2242 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  278.254035][T12915] fuse: Unknown parameter 'group_id00000000000000000000'
[  278.707902][T12933] netlink: 'syz.1.2252': attribute type 1 has an invalid length.
[  278.711782][T12933] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2252'.
[  278.730582][T12940] xt_hashlimit: size too large, truncated to 1048576
[  279.202192][ T7163] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  279.242364][T12962] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2259'.
[  279.365030][ T7163] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  279.370187][ T7163] usb 7-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  279.378091][ T7163] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  279.382395][ T7163] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.393958][T12970] FAULT_INJECTION: forcing a failure.
[  279.393958][T12970] name failslab, interval 1, probability 0, space 0, times 0
[  279.402279][T12970] CPU: 1 UID: 0 PID: 12970 Comm: syz.0.2263 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.402315][T12970] Tainted: [L]=SOFTLOCKUP
[  279.402322][T12970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  279.402333][T12970] Call Trace:
[  279.402341][T12970]  <TASK>
[  279.402350][T12970]  dump_stack_lvl+0x100/0x190
[  279.402380][T12970]  should_fail_ex.cold+0x5/0xa
[  279.402407][T12970]  ? input_mt_init_slots+0x100/0x540
[  279.402528][T12970]  should_failslab+0xc2/0x120
[  279.402548][T12970]  __kmalloc_noprof+0xe0/0x850
[  279.402581][T12970]  input_mt_init_slots+0x100/0x540
[  279.402603][T12970]  uinput_ioctl_handler.isra.0+0x1745/0x1d20
[  279.402712][T12970]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  279.402731][T12970]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  279.402761][T12970]  ? __fget_files+0x215/0x3d0
[  279.402792][T12970]  ? selinux_file_ioctl+0x13b/0x290
[  279.402811][T12970]  ? selinux_file_ioctl+0xb6/0x290
[  279.402837][T12970]  ? __pfx_uinput_ioctl+0x10/0x10
[  279.402858][T12970]  __x64_sys_ioctl+0x18e/0x210
[  279.402879][T12970]  do_syscall_64+0x10b/0xf80
[  279.402899][T12970]  ? clear_bhb_loop+0x40/0x90
[  279.402923][T12970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.402943][T12970] RIP: 0033:0x7f9756f9c819
[  279.402960][T12970] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.402978][T12970] RSP: 002b:00007f9757f08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  279.402999][T12970] RAX: ffffffffffffffda RBX: 00007f9757215fa0 RCX: 00007f9756f9c819
[  279.403012][T12970] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[  279.403023][T12970] RBP: 00007f9757f08090 R08: 0000000000000000 R09: 0000000000000000
[  279.403034][T12970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.403045][T12970] R13: 00007f9757216038 R14: 00007f9757215fa0 R15: 00007ffcb6419a38
[  279.403072][T12970]  </TASK>
[  279.407489][T12972] FAULT_INJECTION: forcing a failure.
[  279.407489][T12972] name failslab, interval 1, probability 0, space 0, times 0
[  279.448166][T12974] syzkaller0: entered promiscuous mode
[  279.450427][T12972] CPU: 2 UID: 0 PID: 12972 Comm: syz.1.2264 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.450447][T12972] Tainted: [L]=SOFTLOCKUP
[  279.450452][T12972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  279.450458][T12972] Call Trace:
[  279.450463][T12972]  <TASK>
[  279.450468][T12972]  dump_stack_lvl+0x100/0x190
[  279.450487][T12972]  should_fail_ex.cold+0x5/0xa
[  279.450504][T12972]  should_failslab+0xc2/0x120
[  279.450516][T12972]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  279.450534][T12972]  ? __alloc_skb+0x140/0x710
[  279.450545][T12972]  ? __alloc_skb+0x5b7/0x710
[  279.450560][T12972]  __alloc_skb+0x140/0x710
[  279.450570][T12972]  ? __alloc_skb+0x5b7/0x710
[  279.450580][T12972]  ? __pfx___alloc_skb+0x10/0x10
[  279.450594][T12972]  netlink_alloc_large_skb+0x69/0x150
[  279.450612][T12972]  netlink_sendmsg+0x680/0xda0
[  279.450630][T12972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.450644][T12972]  ? __might_fault+0x90/0x140
[  279.450664][T12972]  ____sys_sendmsg+0x9e1/0xb70
[  279.450679][T12972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.450694][T12972]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.450715][T12972]  ___sys_sendmsg+0x190/0x1e0
[  279.450731][T12972]  ? __pfx____sys_sendmsg+0x10/0x10
[  279.450761][T12972]  __sys_sendmsg+0x170/0x220
[  279.450774][T12972]  ? __pfx___sys_sendmsg+0x10/0x10
[  279.450791][T12972]  ? rcu_is_watching+0x12/0xc0
[  279.450810][T12972]  do_syscall_64+0x10b/0xf80
[  279.450822][T12972]  ? clear_bhb_loop+0x40/0x90
[  279.450835][T12972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.450941][T12972] RIP: 0033:0x7f58b9d9c819
[  279.450954][T12972] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.450965][T12972] RSP: 002b:00007f58bace7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  279.450982][T12972] RAX: ffffffffffffffda RBX: 00007f58ba015fa0 RCX: 00007f58b9d9c819
[  279.450992][T12972] RDX: 0000000004008800 RSI: 00002000000002c0 RDI: 0000000000000004
[  279.450998][T12972] RBP: 00007f58bace7090 R08: 0000000000000000 R09: 0000000000000000
[  279.451007][T12972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.451016][T12972] R13: 00007f58ba016038 R14: 00007f58ba015fa0 R15: 00007ffe3cb9bd28
[  279.451035][T12972]  </TASK>
[  279.593379][ T7163] usb 7-1: USB disconnect, device number 24
[  279.594437][T12974] syzkaller0: entered allmulticast mode
[  279.654076][T12984] FAULT_INJECTION: forcing a failure.
[  279.654076][T12984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.660477][T12984] CPU: 1 UID: 0 PID: 12984 Comm: syz.1.2269 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.660508][T12984] Tainted: [L]=SOFTLOCKUP
[  279.660514][T12984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  279.660524][T12984] Call Trace:
[  279.660531][T12984]  <TASK>
[  279.660538][T12984]  dump_stack_lvl+0x100/0x190
[  279.660566][T12984]  should_fail_ex.cold+0x5/0xa
[  279.660589][T12984]  _copy_to_user+0x32/0xd0
[  279.660610][T12984]  simple_read_from_buffer+0xcb/0x170
[  279.660632][T12984]  proc_fail_nth_read+0x1af/0x230
[  279.660658][T12984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  279.660685][T12984]  ? rw_verify_area+0xce/0x6d0
[  279.660708][T12984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  279.660733][T12984]  vfs_read+0x1e4/0xb30
[  279.660752][T12984]  ? __pfx_vfs_read+0x10/0x10
[  279.660767][T12984]  ? __fget_files+0x215/0x3d0
[  279.660790][T12984]  ? __fget_files+0x21f/0x3d0
[  279.660814][T12984]  ksys_read+0x12a/0x250
[  279.660829][T12984]  ? __pfx_ksys_read+0x10/0x10
[  279.660846][T12984]  ? rcu_is_watching+0x12/0xc0
[  279.660872][T12984]  do_syscall_64+0x10b/0xf80
[  279.660889][T12984]  ? clear_bhb_loop+0x40/0x90
[  279.660908][T12984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.660924][T12984] RIP: 0033:0x7f58b9d5d04e
[  279.660938][T12984] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  279.660953][T12984] RSP: 002b:00007f58bace6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  279.660970][T12984] RAX: ffffffffffffffda RBX: 00007f58bace76c0 RCX: 00007f58b9d5d04e
[  279.660979][T12984] RDX: 000000000000000f RSI: 00007f58bace70a0 RDI: 0000000000000004
[  279.660988][T12984] RBP: 00007f58bace7090 R08: 0000000000000000 R09: 0000000000000000
[  279.660997][T12984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.661006][T12984] R13: 00007f58ba016038 R14: 00007f58ba015fa0 R15: 00007ffe3cb9bd28
[  279.661025][T12984]  </TASK>
[  279.795762][T12989] xt_hashlimit: size too large, truncated to 1048576
[  280.050978][   T40] audit: type=1400 audit(1776709735.349:1055): avc:  denied  { mount } for  pid=13000 comm="syz.0.2276" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  280.069581][T13007] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2277'.
[  280.274085][ T7163] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  280.288785][T13019] FAULT_INJECTION: forcing a failure.
[  280.288785][T13019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.295262][T13019] CPU: 1 UID: 0 PID: 13019 Comm: syz.0.2281 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  280.295292][T13019] Tainted: [L]=SOFTLOCKUP
[  280.295299][T13019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  280.295310][T13019] Call Trace:
[  280.295318][T13019]  <TASK>
[  280.295325][T13019]  dump_stack_lvl+0x100/0x190
[  280.295353][T13019]  should_fail_ex.cold+0x5/0xa
[  280.295380][T13019]  _copy_from_user+0x2e/0xd0
[  280.295403][T13019]  dma_buf_ioctl+0x57b/0x8a0
[  280.295538][T13019]  ? __pfx_dma_buf_ioctl+0x10/0x10
[  280.295562][T13019]  ? __fget_files+0x215/0x3d0
[  280.295583][T13019]  ? hook_file_ioctl_common+0x149/0x410
[  280.295613][T13019]  ? selinux_file_ioctl+0x13b/0x290
[  280.295632][T13019]  ? selinux_file_ioctl+0xb6/0x290
[  280.295652][T13019]  ? __pfx_dma_buf_ioctl+0x10/0x10
[  280.295674][T13019]  __x64_sys_ioctl+0x18e/0x210
[  280.295695][T13019]  do_syscall_64+0x10b/0xf80
[  280.295713][T13019]  ? clear_bhb_loop+0x40/0x90
[  280.295736][T13019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.295754][T13019] RIP: 0033:0x7f9756f9c819
[  280.295772][T13019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  280.295787][T13019] RSP: 002b:00007f9757f08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  280.295808][T13019] RAX: ffffffffffffffda RBX: 00007f9757215fa0 RCX: 00007f9756f9c819
[  280.295825][T13019] RDX: 0000200000000180 RSI: 0000000040086200 RDI: 0000000000000004
[  280.295835][T13019] RBP: 00007f9757f08090 R08: 0000000000000000 R09: 0000000000000000
[  280.295847][T13019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.295857][T13019] R13: 00007f9757216038 R14: 00007f9757215fa0 R15: 00007ffcb6419a38
[  280.295880][T13019]  </TASK>
[  280.434471][ T7163] usb 6-1: Using ep0 maxpacket: 8
[  280.446559][ T7163] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  280.452320][ T7163] usb 6-1: config 0 has no interface number 0
[  280.457094][ T7163] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  280.465746][ T7163] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  280.470136][ T7163] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  280.476474][ T7163] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  280.480756][ T7163] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  280.486464][ T7163] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  280.490464][ T7163] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.496844][ T7163] usb 6-1: config 0 descriptor??
[  280.520230][ T7163] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  280.549712][T13036] netlink: 208240 bytes leftover after parsing attributes in process `syz.4.2289'.
[  280.712575][T11624] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  280.713203][T13004] ldusb 6-1:0.55: Couldn't submit interrupt_in_urb -90
[  280.722883][ T6032] usb 6-1: USB disconnect, device number 32
[  280.735623][ T6032] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  280.863555][T11624] usb 7-1: Using ep0 maxpacket: 8
[  280.871389][T11624] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  280.875787][T11624] usb 7-1: config 0 has no interface number 0
[  280.878562][T11624] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  280.883136][T11624] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  280.887124][T11624] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.896706][T11624] usb 7-1: config 0 descriptor??
[  280.907000][T11624] iowarrior 7-1:0.1: no interrupt-in endpoint found
[  280.963498][ T5976] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  280.971530][ T5976] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  280.979868][ T5976] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  280.984844][ T5976] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  280.994259][ T5976] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  281.061761][ T7928] bridge0: port 3(syz_tun) entered disabled state
[  281.090860][ T7928] syz_tun (unregistering): left allmulticast mode
[  281.093902][ T7928] syz_tun (unregistering): left promiscuous mode
[  281.097037][ T7928] bridge0: port 3(syz_tun) entered disabled state
[  281.107020][T11624] usb 7-1: USB disconnect, device number 25
[  281.279366][T13058] chnl_net:caif_netlink_parms(): no params data found
[  281.344929][   T40] audit: type=1400 audit(1776709736.649:1056): avc:  denied  { getopt } for  pid=13072 comm="syz.1.2302" lport=55897 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  281.379704][T13058] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.384807][T13058] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.388228][T13058] bridge_slave_0: entered allmulticast mode
[  281.392780][T13058] bridge_slave_0: entered promiscuous mode
[  281.397965][T13058] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.401204][T13058] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.405952][T13058] bridge_slave_1: entered allmulticast mode
[  281.410360][T13058] bridge_slave_1: entered promiscuous mode
[  281.437275][T13058] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  281.443938][T13058] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  281.455267][T13085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2306'.
[  281.471926][T13058] team0: Port device team_slave_0 added
[  281.476601][T13058] team0: Port device team_slave_1 added
[  281.497635][T13058] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.500289][T13058] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  281.513341][T13058] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.521946][T13058] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.525575][T13058] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  281.536559][T13058] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.585515][T13095] FAULT_INJECTION: forcing a failure.
[  281.585515][T13095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.591239][T13095] CPU: 0 UID: 0 PID: 13095 Comm: syz.1.2311 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.591270][T13095] Tainted: [L]=SOFTLOCKUP
[  281.591276][T13095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  281.591287][T13095] Call Trace:
[  281.591297][T13095]  <TASK>
[  281.591308][T13095]  dump_stack_lvl+0x100/0x190
[  281.591336][T13095]  should_fail_ex.cold+0x5/0xa
[  281.591361][T13095]  _copy_to_iter+0x1f3/0x1720
[  281.591386][T13095]  ? __pfx__copy_to_iter+0x10/0x10
[  281.591407][T13095]  ? __pfx_default_wake_function+0x10/0x10
[  281.591460][T13095]  tty_read+0x242/0x550
[  281.591493][T13095]  ? __pfx_tty_read+0x10/0x10
[  281.591518][T13095]  ? get_pid_task+0x106/0x250
[  281.591537][T13095]  ? avc_policy_seqno+0x9/0x20
[  281.591561][T13095]  ? bpf_lsm_file_permission+0x9/0x10
[  281.591586][T13095]  ? security_file_permission+0x76/0x210
[  281.591606][T13095]  ? rw_verify_area+0xce/0x6d0
[  281.591632][T13095]  ? __pfx_tty_read+0x10/0x10
[  281.591657][T13095]  vfs_read+0x825/0xb30
[  281.591677][T13095]  ? __pfx_vfs_read+0x10/0x10
[  281.591692][T13095]  ? find_held_lock+0x2b/0x80
[  281.591723][T13095]  ksys_read+0x12a/0x250
[  281.591741][T13095]  ? __pfx_ksys_read+0x10/0x10
[  281.591759][T13095]  ? rcu_is_watching+0x12/0xc0
[  281.591787][T13095]  do_syscall_64+0x10b/0xf80
[  281.591804][T13095]  ? clear_bhb_loop+0x40/0x90
[  281.591831][T13095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.591849][T13095] RIP: 0033:0x7f58b9d9c819
[  281.591866][T13095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.591882][T13095] RSP: 002b:00007f58bacc6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  281.591900][T13095] RAX: ffffffffffffffda RBX: 00007f58ba016090 RCX: 00007f58b9d9c819
[  281.591911][T13095] RDX: 000000000000004e RSI: 0000200000001e80 RDI: 0000000000000004
[  281.591921][T13095] RBP: 00007f58bacc6090 R08: 0000000000000000 R09: 0000000000000000
[  281.591930][T13095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.591940][T13095] R13: 00007f58ba016128 R14: 00007f58ba016090 R15: 00007ffe3cb9bd28
[  281.591963][T13095]  </TASK>
[  281.749027][T13058] hsr_slave_0: entered promiscuous mode
[  281.751752][T13058] hsr_slave_1: entered promiscuous mode
[  281.756396][T13058] debugfs: 'hsr0' already exists in 'hsr'
[  281.759002][T13058] Cannot create hsr debugfs directory
[  281.901166][T13105] random: crng reseeded on system resumption
[  282.222239][   T29] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  282.382258][   T29] usb 7-1: Using ep0 maxpacket: 8
[  282.385959][T13121] netlink: 'syz.4.2324': attribute type 3 has an invalid length.
[  282.387649][   T29] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  282.396154][   T29] usb 7-1: config 0 has no interface number 0
[  282.402707][   T29] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  282.407159][   T29] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  282.414909][   T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.432628][   T29] usb 7-1: config 0 descriptor??
[  282.440202][T13124] xt_hashlimit: size too large, truncated to 1048576
[  282.444153][   T29] iowarrior 7-1:0.1: no interrupt-in endpoint found
[  282.563060][T13058] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  282.569440][T13058] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  282.573514][T13058] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  282.579956][T13058] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  282.583944][T13058] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  282.591392][T13058] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  282.596367][T13058] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  282.602585][T13058] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  282.659168][   T29] usb 7-1: USB disconnect, device number 26
[  282.689021][T13058] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.706678][T13058] 8021q: adding VLAN 0 to HW filter on device team0
[  282.715991][ T8295] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.719819][ T8295] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.730886][ T8295] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.734138][ T8295] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.921323][T13058] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.957045][T13058] veth0_vlan: entered promiscuous mode
[  282.969563][T13058] veth1_vlan: entered promiscuous mode
[  283.006134][T13058] veth0_macvtap: entered promiscuous mode
[  283.014165][T13058] veth1_macvtap: entered promiscuous mode
[  283.031024][T13058] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.043402][T13058] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.054338][ T8295] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.058631][ T8295] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.063278][ T8295] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.068362][ T8295] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.085517][ T5963] Bluetooth: hci4: command tx timeout
[  283.165258][ T8309] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.177665][ T8309] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.219058][ T8292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.229004][ T8292] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.313310][T13148] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2329'.
[  283.414813][T13154] kAFS: unable to lookup cell 'syz1'
[  283.448641][T13159] FAULT_INJECTION: forcing a failure.
[  283.448641][T13159] name failslab, interval 1, probability 0, space 0, times 0
[  283.459255][T13159] CPU: 1 UID: 0 PID: 13159 Comm: syz.2.2333 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  283.459278][T13159] Tainted: [L]=SOFTLOCKUP
[  283.459282][T13159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  283.459290][T13159] Call Trace:
[  283.459295][T13159]  <TASK>
[  283.459300][T13159]  dump_stack_lvl+0x100/0x190
[  283.459342][T13159]  should_fail_ex.cold+0x5/0xa
[  283.459360][T13159]  ? tomoyo_encode2+0xfb/0x3c0
[  283.459372][T13159]  should_failslab+0xc2/0x120
[  283.459386][T13159]  __kmalloc_noprof+0xe0/0x850
[  283.459406][T13159]  tomoyo_encode2+0xfb/0x3c0
[  283.459421][T13159]  tomoyo_encode+0x29/0x50
[  283.459467][T13159]  tomoyo_realpath_from_path+0x18c/0x690
[  283.459492][T13159]  tomoyo_path_number_perm+0x23c/0x580
[  283.459520][T13159]  ? tomoyo_path_number_perm+0x22e/0x580
[  283.459550][T13159]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  283.459594][T13159]  ? find_held_lock+0x2b/0x80
[  283.459605][T13159]  ? __fget_files+0x215/0x3d0
[  283.459620][T13159]  ? hook_file_ioctl_common+0x149/0x410
[  283.459635][T13159]  ? __fget_files+0x215/0x3d0
[  283.459651][T13159]  ? __fget_files+0x21f/0x3d0
[  283.459670][T13159]  security_file_ioctl+0xd3/0x230
[  283.459687][T13159]  __x64_sys_ioctl+0xb7/0x210
[  283.459704][T13159]  do_syscall_64+0x10b/0xf80
[  283.459719][T13159]  ? clear_bhb_loop+0x40/0x90
[  283.459739][T13159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.459756][T13159] RIP: 0033:0x7f89a1d9c819
[  283.459769][T13159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  283.459780][T13159] RSP: 002b:00007f89a2bc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  283.459793][T13159] RAX: ffffffffffffffda RBX: 00007f89a2015fa0 RCX: 00007f89a1d9c819
[  283.459800][T13159] RDX: 0000200000000040 RSI: 00000000000089f2 RDI: 0000000000000004
[  283.459813][T13159] RBP: 00007f89a2bc7090 R08: 0000000000000000 R09: 0000000000000000
[  283.459820][T13159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.459826][T13159] R13: 00007f89a2016038 R14: 00007f89a2015fa0 R15: 00007fff878829e8
[  283.459841][T13159]  </TASK>
[  283.459883][T13159] ERROR: Out of memory at tomoyo_realpath_from_path.
[  283.488056][   T40] audit: type=1400 audit(1776709738.789:1057): avc:  denied  { ioctl } for  pid=13161 comm="syz.4.2334" path="socket:[41519]" dev="sockfs" ino=41519 ioctlcmd=0xf509 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  283.683728][T13174] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2332'.
[  283.692950][T13174] netlink: 'syz.0.2332': attribute type 1 has an invalid length.
[  283.696884][T13174] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2332'.
[  283.779745][T13178] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2340'.
[  283.832517][   T29] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  284.002147][   T29] usb 6-1: Using ep0 maxpacket: 8
[  284.006345][   T29] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  284.010409][   T29] usb 6-1: config 0 has no interface number 0
[  284.014229][   T29] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  284.018573][   T29] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  284.022780][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.029650][   T29] usb 6-1: config 0 descriptor??
[  284.035651][   T29] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  284.236661][ T1475] usb 6-1: USB disconnect, device number 33
[  284.381853][T13203] FAULT_INJECTION: forcing a failure.
[  284.381853][T13203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.387932][T13203] CPU: 3 UID: 0 PID: 13203 Comm: syz.0.2348 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.387965][T13203] Tainted: [L]=SOFTLOCKUP
[  284.387972][T13203] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  284.387983][T13203] Call Trace:
[  284.387990][T13203]  <TASK>
[  284.387998][T13203]  dump_stack_lvl+0x100/0x190
[  284.388031][T13203]  should_fail_ex.cold+0x5/0xa
[  284.388055][T13203]  _copy_to_user+0x32/0xd0
[  284.388080][T13203]  simple_read_from_buffer+0xcb/0x170
[  284.388105][T13203]  proc_fail_nth_read+0x1af/0x230
[  284.388138][T13203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.388165][T13203]  ? rw_verify_area+0xce/0x6d0
[  284.388189][T13203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.388218][T13203]  vfs_read+0x1e4/0xb30
[  284.388239][T13203]  ? __pfx_vfs_read+0x10/0x10
[  284.388259][T13203]  ? __fget_files+0x215/0x3d0
[  284.388290][T13203]  ? __fget_files+0x21f/0x3d0
[  284.388317][T13203]  ksys_read+0x12a/0x250
[  284.388334][T13203]  ? __pfx_ksys_read+0x10/0x10
[  284.388359][T13203]  do_syscall_64+0x10b/0xf80
[  284.388377][T13203]  ? clear_bhb_loop+0x40/0x90
[  284.388398][T13203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.388417][T13203] RIP: 0033:0x7fbe33b5d04e
[  284.388436][T13203] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  284.388452][T13203] RSP: 002b:00007fbe34a61fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  284.388471][T13203] RAX: ffffffffffffffda RBX: 00007fbe34a626c0 RCX: 00007fbe33b5d04e
[  284.388481][T13203] RDX: 000000000000000f RSI: 00007fbe34a620a0 RDI: 0000000000000006
[  284.388491][T13203] RBP: 00007fbe34a62090 R08: 0000000000000000 R09: 0000000000000000
[  284.388499][T13203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.388508][T13203] R13: 00007fbe33e16038 R14: 00007fbe33e15fa0 R15: 00007ffffb66d778
[  284.388528][T13203]  </TASK>
[  284.526508][T13205] FAULT_INJECTION: forcing a failure.
[  284.526508][T13205] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.533262][T13205] CPU: 0 UID: 0 PID: 13205 Comm: syz.0.2349 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.533295][T13205] Tainted: [L]=SOFTLOCKUP
[  284.533301][T13205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  284.533311][T13205] Call Trace:
[  284.533318][T13205]  <TASK>
[  284.533326][T13205]  dump_stack_lvl+0x100/0x190
[  284.533354][T13205]  should_fail_ex.cold+0x5/0xa
[  284.533379][T13205]  _copy_from_iter+0x1f4/0x1690
[  284.533404][T13205]  ? __asan_memset+0x23/0x50
[  284.533429][T13205]  ? __pfx__copy_from_iter+0x10/0x10
[  284.533449][T13205]  ? __pfx___alloc_skb+0x10/0x10
[  284.533478][T13205]  netlink_sendmsg+0x808/0xda0
[  284.533508][T13205]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.533530][T13205]  ? __might_fault+0x90/0x140
[  284.533564][T13205]  ____sys_sendmsg+0x9e1/0xb70
[  284.533586][T13205]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.533612][T13205]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.533646][T13205]  ___sys_sendmsg+0x190/0x1e0
[  284.533673][T13205]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.533726][T13205]  __sys_sendmsg+0x170/0x220
[  284.533746][T13205]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.533775][T13205]  ? rcu_is_watching+0x12/0xc0
[  284.533806][T13205]  do_syscall_64+0x10b/0xf80
[  284.533824][T13205]  ? clear_bhb_loop+0x40/0x90
[  284.533844][T13205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.533861][T13205] RIP: 0033:0x7fbe33b9c819
[  284.533876][T13205] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  284.533891][T13205] RSP: 002b:00007fbe34a62028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.533908][T13205] RAX: ffffffffffffffda RBX: 00007fbe33e15fa0 RCX: 00007fbe33b9c819
[  284.533918][T13205] RDX: 0000000020000000 RSI: 0000200000001040 RDI: 0000000000000003
[  284.533928][T13205] RBP: 00007fbe34a62090 R08: 0000000000000000 R09: 0000000000000000
[  284.533938][T13205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.533947][T13205] R13: 00007fbe33e16038 R14: 00007fbe33e15fa0 R15: 00007ffffb66d778
[  284.533969][T13205]  </TASK>
[  284.840031][   T40] audit: type=1400 audit(1776709740.139:1058): avc:  denied  { create } for  pid=13214 comm="syz.1.2354" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  284.908682][T13222] FAULT_INJECTION: forcing a failure.
[  284.908682][T13222] name failslab, interval 1, probability 0, space 0, times 0
[  284.915163][T13219] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  284.915884][T13222] CPU: 3 UID: 0 PID: 13222 Comm: syz.1.2357 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.915916][T13222] Tainted: [L]=SOFTLOCKUP
[  284.915923][T13222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  284.915935][T13222] Call Trace:
[  284.915942][T13222]  <TASK>
[  284.915950][T13222]  dump_stack_lvl+0x100/0x190
[  284.915980][T13222]  should_fail_ex.cold+0x5/0xa
[  284.916007][T13222]  should_failslab+0xc2/0x120
[  284.916028][T13222]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  284.916057][T13222]  ? __alloc_skb+0x140/0x710
[  284.916075][T13222]  ? __alloc_skb+0x5b7/0x710
[  284.916097][T13222]  __alloc_skb+0x140/0x710
[  284.916114][T13222]  ? __alloc_skb+0x5b7/0x710
[  284.916132][T13222]  ? __pfx___alloc_skb+0x10/0x10
[  284.916158][T13222]  alloc_skb_with_frags+0xdd/0x760
[  284.916186][T13222]  ? avc_has_perm_noaudit+0x145/0x3b0
[  284.916215][T13222]  sock_alloc_send_pskb+0x801/0x980
[  284.916254][T13222]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  284.916289][T13222]  ? sock_has_perm+0x258/0x2f0
[  284.916318][T13222]  ? __pfx_sock_has_perm+0x10/0x10
[  284.916349][T13222]  hci_sock_sendmsg+0x1c7/0x2620
[  284.916560][T13222]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  284.916584][T13222]  sock_write_iter+0x524/0x5a0
[  284.916610][T13222]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  284.916629][T13222]  ? __pfx_sock_write_iter+0x10/0x10
[  284.916664][T13222]  ? bpf_lsm_file_permission+0x9/0x10
[  284.916693][T13222]  ? security_file_permission+0x76/0x210
[  284.916716][T13222]  ? rw_verify_area+0xce/0x6d0
[  284.916749][T13222]  vfs_write+0x6ac/0x1070
[  284.916774][T13222]  ? __pfx_sock_write_iter+0x10/0x10
[  284.916795][T13222]  ? __pfx_vfs_write+0x10/0x10
[  284.916810][T13222]  ? find_held_lock+0x2b/0x80
[  284.916842][T13222]  ksys_write+0x1f8/0x250
[  284.916859][T13222]  ? __pfx_ksys_write+0x10/0x10
[  284.916878][T13222]  ? rcu_is_watching+0x12/0xc0
[  284.916907][T13222]  do_syscall_64+0x10b/0xf80
[  284.916925][T13222]  ? clear_bhb_loop+0x40/0x90
[  284.916947][T13222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.916965][T13222] RIP: 0033:0x7f58b9d9c819
[  284.916981][T13222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  284.916996][T13222] RSP: 002b:00007f58bace7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  284.917014][T13222] RAX: ffffffffffffffda RBX: 00007f58ba015fa0 RCX: 00007f58b9d9c819
[  284.917024][T13222] RDX: 0000000000000006 RSI: 0000200000000000 RDI: 0000000000000004
[  284.917033][T13222] RBP: 00007f58bace7090 R08: 0000000000000000 R09: 0000000000000000
[  284.917042][T13222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.917051][T13222] R13: 00007f58ba016038 R14: 00007f58ba015fa0 R15: 00007ffe3cb9bd28
[  284.917074][T13222]  </TASK>
[  285.082752][   T40] audit: type=1400 audit(1776709740.389:1059): avc:  denied  { setopt } for  pid=13223 comm="syz.1.2358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  285.120483][   T24] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  285.152946][ T5963] Bluetooth: hci4: command tx timeout
[  285.275832][   T24] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  285.280294][   T24] usb 5-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  285.285703][   T24] usb 5-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  285.292366][   T24] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  285.296890][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.317630][   T24] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  285.370091][   T24] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -2
[  285.517916][   T24] usb 5-1: USB disconnect, device number 22
[  285.609324][T13245] loop5: detected capacity change from 0 to 7
[  285.613961][T13245] Dev loop5: unable to read RDB block 7
[  285.617015][T13245]  loop5: unable to read partition table
[  285.619692][T13245] loop5: partition table beyond EOD, truncated
[  285.625568][T13245] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  286.015497][T13262] xt_hashlimit: size too large, truncated to 1048576
[  286.163738][T13272] tmpfs: Unknown parameter 'nr_¿0inodes'
[  286.301166][T13285] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2382'.
[  286.614043][T13305] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2385'.
[  286.618436][T13305] netlink: 'syz.0.2385': attribute type 1 has an invalid length.
[  286.622597][T13305] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2385'.
[  286.712684][    T9] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  286.816367][T13314] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2393'.
[  286.862184][    T9] usb 7-1: Using ep0 maxpacket: 8
[  286.866186][    T9] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  286.870498][    T9] usb 7-1: config 0 has no interface number 0
[  286.874016][    T9] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  286.877550][    T9] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  286.881227][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.890727][    T9] usb 7-1: config 0 descriptor??
[  286.898972][    T9] iowarrior 7-1:0.1: no interrupt-in endpoint found
[  286.922810][T13318] netlink: 'syz.4.2395': attribute type 1 has an invalid length.
[  286.938505][T13318] 8021q: adding VLAN 0 to HW filter on device bond5
[  286.955758][T13318] vlan3: entered allmulticast mode
[  286.957866][T13318] macsec0: entered allmulticast mode
[  286.960161][T13318] veth1_macvtap: entered allmulticast mode
[  287.099312][    T9] usb 7-1: USB disconnect, device number 27
[  287.232579][ T5963] Bluetooth: hci4: command tx timeout
[  287.532509][ T7163] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  287.653377][ T5976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  287.674660][ T5976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  287.679175][ T5976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  287.680717][T13341] 8021q: VLANs not supported on gre0
[  287.687579][T13341] 8021q: VLANs not supported on gre0
[  287.700427][ T5976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  287.702535][ T7163] usb 5-1: Using ep0 maxpacket: 8
[  287.707903][ T7163] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  287.708336][ T5976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  287.714622][ T7163] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  287.720470][ T7163] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.734651][ T7163] usb 5-1: config 0 descriptor??
[  287.943321][ T7163] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  287.979258][   T29] usb 5-1: USB disconnect, device number 23
[  288.039617][T13338] chnl_net:caif_netlink_parms(): no params data found
[  288.088023][T13352] openvswitch: netlink: Unexpected mask (mask=20440, allowed=10048)
[  288.137818][T13338] bridge0: port 1(bridge_slave_0) entered blocking state
[  288.141146][T13338] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.144600][T13338] bridge_slave_0: entered allmulticast mode
[  288.148835][T13338] bridge_slave_0: entered promiscuous mode
[  288.194725][T13357] netlink: 'syz.0.2407': attribute type 1 has an invalid length.
[  288.198310][T13357] netlink: 'syz.0.2407': attribute type 2 has an invalid length.
[  288.201365][T13338] bridge0: port 2(bridge_slave_1) entered blocking state
[  288.204676][T13338] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.207710][T13338] bridge_slave_1: entered allmulticast mode
[  288.212145][T13338] bridge_slave_1: entered promiscuous mode
[  288.265943][T13360] binder: 13359:13360 ioctl c0306201 200000000640 returned -22
[  288.277306][T13360] binder: 13359:13360 ioctl c01064b5 200000000080 returned -22
[  288.287826][T13338] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  288.295667][T13338] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  288.341807][T13338] team0: Port device team_slave_0 added
[  288.348234][T13338] team0: Port device team_slave_1 added
[  288.378899][T13362] sd 0:0:0:0: PR command failed: 1026
[  288.381953][T13362] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[  288.386313][T13362] sd 0:0:0:0: Add. Sense: Invalid command operation code
[  288.405554][T13338] batman_adv: batadv0: Adding interface: batadv_slave_0
[  288.410029][T13338] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  288.431061][T13338] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  288.438441][T13338] batman_adv: batadv0: Adding interface: batadv_slave_1
[  288.441714][T13338] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  288.453338][T13338] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  288.496909][T13338] hsr_slave_0: entered promiscuous mode
[  288.500350][T13338] hsr_slave_1: entered promiscuous mode
[  288.503723][T13338] debugfs: 'hsr0' already exists in 'hsr'
[  288.506851][T13338] Cannot create hsr debugfs directory
[  288.589969][T13375] loop5: detected capacity change from 0 to 7
[  288.597955][T13375] Dev loop5: unable to read RDB block 7
[  288.606853][T13375]  loop5: unable to read partition table
[  288.612766][T13375] loop5: partition table beyond EOD, truncated
[  288.617369][T13375] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  288.662598][T11624] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  288.745456][ T8292] bridge_slave_1: left allmulticast mode
[  288.748328][ T8292] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.835152][T11624] usb 7-1: Using ep0 maxpacket: 8
[  288.840353][T11624] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  288.844675][T11624] usb 7-1: config 0 has no interface number 0
[  288.847581][T11624] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  288.852550][T11624] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  288.856263][T11624] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.865014][T11624] usb 7-1: config 0 descriptor??
[  288.869997][T11624] iowarrior 7-1:0.1: no interrupt-in endpoint found
[  289.001194][ T8292] batman_adv: batadv0: Removing interface: gretap2
[  289.071112][ T6053] usb 7-1: USB disconnect, device number 28
[  289.209380][ T8292] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  289.254417][ T8292] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  289.294274][ T8292] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  289.312832][ T5963] Bluetooth: hci4: command tx timeout
[  289.333692][ T8292] bond0 (unregistering): Released all slaves
[  289.349978][ T8292] bond1 (unregistering): Released all slaves
[  289.363242][ T8292] bond2 (unregistering): Released all slaves
[  289.375716][ T8292] bond3 (unregistering): Released all slaves
[  289.449365][T13384] xt_hashlimit: size too large, truncated to 1048576
[  289.689992][ T5664] 8021q: adding VLAN 0 to HW filter on device eth6
[  289.797170][ T5963] Bluetooth: hci0: command tx timeout
[  289.863202][T13403] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  289.996581][T13412] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2419'.
[  290.000711][T13412] netlink: 'syz.2.2419': attribute type 1 has an invalid length.
[  290.016362][T13412] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2419'.
[  290.298966][T13429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2428'.
[  290.303590][T13429] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2428'.
[  290.304840][ T8292] hsr_slave_0: left promiscuous mode
[  290.310257][ T8292] hsr_slave_1: left promiscuous mode
[  290.314837][ T8292] batman_adv: batadv0: Removing interface: batadv_slave_0
[  290.318813][ T8292] batman_adv: batadv0: Removing interface: batadv_slave_1
[  290.394124][T13432] can: request_module (can-proto-0) failed.
[  290.458103][ T8292] team0 (unregistering): Port device team_slave_1 removed
[  290.474022][ T8292] team0 (unregistering): Port device team_slave_0 removed
[  290.682912][T13439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.693845][T13439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.827864][T13338] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  290.855191][T13338] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  290.855939][ T6033] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  290.859693][T13338] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  290.892312][T13338] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  290.896302][T13338] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  290.903215][T13338] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  290.907312][T13338] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  290.916988][T13338] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  290.942399][T11624] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  291.006692][T13338] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.021825][T13338] 8021q: adding VLAN 0 to HW filter on device team0
[  291.031340][ T8282] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.034597][ T8282] bridge0: port 1(bridge_slave_0) entered forwarding state
[  291.042465][ T6033] usb 7-1: Using ep0 maxpacket: 8
[  291.046459][ T6033] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  291.050192][ T6033] usb 7-1: config 0 has no interface number 0
[  291.057635][ T8283] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.057760][ T6033] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  291.061372][ T8283] bridge0: port 2(bridge_slave_1) entered forwarding state
[  291.067234][ T6033] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  291.073705][ T6033] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  291.078905][ T6033] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  291.085093][ T6033] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  291.089091][ T6033] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.092807][T11624] usb 5-1: Using ep0 maxpacket: 32
[  291.095146][ T6033] usb 7-1: config 0 descriptor??
[  291.096856][T11624] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  291.102772][ T6033] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  291.114070][T11624] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  291.121915][T11624] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  291.128669][T11624] usb 5-1: Product: syz
[  291.130037][ T8292] IPVS: stop unused estimator thread 0...
[  291.131075][T11624] usb 5-1: Manufacturer: syz
[  291.131096][T11624] usb 5-1: SerialNumber: syz
[  291.143638][T11624] usb 5-1: config 0 descriptor??
[  291.151452][T13440] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  291.165084][T11624] hub 5-1:0.0: bad descriptor, ignoring hub
[  291.170804][T11624] hub 5-1:0.0: probe with driver hub failed with error -5
[  291.287756][T13338] 8021q: adding VLAN 0 to HW filter on device batadv0
[  291.346128][T13338] veth0_vlan: entered promiscuous mode
[  291.363042][T13338] veth1_vlan: entered promiscuous mode
[  291.394731][T13338] veth0_macvtap: entered promiscuous mode
[  291.405865][T13338] veth1_macvtap: entered promiscuous mode
[  291.421885][T13338] batman_adv: batadv0: Interface activated: batadv_slave_0
[  291.435326][T13338] batman_adv: batadv0: Interface activated: batadv_slave_1
[  291.445458][ T8309] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  291.450046][ T8309] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  291.454182][ T8309] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  291.458842][ T8309] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  291.472725][ T1475] usb 5-1: USB disconnect, device number 24
[  291.605331][ T8292] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.613656][ T8292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.643199][ T8292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.646553][ T8292] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.757227][T13471] cgroup2: Unknown parameter 'euid'
[  291.763745][T13471] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2403'.
[  291.872551][ T5963] Bluetooth: hci0: command tx timeout
[  291.948970][T13476] fuse: Bad value for 'fd'
[  292.229168][ T5976] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  292.243263][ T5976] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  292.249925][ T5976] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  292.259626][ T5976] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  292.265316][ T5976] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  292.507550][T13480] chnl_net:caif_netlink_parms(): no params data found
[  292.659910][T13480] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.664177][T13480] bridge0: port 1(bridge_slave_0) entered disabled state
[  292.667832][T13480] bridge_slave_0: entered allmulticast mode
[  292.673150][T13480] bridge_slave_0: entered promiscuous mode
[  292.679063][T13480] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.683757][T13480] bridge0: port 2(bridge_slave_1) entered disabled state
[  292.687952][T13480] bridge_slave_1: entered allmulticast mode
[  292.693181][T13480] bridge_slave_1: entered promiscuous mode
[  292.794914][T13480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  292.801935][T13480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  292.831723][T13480] team0: Port device team_slave_0 added
[  292.854876][T13480] team0: Port device team_slave_1 added
[  293.021823][T13480] batman_adv: batadv0: Adding interface: batadv_slave_0
[  293.044371][T13480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  293.064121][T13480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  293.079182][T13480] batman_adv: batadv0: Adding interface: batadv_slave_1
[  293.083443][T13480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  293.095500][T13480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  293.161057][ T8282] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.171106][ T8282] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.172944][T13499] dlm: no locking on control device
[  293.231013][T13480] hsr_slave_0: entered promiscuous mode
[  293.235296][T13480] hsr_slave_1: entered promiscuous mode
[  293.239059][T13480] debugfs: 'hsr0' already exists in 'hsr'
[  293.241500][T13480] Cannot create hsr debugfs directory
[  293.335010][ T8282] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.339896][ T8282] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.444048][ T8282] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.450865][ T8282] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.479056][T13505] ucma_write: process 94 (syz.0.2446) changed security contexts after opening file descriptor, this is not allowed.
[  293.548228][ T8282] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.552627][ T8282] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.598741][ T6032] usb 7-1: USB disconnect, device number 29
[  293.612732][ T6032] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  293.669536][T13509] netlink: 'syz.2.2448': attribute type 1 has an invalid length.
[  293.677013][T13509] netlink: 'syz.2.2448': attribute type 2 has an invalid length.
[  293.688389][T13511] fuse: Bad value for 'fd'
[  293.955136][ T5976] Bluetooth: hci0: command tx timeout
[  294.019719][   T40] audit: type=1400 audit(1776709749.319:1060): avc:  denied  { lock } for  pid=13519 comm="syz.1.2452" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  294.042245][ T8282] bridge_slave_1: left allmulticast mode
[  294.044871][ T8282] bridge_slave_1: left promiscuous mode
[  294.057467][ T8282] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.066312][ T8282] bridge_slave_0: left allmulticast mode
[  294.068894][ T8282] bridge_slave_0: left promiscuous mode
[  294.071412][ T8282] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.197051][ T8282] erspan0: left allmulticast mode
[  294.199826][ T8282] erspan0: left promiscuous mode
[  294.203441][ T8282] bridge2: port 1(erspan0) entered disabled state
[  294.352545][ T5976] Bluetooth: hci2: command tx timeout
[  294.895721][ T8282] bond4 (unregistering): (slave geneve2): Releasing backup interface
[  294.928787][T13519] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  294.935818][   T53] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  295.010955][T13534] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2457'.
[  295.103227][   T53] usb 5-1: Using ep0 maxpacket: 8
[  295.107688][   T53] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  295.111433][   T53] usb 5-1: config 0 has no interface number 0
[  295.114570][   T53] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  295.120185][   T53] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  295.126128][   T53] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  295.130999][   T53] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  295.137739][   T53] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  295.141774][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.148486][   T53] usb 5-1: config 0 descriptor??
[  295.164117][   T53] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  295.189411][ T8282] bond3 (unregistering): (slave bridge3): Releasing active interface
[  295.286416][ T8282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  295.333744][ T8282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  295.369468][ T8282] bond0 (unregistering): Released all slaves
[  295.389131][ T8282] bond1 (unregistering): (slave vlan0): Removing an active aggregator
[  295.396861][ T8282] bond1 (unregistering): (slave vlan0): Releasing backup interface
[  295.434506][ T8282] bond1 (unregistering): Released all slaves
[  295.448594][ T8282] bond2 (unregistering): Released all slaves
[  295.461683][ T8282] bond3 (unregistering): Released all slaves
[  295.475155][ T8282] bond4 (unregistering): Released all slaves
[  295.487740][ T8282] bond5 (unregistering): Released all slaves
[  295.506427][ T8294] tipc: Resetting bearer <ib:wg1>
[  295.696143][ T8282] tipc: Disabling bearer <ib:wg1>
[  295.704283][ T8282] tipc: Disabling bearer <udp:syz2>
[  295.726005][ T8282] tipc: Left network mode
[  296.038644][ T5664] 8021q: adding VLAN 0 to HW filter on device eth6
[  296.045739][ T5976] Bluetooth: hci0: command tx timeout
[  296.151204][T13556] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2460'.
[  296.432418][ T5976] Bluetooth: hci2: command tx timeout
[  296.574300][T13480] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  296.581349][T13480] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  296.655737][T13480] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  296.661197][T13480] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  296.665510][T13480] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  296.684690][T13480] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  296.689672][T13480] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  296.701527][T13480] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  296.761920][ T8282] hsr_slave_0: left promiscuous mode
[  296.770717][ T8282] hsr_slave_1: left promiscuous mode
[  296.775752][ T8282] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  296.778981][ T8282] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.783668][ T8282] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.788402][ T8282] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.801677][ T8282] veth1_macvtap: left allmulticast mode
[  296.804519][ T8282] veth1_macvtap: left promiscuous mode
[  296.806885][ T8282] veth0_macvtap: left promiscuous mode
[  296.809684][ T8282] veth1_vlan: left promiscuous mode
[  296.813328][ T8282] veth0_vlan: left promiscuous mode
[  297.093046][ T8282] team0 (unregistering): Port device team_slave_1 removed
[  297.102695][ T8282] team0 (unregistering): Port device C removed
[  297.218896][T13574] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  297.475277][T13480] 8021q: adding VLAN 0 to HW filter on device bond0
[  297.529854][T13480] 8021q: adding VLAN 0 to HW filter on device team0
[  297.541202][ T8297] bridge0: port 1(bridge_slave_0) entered blocking state
[  297.544348][ T8297] bridge0: port 1(bridge_slave_0) entered forwarding state
[  297.565469][ T8294] bridge0: port 2(bridge_slave_1) entered blocking state
[  297.568889][ T8294] bridge0: port 2(bridge_slave_1) entered forwarding state
[  297.605135][T13573] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  297.647050][T13480] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  297.757103][   T24] usb 5-1: USB disconnect, device number 25
[  297.777909][   T24] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  297.853244][T13598] fuse: Bad value for 'fd'
[  297.888846][T13480] 8021q: adding VLAN 0 to HW filter on device batadv0
[  298.004939][T13609] fuse: Bad value for 'fd'
[  298.054287][T13618] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2475'.
[  298.058542][T13618] xfrm0: entered promiscuous mode
[  298.061402][T13618] xfrm0: entered allmulticast mode
[  298.205512][T13480] veth0_vlan: entered promiscuous mode
[  298.215025][T13480] veth1_vlan: entered promiscuous mode
[  298.294469][T13480] veth0_macvtap: entered promiscuous mode
[  298.301339][T13480] veth1_macvtap: entered promiscuous mode
[  298.318604][T13480] batman_adv: batadv0: Interface activated: batadv_slave_0
[  298.328956][T13480] batman_adv: batadv0: Interface activated: batadv_slave_1
[  298.345071][ T8292] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.349920][ T8292] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  298.364604][ T8292] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  298.368621][ T8292] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  298.391715][   T40] audit: type=1400 audit(1776709753.689:1061): avc:  denied  { write } for  pid=13625 comm="syz.1.2477" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  298.514832][   T24] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  298.522267][ T5976] Bluetooth: hci2: command tx timeout
[  298.552835][ T8297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.560421][ T8297] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.575661][ T8295] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.579596][ T8295] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.702271][   T24] usb 7-1: Using ep0 maxpacket: 8
[  298.708019][   T24] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  298.711199][   T24] usb 7-1: config 0 has no interface number 0
[  298.713836][   T24] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  298.721408][   T24] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  298.737249][   T24] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  298.742763][   T24] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  298.749353][   T24] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  298.756763][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.762825][   T24] usb 7-1: config 0 descriptor??
[  298.786301][   T24] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  298.904500][T13637] fuse: Bad value for 'fd'
[  299.088807][T13649] FAULT_INJECTION: forcing a failure.
[  299.088807][T13649] name failslab, interval 1, probability 0, space 0, times 0
[  299.097000][T13649] CPU: 2 UID: 0 PID: 13649 Comm: syz.1.2485 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.097038][T13649] Tainted: [L]=SOFTLOCKUP
[  299.097046][T13649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  299.097057][T13649] Call Trace:
[  299.097065][T13649]  <TASK>
[  299.097073][T13649]  dump_stack_lvl+0x100/0x190
[  299.097105][T13649]  should_fail_ex.cold+0x5/0xa
[  299.097134][T13649]  ? tomoyo_encode2+0xfb/0x3c0
[  299.097155][T13649]  should_failslab+0xc2/0x120
[  299.097176][T13649]  __kmalloc_noprof+0xe0/0x850
[  299.097205][T13649]  ? rcu_is_watching+0x12/0xc0
[  299.097240][T13649]  tomoyo_encode2+0xfb/0x3c0
[  299.097264][T13649]  tomoyo_encode+0x29/0x50
[  299.097282][T13649]  tomoyo_realpath_from_path+0x18c/0x690
[  299.097308][T13649]  tomoyo_path_number_perm+0x23c/0x580
[  299.097337][T13649]  ? tomoyo_path_number_perm+0x22e/0x580
[  299.097365][T13649]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  299.097417][T13649]  ? find_held_lock+0x2b/0x80
[  299.097434][T13649]  ? __fget_files+0x215/0x3d0
[  299.097454][T13649]  ? hook_file_ioctl_common+0x149/0x410
[  299.097475][T13649]  ? __fget_files+0x215/0x3d0
[  299.097500][T13649]  ? __fget_files+0x21f/0x3d0
[  299.097525][T13649]  security_file_ioctl+0xd3/0x230
[  299.097545][T13649]  __x64_sys_ioctl+0xb7/0x210
[  299.097566][T13649]  do_syscall_64+0x10b/0xf80
[  299.097584][T13649]  ? clear_bhb_loop+0x40/0x90
[  299.097607][T13649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.097626][T13649] RIP: 0033:0x7f4148d9c819
[  299.097644][T13649] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.097661][T13649] RSP: 002b:00007f4149cdf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  299.097680][T13649] RAX: ffffffffffffffda RBX: 00007f4149015fa0 RCX: 00007f4148d9c819
[  299.097691][T13649] RDX: 0000000000000000 RSI: 0000000040049366 RDI: 0000000000000003
[  299.097702][T13649] RBP: 00007f4149cdf090 R08: 0000000000000000 R09: 0000000000000000
[  299.097712][T13649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.097722][T13649] R13: 00007f4149016038 R14: 00007f4149015fa0 R15: 00007ffe82e36668
[  299.097748][T13649]  </TASK>
[  299.097770][T13649] ERROR: Out of memory at tomoyo_realpath_from_path.
[  299.264486][T13652] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2483'.
[  299.268952][T13652] netlink: 'syz.0.2483': attribute type 1 has an invalid length.
[  299.273498][T13652] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2483'.
[  299.679065][T13656] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2487'.
[  299.685606][T13656] netlink: 'syz.1.2487': attribute type 1 has an invalid length.
[  299.690177][T13656] netlink: 'syz.1.2487': attribute type 4 has an invalid length.
[  299.696189][T13656] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.2487'.
[  299.868708][   T40] audit: type=1400 audit(1776709755.169:1062): avc:  denied  { connect } for  pid=13657 comm="syz.4.2488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  299.921275][T13664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2490'.
[  300.044059][T13668] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2492'.
[  300.078141][T13678] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2495'.
[  300.086848][T13668] Cannot find set identified by id 0 to match
[  300.144005][T13680] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2496'.
[  300.381601][T13698] fuse: Invalid rootmode
[  300.394450][T13701] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2505'.
[  300.456474][T13704] netlink: 120 bytes leftover after parsing attributes in process `syz.1.2500'.
[  300.460219][T13704] netlink: 'syz.1.2500': attribute type 1 has an invalid length.
[  300.464009][T13704] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2500'.
[  300.485268][T13705] netlink: 'syz.0.2506': attribute type 12 has an invalid length.
[  300.802449][    T9] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  300.962138][    T9] usb 5-1: Using ep0 maxpacket: 32
[  300.966431][    T9] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  300.970614][    T9] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  300.976110][    T9] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  300.981195][    T9] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  300.987005][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  300.993055][    T9] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  300.997427][    T9] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  301.001540][    T9] usb 5-1: Product: syz
[  301.003771][    T9] usb 5-1: Manufacturer: syz
[  301.005787][    T9] usb 5-1: SerialNumber: syz
[  301.010631][    T9] usb 5-1: config 0 descriptor??
[  301.016360][    T9] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  301.023468][    T9] ldusb 5-1:0.0: LD USB Device #1 now attached to major 180 minor 1
[  301.212186][T13715] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2510'.
[  301.230776][    T9] usb 5-1: USB disconnect, device number 26
[  301.244197][    T9] ldusb 5-1:0.0: LD USB Device #1 now disconnected
[  301.301191][ T6032] usb 7-1: USB disconnect, device number 30
[  301.306171][T13717] FAULT_INJECTION: forcing a failure.
[  301.306171][T13717] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  301.314329][T13717] CPU: 3 UID: 0 PID: 13717 Comm: syz.4.2512 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  301.314359][T13717] Tainted: [L]=SOFTLOCKUP
[  301.314363][T13717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  301.314373][T13717] Call Trace:
[  301.314379][T13717]  <TASK>
[  301.314386][T13717]  dump_stack_lvl+0x100/0x190
[  301.314412][T13717]  should_fail_ex.cold+0x5/0xa
[  301.314434][T13717]  _copy_from_iter+0x1f4/0x1690
[  301.314456][T13717]  ? __pfx__copy_from_iter+0x10/0x10
[  301.314478][T13717]  ? sock_has_perm+0x258/0x2f0
[  301.314500][T13717]  ? __pfx_sock_has_perm+0x10/0x10
[  301.314524][T13717]  hci_sock_sendmsg+0x4a1/0x2620
[  301.314546][T13717]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  301.314563][T13717]  sock_write_iter+0x524/0x5a0
[  301.314579][T13717]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  301.314593][T13717]  ? __pfx_sock_write_iter+0x10/0x10
[  301.314622][T13717]  ? bpf_lsm_file_permission+0x9/0x10
[  301.314644][T13717]  ? security_file_permission+0x76/0x210
[  301.314657][T13717]  ? rw_verify_area+0xce/0x6d0
[  301.314675][T13717]  vfs_write+0x6ac/0x1070
[  301.314686][T13717]  ? __pfx_sock_write_iter+0x10/0x10
[  301.314708][T13717]  ? __pfx_vfs_write+0x10/0x10
[  301.314721][T13717]  ? find_held_lock+0x2b/0x80
[  301.314747][T13717]  ksys_write+0x1f8/0x250
[  301.314765][T13717]  ? __pfx_ksys_write+0x10/0x10
[  301.314785][T13717]  ? rcu_is_watching+0x12/0xc0
[  301.314812][T13717]  do_syscall_64+0x10b/0xf80
[  301.314828][T13717]  ? clear_bhb_loop+0x40/0x90
[  301.314863][T13717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.314876][T13717] RIP: 0033:0x7f648e99c819
[  301.314887][T13717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  301.314898][T13717] RSP: 002b:00007f648f8a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  301.314909][T13717] RAX: ffffffffffffffda RBX: 00007f648ec15fa0 RCX: 00007f648e99c819
[  301.314916][T13717] RDX: 0000000000000006 RSI: 0000200000000000 RDI: 0000000000000004
[  301.314922][T13717] RBP: 00007f648f8a9090 R08: 0000000000000000 R09: 0000000000000000
[  301.314928][T13717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  301.314934][T13717] R13: 00007f648ec16038 R14: 00007f648ec15fa0 R15: 00007ffe0108d4d8
[  301.314948][T13717]  </TASK>
[  301.318666][ T6032] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  301.414463][T13725] loop5: detected capacity change from 0 to 7
[  301.469691][T13725] Dev loop5: unable to read RDB block 7
[  301.475421][T13725]  loop5: unable to read partition table
[  301.478428][T13725] loop5: partition table beyond EOD, truncated
[  301.481251][T13725] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  301.602578][ T6033] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  301.792480][    T9] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  301.805590][ T6033] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  301.810258][ T6033] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  301.815330][ T6033] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  301.820771][ T6033] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  301.824870][ T6033] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.836537][ T6033] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  301.935008][ T6033] snd-usb-audio 9-1:27.0: probe with driver snd-usb-audio failed with error -12
[  301.952535][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  301.958176][    T9] usb 6-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  301.962765][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  301.966232][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.982860][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  301.989641][    T9] usb 6-1: invalid MIDI out EP 0
[  302.020265][T13737] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2517'.
[  302.027144][T13737] netlink: 'syz.2.2517': attribute type 1 has an invalid length.
[  302.030554][T13737] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2517'.
[  302.043100][T11623] usb 9-1: USB disconnect, device number 14
[  302.141197][    T9] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -22
[  302.186367][    T9] usb 6-1: USB disconnect, device number 34
[  302.542288][ T6033] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  302.620620][   T40] audit: type=1326 audit(1776709757.929:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13747 comm="syz.2.2523" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f89a1d9c819 code=0x0
[  302.702160][ T6033] usb 5-1: Using ep0 maxpacket: 8
[  302.707711][ T6033] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  302.711179][ T6033] usb 5-1: config 0 has no interface number 0
[  302.714903][ T6033] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  302.721128][ T6033] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  302.728717][ T6033] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  302.734105][ T6033] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  302.741641][ T6033] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  302.745982][ T6033] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.760619][ T6033] usb 5-1: config 0 descriptor??
[  302.772923][ T6033] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  302.990970][T13755] FAULT_INJECTION: forcing a failure.
[  302.990970][T13755] name failslab, interval 1, probability 0, space 0, times 0
[  302.997906][T13755] CPU: 1 UID: 0 PID: 13755 Comm: syz.1.2526 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.997937][T13755] Tainted: [L]=SOFTLOCKUP
[  302.997943][T13755] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  302.997953][T13755] Call Trace:
[  302.997960][T13755]  <TASK>
[  302.997968][T13755]  dump_stack_lvl+0x100/0x190
[  302.997995][T13755]  should_fail_ex.cold+0x5/0xa
[  302.998020][T13755]  should_failslab+0xc2/0x120
[  302.998038][T13755]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  302.998061][T13755]  ? vm_area_dup+0x27/0x8e0
[  302.998088][T13755]  vm_area_dup+0x27/0x8e0
[  302.998111][T13755]  __split_vma+0x18c/0xd90
[  302.998134][T13755]  ? __pfx___might_resched+0x10/0x10
[  302.998159][T13755]  ? __pfx___split_vma+0x10/0x10
[  302.998196][T13755]  ? find_held_lock+0x2b/0x80
[  302.998211][T13755]  ? process_measurement+0x4c8/0x2350
[  302.998235][T13755]  ? up_write+0x28c/0x4f0
[  302.998262][T13755]  vms_gather_munmap_vmas+0x1d2/0x1720
[  302.998290][T13755]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  302.998316][T13755]  ? __lock_acquire+0x4a5/0x2630
[  302.998339][T13755]  ? __lock_acquire+0x4a5/0x2630
[  302.998366][T13755]  do_vmi_align_munmap+0x287/0x5f0
[  302.998392][T13755]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  302.998413][T13755]  ? find_held_lock+0x2b/0x80
[  302.998429][T13755]  ? is_bpf_text_address+0x8a/0x1a0
[  302.998589][T13755]  do_vmi_munmap+0x1f8/0x3e0
[  302.998616][T13755]  do_munmap+0xba/0x100
[  302.998636][T13755]  ? __pfx_do_munmap+0x10/0x10
[  302.998663][T13755]  ? __pfx_mtree_load+0x10/0x10
[  302.998684][T13755]  mremap_to+0x2b3/0x4c0
[  302.998708][T13755]  ? __pfx_mremap_to+0x10/0x10
[  302.998734][T13755]  ? __pfx_down_write_killable+0x10/0x10
[  302.998753][T13755]  ? check_prep_vma+0x878/0xdf0
[  302.998781][T13755]  __do_sys_mremap+0xc42/0x1850
[  302.998809][T13755]  ? find_held_lock+0x2b/0x80
[  302.998823][T13755]  ? ksys_write+0x190/0x250
[  302.998840][T13755]  ? ksys_write+0x190/0x250
[  302.998856][T13755]  ? __pfx___do_sys_mremap+0x10/0x10
[  302.998885][T13755]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  302.998905][T13755]  ? __fget_files+0x21f/0x3d0
[  302.998938][T13755]  ? rcu_is_watching+0x12/0xc0
[  302.998965][T13755]  do_syscall_64+0x10b/0xf80
[  302.998980][T13755]  ? clear_bhb_loop+0x40/0x90
[  302.999002][T13755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.999020][T13755] RIP: 0033:0x7f4148d9c819
[  302.999037][T13755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.999053][T13755] RSP: 002b:00007f4149cdf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  302.999070][T13755] RAX: ffffffffffffffda RBX: 00007f4149015fa0 RCX: 00007f4148d9c819
[  302.999081][T13755] RDX: 0000000000400000 RSI: 0000000000c00000 RDI: 0000200000000000
[  302.999090][T13755] RBP: 00007f4149cdf090 R08: 0000200000c00000 R09: 0000000000000000
[  302.999100][T13755] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  302.999109][T13755] R13: 00007f4149016038 R14: 00007f4149015fa0 R15: 00007ffe82e36668
[  302.999132][T13755]  </TASK>
[  303.191514][   T40] audit: type=1400 audit(1776709758.489:1064): avc:  denied  { write } for  pid=13756 comm="syz.1.2527" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  303.194258][T13757] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2527'.
[  303.709579][T13774] netlink: 'syz.1.2531': attribute type 1 has an invalid length.
[  303.762539][   T53] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  303.916035][   T53] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  303.921387][   T53] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  303.926247][   T53] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  303.930830][   T53] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  303.932211][ T1475] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  303.935587][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.958008][   T53] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  304.084051][ T1475] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  304.089246][ T1475] usb 9-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  304.095278][ T1475] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  304.099139][ T1475] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.130348][   T53] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -12
[  304.131120][ T1475] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  304.138678][ T1475] usb 9-1: invalid MIDI out EP 0
[  304.159775][ T6032] usb 7-1: USB disconnect, device number 31
[  304.235895][ T1475] snd-usb-audio 9-1:27.0: probe with driver snd-usb-audio failed with error -22
[  304.356516][   T24] usb 9-1: USB disconnect, device number 15
[  304.931915][T13780] xt_hashlimit: size too large, truncated to 1048576
[  305.085683][T13788] __nla_validate_parse: 2 callbacks suppressed
[  305.085704][T13788] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2538'.
[  305.159534][T13794] sctp: [Deprecated]: syz.4.2540 (pid 13794) Use of struct sctp_assoc_value in delayed_ack socket option.
[  305.159534][T13794] Use struct sctp_sack_info instead
[  305.313824][   T53] usb 5-1: USB disconnect, device number 27
[  305.329183][   T53] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  305.470906][T13810] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2542'.
[  305.475130][   T24] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  305.478105][T13810] netlink: 'syz.2.2542': attribute type 1 has an invalid length.
[  305.481836][T13810] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2542'.
[  305.644850][   T24] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  305.649778][   T24] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  305.654949][   T24] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  305.659286][   T24] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  305.663420][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.674920][   T24] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  305.760685][   T24] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -12
[  305.875267][ T6032] usb 6-1: USB disconnect, device number 35
[  306.299295][   T40] audit: type=1400 audit(1776709761.599:1065): avc:  denied  { setopt } for  pid=13815 comm="syz.0.2548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  306.384101][T13821] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2550'.
[  306.732233][   T24] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  306.892475][   T24] usb 5-1: Using ep0 maxpacket: 8
[  306.899253][   T24] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  306.914850][   T24] usb 5-1: config 0 has no interface number 0
[  306.920676][   T24] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  306.934135][   T53] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  306.942173][   T24] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  306.942214][   T24] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  306.942243][   T24] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  306.942291][   T24] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  306.942313][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.946613][   T24] usb 5-1: config 0 descriptor??
[  306.986042][   T24] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  307.021145][T13842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2559'.
[  307.112489][   T53] usb 9-1: Using ep0 maxpacket: 8
[  307.118147][   T53] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  307.121358][   T53] usb 9-1: config 0 has no interface number 0
[  307.124146][   T53] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  307.128198][   T53] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  307.131615][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.139136][   T53] usb 9-1: config 0 descriptor??
[  307.146684][   T53] iowarrior 9-1:0.1: no interrupt-in endpoint found
[  307.353020][ T1475] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  307.358335][   T53] usb 9-1: USB disconnect, device number 16
[  307.504258][ T1475] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  307.508521][ T1475] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  307.512557][ T1475] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  307.515968][ T1475] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.522656][T13848] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  307.528431][ T1475] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  307.737084][ T6032] usb 6-1: USB disconnect, device number 36
[  308.663490][T13875] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2570'.
[  308.718322][T13877] FAULT_INJECTION: forcing a failure.
[  308.718322][T13877] name failslab, interval 1, probability 0, space 0, times 0
[  308.723900][T13877] CPU: 0 UID: 0 PID: 13877 Comm: syz.1.2571 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  308.723933][T13877] Tainted: [L]=SOFTLOCKUP
[  308.723940][T13877] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  308.723951][T13877] Call Trace:
[  308.723959][T13877]  <TASK>
[  308.723967][T13877]  dump_stack_lvl+0x100/0x190
[  308.723999][T13877]  should_fail_ex.cold+0x5/0xa
[  308.724024][T13877]  should_failslab+0xc2/0x120
[  308.724045][T13877]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  308.724073][T13877]  ? __alloc_skb+0x140/0x710
[  308.724092][T13877]  ? __alloc_skb+0x5b7/0x710
[  308.724112][T13877]  __alloc_skb+0x140/0x710
[  308.724129][T13877]  ? __alloc_skb+0x5b7/0x710
[  308.724146][T13877]  ? __pfx___alloc_skb+0x10/0x10
[  308.724166][T13877]  ? __nla_parse+0x40/0x60
[  308.724315][T13877]  ipmr_rtm_getroute+0x630/0xe00
[  308.724438][T13877]  ? __pfx_ipmr_rtm_getroute+0x10/0x10
[  308.724461][T13877]  ? skb_release_data+0x6ca/0x8e0
[  308.724500][T13877]  ? find_held_lock+0x2b/0x80
[  308.724517][T13877]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  308.724641][T13877]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  308.724663][T13877]  ? __pfx_ipmr_rtm_getroute+0x10/0x10
[  308.724686][T13877]  rtnetlink_rcv_msg+0x95e/0xe90
[  308.724708][T13877]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  308.724739][T13877]  ? ref_tracker_free+0x37e/0x6c0
[  308.724767][T13877]  netlink_rcv_skb+0x159/0x420
[  308.724794][T13877]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  308.724816][T13877]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  308.724850][T13877]  ? netlink_deliver_tap+0x1ae/0xcc0
[  308.724878][T13877]  netlink_unicast+0x585/0x850
[  308.724904][T13877]  ? __pfx_netlink_unicast+0x10/0x10
[  308.724936][T13877]  netlink_sendmsg+0x8b0/0xda0
[  308.724964][T13877]  ? __pfx_netlink_sendmsg+0x10/0x10
[  308.724986][T13877]  ? __might_fault+0x90/0x140
[  308.725024][T13877]  ____sys_sendmsg+0x9e1/0xb70
[  308.725048][T13877]  ? __pfx_netlink_sendmsg+0x10/0x10
[  308.725073][T13877]  ? __pfx_____sys_sendmsg+0x10/0x10
[  308.725108][T13877]  ___sys_sendmsg+0x190/0x1e0
[  308.725133][T13877]  ? __pfx____sys_sendmsg+0x10/0x10
[  308.725186][T13877]  __sys_sendmsg+0x170/0x220
[  308.725209][T13877]  ? __pfx___sys_sendmsg+0x10/0x10
[  308.725228][T13877]  ? __pfx___seccomp_filter+0x10/0x10
[  308.725355][T13877]  do_syscall_64+0x10b/0xf80
[  308.725375][T13877]  ? clear_bhb_loop+0x40/0x90
[  308.725397][T13877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.725416][T13877] RIP: 0033:0x7f4148d9c819
[  308.725434][T13877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.725450][T13877] RSP: 002b:00007f4149cdf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  308.725469][T13877] RAX: ffffffffffffffda RBX: 00007f4149015fa0 RCX: 00007f4148d9c819
[  308.725481][T13877] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000001
[  308.725491][T13877] RBP: 00007f4149cdf090 R08: 0000000000000000 R09: 0000000000000000
[  308.725501][T13877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.725511][T13877] R13: 00007f4149016038 R14: 00007f4149015fa0 R15: 00007ffe82e36668
[  308.725535][T13877]  </TASK>
[  309.050805][T13885] policy can only be matched on NF_INET_PRE_ROUTING
[  309.050829][T13885] unable to load match
[  309.302270][   T24] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  309.452537][   T24] usb 6-1: Using ep0 maxpacket: 8
[  309.458645][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  309.463723][   T24] usb 6-1: config 0 has no interface number 0
[  309.466737][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  309.471370][   T24] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  309.476422][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.486064][   T24] usb 6-1: config 0 descriptor??
[  309.499754][   T53] usb 5-1: USB disconnect, device number 28
[  309.502661][   T24] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  309.514570][   T53] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  309.699400][ T1475] usb 6-1: USB disconnect, device number 37
[  309.852236][   T53] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  310.005580][   T53] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  310.010643][   T53] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  310.015161][   T53] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  310.019087][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.027283][T13890] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  310.033404][   T53] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  310.236805][ T6032] usb 5-1: USB disconnect, device number 29
[  310.245742][T13893] FAULT_INJECTION: forcing a failure.
[  310.245742][T13893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.251424][T13893] CPU: 2 UID: 0 PID: 13893 Comm: syz.1.2577 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  310.251454][T13893] Tainted: [L]=SOFTLOCKUP
[  310.251460][T13893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  310.251471][T13893] Call Trace:
[  310.251478][T13893]  <TASK>
[  310.251486][T13893]  dump_stack_lvl+0x100/0x190
[  310.251514][T13893]  should_fail_ex.cold+0x5/0xa
[  310.251539][T13893]  _copy_from_user+0x2e/0xd0
[  310.251560][T13893]  copy_msghdr_from_user+0x9f/0x4f0
[  310.251588][T13893]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  310.251622][T13893]  ___sys_sendmsg+0x106/0x1e0
[  310.251646][T13893]  ? __pfx____sys_sendmsg+0x10/0x10
[  310.251695][T13893]  __sys_sendmsg+0x170/0x220
[  310.251714][T13893]  ? __pfx___sys_sendmsg+0x10/0x10
[  310.251742][T13893]  ? rcu_is_watching+0x12/0xc0
[  310.251771][T13893]  do_syscall_64+0x10b/0xf80
[  310.251789][T13893]  ? clear_bhb_loop+0x40/0x90
[  310.251810][T13893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.251828][T13893] RIP: 0033:0x7f4148d9c819
[  310.251845][T13893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.251860][T13893] RSP: 002b:00007f4149cdf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.251877][T13893] RAX: ffffffffffffffda RBX: 00007f4149015fa0 RCX: 00007f4148d9c819
[  310.251888][T13893] RDX: 000000002000c058 RSI: 0000200000000480 RDI: 0000000000000003
[  310.251897][T13893] RBP: 00007f4149cdf090 R08: 0000000000000000 R09: 0000000000000000
[  310.251907][T13893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.251916][T13893] R13: 00007f4149016038 R14: 00007f4149015fa0 R15: 00007ffe82e36668
[  310.251937][T13893]  </TASK>
[  310.815122][T13856] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  310.982603][   T53] IPVS: starting estimator thread 0...
[  311.053787][T13911] af_packet: tpacket_rcv: packet too big, clamped from 39 to 4294967272. macoff=96
[  311.072312][T13909] IPVS: using max 39 ests per chain, 93600 per kthread
[  311.206548][T13922] Bluetooth: MGMT ver 1.23
[  311.272217][   T24] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  311.422158][   T24] usb 6-1: Using ep0 maxpacket: 16
[  311.427098][   T24] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[  311.430845][   T24] usb 6-1: config 0 has no interface number 0
[  311.433946][   T24] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  311.438858][   T24] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  311.447187][   T24] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  311.450689][   T24] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  311.454381][   T24] usb 6-1: Product: syz
[  311.456246][   T24] usb 6-1: SerialNumber: syz
[  311.468007][   T24] usb 6-1: config 0 descriptor??
[  311.473900][   T24] cm109 6-1:0.8: invalid payload size 0, expected 4
[  311.475140][ T6032] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  311.478654][   T24] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.8/input/input50
[  311.555421][   T53] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  311.622240][ T6032] usb 7-1: Using ep0 maxpacket: 8
[  311.630664][ T6032] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  311.652137][ T6032] usb 7-1: config 0 has no interface number 0
[  311.655622][ T6032] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  311.659770][ T6032] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  311.668742][ T6032] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.686716][ T6032] usb 7-1: config 0 descriptor??
[  311.695492][ T6032] iowarrior 7-1:0.1: no interrupt-in endpoint found
[  311.724454][   T53] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  311.728604][   T53] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  311.732531][   T53] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  311.736402][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.743459][T13930] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  311.751030][   T53] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  311.774278][   T40] audit: type=1400 audit(1776709767.079:1066): avc:  denied  { accept } for  pid=13914 comm="syz.1.2584" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  311.774412][T13936] netlink: 'syz.1.2584': attribute type 12 has an invalid length.
[  311.785357][T13936] netlink: 'syz.1.2584': attribute type 28 has an invalid length.
[  311.788692][T13936] netlink: 148 bytes leftover after parsing attributes in process `syz.1.2584'.
[  311.797665][T13936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  311.806155][T13936] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  311.904854][ T6032] usb 7-1: USB disconnect, device number 32
[  311.913248][T13914] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  311.950287][   T24] usb 9-1: USB disconnect, device number 17
[  311.972807][   T53] usb 6-1: USB disconnect, device number 38
[  311.972923][    C2] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  311.979463][    C2] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  312.043467][   T53] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  312.455798][T13941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2595'.
[  312.459776][T13941] netlink: 'syz.2.2595': attribute type 6 has an invalid length.
[  312.463743][T13941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2595'.
[  312.469008][T13941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2595'.
[  312.474249][   T40] audit: type=1400 audit(1776709767.779:1067): avc:  denied  { view } for  pid=13942 comm="syz.0.2596" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  312.475330][T13941] netlink: 'syz.2.2595': attribute type 6 has an invalid length.
[  312.486054][T13941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2595'.
[  312.516343][T13946] FAULT_INJECTION: forcing a failure.
[  312.516343][T13946] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.522311][T13946] CPU: 1 UID: 0 PID: 13946 Comm: syz.0.2597 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  312.522347][T13946] Tainted: [L]=SOFTLOCKUP
[  312.522354][T13946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  312.522385][T13946] Call Trace:
[  312.522394][T13946]  <TASK>
[  312.522403][T13946]  dump_stack_lvl+0x100/0x190
[  312.522436][T13946]  should_fail_ex.cold+0x5/0xa
[  312.522465][T13946]  _copy_from_user+0x2e/0xd0
[  312.522489][T13946]  kstrtouint_from_user+0xd6/0x1d0
[  312.522517][T13946]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  312.522543][T13946]  ? __lock_acquire+0x4a5/0x2630
[  312.522572][T13946]  ? lock_acquire+0x1b1/0x370
[  312.522600][T13946]  proc_fail_nth_write+0x83/0x220
[  312.522621][T13946]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  312.522647][T13946]  vfs_write+0x2aa/0x1070
[  312.522670][T13946]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  312.522692][T13946]  ? __pfx_vfs_write+0x10/0x10
[  312.522710][T13946]  ? __fget_files+0x215/0x3d0
[  312.522740][T13946]  ? __fget_files+0x21f/0x3d0
[  312.522769][T13946]  ksys_write+0x12a/0x250
[  312.522789][T13946]  ? __pfx_ksys_write+0x10/0x10
[  312.522810][T13946]  ? rcu_is_watching+0x12/0xc0
[  312.522844][T13946]  do_syscall_64+0x10b/0xf80
[  312.522864][T13946]  ? clear_bhb_loop+0x40/0x90
[  312.522896][T13946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.522913][T13946] RIP: 0033:0x7fbe33b5d04e
[  312.522930][T13946] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  312.522947][T13946] RSP: 002b:00007fbe34a61fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  312.522966][T13946] RAX: ffffffffffffffda RBX: 00007fbe34a626c0 RCX: 00007fbe33b5d04e
[  312.522977][T13946] RDX: 0000000000000001 RSI: 00007fbe34a620a0 RDI: 0000000000000003
[  312.523026][T13946] RBP: 00007fbe34a62090 R08: 0000000000000000 R09: 0000000000000000
[  312.523038][T13946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.523049][T13946] R13: 00007fbe33e16038 R14: 00007fbe33e15fa0 R15: 00007ffffb66d778
[  312.523076][T13946]  </TASK>
[  312.808422][T13953] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  313.012108][   T24] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  313.048223][T13963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2604'.
[  313.164498][   T24] usb 6-1: Using ep0 maxpacket: 8
[  313.171966][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  313.175798][   T24] usb 6-1: config 0 has no interface number 0
[  313.178915][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  313.184082][   T24] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  313.188070][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.194626][   T24] usb 6-1: config 0 descriptor??
[  313.200401][   T24] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  313.404219][   T24] usb 6-1: USB disconnect, device number 39
[  313.666055][T13980] FAULT_INJECTION: forcing a failure.
[  313.666055][T13980] name failslab, interval 1, probability 0, space 0, times 0
[  313.674971][T13980] CPU: 2 UID: 0 PID: 13980 Comm: syz.2.2609 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  313.675008][T13980] Tainted: [L]=SOFTLOCKUP
[  313.675017][T13980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  313.675028][T13980] Call Trace:
[  313.675037][T13980]  <TASK>
[  313.675046][T13980]  dump_stack_lvl+0x100/0x190
[  313.675081][T13980]  should_fail_ex.cold+0x5/0xa
[  313.675112][T13980]  should_failslab+0xc2/0x120
[  313.675136][T13980]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  313.675184][T13980]  ? sock_alloc_inode+0x26/0x290
[  313.675211][T13980]  ? selinux_socket_create+0xec/0x590
[  313.675237][T13980]  ? __pfx_sock_alloc_inode+0x10/0x10
[  313.675262][T13980]  sock_alloc_inode+0x26/0x290
[  313.675307][T13980]  ? __pfx_sock_alloc_inode+0x10/0x10
[  313.675333][T13980]  alloc_inode+0x68/0x250
[  313.675366][T13980]  sock_alloc+0x44/0x280
[  313.675385][T13980]  ? security_socket_create+0x7f/0x250
[  313.675416][T13980]  __sock_create+0xc2/0x860
[  313.675447][T13980]  __sys_socket_file+0x141/0x1d0
[  313.675476][T13980]  ? _raw_spin_unlock+0x28/0x50
[  313.675508][T13980]  ? __pfx___sys_socket_file+0x10/0x10
[  313.675544][T13980]  io_socket+0x154/0x450
[  313.675581][T13980]  __io_issue_sqe+0xe8/0x7a0
[  313.675719][T13980]  io_issue_sqe+0x88/0x13e0
[  313.675752][T13980]  io_submit_sqes+0xafe/0x24b0
[  313.675792][T13980]  __do_sys_io_uring_enter+0xa88/0x1b50
[  313.675823][T13980]  ? __fget_files+0x21f/0x3d0
[  313.675845][T13980]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  313.675875][T13980]  ? fput+0x79/0x100
[  313.675907][T13980]  ? ksys_write+0x1ac/0x250
[  313.675927][T13980]  ? __pfx_ksys_write+0x10/0x10
[  313.675949][T13980]  ? rcu_is_watching+0x12/0xc0
[  313.675982][T13980]  do_syscall_64+0x10b/0xf80
[  313.676001][T13980]  ? clear_bhb_loop+0x40/0x90
[  313.676025][T13980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.676045][T13980] RIP: 0033:0x7f89a1d9c819
[  313.676065][T13980] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  313.676084][T13980] RSP: 002b:00007f89a2bc7028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  313.676105][T13980] RAX: ffffffffffffffda RBX: 00007f89a2015fa0 RCX: 00007f89a1d9c819
[  313.676124][T13980] RDX: 0000000000007721 RSI: 0000000000002219 RDI: 0000000000000000
[  313.676135][T13980] RBP: 00007f89a2bc7090 R08: 0000000000000000 R09: 0000000000000000
[  313.676147][T13980] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[  313.676158][T13980] R13: 00007f89a2016038 R14: 00007f89a2015fa0 R15: 00007fff878829e8
[  313.676199][T13980]  </TASK>
[  313.677483][T13980] socket: no more sockets
[  314.047346][T13993] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  314.732427][   T60] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  314.862552][   T24] ------------[ cut here ]------------
[  314.868102][   T24] [CRTC:39:crtc-0] vblank wait timed out
[  314.870661][   T24] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1921 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#2: kworker/2:0/24
[  314.877033][   T24] Modules linked in:
[  314.879616][   T24] CPU: 2 UID: 0 PID: 24 Comm: kworker/2:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  314.884791][   T24] Tainted: [L]=SOFTLOCKUP
[  314.886669][   T24] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  314.891131][   T24] Workqueue: events drm_fb_helper_damage_work
[  314.892236][   T60] usb 5-1: Using ep0 maxpacket: 8
[  314.894493][   T24] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  314.899838][   T24] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d d8 1d 3f 0b 8b b3 d0 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 43 8e 61 fc e9 7c fe ff ff e8 49
[  314.903065][   T60] usb 5-1: config 9 has an invalid interface number: 195 but max is 1
[  314.904990][   T40] audit: type=1400 audit(1776709770.209:1068): avc:  denied  { write } for  pid=5945 comm="syz-executor" path="pipe:[6475]" dev="pipefs" ino=6475 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  314.908652][   T24] RSP: 0018:ffffc9000062f6e8 EFLAGS: 00010246
[  314.913312][   T60] usb 5-1: config 9 has an invalid interface number: 94 but max is 1
[  314.921391][   T24] 
[  314.921407][   T24] RAX: 0000000000000000 RBX: ffff888027760040 RCX: 1ffff11004eec022
[  314.921421][   T24] RDX: ffff8880276982a0 RSI: 0000000000000027 RDI: ffffffff90e70900
[  314.921431][   T24] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  314.921441][   T24] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  314.921450][   T24] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88816da24000
[  314.921460][   T24] FS:  0000000000000000(0000) GS:ffff8880d64e7000(0000) knlGS:0000000000000000
[  314.921490][   T24] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  314.929232][   T60] usb 5-1: config 9 has an invalid descriptor of length 185, skipping remainder of the config
[  314.930172][   T24] CR2: 00007f648e9e9f00 CR3: 00000000501e7000 CR4: 0000000000352ef0
[  314.930195][   T24] Call Trace:
[  314.930203][   T24]  <TASK>
[  314.930220][   T24]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  314.930258][   T24]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  314.930286][   T24]  ? lockdep_hardirqs_on+0x78/0x100
[  314.936024][   T60] usb 5-1: config 9 has no interface number 0
[  314.937558][   T24]  ? __pfx_autoremove_wake_function+0x10/0x10
[  314.937595][   T24]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  314.941128][   T60] usb 5-1: config 9 has no interface number 1
[  314.945066][   T24]  drm_atomic_helper_commit_tail+0xff/0x130
[  314.945105][   T24]  commit_tail+0x338/0x430
[  314.945132][   T24]  drm_atomic_helper_commit+0x303/0x380
[  314.945154][   T24]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  314.945178][   T24]  drm_atomic_commit+0x230/0x300
[  314.962236][   T60] usb 5-1: config 9 interface 195 altsetting 2 endpoint 0xD has invalid maxpacket 52628, setting to 1024
[  314.965705][   T24]  ? __pfx_drm_atomic_commit+0x10/0x10
[  314.969098][   T60] usb 5-1: config 9 interface 195 altsetting 2 bulk endpoint 0xD has invalid maxpacket 1024
[  314.971451][   T24]  ? __pfx___drm_printfn_info+0x10/0x10
[  314.974782][   T60] usb 5-1: config 9 interface 195 altsetting 2 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  314.976413][   T24]  ? modeset_lock+0x114/0x6d0
[  314.979258][   T60] usb 5-1: config 9 interface 195 altsetting 2 has a duplicate endpoint with address 0x8, skipping
[  314.982181][   T24]  drm_atomic_helper_dirtyfb+0x603/0x790
[  315.000011][   T60] usb 5-1: config 9 interface 195 altsetting 2 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[  315.004863][   T24]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  315.004923][   T24]  ? do_raw_spin_lock+0x128/0x260
[  315.004951][   T24]  ? find_held_lock+0x2b/0x80
[  315.004972][   T24]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  315.004996][   T24]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  315.005022][   T24]  drm_fb_helper_damage_work+0x348/0x640
[  315.005053][   T24]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  315.009563][   T60] usb 5-1: config 9 interface 94 altsetting 0 endpoint 0xE has invalid maxpacket 29632, setting to 1024
[  315.012205][   T24]  ? rcu_is_watching+0x12/0xc0
[  315.014862][   T60] usb 5-1: config 9 interface 94 altsetting 0 bulk endpoint 0xE has invalid maxpacket 1024
[  315.018862][   T24]  process_one_work+0xa0e/0x1980
[  315.020920][   T60] usb 5-1: config 9 interface 94 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 13
[  315.025770][   T24]  ? __pfx_process_one_work+0x10/0x10
[  315.029392][   T60] usb 5-1: config 9 interface 195 has no altsetting 0
[  315.034698][   T24]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  315.084474][   T24]  worker_thread+0x5ef/0xe50
[  315.086566][   T24]  ? kthread+0x13a/0x450
[  315.088491][   T24]  ? __pfx_worker_thread+0x10/0x10
[  315.090825][   T24]  kthread+0x370/0x450
[  315.093388][   T24]  ? __pfx_kthread+0x10/0x10
[  315.095489][   T24]  ret_from_fork+0x72b/0xd50
[  315.097691][   T24]  ? __pfx_ret_from_fork+0x10/0x10
[  315.099988][   T24]  ? __switch_to+0x800/0x1100
[  315.102481][   T24]  ? __pfx_kthread+0x10/0x10
[  315.104529][   T24]  ret_from_fork_asm+0x1a/0x30
[  315.106654][   T24]  </TASK>
[  315.108040][   T24] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  315.111259][   T24] CPU: 2 UID: 0 PID: 24 Comm: kworker/2:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  315.115920][   T24] Tainted: [L]=SOFTLOCKUP
[  315.117810][   T24] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  315.122163][   T24] Workqueue: events drm_fb_helper_damage_work
[  315.125065][   T24] Call Trace:
[  315.126557][   T24]  <TASK>
[  315.127912][   T24]  dump_stack_lvl+0x100/0x190
[  315.129953][   T24]  vpanic+0x552/0x970
[  315.131738][   T24]  ? __pfx_vpanic+0x10/0x10
[  315.133731][   T24]  panic+0xd1/0xe0
[  315.135417][   T24]  ? __pfx_panic+0x10/0x10
[  315.137471][   T24]  ? check_panic_on_warn+0x1f/0x90
[  315.139877][   T24]  check_panic_on_warn.cold+0x19/0x34
[  315.142223][   T24]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  315.145108][   T24]  __warn.cold+0x191/0x328
[  315.147081][   T24]  __report_bug+0x296/0x3d0
[  315.149083][   T24]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  315.152391][   T24]  ? __pfx___report_bug+0x10/0x10
[  315.154742][   T24]  ? lockdep_hardirqs_on+0x78/0x100
[  315.157041][   T24]  report_bug_entry+0xe1/0x290
[  315.159067][   T24]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  315.162281][   T24]  handle_bug+0x1cd/0x2a0
[  315.164313][   T24]  exc_invalid_op+0x17/0x50
[  315.166258][   T24]  asm_exc_invalid_op+0x1a/0x20
[  315.168423][   T24] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  315.171848][   T24] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d d8 1d 3f 0b 8b b3 d0 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 43 8e 61 fc e9 7c fe ff ff e8 49
[  315.180505][   T24] RSP: 0018:ffffc9000062f6e8 EFLAGS: 00010246
[  315.183176][   T24] RAX: 0000000000000000 RBX: ffff888027760040 RCX: 1ffff11004eec022
[  315.186632][   T24] RDX: ffff8880276982a0 RSI: 0000000000000027 RDI: ffffffff90e70900
[  315.190087][   T24] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  315.193530][   T24] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  315.197080][   T24] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88816da24000
[  315.200489][   T24]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x6e6/0x8a0
[  315.203327][   T24]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  315.206548][   T24]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  315.209005][   T24]  ? lockdep_hardirqs_on+0x78/0x100
[  315.211439][   T24]  ? __pfx_autoremove_wake_function+0x10/0x10
[  315.214401][   T24]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  315.217191][   T24]  drm_atomic_helper_commit_tail+0xff/0x130
[  315.219719][   T24]  commit_tail+0x338/0x430
[  315.221655][   T24]  drm_atomic_helper_commit+0x303/0x380
[  315.224066][   T24]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  315.226734][   T24]  drm_atomic_commit+0x230/0x300
[  315.229153][   T24]  ? __pfx_drm_atomic_commit+0x10/0x10
[  315.231761][   T24]  ? __pfx___drm_printfn_info+0x10/0x10
[  315.234174][   T24]  ? modeset_lock+0x114/0x6d0
[  315.236197][   T24]  drm_atomic_helper_dirtyfb+0x603/0x790
[  315.238596][   T24]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  315.241404][   T24]  ? do_raw_spin_lock+0x128/0x260
[  315.244018][   T24]  ? find_held_lock+0x2b/0x80
[  315.246174][   T24]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  315.248794][   T24]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  315.251262][   T24]  drm_fb_helper_damage_work+0x348/0x640
[  315.253868][   T24]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  315.257049][   T24]  ? rcu_is_watching+0x12/0xc0
[  315.259328][   T24]  process_one_work+0xa0e/0x1980
[  315.261571][   T24]  ? __pfx_process_one_work+0x10/0x10
[  315.263808][   T24]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  315.266132][   T24]  worker_thread+0x5ef/0xe50
[  315.268114][   T24]  ? kthread+0x13a/0x450
[  315.269812][   T24]  ? __pfx_worker_thread+0x10/0x10
[  315.271874][   T24]  kthread+0x370/0x450
[  315.273460][   T24]  ? __pfx_kthread+0x10/0x10
[  315.275416][   T24]  ret_from_fork+0x72b/0xd50
[  315.277313][   T24]  ? __pfx_ret_from_fork+0x10/0x10
[  315.279375][   T24]  ? __switch_to+0x800/0x1100
[  315.281393][   T24]  ? __pfx_kthread+0x10/0x10
[  315.283329][   T24]  ret_from_fork_asm+0x1a/0x30
[  315.285151][   T24]  </TASK>
[  315.287250][   T24] Kernel Offset: disabled
[  315.289071][   T24] Rebooting in 86400 seconds..