last executing test programs:

31.983419003s ago: executing program 3 (id=1518):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00'}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x1fe0000})
close(r5)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
recvmsg(r6, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001800010010000000000000000a370000", @ANYRES32=0x0, @ANYBLOB="0013fa89c32eb80001"], 0x30}}, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000001000100ff7f00000202000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
r8 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)

30.187018152s ago: executing program 3 (id=1526):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.freeze\x00', 0x275a, 0x0) (async)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(r1, r0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r0, 0x0) (async)
mbind(&(0x7f0000000000/0x1000)=nil, 0x3000, 0x2, &(0x7f0000000300)=0x2, 0x7797, 0x3) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0) (async)
r2 = syz_open_dev$sg(&(0x7f0000000440), 0xa, 0x241)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000300)={0x0, 0xd, 0x1a}) (async)
syz_io_uring_setup(0x10d2, &(0x7f0000002340)={0x0, 0x7a8e, 0x80, 0x0, 0x351}, 0x0, 0x0)

30.074981011s ago: executing program 3 (id=1527):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x409, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x1, 0x8000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_MCAST_EHT_HOSTS_LIMIT={0x8, 0x25, 0xfa7}]}}}]}, 0x44}}, 0x0) (fail_nth: 12)

30.065188509s ago: executing program 3 (id=1528):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x50, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e21, 0x7, @loopback, 0xe}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000900)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @loopback, 0x210}, 0x1c, 0x0}}], 0x1, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
io_setup(0x3ff, &(0x7f0000000500)=<r3=>0x0)
clock_gettime(0x0, &(0x7f00000001c0))
clock_gettime(0x0, &(0x7f0000000100))
clock_gettime(0x0, &(0x7f00000002c0)={<r4=>0x0, <r5=>0x0})
io_pgetevents(r3, 0x7, 0x8, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000080)={r4, r5+60000000}, &(0x7f0000000240)={&(0x7f00000000c0)={[0xc, 0x1]}, 0x8})
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x50, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
socket$inet6(0xa, 0x2, 0x0) (async)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e21, 0x7, @loopback, 0xe}, 0x1c) (async)
sendmmsg$inet6(r1, &(0x7f0000000900)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @loopback, 0x210}, 0x1c, 0x0}}], 0x1, 0x0) (async)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) (async)
io_setup(0x3ff, &(0x7f0000000500)) (async)
clock_gettime(0x0, &(0x7f00000001c0)) (async)
clock_gettime(0x0, &(0x7f0000000100)) (async)
clock_gettime(0x0, &(0x7f00000002c0)) (async)
io_pgetevents(r3, 0x7, 0x8, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000080)={r4, r5+60000000}, &(0x7f0000000240)={&(0x7f00000000c0)={[0xc, 0x1]}, 0x8}) (async)

29.845120323s ago: executing program 3 (id=1530):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r0 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
pwritev2(r0, 0x0, 0x0, 0x9, 0xd, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0xc010)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
syz_open_dev$usbfs(&(0x7f0000000040), 0xd, 0x141141)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r4, &(0x7f0000000080)={0x0, 0x51, &(0x7f0000000000)={&(0x7f0000000180)="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", 0x7}, 0x1, 0x0, 0x0, 0x24008011}, 0x24010094)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
socket(0x10, 0x80002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r6, &(0x7f0000000340)=ANY=[], 0xff2e)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x14641, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCSETS(r7, 0x89f2, &(0x7f0000000100)={0xfffffffc, 0x0, 0x0, 0x7ff, 0x0, "5dee0000005940000000000f00"})
ioctl$TCXONC(r6, 0x540a, 0x2)

29.67507622s ago: executing program 3 (id=1532):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x100, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
syz_emit_ethernet(0x76, &(0x7f0000000100)={@link_local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb3e02", 0x40, 0x3a, 0x0, @private2, @local, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "974367", 0x0, 0x11, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, [@dstopts={0x0, 0x8, '\x00', [@padn={0x1, 0xffffff84, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}]}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x0, 0x5004)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
add_key(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
io_uring_setup(0x2cee, &(0x7f0000000200)={0x0, 0x93b0, 0x3, 0x0, 0x315})
socketpair(0x24, 0x3, 0x0, &(0x7f0000000040)={0x0, 0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$VIDIOC_G_SELECTION(0xffffffffffffffff, 0xc040565e, &(0x7f00000000c0)={0x3, 0x102, 0x2, {0xdf, 0x81, 0x3, 0xc4ea}})
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000500000085000000d000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFBR(r3, 0x8940, &(0x7f0000000140)=@get={0x1, 0x0, 0x8000000000000001})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)

29.623772163s ago: executing program 32 (id=1532):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x100, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
syz_emit_ethernet(0x76, &(0x7f0000000100)={@link_local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb3e02", 0x40, 0x3a, 0x0, @private2, @local, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "974367", 0x0, 0x11, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, [@dstopts={0x0, 0x8, '\x00', [@padn={0x1, 0xffffff84, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}]}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x0, 0x5004)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
add_key(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
io_uring_setup(0x2cee, &(0x7f0000000200)={0x0, 0x93b0, 0x3, 0x0, 0x315})
socketpair(0x24, 0x3, 0x0, &(0x7f0000000040)={0x0, 0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$VIDIOC_G_SELECTION(0xffffffffffffffff, 0xc040565e, &(0x7f00000000c0)={0x3, 0x102, 0x2, {0xdf, 0x81, 0x3, 0xc4ea}})
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000500000085000000d000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFBR(r3, 0x8940, &(0x7f0000000140)=@get={0x1, 0x0, 0x8000000000000001})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)

4.315162718s ago: executing program 4 (id=1688):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000005c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000680)={0x40, r2, 0x1, 0x1070bd0c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}, @L2TP_ATTR_PEER_COOKIE={0xc}]}, 0x40}, 0x1, 0x0, 0x0, 0x40811}, 0x20)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x56, &(0x7f0000000040)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x1c, 0x11, 0xff, @remote, @local, {[], {0x0, 0xe22, 0x1c, 0x0, @gue={{0x2, 0x0, 0x0, 0x3, 0x0, @val=0x2000000}, "0000e2ffffff000000000000"}}}}}}}, 0x0)

4.121299853s ago: executing program 4 (id=1690):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0xffff, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x34}, 'hsr0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000001cc0), 0x400000000000026, 0x5e4)

4.044794376s ago: executing program 4 (id=1692):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f020048017f4e32f61bcdf1e422000000000100800000000000001000aadc28da3457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x18)
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000040)={0x2b, 0x13, 0x0, 0x2, 0x0, 0x63, 0x3, 0x2, 0x1})

3.928775619s ago: executing program 4 (id=1693):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r0 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
pwritev2(r0, 0x0, 0x0, 0x9, 0xd, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0xc010)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
syz_open_dev$usbfs(&(0x7f0000000040), 0xd, 0x141141)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r4, &(0x7f0000000080)={0x0, 0x51, &(0x7f0000000000)={&(0x7f0000000180)="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", 0x7}, 0x1, 0x0, 0x0, 0x24008011}, 0x24010094)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
socket(0x10, 0x80002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x14641, 0x0)
ioctl$TCSETS(r7, 0x89f2, &(0x7f0000000100)={0xfffffffc, 0x0, 0x0, 0x7ff, 0x0, "5dee0000005940000000000f00"})
ioctl$TCXONC(r6, 0x540a, 0x2)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100))

3.346988209s ago: executing program 1 (id=1698):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000080004004400000008001b0000000000"], 0x30}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f00000000c0)={0x0, 0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x1000000, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x10, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0xfff}]}}]}, 0x40}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210283ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000fcd3df2503000000400001802c0004001400010002000000ac14142f000000000000001714000200020000000000000000000004000000000d0001007564703a73797a3200000000"], 0x54}}, 0x0)
bind$bt_l2cap(r0, &(0x7f00000005c0)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r1)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r8, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x34, r10, 0x4, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x100}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @random="6887a385d687"}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x8800)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r0, @ANYRES32, @ANYRESOCT], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r12}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240), 0x0, 0x2, r12}, 0x38)

3.129659629s ago: executing program 1 (id=1699):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x4800, 0x0)
ioctl$CDROMREADAUDIO(r0, 0x5392, 0x0)

3.128368149s ago: executing program 1 (id=1700):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@multicast2, @loopback}, 0x20000)

3.043893742s ago: executing program 1 (id=1701):
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc00c64b5, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, <r0=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000080)={0x0, 0x0, <r1=>0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={r0, r1, r2, 0x0, 0x0, 0x9, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = accept4$x25(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240)=0x12, 0x800)
ioctl$SIOCX25GDTEFACILITIES(r3, 0x89ea, &(0x7f0000000280))
r4 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNGETOBJECT(r4, 0x89e0, &(0x7f00000002c0)=0x5)
r5 = socket$inet(0x2, 0x404, 0x7a)
bind$inet(r5, &(0x7f0000000300)={0x2, 0x4e22, @remote}, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r6)
r7 = openat$snapshot(0xffffff9c, &(0x7f0000000380), 0x145100, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r7, 0x400c330d, &(0x7f00000003c0)={0x6, 0x2})
nanosleep(&(0x7f0000000400)={0x77359400}, &(0x7f0000000440))
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000540)={'bridge_slave_0\x00', &(0x7f0000000480)=@ethtool_perm_addr={0x20, 0x7d, "3533e288947c515408e2adb62002a9591a350f7f2646260e4356d8b7ad4e4a07a19d1fed1d0f22ed44bf4617b49ac8275317b81b6802ca75b3d3b39d86c0f09ff972a1089eaff0e1d1b4b4537684458715e49a1b3557990c69144b1f6ffd1f46c75d6bae87c6a64fdd44a8df12dc5f3cf04b02191e2c4bf8c28ff55afd"}})
r8 = openat$vmci(0xffffff9c, &(0x7f0000000580), 0x2, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r8, 0x7aa, &(0x7f00000005c0)={{@local, 0x5}, 0x3, 0x3})
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000600)={0x0, 0x2}, 0x8)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000640)={0x0, @private}, &(0x7f0000000680)=0xc)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000700), r6)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000740)={'wpan0\x00', <r11=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r9, &(0x7f0000000840)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x50, r10, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x3}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x6}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r11}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000001)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$devlink(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r12, &(0x7f0000000b00)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000900)={0x188, r13, 0x1, 0x70bd29, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x188}, 0x1, 0x0, 0x0, 0x44010}, 0x4800)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(0xffffffffffffffff, 0x10f, 0x84, &(0x7f0000000b40), &(0x7f0000000b80)=0x4)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r12, 0xc0189371, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, <r14=>r3}, './file0\x00'})
ioctl$VIDIOC_S_SELECTION(r14, 0xc040565f, &(0x7f0000000c00)={0x4, 0x101, 0x4, {0xcbc, 0x6, 0xf, 0x5}})

3.043230577s ago: executing program 2 (id=1702):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
writev(r0, &(0x7f0000000100)=[{&(0x7f00000005c0)="2e9b5b0007e03dd65193dfb6c575963f86dd60", 0x13}, {&(0x7f0000000200)="b700001806182e5f6a5abeef4ba0d598446273cd3d0856ccec377a3f3b187624b38787011284a16a9504e4b207c95104085f0836bfd11345eeb17f6151ad49", 0x3f}], 0x2)

2.884350621s ago: executing program 4 (id=1703):
socket$key(0xf, 0x3, 0x2)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x2, 0x2, 0x1)
getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000100)=0x14)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
getrusage(0xffffffffffffffff, &(0x7f0000000000)={{<r2=>0x0}})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f00000004c0)=0x100000001, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRES32=r2], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r7, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r7, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r8=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r7, 0xc02064b6, &(0x7f00000001c0)={r8, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r7, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r10=>0x0, 0x0, <r11=>0x0], &(0x7f0000000040), 0x3, r9})
ioctl$DRM_IOCTL_MODE_ATOMIC(r7, 0xc03864bc, &(0x7f0000000580)={0x601, 0x1, &(0x7f0000000180)=[r9], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[r11, r10, r10], &(0x7f0000000340), 0x0, 0xffffffffffffffff})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', 0x0, 0x8c, 0x0)

2.134709784s ago: executing program 2 (id=1704):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r0 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
pwritev2(r0, 0x0, 0x0, 0x9, 0xd, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0xc010)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
syz_open_dev$usbfs(&(0x7f0000000040), 0xd, 0x141141)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r4, &(0x7f0000000080)={0x0, 0x51, &(0x7f0000000000)={&(0x7f0000000180)="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", 0x7}, 0x1, 0x0, 0x0, 0x24008011}, 0x24010094)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
socket(0x10, 0x80002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r6, &(0x7f0000000340)=ANY=[], 0xff2e)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x14641, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCXONC(r6, 0x540a, 0x2)

2.128701786s ago: executing program 1 (id=1712):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
r3 = syz_open_dev$ptys(0xc, 0x3, 0x1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r4}, 0x18)
ioctl$TIOCSWINSZ(r3, 0x5414, &(0x7f0000000000)={0x1000})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000a80)={0x6, 0x1, {<r7=>0xffffffffffffffff}, {<r8=>0xffffffffffffffff}, 0x0, 0x5})
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, <r9=>0x0}, 0x2020)
sendmmsg$unix(r3, &(0x7f0000000e00)=[{{&(0x7f0000000900)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000980)="10e741f7ecf7eeaee481ff3d9d8dcf4a5d2ed366d25edf477d00de3f6b2af48b5a88dd293a3cf86d21ed1b380fdf954392e6b965d34a470ccaee29c4af4402fc0ee26fadf7cc5df5f754d7b54e503e05cb0b95068c38727281a5655041800513c774cf", 0x63}, {&(0x7f0000000a00)="f9a96250405365ec27c9b12c595dae67253a6b45d7ead6631052344eb35665ab590b8903e538fcd2122937472c114c3e538e03684eeb7a54e688838d662ddd759f36f9ee8317db17d2ce5eb189cafda9986158616a0260", 0x57}, {&(0x7f00000001c0)="e8fba061f41a9cc9", 0x8}, {&(0x7f0000000300)="ad93cdc59ecbf95df5f95563cb32d44178928a48016d09d42cf52d9276de371f8c9cc90e0a53f3948db81ad031bcf42cc0b3255c62bff6", 0x37}], 0x4, &(0x7f0000000ac0)=[@cred={{0x18, 0x1, 0x2, {r7, 0xffffffffffffffff}}}], 0x18, 0x8000}}, {{0x0, 0x0, &(0x7f0000000d80)=[{&(0x7f0000000b00)="e93177ed8813110791989cc753fe54e4c64ca5c4ba09c6f11e3475c6aed0ad70210ef4658ab9f72efdb934", 0x2b}, {&(0x7f0000000b40)="2de9f2d9fd28e092950e1f0c6d5392d4577988d165729887d1352ccb96483788ad008095fb54efd7ff732dfffbbbf943a500f26615928f7c6578cff15d65848f5e56e1370b083b6388506ba4ae2a634f8371ec6ffe4c61ea3d8d808b3da7fd24016539f4b733a8f43b1b427adf3d32f9f6151aba8ce95c967658fd450c6c1c6c49df79d32bd164020cb7ca29264d4a6848af61689b66238f82cd4f6ffa96c44073f187e299cdaa9fa8f490143329550b6dd025113153d7cb705cebb45165b2e7b3ff7cbb884e6577c6f8c2e41e14ee5abdc5bc1bdc8177ddce4159a14db99d69a38891bb8f57350514", 0xe9}, {&(0x7f0000001740)="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", 0x1000}, {&(0x7f0000000c40)="54ca33caa687d2f41a7fd9d94a6a4ffee90b70d33a4fc0f1534b1f974f687442f7fc315abf5864ccdbaf07d1316339524dcdb28a5c05add25ac495ffe1e3bb8796df7e", 0x43}, {&(0x7f0000002740)="477e41047f82bd61cd336097e974eb57c4b738e4a3116ac053292b5b235165eb6589921908b38a2daa8edb666d03422cffd97e66f4e0abc78c0332e0d1490bdb59644ee5cc1234d083df78d893fda7e98cc3a4f11b1d763a954f045c96eed074af47e3873f82f94cd146433e293bdbfaa0e9e9e723a774a060d66ebc4924d5a82de089a3fc49be84ee9672c5c0ea29e861b62ecc3d9abbae6cf948d0249b1ca9231da153b82ea4723f91a8c940e39325d922c7e52c9fb1d099010511695872af6d3f5f69b031d7534087d1d781738c68048055f6c032deb2d7177fcdae8ce7dd2dddc5583917cd2cd01728bf74540c7cf941552bf6e36db4eb62dda75ae0876d2b734a485381afff4a77a08633ad55a01355d9f86b0402115797db44da3926096bec9d377d67c9bf510a7bfa189b3186d2900e8762fd5d8b7e461495a1c499322b1205caa1b31b754086a603d69ad65674e0a0b86d673498a2f15dd78f9f4f527a359b13e21f365a058a1c4de53da2d1b61931e9528185547b5b9117f8a14a2299c0cce6ab9e1b0c91c8045848a19a2863068e1821b203cfba280f2f6d7b95d3c8e4719329124c0af6d9a7f2807ed69ebbf99002c892e0aaf96f7bcc53f8cfd1eef0bb10d66b3c5bd56bb5299546dcd542dcba3b20abac88f82fbc835e113482302e0fdbacbb7c50112a0d072aec50e90c01a6beb7fc58e006aa06cc08a3689183de22f34a2ebe9e6a828ef1533aecf05684d8cfaec79c1e439e41d451d93427942ed5b3d1b56f520f41a34b171588e7fbbf38bccfcccf3d024806ac54d7f39653ad3f1559946197ddcb14c71ffeca460485d79ac98396d6fdd7662515066f1dd5b6e4203b2ac802cb0389464c7af6130ab2193e254cdf8a8331e5409e4b28085b49333a9ddcaf2fe357c2ff1a3bce4afb1826c0c75766a810c4a8d5a2537cf48db1eb5a2b558286af3200a32c146521966dd68db0a04de159fa363ee151f286e69f80cf85c1deb2f13caea5072ff36fbbd8d7deb84a0c9d314328ff4e6bee09b5cb80b785df2f9a1e6bf47c6e88f996395efb4c756769e84959fa32a346967407ad555eed5c6f9872ae7346b09cc841b34ac44f92fbfe58a06f94f74ac6e95a30b5ed8901851bdca51476c347dd4238a8ea2495e6b06847698f0e51d7fff3b6c5c01871d49cf99f552a087b006154edd7a9d935f9c6484cf9bb736fa7a66cf5ba4fcd2a1b7983e04d9d5d99d26ba68373aeae50253d3b1f99a747648073846200a7ea97a5ee0c3094ff2bfedbd0d1fa986ad09537fb682d76f7ec63c3b46df95c01e3c874e2cda72fb6c77f7078aaf1d42e6a58c160ee25780c0a8f427b67e0573180b8ace7fa536b76481c7b8322a99f1889d3500b165a0d8353a64752518c2f87be837dd4579d65369c70a1e993521044e4a16989afeac32e9a62f8045bc27aabf1245fc17160c2f14b7bb17ae5516d97b01df1cd066808ed7bc73f7f6db7316e5b9abacf57d4c45699293d269c2c36eaf10e34ad0d130c6197d4d47c607267b8c5d050620079717797383d28e9ffb86b7fcf6e2d7cff495bf7101e69f2d8cbf99c2364b765b2cf87adc6a99397c279921e7bf2b897c67f8f71af7307923bb148628005948f4b613cf25f79095b7f213864b963752b0e799bac80d6cf6625a7d77f292a999246f98abf0c628dfa727f339bad4c0ab9ca7e95dbdd86e0967fa7b84ea5838a62ba290153560a388f71927070a6058c727e8451b6e767a38b7ef2d25226b0003bf9b1cf826ee1159c4da4564886dae37c67620e0b3ec31edd2104fb9e10f7ec105f1cc3d1c7775e25f12f5138a2c5aca3cb5af8302dcca400cbf0ee6635dfd07ff8a5b69283f632ef288f094d13e5c66c8918ec56e7942c3051f7b6a277ed64482b7f01de065dce1299d162043a37ba4b4ad36caa3b7fd39df0ad0dca6c2bddc6eeaebda1a7ace7aba6228f482f1e62100522637ef78d92eec777671b1f000d953cdaf552b88cb53f3b25d6dd48306edbf8db6f8dca5f6cbf204039a938555c1580388117ade12abc3dce800d79ef72e58c016cf966b3cf82b5c14d5eb726cfeb0667dc2fad482c64092d560973e2bfaafb617065d3ca8f9a8f187c07169411bd077eaf5092b7399e23e8c3688a22182db1f19e3346224f0ff94e881fbc68a78bac1d298e7cb76d0fb14f6e546070e612886c27531343de3e7d23b00ae48ac0ff0e41a315abb1ef4da0e479c1b740f52b8c7bf85ddad548be1fb04e8ccae73c64d2bfb45df7d0287e4095dc580b009d4e0c5a1a63d60ab8908d44c38763fca91a0d3c1fe75bb565250b875d2abb393246cedc2984e0271a9edd157d2a03ff7637d55cbb8cbc1d29bf24b1697550cd0e21a29d72ca2735ed28a7f3eaa62eab30e84d7072a8cbf3486c778cbf091765d25c5edb2f913516d30388376ba472315425b513ae33a3fa4a91fc47e0c85170bd966a96d98ba3b4db67165290d60f08720a0b3754d0dedc250ebbc87c356b8bbf1f36a32a3026611e5e46fb68ed9223b55e273cb0aa96d31dc28e2de9356bc721720941f806145c4eedb76a9e13d7ead2a03b89bf7d5e4cd24fd1ed93560f70fc3e8460f88b7c4f3c6d407336a072b77cefdc5cfe673eef72956376f8d466ae63a4c6e1cbf32015ad4a823c34ed50f810fc6bcf2be1da3530a9bfde7d654c109f7475066c4cb4ffb63115f9ed930a8cb92beb856fac7a1217422de663900fc96cff4fc1b2a221e94d7bb7db53e063b5163aa1a37c7827f54786fa09f825dee8f77bbbb91aad279f91381985562b35f52bc10a1b7dd73e1cc17a25177f9ac2d5415a471892a5c036e81109636300c95f06f9705fe9911759f4168dec30d8067de46be57bc51f2f4b9c464ff572b58bc7a04058b8bad711511e5c2dc709e1dd050941609336175d6556d384dc8ba15b3bb228dae571a64f41c0581a0d7312f69794cd02acee9348ede662674df5a9ea202e04bc34b08a43b6ee605603dcc0c28be42de17a8f44898eff6be3eb95b53c0e3910c2f07048ab8e255f9af191955d360a996892233f25b973adcd70e861f00c10aeb6181b17fda34d57158fbba4d3ffb746a7e3e24982c2d136f37b722d784c2e3ebf031eaa724a688e1193345fe100042294bb075383df85d4cbbd905c22870205b7dba076638cc49cc076b01265673bfa9d339f5dfe58bb9f90a3418299390c16b702a54fc3eaf50dc372d9b4ced881a897e32911c605819b0a77925e84376631db5823911377b714d30efe8a1a5e23ff1b8749efeee554a693986b7b13312abe550ec6d911a7f7521a65a4dd1218d11cbfb370145b2aa9d7aaabe3831a68a1a005577ccd706efba22ae4836034aa4064a7e764d6ec6115345cbef06fe478e90c6991252518a7508e98cd21017c5e814352bbf785a4fa7bddca380469802fd746222810818bf708449b60c7f8d2ed4b940faea398673a118dca4b2f2d5b4fef94a2a54b2139f55735aceb4fd9dcdcf0f4208bf73fc02095eaca45808458f1fd6ff2bf9de288b38945b34823dd6dc2fb770b2327557619beda95ad09ba9e1f93277f0de01a70159be885f334514c06395bd869a5c7381166ace817533c69e412224c135c50060e8b7ca5039d70477bb222eaf6054b30a4b0d099293a3480461f2e1b985f870cb0607abd12332e50558c72d7e7b48710fab900b67e656e3c1812427ca945886d504136c3da84ea01fed3871bcb77ac180cb54b979d990f28d5ea981c61be75280abd42fb66a0cd74edb9499fa0a9838b6e7ad56a246e7c3c2e875b28c36246c6655296eb3e4bfa0015fdd9f211bc586e715970929009b21800f107c8bf39e64e559b6791a60cf2b8407dd00f32e9d5af38603b2141a18ce716ecb3e490d3a3cee57f2fdb5cdadeba638a660215fec29bfc6156b69caa13e97d70b190273b25f9c370d3695052ddb956653a0b615663dd424c8e64f720ac9d7a44f85ff7131812a19f77401c77343d6d07a6dd5367df308ce35739355fbff749816afd8b6c68d8f5407047493ca09bbc40bd62baf65de0c74ff01dff95cd675d6b43757c37777205077c738f333346bdc0a925a5ba0c8defec4bae55390821672fafdf3e5c8a23d02088599627b46d4cd406206651ad5b7cb050db66e2b3ff9fac0e586679ba2a82c1953a0f0180940e4b470e99d8bd70703cfd41cec16563a2b503316fdf2cc76a13845416f13e5c596598ef2d9625486389f8268115f06aa24de7623458017c00c6f90842431deb69593e6edb15789d49c34a68e0c55b0e92a9ad8f139789b9a441fcb67d947c013412805f34c0a3600a513b1e997eae2da9ea07df56828f583477f87ab4d0fd888d6f64835737d338a78c6abcc1a1cf263bddf9657b36f093b9d2979f5d12cc81f3c18d8e25e0e28296d0d61e5103dabf2fe3c0ca42d567737bb0d4e35250e2d3a0b844ad1a447089d8b2ef93c7cc9c1859e00dbd81f6c01a196b914e4bc68084d4891aa5e58a8d2fd4a0bab194caa7fb8d7aef9f7fee5e5dbbf76d630e9433088c1183f60cee89b4e3827814a07e3e99a751c7f05321460db1a7ffd7c5b9c2643729d0cea81bf7387cb5ab21ee25191347f181faaea2bf2f05a6855ec64f8add23eced870bb7e370f7d5311d77be7f4b73c48201d022dcddefe0ae88b3dbc5700b6c9bbf4b6c05fb1314d48cc02fad7df23cdb3f981a0ef8fc72e2e22b8b37efab7af93ac92b32c8b970983a1b40b814754054f557fa05b9b8d668c6979f5c32b1a2df0f643dd2ecf40f88334971fc4af2a452b4c94ad9a6f3693a27712ebd312569ee2121a6b2aac00914cb04ffed5d1899183cc1325611284ff20c0afb0a0a1fffbe612461264dfe70a5c7ae0bbec9053e86a5114e62837044e803ee3566633c4adcaa96ddce25adab156df9dcfc9074cf87002e84618fbc60f60747d3c5fb5a50766caa5faf36fafd565510cedb2994e6090f2b333fc759040f4149a39366e74e12e84b5bfe3cdf5681ec417a4e298a32445301c6e265318d10401ff8538e96bad31bda8d924c1aec227d49193e67250f9d0a9e7733700e9869ea7eff8c06e28b2c08d6bd627282f49864f81bf6da3c92dc2e92cba8328fb278da7d382c216db3af2f0acf974f7d023f488cf2adeedb5e31f3a6eef7762ef0c606c8c672315c720486746dabe4f82e88d3a6205c661b2c4945a4b0ffe721b884c89c01877bcc7d1c6f73946bfd9d930cb3adda2246e71965399714f4df1f950f03da7a8cb18b92ccab86f4d0f85346633907c9f59547fc151f7ffe5149d6818e67bddcaf9c49b97da1449e0d3941abf3bdd4e4ec1edc670df8626b7ac8a28b4ca21c9052afb3ae8bee9ab962136813b6a40cf19e20e0d7ee91d7a9b9b9334db990807482da3b0d2951428b7bc5e8a9a2b0bf5d91fadf5dab263d209b44f41ac4e8360c7e7691f6de452695b0af25baba57109813d4f86485daab95ed681808535fb382f91ac6291ae8e5753ca008c0d0ef99fd849fe6f0b57f51e6ad87302b8af3245162b95a771d7d5face90b8a027d87357543646e38b19da18366a757db11b35fdd0f07e015661270d678b857baf39f095416fcbc20727469784e23d4055aa4530a0cd3e8c729c9776a01e8efa8c85974d6c57f56dd4796f6609bc3628e6ed468c4fa1afe361d36c632a81153eb4d9366ab39c83561f53ed49aaf368933b8feb9dfee0b1d9ac8325988b878384752faadda5a58ee3a539d3cfc3dd2585117a4d97255da6bbd81846ea5cf666448bab3", 0x1000}, {&(0x7f0000000cc0)="f7aac20d57", 0x5}, {&(0x7f0000000d00)="3726dfb1ea848459eb4b56ca5586ec5695414a70d5b61136125c", 0x1a}, {&(0x7f0000000d40)="79655d0ab435fb04fb", 0x9}], 0x8, &(0x7f0000000dc0)=[@rights={{0x10, 0x1, 0x1, [r5]}}, @cred={{0x18, 0x1, 0x2, {r7, r8, r9}}}], 0x28, 0x800}}], 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x3, 0x0, &(0x7f00000003c0))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x6}]})
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000180)=<r10=>0x0)
ptrace$setregs(0xd, r10, 0x2, &(0x7f0000000840)="c235398a851c263556c0c12d4240a4542559344232c37cabcde3a2257df22ece777a38c97a3e7ce3dfe170d7a241dc4a95e6e4031f6e875a049d55556ee596aa1420c7bf6fec6c0196968ae5a5f21209520b87725bab49c41573dcfff72f208b3e7b61c53d0a5a52a168eaecc12625fe3042c5449c08184bb8f70fe61f82f7d79a45606ed33e1fbf3c97bdeeb996a194a7a74d6cfc448f68134505bc917de940694b805edf5109")
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffe5e)
timer_delete(0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x3c1, 0x3, 0x374, 0x168, 0x111, 0x4b4, 0x0, 0x700, 0x2ac, 0x278, 0x278, 0x2ac, 0x278, 0x3, 0x0, {[{{@ipv6={@mcast2, @empty, [], [0x0, 0xff], 'vlan0\x00', 'vlan1\x00', {}, {}, 0x88}, 0x0, 0x120, 0x168, 0x0, {}, [@common=@inet=@multiport={{0x50}}, @common=@unspec=@connmark={{0x2c}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x7095, 0x5, 0xf461, 'pptp\x00', {0x3}}}}, {{@uncond, 0x0, 0xdc, 0x144, 0x0, {}, [@common=@unspec=@statistic={{0x38}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz0\x00', {0xfffffffc}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3d0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x4903, 0x0)
ioctl$CDROM_DISC_STATUS(r12, 0x5327)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002211c0000001f000000060001000000000008000500", @ANYRES32=r0], 0x64}}, 0x4000000)

1.214760774s ago: executing program 4 (id=1705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x5, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xffffffffffffff15, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRESDEC=r1, @ANYRES32, @ANYBLOB="000000000000000000000000002705a5d700c5ff000000000000ffb5"], 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r2}, 0x4)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000ff98de434ad10be89eb5e218200000", @ANYRES32=r2, @ANYBLOB="000000000000000061000000000000009500000000000000"], &(0x7f0000000d40)='syzkaller\x00'}, 0x94)
r4 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
r6 = socket(0x10, 0x3, 0x101)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='netlink_extack\x00', r7}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYRES8=r2], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0xccaf6597d9ddbc26)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2c, 0xfffffff9, {0x60, 0x0, 0x0, 0x0, {0xd, 0xd}, {0xfff1, 0xffff}}}, 0x24}}, 0x44080)
shmat(r5, &(0x7f0000ff7000/0x3000)=nil, 0x400c)
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xad1758e97406a444)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYRES8=0x0], 0xa4}}, 0x4)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r8, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty, 0x7}, 0x1c)
sendmmsg$inet6(r8, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000900)=[{0x0}], 0x1}}], 0x1, 0x4404c880)
socket(0x10, 0x3, 0x0)

1.21427176s ago: executing program 2 (id=1706):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@can_newroute={0x78, 0x18, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@CGW_MOD_XOR={0x15, 0x3, {{{0x2}, 0x4, 0x0, 0x0, 0x0, "7260be8c75edcc92"}, 0x1}}, @CGW_FILTER={0xc, 0xb, {{0x0, 0x1, 0x0, 0x1}, {0x4}}}, @CGW_CS_XOR={0x8, 0x5, {0x5, 0x0, 0xfffffffffffffff8, 0x4}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x1}, 0x6, 0x1, 0x0, 0x0, "1ef65a9d1780a719"}}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x1}, 0x3, 0x0, 0x0, 0x0, "5f8f3949e7569fbd"}, 0x1}}, @CGW_MOD_UID={0x8}]}, 0x78}}, 0x6000000)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x15)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r1 = openat$dlm_plock(0xffffff9c, &(0x7f0000000040), 0x18000, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0xfff, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x6}, 0x1c)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@can_newroute={0x78, 0x18, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@CGW_MOD_XOR={0x15, 0x3, {{{0x2}, 0x4, 0x0, 0x0, 0x0, "7260be8c75edcc92"}, 0x1}}, @CGW_FILTER={0xc, 0xb, {{0x0, 0x1, 0x0, 0x1}, {0x4}}}, @CGW_CS_XOR={0x8, 0x5, {0x5, 0x0, 0xfffffffffffffff8, 0x4}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x1}, 0x6, 0x1, 0x0, 0x0, "1ef65a9d1780a719"}}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x1}, 0x3, 0x0, 0x0, 0x0, "5f8f3949e7569fbd"}, 0x1}}, @CGW_MOD_UID={0x8}]}, 0x78}}, 0x6000000) (async)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x15) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) (async)
openat$dlm_plock(0xffffff9c, &(0x7f0000000040), 0x18000, 0x0) (async)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0xfff, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x6}, 0x1c) (async)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6) (async)

1.199034318s ago: executing program 0 (id=1707):
kexec_load(0x10000000, 0x0, 0x0, 0x320000)

1.074887286s ago: executing program 2 (id=1708):
r0 = openat$sysfs(0xffffff9c, &(0x7f00000003c0)='/sys/power/pm_trace_dev_match', 0x20800, 0x2)
finit_module(r0, 0x0, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{0x1}, &(0x7f0000000080), &(0x7f00000000c0)}, 0x1c)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='projid_map\x00')
pread64(r1, &(0x7f0000000500)=""/31, 0x1f, 0x9)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{0x1}, &(0x7f00000001c0), &(0x7f0000000200)}, 0x1c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x21, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1fd9, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@jmp={0x5, 0x1, 0x2, 0x3, 0x9, 0x20, 0x1}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x5}, @exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @alu={0x7, 0x1, 0x6, 0x3, 0x9, 0x1, 0xfffffffffffffffc}, @map_fd={0x18, 0x5, 0x1, 0x0, r2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000003e40)={0x14, 0x1e, 0x301, 0x20000002, 0x0, {0x19}}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x4004000)

1.074754638s ago: executing program 0 (id=1709):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@multicast2, @loopback}, 0x20000)

1.074351664s ago: executing program 0 (id=1710):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000900)=ANY=[@ANYBLOB="180000000100ffff000000000000000085000000ae00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0xcbfc0f2606956c3f, 0x1, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x2f)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@loopback, 0x0, 0x4, 0xffff, 0x9, 0xa, 0x0, 0x0, 0x18}, {0xfffffffffffffffe, 0x753}, {0x0, 0x0, 0x5, 0xffffffffffffffff}, 0x3, 0x0, 0x1}, {{@in=@empty, 0x0, 0x6c}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2000}}, 0xe4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
ioctl$CDROMPAUSE(0xffffffffffffffff, 0x5301)

1.073880738s ago: executing program 2 (id=1711):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r0 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
pwritev2(r0, 0x0, 0x0, 0x9, 0xd, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0xc010)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
syz_open_dev$usbfs(&(0x7f0000000040), 0xd, 0x141141)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r4, &(0x7f0000000080)={0x0, 0x51, &(0x7f0000000000)={&(0x7f0000000180)="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", 0x7}, 0x1, 0x0, 0x0, 0x24008011}, 0x24010094)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
socket(0x10, 0x80002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x14641, 0x0)
ioctl$TCSETS(r7, 0x89f2, &(0x7f0000000100)={0xfffffffc, 0x0, 0x0, 0x7ff, 0x0, "5dee0000005940000000000f00"})
ioctl$TCXONC(r6, 0x540a, 0x2)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100))

944.611161ms ago: executing program 0 (id=1713):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000000)="b93ddb14b0a04a91c6bccd791008", 0xe}], 0x1)
syz_open_procfs(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x10, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r1, 0x10c, 0x3, &(0x7f0000000040), 0x4)
connect$llc(r1, &(0x7f00000004c0)={0x1a, 0x1, 0xc0, 0x1, 0x3f, 0x0, @remote}, 0x10)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_SECURITY_KEY(r4, 0x110, 0xffe, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000600)={0x1, 0x0, @pic={0x2, 0xfe, 0xe1, 0xc, 0x6, 0xd5, 0x40, 0xd3, 0xfb, 0x7, 0xc, 0x0, 0x3, 0x2, 0x9, 0x5}})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0xffffffff, 0x7d, 0x0, 0x20, 0x3, 0x0, 0x106e, 0x80000080000001, 0x2, 0x1, 0xfffffffffffffffd, 0x7, 0x5, 0x8000000000000007, 0x800000000000000, 0x9], 0x0, 0x3c4210})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="ad4300000000000020c015"], 0x14}, 0x1, 0x0, 0x0, 0x1004}, 0x2)

779.088456ms ago: executing program 1 (id=1714):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8040, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0xffffffff, 0x1, 0x0, 0x90, "ff00f7000000000000000020af88008300"})
r2 = syz_open_pts(r1, 0x141601)
write(r2, &(0x7f0000000000)="d5", 0xfffffedf)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
getpgrp(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000100)=@phonet={0x23, 0x0, 0x0, 0x38}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27050200590200000600002fb96dbc", 0xf}], 0x1}, 0x8000)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f00000008c0)={0x1c8, 0x0, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffb49e}]}, @TIPC_NLA_BEARER={0xc0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x10001, @ipv4={'\x00', '\xff\xff', @loopback}, 0x2}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x5, @private1, 0x4}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_MEDIA={0x40, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_LINK={0x8c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x4004004}, 0x20000000)
r8 = socket(0x28, 0x1, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r8, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0, 0x2121, 0x0, {0x3}})
close_range(r0, 0xffffffffffffffff, 0x0)

356.874356ms ago: executing program 0 (id=1715):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f020048017f4e32f61bcdf1e422000000000100800000000000001000aadc28da3457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_UIE_ON(r2, 0x7003)
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x2b, 0x13, 0x0, 0x2, 0x0, 0x63, 0x3, 0x2, 0x1})

356.079891ms ago: executing program 2 (id=1716):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r0 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
pwritev2(r0, 0x0, 0x0, 0x9, 0xd, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0xc010)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
syz_open_dev$usbfs(&(0x7f0000000040), 0xd, 0x141141)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r4, &(0x7f0000000080)={0x0, 0x51, &(0x7f0000000000)={&(0x7f0000000180)="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", 0x7}, 0x1, 0x0, 0x0, 0x24008011}, 0x24010094)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
socket(0x10, 0x80002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r6, &(0x7f0000000340)=ANY=[], 0xff2e)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x14641, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCXONC(r6, 0x540a, 0x2)

0s ago: executing program 0 (id=1717):
syz_open_procfs(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="ad4300000000000020c015"], 0x14}, 0x1, 0x0, 0x0, 0x1004}, 0x2) (fail_nth: 2)

0s ago: executing program 0 (id=1718):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f0000000440)={@pptp={0x18, 0x2, {0x2, @multicast2}}, {&(0x7f0000000380)=""/8, 0x8}, &(0x7f00000003c0), 0x10}, 0xa0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000240)=[@in6={0xa, 0x4e24, 0x5, @mcast1, 0x10001}], 0x1c)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x400, 0x102)
mknodat$loop(r2, &(0x7f0000000500)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
mount$nfs(&(0x7f0000000100)='upperdir', &(0x7f0000000140)='./bus\x00', &(0x7f0000000180), 0x20, &(0x7f00000001c0)={[{'overlay\x00'}, {'&#'}, {'workdir'}], [{@smackfstransmute={'smackfstransmute', 0x3d, ',#:}'}}, {@subj_role={'subj_role', 0x3d, '*'}}]})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x4800100b, r3, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
sendfile(r3, r5, 0x0, 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000100000900600000000e800000000000a1400000011000f000000f900000000000084000a4896262ce4ef998c16da413bbbda6422d66a04b15cee597c883613e5627342267c47565336c95848e95fa0cd2b13ddf5e0c9a568fe6619dc3c85767cb4bb0c6adc1e5de0ec4e171346d4ba26faebc33d13095d09"], 0x28}}, 0x0)
ioctl$VIDIOC_QUERYSTD(0xffffffffffffffff, 0x8008563f, &(0x7f0000000080))

kernel console output (not intermixed with test programs):

0000000 R14: 0000000000000000 R15: 0000000000000000
[  265.320394][ T9869]  </TASK>
[  265.321141][ T9869] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  265.454256][ T9872] loop5: detected capacity change from 0 to 7
[  265.459473][ T9869] syzkaller0: entered promiscuous mode
[  265.466170][ T9869] syzkaller0: entered allmulticast mode
[  265.476887][ T5950] Dev loop5: unable to read RDB block 7
[  265.479453][ T5950]  loop5: AHDI p1 p2 p3
[  265.481334][ T5950] loop5: partition table partially beyond EOD, truncated
[  265.485464][ T5950] loop5: p1 start 1601398130 is beyond EOD, truncated
[  265.488425][ T5950] loop5: p2 start 1702059890 is beyond EOD, truncated
[  265.493665][ T9872] Dev loop5: unable to read RDB block 7
[  265.502751][ T9872]  loop5: AHDI p1 p2 p3
[  265.511047][ T9872] loop5: partition table partially beyond EOD, truncated
[  265.521176][ T9872] loop5: p1 start 1601398130 is beyond EOD, truncated
[  265.527522][ T9872] loop5: p2 start 1702059890 is beyond EOD, truncated
[  266.131607][ T9886] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1092'.
[  267.050053][ T9906] QAT: failed to copy from user cfg_data.
[  267.129882][   T40] audit: type=1326 audit(1766979456.559:2350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.137799][   T40] audit: type=1326 audit(1766979456.579:2351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.146734][   T40] audit: type=1326 audit(1766979456.579:2352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.154577][   T40] audit: type=1326 audit(1766979456.579:2353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.161879][   T40] audit: type=1326 audit(1766979456.579:2354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.168922][   T40] audit: type=1326 audit(1766979456.579:2355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.176092][   T40] audit: type=1326 audit(1766979456.579:2356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.183363][   T40] audit: type=1326 audit(1766979456.579:2357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.190331][   T40] audit: type=1326 audit(1766979456.579:2358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.0.1097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  267.571631][ T9920] nft_compat: unsupported protocol 0
[  267.953726][ T9930] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  267.955911][ T9930] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  267.958640][ T9930] vhci_hcd vhci_hcd.0: Device attached
[  268.000430][ T6170] Bluetooth: hci4: Frame reassembly failed (-84)
[  268.221615][ T6005] usb 44-1: SetAddress Request (2) to port 0
[  268.223714][ T6005] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  268.555738][ T9931] vhci_hcd: connection reset by peer
[  268.559072][ T1142] vhci_hcd vhci_hcd.3: stop threads
[  268.560942][ T1142] vhci_hcd vhci_hcd.3: release socket
[  268.563079][ T1142] vhci_hcd vhci_hcd.3: disconnect device
[  268.565921][ T9946] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1108'.
[  268.985877][ T9958] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1112'.
[  269.210633][ T9971] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  269.214125][ T9971] netlink: 'syz.1.1115': attribute type 4 has an invalid length.
[  269.276958][ T9971] FAULT_INJECTION: forcing a failure.
[  269.276958][ T9971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.281848][ T9971] CPU: 0 UID: 0 PID: 9971 Comm: syz.1.1115 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  269.281877][ T9971] Tainted: [L]=SOFTLOCKUP
[  269.281881][ T9971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.281888][ T9971] Call Trace:
[  269.281892][ T9971]  <TASK>
[  269.281897][ T9971]  dump_stack_lvl+0x16c/0x1f0
[  269.281917][ T9971]  should_fail_ex+0x512/0x640
[  269.281932][ T9971]  _copy_from_iter+0x2a4/0x16c0
[  269.281946][ T9971]  ? policy_nodemask+0xea/0x4e0
[  269.281977][ T9971]  ? __pfx__copy_from_iter+0x10/0x10
[  269.281988][ T9971]  ? alloc_pages_mpol+0x25a/0x550
[  269.282007][ T9971]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  269.282025][ T9971]  ? get_page_from_freelist+0xd0b/0x31a0
[  269.282041][ T9971]  ip_generic_getfrag+0xf7/0x270
[  269.282059][ T9971]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  269.282076][ T9971]  ? sk_page_frag_refill+0x6c/0x340
[  269.282089][ T9971]  __ip_append_data+0x13fa/0x41a0
[  269.282110][ T9971]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  269.282130][ T9971]  ? rcu_is_watching+0x12/0xc0
[  269.282146][ T9971]  ? __pfx___ip_append_data+0x10/0x10
[  269.282164][ T9971]  ? do_raw_spin_lock+0x12c/0x2b0
[  269.282179][ T9971]  ip_append_data+0x10f/0x1a0
[  269.282189][ T9971]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  269.282207][ T9971]  udp_sendmsg+0xa7e/0x2870
[  269.282227][ T9971]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  269.282245][ T9971]  ? __pfx_udp_sendmsg+0x10/0x10
[  269.282272][ T9971]  ? aa_sk_perm+0x2f2/0xae0
[  269.282292][ T9971]  ? __pfx_udp_sendmsg+0x10/0x10
[  269.282309][ T9971]  inet_sendmsg+0x105/0x140
[  269.282322][ T9971]  __sys_sendto+0x43c/0x520
[  269.282335][ T9971]  ? __pfx___sys_sendto+0x10/0x10
[  269.282359][ T9971]  ? ksys_write+0x1ac/0x250
[  269.282375][ T9971]  ? __pfx_ksys_write+0x10/0x10
[  269.282392][ T9971]  __ia32_sys_sendto+0xdd/0x1b0
[  269.282404][ T9971]  ? __do_fast_syscall_32+0x9a/0x680
[  269.282421][ T9971]  ? lockdep_hardirqs_on+0x7c/0x110
[  269.282437][ T9971]  __do_fast_syscall_32+0xe8/0x680
[  269.282455][ T9971]  do_fast_syscall_32+0x32/0x80
[  269.282472][ T9971]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  269.282486][ T9971] RIP: 0023:0xf7f11579
[  269.282495][ T9971] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  269.282506][ T9971] RSP: 002b:00000000f53c455c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  269.282516][ T9971] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800000c0
[  269.282523][ T9971] RDX: 000000000000ffe3 RSI: 0000000000000000 RDI: 0000000000000000
[  269.282530][ T9971] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  269.282535][ T9971] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  269.282542][ T9971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  269.282555][ T9971]  </TASK>
[  269.448992][ T9973] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.457227][ T9973] bond0: (slave rose0): Enslaving as an active interface with an up link
[  269.792894][   T40] kauditd_printk_skb: 42 callbacks suppressed
[  269.792906][   T40] audit: type=1326 audit(1766979459.229:2401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.813068][   T40] audit: type=1326 audit(1766979459.229:2402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.828376][   T40] audit: type=1326 audit(1766979459.229:2403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.844436][   T40] audit: type=1326 audit(1766979459.229:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.858651][   T40] audit: type=1326 audit(1766979459.229:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.875914][   T40] audit: type=1326 audit(1766979459.229:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.891543][   T40] audit: type=1326 audit(1766979459.229:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.909844][   T40] audit: type=1326 audit(1766979459.229:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.920342][   T40] audit: type=1326 audit(1766979459.229:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  269.940598][   T40] audit: type=1326 audit(1766979459.229:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.0.1118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  270.001677][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  270.001722][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  271.291613][   T60] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  271.482415][   T60] usb 6-1: Using ep0 maxpacket: 32
[  271.486870][   T60] usb 6-1: config 0 has an invalid interface number: 247 but max is 0
[  271.490551][   T60] usb 6-1: config 0 has no interface number 0
[  271.494443][   T60] usb 6-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  271.498465][   T60] usb 6-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  271.501862][   T60] usb 6-1: Product: syz
[  271.503762][   T60] usb 6-1: Manufacturer: syz
[  271.508048][   T60] usb 6-1: config 0 descriptor??
[  271.654743][T10032] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  271.660030][T10032] netlink: 'syz.2.1128': attribute type 4 has an invalid length.
[  271.977894][T10040] IPVS: Error connecting to the multicast addr
[  272.334920][T10043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'.
[  272.391465][T10044] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'.
[  273.230019][T10051] netlink: 'syz.2.1133': attribute type 1 has an invalid length.
[  273.249957][T10051] 8021q: adding VLAN 0 to HW filter on device bond1
[  273.288700][T10051] bond1: (slave dummy0): making interface the new active one
[  273.292264][ T6005] usb 44-1: device descriptor read/8, error -110
[  273.296318][T10051] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  273.355705][T10055] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1134'.
[  273.428623][ T1142] Bluetooth: hci4: Frame reassembly failed (-84)
[  273.731832][T10051] bond1 (unregistering): (slave dummy0): Releasing active interface
[  273.736197][T10051] bond1 (unregistering): Released all slaves
[  273.962382][ T6005] usb usb44-port1: attempt power cycle
[  274.240916][T10064] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  274.243480][T10064] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  274.250831][T10064] vhci_hcd vhci_hcd.0: Device attached
[  274.369973][ T5992] usb 6-1: USB disconnect, device number 14
[  274.374425][T10064] random: crng reseeded on system resumption
[  274.504395][T10064] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  274.512125][   T63] usb 42-1: SetAddress Request (10) to port 0
[  274.514816][   T63] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[  274.532239][ T6005] usb usb44-port1: unable to enumerate USB device
[  274.611294][T10075] fuse: Unknown parameter 'Ý'
[  275.441622][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  275.442747][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  275.560190][T10082] FAULT_INJECTION: forcing a failure.
[  275.560190][T10082] name failslab, interval 1, probability 0, space 0, times 0
[  275.566511][T10082] CPU: 3 UID: 0 PID: 10082 Comm: syz.1.1141 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  275.566539][T10082] Tainted: [L]=SOFTLOCKUP
[  275.566545][T10082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.566556][T10082] Call Trace:
[  275.566562][T10082]  <TASK>
[  275.566569][T10082]  dump_stack_lvl+0x16c/0x1f0
[  275.566603][T10082]  should_fail_ex+0x512/0x640
[  275.566622][T10082]  ? fs_reclaim_acquire+0xae/0x150
[  275.566651][T10082]  should_failslab+0xc2/0x120
[  275.566679][T10082]  __kmalloc_noprof+0xeb/0x910
[  275.566698][T10082]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  275.566729][T10082]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  275.566752][T10082]  tomoyo_realpath_from_path+0xc2/0x6e0
[  275.566784][T10082]  tomoyo_check_open_permission+0x2ab/0x3c0
[  275.566806][T10082]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  275.566851][T10082]  ? lock_acquire+0x179/0x330
[  275.566869][T10082]  ? find_held_lock+0x2b/0x80
[  275.566893][T10082]  ? mnt_get_write_access+0x52/0x2f0
[  275.566916][T10082]  tomoyo_file_open+0x6b/0x90
[  275.566944][T10082]  security_file_open+0x84/0x1e0
[  275.566966][T10082]  do_dentry_open+0x597/0x1590
[  275.566994][T10082]  ? security_inode_permission+0xbf/0x260
[  275.567019][T10082]  vfs_open+0x82/0x3f0
[  275.567043][T10082]  path_openat+0x2078/0x3140
[  275.567076][T10082]  ? __pfx_path_openat+0x10/0x10
[  275.567106][T10082]  ? __lock_acquire+0x436/0x2890
[  275.567124][T10082]  do_filp_open+0x20b/0x470
[  275.567151][T10082]  ? __pfx_do_filp_open+0x10/0x10
[  275.567187][T10082]  ? __pfx_kfree_link+0x10/0x10
[  275.567244][T10082]  ? _raw_spin_unlock+0x28/0x50
[  275.567269][T10082]  ? alloc_fd+0x471/0x7d0
[  275.567305][T10082]  do_sys_openat2+0x121/0x290
[  275.567325][T10082]  ? __pfx_do_sys_openat2+0x10/0x10
[  275.567349][T10082]  ? __fget_files+0x20e/0x3c0
[  275.567379][T10082]  __ia32_compat_sys_openat+0x16d/0x210
[  275.567400][T10082]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  275.567421][T10082]  ? ksys_write+0x1ac/0x250
[  275.567448][T10082]  ? do_user_addr_fault+0x843/0x1370
[  275.567475][T10082]  __do_fast_syscall_32+0xe8/0x680
[  275.567519][T10082]  do_fast_syscall_32+0x32/0x80
[  275.567544][T10082]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  275.567567][T10082] RIP: 0023:0xf7f11579
[  275.567580][T10082] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  275.567596][T10082] RSP: 002b:00000000f5406490 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  275.567613][T10082] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f54064e0
[  275.567624][T10082] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f73a6ff4
[  275.567635][T10082] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  275.567645][T10082] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  275.567655][T10082] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  275.567680][T10082]  </TASK>
[  275.567800][T10082] ERROR: Out of memory at tomoyo_realpath_from_path.
[  275.972681][T10065] vhci_hcd: connection reset by peer
[  275.978693][   T13] vhci_hcd vhci_hcd.2: stop threads
[  275.980768][   T13] vhci_hcd vhci_hcd.2: release socket
[  275.983626][   T13] vhci_hcd vhci_hcd.2: disconnect device
[  276.924186][T10103] fuse: Unknown parameter '00000000000000000000004Ý'
[  277.139610][   T40] kauditd_printk_skb: 42 callbacks suppressed
[  277.139621][   T40] audit: type=1326 audit(1766979466.569:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.148908][   T40] audit: type=1326 audit(1766979466.569:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.161653][   T40] audit: type=1326 audit(1766979466.569:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.175230][   T40] audit: type=1326 audit(1766979466.569:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.201766][   T40] audit: type=1326 audit(1766979466.569:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.210732][   T40] audit: type=1326 audit(1766979466.579:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.228892][   T40] audit: type=1326 audit(1766979466.579:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.238926][   T40] audit: type=1326 audit(1766979466.579:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.491681][   T40] audit: type=1326 audit(1766979466.579:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  277.499590][   T40] audit: type=1326 audit(1766979466.579:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1145" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  278.194188][T10138] syzkaller0: entered promiscuous mode
[  278.196126][T10138] syzkaller0: entered allmulticast mode
[  278.551282][T10145] 9p: Bad value for 'cachetag'
[  278.860196][T10154] fuse: Unknown parameter '00000000000000000000004Ý'
[  279.285487][T10159] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  279.290280][T10159] netlink: 'syz.3.1162': attribute type 4 has an invalid length.
[  279.409500][T10169] Set syz1 is full, maxelem 65536 reached
[  279.611685][   T63] usb 42-1: device descriptor read/8, error -110
[  279.931620][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  279.935312][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  280.003130][   T63] usb usb42-port1: attempt power cycle
[  280.434286][T10191] fuse: Unknown parameter '00000000000000000000004Ý'
[  280.498011][T10193] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  280.583337][   T63] usb usb42-port1: unable to enumerate USB device
[  280.686488][T10197] Set syz1 is full, maxelem 65536 reached
[  281.477493][T10209] xt_CT: You must specify a L4 protocol and not use inversions on it
[  281.483683][T10209] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1177'.
[  281.486791][T10209] 8021q: VLANs not supported on gre0
[  281.729143][T10220] QAT: failed to copy from user cfg_data.
[  281.812855][T10222] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1182'.
[  281.952761][T10226] FAULT_INJECTION: forcing a failure.
[  281.952761][T10226] name failslab, interval 1, probability 0, space 0, times 0
[  281.957137][T10226] CPU: 1 UID: 0 PID: 10226 Comm: syz.2.1184 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.957156][T10226] Tainted: [L]=SOFTLOCKUP
[  281.957160][T10226] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.957167][T10226] Call Trace:
[  281.957173][T10226]  <TASK>
[  281.957178][T10226]  dump_stack_lvl+0x16c/0x1f0
[  281.957199][T10226]  should_fail_ex+0x512/0x640
[  281.957212][T10226]  ? __kmalloc_cache_noprof+0x5f/0x800
[  281.957226][T10226]  should_failslab+0xc2/0x120
[  281.957244][T10226]  __kmalloc_cache_noprof+0x80/0x800
[  281.957256][T10226]  ? autofs_init_fs_context+0x47/0x640
[  281.957270][T10226]  ? __pfx_autofs_init_fs_context+0x10/0x10
[  281.957280][T10226]  ? autofs_init_fs_context+0x47/0x640
[  281.957290][T10226]  autofs_init_fs_context+0x47/0x640
[  281.957301][T10226]  ? __pfx_autofs_init_fs_context+0x10/0x10
[  281.957311][T10226]  alloc_fs_context+0x629/0xf50
[  281.957326][T10226]  path_mount+0xe21/0x23a0
[  281.957336][T10226]  ? rcu_is_watching+0x12/0xc0
[  281.957354][T10226]  ? __pfx_path_mount+0x10/0x10
[  281.957364][T10226]  ? kmem_cache_free+0x2d8/0x770
[  281.957377][T10226]  ? putname+0xf5/0x1a0
[  281.957389][T10226]  ? putname+0xf5/0x1a0
[  281.957400][T10226]  ? __ia32_sys_mount+0x291/0x310
[  281.957410][T10226]  __ia32_sys_mount+0x291/0x310
[  281.957426][T10226]  ? __pfx___ia32_sys_mount+0x10/0x10
[  281.957437][T10226]  ? do_user_addr_fault+0x843/0x1370
[  281.957461][T10226]  __do_fast_syscall_32+0xe8/0x680
[  281.957486][T10226]  do_fast_syscall_32+0x32/0x80
[  281.957511][T10226]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  281.957525][T10226] RIP: 0023:0xf7f75579
[  281.957533][T10226] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  281.957544][T10226] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  281.957555][T10226] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000440
[  281.957562][T10226] RDX: 0000000080000280 RSI: 00000000002084c4 RDI: 0000000080000040
[  281.957568][T10226] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  281.957575][T10226] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  281.957581][T10226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  281.957594][T10226]  </TASK>
[  282.039553][T10228] Set syz1 is full, maxelem 65536 reached
[  282.168419][T10227] xt_CT: You must specify a L4 protocol and not use inversions on it
[  282.181449][T10227] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1180'.
[  282.185700][T10227] 8021q: VLANs not supported on gre0
[  282.264088][T10242] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  282.270068][T10242] netlink: 'syz.0.1188': attribute type 4 has an invalid length.
[  282.390272][T10245] fuse: Unknown parameter '00000000000000000000004Ý'
[  282.647752][T10251] syzkaller0: entered promiscuous mode
[  282.649592][T10251] syzkaller0: entered allmulticast mode
[  282.832257][   T40] kauditd_printk_skb: 51 callbacks suppressed
[  282.832269][   T40] audit: type=1326 audit(1766979472.269:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.845953][   T40] audit: type=1326 audit(1766979472.269:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.859404][   T40] audit: type=1326 audit(1766979472.269:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.868159][   T40] audit: type=1326 audit(1766979472.269:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.877168][   T40] audit: type=1326 audit(1766979472.269:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.885281][   T40] audit: type=1326 audit(1766979472.269:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.895089][   T40] audit: type=1326 audit(1766979472.269:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.903581][   T40] audit: type=1326 audit(1766979472.269:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.921726][   T40] audit: type=1326 audit(1766979472.269:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  282.932586][   T40] audit: type=1326 audit(1766979472.269:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.1.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  283.053154][T10260] QAT: failed to copy from user cfg_data.
[  283.280867][T10263] xt_CT: You must specify a L4 protocol and not use inversions on it
[  283.288775][T10263] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1194'.
[  283.295510][T10263] 8021q: VLANs not supported on gre0
[  283.464904][T10268] syzkaller0: entered promiscuous mode
[  283.467474][T10268] syzkaller0: entered allmulticast mode
[  283.765857][T10276] fuse: Unknown parameter 'Ý'
[  283.789048][T10279] syzkaller0: entered promiscuous mode
[  283.793960][T10279] syzkaller0: entered allmulticast mode
[  284.214875][T10283] fuse: Unknown parameter '00000000000000000000004Ý'
[  284.631093][T10296] QAT: failed to copy from user cfg_data.
[  284.698752][T10298] netlink: 'syz.0.1205': attribute type 1 has an invalid length.
[  284.744887][T10298] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  284.750097][T10298] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  284.799512][T10301] gretap1: entered promiscuous mode
[  284.807630][T10301] bond1: (slave gretap1): making interface the new active one
[  284.811343][T10301] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  284.855390][T10298] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1205'.
[  284.864798][T10298] macvlan2: entered promiscuous mode
[  284.867487][T10298] macvlan2: entered allmulticast mode
[  284.871961][T10298] bond1: entered promiscuous mode
[  284.875956][T10298] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  284.881069][T10298] bond1: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  284.887651][T10298] bond1: left promiscuous mode
[  285.479999][T10311] syzkaller0: entered promiscuous mode
[  285.483290][T10311] syzkaller0: entered allmulticast mode
[  285.822862][T10316] xt_CT: You must specify a L4 protocol and not use inversions on it
[  285.842501][T10316] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1211'.
[  285.850306][T10316] 8021q: VLANs not supported on gre0
[  286.641858][T10328] fuse: Unknown parameter 'Ý'
[  287.092922][T10344] syzkaller0: entered promiscuous mode
[  287.095383][T10344] syzkaller0: entered allmulticast mode
[  287.143195][T10345] fuse: Unknown parameter '00000000000000000000004Ý'
[  287.498565][T10349] fuse: Unknown parameter '00000000000000000000004Ý'
[  287.949010][   T40] kauditd_printk_skb: 75 callbacks suppressed
[  287.949027][   T40] audit: type=1326 audit(1766979477.379:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10358 comm="syz.2.1224" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x0
[  288.078136][T10362] xt_CT: You must specify a L4 protocol and not use inversions on it
[  288.090006][T10362] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1224'.
[  288.093400][T10362] 8021q: VLANs not supported on gre0
[  288.164335][T10371] syzkaller0: entered promiscuous mode
[  288.166181][T10371] syzkaller0: entered allmulticast mode
[  288.291009][T10375] syzkaller0: entered promiscuous mode
[  288.293915][T10375] syzkaller0: entered allmulticast mode
[  288.818039][T10381] fuse: Unknown parameter '00000000000000000000004Ý'
[  289.258134][   T40] audit: type=1326 audit(1766979478.689:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.265598][   T40] audit: type=1326 audit(1766979478.699:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.272564][   T40] audit: type=1326 audit(1766979478.699:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.279529][   T40] audit: type=1326 audit(1766979478.699:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.287660][   T40] audit: type=1326 audit(1766979478.699:2604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.294766][   T40] audit: type=1326 audit(1766979478.699:2605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.301788][   T40] audit: type=1326 audit(1766979478.699:2606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.309062][   T40] audit: type=1326 audit(1766979478.699:2607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.316722][   T40] audit: type=1326 audit(1766979478.699:2608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10388 comm="syz.2.1234" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  289.432935][T10392] Set syz1 is full, maxelem 65536 reached
[  291.125633][T10413] syzkaller0: entered promiscuous mode
[  291.127736][T10413] syzkaller0: entered allmulticast mode
[  291.800296][T10427] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1245'.
[  291.804408][T10427] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1245'.
[  291.834509][T10417] xt_CT: You must specify a L4 protocol and not use inversions on it
[  291.848844][T10417] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1242'.
[  291.896724][T10417] 8021q: VLANs not supported on gre0
[  291.909034][T10426] fuse: Unknown parameter '00000000000000000000004Ý'
[  292.654314][T10443] fuse: Unknown parameter '00000000000000000000004Ý'
[  293.275538][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  293.275555][   T40] audit: type=1326 audit(1766979482.709:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.301571][   T40] audit: type=1326 audit(1766979482.709:2648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.321601][   T40] audit: type=1326 audit(1766979482.709:2649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.331098][   T40] audit: type=1326 audit(1766979482.709:2650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.361643][   T40] audit: type=1326 audit(1766979482.709:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.368787][   T40] audit: type=1326 audit(1766979482.709:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.391649][   T40] audit: type=1326 audit(1766979482.709:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.400478][   T40] audit: type=1326 audit(1766979482.709:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.411360][   T40] audit: type=1326 audit(1766979482.709:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.421424][   T40] audit: type=1326 audit(1766979482.709:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.1258" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  293.439348][T10453] netlink: 'syz.2.1260': attribute type 2 has an invalid length.
[  293.443156][T10453] netlink: 'syz.2.1260': attribute type 1 has an invalid length.
[  293.446653][T10453] netlink: 'syz.2.1260': attribute type 1 has an invalid length.
[  293.521679][T10454] sp0: Synchronizing with TNC
[  294.136887][T10457] syzkaller0: entered promiscuous mode
[  294.138758][T10457] syzkaller0: entered allmulticast mode
[  294.293356][T10458] block nbd0: shutting down sockets
[  294.503770][T10464] Set syz1 is full, maxelem 65536 reached
[  294.685405][T10468] xt_CT: You must specify a L4 protocol and not use inversions on it
[  294.691507][T10468] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1256'.
[  294.694862][T10468] 8021q: VLANs not supported on gre0
[  294.813304][T10472] fuse: Unknown parameter '00000000000000000000004Ý'
[  295.622271][T10484] ubi: mtd0 is already attached to ubi31
[  295.623962][T10483] fuse: Unknown parameter '00000000000000000000004Ý'
[  295.902584][T10488] syzkaller0: entered promiscuous mode
[  295.904489][T10488] syzkaller0: entered allmulticast mode
[  296.433642][T10495] sp0: Synchronizing with TNC
[  296.443420][T10494] syzkaller0: entered promiscuous mode
[  296.445900][T10494] syzkaller0: entered allmulticast mode
[  296.602685][T10498] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  296.610963][T10498] overlayfs: failed to set xattr on upper
[  296.616262][T10498] overlayfs: ...falling back to redirect_dir=nofollow.
[  296.619330][T10498] overlayfs: ...falling back to index=off.
[  296.631692][T10498] overlayfs: ...falling back to uuid=null.
[  297.482394][T10508] xt_CT: You must specify a L4 protocol and not use inversions on it
[  297.503628][T10508] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1269'.
[  297.507290][T10508] 8021q: VLANs not supported on gre0
[  297.844943][T10516] fuse: Unknown parameter '00000000000000000000004Ý'
[  298.876845][ T6005] libceph: connect (1)[c::]:6789 error -101
[  298.879688][ T6005] libceph: mon0 (1)[c::]:6789 connect error
[  299.054314][T10535] ceph: No mds server is up or the cluster is laggy
[  299.117187][T10535] netlink: 'syz.2.1278': attribute type 13 has an invalid length.
[  299.120648][T10535] netlink: 'syz.2.1278': attribute type 17 has an invalid length.
[  299.176892][T10544] Set syz1 is full, maxelem 65536 reached
[  299.205660][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  299.205724][   T40] audit: type=1326 audit(1766979488.639:2691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10540 comm="syz.0.1279" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x0
[  299.346264][   T40] audit: type=1326 audit(1766979488.779:2692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10548 comm="syz.1.1282" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x0
[  299.351115][T10545] xt_CT: You must specify a L4 protocol and not use inversions on it
[  299.364172][T10545] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1279'.
[  299.367477][T10545] 8021q: VLANs not supported on gre0
[  299.465729][T10552] fuse: Unknown parameter '00000000000000000000004Ý'
[  299.466943][T10550] xt_CT: You must specify a L4 protocol and not use inversions on it
[  299.476615][T10550] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1282'.
[  299.481033][T10550] 8021q: VLANs not supported on gre0
[  300.396825][T10561] block nbd1: shutting down sockets
[  301.143474][T10569] program syz.1.1285 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  301.167357][T10572] qnx6: unable to read the first superblock
[  301.170724][   T40] audit: type=1326 audit(1766979490.599:2693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.181655][   T40] audit: type=1326 audit(1766979490.599:2694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.191672][   T40] audit: type=1326 audit(1766979490.599:2695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.214738][T10563] fuse: Unknown parameter '00000000000000000000004Ý'
[  301.236384][   T40] audit: type=1326 audit(1766979490.659:2696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.244008][   T40] audit: type=1326 audit(1766979490.659:2697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.246177][T10570] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  301.251023][   T40] audit: type=1326 audit(1766979490.669:2698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.253200][T10570] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  301.261147][T10570] vhci_hcd vhci_hcd.0: Device attached
[  301.272310][   T40] audit: type=1326 audit(1766979490.669:2699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.281396][   T40] audit: type=1326 audit(1766979490.669:2700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10564 comm="syz.1.1285" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  301.552642][   T63] usb 38-1: SetAddress Request (15) to port 0
[  301.554725][   T63] usb 38-1: new SuperSpeed USB device number 15 using vhci_hcd
[  301.595612][T10562] random: crng reseeded on system resumption
[  301.605516][T10562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  301.805675][T10595] syzkaller0: entered promiscuous mode
[  301.808068][T10595] syzkaller0: entered allmulticast mode
[  302.203343][T10599] 9p: Bad value for 'cachetag'
[  302.576663][T10580] vhci_hcd: connection reset by peer
[  302.590327][   T13] vhci_hcd vhci_hcd.0: stop threads
[  302.594522][   T13] vhci_hcd vhci_hcd.0: release socket
[  302.598932][   T13] vhci_hcd vhci_hcd.0: disconnect device
[  302.673376][T10604] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  302.680391][T10604] overlayfs: failed to set xattr on upper
[  302.683671][T10604] overlayfs: ...falling back to redirect_dir=nofollow.
[  302.686718][T10604] overlayfs: ...falling back to index=off.
[  302.689332][T10604] overlayfs: ...falling back to uuid=null.
[  302.696204][T10602] xt_CT: You must specify a L4 protocol and not use inversions on it
[  302.709159][T10602] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1293'.
[  302.712738][T10602] 8021q: VLANs not supported on gre0
[  302.933237][   T29] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  302.941295][T10612] netlink: 'syz.1.1297': attribute type 1 has an invalid length.
[  302.945633][T10612] netlink: 104088 bytes leftover after parsing attributes in process `syz.1.1297'.
[  302.945645][T10613] netlink: 'syz.1.1297': attribute type 1 has an invalid length.
[  302.953142][T10613] netlink: 104088 bytes leftover after parsing attributes in process `syz.1.1297'.
[  302.961669][T10610] 9p: Could not find request transport: xen
[  302.966758][T10610] input: syz0 as /devices/virtual/input/input21
[  303.121666][   T29] usb 5-1: Using ep0 maxpacket: 32
[  303.124651][   T29] usb 5-1: config 0 has an invalid interface number: 247 but max is 0
[  303.127313][   T29] usb 5-1: config 0 has no interface number 0
[  303.130645][   T29] usb 5-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  303.133983][   T29] usb 5-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  303.136615][   T29] usb 5-1: Product: syz
[  303.138101][   T29] usb 5-1: Manufacturer: syz
[  303.141333][   T29] usb 5-1: config 0 descriptor??
[  303.231954][T10620] fuse: Unknown parameter '00000000000000000000004Ý'
[  303.288304][T10622] syzkaller0: entered promiscuous mode
[  303.290792][T10622] syzkaller0: entered allmulticast mode
[  303.934917][T10633] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  303.937321][T10633] overlayfs: failed to set xattr on upper
[  303.939338][T10633] overlayfs: ...falling back to redirect_dir=nofollow.
[  303.942080][T10633] overlayfs: ...falling back to index=off.
[  303.944098][T10633] overlayfs: ...falling back to uuid=null.
[  304.063756][T10640] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  304.069362][T10640] netlink: 'syz.1.1304': attribute type 4 has an invalid length.
[  304.148641][T10642] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  304.151043][T10642] overlayfs: failed to set xattr on upper
[  304.171992][T10642] overlayfs: ...falling back to redirect_dir=nofollow.
[  304.174296][T10642] overlayfs: ...falling back to index=off.
[  304.176228][T10642] overlayfs: ...falling back to uuid=null.
[  304.301633][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  304.301650][   T40] audit: type=1326 audit(1766979493.729:2702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.315961][   T40] audit: type=1326 audit(1766979493.729:2703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.326395][   T40] audit: type=1326 audit(1766979493.729:2704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.337372][   T40] audit: type=1326 audit(1766979493.729:2705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.346695][   T40] audit: type=1326 audit(1766979493.729:2706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.356095][   T40] audit: type=1326 audit(1766979493.729:2707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.365074][   T40] audit: type=1326 audit(1766979493.729:2708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.372447][   T40] audit: type=1326 audit(1766979493.729:2709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.379472][   T40] audit: type=1326 audit(1766979493.729:2710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.386790][   T40] audit: type=1326 audit(1766979493.729:2711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10638 comm="syz.3.1306" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  304.873372][T10651] syzkaller0: entered promiscuous mode
[  304.875250][T10651] syzkaller0: entered allmulticast mode
[  305.169691][T10664] fuse: Unknown parameter '00000000000000000000004Ý'
[  305.223226][T10666] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  305.226262][T10666] overlayfs: failed to set xattr on upper
[  305.228684][T10666] overlayfs: ...falling back to redirect_dir=nofollow.
[  305.231762][T10666] overlayfs: ...falling back to index=off.
[  305.234403][T10666] overlayfs: ...falling back to uuid=null.
[  305.306092][T10669] fuse: Unknown parameter '00000000000000000000004Ý'
[  305.693903][ T5992] usb 5-1: USB disconnect, device number 17
[  305.716029][T10672] xt_CT: You must specify a L4 protocol and not use inversions on it
[  305.725640][T10672] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1316'.
[  305.728796][T10672] 8021q: VLANs not supported on gre0
[  306.442120][T10695] autofs: Unknown parameter ''
[  306.968884][T10703] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  306.978494][T10703] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  307.052945][T10703] gretap1: left promiscuous mode
[  307.055561][   T12] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.058494][   T12] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.061596][   T12] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.064519][   T12] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.341705][   T63] usb 38-1: device descriptor read/8, error -110
[  307.349955][T10708] FAULT_INJECTION: forcing a failure.
[  307.349955][T10708] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.354286][T10708] CPU: 1 UID: 0 PID: 10708 Comm: syz.0.1328 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  307.354316][T10708] Tainted: [L]=SOFTLOCKUP
[  307.354320][T10708] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  307.354327][T10708] Call Trace:
[  307.354331][T10708]  <TASK>
[  307.354336][T10708]  dump_stack_lvl+0x16c/0x1f0
[  307.354356][T10708]  should_fail_ex+0x512/0x640
[  307.354372][T10708]  _copy_to_user+0x32/0xd0
[  307.354385][T10708]  simple_read_from_buffer+0xcb/0x170
[  307.354403][T10708]  proc_fail_nth_read+0x197/0x240
[  307.354422][T10708]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  307.354440][T10708]  ? rw_verify_area+0xcf/0x6c0
[  307.354456][T10708]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  307.354473][T10708]  vfs_read+0x1e4/0xcf0
[  307.354489][T10708]  ? __pfx___mutex_lock+0x10/0x10
[  307.354508][T10708]  ? __pfx_vfs_read+0x10/0x10
[  307.354521][T10708]  ? find_held_lock+0x2b/0x80
[  307.354539][T10708]  ? __fget_files+0x20e/0x3c0
[  307.354559][T10708]  ksys_read+0x12a/0x250
[  307.354574][T10708]  ? __pfx_ksys_read+0x10/0x10
[  307.354588][T10708]  ? rcu_is_watching+0x12/0xc0
[  307.354607][T10708]  __do_fast_syscall_32+0xe8/0x680
[  307.354626][T10708]  do_fast_syscall_32+0x32/0x80
[  307.354643][T10708]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  307.354657][T10708] RIP: 0023:0xf70dd579
[  307.354665][T10708] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  307.354676][T10708] RSP: 002b:00000000f548b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  307.354686][T10708] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f548b620
[  307.354693][T10708] RDX: 000000000000000f RSI: 00000000f7476ff4 RDI: 0000000000000000
[  307.354699][T10708] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  307.354704][T10708] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  307.354710][T10708] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  307.354724][T10708]  </TASK>
[  307.752087][   T63] usb usb38-port1: attempt power cycle
[  308.323832][   T63] usb usb38-port1: unable to enumerate USB device
[  308.993937][T10733] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1335'.
[  309.079935][T10735] Set syz1 is full, maxelem 65536 reached
[  309.598683][   T40] kauditd_printk_skb: 31 callbacks suppressed
[  309.598695][   T40] audit: type=1326 audit(1766979499.029:2743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10748 comm="syz.0.1339" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x0
[  309.649039][T10763] Set syz1 is full, maxelem 65536 reached
[  309.663284][T10753] xt_CT: You must specify a L4 protocol and not use inversions on it
[  309.672198][T10753] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1339'.
[  309.675283][T10753] 8021q: VLANs not supported on gre0
[  309.982290][   T40] audit: type=1326 audit(1766979499.419:2744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  309.990641][   T40] audit: type=1326 audit(1766979499.419:2745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  309.998847][   T40] audit: type=1326 audit(1766979499.439:2746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.022149][   T40] audit: type=1326 audit(1766979499.449:2747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.029148][   T40] audit: type=1326 audit(1766979499.449:2748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.036304][   T40] audit: type=1326 audit(1766979499.449:2749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.043677][   T40] audit: type=1326 audit(1766979499.449:2750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.050674][   T40] audit: type=1326 audit(1766979499.449:2751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.059227][   T40] audit: type=1326 audit(1766979499.449:2752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.2.1348" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  310.448202][T10781] binder: 10779:10781 ioctl 84009422 0 returned -22
[  310.776107][T10788] binder: 10786:10788 ioctl 84009422 0 returned -22
[  310.853319][T10792] FAULT_INJECTION: forcing a failure.
[  310.853319][T10792] name failslab, interval 1, probability 0, space 0, times 0
[  310.857515][T10792] CPU: 2 UID: 0 PID: 10792 Comm: syz.2.1352 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  310.857557][T10792] Tainted: [L]=SOFTLOCKUP
[  310.857563][T10792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  310.857574][T10792] Call Trace:
[  310.857580][T10792]  <TASK>
[  310.857588][T10792]  dump_stack_lvl+0x16c/0x1f0
[  310.857618][T10792]  should_fail_ex+0x512/0x640
[  310.857638][T10792]  ? fs_reclaim_acquire+0xae/0x150
[  310.857668][T10792]  should_failslab+0xc2/0x120
[  310.857695][T10792]  __kmalloc_noprof+0xeb/0x910
[  310.857715][T10792]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  310.857745][T10792]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  310.857768][T10792]  tomoyo_realpath_from_path+0xc2/0x6e0
[  310.857794][T10792]  ? tomoyo_profile+0x47/0x60
[  310.857823][T10792]  tomoyo_path_number_perm+0x245/0x580
[  310.857842][T10792]  ? tomoyo_path_number_perm+0x237/0x580
[  310.857865][T10792]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  310.857921][T10792]  ? find_held_lock+0x2b/0x80
[  310.857944][T10792]  ? hook_file_ioctl_common+0x144/0x410
[  310.857972][T10792]  ? __fget_files+0x20e/0x3c0
[  310.857997][T10792]  ? __fput_deferred+0x430/0x480
[  310.858022][T10792]  security_file_ioctl_compat+0x9b/0x240
[  310.858046][T10792]  __ia32_compat_sys_ioctl+0xc3/0x370
[  310.858073][T10792]  __do_fast_syscall_32+0xe8/0x680
[  310.858117][T10792]  do_fast_syscall_32+0x32/0x80
[  310.858145][T10792]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  310.858165][T10792] RIP: 0023:0xf7f75579
[  310.858174][T10792] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  310.858185][T10792] RSP: 002b:00000000f542455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  310.858195][T10792] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000008949
[  310.858202][T10792] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  310.858208][T10792] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  310.858214][T10792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  310.858220][T10792] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  310.858234][T10792]  </TASK>
[  310.858430][T10792] ERROR: Out of memory at tomoyo_realpath_from_path.
[  310.993628][T10796] xt_CT: You must specify a L4 protocol and not use inversions on it
[  311.009403][T10796] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1351'.
[  311.027791][T10796] 8021q: VLANs not supported on gre0
[  311.171593][   T29] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  311.322293][   T29] usb 5-1: Using ep0 maxpacket: 32
[  311.328073][   T29] usb 5-1: config 0 has an invalid interface number: 247 but max is 0
[  311.331731][   T29] usb 5-1: config 0 has no interface number 0
[  311.338437][   T29] usb 5-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  311.343981][   T29] usb 5-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  311.347493][   T29] usb 5-1: Product: syz
[  311.349495][   T29] usb 5-1: Manufacturer: syz
[  311.360071][   T29] usb 5-1: config 0 descriptor??
[  312.089819][T10823] fuse: Unknown parameter '00000000000000000000004Ý'
[  312.712637][ T5992] usb 5-1: USB disconnect, device number 18
[  313.122525][   T63] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  320.913306][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  320.913317][   T40] audit: type=1326 audit(1766979510.349:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10849 comm="syz.3.1363" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x0
[  321.014595][T10856] xt_CT: You must specify a L4 protocol and not use inversions on it
[  321.763544][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  322.688201][T10856] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1363'.
[  322.691357][T10856] 8021q: VLANs not supported on gre0
[  322.905641][T10870] ieee802154 phy1 wpan1: encryption failed: -22
[  323.983114][T10904] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1374'.
[  324.308023][   T40] audit: type=1326 audit(1766979513.739:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.1.1375" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f11579 code=0x0
[  324.869048][T10931] FAULT_INJECTION: forcing a failure.
[  324.869048][T10931] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.874028][T10931] CPU: 3 UID: 0 PID: 10931 Comm: syz.3.1384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  324.874046][T10931] Tainted: [L]=SOFTLOCKUP
[  324.874049][T10931] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.874057][T10931] Call Trace:
[  324.874061][T10931]  <TASK>
[  324.874065][T10931]  dump_stack_lvl+0x16c/0x1f0
[  324.874086][T10931]  should_fail_ex+0x512/0x640
[  324.874100][T10931]  _copy_from_user+0x2e/0xd0
[  324.874113][T10931]  get_compat_msghdr+0xa7/0x170
[  324.874128][T10931]  ? __pfx_get_compat_msghdr+0x10/0x10
[  324.874142][T10931]  ? __lock_acquire+0x436/0x2890
[  324.874155][T10931]  ___sys_recvmsg+0x191/0x1a0
[  324.874170][T10931]  ? __pfx____sys_recvmsg+0x10/0x10
[  324.874185][T10931]  ? find_held_lock+0x2b/0x80
[  324.874207][T10931]  do_recvmmsg+0x55d/0x750
[  324.874222][T10931]  ? __pfx_do_recvmmsg+0x10/0x10
[  324.874244][T10931]  ? __fget_files+0x20e/0x3c0
[  324.874262][T10931]  __sys_recvmmsg+0x21c/0x280
[  324.874276][T10931]  ? __pfx___sys_recvmmsg+0x10/0x10
[  324.874291][T10931]  ? __pfx_ksys_write+0x10/0x10
[  324.874308][T10931]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  324.874323][T10931]  ? __do_fast_syscall_32+0x9a/0x680
[  324.874340][T10931]  ? lockdep_hardirqs_on+0x7c/0x110
[  324.874356][T10931]  __do_fast_syscall_32+0xe8/0x680
[  324.874374][T10931]  do_fast_syscall_32+0x32/0x80
[  324.874391][T10931]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.874404][T10931] RIP: 0023:0xf70dd579
[  324.874414][T10931] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.874425][T10931] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  324.874436][T10931] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080003700
[  324.874442][T10931] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  324.874449][T10931] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  324.874455][T10931] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  324.874461][T10931] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.874474][T10931]  </TASK>
[  325.100482][T10940] block device autoloading is deprecated and will be removed.
[  325.142813][T10946] FAULT_INJECTION: forcing a failure.
[  325.142813][T10946] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  325.147727][T10946] CPU: 2 UID: 0 PID: 10946 Comm: syz.3.1389 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  325.147756][T10946] Tainted: [L]=SOFTLOCKUP
[  325.147762][T10946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.147773][T10946] Call Trace:
[  325.147780][T10946]  <TASK>
[  325.147787][T10946]  dump_stack_lvl+0x16c/0x1f0
[  325.147817][T10946]  should_fail_ex+0x512/0x640
[  325.147849][T10946]  _copy_from_user+0x2e/0xd0
[  325.147869][T10946]  kstrtouint_from_user+0xd6/0x1d0
[  325.147893][T10946]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  325.147915][T10946]  ? __lock_acquire+0x436/0x2890
[  325.147944][T10946]  proc_fail_nth_write+0x83/0x220
[  325.147963][T10946]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  325.147988][T10946]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  325.148003][T10946]  vfs_write+0x2a0/0x11d0
[  325.148030][T10946]  ? __pfx___mutex_lock+0x10/0x10
[  325.148058][T10946]  ? __pfx_vfs_write+0x10/0x10
[  325.148080][T10946]  ? find_held_lock+0x2b/0x80
[  325.148109][T10946]  ? __fget_files+0x20e/0x3c0
[  325.148141][T10946]  ksys_write+0x12a/0x250
[  325.148165][T10946]  ? __pfx_ksys_write+0x10/0x10
[  325.148190][T10946]  ? do_user_addr_fault+0x843/0x1370
[  325.148217][T10946]  __do_fast_syscall_32+0xe8/0x680
[  325.148247][T10946]  do_fast_syscall_32+0x32/0x80
[  325.148274][T10946]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  325.148296][T10946] RIP: 0023:0xf70dd579
[  325.148310][T10946] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  325.148327][T10946] RSP: 002b:00000000f54cd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  325.148345][T10946] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54cd620
[  325.148356][T10946] RDX: 0000000000000001 RSI: 00000000f7476ff4 RDI: 0000000000000000
[  325.148366][T10946] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  325.148376][T10946] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  325.148385][T10946] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  325.148410][T10946]  </TASK>
[  325.390854][   T29] libceph: connect (1)[c::]:6789 error -101
[  325.395370][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  325.444469][T10960] ceph: No mds server is up or the cluster is laggy
[  325.541771][   T60] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  325.693129][   T60] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  325.696894][   T60] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  325.701565][   T60] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  325.705498][   T60] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  325.710300][   T60] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  325.716754][   T60] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  325.720593][   T60] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  325.724192][   T60] usb 6-1: Product: syz
[  325.726148][   T60] usb 6-1: Manufacturer: syz
[  325.733047][   T60] cdc_wdm 6-1:1.0: skipping garbage
[  325.735346][   T60] cdc_wdm 6-1:1.0: skipping garbage
[  325.741412][   T60] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  325.744211][   T60] cdc_wdm 6-1:1.0: Unknown control protocol
[  325.939272][T10958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1394'.
[  326.653531][T10981] comedi comedi0: pcmmio: I/O port conflict (0xfff,32)
[  326.659044][T10981] netlink: 'syz.2.1398': attribute type 4 has an invalid length.
[  327.018801][ T5992] usb 6-1: USB disconnect, device number 15
[  327.820657][T11007] 9p: Could not find request transport: xen
[  328.016920][T11015] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  328.142679][T11020] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1411'.
[  329.040045][T11031] FAULT_INJECTION: forcing a failure.
[  329.040045][T11031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.051552][T11031] CPU: 3 UID: 0 PID: 11031 Comm: syz.0.1413 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  329.051571][T11031] Tainted: [L]=SOFTLOCKUP
[  329.051575][T11031] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  329.051582][T11031] Call Trace:
[  329.051587][T11031]  <TASK>
[  329.051591][T11031]  dump_stack_lvl+0x16c/0x1f0
[  329.051613][T11031]  should_fail_ex+0x512/0x640
[  329.051627][T11031]  _copy_from_user+0x2e/0xd0
[  329.051640][T11031]  vhost_vsock_dev_ioctl+0x382/0xb30
[  329.051657][T11031]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  329.051671][T11031]  ? hook_file_ioctl_common+0x144/0x410
[  329.051687][T11031]  ? __fget_files+0x20e/0x3c0
[  329.051702][T11031]  ? __fput_deferred+0x430/0x480
[  329.051715][T11031]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  329.051729][T11031]  compat_ptr_ioctl+0x6e/0xa0
[  329.051742][T11031]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  329.051754][T11031]  __ia32_compat_sys_ioctl+0x242/0x370
[  329.051769][T11031]  __do_fast_syscall_32+0xe8/0x680
[  329.051788][T11031]  do_fast_syscall_32+0x32/0x80
[  329.051805][T11031]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  329.051819][T11031] RIP: 0023:0xf70dd579
[  329.051827][T11031] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  329.051838][T11031] RSP: 002b:00000000f548b55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  329.051849][T11031] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000004008af00
[  329.051856][T11031] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000000000000
[  329.051862][T11031] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  329.051868][T11031] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  329.051873][T11031] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  329.051887][T11031]  </TASK>
[  329.518818][   T40] audit: type=1326 audit(1766979518.949:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11032 comm="syz.1.1415" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x0
[  329.595519][T11043] 9p: Could not find request transport: xen
[  329.620662][T11037] xt_CT: You must specify a L4 protocol and not use inversions on it
[  329.638257][T11037] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1415'.
[  329.644885][T11037] 8021q: VLANs not supported on gre0
[  329.745325][T11050] overlayfs: unescaped trailing colons in lowerdir mount option.
[  329.762785][T11052] btrfs: Unknown parameter ':set'
[  329.803104][T11057] FAULT_INJECTION: forcing a failure.
[  329.803104][T11057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.807688][T11057] CPU: 1 UID: 0 PID: 11057 Comm: syz.2.1424 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  329.807716][T11057] Tainted: [L]=SOFTLOCKUP
[  329.807720][T11057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  329.807727][T11057] Call Trace:
[  329.807731][T11057]  <TASK>
[  329.807736][T11057]  dump_stack_lvl+0x16c/0x1f0
[  329.807756][T11057]  should_fail_ex+0x512/0x640
[  329.807771][T11057]  _copy_from_user+0x2e/0xd0
[  329.807784][T11057]  get_compat_msghdr+0xa7/0x170
[  329.807798][T11057]  ? __pfx_get_compat_msghdr+0x10/0x10
[  329.807817][T11057]  ___sys_sendmsg+0x1ae/0x1d0
[  329.807831][T11057]  ? __pfx____sys_sendmsg+0x10/0x10
[  329.807851][T11057]  ? find_held_lock+0x2b/0x80
[  329.807874][T11057]  __sys_sendmsg+0x16d/0x220
[  329.807888][T11057]  ? __pfx___sys_sendmsg+0x10/0x10
[  329.807907][T11057]  ? do_user_addr_fault+0x843/0x1370
[  329.807923][T11057]  __do_fast_syscall_32+0xe8/0x680
[  329.807941][T11057]  do_fast_syscall_32+0x32/0x80
[  329.807958][T11057]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  329.807972][T11057] RIP: 0023:0xf7f75579
[  329.807981][T11057] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  329.807991][T11057] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  329.808003][T11057] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080006040
[  329.808010][T11057] RDX: 0000000004041080 RSI: 0000000000000000 RDI: 0000000000000000
[  329.808016][T11057] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  329.808022][T11057] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  329.808028][T11057] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  329.808042][T11057]  </TASK>
[  329.968769][T11063] wireguard0: entered promiscuous mode
[  329.970676][T11063] wireguard0: entered allmulticast mode
[  329.985957][T11063] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1426'.
[  330.130633][T11069] Bluetooth: MGMT ver 1.23
[  330.271091][T11075] 9p: Could not find request transport: xen
[  330.440939][T11088] cgroup: Invalid name
[  330.456343][T11086] Set syz1 is full, maxelem 65536 reached
[  330.747292][T11101] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1441'.
[  330.784603][   T40] audit: type=1326 audit(1766979520.219:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11093 comm="syz.1.1438" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x0
[  330.844522][T11102] xt_CT: You must specify a L4 protocol and not use inversions on it
[  330.850931][T11102] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1438'.
[  330.854458][T11102] 8021q: VLANs not supported on gre0
[  330.875760][T11107] 9p: Could not find request transport: xen
[  330.920534][T11111] vxfs: WRONG superblock magic 00000000 at 1
[  330.924074][T11111] vxfs: WRONG superblock magic 00000000 at 8
[  330.927044][T11111] vxfs: can't find superblock.
[  331.424736][T11136] overlayfs: failed to resolve './file1': -2
[  331.493353][T11132] netlink: 'syz.0.1448': attribute type 2 has an invalid length.
[  331.506880][T11132] : entered promiscuous mode
[  332.611735][   T40] audit: type=1326 audit(1766979522.009:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11160 comm="syz.0.1459" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x0
[  332.627222][T11167] FAULT_INJECTION: forcing a failure.
[  332.627222][T11167] name failslab, interval 1, probability 0, space 0, times 0
[  332.634312][T11167] CPU: 2 UID: 0 PID: 11167 Comm: syz.3.1460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  332.634331][T11167] Tainted: [L]=SOFTLOCKUP
[  332.634334][T11167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.634341][T11167] Call Trace:
[  332.634345][T11167]  <TASK>
[  332.634349][T11167]  dump_stack_lvl+0x16c/0x1f0
[  332.634388][T11167]  should_fail_ex+0x512/0x640
[  332.634407][T11167]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  332.634425][T11167]  should_failslab+0xc2/0x120
[  332.634442][T11167]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  332.634459][T11167]  ? xs_format_common_peer_addresses+0x251/0x4a0
[  332.634475][T11167]  ? kstrdup+0x53/0x100
[  332.634487][T11167]  kstrdup+0x53/0x100
[  332.634500][T11167]  xs_format_common_peer_addresses+0x251/0x4a0
[  332.634514][T11167]  ? __pfx_xs_format_common_peer_addresses+0x10/0x10
[  332.634534][T11167]  ? lockdep_init_map_type+0x5c/0x270
[  332.634545][T11167]  ? do_init_timer+0xc9/0x110
[  332.634563][T11167]  xs_setup_local+0x5bb/0x820
[  332.634579][T11167]  xprt_create_transport+0x16c/0x710
[  332.634592][T11167]  rpc_create+0x38e/0x7f0
[  332.634605][T11167]  ? bpf_ksym_find+0x124/0x1c0
[  332.634616][T11167]  ? __pfx_rpc_create+0x10/0x10
[  332.634633][T11167]  ? arch_stack_walk+0xa6/0x100
[  332.634658][T11167]  ? save_trace+0x4e/0x380
[  332.634673][T11167]  ? add_lock_to_list+0x9d/0x130
[  332.634690][T11167]  rpcb_create_af_local+0x11b/0x310
[  332.634701][T11167]  ? __pfx_rpcb_create_af_local+0x10/0x10
[  332.634750][T11167]  ? find_held_lock+0x2b/0x80
[  332.634764][T11167]  ? rpcb_create_local+0x1da/0x270
[  332.634777][T11167]  rpcb_create_local+0x1ee/0x270
[  332.634788][T11167]  svc_bind+0x1e8/0x260
[  332.634801][T11167]  nfsd_create_serv+0x2da/0x4a0
[  332.634817][T11167]  ? __pfx_nfsd_create_serv+0x10/0x10
[  332.634833][T11167]  ? __nla_validate_parse+0x600/0x2880
[  332.634860][T11167]  nfsd_nl_listener_set_doit+0xdd/0x1ae0
[  332.634887][T11167]  ? rcu_is_watching+0x12/0xc0
[  332.634912][T11167]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  332.634932][T11167]  ? __nla_parse+0x40/0x60
[  332.634959][T11167]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  332.634980][T11167]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  332.635003][T11167]  genl_family_rcv_msg_doit+0x209/0x2f0
[  332.635021][T11167]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  332.635039][T11167]  ? genl_get_cmd+0x194/0x580
[  332.635066][T11167]  ? bpf_lsm_capable+0x9/0x10
[  332.635091][T11167]  ? security_capable+0x7e/0x260
[  332.635126][T11167]  genl_rcv_msg+0x55c/0x800
[  332.635147][T11167]  ? __pfx_genl_rcv_msg+0x10/0x10
[  332.635163][T11167]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  332.635183][T11167]  ? __lock_acquire+0x436/0x2890
[  332.635196][T11167]  netlink_rcv_skb+0x158/0x420
[  332.635212][T11167]  ? __pfx_genl_rcv_msg+0x10/0x10
[  332.635222][T11167]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  332.635244][T11167]  ? netlink_deliver_tap+0x1ae/0xd30
[  332.635261][T11167]  genl_rcv+0x28/0x40
[  332.635276][T11167]  netlink_unicast+0x5aa/0x870
[  332.635293][T11167]  ? __pfx_netlink_unicast+0x10/0x10
[  332.635314][T11167]  netlink_sendmsg+0x8c8/0xdd0
[  332.635332][T11167]  ? __pfx_netlink_sendmsg+0x10/0x10
[  332.635349][T11167]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  332.635369][T11167]  ____sys_sendmsg+0xa5d/0xc30
[  332.635386][T11167]  ? btrfs_backref_error_cleanup+0xc50/0xd70
[  332.635404][T11167]  ? __pfx_____sys_sendmsg+0x10/0x10
[  332.635420][T11167]  ? get_compat_msghdr+0x11a/0x170
[  332.635440][T11167]  ___sys_sendmsg+0x134/0x1d0
[  332.635454][T11167]  ? __pfx____sys_sendmsg+0x10/0x10
[  332.635475][T11167]  ? find_held_lock+0x2b/0x80
[  332.635497][T11167]  __sys_sendmsg+0x16d/0x220
[  332.635511][T11167]  ? __pfx___sys_sendmsg+0x10/0x10
[  332.635530][T11167]  ? do_user_addr_fault+0x843/0x1370
[  332.635546][T11167]  __do_fast_syscall_32+0xe8/0x680
[  332.635564][T11167]  do_fast_syscall_32+0x32/0x80
[  332.635581][T11167]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  332.635595][T11167] RIP: 0023:0xf70dd579
[  332.635605][T11167] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  332.635615][T11167] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  332.635627][T11167] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  332.635633][T11167] RDX: 0000000004008090 RSI: 0000000000000000 RDI: 0000000000000000
[  332.635639][T11167] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  332.635645][T11167] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  332.635651][T11167] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  332.635665][T11167]  </TASK>
[  332.678065][T11168] xt_CT: You must specify a L4 protocol and not use inversions on it
[  332.805060][T11169] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1459'.
[  332.808105][T11169] 8021q: VLANs not supported on gre0
[  332.837229][T11171] FAULT_INJECTION: forcing a failure.
[  332.837229][T11171] name failslab, interval 1, probability 0, space 0, times 0
[  332.841425][T11171] CPU: 3 UID: 0 PID: 11171 Comm: syz.3.1461 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  332.841444][T11171] Tainted: [L]=SOFTLOCKUP
[  332.841448][T11171] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.841455][T11171] Call Trace:
[  332.841459][T11171]  <TASK>
[  332.841474][T11171]  dump_stack_lvl+0x16c/0x1f0
[  332.841497][T11171]  should_fail_ex+0x512/0x640
[  332.841510][T11171]  ? fs_reclaim_acquire+0xae/0x150
[  332.841529][T11171]  should_failslab+0xc2/0x120
[  332.841547][T11171]  __kmalloc_noprof+0xeb/0x910
[  332.841559][T11171]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  332.841578][T11171]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  332.841605][T11171]  tomoyo_realpath_from_path+0xc2/0x6e0
[  332.841622][T11171]  ? tomoyo_profile+0x47/0x60
[  332.841640][T11171]  tomoyo_path_number_perm+0x245/0x580
[  332.841652][T11171]  ? tomoyo_path_number_perm+0x237/0x580
[  332.841664][T11171]  ? check_slab_allocation+0xd3/0xf0
[  332.841679][T11171]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  332.841691][T11171]  ? kmem_cache_free+0x2d8/0x770
[  332.841705][T11171]  ? unix_bind+0x2ae/0x1600
[  332.841719][T11171]  ? __sys_bind+0x1a7/0x260
[  332.841744][T11171]  ? current_check_access_path+0x33b/0x460
[  332.841760][T11171]  ? __pfx_current_check_access_path+0x10/0x10
[  332.841776][T11171]  ? kasan_quarantine_put+0x10a/0x240
[  332.841789][T11171]  ? lockdep_hardirqs_on+0x7c/0x110
[  332.841808][T11171]  tomoyo_path_mknod+0x10c/0x190
[  332.841825][T11171]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  332.841843][T11171]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  332.841863][T11171]  security_path_mknod+0x161/0x310
[  332.841877][T11171]  unix_bind+0x314/0x1600
[  332.841888][T11171]  ? __might_fault+0xe3/0x190
[  332.841904][T11171]  ? __pfx_unix_bind+0x10/0x10
[  332.841915][T11171]  ? apparmor_socket_bind+0x12e/0x1e0
[  332.841935][T11171]  __sys_bind+0x1a7/0x260
[  332.841946][T11171]  ? __pfx___sys_bind+0x10/0x10
[  332.841956][T11171]  ? __fget_files+0x20e/0x3c0
[  332.841977][T11171]  ? __pfx_ksys_write+0x10/0x10
[  332.841996][T11171]  __ia32_sys_bind+0x71/0xb0
[  332.842005][T11171]  ? lockdep_hardirqs_on+0x7c/0x110
[  332.842021][T11171]  __do_fast_syscall_32+0xe8/0x680
[  332.842040][T11171]  do_fast_syscall_32+0x32/0x80
[  332.842057][T11171]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  332.842071][T11171] RIP: 0023:0xf70dd579
[  332.842080][T11171] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  332.842091][T11171] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[  332.842102][T11171] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  332.842108][T11171] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[  332.842115][T11171] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  332.842120][T11171] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  332.842126][T11171] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  332.842140][T11171]  </TASK>
[  332.941037][T11171] ERROR: Out of memory at tomoyo_realpath_from_path.
[  332.998119][T11175] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1463'.
[  333.600295][T11192] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  333.602520][T11192] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  333.615869][T11192] vhci_hcd vhci_hcd.0: Device attached
[  333.768233][   T29] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  333.901591][ T5992] usb 40-1: SetAddress Request (14) to port 0
[  333.903917][ T5992] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[  333.931796][   T29] usb 5-1: Using ep0 maxpacket: 32
[  333.936589][   T29] usb 5-1: config 0 has an invalid interface number: 247 but max is 0
[  333.940368][   T29] usb 5-1: config 0 has no interface number 0
[  333.946042][   T29] usb 5-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  333.949319][   T29] usb 5-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  333.952594][   T29] usb 5-1: Product: syz
[  333.954231][   T29] usb 5-1: Manufacturer: syz
[  333.988397][   T29] usb 5-1: config 0 descriptor??
[  334.153519][T11193] vhci_hcd: connection reset by peer
[  334.156223][ T1144] vhci_hcd vhci_hcd.1: stop threads
[  334.158030][ T1144] vhci_hcd vhci_hcd.1: release socket
[  334.159979][ T1144] vhci_hcd vhci_hcd.1: disconnect device
[  335.284199][ T6005] usb 5-1: USB disconnect, device number 19
[  335.991652][   T29] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  336.176673][   T29] usb 6-1: Using ep0 maxpacket: 32
[  336.251954][   T29] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  336.261240][   T29] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  336.262962][   T29] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 183, changing to 11
[  336.263287][   T29] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 34204, setting to 1024
[  336.263659][   T29] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  336.344018][   T29] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  336.347271][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.350078][   T29] usb 6-1: Product: syz
[  336.354566][   T29] usb 6-1: Manufacturer: syz
[  336.379539][   T29] usb 6-1: SerialNumber: syz
[  336.419824][T11223] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  336.432418][    C1] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  336.446398][   T29] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input26
[  336.671555][   T29] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  336.674415][   T29]  (id 0x00)
[  336.731582][   T29] rc_core: IR keymap rc-imon-pad not found
[  336.733689][   T29] Registered IR keymap rc-empty
[  336.739467][   T29] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  336.746432][   T29] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  336.936135][   T29] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[  336.951820][T11249] input: syz0 as /devices/virtual/input/input28
[  337.035220][   T29] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input27
[  337.043472][   T29] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:16> initialized
[  337.070290][T11253] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  337.895813][T11273] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1491'.
[  338.141331][T11270] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  338.144182][T11270] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  338.148040][T11270] vhci_hcd vhci_hcd.0: Device attached
[  338.422221][   T29] usb 44-1: SetAddress Request (6) to port 0
[  338.424447][   T29] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  338.672671][T11285] vhci_hcd: connection reset by peer
[  338.675199][   T13] vhci_hcd vhci_hcd.3: stop threads
[  338.677467][   T13] vhci_hcd vhci_hcd.3: release socket
[  338.679703][   T13] vhci_hcd vhci_hcd.3: disconnect device
[  338.740041][ T5820] usb 6-1: USB disconnect, device number 16
[  338.837421][T11288] input: syz0 as /devices/virtual/input/input29
[  338.907658][T11292] ieee802154 phy1 wpan1: encryption failed: -22
[  338.961752][ T5992] usb 40-1: device descriptor read/8, error -110
[  339.084818][T11300] syzkaller1: entered promiscuous mode
[  339.086629][T11300] syzkaller1: entered allmulticast mode
[  339.090750][T11300] wg1: entered promiscuous mode
[  339.101728][T11300] wg1: entered allmulticast mode
[  339.304944][T11308] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1501'.
[  339.362911][ T5992] usb usb40-port1: attempt power cycle
[  339.922434][ T5992] usb usb40-port1: unable to enumerate USB device
[  339.985981][T11318] kAFS: unable to lookup cell ''
[  340.858001][T11335] Set syz1 is full, maxelem 65536 reached
[  342.256926][T11368] ubi: mtd0 is already attached to ubi31
[  342.528945][   T53] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  342.685061][   T40] audit: type=1326 audit(1766979532.119:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.693598][   T40] audit: type=1326 audit(1766979532.119:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.702493][   T40] audit: type=1326 audit(1766979532.119:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.710703][   T40] audit: type=1326 audit(1766979532.119:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.722103][   T40] audit: type=1326 audit(1766979532.119:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.730700][   T40] audit: type=1326 audit(1766979532.119:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.738413][   T40] audit: type=1326 audit(1766979532.119:2776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.748818][   T40] audit: type=1326 audit(1766979532.119:2777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.772239][   T53] usb 6-1: Using ep0 maxpacket: 32
[  342.776111][   T40] audit: type=1326 audit(1766979532.119:2778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.786429][   T40] audit: type=1326 audit(1766979532.119:2779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11372 comm="syz.2.1521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  342.906960][   T53] usb 6-1: config 0 has an invalid interface number: 247 but max is 0
[  342.910607][   T53] usb 6-1: config 0 has no interface number 0
[  342.914331][   T53] usb 6-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  342.917492][   T53] usb 6-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  342.920322][   T53] usb 6-1: Product: syz
[  342.922044][   T53] usb 6-1: Manufacturer: syz
[  342.925521][   T53] usb 6-1: config 0 descriptor??
[  343.063857][T11378] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1518'.
[  343.113038][T11378] batadv1: entered allmulticast mode
[  343.536678][   T29] usb 44-1: device descriptor read/8, error -110
[  344.000669][T11392] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1525'.
[  344.004926][T11395] program syz.3.1526 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  344.005182][T11392] netlink: 'syz.2.1525': attribute type 16 has an invalid length.
[  344.010657][T11392] netlink: 'syz.2.1525': attribute type 17 has an invalid length.
[  344.022787][T11392] 8021q: adding VLAN 0 to HW filter on device team0
[  344.028181][T11392] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  344.176423][   T29] usb usb44-port1: attempt power cycle
[  344.213364][ T5992] usb 6-1: USB disconnect, device number 17
[  344.316167][ T6498] bond0: (slave syz_tun): Releasing backup interface
[  344.700841][ T5946] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  344.705809][ T5946] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  344.709263][ T5946] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  344.713268][ T5946] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  344.716572][ T5946] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  344.752966][ T5939] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  344.755855][ T5939] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  344.758541][ T5939] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  344.761941][ T5939] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  344.764665][ T5939] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  344.778018][T11422] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  344.780264][T11422] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  344.784114][T11422] vhci_hcd vhci_hcd.0: Device attached
[  344.862226][   T29] usb usb44-port1: unable to enumerate USB device
[  344.870053][T11432] ebtables: wrong size: *len 264, entries_size 144, replsz 144
[  344.966683][ T1162] bond1 (unregistering): (slave gretap1): Releasing active interface
[  345.037295][T11434] FAULT_INJECTION: forcing a failure.
[  345.037295][T11434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.042651][T11434] CPU: 0 UID: 0 PID: 11434 Comm: syz.0.1537 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  345.042670][T11434] Tainted: [L]=SOFTLOCKUP
[  345.042673][T11434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.042680][T11434] Call Trace:
[  345.042684][T11434]  <TASK>
[  345.042688][T11434]  dump_stack_lvl+0x16c/0x1f0
[  345.042709][T11434]  should_fail_ex+0x512/0x640
[  345.042724][T11434]  _copy_to_user+0x32/0xd0
[  345.042736][T11434]  simple_read_from_buffer+0xcb/0x170
[  345.042753][T11434]  proc_fail_nth_read+0x197/0x240
[  345.042772][T11434]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  345.042790][T11434]  ? rw_verify_area+0xcf/0x6c0
[  345.042804][T11434]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  345.042821][T11434]  vfs_read+0x1e4/0xcf0
[  345.042842][T11434]  ? __pfx___mutex_lock+0x10/0x10
[  345.042860][T11434]  ? __pfx_vfs_read+0x10/0x10
[  345.042874][T11434]  ? find_held_lock+0x2b/0x80
[  345.042892][T11434]  ? __fget_files+0x20e/0x3c0
[  345.042911][T11434]  ksys_read+0x12a/0x250
[  345.042926][T11434]  ? __pfx_ksys_read+0x10/0x10
[  345.042941][T11434]  ? do_user_addr_fault+0x843/0x1370
[  345.042957][T11434]  __do_fast_syscall_32+0xe8/0x680
[  345.042976][T11434]  do_fast_syscall_32+0x32/0x80
[  345.042993][T11434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.043006][T11434] RIP: 0023:0xf70dd579
[  345.043015][T11434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.043025][T11434] RSP: 002b:00000000f548b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  345.043036][T11434] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f548b620
[  345.043043][T11434] RDX: 000000000000000f RSI: 00000000f7476ff4 RDI: 0000000000000000
[  345.043049][T11434] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  345.043055][T11434] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  345.043061][T11434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.043074][T11434]  </TASK>
[  345.122676][ T5992] usb 42-1: SetAddress Request (14) to port 0
[  345.125016][ T5992] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[  345.235104][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  345.239522][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  345.243876][ T1162] bond0 (unregistering): (slave team0): Releasing backup interface
[  345.247204][ T1162] bond0 (unregistering): Released all slaves
[  345.252106][ T1162] bond1 (unregistering): Released all slaves
[  345.345431][ T1162] tipc: Left network mode
[  345.400624][T11420] chnl_net:caif_netlink_parms(): no params data found
[  345.433290][T11426] vhci_hcd: connection reset by peer
[  345.436418][   T64] vhci_hcd vhci_hcd.2: stop threads
[  345.438817][   T64] vhci_hcd vhci_hcd.2: release socket
[  345.441352][   T64] vhci_hcd vhci_hcd.2: disconnect device
[  345.492703][T11420] bridge0: port 1(bridge_slave_0) entered blocking state
[  345.496289][T11420] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.500922][T11420] bridge_slave_0: entered allmulticast mode
[  345.505353][T11420] bridge_slave_0: entered promiscuous mode
[  345.518763][T11420] bridge0: port 2(bridge_slave_1) entered blocking state
[  345.521289][T11420] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.524941][T11420] bridge_slave_1: entered allmulticast mode
[  345.528166][T11420] bridge_slave_1: entered promiscuous mode
[  345.544377][T11420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  345.550913][T11420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  345.579621][T11420] team0: Port device team_slave_0 added
[  345.596080][T11420] team0: Port device team_slave_1 added
[  345.611958][T11420] batman_adv: batadv0: Adding interface: batadv_slave_0
[  345.614528][T11420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  345.623063][T11420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  345.629418][T11420] batman_adv: batadv0: Adding interface: batadv_slave_1
[  345.631805][T11420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  345.640161][T11420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  345.652584][T11455] ieee802154 phy1 wpan1: encryption failed: -22
[  345.802704][T11420] hsr_slave_0: entered promiscuous mode
[  345.805080][T11420] hsr_slave_1: entered promiscuous mode
[  345.807520][T11420] debugfs: 'hsr0' already exists in 'hsr'
[  345.809417][T11420] Cannot create hsr debugfs directory
[  346.074741][T11420] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  346.189381][T11420] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  346.315670][T11420] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  346.343515][ T1162] hsr_slave_0: left promiscuous mode
[  346.346641][ T1162] hsr_slave_1: left promiscuous mode
[  346.349666][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0
[  346.354830][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  346.507547][T11481] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1541'.
[  346.572291][T11483] netlink: 'syz.0.1541': attribute type 16 has an invalid length.
[  346.576607][T11483] netlink: 'syz.0.1541': attribute type 17 has an invalid length.
[  346.812166][ T5946] Bluetooth: hci3: command tx timeout
[  346.821830][ T1162] team0 (unregistering): Port device team_slave_1 removed
[  346.846059][ T1162] team0 (unregistering): Port device team_slave_0 removed
[  347.190070][T11420] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  347.220627][T11483] 8021q: adding VLAN 0 to HW filter on device team0
[  347.224155][T11483] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  347.247292][T11494] syzkaller0: entered promiscuous mode
[  347.249138][T11494] syzkaller0: entered allmulticast mode
[  347.326780][T11420] 8021q: adding VLAN 0 to HW filter on device bond0
[  347.336418][T11420] 8021q: adding VLAN 0 to HW filter on device team0
[  347.341911][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.344387][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.353621][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.356746][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.707222][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  347.707239][   T40] audit: type=1326 audit(1766979537.139:2796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.718196][   T40] audit: type=1326 audit(1766979537.139:2797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.725993][   T40] audit: type=1326 audit(1766979537.139:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.733242][   T40] audit: type=1326 audit(1766979537.139:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.740339][   T40] audit: type=1326 audit(1766979537.139:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.747758][   T40] audit: type=1326 audit(1766979537.139:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.755058][   T40] audit: type=1326 audit(1766979537.139:2802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.762405][   T40] audit: type=1326 audit(1766979537.139:2803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.769239][   T40] audit: type=1326 audit(1766979537.149:2804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  347.776610][   T40] audit: type=1326 audit(1766979537.149:2805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.1.1549" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  348.235118][T11533] ieee802154 phy1 wpan1: encryption failed: -22
[  348.688590][ T1162] IPVS: stop unused estimator thread 0...
[  348.696652][T11420] 8021q: adding VLAN 0 to HW filter on device batadv0
[  348.749500][T11527] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  348.890629][ T5946] Bluetooth: hci3: command tx timeout
[  349.770836][T11420] veth0_vlan: entered promiscuous mode
[  349.789110][T11420] veth1_vlan: entered promiscuous mode
[  349.818479][T11420] veth0_macvtap: entered promiscuous mode
[  349.823420][T11420] veth1_macvtap: entered promiscuous mode
[  349.836716][T11420] batman_adv: batadv0: Interface activated: batadv_slave_0
[  349.845316][T11420] batman_adv: batadv0: Interface activated: batadv_slave_1
[  349.854795][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  349.857827][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  349.861288][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  349.933435][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  350.014974][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  350.020523][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  350.045936][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  350.049406][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  350.078723][T11578] ebtables: wrong size: *len 80, entries_size 144, replsz 144
[  350.164044][ T5992] usb 42-1: device descriptor read/8, error -110
[  350.326994][T11589] ieee802154 phy1 wpan1: encryption failed: -22
[  350.803110][ T5992] usb usb42-port1: attempt power cycle
[  350.961600][ T5946] Bluetooth: hci3: command tx timeout
[  351.181207][T11599] overlayfs: failed to resolve './file0': -2
[  351.291086][T11607] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1571'.
[  351.296350][T11607] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1571'.
[  351.456076][ T5992] usb usb42-port1: unable to enumerate USB device
[  351.520791][T11619] ieee802154 phy1 wpan1: encryption failed: -22
[  351.566677][T11618] Set syz1 is full, maxelem 4110 reached
[  352.023309][T11626] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  352.117733][T11627] xt_CT: You must specify a L4 protocol and not use inversions on it
[  352.137760][T11627] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1576'.
[  352.146849][T11627] 8021q: VLANs not supported on gre0
[  352.239925][T11634] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1581'.
[  352.347194][T11644] input: syz0 as /devices/virtual/input/input33
[  352.772420][   T29] libceph: connect (1)[c::]:6789 error -101
[  352.774613][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  352.809896][T11661] ceph: No mds server is up or the cluster is laggy
[  353.051599][ T5939] Bluetooth: hci3: command tx timeout
[  353.121026][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  353.121039][   T40] audit: type=1326 audit(1766979542.549:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11670 comm="syz.2.1591" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x0
[  353.223294][T11672] xt_CT: You must specify a L4 protocol and not use inversions on it
[  353.230019][T11672] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1591'.
[  353.233485][T11672] 8021q: VLANs not supported on gre0
[  353.381116][T11675] ieee802154 phy1 wpan1: encryption failed: -22
[  354.579161][T11702] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1599'.
[  354.681334][T11707] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  354.685235][T11707] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  354.911774][   T60] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  355.029017][T11710] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  355.031787][T11710] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  355.035458][T11710] vhci_hcd vhci_hcd.0: Device attached
[  355.042368][   T60] usb 9-1: device descriptor read/64, error -71
[  355.125158][ T5939] Bluetooth: hci3: command 0x0405 tx timeout
[  355.271608][ T7889] usb 39-1: new low-speed USB device number 6 using vhci_hcd
[  355.293524][   T40] audit: type=1326 audit(1766979544.729:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11715 comm="syz.0.1602" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x0
[  355.311588][   T60] usb 9-1: new low-speed USB device number 3 using dummy_hcd
[  355.394369][T11717] xt_CT: You must specify a L4 protocol and not use inversions on it
[  355.400455][T11717] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1602'.
[  355.403790][T11717] 8021q: VLANs not supported on gre0
[  355.441700][   T60] usb 9-1: device descriptor read/64, error -71
[  355.551983][   T60] usb usb9-port1: attempt power cycle
[  355.901728][   T60] usb 9-1: new low-speed USB device number 4 using dummy_hcd
[  355.922324][   T60] usb 9-1: device descriptor read/8, error -71
[  356.043136][T11713] vhci_hcd: connection reset by peer
[  356.052159][  T227] vhci_hcd vhci_hcd.1: stop threads
[  356.053945][  T227] vhci_hcd vhci_hcd.1: release socket
[  356.057351][  T227] vhci_hcd vhci_hcd.1: disconnect device
[  356.171607][   T60] usb 9-1: new low-speed USB device number 5 using dummy_hcd
[  356.192047][   T60] usb 9-1: device descriptor read/8, error -71
[  356.301981][   T60] usb usb9-port1: unable to enumerate USB device
[  357.099446][T11743] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1608'.
[  357.141581][T11743] batadv2: entered allmulticast mode
[  357.258948][T11748] ieee802154 phy1 wpan1: encryption failed: -22
[  357.486415][   T40] audit: type=1326 audit(1766979546.919:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11741 comm="syz.1.1611" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x0
[  357.660787][T11752] xt_CT: You must specify a L4 protocol and not use inversions on it
[  357.675085][T11752] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1611'.
[  357.679308][T11752] 8021q: VLANs not supported on gre0
[  358.779207][T11777] ieee802154 phy1 wpan1: encryption failed: -22
[  359.580963][   T40] audit: type=1326 audit(1766979549.009:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.4.1622" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  359.686297][T11793] xt_CT: You must specify a L4 protocol and not use inversions on it
[  359.697593][T11793] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1622'.
[  359.700924][T11793] 8021q: VLANs not supported on gre0
[  360.196441][T11801] ieee802154 phy1 wpan1: encryption failed: -22
[  360.391823][ T7889] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  360.559267][   T40] audit: type=1326 audit(1766979549.989:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.568904][   T40] audit: type=1326 audit(1766979549.989:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.576730][   T40] audit: type=1326 audit(1766979549.989:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.584130][   T40] audit: type=1326 audit(1766979549.989:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.591765][   T40] audit: type=1326 audit(1766979549.989:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.598825][   T40] audit: type=1326 audit(1766979549.989:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.606334][   T40] audit: type=1326 audit(1766979549.989:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.613592][   T40] audit: type=1326 audit(1766979549.989:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.620585][   T40] audit: type=1326 audit(1766979549.989:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f11579 code=0x7ffc0000
[  360.774523][T11795] Set syz1 is full, maxelem 65536 reached
[  360.951186][T11820] ebtables: wrong size: *len 264, entries_size 144, replsz 144
[  361.133807][T11810] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  361.383983][T11838] ieee802154 phy1 wpan1: encryption failed: -22
[  362.165802][T11847] x_tables: duplicate underflow at hook 1
[  362.200778][T11839] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1629'.
[  362.207430][T11839] batadv1: entered allmulticast mode
[  362.459599][T11850] xt_CT: You must specify a L4 protocol and not use inversions on it
[  362.510737][T11850] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1633'.
[  362.523127][T11850] 8021q: VLANs not supported on gre0
[  365.192961][T11911] ieee802154 phy1 wpan1: encryption failed: -22
[  365.331156][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  365.331168][   T40] audit: type=1326 audit(1766979554.759:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11906 comm="syz.4.1654" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  365.544854][T11914] xt_CT: You must specify a L4 protocol and not use inversions on it
[  365.553272][T11914] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1654'.
[  365.557068][T11914] 8021q: VLANs not supported on gre0
[  365.708249][T11919] ieee802154 phy1 wpan1: encryption failed: -22
[  366.445335][T11933] fuse: Bad value for 'fd'
[  366.679480][T11945] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1666'.
[  366.685015][T11945] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1666'.
[  366.819699][T11943] ieee802154 phy1 wpan1: encryption failed: -22
[  367.435722][   T40] audit: type=1326 audit(1766979556.869:2859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.440130][T11964] fuse: Bad value for 'fd'
[  367.451422][   T40] audit: type=1326 audit(1766979556.869:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.458795][   T40] audit: type=1326 audit(1766979556.869:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.466562][   T40] audit: type=1326 audit(1766979556.869:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.474141][   T40] audit: type=1326 audit(1766979556.869:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.484167][   T40] audit: type=1326 audit(1766979556.869:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.495086][   T40] audit: type=1326 audit(1766979556.869:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.503210][   T40] audit: type=1326 audit(1766979556.869:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.512049][   T40] audit: type=1326 audit(1766979556.879:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11959 comm="syz.4.1670" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  367.609111][T11972] netlink: 'syz.2.1675': attribute type 1 has an invalid length.
[  367.614770][T11972] netlink: 228 bytes leftover after parsing attributes in process `syz.2.1675'.
[  367.781676][ T7889] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  367.904706][T11981] kAFS: unable to lookup cell ''
[  367.924564][T11981] FAULT_INJECTION: forcing a failure.
[  367.924564][T11981] name failslab, interval 1, probability 0, space 0, times 0
[  367.929063][T11981] CPU: 1 UID: 0 PID: 11981 Comm: syz.2.1678 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  367.929081][T11981] Tainted: [L]=SOFTLOCKUP
[  367.929085][T11981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.929092][T11981] Call Trace:
[  367.929095][T11981]  <TASK>
[  367.929099][T11981]  dump_stack_lvl+0x16c/0x1f0
[  367.929150][T11981]  should_fail_ex+0x512/0x640
[  367.929167][T11981]  ? fs_reclaim_acquire+0xae/0x150
[  367.929186][T11981]  should_failslab+0xc2/0x120
[  367.929204][T11981]  __kmalloc_noprof+0xeb/0x910
[  367.929216][T11981]  ? tomoyo_encode2+0x100/0x3e0
[  367.929233][T11981]  ? tomoyo_encode2+0x100/0x3e0
[  367.929247][T11981]  tomoyo_encode2+0x100/0x3e0
[  367.929263][T11981]  tomoyo_encode+0x29/0x50
[  367.929277][T11981]  tomoyo_realpath_from_path+0x18f/0x6e0
[  367.929296][T11981]  tomoyo_check_open_permission+0x2ab/0x3c0
[  367.929309][T11981]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  367.929335][T11981]  ? lock_acquire+0x179/0x330
[  367.929346][T11981]  ? find_held_lock+0x2b/0x80
[  367.929360][T11981]  ? mnt_get_write_access+0x52/0x2f0
[  367.929374][T11981]  tomoyo_file_open+0x6b/0x90
[  367.929392][T11981]  security_file_open+0x84/0x1e0
[  367.929406][T11981]  do_dentry_open+0x597/0x1590
[  367.929424][T11981]  ? security_inode_permission+0xbf/0x260
[  367.929439][T11981]  vfs_open+0x82/0x3f0
[  367.929452][T11981]  path_openat+0x2078/0x3140
[  367.929477][T11981]  ? __pfx_path_openat+0x10/0x10
[  367.929498][T11981]  do_filp_open+0x20b/0x470
[  367.929515][T11981]  ? __pfx_do_filp_open+0x10/0x10
[  367.929542][T11981]  ? alloc_fd+0x471/0x7d0
[  367.929561][T11981]  do_sys_openat2+0x121/0x290
[  367.929573][T11981]  ? __pfx_do_sys_openat2+0x10/0x10
[  367.929586][T11981]  ? __fget_files+0x20e/0x3c0
[  367.929605][T11981]  __ia32_sys_creat+0xcb/0x120
[  367.929617][T11981]  ? __pfx___ia32_sys_creat+0x10/0x10
[  367.929629][T11981]  ? __pfx_ksys_write+0x10/0x10
[  367.929646][T11981]  ? do_user_addr_fault+0x843/0x1370
[  367.929660][T11981]  ? rcu_is_watching+0x12/0xc0
[  367.929675][T11981]  ? __do_fast_syscall_32+0x9a/0x680
[  367.929693][T11981]  __do_fast_syscall_32+0xe8/0x680
[  367.929711][T11981]  do_fast_syscall_32+0x32/0x80
[  367.929728][T11981]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  367.929742][T11981] RIP: 0023:0xf7f75579
[  367.929751][T11981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  367.929761][T11981] RSP: 002b:00000000f544555c EFLAGS: 00000296 ORIG_RAX: 0000000000000008
[  367.929771][T11981] RAX: ffffffffffffffda RBX: 0000000080000400 RCX: 0000000000000040
[  367.929778][T11981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  367.929784][T11981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  367.929790][T11981] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  367.929795][T11981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  367.929810][T11981]  </TASK>
[  367.930730][T11981] ERROR: Out of memory at tomoyo_realpath_from_path.
[  367.951909][ T7889] usb 6-1: Using ep0 maxpacket: 32
[  367.958237][ T7889] usb 6-1: config 0 has an invalid interface number: 247 but max is 0
[  368.051158][ T7889] usb 6-1: config 0 has no interface number 0
[  368.062928][ T7889] usb 6-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  368.066167][ T7889] usb 6-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  368.068975][ T7889] usb 6-1: Product: syz
[  368.070539][ T7889] usb 6-1: Manufacturer: syz
[  368.099744][ T7889] usb 6-1: config 0 descriptor??
[  368.128195][T11961] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  368.891193][T11991] ieee802154 phy1 wpan1: encryption failed: -22
[  368.952310][   T10] usb 6-1: USB disconnect, device number 18
[  368.963497][T11990] hfsplus: unable to find HFS+ superblock
[  369.834689][T12007] Set syz1 is full, maxelem 65536 reached
[  369.931325][T12016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  369.933927][T12016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  369.938407][T12004] FAULT_INJECTION: forcing a failure.
[  369.938407][T12004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.941462][T12016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  369.944445][T12004] CPU: 2 UID: 0 PID: 12004 Comm: syz.0.1685 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  369.944472][T12004] Tainted: [L]=SOFTLOCKUP
[  369.944478][T12004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.944489][T12004] Call Trace:
[  369.944496][T12004]  <TASK>
[  369.944503][T12004]  dump_stack_lvl+0x16c/0x1f0
[  369.944533][T12004]  should_fail_ex+0x512/0x640
[  369.944559][T12004]  __fpu_restore_sig+0x90c/0x1370
[  369.944592][T12004]  ? __pfx___fpu_restore_sig+0x10/0x10
[  369.944638][T12004]  ? __might_fault+0xe3/0x190
[  369.944659][T12004]  ? __might_fault+0x13b/0x190
[  369.944685][T12004]  fpu__restore_sig+0x151/0x190
[  369.944713][T12004]  ia32_restore_sigcontext+0x44a/0x630
[  369.944733][T12004]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  369.944759][T12004]  ? rcu_is_watching+0x12/0xc0
[  369.944785][T12004]  ? _raw_spin_unlock_irq+0x23/0x50
[  369.944810][T12004]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.944841][T12004]  __do_compat_sys_sigreturn+0x1b5/0x280
[  369.944860][T12004]  ? __pfx___do_compat_sys_sigreturn+0x10/0x10
[  369.944882][T12004]  ? rcu_is_watching+0x12/0xc0
[  369.944908][T12004]  do_int80_emulation+0x104/0x480
[  369.944939][T12004]  asm_int80_emulation+0x1a/0x20
[  369.944957][T12004] RIP: 0023:0xf70dd579
[  369.944970][T12004] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  369.944988][T12004] RSP: 002b:00000000f54cd55c EFLAGS: 00000296
[  369.945002][T12004] RAX: 00000000fffffffc RBX: 00000000ffffff9c RCX: 0000000080000080
[  369.945014][T12004] RDX: 0000000000001000 RSI: 0000000000000700 RDI: 0000000000000000
[  369.945024][T12004] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  369.945035][T12004] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  369.945045][T12004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  369.945068][T12004]  </TASK>
[  370.010253][T12016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  370.046393][T12016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  370.049298][T12016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  370.051899][T12016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  370.054106][T12016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  370.056874][T12016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  370.313293][T12027] fuse: Bad value for 'fd'
[  370.550721][T12029] ieee802154 phy1 wpan1: encryption failed: -22
[  370.607806][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  370.607817][   T40] audit: type=1326 audit(1766979560.039:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.621694][   T40] audit: type=1326 audit(1766979560.049:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.631062][   T40] audit: type=1326 audit(1766979560.049:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.639581][   T40] audit: type=1326 audit(1766979560.049:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.647447][   T40] audit: type=1326 audit(1766979560.049:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.654698][   T40] audit: type=1326 audit(1766979560.049:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.668584][   T40] audit: type=1326 audit(1766979560.049:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.679444][   T40] audit: type=1326 audit(1766979560.049:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.690338][   T40] audit: type=1326 audit(1766979560.049:2891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.697691][   T40] audit: type=1326 audit(1766979560.049:2892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12036 comm="syz.0.1696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  370.964806][T12043] tipc: New replicast peer: 0.0.0.0
[  370.967131][T12043] tipc: Enabled bearer <udp:syz2>, priority 10
[  371.244168][T12056] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  371.246858][T12056] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  371.250382][T12056] vhci_hcd vhci_hcd.0: Device attached
[  371.541780][   T10] usb 38-1: SetAddress Request (19) to port 0
[  371.544246][   T10] usb 38-1: new SuperSpeed USB device number 19 using vhci_hcd
[  371.832469][T12058] vhci_hcd: connection reset by peer
[  371.834783][   T59] vhci_hcd vhci_hcd.0: stop threads
[  371.839965][   T59] vhci_hcd vhci_hcd.0: release socket
[  371.842723][   T59] vhci_hcd vhci_hcd.0: disconnect device
[  371.931238][T12050] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  371.934982][T12050] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  371.949421][T12050] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  372.095161][ T7889] tipc: Node number set to 1269095863
[  372.342824][T12074] ieee802154 phy1 wpan1: encryption failed: -22
[  373.018753][T12076] xt_CT: You must specify a L4 protocol and not use inversions on it
[  373.043711][T12076] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1712'.
[  373.047000][T12076] 8021q: VLANs not supported on gre0
[  373.193983][T12095] ieee802154 phy1 wpan1: encryption failed: -22
[  373.199231][T12097] ieee802154 phy1 wpan1: encryption failed: -22
[  373.205021][ T5939] Bluetooth: hci3: command 0x0405 tx timeout
[  373.863412][T12106] ieee802154 phy1 wpan1: encryption failed: -22
[  374.068212][T12111] FAULT_INJECTION: forcing a failure.
[  374.068212][T12111] name failslab, interval 1, probability 0, space 0, times 0
[  374.072916][T12111] CPU: 2 UID: 0 PID: 12111 Comm: syz.0.1717 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  374.072934][T12111] Tainted: [L]=SOFTLOCKUP
[  374.072937][T12111] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.072944][T12111] Call Trace:
[  374.072947][T12111]  <TASK>
[  374.072952][T12111]  dump_stack_lvl+0x16c/0x1f0
[  374.072972][T12111]  should_fail_ex+0x512/0x640
[  374.072985][T12111]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  374.073000][T12111]  should_failslab+0xc2/0x120
[  374.073017][T12111]  kmem_cache_alloc_node_noprof+0x86/0x800
[  374.073031][T12111]  ? __alloc_skb+0x156/0x410
[  374.073045][T12111]  ? __alloc_skb+0x156/0x410
[  374.073056][T12111]  __alloc_skb+0x156/0x410
[  374.073066][T12111]  ? __alloc_skb+0x35d/0x410
[  374.073077][T12111]  ? __pfx___alloc_skb+0x10/0x10
[  374.073089][T12111]  ? netlink_autobind.isra.0+0x158/0x370
[  374.073109][T12111]  netlink_alloc_large_skb+0x69/0x140
[  374.073125][T12111]  netlink_sendmsg+0x698/0xdd0
[  374.073143][T12111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.073160][T12111]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  374.073181][T12111]  ____sys_sendmsg+0xa5d/0xc30
[  374.073199][T12111]  ? __pfx_____sys_sendmsg+0x10/0x10
[  374.073215][T12111]  ? get_compat_msghdr+0x11a/0x170
[  374.073235][T12111]  ___sys_sendmsg+0x134/0x1d0
[  374.073249][T12111]  ? __pfx____sys_sendmsg+0x10/0x10
[  374.073269][T12111]  ? find_held_lock+0x2b/0x80
[  374.073292][T12111]  __sys_sendmsg+0x16d/0x220
[  374.073305][T12111]  ? __pfx___sys_sendmsg+0x10/0x10
[  374.073327][T12111]  __do_fast_syscall_32+0xe8/0x680
[  374.073346][T12111]  do_fast_syscall_32+0x32/0x80
[  374.073363][T12111]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.073376][T12111] RIP: 0023:0xf70dd579
[  374.073385][T12111] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  374.073396][T12111] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  374.073407][T12111] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000440
[  374.073420][T12111] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  374.073426][T12111] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  374.073433][T12111] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  374.073439][T12111] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  374.073452][T12111]  </TASK>
[  374.200647][T12113] 
[  374.201521][T12113] ======================================================
[  374.203911][T12113] WARNING: possible circular locking dependency detected
[  374.206264][T12113] syzkaller #0 Tainted: G             L     
[  374.208446][T12113] ------------------------------------------------------
[  374.210786][T12113] syz.0.1718/12113 is trying to acquire lock:
[  374.212843][T12113] ffff8880129acfa8 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[  374.215820][T12113] 
[  374.215820][T12113] but task is already holding lock:
[  374.218311][T12113] ffff888013610868 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[  374.221042][T12113] 
[  374.221042][T12113] which lock already depends on the new lock.
[  374.221042][T12113] 
[  374.224538][T12113] 
[  374.224538][T12113] the existing dependency chain (in reverse order) is:
[  374.227563][T12113] 
[  374.227563][T12113] -> #3 (&pipe->mutex){+.+.}-{4:4}:
[  374.230092][T12113]        __mutex_lock+0x1aa/0x1ca0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  374.231879][T12113]        anon_pipe_write+0x15d/0x1bd0
[  374.233775][T12113]        __kernel_write_iter+0x720/0xb10
[  374.235738][T12113]        __kernel_write+0xf5/0x140
[  374.237473][T12113]        autofs_notify_daemon+0x4db/0xd60
[  374.239402][T12113]        autofs_wait+0x10f3/0x1ac0
[  374.241127][T12113]        autofs_mount_wait+0x132/0x3c0
[  374.242978][T12113]        autofs_d_automount+0x4b2/0x960
[  374.244842][T12113]        __traverse_mounts+0x1b9/0x830
[  374.246703][T12113]        step_into_slowpath+0x772/0xf50
[  374.248597][T12113]        path_lookupat+0x627/0xc40
[  374.250372][T12113]        filename_lookup+0x224/0x5f0
[  374.252175][T12113]        kern_path+0x35/0x50
[  374.253758][T12113]        lookup_bdev+0xd8/0x280
[  374.255428][T12113]        resume_store+0x1d6/0x490
[  374.257139][T12113]        kobj_attr_store+0x58/0x80
[  374.258905][T12113]        sysfs_kf_write+0xf2/0x150
[  374.260636][T12113]        kernfs_fop_write_iter+0x3af/0x570
[  374.262623][T12113]        vfs_write+0x7d3/0x11d0
[  374.264273][T12113]        ksys_write+0x12a/0x250
[  374.265925][T12113]        __do_fast_syscall_32+0xe8/0x680
[  374.267855][T12113]        do_fast_syscall_32+0x32/0x80
[  374.269668][T12113]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.271971][T12113] 
[  374.271971][T12113] -> #2 (&sbi->pipe_mutex){+.+.}-{4:4}:
[  374.274573][T12113]        __mutex_lock+0x1aa/0x1ca0
[  374.276362][T12113]        autofs_notify_daemon+0x4a6/0xd60
[  374.278284][T12113]        autofs_wait+0x10f3/0x1ac0
[  374.280038][T12113]        autofs_mount_wait+0x132/0x3c0
[  374.281898][T12113]        autofs_d_automount+0x4b2/0x960
[  374.283781][T12113]        __traverse_mounts+0x1b9/0x830
[  374.285622][T12113]        step_into_slowpath+0x772/0xf50
[  374.287507][T12113]        path_lookupat+0x627/0xc40
[  374.289233][T12113]        filename_lookup+0x224/0x5f0
[  374.291028][T12113]        kern_path+0x35/0x50
[  374.292602][T12113]        lookup_bdev+0xd8/0x280
[  374.294240][T12113]        resume_store+0x1d6/0x490
[  374.295979][T12113]        kobj_attr_store+0x58/0x80
[  374.297714][T12113]        sysfs_kf_write+0xf2/0x150
[  374.299461][T12113]        kernfs_fop_write_iter+0x3af/0x570
[  374.301483][T12113]        vfs_write+0x7d3/0x11d0
[  374.303156][T12113]        ksys_write+0x12a/0x250
[  374.304810][T12113]        __do_fast_syscall_32+0xe8/0x680
[  374.306809][T12113]        do_fast_syscall_32+0x32/0x80
[  374.308795][T12113]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.311131][T12113] 
[  374.311131][T12113] -> #1 (&of->mutex){+.+.}-{4:4}:
[  374.313715][T12113]        __mutex_lock+0x1aa/0x1ca0
[  374.315530][T12113]        kernfs_seq_start+0x4f/0x2a0
[  374.317347][T12113]        traverse.part.0.constprop.0+0xaf/0x650
[  374.319457][T12113]        seq_read_iter+0x93c/0x12d0
[  374.321236][T12113]        kernfs_fop_read_iter+0x46c/0x610
[  374.323237][T12113]        lo_rw_aio.isra.0+0x758/0xd80
[  374.325085][T12113]        loop_process_work+0x8fc/0x1140
[  374.326999][T12113]        process_one_work+0x9ba/0x1b20
[  374.328863][T12113]        worker_thread+0x6c8/0xf10
[  374.330619][T12113]        kthread+0x3c5/0x780
[  374.332215][T12113]        ret_from_fork+0x983/0xb10
[  374.333958][T12113]        ret_from_fork_asm+0x1a/0x30
[  374.335778][T12113] 
[  374.335778][T12113] -> #0 (&p->lock){+.+.}-{4:4}:
[  374.338144][T12113]        __lock_acquire+0x1669/0x2890
[  374.340022][T12113]        lock_acquire+0x179/0x330
[  374.341739][T12113]        __mutex_lock+0x1aa/0x1ca0
[  374.343522][T12113]        seq_read_iter+0xe1/0x12d0
[  374.345273][T12113]        kernfs_fop_read_iter+0x46c/0x610
[  374.347272][T12113]        copy_splice_read+0x618/0xc20
[  374.349135][T12113]        do_splice_read+0x285/0x370
[  374.350932][T12113]        splice_file_to_pipe+0x109/0x120
[  374.352879][T12113]        do_sendfile+0x400/0xe50
[  374.354702][T12113]        __ia32_compat_sys_sendfile+0x1e5/0x220
[  374.356807][T12113]        __do_fast_syscall_32+0xe8/0x680
[  374.358719][T12113]        do_fast_syscall_32+0x32/0x80
[  374.360540][T12113]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.362805][T12113] 
[  374.362805][T12113] other info that might help us debug this:
[  374.362805][T12113] 
[  374.366148][T12113] Chain exists of:
[  374.366148][T12113]   &p->lock --> &sbi->pipe_mutex --> &pipe->mutex
[  374.366148][T12113] 
[  374.370119][T12113]  Possible unsafe locking scenario:
[  374.370119][T12113] 
[  374.372555][T12113]        CPU0                    CPU1
[  374.374322][T12113]        ----                    ----
[  374.376122][T12113]   lock(&pipe->mutex);
[  374.377507][T12113]                                lock(&sbi->pipe_mutex);
[  374.379817][T12113]                                lock(&pipe->mutex);
[  374.382011][T12113]   lock(&p->lock);
[  374.383308][T12113] 
[  374.383308][T12113]  *** DEADLOCK ***
[  374.383308][T12113] 
[  374.385977][T12113] 1 lock held by syz.0.1718/12113:
[  374.387684][T12113]  #0: ffff888013610868 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[  374.390566][T12113] 
[  374.390566][T12113] stack backtrace:
[  374.392553][T12113] CPU: 3 UID: 0 PID: 12113 Comm: syz.0.1718 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  374.392569][T12113] Tainted: [L]=SOFTLOCKUP
[  374.392573][T12113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.392580][T12113] Call Trace:
[  374.392585][T12113]  <TASK>
[  374.392589][T12113]  dump_stack_lvl+0x116/0x1f0
[  374.392611][T12113]  print_circular_bug+0x275/0x340
[  374.392629][T12113]  check_noncircular+0x146/0x160
[  374.392647][T12113]  __lock_acquire+0x1669/0x2890
[  374.392658][T12113]  ? mark_held_locks+0x49/0x80
[  374.392668][T12113]  lock_acquire+0x179/0x330
[  374.392677][T12113]  ? seq_read_iter+0xe1/0x12d0
[  374.392691][T12113]  ? __pfx___might_resched+0x10/0x10
[  374.392708][T12113]  __mutex_lock+0x1aa/0x1ca0
[  374.392724][T12113]  ? seq_read_iter+0xe1/0x12d0
[  374.392737][T12113]  ? do_sendfile+0x400/0xe50
[  374.392751][T12113]  ? __do_fast_syscall_32+0xe8/0x680
[  374.392767][T12113]  ? do_fast_syscall_32+0x32/0x80
[  374.392783][T12113]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.392796][T12113]  ? seq_read_iter+0xe1/0x12d0
[  374.392810][T12113]  ? __pfx___mutex_lock+0x10/0x10
[  374.392829][T12113]  ? alloc_pages_bulk_noprof+0xac5/0x1410
[  374.392843][T12113]  ? seq_read_iter+0xe1/0x12d0
[  374.392856][T12113]  seq_read_iter+0xe1/0x12d0
[  374.392870][T12113]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  374.392885][T12113]  kernfs_fop_read_iter+0x46c/0x610
[  374.392903][T12113]  copy_splice_read+0x618/0xc20
[  374.392919][T12113]  ? __pfx_aa_file_perm+0x10/0x10
[  374.392934][T12113]  ? __pfx_copy_splice_read+0x10/0x10
[  374.392952][T12113]  ? __fget_files+0x204/0x3c0
[  374.392967][T12113]  ? __pfx_copy_splice_read+0x10/0x10
[  374.392981][T12113]  do_splice_read+0x285/0x370
[  374.392997][T12113]  splice_file_to_pipe+0x109/0x120
[  374.393013][T12113]  do_sendfile+0x400/0xe50
[  374.393028][T12113]  ? __pfx_do_sendfile+0x10/0x10
[  374.393042][T12113]  ? __pfx___seccomp_filter+0x10/0x10
[  374.393057][T12113]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  374.393067][T12113]  ? xfd_validate_state+0x61/0x180
[  374.393077][T12113]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  374.393088][T12113]  ? __secure_computing+0x21c/0x320
[  374.393101][T12113]  __do_fast_syscall_32+0xe8/0x680
[  374.393118][T12113]  do_fast_syscall_32+0x32/0x80
[  374.393135][T12113]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.393148][T12113] RIP: 0023:0xf70dd579
[  374.393156][T12113] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  374.393167][T12113] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  374.393177][T12113] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000007
[  374.393183][T12113] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000
[  374.393189][T12113] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  374.393195][T12113] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  374.393202][T12113] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  374.393211][T12113]  </TASK>
[  374.629893][T11319] bond0: (slave syz_tun): Releasing backup interface
[  374.776000][T12107] bond0: (slave syz_tun): Releasing backup interface
[  374.794738][ T9545] bond0: (slave syz_tun): Releasing backup interface
[  375.132170][   T12] bridge_slave_1: left allmulticast mode
[  375.134049][   T12] bridge_slave_1: left promiscuous mode
[  375.135927][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.139574][   T12] bridge_slave_0: left allmulticast mode
[  375.142164][   T12] bridge_slave_0: left promiscuous mode
[  375.144689][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.481449][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  375.484938][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  375.488448][   T12] bond0 (unregistering): (slave team0): Releasing backup interface
[  375.491986][   T12] bond0 (unregistering): Released all slaves
[  375.549990][   T12] tipc: Disabling bearer <udp:syz2>
[  375.551998][   T12] tipc: Left network mode
[  375.895173][   T12] hsr_slave_0: left promiscuous mode
[  375.897256][   T12] hsr_slave_1: left promiscuous mode
[  375.899195][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  375.901887][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  375.906843][   T12] pimreg3 (unregistering): left allmulticast mode
[  376.073669][   T12] team0 (unregistering): Port device team_slave_1 removed
[  376.093045][   T12] team0 (unregistering): Port device team_slave_0 removed
[  376.605650][   T12] IPVS: stop unused estimator thread 0...
[  376.641716][   T10] usb 38-1: device descriptor read/8, error -110
[  376.756362][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.825204][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.885439][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.924931][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.988756][   T12] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.033482][   T10] usb usb38-port1: attempt power cycle
[  377.054803][   T12] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.127085][   T12] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.195556][   T12] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.273895][   T12] bridge_slave_1: left allmulticast mode
[  377.275810][   T12] bridge_slave_1: left promiscuous mode
[  377.277747][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.281076][   T12] bridge_slave_0: left allmulticast mode
[  377.284980][   T12] bridge_slave_0: left promiscuous mode
[  377.286885][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.290399][   T12] bridge_slave_1: left allmulticast mode
[  377.292524][   T12] bridge_slave_1: left promiscuous mode
[  377.294420][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.297453][   T12] bridge_slave_0: left allmulticast mode
[  377.299334][   T12] bridge_slave_0: left promiscuous mode
[  377.301247][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.433508][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.437282][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.440714][   T12] bond0 (unregistering): Released all slaves
[  377.601881][   T10] usb usb38-port1: unable to enumerate USB device
[  377.653336][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.656907][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.660499][   T12] bond0 (unregistering): (slave team0): Releasing backup interface
[  377.664042][   T12] bond0 (unregistering): Released all slaves
[  377.727509][   T12] tipc: Left network mode
[  378.181692][   T12] hsr_slave_0: left promiscuous mode
[  378.183830][   T12] hsr_slave_1: left promiscuous mode
[  378.185767][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  378.188191][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.190853][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  378.193385][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.198880][   T12] hsr_slave_0: left promiscuous mode
[  378.200945][   T12] hsr_slave_1: left promiscuous mode
[  378.203091][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  378.205498][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.208326][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  378.210767][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.216974][   T12] veth1_macvtap: left promiscuous mode
[  378.218810][   T12] veth0_macvtap: left promiscuous mode
[  378.220709][   T12] veth1_vlan: left promiscuous mode
[  378.223725][   T12] veth0_vlan: left promiscuous mode
[  378.225969][   T12] veth1_macvtap: left promiscuous mode
[  378.227786][   T12] veth0_macvtap: left promiscuous mode
[  378.229652][   T12] veth1_vlan: left promiscuous mode
[  378.231398][   T12] veth0_vlan: left promiscuous mode
[  378.345001][   T12] team0 (unregistering): Port device team_slave_1 removed
[  378.357935][   T12] team0 (unregistering): Port device team_slave_0 removed
[  378.633802][   T12] team0 (unregistering): Port device team_slave_1 removed
[  378.653476][   T12] team0 (unregistering): Port device team_slave_0 removed
[  379.476260][   T12] IPVS: stop unused estimator thread 0...
[  383.213238][ T1417] ieee802154 phy1 wpan1: encryption failed: -22