last executing test programs:

4.396496242s ago: executing program 0 (id=4815):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NODE_GET(r0, 0x0, 0x18004)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r1, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006380)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000340)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x34808521, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xa4001f7e}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x8)
io_setup(0x202, &(0x7f0000000200)=<r5=>0x0)
io_submit(r5, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x300, r4, &(0x7f00000000c0)='!', 0xffffff49, 0x3000000000000500}])
dup3(r4, r2, 0x0)

3.81699336s ago: executing program 0 (id=4816):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x40384708, &(0x7f0000000040)={0x8, 0x1, 0x9, 0x496450f, 0x9a})
r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
close(0x3)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
syz_usb_disconnect(r3)
r4 = fcntl$dupfd(r2, 0x0, r2)
read$snapshot(r4, 0x0, 0xffffffbf)
inotify_init1(0x80800)
r5 = syz_io_uring_setup(0x1e1e, &(0x7f0000000380)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
openat$rfkill(0xffffff9c, &(0x7f0000000080), 0x6002, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x2a, 0x2007, @fd_index=0xa, 0x3, &(0x7f0000000500)=""/4096, 0x1000, 0x11, 0x1, {0x0, r8}})
io_uring_enter(r5, 0x48e9, 0x0, 0x2, 0x0, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x400, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60)
ioctl$KVM_SET_GSI_ROUTING(r10, 0x4008ae6a, &(0x7f0000000280)={0x1, 0x0, [{0x3, 0x5, 0x0, 0x0, @adapter={0x100000000005, 0x7fffffffffffffff, 0x8000000000000001, 0x80, 0x3}}]})
ioctl$KVM_IRQ_LINE_STATUS(r10, 0xc008ae67, &(0x7f0000000000)={0x3, 0x8248})
ioctl$SNDRV_PCM_IOCTL_REWIND(r1, 0x40044146, &(0x7f0000000040)=0xaac)
socket(0x10, 0x3, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)
sendmsg$IPSET_CMD_DESTROY(r11, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000000306010800000000000000000600000705000100070000000500010007000000050001000700000005000100070000000900020073797a3000000000050001000700000005000100070000000900020073797a30000000000900020073797a30000000000900020073797a31"], 0x74}, 0x1, 0x0, 0x0, 0x80c1}, 0x50)

3.617021165s ago: executing program 3 (id=4817):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, 0x0, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@multicast2, @in6=@mcast1, 0x4e20, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xfffffffffffffffe}, {0x0, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x2, 0x0, 0xb7, 0xfffffffe, 0xffffff7e}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x1c)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
timer_create(0xfffffffffffffffd, 0x0, &(0x7f00000000c0)=<r6=>0x0)
exit(0x2616)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r7, 0x84, 0x79, &(0x7f0000000040)={0x0, 0xff80, 0x90}, 0x8)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)=""/184, &(0x7f0000000100)=0xb8)
timer_gettime(r6, &(0x7f0000000000))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000011c0)=ANY=[@ANYBLOB="ffffffff", @ANYRES16=r5, @ANYBLOB="270e25bd700000000000040702000900030073797a30000000000900030073797a310000000005000400010000000900030073797a3100000000140002006873723000000000000000000000000005000400020000001400020070696d367265673000000000000000000500040002000000"], 0x78}, 0x1, 0x40030000000000}, 0x4000)
r9 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)
bind$bt_hci(r9, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r10, 0x0, 0x41, &(0x7f0000000180)=""/4096, &(0x7f0000001180)=0x28)

2.692246961s ago: executing program 3 (id=4820):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000000)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x191, 0x1, 0x0, 0xdd9f83, 0x1, 0x9, 0xf3, 0x4, 0x5, 0x722, 0x13, 0x6, 0x7f, 0x3f, 0xb763599953cb091d, {0x0, 0x6fd8e84b}, 0x3, 0xed}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
accept4$netrom(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x800)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001080)=@newtaction={0x6c, 0x30, 0x9, 0x0, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x20000000, 0x0, 0xfffffffc}, 0x3}}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xffff}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x6c}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x100, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r4, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x2, @loopback, 0xfffffffd}}, 0x0, 0x0, 0x500, 0x0, 0x54, 0xa}, 0x9c)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)
sched_getattr(0x0, 0x0, 0x0, 0x0)

1.994820525s ago: executing program 2 (id=4824):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x15, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="711030000000000095"], &(0x7f00000000c0)='GPL\x00', 0x9}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newtfilter={0x70, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd, 0x30}}, [@filter_kind_options=@f_basic={{0xa}, {0x40, 0x2, [@TCA_BASIC_EMATCHES={0x3c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{}, {0x0, 0x7b}}}, @TCA_EM_META_RVALUE={0x4}]}}]}]}]}}]}, 0x70}}, 0x0)

1.8617372s ago: executing program 2 (id=4828):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, 0x0, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@multicast2, @in6=@mcast1, 0x4e20, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xfffffffffffffffe}, {0x0, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x2, 0x0, 0xb7, 0xfffffffe, 0xffffff7e}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x1c)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
timer_create(0xfffffffffffffffd, 0x0, &(0x7f00000000c0)=<r6=>0x0)
exit(0x2616)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r7, 0x84, 0x79, &(0x7f0000000040)={0x0, 0xff80, 0x90}, 0x8)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)=""/184, &(0x7f0000000100)=0xb8)
timer_gettime(r6, &(0x7f0000000000))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000011c0)=ANY=[@ANYBLOB="ffffffff", @ANYRES16=r5, @ANYBLOB="270e25bd700000000000040702000900030073797a30000000000900030073797a310000000005000400010000000900030073797a3100000000140002006873723000000000000000000000000005000400020000001400020070696d367265673000000000000000000500040002000000"], 0x78}, 0x1, 0x40030000000000}, 0x4000)
r9 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)
bind$bt_hci(r9, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r10, 0x0, 0x41, &(0x7f0000000180)=""/4096, &(0x7f0000001180)=0x28)

1.823554185s ago: executing program 3 (id=4829):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
setpriority(0x2, 0x0, 0x6) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48) (async)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r1, 0xfffffffc) (async, rerun: 64)
r2 = socket$netlink(0x10, 0x3, 0x8000000004) (rerun: 64)
writev(r2, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000010000000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.7171712s ago: executing program 3 (id=4830):
socket$can_bcm(0x1d, 0x2, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x3, 0xff)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000100)={0x2, 0x5, 0x0, 0x2, 0x10, 0x0, 0x0, 0x7, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0xe, @in6={0xa, 0x4e24, 0xfffffffd, @private1, 0x8598}}, @sadb_sa={0x2, 0x1, 0x4d4, 0x0, 0x81}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in={0x2, 0x4e23, @private=0xa010101}, @in6={0xa, 0x4e24, 0x9, @loopback, 0x82}}]}, 0x80}, 0x1, 0x400000000000000}, 0x0)
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100, 0x3}, 0x0, &(0x7f0000000000))
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r4=>0xffffffffffffffff}, 0x111, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r4, 0x9, 0x30, 0x30, 0x0, @in6={0x1b, 0x4e24, 0x0, @empty, 0x10000bff}, @ib={0x1b, 0xd9, 0x100fff, {}, 0x8000000800000001, 0x2, 0x3}}}, 0x118)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000040)={0x13, 0x10, 0xfa00, {&(0x7f0000000340), r4}}, 0x18)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
syz_open_dev$vivid(&(0x7f0000000080), 0x0, 0x2)
r5 = dup2(r2, r2)
socket(0x2b, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = syz_open_dev$video4linux(&(0x7f0000001380), 0x2, 0x501)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
ioctl$VIDIOC_QUERYBUF(r7, 0xc0585609, &(0x7f00000002c0)=@multiplanar_userptr={0xfffffff8, 0x7, 0x4, 0x2, 0x6, {r8, r9/1000+60000}, {0x1, 0x8, 0x21, 0x8, 0xb, 0x9, "202cbc5b"}, 0x8, 0x2, {&(0x7f00000003c0)=[{0x9, 0xc3, {&(0x7f0000000340)}, 0xfdd0}, {0x49db, 0x1, {&(0x7f0000000380)}, 0x7fff}]}, 0x1000, 0x0, r5})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
sendmmsg$unix(r5, &(0x7f0000008380), 0x400000000000174, 0x4008890)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r5, 0x80845663, &(0x7f0000000280))
r11 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r11, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
close_range(r10, 0xffffffffffffffff, 0x0)

1.556528534s ago: executing program 1 (id=4832):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000e00)={0x64, r1, 0x1, 0x20000002, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}], @key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}], @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @key_params=[@NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "408922a0bd"}, @NL80211_KEY_IDX={0x5, 0x2, 0x1}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}]]}, 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.397023614s ago: executing program 1 (id=4833):
ioperm(0x3, 0x5, 0x7)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rfc1337\x00', 0x2, 0x0)
sendfile(r0, r0, 0x0, 0x1)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000001c0), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYRES32], 0x14}, 0x1, 0x0, 0x0, 0x810}, 0x4004040)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000580))
removexattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="7304b000"/16])
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="b6ef0436", @ANYRES16=r3, @ANYBLOB="04002abd7000ffdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
openat$tcp_congestion(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
socket(0x2, 0x80805, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_io_uring_setup(0x52b6, &(0x7f0000000280)={0x0, 0xec25, 0x400, 0x3, 0x2a}, &(0x7f0000000500), &(0x7f00000000c0))
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000e389712c17d00d06212d80d50c858074438a86147a155551541e505b9f261114d97f9de60dd16b21546ffbec25fbb7e52fabc5fd8aabb94419d6564c856c0d212c33689648c91f9048e046fd902eb19b78a64d58c9df34f1692a50c55ff6dd11d900f5f0f11cb5a2b59678f1f0dd261b767ec81e0dafaecba5ab2ed49bce9b4079087dee2f72942d7555cc352a527be87a33b0bbac2be77b93a732ed8ca6a6ee20d1"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r6}, 0x10)
socketpair(0x2a, 0x4, 0x28, 0x0)
r7 = socket(0x25, 0x6, 0x7ff)
connect$inet(r7, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, 0x0)
umount2(&(0x7f00000001c0)='./cgroup\x00', 0x3)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r7, &(0x7f0000000340)={0x2, 0x4e20, @private=0xa010102}, 0x10)

1.337112072s ago: executing program 1 (id=4834):
write$dsp(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x801)
r0 = socket$inet6(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x29}}, 0x50)
read$FUSE(0xffffffffffffffff, &(0x7f0000000880)={0x2020, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, {{0x3, 0xfffffffffffffff8, 0x1, r2}}}, 0x28)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYBLOB, @ANYRES32, @ANYBLOB="0600060000000000"], 0x50}, 0x4, 0x700000000000000}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

1.252409175s ago: executing program 1 (id=4835):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = memfd_secret(0x80000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r1, 0x0)
ftruncate(r1, 0x3)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
pipe2(&(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a3000000000540003805000f87f080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c00024000000000000000101400018009000100"], 0x104}}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
pipe(&(0x7f00000045c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000019c0)=[{&(0x7f0000001a00)="ce", 0x1}], 0x1, 0x1)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='qdisc_enqueue\x00', r5}, 0x18)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='qdisc_enqueue\x00', r6}, 0x18)
r7 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r7, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r7, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b8825fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
r8 = accept4(r4, 0x0, 0x0, 0x80000)
splice(r2, 0x0, r8, 0x0, 0x2, 0xe)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

1.067018675s ago: executing program 1 (id=4836):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800", @ANYRES32=r0], 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x400000000000004)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f00000004c0)=0x1000000, 0x4)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000200)="480ec0001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1)

937.464224ms ago: executing program 2 (id=4837):
openat$sequencer(0xffffffffffffff9c, 0x0, 0x82200, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r0, &(0x7f0000000840), 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000700))
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

846.76225ms ago: executing program 3 (id=4838):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304) (fail_nth: 2)

666.743279ms ago: executing program 3 (id=4839):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
socket$netlink(0x10, 0x3, 0x15)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x8, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000ffffffff0000000000080000010601040700ffffff0000000000000000950000000000000095000000000000000000000000000000000000000077f2b1360000"], &(0x7f0000000000)='GPL\x00'}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x18c)
lchown(&(0x7f0000000080)='./file1\x00', 0xee01, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r4, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
syz_open_dev$dri(&(0x7f0000000040), 0x8004, 0x482600)
r5 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
r7 = openat$cgroup_pressure(r6, &(0x7f0000000280)='memory.pressure\x00', 0x2, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sendfile64(r8, r7, 0x0, 0x8)

666.348997ms ago: executing program 0 (id=4840):
write$dsp(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x801)
r0 = socket$inet6(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x29}}, 0x50)
read$FUSE(0xffffffffffffffff, &(0x7f0000000880)={0x2020, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, {{0x3, 0xfffffffffffffff8, 0x1, r2}}}, 0x28)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYBLOB, @ANYRES32, @ANYBLOB="0600060000000000"], 0x50}, 0x4, 0x700000000000000}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x4) (fail_nth: 2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

665.341545ms ago: executing program 2 (id=4841):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000e00)={0x64, r1, 0x1, 0x20000002, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}], @key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}], @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @key_params=[@NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "408922a0bd"}, @NL80211_KEY_IDX={0x5, 0x2, 0x1}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}]]}, 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

587.006234ms ago: executing program 2 (id=4842):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
sendto$packet(r0, &(0x7f0000000080)="39c394e534ecf02e7e0e9ca20800", 0xe, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x95, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)

466.648832ms ago: executing program 2 (id=4843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000008"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0c00000004000000040000000900000000000000", @ANYRES32=r0], 0x48)
setreuid(0xee01, 0xee01)
r1 = socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r1, &(0x7f0000001640)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x120, 0x0)
syz_open_dev$sg(0x0, 0x489, 0x600002)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000500)={0x4f, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x80010, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x4006, 0x0, 0x0, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xa, 0x8001, 0x0, 0xa, 0xfffffffffffffffc, 0xfffffe0000000000, 0xfa11, 0xfffffffe}, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000005c0)={0x2020}, 0x2020)
r2 = io_uring_setup(0x6b4b, &(0x7f0000000000)={0x0, 0x60a7, 0x20, 0xfffffffc, 0x2a6})
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, 0x0, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x122)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r3, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r3, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003380)=""/4096, 0x37}}], 0x1, 0x60010020, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
r4 = socket$igmp(0x2, 0x3, 0x2)
unshare(0x20040600)
flistxattr(r4, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

453.665629ms ago: executing program 0 (id=4844):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = memfd_secret(0x80000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r1, 0x0)
ftruncate(r1, 0x3)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
pipe2(&(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a3000000000540003805000f87f080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c00024000000000000000101400018009000100"], 0x104}}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
pipe(&(0x7f00000045c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000019c0)=[{&(0x7f0000001a00)="ce", 0x1}], 0x1, 0x1)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='qdisc_enqueue\x00', r5}, 0x18)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='qdisc_enqueue\x00', r6}, 0x18)
r7 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r7, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r7, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b8825fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
r8 = accept4(r4, 0x0, 0x0, 0x80000)
splice(r2, 0x0, r8, 0x0, 0x2, 0xe)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

142.971212ms ago: executing program 1 (id=4845):
r0 = creat(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f0000000380))
r5 = syz_open_dev$dri(0x0, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
r7 = landlock_create_ruleset(&(0x7f0000000000)={0x0, 0x1}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r7, 0x2, &(0x7f00000000c0)={0x3}, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000008c0)=[0x0, 0x0], &(0x7f0000000900), 0x0, 0x2, 0x0, 0x0, r6})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f00000005c0)={&(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[{}, {}], &(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0], 0x2, 0x6, 0x4})
r8 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
shutdown(r4, 0x1)
syz_io_uring_submit(r9, r10, &(0x7f00000000c0)=@IORING_OP_FADVISE={0x18, 0x40, 0x0, @fd, 0x5, 0x0, 0x0, 0x3})
io_uring_enter(r8, 0x4e14, 0x912a, 0x41, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

5.386678ms ago: executing program 0 (id=4846):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fremovexattr(r0, &(0x7f0000001200)=@known='system.sockprotoname\x00') (fail_nth: 2)

0s ago: executing program 0 (id=4847):
write$dsp(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0xff, 0x480)
r0 = socket$inet6(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x84, 0x200)
writev(r1, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x40840084}}, 0x50)
read$FUSE(0xffffffffffffffff, &(0x7f0000000580)={0x2020, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0xfffffffffffffffb)
write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, {{0x3, 0xfffffffffffffff8, 0x1, r2}}}, 0x28)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x11c, 0x0, 0x0, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1, &(0x7f0000000080)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_int(r3, 0x11a, 0x3, &(0x7f0000000140)=0x304, 0x4)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000280), r4)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYBLOB="14c319fcd2468f8859d3691f46f4fe200e081429958c3363fa5d96c6138f607daa5ab8ad2fd63420c210cff66a8c7fbfbe6840898368bfdbe0c3cb3251d201af27fb75", @ANYRES32, @ANYBLOB="0600060000000000"], 0x50}, 0x4, 0x700000000000000}, 0x10008000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="000600ae", @ANYRESHEX=r3, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

kernel console output (not intermixed with test programs):

]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1165.549974][T24193]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[ 1165.550000][T24193]  shmem_get_folio_gfp+0x67f/0x1610
[ 1165.550026][T24193]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1165.550053][T24193]  shmem_write_begin+0x1a4/0x3b0
[ 1165.550074][T24193]  ? __pfx_shmem_write_begin+0x10/0x10
[ 1165.550094][T24193]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[ 1165.550122][T24193]  generic_perform_write+0x3c4/0x900
[ 1165.550148][T24193]  ? __pfx_generic_perform_write+0x10/0x10
[ 1165.550179][T24193]  ? generic_update_time+0xcf/0xf0
[ 1165.550196][T24193]  ? mnt_put_write_access_file+0x45/0xf0
[ 1165.550222][T24193]  ? file_update_time_flags+0x35c/0x520
[ 1165.550245][T24193]  shmem_file_write_iter+0x10e/0x140
[ 1165.550271][T24193]  iter_file_splice_write+0xa24/0x12b0
[ 1165.550330][T24193]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1165.550379][T24193]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1165.550409][T24193]  do_splice+0x1478/0x1fc0
[ 1165.550436][T24193]  ? __lock_acquire+0x436/0x2890
[ 1165.550455][T24193]  ? ksys_write+0x190/0x250
[ 1165.550487][T24193]  ? __pfx_do_splice+0x10/0x10
[ 1165.550511][T24193]  ? __pfx_pipe_clear_nowait+0x10/0x10
[ 1165.550540][T24193]  ? find_held_lock+0x2b/0x80
[ 1165.550564][T24193]  __do_splice+0x32a/0x360
[ 1165.550594][T24193]  ? __pfx___do_splice+0x10/0x10
[ 1165.550619][T24193]  ? __fput_deferred+0x480/0x480
[ 1165.550646][T24193]  __ia32_sys_splice+0x189/0x250
[ 1165.550676][T24193]  __do_fast_syscall_32+0xe8/0x680
[ 1165.550708][T24193]  do_fast_syscall_32+0x32/0x80
[ 1165.550725][T24193]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1165.550748][T24193] RIP: 0023:0xf701d579
[ 1165.550764][T24193] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1165.550782][T24193] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[ 1165.550798][T24193] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[ 1165.550812][T24193] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 00000000088000cc
[ 1165.550824][T24193] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1165.550835][T24193] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1165.550846][T24193] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1165.550871][T24193]  </TASK>
[ 1165.932704][T24202] __nla_validate_parse: 6 callbacks suppressed
[ 1165.932722][T24202] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4153'.
[ 1168.454093][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.457114][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.460140][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.480100][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.483252][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.486231][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.742377][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.745677][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1168.748761][T24237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[ 1171.167436][T24288] netlink: zone id is out of range
[ 1171.204349][T24295] __nla_validate_parse: 2 callbacks suppressed
[ 1171.204367][T24295] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4174'.
[ 1171.210598][T24287] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4172'.
[ 1172.574988][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.578028][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.592009][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.619300][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.623640][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.626793][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.666118][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1172.669151][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4182'.
[ 1173.084424][T24328] /dev/sr0: Can't open blockdev
[ 1173.659021][T24345] syzkaller0: entered promiscuous mode
[ 1173.660943][T24345] syzkaller0: entered allmulticast mode
[ 1173.665557][T24345] FAULT_INJECTION: forcing a failure.
[ 1173.665557][T24345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1173.669819][T24345] CPU: 2 UID: 0 PID: 24345 Comm: syz.2.4191 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1173.669837][T24345] Tainted: [L]=SOFTLOCKUP
[ 1173.669841][T24345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1173.669848][T24345] Call Trace:
[ 1173.669853][T24345]  <TASK>
[ 1173.669858][T24345]  dump_stack_lvl+0x16c/0x1f0
[ 1173.669879][T24345]  should_fail_ex+0x512/0x640
[ 1173.669894][T24345]  _copy_to_user+0x32/0xd0
[ 1173.669908][T24345]  simple_read_from_buffer+0xcb/0x170
[ 1173.669926][T24345]  proc_fail_nth_read+0x197/0x240
[ 1173.669946][T24345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1173.669965][T24345]  ? rw_verify_area+0xcf/0x6c0
[ 1173.669980][T24345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1173.669998][T24345]  vfs_read+0x1e4/0xcf0
[ 1173.670015][T24345]  ? __pfx___mutex_lock+0x10/0x10
[ 1173.670034][T24345]  ? __pfx_vfs_read+0x10/0x10
[ 1173.670048][T24345]  ? find_held_lock+0x2b/0x80
[ 1173.670066][T24345]  ? __fget_files+0x20e/0x3c0
[ 1173.670086][T24345]  ksys_read+0x12a/0x250
[ 1173.670102][T24345]  ? __pfx_ksys_read+0x10/0x10
[ 1173.670118][T24345]  ? do_user_addr_fault+0x843/0x1370
[ 1173.670134][T24345]  __do_fast_syscall_32+0xe8/0x680
[ 1173.670154][T24345]  do_fast_syscall_32+0x32/0x80
[ 1173.670165][T24345]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1173.670179][T24345] RIP: 0023:0xf7ff7579
[ 1173.670188][T24345] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1173.670199][T24345] RSP: 002b:00000000f54e6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1173.670211][T24345] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f54e6620
[ 1173.670218][T24345] RDX: 000000000000000f RSI: 00000000f7486ff4 RDI: 0000000000000000
[ 1173.670225][T24345] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1173.670231][T24345] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1173.670238][T24345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1173.670252][T24345]  </TASK>
[ 1175.477185][T24389] netlink: 'syz.2.4202': attribute type 4 has an invalid length.
[ 1176.212256][T24410] FAULT_INJECTION: forcing a failure.
[ 1176.212256][T24410] name failslab, interval 1, probability 0, space 0, times 0
[ 1176.219320][T24410] CPU: 1 UID: 0 PID: 24410 Comm: syz.2.4213 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1176.219340][T24410] Tainted: [L]=SOFTLOCKUP
[ 1176.219344][T24410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1176.219351][T24410] Call Trace:
[ 1176.219355][T24410]  <TASK>
[ 1176.219359][T24410]  dump_stack_lvl+0x16c/0x1f0
[ 1176.219380][T24410]  should_fail_ex+0x512/0x640
[ 1176.219395][T24410]  should_failslab+0xc2/0x120
[ 1176.219413][T24410]  kmem_cache_alloc_noprof+0x83/0x770
[ 1176.219427][T24410]  ? dst_alloc+0x99/0x1a0
[ 1176.219442][T24410]  ? dst_alloc+0x99/0x1a0
[ 1176.219454][T24410]  dst_alloc+0x99/0x1a0
[ 1176.219468][T24410]  rt_dst_alloc+0x35/0x3a0
[ 1176.219480][T24410]  ip_route_output_key_hash_rcu+0x87a/0x28e0
[ 1176.219498][T24410]  ip_route_output_key_hash+0x10f/0x2b0
[ 1176.219511][T24410]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 1176.219529][T24410]  ? find_held_lock+0x2b/0x80
[ 1176.219546][T24410]  ip_route_output_flow+0x27/0x150
[ 1176.219561][T24410]  raw_sendmsg+0xd75/0x34f0
[ 1176.219579][T24410]  ? __pfx_raw_sendmsg+0x10/0x10
[ 1176.219594][T24410]  ? __pfx___might_resched+0x10/0x10
[ 1176.219615][T24410]  ? trace_mm_page_alloc+0x11b/0x180
[ 1176.219643][T24410]  ? __pfx_raw_sendmsg+0x10/0x10
[ 1176.219656][T24410]  inet_sendmsg+0x11c/0x140
[ 1176.219671][T24410]  ____sys_sendmsg+0x973/0xc30
[ 1176.219687][T24410]  ? btrfs_dev_replace_by_ioctl+0x1094/0x2f90
[ 1176.219702][T24410]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1176.219719][T24410]  ? get_compat_msghdr+0x11a/0x170
[ 1176.219735][T24410]  ? __pfx__kstrtoull+0x10/0x10
[ 1176.219754][T24410]  ___sys_sendmsg+0x134/0x1d0
[ 1176.219770][T24410]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1176.219801][T24410]  ? __pfx___might_resched+0x10/0x10
[ 1176.219819][T24410]  __sys_sendmmsg+0x2f9/0x420
[ 1176.219835][T24410]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1176.219854][T24410]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1176.219877][T24410]  ? fput+0x70/0xf0
[ 1176.219888][T24410]  ? ksys_write+0x1ac/0x250
[ 1176.219904][T24410]  ? __pfx_ksys_write+0x10/0x10
[ 1176.219922][T24410]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1176.219937][T24410]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1176.219968][T24410]  __do_fast_syscall_32+0xe8/0x680
[ 1176.219988][T24410]  do_fast_syscall_32+0x32/0x80
[ 1176.219998][T24410]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1176.220012][T24410] RIP: 0023:0xf7ff7579
[ 1176.220022][T24410] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1176.220033][T24410] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[ 1176.220044][T24410] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080005240
[ 1176.220052][T24410] RDX: 0000000000000300 RSI: 000000000401eb94 RDI: 0000000000000000
[ 1176.220058][T24410] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1176.220064][T24410] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1176.220071][T24410] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1176.220085][T24410]  </TASK>
[ 1176.252144][T24400] __nla_validate_parse: 11 callbacks suppressed
[ 1176.252162][T24400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4209'.
[ 1176.360163][T24400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4209'.
[ 1176.363381][T24400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4209'.
[ 1176.598237][T24434] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4218'.
[ 1176.772002][T24437] netlink: 'syz.3.4218': attribute type 4 has an invalid length.
[ 1176.774742][T24437] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4218'.
[ 1176.964302][T24438] /dev/sr0: Can't open blockdev
[ 1177.507455][T24457] FAULT_INJECTION: forcing a failure.
[ 1177.507455][T24457] name failslab, interval 1, probability 0, space 0, times 0
[ 1177.513697][T24457] CPU: 1 UID: 0 PID: 24457 Comm: syz.1.4226 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1177.513716][T24457] Tainted: [L]=SOFTLOCKUP
[ 1177.513720][T24457] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1177.513727][T24457] Call Trace:
[ 1177.513731][T24457]  <TASK>
[ 1177.513735][T24457]  dump_stack_lvl+0x16c/0x1f0
[ 1177.513756][T24457]  should_fail_ex+0x512/0x640
[ 1177.513774][T24457]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1177.513789][T24457]  should_failslab+0xc2/0x120
[ 1177.513806][T24457]  kmem_cache_alloc_noprof+0x83/0x770
[ 1177.513820][T24457]  ? skb_clone+0x190/0x3f0
[ 1177.513837][T24457]  ? skb_clone+0x190/0x3f0
[ 1177.513850][T24457]  skb_clone+0x190/0x3f0
[ 1177.513865][T24457]  netlink_deliver_tap+0xabd/0xd30
[ 1177.513883][T24457]  netlink_unicast+0x71f/0x870
[ 1177.513901][T24457]  ? __pfx_netlink_unicast+0x10/0x10
[ 1177.513922][T24457]  netlink_ack+0x696/0xb80
[ 1177.513942][T24457]  netlink_rcv_skb+0x332/0x420
[ 1177.513958][T24457]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1177.513972][T24457]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1177.513994][T24457]  ? ns_capable+0xd7/0x110
[ 1177.514011][T24457]  nfnetlink_rcv+0x1b3/0x430
[ 1177.514023][T24457]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1177.514035][T24457]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1177.514052][T24457]  netlink_unicast+0x5aa/0x870
[ 1177.514070][T24457]  ? __pfx_netlink_unicast+0x10/0x10
[ 1177.514091][T24457]  netlink_sendmsg+0x8c8/0xdd0
[ 1177.514110][T24457]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1177.514127][T24457]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1177.514148][T24457]  ____sys_sendmsg+0xa5d/0xc30
[ 1177.514167][T24457]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1177.514184][T24457]  ? get_compat_msghdr+0x11a/0x170
[ 1177.514205][T24457]  ___sys_sendmsg+0x134/0x1d0
[ 1177.514220][T24457]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1177.514240][T24457]  ? find_held_lock+0x2b/0x80
[ 1177.514263][T24457]  __sys_sendmsg+0x16d/0x220
[ 1177.514278][T24457]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1177.514297][T24457]  ? do_user_addr_fault+0x843/0x1370
[ 1177.514313][T24457]  __do_fast_syscall_32+0xe8/0x680
[ 1177.514333][T24457]  do_fast_syscall_32+0x32/0x80
[ 1177.514343][T24457]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1177.514357][T24457] RIP: 0023:0xf703d579
[ 1177.514367][T24457] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1177.514378][T24457] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1177.514390][T24457] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000540
[ 1177.514397][T24457] RDX: 0000000000044000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1177.514403][T24457] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1177.514409][T24457] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1177.514416][T24457] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1177.514430][T24457]  </TASK>
[ 1178.681505][T24482] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4234'.
[ 1179.866603][T24500] netlink: 'syz.0.4240': attribute type 1 has an invalid length.
[ 1179.877685][T24500] bond2: entered promiscuous mode
[ 1179.879585][T24500] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1180.035264][T24504] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1180.040931][T24504] bond2: (slave bond3): making interface the new active one
[ 1180.044144][T24504] bond3: entered promiscuous mode
[ 1180.046406][T24504] bond2: (slave bond3): Enslaving as an active interface with an up link
[ 1180.331985][T24522] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4246'.
[ 1181.468278][T24543] fuse: Bad value for 'fd'
[ 1182.223548][T24554] netlink: 'syz.2.4257': attribute type 1 has an invalid length.
[ 1182.235600][T24554] bond2: entered promiscuous mode
[ 1182.237699][T24554] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1182.334513][T24555] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1182.338899][T24555] bond2: (slave bond3): making interface the new active one
[ 1182.341530][T24555] bond3: entered promiscuous mode
[ 1182.343770][T24555] bond2: (slave bond3): Enslaving as an active interface with an up link
[ 1182.914398][T24583] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4267'.
[ 1183.077077][T24586] netlink: 'syz.2.4267': attribute type 4 has an invalid length.
[ 1183.080599][T24586] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4267'.
[ 1183.773303][T24605] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4274'.
[ 1186.461692][T24675] Set syz0 is full, maxelem 0 reached
[ 1186.475273][T24675] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[ 1188.309285][T24709] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1193.630730][   T40] kauditd_printk_skb: 84 callbacks suppressed
[ 1193.630750][   T40] audit: type=1326 audit(1766809238.338:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24786 comm="syz.1.4323" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703d579 code=0x0
[ 1193.884606][T24796] netlink: zone id is out of range
[ 1193.886968][T24796] netlink: zone id is out of range
[ 1193.889247][T24796] netlink: zone id is out of range
[ 1193.928639][T24796] netlink: zone id is out of range
[ 1193.933863][T24796] netlink: zone id is out of range
[ 1193.936238][T24796] netlink: zone id is out of range
[ 1193.939129][T24796] netlink: zone id is out of range
[ 1193.941775][T24796] netlink: zone id is out of range
[ 1193.944171][T24796] netlink: zone id is out of range
[ 1193.947567][T24796] netlink: zone id is out of range
[ 1195.023889][T24819] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4331'.
[ 1195.206512][T24834] netlink: 'syz.0.4331': attribute type 4 has an invalid length.
[ 1195.209464][T24834] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4331'.
[ 1196.218523][T24853] binder: BINDER_SET_CONTEXT_MGR already set
[ 1196.221011][T24853] binder: 24847:24853 ioctl 4018620d 80000040 returned -16
[ 1198.552234][T24893] overlayfs: failed to clone upperpath
[ 1198.887792][T24903] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4351'.
[ 1199.115060][T24911] netlink: 'syz.0.4351': attribute type 4 has an invalid length.
[ 1199.123005][T24911] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4351'.
[ 1199.396932][T24914] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4352'.
[ 1199.411940][ T1258] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1199.414950][ T1258] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1199.433760][T13139] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1199.483980][T24918] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4353'.
[ 1199.775999][T13139] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1199.792099][T24923] netlink: 'syz.2.4353': attribute type 4 has an invalid length.
[ 1199.794760][T24923] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4353'.
[ 1199.841933][T13139] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1201.277447][T24957] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4363'.
[ 1201.492007][T24960] netlink: 'syz.3.4363': attribute type 4 has an invalid length.
[ 1201.495514][T24960] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4363'.
[ 1201.603615][T24963] FAULT_INJECTION: forcing a failure.
[ 1201.603615][T24963] name failslab, interval 1, probability 0, space 0, times 0
[ 1201.609210][T24963] CPU: 0 UID: 0 PID: 24963 Comm: syz.2.4364 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1201.609256][T24963] Tainted: [L]=SOFTLOCKUP
[ 1201.609263][T24963] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1201.609275][T24963] Call Trace:
[ 1201.609282][T24963]  <TASK>
[ 1201.609290][T24963]  dump_stack_lvl+0x16c/0x1f0
[ 1201.609322][T24963]  should_fail_ex+0x512/0x640
[ 1201.609342][T24963]  ? __kmalloc_noprof+0xca/0x910
[ 1201.609365][T24963]  should_failslab+0xc2/0x120
[ 1201.609393][T24963]  __kmalloc_noprof+0xeb/0x910
[ 1201.609413][T24963]  ? ethnl_default_doit+0x208/0xe30
[ 1201.609442][T24963]  ? ethnl_default_doit+0x208/0xe30
[ 1201.609464][T24963]  ethnl_default_doit+0x208/0xe30
[ 1201.609483][T24963]  ? __nla_parse+0x40/0x60
[ 1201.609500][T24963]  ? __pfx_ethnl_default_doit+0x10/0x10
[ 1201.609517][T24963]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1201.609538][T24963]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1201.609562][T24963]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1201.609600][T24963]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1201.609629][T24963]  ? genl_get_cmd+0x194/0x580
[ 1201.609662][T24963]  ? bpf_lsm_capable+0x9/0x10
[ 1201.609688][T24963]  ? security_capable+0x7e/0x260
[ 1201.609718][T24963]  ? ns_capable+0xd7/0x110
[ 1201.609745][T24963]  genl_rcv_msg+0x55c/0x800
[ 1201.609765][T24963]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1201.609783][T24963]  ? __pfx_ethnl_default_doit+0x10/0x10
[ 1201.609818][T24963]  netlink_rcv_skb+0x158/0x420
[ 1201.609843][T24963]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1201.609863][T24963]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1201.609899][T24963]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1201.609928][T24963]  genl_rcv+0x28/0x40
[ 1201.609954][T24963]  netlink_unicast+0x5aa/0x870
[ 1201.609983][T24963]  ? __pfx_netlink_unicast+0x10/0x10
[ 1201.610017][T24963]  netlink_sendmsg+0x8c8/0xdd0
[ 1201.610044][T24963]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1201.610071][T24963]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1201.610103][T24963]  ____sys_sendmsg+0xa5d/0xc30
[ 1201.610148][T24963]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1201.610174][T24963]  ? get_compat_msghdr+0x11a/0x170
[ 1201.610206][T24963]  ___sys_sendmsg+0x134/0x1d0
[ 1201.610229][T24963]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1201.610262][T24963]  ? find_held_lock+0x2b/0x80
[ 1201.610302][T24963]  __sys_sendmsg+0x16d/0x220
[ 1201.610324][T24963]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1201.610355][T24963]  ? fput+0x70/0xf0
[ 1201.610376][T24963]  __do_fast_syscall_32+0xe8/0x680
[ 1201.610404][T24963]  do_fast_syscall_32+0x32/0x80
[ 1201.610421][T24963]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1201.610441][T24963] RIP: 0023:0xf7ff7579
[ 1201.610454][T24963] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1201.610471][T24963] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1201.610487][T24963] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[ 1201.610498][T24963] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1201.610508][T24963] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1201.610519][T24963] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1201.610528][T24963] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1201.610551][T24963]  </TASK>
[ 1202.108818][T24969] random: crng reseeded on system resumption
[ 1202.755753][T24975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4367'.
[ 1202.770073][T24979] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4368'.
[ 1202.952878][T24991] netlink: 'syz.0.4368': attribute type 4 has an invalid length.
[ 1202.956361][T24991] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4368'.
[ 1202.979246][T24992] netlink: 'syz.3.4367': attribute type 4 has an invalid length.
[ 1203.000365][T24992] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4367'.
[ 1203.171770][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1203.833958][T25013] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4376'.
[ 1204.005113][T25019] netlink: 'syz.0.4376': attribute type 4 has an invalid length.
[ 1204.011751][T25019] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4376'.
[ 1204.868593][T25041] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4390'.
[ 1204.918562][T25044] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4382'.
[ 1205.033530][T25047] netlink: 'syz.0.4390': attribute type 4 has an invalid length.
[ 1205.129056][T25049] netlink: 'syz.3.4382': attribute type 4 has an invalid length.
[ 1205.507397][T25055] netlink: 'syz.1.4385': attribute type 2 has an invalid length.
[ 1205.511327][T25055] netlink: 'syz.1.4385': attribute type 2 has an invalid length.
[ 1205.514894][T25055] netlink: 'syz.1.4385': attribute type 2 has an invalid length.
[ 1205.518141][T25055] netlink: 'syz.1.4385': attribute type 2 has an invalid length.
[ 1205.915435][T25069] vxlan0: entered promiscuous mode
[ 1205.921322][ T1143] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1205.924424][ T1143] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1205.927156][ T1143] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1205.932264][ T1143] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1207.255173][   T40] audit: type=1326 audit(1766809251.968:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.262302][   T40] audit: type=1326 audit(1766809251.978:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.280152][   T40] audit: type=1326 audit(1766809251.988:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.301751][   T40] audit: type=1326 audit(1766809251.998:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.308838][   T40] audit: type=1326 audit(1766809251.998:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.316645][   T40] audit: type=1326 audit(1766809251.998:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.323981][   T40] audit: type=1326 audit(1766809251.998:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.331020][   T40] audit: type=1326 audit(1766809251.998:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.338273][   T40] audit: type=1326 audit(1766809251.998:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=150 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1207.374308][   T40] audit: type=1326 audit(1766809252.088:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25082 comm="syz.0.4394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1208.008318][T25098] __nla_validate_parse: 3 callbacks suppressed
[ 1208.008336][T25098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4397'.
[ 1208.177664][T25108] netlink: 'syz.2.4397': attribute type 4 has an invalid length.
[ 1208.180323][T25108] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4397'.
[ 1208.880734][T25119] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4403'.
[ 1209.066340][T25125] netlink: 'syz.3.4403': attribute type 4 has an invalid length.
[ 1209.069567][T25125] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4403'.
[ 1209.599439][T25134] bridge5: entered promiscuous mode
[ 1209.601292][T25134] bridge5: entered allmulticast mode
[ 1209.604458][T25134] team0: Port device bridge5 added
[ 1209.954894][T25144] net_ratelimit: 6 callbacks suppressed
[ 1209.954907][T25144] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1210.178303][T25151] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4412'.
[ 1210.279854][T25157] bond4: entered promiscuous mode
[ 1210.353003][T25157] dummy0: entered promiscuous mode
[ 1210.355865][T25157] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1210.359953][T25157] bond4: (slave macvlan0): making interface the new active one
[ 1210.364540][T25157] macvlan0: entered promiscuous mode
[ 1210.366739][T25157] bond0: entered promiscuous mode
[ 1210.373607][T25160] netlink: 'syz.1.4412': attribute type 4 has an invalid length.
[ 1210.377053][T25160] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4412'.
[ 1210.381956][T25157] bond4: (slave macvlan0): Enslaving as an active interface with an up link
[ 1210.422047][T25157] netlink: 'syz.0.4414': attribute type 10 has an invalid length.
[ 1210.427235][T25157] bridge0: port 3(erspan0) entered blocking state
[ 1210.430394][T25157] bridge0: port 3(erspan0) entered forwarding state
[ 1210.432898][T25157] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1210.435311][T25157] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1210.437826][T25157] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1210.440846][T25157] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1210.445107][T25157] .`: (slave bridge0): Enslaving as an active interface with an up link
[ 1210.661107][T25163] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4415'.
[ 1210.745235][T25166] dlm: plock device version mismatch: kernel (1.2.0), user (1.1792.4278190080)
[ 1210.838056][T25173] netlink: 'syz.0.4415': attribute type 4 has an invalid length.
[ 1210.844029][T25173] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4415'.
[ 1211.401764][T13139] usb 6-1: new full-speed USB device number 22 using dummy_hcd
[ 1211.421850][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1211.539092][T25191] FAULT_INJECTION: forcing a failure.
[ 1211.539092][T25191] name failslab, interval 1, probability 0, space 0, times 0
[ 1211.544294][T25191] CPU: 3 UID: 0 PID: 25191 Comm: syz.2.4422 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1211.544322][T25191] Tainted: [L]=SOFTLOCKUP
[ 1211.544328][T25191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1211.544338][T25191] Call Trace:
[ 1211.544344][T25191]  <TASK>
[ 1211.544366][T25191]  dump_stack_lvl+0x16c/0x1f0
[ 1211.544397][T25191]  should_fail_ex+0x512/0x640
[ 1211.544436][T25191]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[ 1211.544459][T25191]  should_failslab+0xc2/0x120
[ 1211.544485][T25191]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1211.544505][T25191]  ? __alloc_skb+0x156/0x410
[ 1211.544528][T25191]  ? __alloc_skb+0x156/0x410
[ 1211.544543][T25191]  __alloc_skb+0x156/0x410
[ 1211.544559][T25191]  ? __alloc_skb+0x35d/0x410
[ 1211.544576][T25191]  ? __pfx___alloc_skb+0x10/0x10
[ 1211.544602][T25191]  netlink_dump+0x19b/0xd30
[ 1211.544628][T25191]  ? __pfx_netlink_dump+0x10/0x10
[ 1211.544659][T25191]  ? __asan_memset+0x23/0x50
[ 1211.544677][T25191]  ? genl_start+0x67f/0x980
[ 1211.544704][T25191]  __netlink_dump_start+0x6d6/0x990
[ 1211.544730][T25191]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[ 1211.544755][T25191]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[ 1211.544770][T25191]  ? consume_skb+0xcc/0x100
[ 1211.544797][T25191]  ? __pfx_genl_start+0x10/0x10
[ 1211.544819][T25191]  ? __pfx_genl_dumpit+0x10/0x10
[ 1211.544832][T25191]  ? __pfx_genl_done+0x10/0x10
[ 1211.544848][T25191]  ? bpf_lsm_capable+0x9/0x10
[ 1211.544869][T25191]  ? security_capable+0x7e/0x260
[ 1211.544899][T25191]  genl_rcv_msg+0x46e/0x800
[ 1211.544917][T25191]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1211.544934][T25191]  ? __pfx_devlink_nl_health_reporter_dump_get_dumpit+0x10/0x10
[ 1211.544964][T25191]  netlink_rcv_skb+0x158/0x420
[ 1211.544987][T25191]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1211.545003][T25191]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1211.545035][T25191]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1211.545061][T25191]  genl_rcv+0x28/0x40
[ 1211.545083][T25191]  netlink_unicast+0x5aa/0x870
[ 1211.545109][T25191]  ? __pfx_netlink_unicast+0x10/0x10
[ 1211.545141][T25191]  netlink_sendmsg+0x8c8/0xdd0
[ 1211.545167][T25191]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1211.545194][T25191]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1211.545224][T25191]  ____sys_sendmsg+0xa5d/0xc30
[ 1211.545253][T25191]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1211.545276][T25191]  ? get_compat_msghdr+0x11a/0x170
[ 1211.545307][T25191]  ___sys_sendmsg+0x134/0x1d0
[ 1211.545329][T25191]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1211.545361][T25191]  ? find_held_lock+0x2b/0x80
[ 1211.545397][T25191]  __sys_sendmsg+0x16d/0x220
[ 1211.545418][T25191]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1211.545454][T25191]  __do_fast_syscall_32+0xe8/0x680
[ 1211.545482][T25191]  do_fast_syscall_32+0x32/0x80
[ 1211.545497][T25191]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1211.545518][T25191] RIP: 0023:0xf7ff7579
[ 1211.545532][T25191] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1211.545547][T25191] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1211.545564][T25191] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[ 1211.545574][T25191] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1211.545584][T25191] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1211.545592][T25191] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1211.545602][T25191] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1211.545624][T25191]  </TASK>
[ 1211.713035][T13139] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1211.716566][T13139] usb 6-1: config 0 has no interface number 0
[ 1211.718913][T13139] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1211.723446][T13139] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 64
[ 1211.727517][T13139] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1211.730942][T13139] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1211.736015][T13139] usb 6-1: config 0 descriptor??
[ 1211.739131][T25187] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1211.744492][T13139] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1211.836225][T25200] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4426'.
[ 1211.839166][T25200] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4426'.
[ 1211.944274][T14018] usb 6-1: USB disconnect, device number 22
[ 1211.944287][    C3] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[ 1212.077854][T25213] netlink: 'syz.3.4430': attribute type 1 has an invalid length.
[ 1214.357261][T25270] __nla_validate_parse: 5 callbacks suppressed
[ 1214.357279][T25270] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4449'.
[ 1214.985947][T25296] bond1: option mode: unable to set because the bond device has slaves
[ 1214.996958][T25296] bond1: (slave macvlan0): Error -98 calling set_mac_address
[ 1215.058447][T25296] netlink: 'syz.2.4458': attribute type 10 has an invalid length.
[ 1215.063023][T25296] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1215.065523][T25296] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1217.669387][T25349] bond0: entered promiscuous mode
[ 1217.855415][T25342] netlink: 'syz.3.4469': attribute type 10 has an invalid length.
[ 1217.858704][T25342] bridge0: port 3(syz_tun) entered disabled state
[ 1217.861603][T25342] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1217.865605][T25342] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1217.884522][T25342] bridge0: port 3(syz_tun) entered blocking state
[ 1217.887467][T25342] bridge0: port 3(syz_tun) entered forwarding state
[ 1217.890657][T25342] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1217.893857][T25342] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1217.897421][T25342] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1217.900563][T25342] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1217.920115][T25342] .`: (slave bridge0): Enslaving as an active interface with an up link
[ 1217.949537][T25349] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[ 1218.636705][T25349] infiniband syz1: set active
[ 1218.638337][T25349] infiniband syz1: added syz_tun
[ 1218.672078][T25349] RDS/IB: syz1: added
[ 1218.681394][T25349] smc: adding ib device syz1 with port count 1
[ 1218.684565][T25349] smc:    ib device syz1 port 1 has no pnetid
[ 1219.713398][T25378] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4475'.
[ 1219.787363][T25378] sctp: [Deprecated]: syz.3.4475 (pid 25378) Use of int in max_burst socket option.
[ 1219.787363][T25378] Use struct sctp_assoc_value instead
[ 1220.115343][T25385] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4478'.
[ 1221.198082][T25403] FAULT_INJECTION: forcing a failure.
[ 1221.198082][T25403] name failslab, interval 1, probability 0, space 0, times 0
[ 1221.211746][T25403] CPU: 3 UID: 0 PID: 25403 Comm: syz.2.4484 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1221.211767][T25403] Tainted: [L]=SOFTLOCKUP
[ 1221.211771][T25403] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1221.211778][T25403] Call Trace:
[ 1221.211782][T25403]  <TASK>
[ 1221.211787][T25403]  dump_stack_lvl+0x16c/0x1f0
[ 1221.211809][T25403]  should_fail_ex+0x512/0x640
[ 1221.211821][T25403]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1221.211837][T25403]  should_failslab+0xc2/0x120
[ 1221.211855][T25403]  kmem_cache_alloc_noprof+0x83/0x770
[ 1221.211869][T25403]  ? skb_clone+0x190/0x3f0
[ 1221.211887][T25403]  ? skb_clone+0x190/0x3f0
[ 1221.211900][T25403]  skb_clone+0x190/0x3f0
[ 1221.211915][T25403]  netlink_deliver_tap+0xabd/0xd30
[ 1221.211934][T25403]  netlink_unicast+0x64c/0x870
[ 1221.211952][T25403]  ? __pfx_netlink_unicast+0x10/0x10
[ 1221.211968][T25403]  ? __pfx___might_resched+0x10/0x10
[ 1221.211990][T25403]  netlink_sendmsg+0x8c8/0xdd0
[ 1221.212008][T25403]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1221.212026][T25403]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1221.212048][T25403]  __sys_sendto+0x4a3/0x520
[ 1221.212062][T25403]  ? __pfx___sys_sendto+0x10/0x10
[ 1221.212074][T25403]  ? __lock_acquire+0x436/0x2890
[ 1221.212099][T25403]  __ia32_compat_sys_socketcall+0x62a/0x780
[ 1221.212116][T25403]  ? __fget_files+0x20e/0x3c0
[ 1221.212132][T25403]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[ 1221.212150][T25403]  ? fput+0x70/0xf0
[ 1221.212174][T25403]  ? do_user_addr_fault+0x843/0x1370
[ 1221.212191][T25403]  __do_fast_syscall_32+0xe8/0x680
[ 1221.212210][T25403]  do_fast_syscall_32+0x32/0x80
[ 1221.212221][T25403]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1221.212235][T25403] RIP: 0023:0xf7ff7579
[ 1221.212245][T25403] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1221.212256][T25403] RSP: 002b:00000000f54e5430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[ 1221.212267][T25403] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f54e5444
[ 1221.212274][T25403] RDX: 0000000000000000 RSI: 00000000f54e5560 RDI: 00000000f7486ff4
[ 1221.212281][T25403] RBP: 00000000f54e5560 R08: 0000000000000000 R09: 0000000000000000
[ 1221.212287][T25403] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1221.212294][T25403] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1221.212307][T25403]  </TASK>
[ 1221.357966][T25408] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4486'.
[ 1221.415255][T25414] sctp: [Deprecated]: syz.2.4486 (pid 25414) Use of int in max_burst socket option.
[ 1221.415255][T25414] Use struct sctp_assoc_value instead
[ 1222.260595][T25425] FAULT_INJECTION: forcing a failure.
[ 1222.260595][T25425] name failslab, interval 1, probability 0, space 0, times 0
[ 1222.265742][T25425] CPU: 3 UID: 0 PID: 25425 Comm: syz.2.4492 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1222.265761][T25425] Tainted: [L]=SOFTLOCKUP
[ 1222.265765][T25425] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1222.265772][T25425] Call Trace:
[ 1222.265777][T25425]  <TASK>
[ 1222.265782][T25425]  dump_stack_lvl+0x16c/0x1f0
[ 1222.265803][T25425]  should_fail_ex+0x512/0x640
[ 1222.265816][T25425]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[ 1222.265832][T25425]  should_failslab+0xc2/0x120
[ 1222.265850][T25425]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1222.265864][T25425]  ? __alloc_skb+0x156/0x410
[ 1222.265881][T25425]  ? __alloc_skb+0x156/0x410
[ 1222.265892][T25425]  __alloc_skb+0x156/0x410
[ 1222.265903][T25425]  ? __alloc_skb+0x35d/0x410
[ 1222.265914][T25425]  ? __pfx___alloc_skb+0x10/0x10
[ 1222.265927][T25425]  ? netlink_autobind.isra.0+0x158/0x370
[ 1222.265947][T25425]  netlink_alloc_large_skb+0x69/0x140
[ 1222.265964][T25425]  netlink_sendmsg+0x698/0xdd0
[ 1222.265983][T25425]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1222.266001][T25425]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1222.266021][T25425]  ____sys_sendmsg+0xa5d/0xc30
[ 1222.266040][T25425]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1222.266057][T25425]  ? get_compat_msghdr+0x11a/0x170
[ 1222.266077][T25425]  ___sys_sendmsg+0x134/0x1d0
[ 1222.266092][T25425]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1222.266112][T25425]  ? find_held_lock+0x2b/0x80
[ 1222.266135][T25425]  __sys_sendmsg+0x16d/0x220
[ 1222.266150][T25425]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1222.266169][T25425]  ? do_user_addr_fault+0x843/0x1370
[ 1222.266186][T25425]  __do_fast_syscall_32+0xe8/0x680
[ 1222.266205][T25425]  do_fast_syscall_32+0x32/0x80
[ 1222.266215][T25425]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1222.266230][T25425] RIP: 0023:0xf7ff7579
[ 1222.266239][T25425] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1222.266250][T25425] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1222.266261][T25425] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[ 1222.266268][T25425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1222.266275][T25425] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1222.266281][T25425] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1222.266288][T25425] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1222.266301][T25425]  </TASK>
[ 1223.507802][T25430] overlayfs: failed to clone upperpath
[ 1224.875201][   T40] kauditd_printk_skb: 59 callbacks suppressed
[ 1224.875215][   T40] audit: type=1804 audit(1766809269.588:1034): pid=25447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4497" name="bus" dev="ramfs" ino=107268 res=1 errno=0
[ 1224.885449][   T40] audit: type=1804 audit(1766809269.588:1035): pid=25447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.4497" name="bus" dev="ramfs" ino=107268 res=1 errno=0
[ 1227.411772][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1228.372772][T25480] vivid-007: disconnect
[ 1228.918423][T25485] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4508'.
[ 1228.998258][T25486] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1229.068324][T25477] vivid-007: reconnect
[ 1229.113753][   T40] audit: type=1326 audit(1766809273.828:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25482 comm="syz.2.4508" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff7579 code=0x0
[ 1230.010453][T25471] netlink: 'syz.3.4503': attribute type 12 has an invalid length.
[ 1231.099486][T25517] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4518'.
[ 1231.106216][T25517] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4518'.
[ 1231.243679][T25523] 9p: Bad value for 'wfdno'
[ 1231.245608][T25523] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4520'.
[ 1233.257688][T25541] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1233.334046][T25541] "syz.1.4526" (25541) uses obsolete ecb(arc4) skcipher
[ 1233.772647][T25555] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4528'.
[ 1233.776622][T25555] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4528'.
[ 1234.209646][T25570] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4534'.
[ 1234.738591][T25575] overlayfs: failed to clone lowerpath
[ 1235.102750][T25580] netlink: 'syz.2.4536': attribute type 5 has an invalid length.
[ 1237.688626][   T40] audit: type=1326 audit(1766809282.398:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.697563][   T40] audit: type=1326 audit(1766809282.398:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.706190][   T40] audit: type=1326 audit(1766809282.398:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.717422][   T40] audit: type=1326 audit(1766809282.398:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.736588][   T40] audit: type=1326 audit(1766809282.398:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.743371][   T40] audit: type=1326 audit(1766809282.408:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.752884][   T40] audit: type=1326 audit(1766809282.408:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.759516][   T40] audit: type=1326 audit(1766809282.408:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.782682][   T40] audit: type=1326 audit(1766809282.408:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1237.885859][   T40] audit: type=1326 audit(1766809282.408:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25597 comm="syz.3.4543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1238.170623][T25617] overlayfs: failed to clone upperpath
[ 1239.632741][T25646] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1239.635406][T25646] IPv6: NLM_F_CREATE should be set when creating new route
[ 1239.637791][T25646] IPv6: NLM_F_CREATE should be set when creating new route
[ 1239.640204][T25646] IPv6: NLM_F_CREATE should be set when creating new route
[ 1240.517998][T25680] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4565'.
[ 1240.697269][T25686] 9pnet_virtio: no channels available for device syz
[ 1240.939509][T25695] overlayfs: failed to clone upperpath
[ 1241.119254][T25705] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4572'.
[ 1241.124342][T25705] 8021q: VLANs not supported on lo
[ 1241.127537][T25705] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4572'.
[ 1241.330187][T25714] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1241.333193][T25714] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1241.338846][T25714] tmpfs: Bad value for 'mpol'
[ 1242.849251][T25753] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4586'.
[ 1243.504028][T25769] netlink: 'syz.0.4590': attribute type 11 has an invalid length.
[ 1243.507588][T25769] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4590'.
[ 1244.264037][T25797] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4601'.
[ 1244.709690][T25815] lo speed is unknown, defaulting to 1000
[ 1245.363076][T25824] proc: Unknown parameter 'fd'
[ 1245.364951][T25825] proc: Unknown parameter 'fd'
[ 1245.885146][T25848] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4613'.
[ 1246.493673][T25856] overlayfs: missing 'lowerdir'
[ 1246.537781][T25858] IPVS: length: 191 != 8
[ 1246.581440][T25858] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4616'.
[ 1246.688069][T25866] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.4620'.
[ 1246.881237][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1246.887906][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1246.891736][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1246.897501][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1246.902314][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1246.935821][T25874] lo speed is unknown, defaulting to 1000
[ 1247.168454][T16894] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1247.172625][T16894] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1247.328815][T16894] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1247.335767][T16894] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1247.466154][T16894] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1247.480265][T16894] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1247.570810][T25874] chnl_net:caif_netlink_parms(): no params data found
[ 1247.697003][T16894] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1247.700389][T16894] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1247.761795][T25874] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1247.764851][T25874] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1247.767913][T25874] bridge_slave_0: entered allmulticast mode
[ 1247.772026][T25874] bridge_slave_0: entered promiscuous mode
[ 1247.778734][T25874] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1247.782534][T25874] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1247.785094][T25874] bridge_slave_1: entered allmulticast mode
[ 1247.787852][T25874] bridge_slave_1: entered promiscuous mode
[ 1247.806188][T25874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1247.812129][T25874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1247.828434][T25874] team0: Port device team_slave_0 added
[ 1247.831897][T25874] team0: Port device team_slave_1 added
[ 1247.847156][T25874] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1247.850385][T25874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1247.861868][T25874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1247.888918][T25903] FAULT_INJECTION: forcing a failure.
[ 1247.888918][T25903] name failslab, interval 1, probability 0, space 0, times 0
[ 1247.898974][T25903] CPU: 0 UID: 0 PID: 25903 Comm: syz.2.4628 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1247.898996][T25903] Tainted: [L]=SOFTLOCKUP
[ 1247.899000][T25903] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1247.899007][T25903] Call Trace:
[ 1247.899012][T25903]  <TASK>
[ 1247.899017][T25903]  dump_stack_lvl+0x16c/0x1f0
[ 1247.899039][T25903]  should_fail_ex+0x512/0x640
[ 1247.899052][T25903]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[ 1247.899069][T25903]  should_failslab+0xc2/0x120
[ 1247.899086][T25903]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1247.899105][T25903]  ? __alloc_skb+0x156/0x410
[ 1247.899120][T25903]  ? __alloc_skb+0x156/0x410
[ 1247.899132][T25903]  __alloc_skb+0x156/0x410
[ 1247.899143][T25903]  ? __alloc_skb+0x35d/0x410
[ 1247.899155][T25903]  ? __pfx___alloc_skb+0x10/0x10
[ 1247.899167][T25903]  ? netlink_autobind.isra.0+0x158/0x370
[ 1247.899188][T25903]  netlink_alloc_large_skb+0x69/0x140
[ 1247.899205][T25903]  netlink_sendmsg+0x698/0xdd0
[ 1247.899223][T25903]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1247.899241][T25903]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1247.899262][T25903]  ____sys_sendmsg+0xa5d/0xc30
[ 1247.899281][T25903]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1247.899298][T25903]  ? get_compat_msghdr+0x11a/0x170
[ 1247.899315][T25903]  ? __pfx__kstrtoull+0x10/0x10
[ 1247.899333][T25903]  ___sys_sendmsg+0x134/0x1d0
[ 1247.899349][T25903]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1247.899378][T25903]  __sys_sendmmsg+0x2f9/0x420
[ 1247.899394][T25903]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1247.899413][T25903]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1247.899436][T25903]  ? fput+0x70/0xf0
[ 1247.899447][T25903]  ? ksys_write+0x1ac/0x250
[ 1247.899463][T25903]  ? __pfx_ksys_write+0x10/0x10
[ 1247.899481][T25903]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1247.899496][T25903]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1247.899513][T25903]  __do_fast_syscall_32+0xe8/0x680
[ 1247.899532][T25903]  do_fast_syscall_32+0x32/0x80
[ 1247.899542][T25903]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1247.899557][T25903] RIP: 0023:0xf7ff7579
[ 1247.899567][T25903] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1247.899578][T25903] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[ 1247.899589][T25903] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800007c0
[ 1247.899597][T25903] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[ 1247.899603][T25903] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1247.899609][T25903] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1247.899616][T25903] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1247.899630][T25903]  </TASK>
[ 1248.015406][T25874] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1248.018897][T25874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1248.034455][T25874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1248.076797][T25874] hsr_slave_0: entered promiscuous mode
[ 1248.080547][T25874] hsr_slave_1: entered promiscuous mode
[ 1248.248924][T16894] erspan0: left allmulticast mode
[ 1248.251288][T16894] erspan0: left promiscuous mode
[ 1248.261852][T16894] bridge0: port 3(erspan0) entered disabled state
[ 1248.266658][T16894] bridge_slave_1: left allmulticast mode
[ 1248.269151][T16894] bridge_slave_1: left promiscuous mode
[ 1248.271766][T16894] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1248.278959][T16894] bridge_slave_0: left allmulticast mode
[ 1248.281375][T16894] bridge_slave_0: left promiscuous mode
[ 1248.286255][T16894] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1248.549014][T16894] .` (unregistering): (slave bridge0): Releasing backup interface
[ 1248.863854][T25918] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4632'.
[ 1248.943517][ T5948] Bluetooth: hci0: command tx timeout
[ 1248.978902][T16894] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1248.988237][T16894] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1248.994026][T16894] .` (unregistering): Released all slaves
[ 1249.022462][T16894] bond0 (unregistering): left promiscuous mode
[ 1249.024760][T16894] dummy0: left promiscuous mode
[ 1249.039644][T16894] bond4 (unregistering): (slave macvlan0): Releasing active interface
[ 1249.042705][T16894] macvlan0 (unregistering): left promiscuous mode
[ 1249.056374][T16894] bond0 (unregistering): (slave dummy0): Releasing active interface
[ 1249.060934][T16894] bond0 (unregistering): Released all slaves
[ 1249.072126][T16894] bond1 (unregistering): Released all slaves
[ 1249.166429][T16894] bond2 (unregistering): (slave bond3): Releasing backup interface
[ 1249.169201][T16894] bond3 (unregistering): left promiscuous mode
[ 1249.172000][T16894] bond2 (unregistering): Released all slaves
[ 1249.251541][T16894] bond3 (unregistering): Released all slaves
[ 1249.258322][T16894] bond4 (unregistering): Released all slaves
[ 1249.300723][T25906] lo speed is unknown, defaulting to 1000
[ 1250.450639][T16894] hsr_slave_0: left promiscuous mode
[ 1250.456773][T16894] hsr_slave_1: left promiscuous mode
[ 1250.460890][T16894] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1250.465108][T16894] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1250.470326][T16894] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1250.474160][T16894] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1250.491010][T16894] veth1_macvtap: left promiscuous mode
[ 1250.494013][T16894] veth0_macvtap: left promiscuous mode
[ 1250.496622][T16894] veth1_vlan: left promiscuous mode
[ 1250.499159][T16894] veth0_vlan: left promiscuous mode
[ 1251.012453][ T5948] Bluetooth: hci0: command tx timeout
[ 1251.133009][T16894] team0 (unregistering): Port device team_slave_1 removed
[ 1251.164976][T16894] team0 (unregistering): Port device team_slave_0 removed
[ 1251.726249][T25874] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1251.733911][T25874] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1251.741522][T25874] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1251.747998][T25874] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1251.809213][T25874] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1251.819908][T25874] 8021q: adding VLAN 0 to HW filter on device team0
[ 1251.828839][ T6174] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1251.831757][ T6174] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1251.838989][T16900] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1251.841456][T16900] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1252.015359][T25874] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1252.047701][T25874] veth0_vlan: entered promiscuous mode
[ 1252.052847][T25874] veth1_vlan: entered promiscuous mode
[ 1252.067489][T25874] veth0_macvtap: entered promiscuous mode
[ 1252.072190][T25874] veth1_macvtap: entered promiscuous mode
[ 1252.083608][T25874] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1252.095942][T25874] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1252.102345][ T6174] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1252.105462][ T6174] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1252.125814][ T6174] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1252.129208][ T6174] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1252.158318][ T1216] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1252.162081][ T1216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1252.182023][T16896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1252.191722][T16896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1252.250681][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.257776][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.261416][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.288862][T25987] FAULT_INJECTION: forcing a failure.
[ 1252.288862][T25987] name failslab, interval 1, probability 0, space 0, times 0
[ 1252.301749][T25987] CPU: 1 UID: 0 PID: 25987 Comm: syz.2.4645 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1252.301769][T25987] Tainted: [L]=SOFTLOCKUP
[ 1252.301773][T25987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1252.301781][T25987] Call Trace:
[ 1252.301785][T25987]  <TASK>
[ 1252.301790][T25987]  dump_stack_lvl+0x16c/0x1f0
[ 1252.301811][T25987]  should_fail_ex+0x512/0x640
[ 1252.301824][T25987]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[ 1252.301841][T25987]  should_failslab+0xc2/0x120
[ 1252.301858][T25987]  kmem_cache_alloc_lru_noprof+0x87/0x770
[ 1252.301873][T25987]  ? stack_trace_save+0x8e/0xc0
[ 1252.301890][T25987]  ? __d_alloc+0x35/0xa80
[ 1252.301903][T25987]  ? __d_alloc+0x35/0xa80
[ 1252.301912][T25987]  __d_alloc+0x35/0xa80
[ 1252.301923][T25987]  d_alloc_parallel+0x111/0x1510
[ 1252.301941][T25987]  ? find_held_lock+0x2b/0x80
[ 1252.301957][T25987]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 1252.301973][T25987]  ? __d_lookup+0x266/0x4a0
[ 1252.301990][T25987]  lookup_open.isra.0+0x66c/0x1780
[ 1252.302008][T25987]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1252.302031][T25987]  ? lookup_fast+0x156/0x610
[ 1252.302046][T25987]  path_openat+0x12bb/0x3140
[ 1252.302067][T25987]  ? __pfx_path_openat+0x10/0x10
[ 1252.302084][T25987]  ? stack_depot_save_flags+0x29/0x9b0
[ 1252.302097][T25987]  ? kasan_save_stack+0x33/0x60
[ 1252.302123][T25987]  do_filp_open+0x20b/0x470
[ 1252.302146][T25987]  ? __pfx_do_filp_open+0x10/0x10
[ 1252.302166][T25987]  ? __do_sys_io_uring_enter+0xd6b/0x1630
[ 1252.302181][T25987]  ? __do_fast_syscall_32+0xe8/0x680
[ 1252.302199][T25987]  ? do_fast_syscall_32+0x32/0x80
[ 1252.302218][T25987]  ? _raw_spin_unlock+0x28/0x50
[ 1252.302232][T25987]  ? alloc_fd+0x471/0x7d0
[ 1252.302252][T25987]  io_openat2+0x206/0x850
[ 1252.302271][T25987]  ? __pfx_io_openat2+0x10/0x10
[ 1252.302293][T25987]  __io_issue_sqe+0xe8/0x7c0
[ 1252.302303][T25987]  ? build_open_how+0x6a/0xb0
[ 1252.302316][T25987]  io_issue_sqe+0x85/0x1410
[ 1252.302330][T25987]  ? __io_openat_prep+0x312/0x410
[ 1252.302348][T25987]  io_submit_sqes+0xb24/0x28e0
[ 1252.302373][T25987]  __do_sys_io_uring_enter+0xd6b/0x1630
[ 1252.302390][T25987]  ? __fget_files+0x20e/0x3c0
[ 1252.302405][T25987]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[ 1252.302422][T25987]  ? fput+0x70/0xf0
[ 1252.302433][T25987]  ? ksys_write+0x1ac/0x250
[ 1252.302449][T25987]  ? __pfx_ksys_write+0x10/0x10
[ 1252.302471][T25987]  ? do_user_addr_fault+0x843/0x1370
[ 1252.302488][T25987]  __do_fast_syscall_32+0xe8/0x680
[ 1252.302507][T25987]  do_fast_syscall_32+0x32/0x80
[ 1252.302517][T25987]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1252.302536][T25987] RIP: 0023:0xf7ff7579
[ 1252.302550][T25987] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1252.302564][T25987] RSP: 002b:00000000f54c555c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[ 1252.302581][T25987] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000007277
[ 1252.302588][T25987] RDX: 0000000000000000 RSI: 0000000000000028 RDI: 0000000000000000
[ 1252.302594][T25987] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1252.302602][T25987] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1252.302608][T25987] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1252.302622][T25987]  </TASK>
[ 1252.338658][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.435065][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.438165][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.489477][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.494235][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1252.498509][T25983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4622'.
[ 1253.091927][ T5942] Bluetooth: hci0: command tx timeout
[ 1253.171844][ T5942] Bluetooth: hci4: command 0xfc11 tx timeout
[ 1253.172161][ T5948] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 1253.429106][T26001] raw_sendmsg: syz.2.4650 forgot to set AF_INET. Fix it!
[ 1253.777195][T26011] fuse: Unknown parameter 'fe'
[ 1254.697592][T26034] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4657'.
[ 1255.188842][ T5948] Bluetooth: hci0: command tx timeout
[ 1256.666775][T26083] openvswitch: netlink: Key type 155 is out of range max 32
[ 1256.781221][T26088] veth5: entered promiscuous mode
[ 1256.785194][T26088] veth5: entered allmulticast mode
[ 1258.131766][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1258.902177][T26089] veth5: entered promiscuous mode
[ 1258.904607][T26089] veth5: entered allmulticast mode
[ 1259.067478][T26100] Cannot find del_set index 3 as target
[ 1259.187458][T26102] 9p: Bad value for 'wfdno'
[ 1260.733345][T26135] __nla_validate_parse: 9 callbacks suppressed
[ 1260.733362][T26135] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4685'.
[ 1261.886249][T26161] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4691'.
[ 1261.889116][T26161] block nbd0: not configured, cannot reconfigure
[ 1261.891159][T26161] FAULT_INJECTION: forcing a failure.
[ 1261.891159][T26161] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1261.905866][T26161] CPU: 3 UID: 0 PID: 26161 Comm: syz.1.4691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1261.905886][T26161] Tainted: [L]=SOFTLOCKUP
[ 1261.905890][T26161] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1261.905897][T26161] Call Trace:
[ 1261.905901][T26161]  <TASK>
[ 1261.905906][T26161]  dump_stack_lvl+0x16c/0x1f0
[ 1261.905926][T26161]  should_fail_ex+0x512/0x640
[ 1261.905942][T26161]  _copy_to_user+0x32/0xd0
[ 1261.905956][T26161]  simple_read_from_buffer+0xcb/0x170
[ 1261.905974][T26161]  proc_fail_nth_read+0x197/0x240
[ 1261.905993][T26161]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1261.906013][T26161]  ? rw_verify_area+0xcf/0x6c0
[ 1261.906027][T26161]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1261.906046][T26161]  vfs_read+0x1e4/0xcf0
[ 1261.906063][T26161]  ? __pfx___mutex_lock+0x10/0x10
[ 1261.906082][T26161]  ? __pfx_vfs_read+0x10/0x10
[ 1261.906096][T26161]  ? find_held_lock+0x2b/0x80
[ 1261.906114][T26161]  ? __fget_files+0x20e/0x3c0
[ 1261.906134][T26161]  ksys_read+0x12a/0x250
[ 1261.906150][T26161]  ? __pfx_ksys_read+0x10/0x10
[ 1261.906169][T26161]  __do_fast_syscall_32+0xe8/0x680
[ 1261.906188][T26161]  do_fast_syscall_32+0x32/0x80
[ 1261.906199][T26161]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1261.906213][T26161] RIP: 0023:0xf703d579
[ 1261.906223][T26161] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1261.906234][T26161] RSP: 002b:00000000f542d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1261.906246][T26161] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f542d620
[ 1261.906258][T26161] RDX: 000000000000000f RSI: 00000000f73d6ff4 RDI: 0000000000000000
[ 1261.906265][T26161] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1261.906271][T26161] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1261.906278][T26161] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1261.906292][T26161]  </TASK>
[ 1261.981752][ T5942] Bluetooth: hci0: command 0x0405 tx timeout
[ 1262.425319][T26158] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1262.453236][T26158] cramfs: wrong magic
[ 1262.804537][T26180] FAULT_INJECTION: forcing a failure.
[ 1262.804537][T26180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1262.808711][T26180] CPU: 2 UID: 0 PID: 26180 Comm: syz.1.4698 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1262.808729][T26180] Tainted: [L]=SOFTLOCKUP
[ 1262.808733][T26180] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1262.808740][T26180] Call Trace:
[ 1262.808744][T26180]  <TASK>
[ 1262.808749][T26180]  dump_stack_lvl+0x16c/0x1f0
[ 1262.808769][T26180]  should_fail_ex+0x512/0x640
[ 1262.808785][T26180]  _copy_to_user+0x32/0xd0
[ 1262.808798][T26180]  simple_read_from_buffer+0xcb/0x170
[ 1262.808816][T26180]  proc_fail_nth_read+0x197/0x240
[ 1262.808835][T26180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.808854][T26180]  ? rw_verify_area+0xcf/0x6c0
[ 1262.808868][T26180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.808886][T26180]  vfs_read+0x1e4/0xcf0
[ 1262.808903][T26180]  ? __pfx___mutex_lock+0x10/0x10
[ 1262.808922][T26180]  ? __pfx_vfs_read+0x10/0x10
[ 1262.808937][T26180]  ? find_held_lock+0x2b/0x80
[ 1262.808955][T26180]  ? __fget_files+0x20e/0x3c0
[ 1262.808976][T26180]  ksys_read+0x12a/0x250
[ 1262.808991][T26180]  ? __pfx_ksys_read+0x10/0x10
[ 1262.809015][T26180]  __do_fast_syscall_32+0xe8/0x680
[ 1262.809034][T26180]  do_fast_syscall_32+0x32/0x80
[ 1262.809044][T26180]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1262.809059][T26180] RIP: 0023:0xf703d579
[ 1262.809068][T26180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1262.809079][T26180] RSP: 002b:00000000f542d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1262.809090][T26180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f542d620
[ 1262.809097][T26180] RDX: 000000000000000f RSI: 00000000f73d6ff4 RDI: 0000000000000000
[ 1262.809104][T26180] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1262.809110][T26180] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1262.809117][T26180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1262.809131][T26180]  </TASK>
[ 1263.128910][T26198] 9pnet_fd: p9_fd_create_tcp (26198): problem connecting socket to 127.0.0.1
[ 1263.204340][ T1143] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1263.209037][ T5942] Bluetooth: hci0: unexpected event for opcode 0x0c7b
[ 1263.757216][T26206] bridge0: port 3(erspan0) entered blocking state
[ 1263.759474][T26206] bridge0: port 3(erspan0) entered disabled state
[ 1263.764199][T26206] erspan0: entered allmulticast mode
[ 1263.767054][T26206] erspan0: entered promiscuous mode
[ 1264.103891][T25876] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1264.108946][T25876] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1264.113920][T25876] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1264.117819][T25876] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1264.121405][T25876] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1264.231916][T20038] bridge0: port 3(syz_tun) entered disabled state
[ 1264.243895][T20038] syz_tun (unregistering): left allmulticast mode
[ 1264.246039][T20038] syz_tun (unregistering): left promiscuous mode
[ 1264.248167][T20038] bridge0: port 3(syz_tun) entered disabled state
[ 1264.273467][T12269] syz1: Port: 1 Link DOWN
[ 1264.409568][T16896] smc: removing ib device syz1
[ 1264.728353][T26211] chnl_net:caif_netlink_parms(): no params data found
[ 1264.946520][T26211] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1264.949528][T26211] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1264.957863][T26211] bridge_slave_0: entered allmulticast mode
[ 1264.963143][T26211] bridge_slave_0: entered promiscuous mode
[ 1264.966755][T26211] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1264.969411][T26211] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1264.975853][T26211] bridge_slave_1: entered allmulticast mode
[ 1264.982236][T26211] bridge_slave_1: entered promiscuous mode
[ 1265.050289][T26211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1265.065452][T26211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1265.073984][T16902] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1265.077317][T16902] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.111108][T26211] team0: Port device team_slave_0 added
[ 1265.115169][T26211] team0: Port device team_slave_1 added
[ 1265.132516][T16902] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1265.136849][T16902] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.145197][T26211] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1265.148333][T26211] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1265.158617][T26211] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1265.165538][T26211] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1265.168698][T26211] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1265.180961][T26211] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1265.198935][T16902] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1265.212192][T16902] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.247670][T26211] hsr_slave_0: entered promiscuous mode
[ 1265.250294][T26211] hsr_slave_1: entered promiscuous mode
[ 1265.251892][ T5948] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 1265.254049][T25876] Bluetooth: hci4: command 0xfc11 tx timeout
[ 1265.262690][T26211] debugfs: 'hsr0' already exists in 'hsr'
[ 1265.264767][T26211] Cannot create hsr debugfs directory
[ 1265.308166][T16902] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1265.320463][T16902] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.421705][T26242] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4713'.
[ 1265.544925][T26252] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4715'.
[ 1265.579523][T26239] ceph: No mds server is up or the cluster is laggy
[ 1265.650606][T16902] bridge_slave_1: left allmulticast mode
[ 1265.652654][T16902] bridge_slave_1: left promiscuous mode
[ 1265.656128][T16902] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1265.660078][T16902] bridge_slave_0: left allmulticast mode
[ 1265.662712][T16902] bridge_slave_0: left promiscuous mode
[ 1265.664691][T16902] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1265.889952][T16902] dvmrp1 (unregistering): left allmulticast mode
[ 1265.956264][T16902] .` (unregistering): (slave bridge0): Releasing backup interface
[ 1265.972077][  T965] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[ 1266.161682][  T965] usb 6-1: Using ep0 maxpacket: 32
[ 1266.171177][  T965] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[ 1266.174475][  T965] usb 6-1: config 0 has no interface number 0
[ 1266.176910][  T965] usb 6-1: config 0 interface 12 has no altsetting 0
[ 1266.190410][  T965] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1266.193910][  T965] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.196560][  T965] usb 6-1: Product: syz
[ 1266.198018][  T965] usb 6-1: Manufacturer: syz
[ 1266.199565][  T965] usb 6-1: SerialNumber: syz
[ 1266.212358][ T5948] Bluetooth: hci5: command tx timeout
[ 1266.224076][  T965] usb 6-1: config 0 descriptor??
[ 1266.230340][  T965] f81534 6-1:0.12: required endpoints missing
[ 1266.312031][T17922] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1266.447422][ T5292] usb 6-1: USB disconnect, device number 23
[ 1266.491848][T17922] usb 5-1: Using ep0 maxpacket: 32
[ 1266.496054][T17922] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[ 1266.498714][T17922] usb 5-1: config 0 has no interface number 0
[ 1266.500739][T17922] usb 5-1: config 0 interface 12 has no altsetting 0
[ 1266.522547][T17922] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1266.525703][T17922] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.528382][T17922] usb 5-1: Product: syz
[ 1266.530076][T17922] usb 5-1: Manufacturer: syz
[ 1266.532094][T17922] usb 5-1: SerialNumber: syz
[ 1266.542554][T17922] usb 5-1: config 0 descriptor??
[ 1266.553746][T17922] f81534 5-1:0.12: required endpoints missing
[ 1266.587609][T16902] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1266.595747][T16902] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1266.607640][T16902] .` (unregistering): (slave dummy0): Releasing backup interface
[ 1266.615339][T16902] .` (unregistering): Released all slaves
[ 1266.622825][T16902] bond0 (unregistering): Released all slaves
[ 1266.782279][ T5292] usb 5-1: USB disconnect, device number 13
[ 1266.783088][T16902] tipc: Left network mode
[ 1267.119627][T26211] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1267.137245][T26211] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1267.152421][T26211] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1267.164045][T26211] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1267.220784][T26293] FAULT_INJECTION: forcing a failure.
[ 1267.220784][T26293] name failslab, interval 1, probability 0, space 0, times 0
[ 1267.225091][T26293] CPU: 0 UID: 0 PID: 26293 Comm: syz.2.4723 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1267.225109][T26293] Tainted: [L]=SOFTLOCKUP
[ 1267.225113][T26293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1267.225120][T26293] Call Trace:
[ 1267.225129][T26293]  <TASK>
[ 1267.225134][T26293]  dump_stack_lvl+0x16c/0x1f0
[ 1267.225161][T26293]  should_fail_ex+0x512/0x640
[ 1267.225175][T26293]  ? fs_reclaim_acquire+0xae/0x150
[ 1267.225194][T26293]  should_failslab+0xc2/0x120
[ 1267.225212][T26293]  __kmalloc_noprof+0xeb/0x910
[ 1267.225227][T26293]  ? tomoyo_encode2+0x100/0x3e0
[ 1267.225246][T26293]  ? tomoyo_encode2+0x100/0x3e0
[ 1267.225276][T26293]  tomoyo_encode2+0x100/0x3e0
[ 1267.225306][T26293]  tomoyo_encode+0x29/0x50
[ 1267.225320][T26293]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1267.225337][T26293]  ? tomoyo_profile+0x47/0x60
[ 1267.225355][T26293]  tomoyo_path_number_perm+0x245/0x580
[ 1267.225368][T26293]  ? tomoyo_path_number_perm+0x237/0x580
[ 1267.225381][T26293]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1267.225409][T26293]  ? find_held_lock+0x2b/0x80
[ 1267.225424][T26293]  ? hook_file_ioctl_common+0x144/0x410
[ 1267.225441][T26293]  ? __fget_files+0x20e/0x3c0
[ 1267.225456][T26293]  ? __fput_deferred+0x480/0x480
[ 1267.225471][T26293]  security_file_ioctl_compat+0x9b/0x240
[ 1267.225485][T26293]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1267.225502][T26293]  __do_fast_syscall_32+0xe8/0x680
[ 1267.225521][T26293]  do_fast_syscall_32+0x32/0x80
[ 1267.225532][T26293]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1267.225546][T26293] RIP: 0023:0xf7ff7579
[ 1267.225555][T26293] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1267.225566][T26293] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1267.225577][T26293] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004040ae79
[ 1267.225584][T26293] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1267.225591][T26293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1267.225597][T26293] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1267.225604][T26293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1267.225618][T26293]  </TASK>
[ 1267.225702][T26293] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1267.307449][T16902] hsr_slave_0: left promiscuous mode
[ 1267.312898][T16902] hsr_slave_1: left promiscuous mode
[ 1267.315327][T16902] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1267.317896][T16902] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1267.327635][T16902] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1267.330423][T16902] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1267.335818][T16902] veth1_vlan: left promiscuous mode
[ 1267.337658][T16902] veth0_vlan: left promiscuous mode
[ 1267.422444][T26295] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4724'.
[ 1267.652009][T16902] team0 (unregistering): Port device team_slave_1 removed
[ 1267.690418][T16902] team0 (unregistering): Port device team_slave_0 removed
[ 1267.964404][T26211] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1267.975153][T26211] 8021q: adding VLAN 0 to HW filter on device team0
[ 1267.980710][ T6636] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1267.983945][ T6636] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1267.995126][T16900] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1267.997763][T16900] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1268.180943][T26211] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1268.189916][T26311] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4728'.
[ 1268.228961][T26211] veth0_vlan: entered promiscuous mode
[ 1268.240898][T26211] veth1_vlan: entered promiscuous mode
[ 1268.264082][T26211] veth0_macvtap: entered promiscuous mode
[ 1268.268273][T26211] veth1_macvtap: entered promiscuous mode
[ 1268.278480][T26211] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1268.285685][T26211] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1268.293730][ T6636] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.299691][ T6636] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.302511][ T5948] Bluetooth: hci5: command tx timeout
[ 1268.303067][ T6636] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.308242][ T6636] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.356350][T16902] IPVS: stop unused estimator thread 0...
[ 1268.368149][T16900] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1268.371602][T16900] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1268.387437][T16900] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1268.391123][T16900] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1268.599722][T26326] FAULT_INJECTION: forcing a failure.
[ 1268.599722][T26326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1268.604258][T26326] CPU: 2 UID: 0 PID: 26326 Comm: syz.0.4731 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1268.604277][T26326] Tainted: [L]=SOFTLOCKUP
[ 1268.604281][T26326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1268.604288][T26326] Call Trace:
[ 1268.604293][T26326]  <TASK>
[ 1268.604298][T26326]  dump_stack_lvl+0x16c/0x1f0
[ 1268.604320][T26326]  should_fail_ex+0x512/0x640
[ 1268.604337][T26326]  _copy_from_user+0x2e/0xd0
[ 1268.604350][T26326]  do_devconfig_ioctl+0x11c/0x710
[ 1268.604383][T26326]  ? comedi_unlocked_ioctl+0x167/0x2eb0
[ 1268.604395][T26326]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[ 1268.604418][T26326]  ? kasan_save_track+0x14/0x30
[ 1268.604433][T26326]  ? kasan_save_free_info+0x3b/0x60
[ 1268.604445][T26326]  ? __kasan_slab_free+0x5f/0x80
[ 1268.604460][T26326]  ? kfree+0x2f8/0x6e0
[ 1268.604471][T26326]  ? tomoyo_path_number_perm+0x470/0x580
[ 1268.604483][T26326]  ? security_file_ioctl_compat+0x9b/0x240
[ 1268.604496][T26326]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[ 1268.604510][T26326]  ? __do_fast_syscall_32+0xe8/0x680
[ 1268.604530][T26326]  comedi_unlocked_ioctl+0x1582/0x2eb0
[ 1268.604546][T26326]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 1268.604566][T26326]  ? kasan_quarantine_put+0x10a/0x240
[ 1268.604581][T26326]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1268.604599][T26326]  ? find_held_lock+0x2b/0x80
[ 1268.604615][T26326]  ? tomoyo_path_number_perm+0x295/0x580
[ 1268.604630][T26326]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1268.604644][T26326]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1268.604658][T26326]  comedi_compat_ioctl+0x1ed/0xda0
[ 1268.604670][T26326]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[ 1268.604682][T26326]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1268.604700][T26326]  ? do_vfs_ioctl+0x128/0x14f0
[ 1268.604714][T26326]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1268.604731][T26326]  ? find_held_lock+0x2b/0x80
[ 1268.604745][T26326]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 1268.604760][T26326]  ? hook_file_ioctl_common+0x144/0x410
[ 1268.604781][T26326]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[ 1268.604792][T26326]  __ia32_compat_sys_ioctl+0x242/0x370
[ 1268.604808][T26326]  __do_fast_syscall_32+0xe8/0x680
[ 1268.604827][T26326]  do_fast_syscall_32+0x32/0x80
[ 1268.604838][T26326]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1268.604853][T26326] RIP: 0023:0xf7f41579
[ 1268.604862][T26326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1268.604877][T26326] RSP: 002b:00000000f541555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1268.604889][T26326] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000040946400
[ 1268.604896][T26326] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1268.604903][T26326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1268.604910][T26326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1268.604916][T26326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1268.604931][T26326]  </TASK>
[ 1269.436573][T26340] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[ 1269.438804][T26340] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1269.442632][T26340] vhci_hcd vhci_hcd.0: Device attached
[ 1269.445577][T26342] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 8
[ 1269.448710][ T6636] vhci_hcd vhci_hcd.1: stop threads
[ 1269.451211][ T6636] vhci_hcd vhci_hcd.1: release socket
[ 1269.453797][ T6636] vhci_hcd vhci_hcd.1: disconnect device
[ 1269.503407][   T40] kauditd_printk_skb: 9 callbacks suppressed
[ 1269.503419][   T40] audit: type=1326 audit(1766809314.218:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.514334][   T40] audit: type=1326 audit(1766809314.218:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.521490][   T40] audit: type=1326 audit(1766809314.218:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.528548][   T40] audit: type=1326 audit(1766809314.218:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.536268][   T40] audit: type=1326 audit(1766809314.218:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.548725][T26348] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.4733'.
[ 1269.551935][T26348] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[ 1269.552248][   T40] audit: type=1326 audit(1766809314.218:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.561820][   T40] audit: type=1326 audit(1766809314.218:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.568830][   T40] audit: type=1326 audit(1766809314.218:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.575781][   T40] audit: type=1326 audit(1766809314.218:1064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.583226][   T40] audit: type=1326 audit(1766809314.218:1065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26345 comm="syz.3.4737" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000
[ 1269.731941][T13528] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1269.840010][T26353] Bluetooth: MGMT ver 1.23
[ 1269.895963][T13528] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1269.899097][T13528] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1269.900587][T26355] FAULT_INJECTION: forcing a failure.
[ 1269.900587][T26355] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1269.904014][T13528] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1269.908941][T26355] CPU: 3 UID: 0 PID: 26355 Comm: syz.2.4739 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1269.908959][T26355] Tainted: [L]=SOFTLOCKUP
[ 1269.908964][T26355] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1269.908970][T26355] Call Trace:
[ 1269.908974][T26355]  <TASK>
[ 1269.908979][T26355]  dump_stack_lvl+0x16c/0x1f0
[ 1269.909000][T26355]  should_fail_ex+0x512/0x640
[ 1269.909016][T26355]  _copy_from_iter+0x2a4/0x16c0
[ 1269.909031][T26355]  ? __pfx__copy_from_iter+0x10/0x10
[ 1269.909044][T26355]  ? __pfx___might_resched+0x10/0x10
[ 1269.909064][T26355]  ? find_held_lock+0x2b/0x80
[ 1269.909087][T26355]  ? aa_sk_perm+0x2f2/0xae0
[ 1269.909102][T26355]  hci_sock_sendmsg+0x46d/0x26b0
[ 1269.909121][T26355]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1269.909138][T26355]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1269.909170][T26355]  sock_write_iter+0x566/0x610
[ 1269.909192][T26355]  ? __pfx_sock_write_iter+0x10/0x10
[ 1269.909214][T26355]  ? bpf_lsm_file_permission+0x9/0x10
[ 1269.909227][T26355]  ? security_file_permission+0x71/0x210
[ 1269.909250][T26355]  ? rw_verify_area+0xcf/0x6c0
[ 1269.909273][T26355]  vfs_write+0x7d3/0x11d0
[ 1269.909298][T26355]  ? __pfx_sock_write_iter+0x10/0x10
[ 1269.909326][T26355]  ? __pfx_vfs_write+0x10/0x10
[ 1269.909344][T26355]  ? find_held_lock+0x2b/0x80
[ 1269.909373][T26355]  ksys_write+0x1f8/0x250
[ 1269.909396][T26355]  ? __pfx_ksys_write+0x10/0x10
[ 1269.909420][T26355]  ? do_user_addr_fault+0x843/0x1370
[ 1269.909444][T26355]  __do_fast_syscall_32+0xe8/0x680
[ 1269.909469][T26355]  do_fast_syscall_32+0x32/0x80
[ 1269.909485][T26355]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1269.909506][T26355] RIP: 0023:0xf7ff7579
[ 1269.909520][T26355] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1269.909535][T26355] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[ 1269.909551][T26355] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[ 1269.909560][T26355] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000
[ 1269.909568][T26355] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1269.909578][T26355] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1269.909589][T26355] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1269.909612][T26355]  </TASK>
[ 1270.014674][T13528] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1270.020609][T13528] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1270.024173][T13528] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1270.026908][T13528] usb 5-1: Product: syz
[ 1270.028391][T13528] usb 5-1: Manufacturer: syz
[ 1270.033002][T13528] cdc_wdm 5-1:1.0: skipping garbage
[ 1270.034935][T13528] cdc_wdm 5-1:1.0: skipping garbage
[ 1270.038431][T13528] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1270.042652][T13528] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1270.096884][T26362] netlink: 'syz.1.4741': attribute type 1 has an invalid length.
[ 1270.100801][T26362] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4741'.
[ 1270.238812][T13528] usb 5-1: USB disconnect, device number 14
[ 1270.238950][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 1270.243945][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 1270.246725][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[ 1270.371749][ T5948] Bluetooth: hci5: command tx timeout
[ 1270.717594][T26366] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4742'.
[ 1270.801820][  T965] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1270.941765][  T965] usb 5-1: device descriptor read/64, error -71
[ 1271.025596][T26382] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4746'.
[ 1271.029570][T26382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4746'.
[ 1271.181745][  T965] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1271.356065][  T965] usb 5-1: device descriptor read/64, error -71
[ 1271.941733][  T965] usb usb5-port1: attempt power cycle
[ 1272.063692][T26391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4750'.
[ 1272.066732][T26391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4750'.
[ 1272.069666][T26391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4750'.
[ 1272.281809][T19417] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 1272.331786][  T965] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1272.352724][  T965] usb 5-1: device descriptor read/8, error -71
[ 1272.444857][T19417] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1272.448419][T19417] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1272.452010][ T5948] Bluetooth: hci5: command tx timeout
[ 1272.456798][T19417] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1272.460657][T19417] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1272.465975][T19417] usb 6-1: Manufacturer: syz
[ 1272.470246][T19417] usb 6-1: config 0 descriptor??
[ 1272.475578][T19417] igorplugusb 6-1:0.0: incorrect number of endpoints
[ 1272.601783][  T965] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1272.811725][  T965] usb 5-1: device not accepting address 18, error -71
[ 1272.814567][  T965] usb usb5-port1: unable to enumerate USB device
[ 1272.927991][T26407] netlink: 'syz.1.4749': attribute type 1 has an invalid length.
[ 1272.932159][T26371] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1272.942603][T26407] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1272.973768][T26407] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1272.976691][T26407] bond3: (slave vti0): The slave device specified does not support setting the MAC address
[ 1272.982288][T26407] bond3: (slave vti0): Error -95 calling set_mac_address
[ 1273.274308][T26413] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[ 1273.276631][T26413] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1273.279813][T26413] vhci_hcd vhci_hcd.0: Device attached
[ 1273.551828][  T965] usb 38-1: SetAddress Request (30) to port 0
[ 1273.554147][  T965] usb 38-1: new SuperSpeed USB device number 30 using vhci_hcd
[ 1273.641771][T19417] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1273.801734][T19417] usb 5-1: Using ep0 maxpacket: 8
[ 1273.805411][T19417] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1273.809404][T19417] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1273.813036][T19417] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1273.817286][T19417] usb 5-1: config 0 descriptor??
[ 1274.042795][T19417] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 1274.262092][T26419] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1275.069948][T13528] usb 6-1: USB disconnect, device number 24
[ 1275.648078][T25955] usb 5-1: USB disconnect, device number 19
[ 1275.663408][T26414] vhci_hcd: connection reset by peer
[ 1275.665533][ T6636] vhci_hcd vhci_hcd.0: stop threads
[ 1275.669569][ T6636] vhci_hcd vhci_hcd.0: release socket
[ 1275.673628][ T6636] vhci_hcd vhci_hcd.0: disconnect device
[ 1275.960164][T26440] __nla_validate_parse: 8 callbacks suppressed
[ 1275.960181][T26440] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4760'.
[ 1276.119314][T26442] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1276.156112][T26448] bond0: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[ 1276.161273][T26448] bond0: option mode: unable to set because the bond device is up
[ 1276.198509][T26453] FAULT_INJECTION: forcing a failure.
[ 1276.198509][T26453] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1276.204719][T26453] CPU: 3 UID: 0 PID: 26453 Comm: syz.1.4766 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1276.204747][T26453] Tainted: [L]=SOFTLOCKUP
[ 1276.204753][T26453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1276.204765][T26453] Call Trace:
[ 1276.204771][T26453]  <TASK>
[ 1276.204778][T26453]  dump_stack_lvl+0x16c/0x1f0
[ 1276.204808][T26453]  should_fail_ex+0x512/0x640
[ 1276.204838][T26453]  _copy_from_user+0x2e/0xd0
[ 1276.204857][T26453]  kstrtouint_from_user+0xd6/0x1d0
[ 1276.204881][T26453]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1276.204903][T26453]  ? __lock_acquire+0x436/0x2890
[ 1276.204932][T26453]  proc_fail_nth_write+0x83/0x220
[ 1276.204949][T26453]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1276.204973][T26453]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1276.204990][T26453]  vfs_write+0x2a0/0x11d0
[ 1276.205016][T26453]  ? __pfx___mutex_lock+0x10/0x10
[ 1276.205044][T26453]  ? __pfx_vfs_write+0x10/0x10
[ 1276.205066][T26453]  ? find_held_lock+0x2b/0x80
[ 1276.205094][T26453]  ? __fget_files+0x20e/0x3c0
[ 1276.205126][T26453]  ksys_write+0x12a/0x250
[ 1276.205150][T26453]  ? __pfx_ksys_write+0x10/0x10
[ 1276.205176][T26453]  ? do_user_addr_fault+0x843/0x1370
[ 1276.205204][T26453]  __do_fast_syscall_32+0xe8/0x680
[ 1276.205235][T26453]  do_fast_syscall_32+0x32/0x80
[ 1276.205252][T26453]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1276.205274][T26453] RIP: 0023:0xf703d579
[ 1276.205289][T26453] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1276.205306][T26453] RSP: 002b:00000000f542d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[ 1276.205323][T26453] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f542d620
[ 1276.205336][T26453] RDX: 0000000000000001 RSI: 00000000f73d6ff4 RDI: 0000000000000000
[ 1276.205346][T26453] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1276.205357][T26453] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1276.205368][T26453] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.205392][T26453]  </TASK>
[ 1276.312125][T26446] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[ 1276.314356][T26446] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1276.317154][T26446] vhci_hcd vhci_hcd.0: Device attached
[ 1276.332961][T26458] vhci_hcd: connection closed
[ 1276.333916][ T6636] vhci_hcd vhci_hcd.2: stop threads
[ 1276.337531][ T6636] vhci_hcd vhci_hcd.2: release socket
[ 1276.339478][ T6636] vhci_hcd vhci_hcd.2: disconnect device
[ 1276.451798][T26455] Cannot find del_set index 2 as target
[ 1276.577300][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.580517][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.584293][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.615337][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.618630][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.622029][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.671526][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.675359][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.678378][T26466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4769'.
[ 1276.831299][T26475] FAULT_INJECTION: forcing a failure.
[ 1276.831299][T26475] name failslab, interval 1, probability 0, space 0, times 0
[ 1276.836264][T26475] CPU: 2 UID: 0 PID: 26475 Comm: syz.3.4772 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1276.836283][T26475] Tainted: [L]=SOFTLOCKUP
[ 1276.836288][T26475] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1276.836295][T26475] Call Trace:
[ 1276.836300][T26475]  <TASK>
[ 1276.836305][T26475]  dump_stack_lvl+0x16c/0x1f0
[ 1276.836327][T26475]  should_fail_ex+0x512/0x640
[ 1276.836339][T26475]  ? __kmalloc_cache_noprof+0x5f/0x800
[ 1276.836354][T26475]  should_failslab+0xc2/0x120
[ 1276.836372][T26475]  __kmalloc_cache_noprof+0x80/0x800
[ 1276.836384][T26475]  ? do_raw_spin_unlock+0x172/0x230
[ 1276.836398][T26475]  ? fuse_io_alloc+0x47/0x150
[ 1276.836411][T26475]  ? fuse_simple_background+0x41a/0x5f0
[ 1276.836425][T26475]  ? fuse_io_alloc+0x47/0x150
[ 1276.836435][T26475]  ? iov_iter_npages+0xf0/0x5a0
[ 1276.836446][T26475]  fuse_io_alloc+0x47/0x150
[ 1276.836458][T26475]  fuse_direct_io+0x196c/0x2510
[ 1276.836484][T26475]  ? __pfx_fuse_direct_io+0x10/0x10
[ 1276.836500][T26475]  ? lockdep_init_map_type+0x5c/0x270
[ 1276.836513][T26475]  fuse_direct_IO+0x624/0xf40
[ 1276.836531][T26475]  ? __pfx_aio_complete_rw+0x10/0x10
[ 1276.836550][T26475]  ? __pfx_fuse_direct_IO+0x10/0x10
[ 1276.836564][T26475]  ? __pfx___might_resched+0x10/0x10
[ 1276.836579][T26475]  ? generic_write_check_limits+0x1f1/0x290
[ 1276.836603][T26475]  fuse_direct_write_iter+0x4c7/0x840
[ 1276.836617][T26475]  ? register_lock_class+0x41/0x4b0
[ 1276.836627][T26475]  ? __pfx_aa_file_perm+0x10/0x10
[ 1276.836644][T26475]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[ 1276.836660][T26475]  ? __lock_acquire+0x436/0x2890
[ 1276.836673][T26475]  ? kasan_save_stack+0x42/0x60
[ 1276.836688][T26475]  ? kasan_save_track+0x14/0x30
[ 1276.836721][T26475]  fuse_file_write_iter+0x5c9/0x990
[ 1276.836740][T26475]  aio_write+0x3b9/0x910
[ 1276.836758][T26475]  ? __pfx_aio_write+0x10/0x10
[ 1276.836775][T26475]  ? __lock_acquire+0x436/0x2890
[ 1276.836794][T26475]  ? __might_fault+0xe3/0x190
[ 1276.836806][T26475]  ? __might_fault+0x13b/0x190
[ 1276.836822][T26475]  ? io_submit_one+0x1243/0x1e70
[ 1276.836832][T26475]  io_submit_one+0x1243/0x1e70
[ 1276.836844][T26475]  ? __lock_acquire+0x436/0x2890
[ 1276.836857][T26475]  ? __pfx_io_submit_one+0x10/0x10
[ 1276.836872][T26475]  ? __might_fault+0xe3/0x190
[ 1276.836888][T26475]  ? __might_fault+0x13b/0x190
[ 1276.836904][T26475]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1276.836916][T26475]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1276.836936][T26475]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 1276.836963][T26475]  ? rcu_is_watching+0x12/0xc0
[ 1276.836988][T26475]  __do_fast_syscall_32+0xe8/0x680
[ 1276.837018][T26475]  do_fast_syscall_32+0x32/0x80
[ 1276.837034][T26475]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1276.837055][T26475] RIP: 0023:0xf7f07579
[ 1276.837071][T26475] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1276.837088][T26475] RSP: 002b:00000000f53f655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 1276.837107][T26475] RAX: ffffffffffffffda RBX: 00000000f53ac000 RCX: 0000000000000002
[ 1276.837117][T26475] RDX: 0000000080000780 RSI: 0000000000000000 RDI: 0000000000000000
[ 1276.837126][T26475] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1276.837132][T26475] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1276.837141][T26475] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.837156][T26475]  </TASK>
[ 1277.060374][   T40] kauditd_printk_skb: 18 callbacks suppressed
[ 1277.060388][   T40] audit: type=1326 audit(1766809321.768:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26479 comm="syz.2.4774" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff7579 code=0x0
[ 1277.853731][T26520] FAULT_INJECTION: forcing a failure.
[ 1277.853731][T26520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1277.858187][T26520] CPU: 0 UID: 0 PID: 26520 Comm: syz.3.4785 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1277.858206][T26520] Tainted: [L]=SOFTLOCKUP
[ 1277.858210][T26520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1277.858217][T26520] Call Trace:
[ 1277.858222][T26520]  <TASK>
[ 1277.858227][T26520]  dump_stack_lvl+0x16c/0x1f0
[ 1277.858248][T26520]  should_fail_ex+0x512/0x640
[ 1277.858263][T26520]  _copy_from_user+0x2e/0xd0
[ 1277.858276][T26520]  memdup_user+0x6b/0xe0
[ 1277.858291][T26520]  strndup_user+0x78/0xe0
[ 1277.858305][T26520]  __ia32_sys_fsopen+0xa0/0x240
[ 1277.858320][T26520]  __do_fast_syscall_32+0xe8/0x680
[ 1277.858339][T26520]  do_fast_syscall_32+0x32/0x80
[ 1277.858350][T26520]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1277.858364][T26520] RIP: 0023:0xf7f07579
[ 1277.858374][T26520] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1277.858384][T26520] RSP: 002b:00000000f53f655c EFLAGS: 00000296 ORIG_RAX: 00000000000001ae
[ 1277.858395][T26520] RAX: ffffffffffffffda RBX: 0000000080000240 RCX: 0000000000000001
[ 1277.858403][T26520] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1277.858409][T26520] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1277.858415][T26520] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1277.858422][T26520] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1277.858436][T26520]  </TASK>
[ 1278.612667][  T965] usb 38-1: device descriptor read/8, error -110
[ 1278.769174][T26537] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[ 1279.002316][  T965] usb usb38-port1: attempt power cycle
[ 1279.051715][T26549] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1279.407372][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.410685][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.418714][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.422298][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.425659][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.429025][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.432775][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.436147][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.439383][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.442868][ T6199] hid-generic 00A0:0006:0003.000A: unknown main item tag 0x0
[ 1279.449290][ T6199] hid-generic 00A0:0006:0003.000A: hidraw1: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[ 1280.189717][T26573] FAULT_INJECTION: forcing a failure.
[ 1280.189717][T26573] name failslab, interval 1, probability 0, space 0, times 0
[ 1280.193923][T26573] CPU: 2 UID: 0 PID: 26573 Comm: syz.1.4805 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1280.193941][T26573] Tainted: [L]=SOFTLOCKUP
[ 1280.193945][T26573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1280.193952][T26573] Call Trace:
[ 1280.193956][T26573]  <TASK>
[ 1280.193961][T26573]  dump_stack_lvl+0x16c/0x1f0
[ 1280.193983][T26573]  should_fail_ex+0x512/0x640
[ 1280.193996][T26573]  ? __kmalloc_noprof+0xca/0x910
[ 1280.194010][T26573]  should_failslab+0xc2/0x120
[ 1280.194027][T26573]  __kmalloc_noprof+0xeb/0x910
[ 1280.194039][T26573]  ? fuse_direct_io+0x575/0x2510
[ 1280.194056][T26573]  ? fuse_direct_io+0x575/0x2510
[ 1280.194069][T26573]  fuse_direct_io+0x575/0x2510
[ 1280.194099][T26573]  ? __pfx_fuse_direct_io+0x10/0x10
[ 1280.194114][T26573]  ? lockdep_init_map_type+0x5c/0x270
[ 1280.194129][T26573]  fuse_direct_IO+0x624/0xf40
[ 1280.194145][T26573]  ? __pfx_aio_complete_rw+0x10/0x10
[ 1280.194166][T26573]  ? __pfx_fuse_direct_IO+0x10/0x10
[ 1280.194179][T26573]  ? __pfx___might_resched+0x10/0x10
[ 1280.194195][T26573]  ? generic_write_check_limits+0x1f1/0x290
[ 1280.194218][T26573]  fuse_direct_write_iter+0x4c7/0x840
[ 1280.194232][T26573]  ? register_lock_class+0x41/0x4b0
[ 1280.194242][T26573]  ? __pfx_aa_file_perm+0x10/0x10
[ 1280.194259][T26573]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[ 1280.194275][T26573]  ? __lock_acquire+0x436/0x2890
[ 1280.194288][T26573]  ? kasan_save_stack+0x42/0x60
[ 1280.194302][T26573]  ? kasan_save_track+0x14/0x30
[ 1280.194323][T26573]  fuse_file_write_iter+0x5c9/0x990
[ 1280.194362][T26573]  aio_write+0x3b9/0x910
[ 1280.194380][T26573]  ? __pfx_aio_write+0x10/0x10
[ 1280.194397][T26573]  ? __lock_acquire+0x436/0x2890
[ 1280.194416][T26573]  ? __might_fault+0xe3/0x190
[ 1280.194428][T26573]  ? __might_fault+0x13b/0x190
[ 1280.194444][T26573]  ? io_submit_one+0x1243/0x1e70
[ 1280.194454][T26573]  io_submit_one+0x1243/0x1e70
[ 1280.194465][T26573]  ? __lock_acquire+0x436/0x2890
[ 1280.194478][T26573]  ? __pfx_io_submit_one+0x10/0x10
[ 1280.194494][T26573]  ? __might_fault+0xe3/0x190
[ 1280.194505][T26573]  ? __might_fault+0x13b/0x190
[ 1280.194521][T26573]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1280.194532][T26573]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1280.194546][T26573]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 1280.194562][T26573]  ? do_user_addr_fault+0x843/0x1370
[ 1280.194576][T26573]  ? rcu_is_watching+0x12/0xc0
[ 1280.194593][T26573]  __do_fast_syscall_32+0xe8/0x680
[ 1280.194613][T26573]  do_fast_syscall_32+0x32/0x80
[ 1280.194623][T26573]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1280.194637][T26573] RIP: 0023:0xf703d579
[ 1280.194647][T26573] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1280.194658][T26573] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 1280.194669][T26573] RAX: ffffffffffffffda RBX: 00000000f53e3000 RCX: 0000000000000002
[ 1280.194676][T26573] RDX: 0000000080000780 RSI: 0000000000000000 RDI: 0000000000000000
[ 1280.194683][T26573] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1280.194689][T26573] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1280.194695][T26573] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1280.194709][T26573]  </TASK>
[ 1280.222638][  T965] usb usb38-port1: unable to enumerate USB device
[ 1281.089220][T26608] tmpfs: Unknown parameter 'm³”ÐEt€gÄð'
[ 1281.891827][  T965] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1282.044908][  T965] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1282.050694][  T965] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1282.055669][  T965] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1282.059957][  T965] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1282.068486][T26617] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1282.077206][  T965] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1282.276384][  T965] usb 5-1: USB disconnect, device number 20
[ 1282.468799][T26631] netlink: 'syz.1.4818': attribute type 10 has an invalid length.
[ 1282.483060][T26631] batman_adv: batadv0: Adding interface: team0
[ 1282.485619][T26631] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1282.494947][T26631] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 1283.178305][T26644] FAULT_INJECTION: forcing a failure.
[ 1283.178305][T26644] name failslab, interval 1, probability 0, space 0, times 0
[ 1283.184263][T26644] CPU: 3 UID: 0 PID: 26644 Comm: syz.2.4821 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1283.184286][T26644] Tainted: [L]=SOFTLOCKUP
[ 1283.184292][T26644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1283.184301][T26644] Call Trace:
[ 1283.184306][T26644]  <TASK>
[ 1283.184313][T26644]  dump_stack_lvl+0x16c/0x1f0
[ 1283.184339][T26644]  should_fail_ex+0x512/0x640
[ 1283.184355][T26644]  ? __kmalloc_cache_noprof+0x5f/0x800
[ 1283.184374][T26644]  should_failslab+0xc2/0x120
[ 1283.184397][T26644]  __kmalloc_cache_noprof+0x80/0x800
[ 1283.184412][T26644]  ? do_raw_spin_unlock+0x172/0x230
[ 1283.184429][T26644]  ? fuse_io_alloc+0x47/0x150
[ 1283.184446][T26644]  ? fuse_simple_background+0x41a/0x5f0
[ 1283.184470][T26644]  ? fuse_io_alloc+0x47/0x150
[ 1283.184484][T26644]  ? iov_iter_npages+0xf0/0x5a0
[ 1283.184502][T26644]  fuse_io_alloc+0x47/0x150
[ 1283.184518][T26644]  fuse_direct_io+0x196c/0x2510
[ 1283.184554][T26644]  ? __pfx_fuse_direct_io+0x10/0x10
[ 1283.184574][T26644]  ? lockdep_init_map_type+0x5c/0x270
[ 1283.184592][T26644]  fuse_direct_IO+0x624/0xf40
[ 1283.184615][T26644]  ? __pfx_aio_complete_rw+0x10/0x10
[ 1283.184648][T26644]  ? __pfx_fuse_direct_IO+0x10/0x10
[ 1283.184666][T26644]  ? __pfx___might_resched+0x10/0x10
[ 1283.184686][T26644]  ? generic_write_check_limits+0x1f1/0x290
[ 1283.184718][T26644]  fuse_direct_write_iter+0x4c7/0x840
[ 1283.184736][T26644]  ? register_lock_class+0x41/0x4b0
[ 1283.184750][T26644]  ? __pfx_aa_file_perm+0x10/0x10
[ 1283.184771][T26644]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[ 1283.184793][T26644]  ? __lock_acquire+0x436/0x2890
[ 1283.184810][T26644]  ? kasan_save_stack+0x42/0x60
[ 1283.184829][T26644]  ? kasan_save_track+0x14/0x30
[ 1283.184856][T26644]  fuse_file_write_iter+0x5c9/0x990
[ 1283.184878][T26644]  aio_write+0x3b9/0x910
[ 1283.184902][T26644]  ? __pfx_aio_write+0x10/0x10
[ 1283.184924][T26644]  ? __lock_acquire+0x436/0x2890
[ 1283.184949][T26644]  ? __might_fault+0xe3/0x190
[ 1283.184965][T26644]  ? __might_fault+0x13b/0x190
[ 1283.185005][T26644]  ? io_submit_one+0x1243/0x1e70
[ 1283.185020][T26644]  io_submit_one+0x1243/0x1e70
[ 1283.185040][T26644]  ? __lock_acquire+0x436/0x2890
[ 1283.185057][T26644]  ? __pfx_io_submit_one+0x10/0x10
[ 1283.185077][T26644]  ? __might_fault+0xe3/0x190
[ 1283.185092][T26644]  ? __might_fault+0x13b/0x190
[ 1283.185112][T26644]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1283.185127][T26644]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1283.185145][T26644]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 1283.185166][T26644]  ? do_user_addr_fault+0x843/0x1370
[ 1283.185184][T26644]  ? rcu_is_watching+0x12/0xc0
[ 1283.185206][T26644]  __do_fast_syscall_32+0xe8/0x680
[ 1283.185232][T26644]  do_fast_syscall_32+0x32/0x80
[ 1283.185245][T26644]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1283.185263][T26644] RIP: 0023:0xf7ff7579
[ 1283.185276][T26644] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1283.185290][T26644] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 1283.185305][T26644] RAX: ffffffffffffffda RBX: 00000000f549c000 RCX: 0000000000000002
[ 1283.185314][T26644] RDX: 0000000080000780 RSI: 0000000000000000 RDI: 0000000000000000
[ 1283.185323][T26644] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1283.185332][T26644] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1283.185340][T26644] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1283.185359][T26644]  </TASK>
[ 1283.472095][T26656] __nla_validate_parse: 22 callbacks suppressed
[ 1283.472113][T26656] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4824'.
[ 1283.488931][T26656] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4824'.
[ 1283.823406][T26673] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1284.124577][T26684] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4834'.
[ 1284.257096][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.260356][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.263652][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.265976][T26178] udevd[26178]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1284.275768][T26178] udevd[26178]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1284.292646][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.295471][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.298407][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.340756][T26691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4835'.
[ 1284.631897][T26699] random: crng reseeded on system resumption
[ 1284.642347][T26699] FAULT_INJECTION: forcing a failure.
[ 1284.642347][T26699] name failslab, interval 1, probability 0, space 0, times 0
[ 1284.648063][T26699] CPU: 1 UID: 0 PID: 26699 Comm: syz.3.4838 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1284.648092][T26699] Tainted: [L]=SOFTLOCKUP
[ 1284.648099][T26699] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1284.648109][T26699] Call Trace:
[ 1284.648117][T26699]  <TASK>
[ 1284.648125][T26699]  dump_stack_lvl+0x16c/0x1f0
[ 1284.648159][T26699]  should_fail_ex+0x512/0x640
[ 1284.648180][T26699]  ? fs_reclaim_acquire+0xae/0x150
[ 1284.648211][T26699]  should_failslab+0xc2/0x120
[ 1284.648240][T26699]  __kmalloc_noprof+0xeb/0x910
[ 1284.648261][T26699]  ? tomoyo_encode2+0x100/0x3e0
[ 1284.648290][T26699]  ? tomoyo_encode2+0x100/0x3e0
[ 1284.648314][T26699]  tomoyo_encode2+0x100/0x3e0
[ 1284.648341][T26699]  tomoyo_encode+0x29/0x50
[ 1284.648365][T26699]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1284.648397][T26699]  tomoyo_path_number_perm+0x245/0x580
[ 1284.648419][T26699]  ? tomoyo_path_number_perm+0x237/0x580
[ 1284.648442][T26699]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1284.648490][T26699]  ? find_held_lock+0x2b/0x80
[ 1284.648515][T26699]  ? hook_file_ioctl_common+0x144/0x410
[ 1284.648543][T26699]  ? __fget_files+0x20e/0x3c0
[ 1284.648566][T26699]  ? __fput_deferred+0x480/0x480
[ 1284.648589][T26699]  security_file_ioctl_compat+0x9b/0x240
[ 1284.648613][T26699]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1284.648641][T26699]  __do_fast_syscall_32+0xe8/0x680
[ 1284.648671][T26699]  do_fast_syscall_32+0x32/0x80
[ 1284.648688][T26699]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1284.648711][T26699] RIP: 0023:0xf7f07579
[ 1284.648725][T26699] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1284.648742][T26699] RSP: 002b:00000000f53f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1284.648760][T26699] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000003304
[ 1284.648771][T26699] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1284.648781][T26699] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1284.648791][T26699] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1284.648803][T26699] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1284.648827][T26699]  </TASK>
[ 1284.648848][T26699] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1284.878519][T26708] FAULT_INJECTION: forcing a failure.
[ 1284.878519][T26708] name failslab, interval 1, probability 0, space 0, times 0
[ 1284.884007][T26708] CPU: 3 UID: 0 PID: 26708 Comm: syz.0.4840 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1284.884039][T26708] Tainted: [L]=SOFTLOCKUP
[ 1284.884046][T26708] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1284.884058][T26708] Call Trace:
[ 1284.884064][T26708]  <TASK>
[ 1284.884070][T26708]  dump_stack_lvl+0x16c/0x1f0
[ 1284.884101][T26708]  should_fail_ex+0x512/0x640
[ 1284.884120][T26708]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[ 1284.884147][T26708]  should_failslab+0xc2/0x120
[ 1284.884173][T26708]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1284.884192][T26708]  ? __alloc_skb+0x156/0x410
[ 1284.884216][T26708]  ? __alloc_skb+0x156/0x410
[ 1284.884234][T26708]  __alloc_skb+0x156/0x410
[ 1284.884251][T26708]  ? __alloc_skb+0x35d/0x410
[ 1284.884269][T26708]  ? __pfx___alloc_skb+0x10/0x10
[ 1284.884289][T26708]  ? netlink_autobind.isra.0+0x158/0x370
[ 1284.884319][T26708]  netlink_alloc_large_skb+0x69/0x140
[ 1284.884345][T26708]  netlink_sendmsg+0x698/0xdd0
[ 1284.884374][T26708]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1284.884402][T26708]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1284.884434][T26708]  ____sys_sendmsg+0xa5d/0xc30
[ 1284.884462][T26708]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1284.884488][T26708]  ? get_compat_msghdr+0x11a/0x170
[ 1284.884522][T26708]  ___sys_sendmsg+0x134/0x1d0
[ 1284.884547][T26708]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1284.884579][T26708]  ? find_held_lock+0x2b/0x80
[ 1284.884617][T26708]  __sys_sendmsg+0x16d/0x220
[ 1284.884640][T26708]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1284.884677][T26708]  __do_fast_syscall_32+0xe8/0x680
[ 1284.884706][T26708]  do_fast_syscall_32+0x32/0x80
[ 1284.884722][T26708]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1284.884744][T26708] RIP: 0023:0xf7f41579
[ 1284.884777][T26708] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1284.884795][T26708] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1284.884812][T26708] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000240
[ 1284.884822][T26708] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[ 1284.884832][T26708] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1284.884843][T26708] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1284.884853][T26708] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1284.884877][T26708]  </TASK>
[ 1285.383474][T26723] FAULT_INJECTION: forcing a failure.
[ 1285.383474][T26723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1285.391821][T26723] CPU: 3 UID: 0 PID: 26723 Comm: syz.0.4846 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1285.391852][T26723] Tainted: [L]=SOFTLOCKUP
[ 1285.391858][T26723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1285.391869][T26723] Call Trace:
[ 1285.391877][T26723]  <TASK>
[ 1285.391884][T26723]  dump_stack_lvl+0x16c/0x1f0
[ 1285.391919][T26723]  should_fail_ex+0x512/0x640
[ 1285.391944][T26723]  _copy_to_user+0x32/0xd0
[ 1285.391966][T26723]  simple_read_from_buffer+0xcb/0x170
[ 1285.391994][T26723]  proc_fail_nth_read+0x197/0x240
[ 1285.392027][T26723]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1285.392058][T26723]  ? rw_verify_area+0xcf/0x6c0
[ 1285.392082][T26723]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1285.392112][T26723]  vfs_read+0x1e4/0xcf0
[ 1285.392139][T26723]  ? __pfx___mutex_lock+0x10/0x10
[ 1285.392169][T26723]  ? __pfx_vfs_read+0x10/0x10
[ 1285.392193][T26723]  ? find_held_lock+0x2b/0x80
[ 1285.392225][T26723]  ? __fget_files+0x20e/0x3c0
[ 1285.392259][T26723]  ksys_read+0x12a/0x250
[ 1285.392284][T26723]  ? __pfx_ksys_read+0x10/0x10
[ 1285.392310][T26723]  ? do_user_addr_fault+0x843/0x1370
[ 1285.392338][T26723]  __do_fast_syscall_32+0xe8/0x680
[ 1285.392370][T26723]  do_fast_syscall_32+0x32/0x80
[ 1285.392387][T26723]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1285.392409][T26723] RIP: 0023:0xf7f41579
[ 1285.392424][T26723] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1285.392442][T26723] RSP: 002b:00000000f5436590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1285.392460][T26723] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5436620
[ 1285.392473][T26723] RDX: 000000000000000f RSI: 00000000f73d6ff4 RDI: 0000000000000000
[ 1285.392484][T26723] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1285.392495][T26723] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1285.392506][T26723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1285.392532][T26723]  </TASK>
[ 1286.000609][T26733] 
[ 1286.001548][T26733] ======================================================
[ 1286.003872][T26733] WARNING: possible circular locking dependency detected
[ 1286.006171][T26733] syzkaller #0 Tainted: G             L     
[ 1286.008350][T26733] ------------------------------------------------------
[ 1286.010620][T26733] syz.3.4839/26733 is trying to acquire lock:
[ 1286.012659][T26733] ffff88804cd17570 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[ 1286.015408][T26733] 
[ 1286.015408][T26733] but task is already holding lock:
[ 1286.017831][T26733] ffff8880134b5868 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[ 1286.020536][T26733] 
[ 1286.020536][T26733] which lock already depends on the new lock.
[ 1286.020536][T26733] 
[ 1286.023921][T26733] 
[ 1286.023921][T26733] the existing dependency chain (in reverse order) is:
[ 1286.026924][T26733] 
[ 1286.026924][T26733] -> #3 (&pipe->mutex){+.+.}-{4:4}:
[ 1286.029365][T26733]        __mutex_lock+0x1aa/0x1ca0
[ 1286.031082][T26733]        anon_pipe_write+0x15d/0x1bd0
[ 1286.032876][T26733]        __kernel_write_iter+0x720/0xb10
[ 1286.034739][T26733]        __kernel_write+0xf5/0x140
[ 1286.036452][T26733]        autofs_notify_daemon+0x4db/0xd60
[ 1286.038371][T26733]        autofs_wait+0x10f3/0x1ac0
[ 1286.040041][T26733]        autofs_mount_wait+0x132/0x3c0
[ 1286.041843][T26733]        autofs_d_automount+0x4b2/0x960
[ 1286.043656][T26733]        __traverse_mounts+0x1b9/0x830
[ 1286.045501][T26733]        step_into_slowpath+0x772/0xf50
[ 1286.047335][T26733]        path_openat+0x10db/0x3140
[ 1286.049036][T26733]        do_filp_open+0x20b/0x470
[ 1286.050721][T26733]        do_sys_openat2+0x121/0x290
[ 1286.052429][T26733]        __ia32_compat_sys_openat+0x16d/0x210
[ 1286.054466][T26733]        __do_fast_syscall_32+0xe8/0x680
[ 1286.056339][T26733]        do_fast_syscall_32+0x32/0x80
[ 1286.058102][T26733]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.060340][T26733] 
[ 1286.060340][T26733] -> #2 (&sbi->pipe_mutex){+.+.}-{4:4}:
[ 1286.062857][T26733]        __mutex_lock+0x1aa/0x1ca0
[ 1286.064613][T26733]        autofs_notify_daemon+0x4a6/0xd60
[ 1286.066488][T26733]        autofs_wait+0x10f3/0x1ac0
[ 1286.068186][T26733]        autofs_mount_wait+0x132/0x3c0
[ 1286.069965][T26733]        autofs_d_automount+0x4b2/0x960
[ 1286.071807][T26733]        __traverse_mounts+0x1b9/0x830
[ 1286.073592][T26733]        step_into_slowpath+0x772/0xf50
[ 1286.075427][T26733]        path_lookupat+0x627/0xc40
[ 1286.077145][T26733]        filename_lookup+0x224/0x5f0
[ 1286.078893][T26733]        kern_path+0x35/0x50
[ 1286.080473][T26733]        lookup_bdev+0xd8/0x280
[ 1286.082091][T26733]        resume_store+0x1d6/0x490
[ 1286.083764][T26733]        kobj_attr_store+0x58/0x80
[ 1286.085542][T26733]        sysfs_kf_write+0xf2/0x150
[ 1286.087317][T26733]        kernfs_fop_write_iter+0x3af/0x570
[ 1286.089211][T26733]        vfs_write+0x7d3/0x11d0
[ 1286.090853][T26733]        ksys_write+0x12a/0x250
[ 1286.092705][T26733]        __do_fast_syscall_32+0xe8/0x680
[ 1286.094870][T26733]        do_fast_syscall_32+0x32/0x80
[ 1286.097012][T26733]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.099742][T26733] 
[ 1286.099742][T26733] -> #1 (&of->mutex){+.+.}-{4:4}:
[ 1286.102178][T26733]        __mutex_lock+0x1aa/0x1ca0
[ 1286.103887][T26733]        kernfs_seq_start+0x4f/0x2a0
[ 1286.105668][T26733]        seq_read_iter+0x2c1/0x12d0
[ 1286.107382][T26733]        kernfs_fop_read_iter+0x46c/0x610
[ 1286.109250][T26733]        vfs_read+0x8bf/0xcf0
[ 1286.110820][T26733]        ksys_read+0x12a/0x250
[ 1286.112418][T26733]        __do_fast_syscall_32+0xe8/0x680
[ 1286.114261][T26733]        do_fast_syscall_32+0x32/0x80
[ 1286.116038][T26733]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.118254][T26733] 
[ 1286.118254][T26733] -> #0 (&p->lock){+.+.}-{4:4}:
[ 1286.120539][T26733]        __lock_acquire+0x1669/0x2890
[ 1286.122303][T26733]        lock_acquire+0x179/0x330
[ 1286.123959][T26733]        __mutex_lock+0x1aa/0x1ca0
[ 1286.125699][T26733]        seq_read_iter+0xe1/0x12d0
[ 1286.127396][T26733]        kernfs_fop_read_iter+0x46c/0x610
[ 1286.129282][T26733]        copy_splice_read+0x618/0xc20
[ 1286.131070][T26733]        do_splice_read+0x285/0x370
[ 1286.132804][T26733]        splice_file_to_pipe+0x109/0x120
[ 1286.134681][T26733]        do_sendfile+0x400/0xe50
[ 1286.136333][T26733]        __ia32_sys_sendfile64+0x1d7/0x220
[ 1286.138250][T26733]        __do_fast_syscall_32+0xe8/0x680
[ 1286.140104][T26733]        do_fast_syscall_32+0x32/0x80
[ 1286.141872][T26733]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.144110][T26733] 
[ 1286.144110][T26733] other info that might help us debug this:
[ 1286.144110][T26733] 
[ 1286.147418][T26733] Chain exists of:
[ 1286.147418][T26733]   &p->lock --> &sbi->pipe_mutex --> &pipe->mutex
[ 1286.147418][T26733] 
[ 1286.151388][T26733]  Possible unsafe locking scenario:
[ 1286.151388][T26733] 
[ 1286.153844][T26733]        CPU0                    CPU1
[ 1286.155637][T26733]        ----                    ----
[ 1286.157408][T26733]   lock(&pipe->mutex);
[ 1286.158785][T26733]                                lock(&sbi->pipe_mutex);
[ 1286.161092][T26733]                                lock(&pipe->mutex);
[ 1286.163277][T26733]   lock(&p->lock);
[ 1286.164600][T26733] 
[ 1286.164600][T26733]  *** DEADLOCK ***
[ 1286.164600][T26733] 
[ 1286.167257][T26733] 1 lock held by syz.3.4839/26733:
[ 1286.168950][T26733]  #0: ffff8880134b5868 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[ 1286.171859][T26733] 
[ 1286.171859][T26733] stack backtrace:
[ 1286.173907][T26733] CPU: 1 UID: 0 PID: 26733 Comm: syz.3.4839 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1286.173927][T26733] Tainted: [L]=SOFTLOCKUP
[ 1286.173931][T26733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1286.173940][T26733] Call Trace:
[ 1286.173946][T26733]  <TASK>
[ 1286.173953][T26733]  dump_stack_lvl+0x116/0x1f0
[ 1286.173975][T26733]  print_circular_bug+0x275/0x340
[ 1286.173998][T26733]  check_noncircular+0x146/0x160
[ 1286.174020][T26733]  __lock_acquire+0x1669/0x2890
[ 1286.174035][T26733]  ? mark_held_locks+0x49/0x80
[ 1286.174052][T26733]  lock_acquire+0x179/0x330
[ 1286.174064][T26733]  ? seq_read_iter+0xe1/0x12d0
[ 1286.174082][T26733]  ? __pfx___might_resched+0x10/0x10
[ 1286.174101][T26733]  __mutex_lock+0x1aa/0x1ca0
[ 1286.174121][T26733]  ? seq_read_iter+0xe1/0x12d0
[ 1286.174136][T26733]  ? do_sendfile+0x400/0xe50
[ 1286.174153][T26733]  ? __do_fast_syscall_32+0xe8/0x680
[ 1286.174173][T26733]  ? do_fast_syscall_32+0x32/0x80
[ 1286.174184][T26733]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.174199][T26733]  ? seq_read_iter+0xe1/0x12d0
[ 1286.174216][T26733]  ? __pfx___mutex_lock+0x10/0x10
[ 1286.174238][T26733]  ? alloc_pages_bulk_noprof+0xac5/0x1410
[ 1286.174255][T26733]  ? seq_read_iter+0xe1/0x12d0
[ 1286.174270][T26733]  seq_read_iter+0xe1/0x12d0
[ 1286.174286][T26733]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1286.174304][T26733]  kernfs_fop_read_iter+0x46c/0x610
[ 1286.174325][T26733]  copy_splice_read+0x618/0xc20
[ 1286.174344][T26733]  ? __pfx_copy_splice_read+0x10/0x10
[ 1286.174362][T26733]  ? irqentry_exit+0x1dd/0x8c0
[ 1286.174379][T26733]  ? rcu_is_watching+0x12/0xc0
[ 1286.174399][T26733]  ? __pfx_copy_splice_read+0x10/0x10
[ 1286.174416][T26733]  do_splice_read+0x285/0x370
[ 1286.174434][T26733]  splice_file_to_pipe+0x109/0x120
[ 1286.174454][T26733]  do_sendfile+0x400/0xe50
[ 1286.174471][T26733]  ? __pfx_do_sendfile+0x10/0x10
[ 1286.174487][T26733]  ? do_seccomp+0x333/0x2640
[ 1286.174501][T26733]  ? __pfx___seccomp_filter+0x10/0x10
[ 1286.174517][T26733]  __ia32_sys_sendfile64+0x1d7/0x220
[ 1286.174529][T26733]  ? xfd_validate_state+0x61/0x180
[ 1286.174541][T26733]  ? __pfx___ia32_sys_sendfile64+0x10/0x10
[ 1286.174554][T26733]  ? __secure_computing+0x21c/0x320
[ 1286.174569][T26733]  __do_fast_syscall_32+0xe8/0x680
[ 1286.174589][T26733]  do_fast_syscall_32+0x32/0x80
[ 1286.174600][T26733]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.174616][T26733] RIP: 0023:0xf7f07579
[ 1286.174627][T26733] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1286.174640][T26733] RSP: 002b:00000000f4f9155c EFLAGS: 00000296 ORIG_RAX: 00000000000000ef
[ 1286.174653][T26733] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000000000e
[ 1286.174661][T26733] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000
[ 1286.174668][T26733] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1286.174676][T26733] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1286.174683][T26733] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1286.174694][T26733]  </TASK>
[ 1286.437236][T26730] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[ 1286.440153][T26730] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1286.444118][T26730] vhci_hcd vhci_hcd.0: Device attached
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1286.691897][ T6199] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1286.723837][T26726] .`: (slave syz_tun): Releasing backup interface
[ 1286.731782][T11082] usb 44-1: SetAddress Request (30) to port 0
[ 1286.734216][T11082] usb 44-1: new SuperSpeed USB device number 30 using vhci_hcd
[ 1286.848975][ T1258] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1286.994430][ T1258] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1287.062637][T26732] vhci_hcd: connection reset by peer
[ 1287.082299][ T1258] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1287.093089][T16894] vhci_hcd vhci_hcd.3: stop threads
[ 1287.095443][T16894] vhci_hcd vhci_hcd.3: release socket
[ 1287.111790][T16894] vhci_hcd vhci_hcd.3: disconnect device
[ 1287.174018][ T1258] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1287.355581][ T1258] bridge_slave_1: left allmulticast mode
[ 1287.358302][ T1258] bridge_slave_1: left promiscuous mode
[ 1287.361000][ T1258] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1287.366188][ T1258] bridge_slave_0: left allmulticast mode
[ 1287.368679][ T1258] bridge_slave_0: left promiscuous mode
[ 1287.372661][ T1258] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1287.771139][ T1258] team0: Port device bridge5 removed
[ 1287.876126][ T1258] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1287.879778][ T1258] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1287.884637][ T1258] .` (unregistering): (slave dummy0): Releasing backup interface
[ 1287.887989][ T1258] .` (unregistering): Released all slaves
[ 1287.900741][ T1258] bond0 (unregistering): Released all slaves
[ 1287.980958][ T1258] bond1 (unregistering): Released all slaves
[ 1288.061044][ T1258] bond2 (unregistering): Released all slaves
[ 1288.138069][ T1258] bond3 (unregistering): Released all slaves
[ 1288.454481][ T1258] hsr_slave_0: left promiscuous mode
[ 1288.457236][ T1258] hsr_slave_1: left promiscuous mode
[ 1288.459772][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1288.462963][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1288.466550][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1288.469500][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1288.487422][ T1258] batman_adv: batadv0: Removing interface: team0
[ 1288.497929][ T1258] veth1_macvtap: left promiscuous mode
[ 1288.500175][ T1258] veth0_macvtap: left promiscuous mode
[ 1288.502567][ T1258] veth1_vlan: left promiscuous mode
[ 1288.504843][ T1258] veth0_vlan: left promiscuous mode
[ 1288.569509][T16902] smc: removing ib device syz2
[ 1288.636001][ T1258] team0 (unregistering): Port device team_slave_1 removed
[ 1288.651538][ T1258] team0 (unregistering): Port device team_slave_0 removed
[ 1289.188974][ T1258] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.255876][ T1258] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.305605][ T1258] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.365635][ T1258] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.453123][ T1258] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.523349][ T1258] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.588282][ T1258] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.656819][ T1258] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.751105][ T1258] bridge_slave_1: left allmulticast mode
[ 1289.753292][ T1258] bridge_slave_1: left promiscuous mode
[ 1289.755616][ T1258] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1289.760718][ T1258] bridge_slave_0: left allmulticast mode
[ 1289.763260][ T1258] bridge_slave_0: left promiscuous mode
[ 1289.765511][ T1258] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1289.769977][ T1258] bridge_slave_1: left allmulticast mode
[ 1289.774339][ T1258] bridge_slave_1: left promiscuous mode
[ 1289.776346][ T1258] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1289.780262][ T1258] bridge_slave_0: left allmulticast mode
[ 1289.783181][ T1258] bridge_slave_0: left promiscuous mode
[ 1289.785901][ T1258] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1289.906684][ T1258] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1289.911952][ T1258] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1289.916753][ T1258] bond0 (unregistering): Released all slaves
[ 1290.017477][ T1258] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1290.022530][ T1258] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1290.027019][ T1258] bond0 (unregistering): Released all slaves
[ 1290.505377][ T1258] hsr_slave_0: left promiscuous mode
[ 1290.508711][ T1258] hsr_slave_1: left promiscuous mode
[ 1290.511391][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1290.514780][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1290.518313][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1290.521327][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1290.528372][ T1258] hsr_slave_0: left promiscuous mode
[ 1290.531202][ T1258] hsr_slave_1: left promiscuous mode
[ 1290.535618][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1290.538838][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1290.542634][ T1258] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1290.545126][ T1258] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1290.551105][ T1258] veth1_macvtap: left promiscuous mode
[ 1290.553208][ T1258] veth0_macvtap: left promiscuous mode
[ 1290.555089][ T1258] veth1_vlan: left promiscuous mode
[ 1290.557277][ T1258] veth0_vlan: left promiscuous mode
[ 1290.560816][ T1258] veth1_macvtap: left promiscuous mode
[ 1290.563980][ T1258] veth0_macvtap: left promiscuous mode
[ 1290.566462][ T1258] veth1_vlan: left promiscuous mode
[ 1290.568742][ T1258] veth0_vlan: left promiscuous mode
[ 1290.717535][ T1258] team0 (unregistering): Port device team_slave_1 removed
[ 1290.733775][ T1258] team0 (unregistering): Port device team_slave_0 removed
[ 1290.893192][ T1258] team0 (unregistering): Port device team_slave_1 removed
[ 1290.917455][ T1258] team0 (unregistering): Port device team_slave_0 removed
[ 1291.821821][T11082] usb 44-1: device descriptor read/8, error -110
[ 1292.212842][T11082] usb usb44-port1: attempt power cycle
[ 1292.774103][T11082] usb usb44-port1: unable to enumerate USB device